This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c3/38f128-ea82-4555-b514-143967a8fe08/1/IwG6N4gFFJTGRgpOeimAyigAd3M.roa File: IwG6N4gFFJTGRgpOeimAyigAd3M.roa (raw, json) Hash identifier: 5uPYFQrzxojjrU4QuTzSPMWHkd+lEUmW2u2qDEK5oQw= Subject key identifier: 23:01:BA:37:88:05:14:94:C6:46:0A:4E:7A:29:80:CA:28:00:77:73 Certificate issuer: /CN=1c963e3d22847d466c262c20878c2780d8840003 Certificate serial: 019B79EC63DAD5E0097397EFCA076911ACFE Authority key identifier: 1C:96:3E:3D:22:84:7D:46:6C:26:2C:20:87:8C:27:80:D8:84:00:03 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HJY-PSKEfUZsJiwgh4wngNiEAAM.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c3/38f128-ea82-4555-b514-143967a8fe08/1/IwG6N4gFFJTGRgpOeimAyigAd3M.roa Signing time: Thu 01 Jan 2026 14:18:13 +0000 ROA not before: Thu 01 Jan 2026 14:18:13 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 48678 IP address blocks: 193.23.223.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c3/38f128-ea82-4555-b514-143967a8fe08/1/HJY-PSKEfUZsJiwgh4wngNiEAAM.crl rsync://rpki.ripe.net/repository/DEFAULT/c3/38f128-ea82-4555-b514-143967a8fe08/1/HJY-PSKEfUZsJiwgh4wngNiEAAM.mft rsync://rpki.ripe.net/repository/DEFAULT/HJY-PSKEfUZsJiwgh4wngNiEAAM.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 20 Jan 2026 09:01:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:79:ec:63:da:d5:e0:09:73:97:ef:ca:07:69:11:ac:fe Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1c963e3d22847d466c262c20878c2780d8840003 Validity Not Before: Jan 1 14:18:13 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=2301ba3788051494c6460a4e7a2980ca28007773 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:99:1b:3a:33:e8:b0:f6:cc:11:0b:ea:ef:6c: 92:d9:30:3a:7d:69:25:0e:28:91:75:1d:c7:36:79: aa:bc:0a:f7:e7:eb:47:8d:84:1c:2b:9e:15:a1:47: 2d:62:f5:f4:b4:9b:37:dc:c9:7d:7a:4c:84:cf:30: ee:e5:1e:90:30:ae:26:ab:0a:dd:e3:2b:45:f0:77: f3:9e:4b:54:5e:15:b4:ba:31:d5:cf:a4:3c:c0:e5: 15:50:dd:c8:aa:2f:88:dc:91:b2:56:97:e9:9d:da: ea:b8:d0:9c:81:b9:04:f9:70:f7:f0:f3:1a:de:66: c0:30:93:28:39:72:63:05:83:61:e3:23:11:f9:1a: 2d:06:ca:48:46:b7:b3:42:3b:f1:92:19:06:bb:f5: 45:87:a0:7f:1a:63:95:ba:f0:ed:f3:da:92:f0:30: 50:be:ba:4d:12:d1:37:70:76:25:cb:23:9a:63:d5: c7:f3:f0:81:96:0f:f0:18:93:15:e3:7c:b0:76:0b: df:e3:e4:89:99:e5:02:9f:34:9e:01:8e:25:99:aa: 69:eb:22:61:6d:52:87:ef:eb:2d:8a:6b:2d:f1:2d: 56:62:c0:2c:f1:c4:b3:fa:c0:61:f4:95:7a:87:00: 9b:b3:13:6e:52:00:73:af:54:70:8e:41:f0:22:ef: f6:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 23:01:BA:37:88:05:14:94:C6:46:0A:4E:7A:29:80:CA:28:00:77:73 X509v3 Authority Key Identifier: keyid:1C:96:3E:3D:22:84:7D:46:6C:26:2C:20:87:8C:27:80:D8:84:00:03 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HJY-PSKEfUZsJiwgh4wngNiEAAM.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c3/38f128-ea82-4555-b514-143967a8fe08/1/IwG6N4gFFJTGRgpOeimAyigAd3M.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/c3/38f128-ea82-4555-b514-143967a8fe08/1/HJY-PSKEfUZsJiwgh4wngNiEAAM.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 193.23.223.0/24 Signature Algorithm: sha256WithRSAEncryption ba:0e:70:6a:a2:fe:c7:26:4c:de:b3:16:9c:6b:84:6d:9b:67: df:8f:61:72:c5:1d:1d:79:b0:c2:39:d8:01:47:68:e7:7e:6a: 86:3d:14:2d:5a:5c:1d:00:9b:cb:1b:7a:2d:7e:a2:cd:e7:f3: 19:ae:27:ee:29:d3:e7:69:47:7d:e4:08:68:cd:e8:1e:45:55: c4:7e:17:e7:35:0f:db:bd:b2:95:3f:7a:54:27:af:a1:74:af: 90:91:fe:04:a6:e3:a7:7e:1a:b1:fa:f0:e1:62:9f:3f:e3:b6: fc:d4:76:84:f0:f8:94:88:f3:06:5a:a3:17:77:d9:bc:9c:58: 32:b5:d1:85:8c:01:2a:0b:52:25:c7:55:04:b0:ae:29:90:26: 8b:45:0c:47:94:87:52:82:2d:34:3b:5e:87:a2:39:2b:29:40: 8a:89:7d:4f:37:64:ff:34:e1:d4:81:3d:c9:91:37:4d:1d:f4: fe:14:08:41:b1:d9:44:6b:20:24:64:04:9d:f8:8e:84:bf:9f: 51:5f:61:b5:c5:89:7a:0d:ef:ae:f2:cf:c3:56:15:59:ec:01: e3:27:82:1d:d6:7c:c2:db:f7:99:ed:ed:40:74:85:1e:7c:17: e1:98:ee:60:ed:92:f3:47:74:0e:4f:42:7d:f9:07:66:63:33: bc:71:a2:1f -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt57GPa1eAJc5fvygdpEaz+MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDFjOTYzZTNkMjI4NDdkNDY2YzI2MmMyMDg3OGMyNzgwZDg4 NDAwMDMwHhcNMjYwMTAxMTQxODEzWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygyMzAxYmEzNzg4MDUxNDk0YzY0NjBhNGU3YTI5ODBjYTI4MDA3NzczMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArpkbOjPosPbMEQvq72yS2TA6fWkl DiiRdR3HNnmqvAr35+tHjYQcK54VoUctYvX0tJs33Ml9ekyEzzDu5R6QMK4mqwrd 4ytF8HfznktUXhW0ujHVz6Q8wOUVUN3Iqi+I3JGyVpfpndrquNCcgbkE+XD38PMa 3mbAMJMoOXJjBYNh4yMR+RotBspIRrezQjvxkhkGu/VFh6B/GmOVuvDt89qS8DBQ vrpNEtE3cHYlyyOaY9XH8/CBlg/wGJMV43ywdgvf4+SJmeUCnzSeAY4lmapp6yJh bVKH7+stimst8S1WYsAs8cSz+sBh9JV6hwCbsxNuUgBzr1RwjkHwIu/29wIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFCMBujeIBRSUxkYKTnopgMooAHdzMB8GA1UdIwQY MBaAFByWPj0ihH1GbCYsIIeMJ4DYhAADMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSEpZLVBTS0VmVVpzSml3Z2g0d25nTmlFQUFNLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jMy8zOGYxMjgtZWE4Mi00NTU1LWI1MTQt MTQzOTY3YThmZTA4LzEvSXdHNk40Z0ZGSlRHUmdwT2VpbUF5aWdBZDNNLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9jMy8zOGYxMjgtZWE4Mi00NTU1LWI1MTQtMTQzOTY3YThmZTA4 LzEvSEpZLVBTS0VmVVpzSml3Z2g0d25nTmlFQUFNLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAwRffMA0G CSqGSIb3DQEBCwUAA4IBAQC6DnBqov7HJkzesxaca4Rtm2ffj2FyxR0debDCOdgB R2jnfmqGPRQtWlwdAJvLG3otfqLN5/MZrifuKdPnaUd95AhozegeRVXEfhfnNQ/b vbKVP3pUJ6+hdK+Qkf4EpuOnfhqx+vDhYp8/47b81HaE8PiUiPMGWqMXd9m8nFgy tdGFjAEqC1Ilx1UEsK4pkCaLRQxHlIdSgi00O16HojkrKUCKiX1PN2T/NOHUgT3J kTdNHfT+FAhBsdlEayAkZASd+I6Ev59RX2G1xYl6De+u8s/DVhVZ7AHjJ4Id1nzC 2/eZ7e1AdIUefBfhmO5g7ZLzR3QOT0J9+QdmYzO8caIf -----END CERTIFICATE-----Generated at Mon Jan 19 16:54:45 2026 by rpki-client