This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bf/6dec63-b9d9-480b-aeb3-6fe9bf60561c/1/i2iUay7HINEDp9kgpmkw74BrZq0.roa File: i2iUay7HINEDp9kgpmkw74BrZq0.roa (raw, json) Hash identifier: 5Mk1NprREFoJ0FmtyreHJ8qTv5bR9GvoEEVgy1M0/QU= Subject key identifier: 8B:68:94:6B:2E:C7:20:D1:03:A7:D9:20:A6:69:30:EF:80:6B:66:AD Certificate issuer: /CN=eebbf317e5faf5ef02c9cce79527d5e74b8abcc5 Certificate serial: 019B7BA4A33937DE1B167DBAF86E86464532 Authority key identifier: EE:BB:F3:17:E5:FA:F5:EF:02:C9:CC:E7:95:27:D5:E7:4B:8A:BC:C5 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/7rvzF-X69e8CycznlSfV50uKvMU.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bf/6dec63-b9d9-480b-aeb3-6fe9bf60561c/1/i2iUay7HINEDp9kgpmkw74BrZq0.roa Signing time: Thu 01 Jan 2026 22:19:05 +0000 ROA not before: Thu 01 Jan 2026 22:19:05 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 209290 IP address blocks: 178.22.24.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bf/6dec63-b9d9-480b-aeb3-6fe9bf60561c/1/7rvzF-X69e8CycznlSfV50uKvMU.crl rsync://rpki.ripe.net/repository/DEFAULT/bf/6dec63-b9d9-480b-aeb3-6fe9bf60561c/1/7rvzF-X69e8CycznlSfV50uKvMU.mft rsync://rpki.ripe.net/repository/DEFAULT/7rvzF-X69e8CycznlSfV50uKvMU.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 20 Jan 2026 18:00:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7b:a4:a3:39:37:de:1b:16:7d:ba:f8:6e:86:46:45:32 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=eebbf317e5faf5ef02c9cce79527d5e74b8abcc5 Validity Not Before: Jan 1 22:19:05 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=8b68946b2ec720d103a7d920a66930ef806b66ad Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:da:c2:d3:b4:17:08:54:76:7f:2e:23:fc:f5: 93:53:95:e4:4e:56:2c:2d:c3:8b:66:1f:51:00:83: 90:bb:46:9a:fd:1e:80:7a:99:04:d5:0c:21:27:86: 4c:09:cd:37:f3:20:dc:d2:8d:80:1b:98:04:50:ba: dd:23:80:56:a8:d4:cb:b1:11:14:8b:e7:be:7a:c1: 47:02:26:20:87:c4:0a:cb:43:d2:8f:41:1b:1f:1a: 8b:ec:62:e4:0c:52:cf:dd:b5:2b:7f:1f:93:f1:88: 5f:4e:1f:ae:10:24:f4:ab:0e:75:21:a8:88:9e:38: 24:22:4c:0c:3b:ca:6f:3c:4a:6e:9b:e8:90:d1:66: 94:12:40:b9:87:c5:d2:e0:07:16:8e:6d:2b:33:fc: c2:9d:61:bf:23:66:6a:ef:74:ae:d4:cb:e3:68:5e: 1c:1f:bf:30:d7:77:05:4d:51:9f:93:b4:6f:fa:4c: 57:a4:64:8c:1c:6e:b3:da:8c:cd:05:e4:49:88:5a: e4:2f:6a:d2:0e:23:44:9f:5c:0f:bc:d6:fc:12:33: b2:86:ac:4d:39:6d:1f:5e:cd:db:9a:3a:ad:e7:30: 73:f6:c8:eb:c1:57:fc:4a:5d:77:f0:70:9e:ec:21: 88:6c:66:79:73:1a:6f:b5:56:85:5e:78:a4:80:57: 58:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8B:68:94:6B:2E:C7:20:D1:03:A7:D9:20:A6:69:30:EF:80:6B:66:AD X509v3 Authority Key Identifier: keyid:EE:BB:F3:17:E5:FA:F5:EF:02:C9:CC:E7:95:27:D5:E7:4B:8A:BC:C5 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/7rvzF-X69e8CycznlSfV50uKvMU.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/6dec63-b9d9-480b-aeb3-6fe9bf60561c/1/i2iUay7HINEDp9kgpmkw74BrZq0.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/6dec63-b9d9-480b-aeb3-6fe9bf60561c/1/7rvzF-X69e8CycznlSfV50uKvMU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 178.22.24.0/24 Signature Algorithm: sha256WithRSAEncryption 8a:ec:2b:9c:92:71:de:b9:10:80:15:44:d0:4f:9f:c1:60:0a: 18:2e:a2:e4:f6:24:a6:c8:f4:9b:92:28:1b:92:d4:ee:3b:42: 14:07:c2:b2:f7:b5:cb:dc:3e:10:9f:47:3e:67:b2:81:f6:14: 57:8b:fd:c0:c6:12:08:d8:0d:33:37:c1:e9:6d:d8:33:a4:96: d0:43:b4:69:40:28:43:4a:73:b5:2d:1d:a1:fd:5b:26:f4:14: 2e:6e:5b:0a:30:15:65:fa:09:ec:10:d7:c9:b1:46:eb:ee:ce: 97:71:24:d3:5c:01:ee:7b:42:fe:df:37:ca:c9:43:32:1b:60: 01:6e:de:af:d5:1a:91:98:14:57:0d:ce:e3:0a:02:f0:20:6a: cf:77:e3:f5:9e:c6:1d:01:1b:80:13:b6:6e:5d:da:e3:78:f4: 6a:37:2a:f5:89:bf:8e:7a:f8:27:84:c9:7e:f6:b8:37:df:ea: 9d:c0:20:e8:ac:10:d1:bf:bb:f1:a9:cb:29:d9:78:bb:1a:11: 61:1d:10:ba:30:1e:95:83:b5:9d:50:1d:ba:f3:90:ab:c0:3e: b7:c5:c8:e6:96:5f:1d:ee:be:6d:c4:2b:ac:36:98:1e:e2:e3: 87:8b:af:59:79:3d:ff:35:69:69:e4:74:f1:21:5d:11:c3:77: 22:ed:a6:0c -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt7pKM5N94bFn26+G6GRkUyMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGVlYmJmMzE3ZTVmYWY1ZWYwMmM5Y2NlNzk1MjdkNWU3NGI4 YWJjYzUwHhcNMjYwMTAxMjIxOTA1WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg4YjY4OTQ2YjJlYzcyMGQxMDNhN2Q5MjBhNjY5MzBlZjgwNmI2NmFkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApNrC07QXCFR2fy4j/PWTU5XkTlYs LcOLZh9RAIOQu0aa/R6AepkE1QwhJ4ZMCc038yDc0o2AG5gEULrdI4BWqNTLsREU i+e+esFHAiYgh8QKy0PSj0EbHxqL7GLkDFLP3bUrfx+T8YhfTh+uECT0qw51IaiI njgkIkwMO8pvPEpum+iQ0WaUEkC5h8XS4AcWjm0rM/zCnWG/I2Zq73Su1MvjaF4c H78w13cFTVGfk7Rv+kxXpGSMHG6z2ozNBeRJiFrkL2rSDiNEn1wPvNb8EjOyhqxN OW0fXs3bmjqt5zBz9sjrwVf8Sl138HCe7CGIbGZ5cxpvtVaFXnikgFdYEQIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFItolGsuxyDRA6fZIKZpMO+Aa2atMB8GA1UdIwQY MBaAFO678xfl+vXvAsnM55Un1edLirzFMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvN3J2ekYtWDY5ZThDeWN6bmxTZlY1MHVLdk1VLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iZi82ZGVjNjMtYjlkOS00ODBiLWFlYjMt NmZlOWJmNjA1NjFjLzEvaTJpVWF5N0hJTkVEcDlrZ3Bta3c3NEJyWnEwLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iZi82ZGVjNjMtYjlkOS00ODBiLWFlYjMtNmZlOWJmNjA1NjFj LzEvN3J2ekYtWDY5ZThDeWN6bmxTZlY1MHVLdk1VLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAshYYMA0G CSqGSIb3DQEBCwUAA4IBAQCK7CucknHeuRCAFUTQT5/BYAoYLqLk9iSmyPSbkigb ktTuO0IUB8Ky97XL3D4Qn0c+Z7KB9hRXi/3AxhII2A0zN8HpbdgzpJbQQ7RpQChD SnO1LR2h/Vsm9BQublsKMBVl+gnsENfJsUbr7s6XcSTTXAHue0L+3zfKyUMyG2AB bt6v1RqRmBRXDc7jCgLwIGrPd+P1nsYdARuAE7ZuXdrjePRqNyr1ib+OevgnhMl+ 9rg33+qdwCDorBDRv7vxqcsp2Xi7GhFhHRC6MB6Vg7WdUB2685CrwD63xcjmll8d 7r5txCusNpge4uOHi69ZeT3/NWlp5HTxIV0Rw3ci7aYM -----END CERTIFICATE-----Generated at Tue Jan 20 02:47:40 2026 by rpki-client