This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bf/b2dbe0-04c5-41ba-ac62-3a53d0ef8b5a/1/Izyp9PlbDb7SEOFmf79W4IySogU.roa File: Izyp9PlbDb7SEOFmf79W4IySogU.roa (raw, json) Hash identifier: Gvc/OfVfbB6iQcaQfhbaTBFzazD+ndUcgMplwft/fIU= Subject key identifier: 23:3C:A9:F4:F9:5B:0D:BE:D2:10:E1:66:7F:BF:56:E0:8C:92:A2:05 Certificate issuer: /CN=c8c2c7314593042cf74210f7f03be7106c224f89 Certificate serial: 019B7AC957D5E2A991AB2BE1D04D9B7AD7B8 Authority key identifier: C8:C2:C7:31:45:93:04:2C:F7:42:10:F7:F0:3B:E7:10:6C:22:4F:89 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/yMLHMUWTBCz3QhD38DvnEGwiT4k.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bf/b2dbe0-04c5-41ba-ac62-3a53d0ef8b5a/1/Izyp9PlbDb7SEOFmf79W4IySogU.roa Signing time: Thu 01 Jan 2026 18:19:34 +0000 ROA not before: Thu 01 Jan 2026 18:19:34 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 212285 IP address blocks: 185.107.134.0/24 maxlen: 24 194.5.233.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bf/b2dbe0-04c5-41ba-ac62-3a53d0ef8b5a/1/yMLHMUWTBCz3QhD38DvnEGwiT4k.crl rsync://rpki.ripe.net/repository/DEFAULT/bf/b2dbe0-04c5-41ba-ac62-3a53d0ef8b5a/1/yMLHMUWTBCz3QhD38DvnEGwiT4k.mft rsync://rpki.ripe.net/repository/DEFAULT/yMLHMUWTBCz3QhD38DvnEGwiT4k.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 27 Jan 2026 12:01:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7a:c9:57:d5:e2:a9:91:ab:2b:e1:d0:4d:9b:7a:d7:b8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=c8c2c7314593042cf74210f7f03be7106c224f89 Validity Not Before: Jan 1 18:19:34 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=233ca9f4f95b0dbed210e1667fbf56e08c92a205 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:df:6b:75:39:c7:d5:1c:58:fa:86:52:43:51: 7f:67:67:9c:a5:4f:b5:93:9b:59:18:1b:c4:8c:df: e2:2e:dd:88:cf:55:25:d2:01:af:92:c7:e2:f6:0f: 5e:df:7b:e9:3e:37:3a:c8:d6:f1:0f:c6:34:a3:71: e1:c8:de:c2:02:e0:b4:27:2f:1e:54:e1:de:05:00: 2c:b7:3f:04:64:33:89:a0:5c:64:3f:ef:fb:ba:ad: db:dc:eb:f2:37:05:a9:76:4f:2b:ac:00:f7:7e:53: 00:d2:a6:2c:ce:03:8d:de:b4:96:e0:e8:32:0f:c3: 82:a9:07:e8:74:61:d0:05:16:92:7f:97:c0:51:84: 33:23:91:60:cb:24:8c:10:22:38:fd:b3:d1:c4:2f: cd:5f:49:a7:28:ab:e2:eb:68:75:26:39:04:40:38: bd:0d:f1:7d:1c:8e:e1:b6:15:34:cd:77:7d:94:44: 98:47:ea:8b:c6:76:19:19:dd:ed:32:29:cc:75:c4: 29:2b:da:01:6a:9a:6d:ce:3b:fd:19:d5:21:aa:16: 94:c1:d2:97:74:ed:4d:e6:d7:ac:81:f0:5c:64:75: d1:42:42:a3:2c:78:e6:46:aa:ac:19:0f:f8:ec:bc: 93:7c:c5:9b:a2:a3:b9:5c:63:17:ba:21:9f:57:dd: 20:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 23:3C:A9:F4:F9:5B:0D:BE:D2:10:E1:66:7F:BF:56:E0:8C:92:A2:05 X509v3 Authority Key Identifier: keyid:C8:C2:C7:31:45:93:04:2C:F7:42:10:F7:F0:3B:E7:10:6C:22:4F:89 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yMLHMUWTBCz3QhD38DvnEGwiT4k.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/b2dbe0-04c5-41ba-ac62-3a53d0ef8b5a/1/Izyp9PlbDb7SEOFmf79W4IySogU.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/b2dbe0-04c5-41ba-ac62-3a53d0ef8b5a/1/yMLHMUWTBCz3QhD38DvnEGwiT4k.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.107.134.0/24 194.5.233.0/24 Signature Algorithm: sha256WithRSAEncryption 84:9b:b7:43:e1:84:f5:5b:9a:23:f1:7a:88:af:a9:64:15:fd: 31:74:58:b4:9f:9a:f5:e4:f5:3d:79:7b:6f:b2:d7:ea:10:76: 18:3f:a2:8f:0a:4d:26:a9:fd:bd:65:bd:a5:0d:12:bf:22:3a: 8b:ff:9c:4a:35:62:13:8c:a0:c4:64:27:48:12:b9:9b:05:07: ba:78:71:a3:b1:d1:62:1d:51:20:c8:b8:af:c0:85:86:81:3e: 86:c1:17:01:30:66:83:9b:48:c9:01:c4:cb:cd:aa:5f:11:6e: 8f:60:d7:07:1f:88:b1:91:bf:8a:8b:e4:e2:d6:5a:b1:34:03: 32:f7:69:a4:fc:7b:c3:3d:a6:bb:91:9c:76:77:05:f5:ee:b9: dd:87:ea:3c:ac:bf:dc:51:7b:ad:ba:09:6a:f2:25:a3:7e:c4: 10:05:a8:c7:58:ec:e2:c7:10:9c:db:e2:01:9d:7f:82:f8:06: e0:3f:fa:6c:31:ec:6d:a4:5d:3b:e7:9b:ef:f7:8e:0b:c6:9d: e7:dc:82:b1:64:f1:22:96:5c:8a:19:c8:91:8c:e4:ea:89:b4: e6:73:82:8f:4d:63:79:cf:8b:d2:43:6b:79:37:b0:db:68:54: f8:25:d3:89:c5:58:48:a5:a1:76:b8:60:13:d7:a2:cf:6f:a2: 21:a7:71:ea -----BEGIN CERTIFICATE----- MIIFAzCCA+ugAwIBAgISAZt6yVfV4qmRqyvh0E2bete4MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGM4YzJjNzMxNDU5MzA0MmNmNzQyMTBmN2YwM2JlNzEwNmMy MjRmODkwHhcNMjYwMTAxMTgxOTM0WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygyMzNjYTlmNGY5NWIwZGJlZDIxMGUxNjY3ZmJmNTZlMDhjOTJhMjA1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAv99rdTnH1RxY+oZSQ1F/Z2ecpU+1 k5tZGBvEjN/iLt2Iz1Ul0gGvksfi9g9e33vpPjc6yNbxD8Y0o3HhyN7CAuC0Jy8e VOHeBQAstz8EZDOJoFxkP+/7uq3b3OvyNwWpdk8rrAD3flMA0qYszgON3rSW4Ogy D8OCqQfodGHQBRaSf5fAUYQzI5FgyySMECI4/bPRxC/NX0mnKKvi62h1JjkEQDi9 DfF9HI7hthU0zXd9lESYR+qLxnYZGd3tMinMdcQpK9oBapptzjv9GdUhqhaUwdKX dO1N5tesgfBcZHXRQkKjLHjmRqqsGQ/47LyTfMWboqO5XGMXuiGfV90gmwIDAQAB o4ICDzCCAgswHQYDVR0OBBYEFCM8qfT5Ww2+0hDhZn+/VuCMkqIFMB8GA1UdIwQY MBaAFMjCxzFFkwQs90IQ9/A75xBsIk+JMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQveU1MSE1VV1RCQ3ozUWhEMzhEdm5FR3dpVDRrLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iZi9iMmRiZTAtMDRjNS00MWJhLWFjNjIt M2E1M2QwZWY4YjVhLzEvSXp5cDlQbGJEYjdTRU9GbWY3OVc0SXlTb2dVLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iZi9iMmRiZTAtMDRjNS00MWJhLWFjNjItM2E1M2QwZWY4YjVh LzEveU1MSE1VV1RCQ3ozUWhEMzhEdm5FR3dpVDRrLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQAuWuGAwQA wgXpMA0GCSqGSIb3DQEBCwUAA4IBAQCEm7dD4YT1W5oj8XqIr6lkFf0xdFi0n5r1 5PU9eXtvstfqEHYYP6KPCk0mqf29Zb2lDRK/IjqL/5xKNWITjKDEZCdIErmbBQe6 eHGjsdFiHVEgyLivwIWGgT6GwRcBMGaDm0jJAcTLzapfEW6PYNcHH4ixkb+Ki+Ti 1lqxNAMy92mk/HvDPaa7kZx2dwX17rndh+o8rL/cUXutuglq8iWjfsQQBajHWOzi xxCc2+IBnX+C+AbgP/psMextpF0755vv944Lxp3n3IKxZPEillyKGciRjOTqibTm c4KPTWN5z4vSQ2t5N7DbaFT4JdOJxVhIpaF2uGAT16LPb6Ihp3Hq -----END CERTIFICATE-----Generated at Mon Jan 26 18:19:29 2026 by rpki-client