This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ed/304e3d-1f0e-44eb-b2c1-e792f89cbce2/1/IejMQZqryCYEJhPt3g_AUlVHwbc.roa File: IejMQZqryCYEJhPt3g_AUlVHwbc.roa (raw, json) Hash identifier: nNLRvEhZpJTRNsbKaW/XctbPiknRbtd4nqAjqgh3BSA= Subject key identifier: 21:E8:CC:41:9A:AB:C8:26:04:26:13:ED:DE:0F:C0:52:55:47:C1:B7 Certificate issuer: /CN=fad0fb39d6b11fd15fcbb4163403155d1d455c05 Certificate serial: 019B7D5C5514273186840110961E40C0C5C6 Authority key identifier: FA:D0:FB:39:D6:B1:1F:D1:5F:CB:B4:16:34:03:15:5D:1D:45:5C:05 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-tD7OdaxH9Ffy7QWNAMVXR1FXAU.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ed/304e3d-1f0e-44eb-b2c1-e792f89cbce2/1/IejMQZqryCYEJhPt3g_AUlVHwbc.roa Signing time: Fri 02 Jan 2026 06:19:21 +0000 ROA not before: Fri 02 Jan 2026 06:19:21 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 204568 IP address blocks: 185.209.70.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ed/304e3d-1f0e-44eb-b2c1-e792f89cbce2/1/1-tD7OdaxH9Ffy7QWNAMVXR1FXAU.crl rsync://rpki.ripe.net/repository/DEFAULT/ed/304e3d-1f0e-44eb-b2c1-e792f89cbce2/1/1-tD7OdaxH9Ffy7QWNAMVXR1FXAU.mft rsync://rpki.ripe.net/repository/DEFAULT/1-tD7OdaxH9Ffy7QWNAMVXR1FXAU.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 21:00:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7d:5c:55:14:27:31:86:84:01:10:96:1e:40:c0:c5:c6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=fad0fb39d6b11fd15fcbb4163403155d1d455c05 Validity Not Before: Jan 2 06:19:21 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=21e8cc419aabc826042613edde0fc0525547c1b7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:8a:d1:6a:52:72:5f:1f:54:a5:41:91:89:9b: a8:f5:1e:9c:bc:c2:e8:79:1e:b7:d5:48:c5:04:3f: 76:9b:85:b6:10:bc:dc:7e:13:14:08:e8:a2:f8:e4: d1:45:49:c4:e6:0d:62:7f:8f:79:5f:58:96:e2:f1: de:1c:f0:40:fb:c4:56:d5:c2:b4:99:9a:e7:91:bd: bc:24:1f:8e:a6:f1:5f:73:ef:70:70:a4:eb:d4:84: 53:ff:cc:86:4f:16:89:fa:9c:3e:85:5f:8e:9a:f1: 0b:27:df:58:7f:9b:b4:1b:74:57:85:a4:2c:1c:b1: 42:9f:a6:9b:c2:b9:56:73:cd:ae:89:a7:23:04:31: b9:76:9e:ff:de:89:39:e9:9a:88:11:78:32:3a:a8: 56:8e:3c:8b:dd:0e:d1:d3:8c:d4:94:e0:7e:e8:9f: 09:51:1a:2b:20:98:5e:93:8e:33:31:f5:1d:e5:a0: 5e:b6:05:8c:af:32:a4:9f:83:31:36:8f:75:56:b5: 84:5e:f7:30:b9:f2:9c:d7:c3:b8:b0:9f:27:7f:fb: 00:f2:36:52:46:c4:3c:54:95:e5:c8:02:c1:d2:fb: 2b:1e:a7:a9:df:99:46:da:4b:19:b4:b2:c4:6d:bb: 44:0e:8d:5a:55:80:0a:ea:4f:67:97:15:7f:54:9e: bf:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 21:E8:CC:41:9A:AB:C8:26:04:26:13:ED:DE:0F:C0:52:55:47:C1:B7 X509v3 Authority Key Identifier: keyid:FA:D0:FB:39:D6:B1:1F:D1:5F:CB:B4:16:34:03:15:5D:1D:45:5C:05 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-tD7OdaxH9Ffy7QWNAMVXR1FXAU.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ed/304e3d-1f0e-44eb-b2c1-e792f89cbce2/1/IejMQZqryCYEJhPt3g_AUlVHwbc.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/ed/304e3d-1f0e-44eb-b2c1-e792f89cbce2/1/1-tD7OdaxH9Ffy7QWNAMVXR1FXAU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.209.70.0/23 Signature Algorithm: sha256WithRSAEncryption 71:57:1c:67:75:0c:19:ec:91:cf:5d:a1:cb:8e:c4:4d:60:fe: ac:d0:58:02:10:f6:75:29:00:97:5c:c0:f9:7d:0e:c3:29:36: 7b:7e:19:cd:2f:f7:02:3a:4c:38:09:f3:b5:50:9d:8e:c0:27: dc:d6:8b:a0:a1:82:db:30:71:f1:c8:af:ff:9f:50:bb:a6:6a: 65:5d:95:b4:d9:18:9a:d8:85:eb:b2:47:b7:2f:9b:07:d4:8c: 3a:47:b5:f8:47:79:3c:54:e0:c8:f4:42:fb:84:06:d1:ee:b8: 23:54:fe:b5:83:22:07:eb:9d:18:1c:86:4b:a4:76:c9:e4:b6: 75:d2:db:1d:ed:de:1d:1b:83:77:71:67:d6:c4:c1:db:92:a1: d7:45:90:3e:a8:21:a3:a4:a8:19:c2:14:5c:18:0c:9d:53:8c: c4:57:ca:42:87:86:9d:95:8a:86:ed:03:0c:07:5f:17:a6:ab: da:d7:1e:7e:1a:c3:23:7c:0a:af:bf:aa:97:7d:55:45:50:2b: 38:90:2b:f8:87:c8:71:4d:a7:1e:5e:32:7e:49:93:36:da:08: 76:63:1b:5f:c7:06:39:53:20:7d:4d:32:ca:b7:f6:cf:8a:4f: 0f:a7:b9:b0:ff:f7:54:e2:c7:c1:f8:a6:0c:04:e7:c0:a0:23: f3:21:a4:53 -----BEGIN CERTIFICATE----- MIIE/zCCA+egAwIBAgISAZt9XFUUJzGGhAEQlh5AwMXGMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGZhZDBmYjM5ZDZiMTFmZDE1ZmNiYjQxNjM0MDMxNTVkMWQ0 NTVjMDUwHhcNMjYwMTAyMDYxOTIxWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygyMWU4Y2M0MTlhYWJjODI2MDQyNjEzZWRkZTBmYzA1MjU1NDdjMWI3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAt4rRalJyXx9UpUGRiZuo9R6cvMLo eR631UjFBD92m4W2ELzcfhMUCOii+OTRRUnE5g1if495X1iW4vHeHPBA+8RW1cK0 mZrnkb28JB+OpvFfc+9wcKTr1IRT/8yGTxaJ+pw+hV+OmvELJ99Yf5u0G3RXhaQs HLFCn6abwrlWc82uiacjBDG5dp7/3ok56ZqIEXgyOqhWjjyL3Q7R04zUlOB+6J8J URorIJhek44zMfUd5aBetgWMrzKkn4MxNo91VrWEXvcwufKc18O4sJ8nf/sA8jZS RsQ8VJXlyALB0vsrHqep35lG2ksZtLLEbbtEDo1aVYAK6k9nlxV/VJ6/nQIDAQAB o4ICCzCCAgcwHQYDVR0OBBYEFCHozEGaq8gmBCYT7d4PwFJVR8G3MB8GA1UdIwQY MBaAFPrQ+znWsR/RX8u0FjQDFV0dRVwFMA4GA1UdDwEB/wQEAwIHgDBlBggrBgEF BQcBAQRZMFcwVQYIKwYBBQUHMAKGSXJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvMS10RDdPZGF4SDlGZnk3UVdOQU1WWFIxRlhBVS5jZXIw gY0GCCsGAQUFBwELBIGAMH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBl Lm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvZWQvMzA0ZTNkLTFmMGUtNDRlYi1iMmMx LWU3OTJmODljYmNlMi8xL0llak1RWnFyeUNZRUpoUHQzZ19BVWxWSHdiYy5yb2Ew gYIGA1UdHwR7MHkwd6B1oHOGcXJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0 b3J5L0RFRkFVTFQvZWQvMzA0ZTNkLTFmMGUtNDRlYi1iMmMxLWU3OTJmODljYmNl Mi8xLzEtdEQ3T2RheEg5RmZ5N1FXTkFNVlhSMUZYQVUuY3JsMBgGA1UdIAEB/wQO MAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAG50UYw DQYJKoZIhvcNAQELBQADggEBAHFXHGd1DBnskc9docuOxE1g/qzQWAIQ9nUpAJdc wPl9DsMpNnt+Gc0v9wI6TDgJ87VQnY7AJ9zWi6ChgtswcfHIr/+fULumamVdlbTZ GJrYheuyR7cvmwfUjDpHtfhHeTxU4Mj0QvuEBtHuuCNU/rWDIgfrnRgchkukdsnk tnXS2x3t3h0bg3dxZ9bEwduSoddFkD6oIaOkqBnCFFwYDJ1TjMRXykKHhp2Viobt AwwHXxemq9rXHn4awyN8Cq+/qpd9VUVQKziQK/iHyHFNpx5eMn5JkzbaCHZjG1/H BjlTIH1NMsq39s+KTw+nubD/91Tix8H4pgwE58CgI/MhpFM= -----END CERTIFICATE-----Generated at Tue Feb 10 02:28:27 2026 by rpki-client