This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e6/f02661-b591-4f5e-b369-f74a5f2bcb47/1/iySFhGXQivVeNiYNcwNxNkr5M5Q.roa File: iySFhGXQivVeNiYNcwNxNkr5M5Q.roa (raw, json) Hash identifier: s7fnZRm48jv69+txxsHKvfOf99fkU33jy9Ytdqac+f4= Subject key identifier: 8B:24:85:84:65:D0:8A:F5:5E:36:26:0D:73:03:71:36:4A:F9:33:94 Certificate issuer: /CN=5e8cb6da358a8d2d270c305f8b61f3c990d5766e Certificate serial: 019B7F153F7EF1FA169643098E77C1DB438C Authority key identifier: 5E:8C:B6:DA:35:8A:8D:2D:27:0C:30:5F:8B:61:F3:C9:90:D5:76:6E Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Xoy22jWKjS0nDDBfi2HzyZDVdm4.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e6/f02661-b591-4f5e-b369-f74a5f2bcb47/1/iySFhGXQivVeNiYNcwNxNkr5M5Q.roa Signing time: Fri 02 Jan 2026 14:20:57 +0000 ROA not before: Fri 02 Jan 2026 14:20:57 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 28876 IP address blocks: 81.89.160.0/20 maxlen: 21 217.24.48.0/20 maxlen: 20 217.24.48.0/21 maxlen: 21 217.24.56.0/21 maxlen: 21 2a00:9d80::/32 maxlen: 33 2a00:9d81::/32 maxlen: 33 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e6/f02661-b591-4f5e-b369-f74a5f2bcb47/1/Xoy22jWKjS0nDDBfi2HzyZDVdm4.crl rsync://rpki.ripe.net/repository/DEFAULT/e6/f02661-b591-4f5e-b369-f74a5f2bcb47/1/Xoy22jWKjS0nDDBfi2HzyZDVdm4.mft rsync://rpki.ripe.net/repository/DEFAULT/Xoy22jWKjS0nDDBfi2HzyZDVdm4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 11:00:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7f:15:3f:7e:f1:fa:16:96:43:09:8e:77:c1:db:43:8c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5e8cb6da358a8d2d270c305f8b61f3c990d5766e Validity Not Before: Jan 2 14:20:57 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=8b24858465d08af55e36260d730371364af93394 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:32:ce:1d:4a:26:41:ce:62:7a:64:c3:c8:bf: 39:80:f6:d5:a1:f2:32:87:c8:d6:7a:68:b3:ca:87: f3:21:a8:90:8d:53:88:50:5e:8c:8a:11:dc:c4:0d: 20:0d:61:f4:ec:c2:72:66:da:c8:63:84:ed:db:81: bc:9a:de:85:02:e8:b5:be:63:bd:4f:65:96:5c:85: 99:d1:0c:f6:57:2f:98:ff:9e:ed:4a:e8:5e:25:e8: 97:a0:93:bc:86:77:ca:36:55:0b:ef:f3:6c:5c:5e: 49:d2:9b:18:93:95:48:f8:9b:dd:24:7c:3e:dd:28: 67:ab:1a:e6:1e:8f:7b:c9:59:33:63:4d:8e:b5:bc: f5:57:88:86:b6:68:bc:8a:15:8e:07:8c:77:98:da: 69:0c:bd:d5:67:9d:06:5e:1c:97:c6:77:f1:fd:95: 52:fe:0f:cc:b1:5d:d7:dc:23:32:0d:ae:b7:95:c2: 1d:1d:96:ad:e1:eb:55:0a:74:53:36:8d:12:d3:d2: 77:9f:2d:08:ed:5c:32:48:6d:cb:4b:f2:fb:72:eb: 2c:e7:65:9f:2b:f4:ef:e9:60:3e:45:3e:ef:f8:f6: 8c:54:e0:41:1f:99:9c:6b:df:8a:20:7a:bf:99:71: 42:8e:60:fa:74:9b:e8:22:f7:39:98:f3:c0:d3:f6: 53:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8B:24:85:84:65:D0:8A:F5:5E:36:26:0D:73:03:71:36:4A:F9:33:94 X509v3 Authority Key Identifier: keyid:5E:8C:B6:DA:35:8A:8D:2D:27:0C:30:5F:8B:61:F3:C9:90:D5:76:6E X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Xoy22jWKjS0nDDBfi2HzyZDVdm4.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e6/f02661-b591-4f5e-b369-f74a5f2bcb47/1/iySFhGXQivVeNiYNcwNxNkr5M5Q.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/e6/f02661-b591-4f5e-b369-f74a5f2bcb47/1/Xoy22jWKjS0nDDBfi2HzyZDVdm4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 81.89.160.0/20 217.24.48.0/20 IPv6: 2a00:9d80::/31 Signature Algorithm: sha256WithRSAEncryption 78:9b:bc:32:99:0b:c9:23:d4:d4:77:8b:6c:83:90:cb:82:6b: 8c:8a:0f:c2:8a:a0:dd:bd:9f:da:3a:cd:8c:04:02:73:19:0b: f9:46:2c:bc:de:5b:02:07:6f:52:0d:75:a6:d1:db:32:d3:c5: 04:7e:3b:59:c3:d9:41:52:bf:0f:f9:05:ba:51:db:74:af:40: 86:2d:7e:8d:36:51:8c:15:03:00:48:7a:6e:7d:76:93:aa:ac: a7:cb:84:da:31:02:e7:4f:0e:eb:65:35:e7:3d:0c:f2:a7:4e: e2:6e:25:63:7a:f6:e3:3e:d3:fa:81:ea:c2:f1:ca:32:de:5b: 22:71:27:e1:52:bb:fe:c3:43:c1:42:d9:bb:d3:09:44:e8:39: 15:32:46:57:2b:46:96:39:2a:d5:7f:35:ff:40:4d:80:8e:73: bf:77:0a:2c:b1:41:bb:35:17:d9:2c:62:5d:00:14:f0:87:ea: 01:18:61:d4:03:36:0b:00:c8:aa:a9:be:60:64:00:2f:40:08: 14:97:8f:5a:69:7e:d5:2a:07:ae:0f:bf:55:83:21:ee:15:c5: 0e:62:ff:fd:c5:d4:e0:9e:57:0e:7c:39:45:38:35:82:8a:2a: 43:fb:79:fa:eb:01:cd:cc:97:b8:62:ef:16:df:3e:52:0b:1d: bf:26:e6:0e -----BEGIN CERTIFICATE----- MIIFEjCCA/qgAwIBAgISAZt/FT9+8foWlkMJjnfB20OMMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDVlOGNiNmRhMzU4YThkMmQyNzBjMzA1ZjhiNjFmM2M5OTBk NTc2NmUwHhcNMjYwMTAyMTQyMDU3WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg4YjI0ODU4NDY1ZDA4YWY1NWUzNjI2MGQ3MzAzNzEzNjRhZjkzMzk0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtTLOHUomQc5iemTDyL85gPbVofIy h8jWemizyofzIaiQjVOIUF6MihHcxA0gDWH07MJyZtrIY4Tt24G8mt6FAui1vmO9 T2WWXIWZ0Qz2Vy+Y/57tSuheJeiXoJO8hnfKNlUL7/NsXF5J0psYk5VI+JvdJHw+ 3ShnqxrmHo97yVkzY02Otbz1V4iGtmi8ihWOB4x3mNppDL3VZ50GXhyXxnfx/ZVS /g/MsV3X3CMyDa63lcIdHZat4etVCnRTNo0S09J3ny0I7VwySG3LS/L7cuss52Wf K/Tv6WA+RT7v+PaMVOBBH5mca9+KIHq/mXFCjmD6dJvoIvc5mPPA0/ZT9wIDAQAB o4ICHjCCAhowHQYDVR0OBBYEFIskhYRl0Ir1XjYmDXMDcTZK+TOUMB8GA1UdIwQY MBaAFF6Mtto1io0tJwwwX4th88mQ1XZuMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvWG95MjJqV0tqUzBuRERCZmkySHp5WkRWZG00LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lNi9mMDI2NjEtYjU5MS00ZjVlLWIzNjkt Zjc0YTVmMmJjYjQ3LzEvaXlTRmhHWFFpdlZlTmlZTmN3TnhOa3I1TTVRLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9lNi9mMDI2NjEtYjU5MS00ZjVlLWIzNjktZjc0YTVmMmJjYjQ3 LzEvWG95MjJqV0tqUzBuRERCZmkySHp5WkRWZG00LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMDQGCCsGAQUFBwEHAQH/BCUwIzASBAIAATAMAwQEUVmgAwQE 2RgwMA0EAgACMAcDBQEqAJ2AMA0GCSqGSIb3DQEBCwUAA4IBAQB4m7wymQvJI9TU d4tsg5DLgmuMig/CiqDdvZ/aOs2MBAJzGQv5Riy83lsCB29SDXWm0dsy08UEfjtZ w9lBUr8P+QW6Udt0r0CGLX6NNlGMFQMASHpufXaTqqyny4TaMQLnTw7rZTXnPQzy p07ibiVjevbjPtP6gerC8coy3lsicSfhUrv+w0PBQtm70wlE6DkVMkZXK0aWOSrV fzX/QE2AjnO/dwossUG7NRfZLGJdABTwh+oBGGHUAzYLAMiqqb5gZAAvQAgUl49a aX7VKgeuD79VgyHuFcUOYv/9xdTgnlcOfDlFODWCiipD+3n66wHNzJe4Yu8W3z5S Cx2/JuYO -----END CERTIFICATE-----Generated at Mon Feb 9 18:23:15 2026 by rpki-client