This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ef/e8f95d-ad38-4b5c-b090-8a8564ba3c8c/1/Ipu1qUGfEU4g8Xm4HjOemR3yWWY.roa File: Ipu1qUGfEU4g8Xm4HjOemR3yWWY.roa (raw, json) Hash identifier: R0D/+J37ZrEsRH10sv5tmqRZhv8lgKjFyvvf+xRetHk= Subject key identifier: 22:9B:B5:A9:41:9F:11:4E:20:F1:79:B8:1E:33:9E:99:1D:F2:59:66 Certificate issuer: /CN=b425771f992fd74dfb0736e695aeb59c6af67e93 Certificate serial: 019B7910043F6BC8F0C3211775D1B795F181 Authority key identifier: B4:25:77:1F:99:2F:D7:4D:FB:07:36:E6:95:AE:B5:9C:6A:F6:7E:93 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tCV3H5kv1037Bzbmla61nGr2fpM.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ef/e8f95d-ad38-4b5c-b090-8a8564ba3c8c/1/Ipu1qUGfEU4g8Xm4HjOemR3yWWY.roa Signing time: Thu 01 Jan 2026 10:17:31 +0000 ROA not before: Thu 01 Jan 2026 10:17:31 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 51438 IP address blocks: 194.77.158.0/24 maxlen: 24 2a13:b00::/29 maxlen: 29 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ef/e8f95d-ad38-4b5c-b090-8a8564ba3c8c/1/tCV3H5kv1037Bzbmla61nGr2fpM.crl rsync://rpki.ripe.net/repository/DEFAULT/ef/e8f95d-ad38-4b5c-b090-8a8564ba3c8c/1/tCV3H5kv1037Bzbmla61nGr2fpM.mft rsync://rpki.ripe.net/repository/DEFAULT/tCV3H5kv1037Bzbmla61nGr2fpM.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:79:10:04:3f:6b:c8:f0:c3:21:17:75:d1:b7:95:f1:81 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b425771f992fd74dfb0736e695aeb59c6af67e93 Validity Not Before: Jan 1 10:17:31 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=229bb5a9419f114e20f179b81e339e991df25966 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:86:b0:e1:de:ef:b7:dc:06:62:b1:5e:df:98:99: 4e:ce:d7:db:50:27:9d:e8:9f:aa:a4:9a:01:68:e7: f1:fd:a4:4a:ef:7c:de:b0:5e:55:f1:15:8e:b1:f1: 71:c3:73:e9:c3:80:46:c2:62:c8:c4:75:82:4b:59: a4:ee:13:48:6f:19:69:a5:80:df:ba:34:31:a0:63: 67:fc:2a:93:48:e0:dd:96:67:4d:a1:b2:22:c0:eb: 65:0b:1e:12:bf:3a:6f:f8:31:e4:59:19:73:e6:3d: ee:7b:a5:52:af:8a:31:3b:6b:23:a0:c5:37:7a:52: 2b:e9:0e:f4:35:53:b0:ff:6d:55:a1:c2:ba:1f:b3: e6:7f:3d:fc:c4:32:b9:28:8f:76:76:e6:11:f7:28: 8b:f5:03:92:07:c8:20:c5:50:d5:ba:db:a3:62:84: 18:54:52:21:8e:19:86:ba:70:19:85:f6:da:6e:9b: f3:62:1f:b4:df:f9:1c:c3:f5:5f:a6:78:af:b5:80: fb:36:d7:e0:16:16:61:ee:f1:77:ba:ed:43:f4:2f: c1:5e:a9:8a:4c:05:80:91:4b:14:ae:4c:fa:52:73: b6:e3:90:d4:71:cc:ca:84:89:43:01:e7:2a:0a:de: 7f:9c:b5:13:f0:c8:f9:4d:6f:2a:00:b0:d3:d7:53: 5a:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 22:9B:B5:A9:41:9F:11:4E:20:F1:79:B8:1E:33:9E:99:1D:F2:59:66 X509v3 Authority Key Identifier: keyid:B4:25:77:1F:99:2F:D7:4D:FB:07:36:E6:95:AE:B5:9C:6A:F6:7E:93 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tCV3H5kv1037Bzbmla61nGr2fpM.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ef/e8f95d-ad38-4b5c-b090-8a8564ba3c8c/1/Ipu1qUGfEU4g8Xm4HjOemR3yWWY.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/ef/e8f95d-ad38-4b5c-b090-8a8564ba3c8c/1/tCV3H5kv1037Bzbmla61nGr2fpM.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 194.77.158.0/24 IPv6: 2a13:b00::/29 Signature Algorithm: sha256WithRSAEncryption 91:1f:a8:7a:5a:a1:92:98:7d:97:0b:7e:72:c0:e2:02:d5:d8: 51:16:97:e3:31:47:58:9f:19:87:7f:0a:98:a6:56:69:fd:c2: 5a:c9:5d:b6:f9:8d:16:15:03:a8:34:fc:81:c2:7f:3e:5a:14: 77:2b:82:13:5b:70:02:af:f1:63:1c:41:17:e1:30:4f:6c:f1: d4:05:2e:1c:ab:bb:2b:8b:91:8b:cc:5b:53:71:cc:7a:0c:f5: 5b:c3:a7:4e:e8:dd:b0:d7:d4:ee:4f:a7:93:31:2a:19:a4:ae: ca:f4:29:57:c2:10:22:c6:09:9c:54:10:d3:f9:ee:cd:68:53: 5f:b5:3f:54:b7:8e:5b:40:b7:6a:e2:c9:91:e0:bb:23:86:ec: 39:c2:4b:06:8f:85:c3:45:eb:2b:c1:66:a9:69:21:96:4e:2e: f5:ae:1e:98:3d:55:59:77:7a:4b:5a:41:a4:49:ad:24:15:17: 44:10:03:30:e2:e4:c9:db:ff:3e:60:a8:54:a4:de:bf:21:bd: 26:82:b4:6d:40:13:12:d1:82:13:a3:5e:75:6c:35:d8:44:04: af:c9:f0:15:a8:2e:73:da:92:a7:e2:c3:15:e0:04:2f:27:e2: 83:3f:49:5c:8d:29:53:d7:7c:59:3f:f3:2d:1b:00:04:c4:0f: 76:c0:cb:b1 -----BEGIN CERTIFICATE----- MIIFDDCCA/SgAwIBAgISAZt5EAQ/a8jwwyEXddG3lfGBMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGI0MjU3NzFmOTkyZmQ3NGRmYjA3MzZlNjk1YWViNTljNmFm NjdlOTMwHhcNMjYwMTAxMTAxNzMxWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygyMjliYjVhOTQxOWYxMTRlMjBmMTc5YjgxZTMzOWU5OTFkZjI1OTY2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAhrDh3u+33AZisV7fmJlOztfbUCed 6J+qpJoBaOfx/aRK73zesF5V8RWOsfFxw3Ppw4BGwmLIxHWCS1mk7hNIbxlppYDf ujQxoGNn/CqTSODdlmdNobIiwOtlCx4Svzpv+DHkWRlz5j3ue6VSr4oxO2sjoMU3 elIr6Q70NVOw/21VocK6H7Pmfz38xDK5KI92duYR9yiL9QOSB8ggxVDVutujYoQY VFIhjhmGunAZhfbabpvzYh+03/kcw/VfpnivtYD7NtfgFhZh7vF3uu1D9C/BXqmK TAWAkUsUrkz6UnO245DUcczKhIlDAecqCt5/nLUT8Mj5TW8qALDT11NavwIDAQAB o4ICGDCCAhQwHQYDVR0OBBYEFCKbtalBnxFOIPF5uB4znpkd8llmMB8GA1UdIwQY MBaAFLQldx+ZL9dN+wc25pWutZxq9n6TMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvdENWM0g1a3YxMDM3QnpibWxhNjFuR3IyZnBNLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lZi9lOGY5NWQtYWQzOC00YjVjLWIwOTAt OGE4NTY0YmEzYzhjLzEvSXB1MXFVR2ZFVTRnOFhtNEhqT2VtUjN5V1dZLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9lZi9lOGY5NWQtYWQzOC00YjVjLWIwOTAtOGE4NTY0YmEzYzhj LzEvdENWM0g1a3YxMDM3QnpibWxhNjFuR3IyZnBNLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMC4GCCsGAQUFBwEHAQH/BB8wHTAMBAIAATAGAwQAwk2eMA0E AgACMAcDBQMqEwsAMA0GCSqGSIb3DQEBCwUAA4IBAQCRH6h6WqGSmH2XC35ywOIC 1dhRFpfjMUdYnxmHfwqYplZp/cJayV22+Y0WFQOoNPyBwn8+WhR3K4ITW3ACr/Fj HEEX4TBPbPHUBS4cq7sri5GLzFtTccx6DPVbw6dO6N2w19TuT6eTMSoZpK7K9ClX whAixgmcVBDT+e7NaFNftT9Ut45bQLdq4smR4Lsjhuw5wksGj4XDResrwWapaSGW Ti71rh6YPVVZd3pLWkGkSa0kFRdEEAMw4uTJ2/8+YKhUpN6/Ib0mgrRtQBMS0YIT o151bDXYRASvyfAVqC5z2pKn4sMV4AQvJ+KDP0lcjSlT13xZP/MtGwAExA92wMux -----END CERTIFICATE-----Generated at Mon Feb 9 22:15:46 2026 by rpki-client