This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bf/6dec63-b9d9-480b-aeb3-6fe9bf60561c/1/iRkglKd-Hu7wY-RZ9p6qAhw5Plo.roa File: iRkglKd-Hu7wY-RZ9p6qAhw5Plo.roa (raw, json) Hash identifier: hZwblZDRX/9afRoqUipod/o+mhg1bPkCVid4Z70hNOA= Subject key identifier: 89:19:20:94:A7:7E:1E:EE:F0:63:E4:59:F6:9E:AA:02:1C:39:3E:5A Certificate issuer: /CN=eebbf317e5faf5ef02c9cce79527d5e74b8abcc5 Certificate serial: 019B7BA48D9DB0CDB4B82B1DAA52D25B01BC Authority key identifier: EE:BB:F3:17:E5:FA:F5:EF:02:C9:CC:E7:95:27:D5:E7:4B:8A:BC:C5 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/7rvzF-X69e8CycznlSfV50uKvMU.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bf/6dec63-b9d9-480b-aeb3-6fe9bf60561c/1/iRkglKd-Hu7wY-RZ9p6qAhw5Plo.roa Signing time: Thu 01 Jan 2026 22:19:00 +0000 ROA not before: Thu 01 Jan 2026 22:19:00 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 40676 IP address blocks: 2.56.137.0/24 maxlen: 24 45.148.165.0/24 maxlen: 24 185.210.137.0/24 maxlen: 24 193.148.61.0/24 maxlen: 24 193.148.63.0/24 maxlen: 24 194.32.127.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bf/6dec63-b9d9-480b-aeb3-6fe9bf60561c/1/7rvzF-X69e8CycznlSfV50uKvMU.crl rsync://rpki.ripe.net/repository/DEFAULT/bf/6dec63-b9d9-480b-aeb3-6fe9bf60561c/1/7rvzF-X69e8CycznlSfV50uKvMU.mft rsync://rpki.ripe.net/repository/DEFAULT/7rvzF-X69e8CycznlSfV50uKvMU.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 20 Jan 2026 18:00:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7b:a4:8d:9d:b0:cd:b4:b8:2b:1d:aa:52:d2:5b:01:bc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=eebbf317e5faf5ef02c9cce79527d5e74b8abcc5 Validity Not Before: Jan 1 22:19:00 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=89192094a77e1eeef063e459f69eaa021c393e5a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:fe:87:2a:fe:d2:45:0f:fd:6b:e4:e8:66:6d: 30:9f:c3:97:52:9d:86:31:78:3a:a3:4b:5b:eb:18: 56:24:55:f2:b3:cf:4d:ab:1d:37:b3:1e:00:d7:96: 9a:9b:a8:91:08:42:d2:b3:c3:cb:6c:35:cd:aa:b3: f7:33:00:d2:b2:c7:a8:9b:ba:30:da:79:b9:86:f5: f4:ae:ed:79:70:8b:ae:4f:fa:64:6e:89:d0:2d:33: f4:88:fc:a5:5a:51:d3:2d:21:98:c5:e0:e5:62:d6: 2d:5b:b0:3a:c8:e5:f5:e4:dc:96:d7:95:6a:9e:f9: a5:e4:d5:ae:fe:5e:6e:65:fa:9a:db:cc:52:d4:59: 09:eb:0a:90:5e:0b:21:d9:37:2a:50:c2:6c:6d:62: be:40:5a:f8:05:a3:76:a5:26:2f:81:d6:62:c7:d2: 58:61:4e:12:bb:42:41:c7:80:f8:ad:3e:68:2a:a9: 2d:5b:bd:22:a7:ad:bf:9f:e1:a5:97:f0:92:32:5e: 48:4a:97:4e:04:53:ac:4f:1d:77:06:e2:7a:85:00: 05:97:7f:ea:e0:42:64:20:af:10:e5:24:33:a0:23: 57:1c:45:e2:e8:1a:b1:89:12:38:99:af:b4:df:54: 27:0f:48:57:af:5d:c8:8f:3f:61:b4:b9:43:4f:ab: 49:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 89:19:20:94:A7:7E:1E:EE:F0:63:E4:59:F6:9E:AA:02:1C:39:3E:5A X509v3 Authority Key Identifier: keyid:EE:BB:F3:17:E5:FA:F5:EF:02:C9:CC:E7:95:27:D5:E7:4B:8A:BC:C5 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/7rvzF-X69e8CycznlSfV50uKvMU.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/6dec63-b9d9-480b-aeb3-6fe9bf60561c/1/iRkglKd-Hu7wY-RZ9p6qAhw5Plo.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/6dec63-b9d9-480b-aeb3-6fe9bf60561c/1/7rvzF-X69e8CycznlSfV50uKvMU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 2.56.137.0/24 45.148.165.0/24 185.210.137.0/24 193.148.61.0/24 193.148.63.0/24 194.32.127.0/24 Signature Algorithm: sha256WithRSAEncryption 7c:5f:0d:48:a5:6e:02:63:c7:aa:e1:b2:ca:bb:5d:a3:67:dc: f7:ae:f4:1c:0c:f4:d5:83:4a:2a:b5:dc:4e:f5:81:fe:1f:3c: f2:a4:50:9e:a1:46:c7:45:f0:bc:1a:b4:fb:63:d3:39:86:f3: 04:df:10:ec:76:b2:96:f3:06:1f:8e:18:db:41:69:37:d4:2c: 81:1c:ed:b6:66:0c:9a:eb:47:c4:a5:be:95:b3:91:27:01:a6: 89:5b:d7:30:2c:24:da:05:1a:aa:26:1f:ee:1e:34:94:5f:d6: 5e:f1:1b:5f:a2:83:67:3e:98:1d:67:e4:e0:2b:7e:0a:2e:5e: 59:00:c6:70:0c:7f:2c:5a:f0:2b:99:fa:78:3d:55:b3:d8:16: 19:b9:3a:54:63:d0:20:91:5f:a2:1f:45:ab:42:d6:c6:ae:64: e0:67:63:be:3e:47:40:a1:bf:99:bf:b0:b3:6d:08:86:fa:5e: 1d:f0:c1:d1:af:8e:96:90:4e:ec:11:ed:a1:e1:51:ae:c5:bd: 8a:ce:e7:9c:45:36:37:cf:1e:50:96:eb:cd:58:f6:f4:a8:61: 1c:c6:40:55:7a:15:93:c2:90:92:9b:14:74:4a:35:96:91:a8: cb:62:69:7e:cc:99:9d:b7:33:dc:60:fd:39:d9:2c:bc:a3:25: bf:1b:da:31 -----BEGIN CERTIFICATE----- MIIFGzCCBAOgAwIBAgISAZt7pI2dsM20uCsdqlLSWwG8MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGVlYmJmMzE3ZTVmYWY1ZWYwMmM5Y2NlNzk1MjdkNWU3NGI4 YWJjYzUwHhcNMjYwMTAxMjIxOTAwWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg4OTE5MjA5NGE3N2UxZWVlZjA2M2U0NTlmNjllYWEwMjFjMzkzZTVhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA3P6HKv7SRQ/9a+ToZm0wn8OXUp2G MXg6o0tb6xhWJFXys89Nqx03sx4A15aam6iRCELSs8PLbDXNqrP3MwDSsseom7ow 2nm5hvX0ru15cIuuT/pkbonQLTP0iPylWlHTLSGYxeDlYtYtW7A6yOX15NyW15Vq nvml5NWu/l5uZfqa28xS1FkJ6wqQXgsh2TcqUMJsbWK+QFr4BaN2pSYvgdZix9JY YU4Su0JBx4D4rT5oKqktW70ip62/n+Gll/CSMl5ISpdOBFOsTx13BuJ6hQAFl3/q 4EJkIK8Q5SQzoCNXHEXi6BqxiRI4ma+031QnD0hXr13Ijz9htLlDT6tJwQIDAQAB o4ICJzCCAiMwHQYDVR0OBBYEFIkZIJSnfh7u8GPkWfaeqgIcOT5aMB8GA1UdIwQY MBaAFO678xfl+vXvAsnM55Un1edLirzFMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvN3J2ekYtWDY5ZThDeWN6bmxTZlY1MHVLdk1VLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iZi82ZGVjNjMtYjlkOS00ODBiLWFlYjMt NmZlOWJmNjA1NjFjLzEvaVJrZ2xLZC1IdTd3WS1SWjlwNnFBaHc1UGxvLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iZi82ZGVjNjMtYjlkOS00ODBiLWFlYjMtNmZlOWJmNjA1NjFj LzEvN3J2ekYtWDY5ZThDeWN6bmxTZlY1MHVLdk1VLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMD0GCCsGAQUFBwEHAQH/BC4wLDAqBAIAATAkAwQAAjiJAwQA LZSlAwQAudKJAwQAwZQ9AwQAwZQ/AwQAwiB/MA0GCSqGSIb3DQEBCwUAA4IBAQB8 Xw1IpW4CY8eq4bLKu12jZ9z3rvQcDPTVg0oqtdxO9YH+HzzypFCeoUbHRfC8GrT7 Y9M5hvME3xDsdrKW8wYfjhjbQWk31CyBHO22Zgya60fEpb6Vs5EnAaaJW9cwLCTa BRqqJh/uHjSUX9Ze8RtfooNnPpgdZ+TgK34KLl5ZAMZwDH8sWvArmfp4PVWz2BYZ uTpUY9AgkV+iH0WrQtbGrmTgZ2O+PkdAob+Zv7CzbQiG+l4d8MHRr46WkE7sEe2h 4VGuxb2KzuecRTY3zx5QluvNWPb0qGEcxkBVehWTwpCSmxR0SjWWkajLYml+zJmd tzPcYP052Sy8oyW/G9ox -----END CERTIFICATE-----Generated at Tue Jan 20 04:28:24 2026 by rpki-client