This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fb/18d955-e992-4fa0-bba0-ac58b287fb64/1/iLYecyNvPLJpQj3efxZOTIWXApk.roa File: iLYecyNvPLJpQj3efxZOTIWXApk.roa (raw, json) Hash identifier: swdILG30N67hGnJzm85h/2MvOrOT4xu46fpnQjTo9Z8= Subject key identifier: 88:B6:1E:73:23:6F:3C:B2:69:42:3D:DE:7F:16:4E:4C:85:97:02:99 Certificate issuer: /CN=cd398f7f3d5b3b82dcfdec902b03f733d895dae7 Certificate serial: 019B77C70D0123A48160DB1BE29A49027479 Authority key identifier: CD:39:8F:7F:3D:5B:3B:82:DC:FD:EC:90:2B:03:F7:33:D8:95:DA:E7 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zTmPfz1bO4Lc_eyQKwP3M9iV2uc.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fb/18d955-e992-4fa0-bba0-ac58b287fb64/1/iLYecyNvPLJpQj3efxZOTIWXApk.roa Signing time: Thu 01 Jan 2026 04:18:12 +0000 ROA not before: Thu 01 Jan 2026 04:18:12 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 21221 IP address blocks: 91.235.83.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fb/18d955-e992-4fa0-bba0-ac58b287fb64/1/zTmPfz1bO4Lc_eyQKwP3M9iV2uc.crl rsync://rpki.ripe.net/repository/DEFAULT/fb/18d955-e992-4fa0-bba0-ac58b287fb64/1/zTmPfz1bO4Lc_eyQKwP3M9iV2uc.mft rsync://rpki.ripe.net/repository/DEFAULT/zTmPfz1bO4Lc_eyQKwP3M9iV2uc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 05 Feb 2026 00:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:77:c7:0d:01:23:a4:81:60:db:1b:e2:9a:49:02:74:79 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=cd398f7f3d5b3b82dcfdec902b03f733d895dae7 Validity Not Before: Jan 1 04:18:12 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=88b61e73236f3cb269423dde7f164e4c85970299 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:24:25:0d:21:72:67:55:82:f2:af:b4:d8:99: fc:0b:64:58:a5:6a:c4:78:b0:75:11:e4:6c:a0:09: 2d:34:2c:a8:12:02:48:fc:81:b8:60:32:38:be:46: a6:05:8b:e0:24:fb:c1:6e:d3:9a:27:b5:e8:d4:1a: fc:62:12:50:f5:db:03:58:bd:d2:89:a0:be:c7:e6: f8:4a:de:84:5c:49:5e:8d:72:f9:55:d1:4a:bd:90: 22:51:86:84:ef:7c:9f:e4:57:b2:34:6f:b1:c7:80: 5d:21:55:78:49:5a:94:b2:a4:ea:c3:bc:c3:a9:f8: 20:3f:f2:20:83:63:c8:e9:14:b3:3f:11:b9:83:ed: 30:df:ef:f1:83:39:72:9d:4c:6b:cb:ed:6e:3a:df: 1b:39:92:06:26:64:8d:81:92:e5:65:0a:b2:1e:65: 64:9e:96:18:52:7a:0a:ae:2c:84:61:aa:f8:c8:4c: 94:44:1e:ff:a3:ec:38:61:9f:4f:df:73:51:79:e6: 3e:fb:f1:44:67:74:34:5e:a9:6e:af:6a:b4:fd:07: 12:f5:03:d0:15:f4:82:07:85:97:3f:93:68:1c:9e: 0c:10:01:b8:70:d0:ec:4f:89:84:1c:3f:17:e9:f3: d2:a9:4a:cc:40:7f:f7:68:cc:0f:26:ad:d8:db:b6: e7:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 88:B6:1E:73:23:6F:3C:B2:69:42:3D:DE:7F:16:4E:4C:85:97:02:99 X509v3 Authority Key Identifier: keyid:CD:39:8F:7F:3D:5B:3B:82:DC:FD:EC:90:2B:03:F7:33:D8:95:DA:E7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zTmPfz1bO4Lc_eyQKwP3M9iV2uc.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fb/18d955-e992-4fa0-bba0-ac58b287fb64/1/iLYecyNvPLJpQj3efxZOTIWXApk.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/fb/18d955-e992-4fa0-bba0-ac58b287fb64/1/zTmPfz1bO4Lc_eyQKwP3M9iV2uc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 91.235.83.0/24 Signature Algorithm: sha256WithRSAEncryption 3f:8c:20:e6:cf:5e:24:7e:0c:1d:1b:80:1c:c0:77:a8:e7:ae: 92:08:70:ad:f6:fa:79:77:9d:2c:79:1b:84:09:00:ee:f6:41: 75:d6:f0:85:c7:20:5e:f2:f6:23:63:ce:45:a9:00:3b:5a:f6: 15:5c:86:83:93:63:82:9b:b0:d5:f5:f1:0b:75:74:58:70:6b: bc:e1:a7:83:1a:8f:2e:98:80:e2:c0:28:03:08:6d:c9:6f:3e: e7:20:9d:48:96:f3:a6:6b:44:a2:c9:e7:ac:ae:b8:b0:b2:ba: be:9c:5e:67:46:dc:a1:02:a2:e2:42:7e:56:a1:af:98:51:52: 55:4f:e0:4e:28:e8:1f:6a:65:4f:88:ca:41:24:7f:a1:71:4e: 39:47:49:3a:ac:e9:c5:b5:fa:9f:1a:52:c2:6e:84:35:9a:60: e2:c2:82:b1:c2:01:3e:c8:71:8a:7a:b0:e2:ee:06:65:63:a9: d0:fe:fc:d1:76:40:d3:02:41:86:30:85:fd:f5:cd:40:55:c3: 95:87:d7:40:6f:38:d4:ff:4b:4a:3b:7b:47:d2:14:a2:f4:ef: e2:a8:80:ca:03:12:2b:11:43:f5:d9:4f:64:33:2a:f6:b3:a4: ad:e6:bf:14:dc:b8:37:e4:c2:48:26:f2:61:fd:96:7e:8f:14: 89:7b:3e:d9 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt3xw0BI6SBYNsb4ppJAnR5MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGNkMzk4ZjdmM2Q1YjNiODJkY2ZkZWM5MDJiMDNmNzMzZDg5 NWRhZTcwHhcNMjYwMTAxMDQxODEyWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg4OGI2MWU3MzIzNmYzY2IyNjk0MjNkZGU3ZjE2NGU0Yzg1OTcwMjk5MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuCQlDSFyZ1WC8q+02Jn8C2RYpWrE eLB1EeRsoAktNCyoEgJI/IG4YDI4vkamBYvgJPvBbtOaJ7Xo1Br8YhJQ9dsDWL3S iaC+x+b4St6EXElejXL5VdFKvZAiUYaE73yf5FeyNG+xx4BdIVV4SVqUsqTqw7zD qfggP/Igg2PI6RSzPxG5g+0w3+/xgzlynUxry+1uOt8bOZIGJmSNgZLlZQqyHmVk npYYUnoKriyEYar4yEyURB7/o+w4YZ9P33NReeY++/FEZ3Q0Xqlur2q0/QcS9QPQ FfSCB4WXP5NoHJ4MEAG4cNDsT4mEHD8X6fPSqUrMQH/3aMwPJq3Y27bnyQIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFIi2HnMjbzyyaUI93n8WTkyFlwKZMB8GA1UdIwQY MBaAFM05j389WzuC3P3skCsD9zPYldrnMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvelRtUGZ6MWJPNExjX2V5UUt3UDNNOWlWMnVjLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mYi8xOGQ5NTUtZTk5Mi00ZmEwLWJiYTAt YWM1OGIyODdmYjY0LzEvaUxZZWN5TnZQTEpwUWozZWZ4Wk9USVdYQXBrLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9mYi8xOGQ5NTUtZTk5Mi00ZmEwLWJiYTAtYWM1OGIyODdmYjY0 LzEvelRtUGZ6MWJPNExjX2V5UUt3UDNNOWlWMnVjLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAW+tTMA0G CSqGSIb3DQEBCwUAA4IBAQA/jCDmz14kfgwdG4AcwHeo566SCHCt9vp5d50seRuE CQDu9kF11vCFxyBe8vYjY85FqQA7WvYVXIaDk2OCm7DV9fELdXRYcGu84aeDGo8u mIDiwCgDCG3Jbz7nIJ1IlvOma0Siyeesrriwsrq+nF5nRtyhAqLiQn5Woa+YUVJV T+BOKOgfamVPiMpBJH+hcU45R0k6rOnFtfqfGlLCboQ1mmDiwoKxwgE+yHGKerDi 7gZlY6nQ/vzRdkDTAkGGMIX99c1AVcOVh9dAbzjU/0tKO3tH0hSi9O/iqIDKAxIr EUP12U9kMyr2s6St5r8U3Lg35MJIJvJh/ZZ+jxSJez7Z -----END CERTIFICATE-----Generated at Wed Feb 4 09:17:47 2026 by rpki-client