This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f0/8f0e03-d288-42ec-8dd7-95299f4c177d/1/iLktwCSpDizG07gTZPc-RsNcU8A.roa File: iLktwCSpDizG07gTZPc-RsNcU8A.roa (raw, json) Hash identifier: +MvxE9DFuSkVtHjUz98ldX8DM+Xopbp6J+nB8zFJfhk= Subject key identifier: 88:B9:2D:C0:24:A9:0E:2C:C6:D3:B8:13:64:F7:3E:46:C3:5C:53:C0 Certificate issuer: /CN=1499c112f155e05c2ca1cf9c6dab59da57c05af2 Certificate serial: 019B76EB95EC06FB7BAFEF9E72E7CF557A04 Authority key identifier: 14:99:C1:12:F1:55:E0:5C:2C:A1:CF:9C:6D:AB:59:DA:57:C0:5A:F2 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/FJnBEvFV4Fwsoc-cbatZ2lfAWvI.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f0/8f0e03-d288-42ec-8dd7-95299f4c177d/1/iLktwCSpDizG07gTZPc-RsNcU8A.roa Signing time: Thu 01 Jan 2026 00:18:29 +0000 ROA not before: Thu 01 Jan 2026 00:18:29 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 8499 IP address blocks: 195.190.32.0/19 maxlen: 19 195.190.32.0/24 maxlen: 24 195.190.33.0/24 maxlen: 24 195.190.34.0/24 maxlen: 24 195.190.35.0/24 maxlen: 24 195.190.36.0/24 maxlen: 24 195.190.37.0/24 maxlen: 24 195.190.38.0/24 maxlen: 24 195.190.39.0/24 maxlen: 24 195.190.40.0/24 maxlen: 24 195.190.41.0/24 maxlen: 24 195.190.42.0/24 maxlen: 24 195.190.43.0/24 maxlen: 24 195.190.44.0/24 maxlen: 24 195.190.45.0/24 maxlen: 24 195.190.46.0/24 maxlen: 24 195.190.47.0/24 maxlen: 24 195.190.48.0/24 maxlen: 24 195.190.49.0/24 maxlen: 24 195.190.50.0/24 maxlen: 24 195.190.51.0/24 maxlen: 24 195.190.52.0/24 maxlen: 24 195.190.53.0/24 maxlen: 24 195.190.54.0/24 maxlen: 24 195.190.55.0/24 maxlen: 24 195.190.56.0/24 maxlen: 24 195.190.57.0/24 maxlen: 24 195.190.58.0/24 maxlen: 24 195.190.59.0/24 maxlen: 24 195.190.60.0/24 maxlen: 24 195.190.61.0/24 maxlen: 24 195.190.62.0/24 maxlen: 24 195.190.63.0/24 maxlen: 24 2a03:7180::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f0/8f0e03-d288-42ec-8dd7-95299f4c177d/1/FJnBEvFV4Fwsoc-cbatZ2lfAWvI.crl rsync://rpki.ripe.net/repository/DEFAULT/f0/8f0e03-d288-42ec-8dd7-95299f4c177d/1/FJnBEvFV4Fwsoc-cbatZ2lfAWvI.mft rsync://rpki.ripe.net/repository/DEFAULT/FJnBEvFV4Fwsoc-cbatZ2lfAWvI.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:76:eb:95:ec:06:fb:7b:af:ef:9e:72:e7:cf:55:7a:04 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1499c112f155e05c2ca1cf9c6dab59da57c05af2 Validity Not Before: Jan 1 00:18:29 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=88b92dc024a90e2cc6d3b81364f73e46c35c53c0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:ea:25:cc:1e:2a:49:76:40:57:55:34:f8:82: 9f:1c:dd:cf:38:09:a4:39:61:77:db:ba:c3:08:f1: 79:e1:aa:17:a9:c2:31:3c:52:f0:60:c9:de:50:e2: 1f:c8:1a:e7:97:b6:0b:5b:a5:30:93:ec:de:80:99: ab:7b:7a:37:17:49:e2:ce:08:66:b4:f0:6c:1c:32: f4:04:02:02:ef:7e:9c:46:75:09:52:67:16:ad:a6: 65:67:ac:ea:cc:12:9e:55:b7:3a:20:d5:0e:c9:b6: d9:96:92:74:7a:04:e2:a3:64:c5:0b:db:18:bb:40: 62:03:36:72:e1:38:82:ad:ab:70:1c:2d:63:73:ef: 52:5f:77:91:1b:1d:9a:b7:d3:9c:10:9f:62:a9:4a: 0a:62:c0:71:01:32:35:2c:84:08:2d:7b:22:82:16: 86:c1:e5:43:91:be:3b:81:be:a3:7c:00:8a:c7:6e: f9:63:09:37:3a:7d:81:f3:0d:48:b6:e1:dd:a5:35: 6a:ff:a8:1c:53:9e:24:36:aa:57:6d:6b:20:45:9f: f1:49:54:c7:1e:97:3b:90:65:6f:71:71:e7:af:d1: 0a:32:92:d1:23:38:c9:31:9d:a3:37:d0:52:90:e8: b5:d3:b7:10:ab:8b:44:6d:1d:ff:05:0e:94:6c:59: a5:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 88:B9:2D:C0:24:A9:0E:2C:C6:D3:B8:13:64:F7:3E:46:C3:5C:53:C0 X509v3 Authority Key Identifier: keyid:14:99:C1:12:F1:55:E0:5C:2C:A1:CF:9C:6D:AB:59:DA:57:C0:5A:F2 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/FJnBEvFV4Fwsoc-cbatZ2lfAWvI.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f0/8f0e03-d288-42ec-8dd7-95299f4c177d/1/iLktwCSpDizG07gTZPc-RsNcU8A.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/f0/8f0e03-d288-42ec-8dd7-95299f4c177d/1/FJnBEvFV4Fwsoc-cbatZ2lfAWvI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 195.190.32.0/19 IPv6: 2a03:7180::/32 Signature Algorithm: sha256WithRSAEncryption 80:67:6c:af:df:46:a2:be:cd:22:d5:ea:fd:60:f8:e2:6b:22: b2:1e:e7:a2:84:54:08:7c:51:b2:7a:b7:e8:8d:0e:b9:76:85: d3:20:7d:f5:87:1f:01:c5:c7:d5:95:ce:38:2a:c3:e1:0d:6c: 38:e3:4c:a4:48:90:ee:e9:f6:f3:ac:06:fe:6a:4a:ee:da:0d: ce:e3:59:5b:cd:d0:af:15:31:24:8c:fc:97:6c:63:40:c5:6e: 93:15:49:74:df:b8:01:f2:b0:a0:92:a6:13:37:38:d1:20:11: 49:98:c4:58:94:83:d8:8a:12:5f:45:e1:20:72:31:1a:a4:43: 96:db:93:fc:67:91:18:a4:95:66:2a:b6:8c:67:eb:c8:25:b3: 11:2f:ac:b9:19:d1:8a:0b:f3:bf:7c:3c:38:5a:03:21:fe:a8: da:80:00:ae:34:48:d7:f5:5c:bb:49:c6:8c:ba:4c:e1:e3:7e: 28:32:8c:99:e7:b2:39:50:bb:0b:c3:41:ae:c2:cb:47:e5:de: c8:4f:64:d3:77:15:07:55:08:19:56:b2:34:3f:67:c3:db:e8: 61:78:a4:c5:cd:36:bc:fb:18:ac:9f:dd:4e:06:0c:30:fa:8e: 78:1e:cd:d1:98:38:2d:fb:69:9e:47:48:9a:b2:d1:fe:49:0c: 87:3f:b4:2b -----BEGIN CERTIFICATE----- MIIFDDCCA/SgAwIBAgISAZt265XsBvt7r++ecufPVXoEMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDE0OTljMTEyZjE1NWUwNWMyY2ExY2Y5YzZkYWI1OWRhNTdj MDVhZjIwHhcNMjYwMTAxMDAxODI5WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg4OGI5MmRjMDI0YTkwZTJjYzZkM2I4MTM2NGY3M2U0NmMzNWM1M2MwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArOolzB4qSXZAV1U0+IKfHN3POAmk OWF327rDCPF54aoXqcIxPFLwYMneUOIfyBrnl7YLW6Uwk+zegJmre3o3F0nizghm tPBsHDL0BAIC736cRnUJUmcWraZlZ6zqzBKeVbc6INUOybbZlpJ0egTio2TFC9sY u0BiAzZy4TiCratwHC1jc+9SX3eRGx2at9OcEJ9iqUoKYsBxATI1LIQILXsighaG weVDkb47gb6jfACKx275Ywk3On2B8w1ItuHdpTVq/6gcU54kNqpXbWsgRZ/xSVTH Hpc7kGVvcXHnr9EKMpLRIzjJMZ2jN9BSkOi107cQq4tEbR3/BQ6UbFmlhQIDAQAB o4ICGDCCAhQwHQYDVR0OBBYEFIi5LcAkqQ4sxtO4E2T3PkbDXFPAMB8GA1UdIwQY MBaAFBSZwRLxVeBcLKHPnG2rWdpXwFryMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvRkpuQkV2RlY0Rndzb2MtY2JhdFoybGZBV3ZJLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mMC84ZjBlMDMtZDI4OC00MmVjLThkZDct OTUyOTlmNGMxNzdkLzEvaUxrdHdDU3BEaXpHMDdnVFpQYy1Sc05jVThBLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9mMC84ZjBlMDMtZDI4OC00MmVjLThkZDctOTUyOTlmNGMxNzdk LzEvRkpuQkV2RlY0Rndzb2MtY2JhdFoybGZBV3ZJLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMC4GCCsGAQUFBwEHAQH/BB8wHTAMBAIAATAGAwQFw74gMA0E AgACMAcDBQAqA3GAMA0GCSqGSIb3DQEBCwUAA4IBAQCAZ2yv30aivs0i1er9YPji ayKyHueihFQIfFGyerfojQ65doXTIH31hx8BxcfVlc44KsPhDWw440ykSJDu6fbz rAb+akru2g3O41lbzdCvFTEkjPyXbGNAxW6TFUl037gB8rCgkqYTNzjRIBFJmMRY lIPYihJfReEgcjEapEOW25P8Z5EYpJVmKraMZ+vIJbMRL6y5GdGKC/O/fDw4WgMh /qjagACuNEjX9Vy7ScaMukzh434oMoyZ57I5ULsLw0GuwstH5d7IT2TTdxUHVQgZ VrI0P2fD2+hheKTFzTa8+xisn91OBgww+o54Hs3RmDgt+2meR0iastH+SQyHP7Qr -----END CERTIFICATE-----Generated at Mon Feb 9 20:51:24 2026 by rpki-client