This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cc/f8c4a2-96ac-4b4e-a195-a97c0dc0a749/1/ILqlW9am-Ny8jSaAwVrjeBq_jnk.roa File: ILqlW9am-Ny8jSaAwVrjeBq_jnk.roa (raw, json) Hash identifier: 7oOBX8eHDSPBlKPfgqArMljc2KOvyLrmS8O9T8mWbuc= Subject key identifier: 20:BA:A5:5B:D6:A6:F8:DC:BC:8D:26:80:C1:5A:E3:78:1A:BF:8E:79 Certificate issuer: /CN=febf30201f12a040d386d2b4eed4484623e4d11b Certificate serial: 019B7CED81D9292711936853D5C2FB58CC60 Authority key identifier: FE:BF:30:20:1F:12:A0:40:D3:86:D2:B4:EE:D4:48:46:23:E4:D1:1B Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_r8wIB8SoEDThtK07tRIRiPk0Rs.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cc/f8c4a2-96ac-4b4e-a195-a97c0dc0a749/1/ILqlW9am-Ny8jSaAwVrjeBq_jnk.roa Signing time: Fri 02 Jan 2026 04:18:18 +0000 ROA not before: Fri 02 Jan 2026 04:18:18 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 42351 IP address blocks: 185.240.188.0/24 maxlen: 24 185.240.189.0/24 maxlen: 24 185.240.190.0/24 maxlen: 24 185.240.191.0/24 maxlen: 24 185.242.168.0/24 maxlen: 24 185.242.169.0/24 maxlen: 24 185.243.236.0/24 maxlen: 24 185.243.237.0/24 maxlen: 24 185.243.238.0/24 maxlen: 24 185.243.239.0/24 maxlen: 24 185.255.58.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/cc/f8c4a2-96ac-4b4e-a195-a97c0dc0a749/1/_r8wIB8SoEDThtK07tRIRiPk0Rs.crl rsync://rpki.ripe.net/repository/DEFAULT/cc/f8c4a2-96ac-4b4e-a195-a97c0dc0a749/1/_r8wIB8SoEDThtK07tRIRiPk0Rs.mft rsync://rpki.ripe.net/repository/DEFAULT/_r8wIB8SoEDThtK07tRIRiPk0Rs.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 27 Jan 2026 13:00:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7c:ed:81:d9:29:27:11:93:68:53:d5:c2:fb:58:cc:60 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=febf30201f12a040d386d2b4eed4484623e4d11b Validity Not Before: Jan 2 04:18:18 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=20baa55bd6a6f8dcbc8d2680c15ae3781abf8e79 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9a:d9:32:02:b5:8a:f2:78:9d:4a:62:6c:fb:2a: 13:b2:62:cb:8f:af:7e:03:3f:d7:67:76:dd:4b:26: 61:39:95:5c:ce:d2:6c:93:f1:f9:88:57:66:b7:0b: 5c:42:5e:ac:33:06:2e:16:5e:a1:10:24:81:5e:55: 34:7e:30:b4:a3:19:d2:30:51:10:7f:d4:e1:ab:2a: 08:78:c3:1f:7c:7f:80:56:ab:a8:b7:14:65:17:ad: 7a:54:06:85:c5:14:8e:32:79:d6:f7:3a:14:85:c8: ca:cb:48:43:b2:62:77:5c:f5:76:6b:28:71:cd:70: 3d:72:f6:e1:85:52:cc:c0:ca:f7:d3:19:e1:71:c2: 78:b5:af:54:87:0a:d2:26:d8:82:ce:3a:b2:a1:3e: 04:a7:37:79:e6:c4:81:55:de:9f:89:90:f9:a0:1a: 97:01:75:e0:43:6a:fb:07:f8:a0:f3:ee:5a:ba:83: c7:77:8c:fa:2d:ed:71:40:b6:58:0c:9a:2e:02:9e: cb:66:cb:78:99:72:77:ef:b4:9b:a2:da:81:b2:ca: 5b:ba:a0:ec:fc:32:81:3c:37:48:d4:bd:aa:2e:69: ce:35:f3:15:a1:3b:9b:43:ee:73:38:9a:2b:06:9d: 47:d6:d3:4a:23:78:be:d4:75:fa:ed:52:01:b9:29: 43:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 20:BA:A5:5B:D6:A6:F8:DC:BC:8D:26:80:C1:5A:E3:78:1A:BF:8E:79 X509v3 Authority Key Identifier: keyid:FE:BF:30:20:1F:12:A0:40:D3:86:D2:B4:EE:D4:48:46:23:E4:D1:1B X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_r8wIB8SoEDThtK07tRIRiPk0Rs.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cc/f8c4a2-96ac-4b4e-a195-a97c0dc0a749/1/ILqlW9am-Ny8jSaAwVrjeBq_jnk.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/cc/f8c4a2-96ac-4b4e-a195-a97c0dc0a749/1/_r8wIB8SoEDThtK07tRIRiPk0Rs.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.240.188.0/22 185.242.168.0/23 185.243.236.0/22 185.255.58.0/24 Signature Algorithm: sha256WithRSAEncryption 9b:d8:cd:33:71:82:ac:64:6d:52:b7:4b:52:a8:43:fa:b1:29: ef:2d:51:ab:9e:af:86:31:0e:ac:7a:e5:b2:22:6e:91:6b:e3: 8b:bd:ec:aa:eb:80:a1:0a:9b:83:7e:b1:e7:af:4b:16:94:c4: 5a:e3:13:fc:f5:a5:68:c0:b4:05:30:8c:32:7f:61:f6:9d:35: fe:2f:e4:ee:d0:a4:91:e6:76:e8:06:9b:ea:1a:11:0f:20:dd: 1b:23:ab:a9:39:4f:26:ad:98:96:c6:6d:32:3f:30:66:f3:16: 97:64:36:ab:44:ae:7a:50:d1:2a:f3:06:00:85:41:fa:60:4b: dc:fa:1a:f9:7d:ce:2b:ba:d1:b2:92:35:f5:a5:50:ef:db:fa: 3b:e9:83:7d:20:c1:f9:92:c3:03:01:3c:1b:4a:43:b3:6c:20: bf:b2:27:bd:0f:d7:e8:ad:d5:f7:a0:6d:0e:39:e8:83:f0:99: 61:ed:9a:1f:96:d6:ba:df:ec:89:5d:a9:74:71:13:fb:03:6b: d2:f5:bb:9f:24:4b:96:84:c9:12:c9:06:b8:1f:d9:90:c6:59: de:0e:99:e1:e5:e8:80:9e:b6:0d:9b:dd:17:51:24:b3:2f:28: f7:ae:e6:92:6e:19:c4:ed:0f:a9:36:55:76:64:19:c6:69:c3: dd:02:b5:51 -----BEGIN CERTIFICATE----- MIIFDzCCA/egAwIBAgISAZt87YHZKScRk2hT1cL7WMxgMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGZlYmYzMDIwMWYxMmEwNDBkMzg2ZDJiNGVlZDQ0ODQ2MjNl NGQxMWIwHhcNMjYwMTAyMDQxODE4WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygyMGJhYTU1YmQ2YTZmOGRjYmM4ZDI2ODBjMTVhZTM3ODFhYmY4ZTc5MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmtkyArWK8nidSmJs+yoTsmLLj69+ Az/XZ3bdSyZhOZVcztJsk/H5iFdmtwtcQl6sMwYuFl6hECSBXlU0fjC0oxnSMFEQ f9ThqyoIeMMffH+AVquotxRlF616VAaFxRSOMnnW9zoUhcjKy0hDsmJ3XPV2ayhx zXA9cvbhhVLMwMr30xnhccJ4ta9UhwrSJtiCzjqyoT4Epzd55sSBVd6fiZD5oBqX AXXgQ2r7B/ig8+5auoPHd4z6Le1xQLZYDJouAp7LZst4mXJ377SbotqBsspbuqDs /DKBPDdI1L2qLmnONfMVoTubQ+5zOJorBp1H1tNKI3i+1HX67VIBuSlDrQIDAQAB o4ICGzCCAhcwHQYDVR0OBBYEFCC6pVvWpvjcvI0mgMFa43gav455MB8GA1UdIwQY MBaAFP6/MCAfEqBA04bStO7USEYj5NEbMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvX3I4d0lCOFNvRURUaHRLMDd0UklSaVBrMFJzLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jYy9mOGM0YTItOTZhYy00YjRlLWExOTUt YTk3YzBkYzBhNzQ5LzEvSUxxbFc5YW0tTnk4alNhQXdWcmplQnFfam5rLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9jYy9mOGM0YTItOTZhYy00YjRlLWExOTUtYTk3YzBkYzBhNzQ5 LzEvX3I4d0lCOFNvRURUaHRLMDd0UklSaVBrMFJzLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMDEGCCsGAQUFBwEHAQH/BCIwIDAeBAIAATAYAwQCufC8AwQB ufKoAwQCufPsAwQAuf86MA0GCSqGSIb3DQEBCwUAA4IBAQCb2M0zcYKsZG1St0tS qEP6sSnvLVGrnq+GMQ6seuWyIm6Ra+OLveyq64ChCpuDfrHnr0sWlMRa4xP89aVo wLQFMIwyf2H2nTX+L+Tu0KSR5nboBpvqGhEPIN0bI6upOU8mrZiWxm0yPzBm8xaX ZDarRK56UNEq8wYAhUH6YEvc+hr5fc4rutGykjX1pVDv2/o76YN9IMH5ksMDATwb SkOzbCC/sie9D9fordX3oG0OOeiD8Jlh7Zoflta63+yJXal0cRP7A2vS9bufJEuW hMkSyQa4H9mQxlneDpnh5eiAnrYNm90XUSSzLyj3ruaSbhnE7Q+pNlV2ZBnGacPd ArVR -----END CERTIFICATE-----Generated at Mon Jan 26 20:24:35 2026 by rpki-client