This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d3/bbb30b-2688-4a6e-b2a2-1399a282227a/1/IkDgMGh9UUmRviqmiJ_OYP1f9S4.roa File: IkDgMGh9UUmRviqmiJ_OYP1f9S4.roa (raw, json) Hash identifier: RuDafgx85YwCS+Dkl1AZk67UPodQ/qCtU6vOrFp0Dc8= Subject key identifier: 22:40:E0:30:68:7D:51:49:91:BE:2A:A6:88:9F:CE:60:FD:5F:F5:2E Certificate issuer: /CN=9a5550e908a9b9688c29aac9895353dea836c45a Certificate serial: 019B7D5AED2FF21E54A8C2EE9010EB74461F Authority key identifier: 9A:55:50:E9:08:A9:B9:68:8C:29:AA:C9:89:53:53:DE:A8:36:C4:5A Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mlVQ6QipuWiMKarJiVNT3qg2xFo.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d3/bbb30b-2688-4a6e-b2a2-1399a282227a/1/IkDgMGh9UUmRviqmiJ_OYP1f9S4.roa Signing time: Fri 02 Jan 2026 06:17:49 +0000 ROA not before: Fri 02 Jan 2026 06:17:49 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 16509 IP address blocks: 185.11.126.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d3/bbb30b-2688-4a6e-b2a2-1399a282227a/1/mlVQ6QipuWiMKarJiVNT3qg2xFo.crl rsync://rpki.ripe.net/repository/DEFAULT/d3/bbb30b-2688-4a6e-b2a2-1399a282227a/1/mlVQ6QipuWiMKarJiVNT3qg2xFo.mft rsync://rpki.ripe.net/repository/DEFAULT/mlVQ6QipuWiMKarJiVNT3qg2xFo.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 03 Jan 2026 03:00:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7d:5a:ed:2f:f2:1e:54:a8:c2:ee:90:10:eb:74:46:1f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9a5550e908a9b9688c29aac9895353dea836c45a Validity Not Before: Jan 2 06:17:49 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=2240e030687d514991be2aa6889fce60fd5ff52e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:51:af:0c:e3:8b:83:a8:20:f2:ca:56:cb:b7: 7d:42:ab:b4:41:95:8f:47:e2:22:f1:84:ed:b9:68: 39:d4:d2:37:ff:df:81:11:e4:36:e7:32:32:3a:0d: be:64:a9:28:fb:9f:c7:39:c4:8a:42:6f:98:78:cb: ec:12:6a:30:be:42:77:60:cc:e9:72:5f:1b:36:65: 3b:ff:06:d0:6f:f6:1b:3c:fa:8d:5d:20:38:1a:1e: 03:d8:09:d1:37:0a:74:7b:06:db:e8:8f:17:e3:2f: a5:37:e7:50:82:5b:e4:7c:88:06:21:7c:ee:6a:75: 33:d1:76:4b:cf:b9:ac:33:82:32:fd:b2:9a:af:6a: e8:f3:f7:b1:23:76:f4:ea:36:4e:9d:50:80:13:ec: fa:eb:81:51:09:fe:96:51:ba:8b:49:80:f5:ea:e0: 5e:b5:b3:86:89:15:fe:b4:95:78:cb:e8:3b:87:10: 2a:55:24:a2:06:05:6f:38:64:b7:f9:1a:7b:62:d0: 21:e6:05:51:54:87:01:d6:64:b4:c3:60:63:f6:7c: 6d:b9:8b:90:13:d3:5a:71:d0:29:7e:b8:4a:73:f8: 61:54:e2:39:f9:9e:b1:37:5d:c4:d0:30:a0:4b:76: 27:8e:e9:62:5b:0c:61:90:84:52:8d:5a:be:24:d4: 4b:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 22:40:E0:30:68:7D:51:49:91:BE:2A:A6:88:9F:CE:60:FD:5F:F5:2E X509v3 Authority Key Identifier: keyid:9A:55:50:E9:08:A9:B9:68:8C:29:AA:C9:89:53:53:DE:A8:36:C4:5A X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mlVQ6QipuWiMKarJiVNT3qg2xFo.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/bbb30b-2688-4a6e-b2a2-1399a282227a/1/IkDgMGh9UUmRviqmiJ_OYP1f9S4.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/bbb30b-2688-4a6e-b2a2-1399a282227a/1/mlVQ6QipuWiMKarJiVNT3qg2xFo.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.11.126.0/24 Signature Algorithm: sha256WithRSAEncryption 04:70:7d:15:a7:e9:92:17:a1:6d:d5:eb:71:d2:03:1b:40:a0: 8b:c5:7a:35:b4:86:12:2a:e1:16:91:fa:2e:05:12:f1:f2:36: 5c:8a:26:ca:17:ba:55:22:dc:24:9e:52:96:e9:91:3a:1a:58: ef:b4:89:5a:9a:11:d6:24:d0:77:40:82:5c:2a:8c:90:eb:fa: 0f:c2:49:c0:7e:68:ed:2d:19:cd:9d:39:9d:02:df:ff:44:e2: 2f:7d:c4:7a:b2:a7:2a:ff:c9:d3:64:e7:01:50:f5:1b:b6:01: ca:08:ba:68:b3:de:03:bc:41:79:47:05:3e:db:9f:0b:32:fa: b7:05:44:98:47:05:cb:c2:6d:3e:0c:49:e5:9b:0d:48:9b:16: 0e:1f:c8:da:c6:35:41:c6:cc:c7:f5:03:dc:16:02:4b:0b:d8: 4c:e3:1a:12:4f:6a:88:49:9e:76:2e:8a:d4:2c:2e:81:d4:05: b8:a9:a3:fa:0a:a1:e0:bc:7b:d9:be:6f:83:7d:dd:7f:0e:ff: 06:66:1b:bd:d9:f6:62:f8:c0:5f:f5:06:38:9b:57:85:f8:c9: 3a:3f:a1:df:ca:5f:fe:2b:7d:13:61:6c:3c:bc:49:72:a0:1b: 6d:7d:d2:90:44:44:94:f7:a0:ef:07:28:a9:ae:15:87:48:01: a8:e0:97:bf -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt9Wu0v8h5UqMLukBDrdEYfMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDlhNTU1MGU5MDhhOWI5Njg4YzI5YWFjOTg5NTM1M2RlYTgz NmM0NWEwHhcNMjYwMTAyMDYxNzQ5WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygyMjQwZTAzMDY4N2Q1MTQ5OTFiZTJhYTY4ODlmY2U2MGZkNWZmNTJlMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1lGvDOOLg6gg8spWy7d9Qqu0QZWP R+Ii8YTtuWg51NI3/9+BEeQ25zIyOg2+ZKko+5/HOcSKQm+YeMvsEmowvkJ3YMzp cl8bNmU7/wbQb/YbPPqNXSA4Gh4D2AnRNwp0ewbb6I8X4y+lN+dQglvkfIgGIXzu anUz0XZLz7msM4Iy/bKar2ro8/exI3b06jZOnVCAE+z664FRCf6WUbqLSYD16uBe tbOGiRX+tJV4y+g7hxAqVSSiBgVvOGS3+Rp7YtAh5gVRVIcB1mS0w2Bj9nxtuYuQ E9NacdApfrhKc/hhVOI5+Z6xN13E0DCgS3YnjuliWwxhkIRSjVq+JNRLUwIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFCJA4DBofVFJkb4qpoifzmD9X/UuMB8GA1UdIwQY MBaAFJpVUOkIqblojCmqyYlTU96oNsRaMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvbWxWUTZRaXB1V2lNS2FySmlWTlQzcWcyeEZvLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kMy9iYmIzMGItMjY4OC00YTZlLWIyYTIt MTM5OWEyODIyMjdhLzEvSWtEZ01HaDlVVW1SdmlxbWlKX09ZUDFmOVM0LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kMy9iYmIzMGItMjY4OC00YTZlLWIyYTItMTM5OWEyODIyMjdh LzEvbWxWUTZRaXB1V2lNS2FySmlWTlQzcWcyeEZvLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAuQt+MA0G CSqGSIb3DQEBCwUAA4IBAQAEcH0Vp+mSF6Ft1etx0gMbQKCLxXo1tIYSKuEWkfou BRLx8jZciibKF7pVItwknlKW6ZE6GljvtIlamhHWJNB3QIJcKoyQ6/oPwknAfmjt LRnNnTmdAt//ROIvfcR6sqcq/8nTZOcBUPUbtgHKCLpos94DvEF5RwU+258LMvq3 BUSYRwXLwm0+DEnlmw1ImxYOH8jaxjVBxszH9QPcFgJLC9hM4xoST2qISZ52LorU LC6B1AW4qaP6CqHgvHvZvm+Dfd1/Dv8GZhu92fZi+MBf9QY4m1eF+Mk6P6Hfyl/+ K30TYWw8vElyoBttfdKQRESU96DvByiprhWHSAGo4Je/ -----END CERTIFICATE-----Generated at Fri Jan 2 09:27:20 2026 by rpki-client