This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fb/cb537d-d7ef-409c-823c-eae4f6d33ca6/1/iLa7f2S3_d-gftGTw6gty0-Uiak.roa File: iLa7f2S3_d-gftGTw6gty0-Uiak.roa (raw, json) Hash identifier: rM0PahqNF2zfpsbMJjY2LhMIvSX7eg/hz/KEUHOLLAA= Subject key identifier: 88:B6:BB:7F:64:B7:FD:DF:A0:7E:D1:93:C3:A8:2D:CB:4F:94:89:A9 Certificate issuer: /CN=c7da82e877933d9c2c952cb376c93aaa337dd7d2 Certificate serial: 019B7F156ECF868F9E749CE87CA3F8BD0B31 Authority key identifier: C7:DA:82:E8:77:93:3D:9C:2C:95:2C:B3:76:C9:3A:AA:33:7D:D7:D2 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/x9qC6HeTPZwslSyzdsk6qjN919I.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fb/cb537d-d7ef-409c-823c-eae4f6d33ca6/1/iLa7f2S3_d-gftGTw6gty0-Uiak.roa Signing time: Fri 02 Jan 2026 14:21:09 +0000 ROA not before: Fri 02 Jan 2026 14:21:09 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 198024 IP address blocks: 185.124.88.0/22 maxlen: 22 2a05:b080::/29 maxlen: 29 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fb/cb537d-d7ef-409c-823c-eae4f6d33ca6/1/x9qC6HeTPZwslSyzdsk6qjN919I.crl rsync://rpki.ripe.net/repository/DEFAULT/fb/cb537d-d7ef-409c-823c-eae4f6d33ca6/1/x9qC6HeTPZwslSyzdsk6qjN919I.mft rsync://rpki.ripe.net/repository/DEFAULT/x9qC6HeTPZwslSyzdsk6qjN919I.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 27 Jan 2026 14:00:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7f:15:6e:cf:86:8f:9e:74:9c:e8:7c:a3:f8:bd:0b:31 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=c7da82e877933d9c2c952cb376c93aaa337dd7d2 Validity Not Before: Jan 2 14:21:09 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=88b6bb7f64b7fddfa07ed193c3a82dcb4f9489a9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:f4:20:4b:ec:44:96:9e:82:7a:60:3d:59:63: 1e:2b:ff:09:cd:b7:05:e5:d4:bf:de:6e:fe:4d:fb: c8:80:4b:07:8b:3c:5d:2b:99:90:68:5d:76:ff:b5: 87:02:f8:c4:98:ce:4b:0b:6a:26:3d:af:b6:8b:b6: 9e:64:31:93:0d:1c:25:35:ed:fa:54:e2:de:88:8e: 1e:32:de:c3:4d:39:80:2c:c7:11:b1:1e:5b:5f:16: 90:91:e0:da:24:8c:74:24:a9:48:8d:f7:c0:10:6a: ea:eb:10:2a:32:c6:b3:7d:f8:4c:e3:5f:96:00:57: 55:36:09:cb:a8:37:94:ac:0f:e8:a6:54:c9:c2:39: b6:b7:eb:4d:dc:20:5a:8b:c1:b2:9a:bc:60:be:c1: d7:da:b3:3c:0f:e6:87:b8:67:b1:54:33:d3:f4:46: 0d:7a:02:1c:23:a8:b8:eb:12:f2:62:10:e1:8f:1f: 83:0b:23:b4:2c:ce:13:78:54:d9:eb:2e:9d:5f:7b: 7c:25:eb:e4:f8:8a:de:d8:07:e8:54:7c:c9:7a:fd: 18:1a:20:79:e8:75:1d:6b:02:d7:72:87:4c:f9:0c: 1c:a4:7e:bc:cf:5b:16:e4:e3:25:f4:d1:51:9f:bc: 90:00:fe:49:6d:3c:82:39:cd:cf:b9:d8:c1:57:d4: 65:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 88:B6:BB:7F:64:B7:FD:DF:A0:7E:D1:93:C3:A8:2D:CB:4F:94:89:A9 X509v3 Authority Key Identifier: keyid:C7:DA:82:E8:77:93:3D:9C:2C:95:2C:B3:76:C9:3A:AA:33:7D:D7:D2 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/x9qC6HeTPZwslSyzdsk6qjN919I.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fb/cb537d-d7ef-409c-823c-eae4f6d33ca6/1/iLa7f2S3_d-gftGTw6gty0-Uiak.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/fb/cb537d-d7ef-409c-823c-eae4f6d33ca6/1/x9qC6HeTPZwslSyzdsk6qjN919I.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.124.88.0/22 IPv6: 2a05:b080::/29 Signature Algorithm: sha256WithRSAEncryption c5:95:de:2d:14:ad:92:60:e6:07:a5:89:28:e8:8e:c2:f6:de: ac:71:f9:ea:14:90:3a:3f:10:84:4b:69:23:2f:27:7b:f9:ba: e8:20:b4:f1:9e:b7:bc:96:ba:89:c9:9d:cf:44:7a:09:28:74: 67:71:fe:c8:f8:f6:eb:7d:3a:82:58:be:3f:1a:01:3c:5b:9a: 9d:0d:b5:9e:87:ed:3b:73:0e:fe:3e:e8:60:5d:c0:21:21:89: f1:12:94:81:71:d0:76:e1:36:83:cd:e8:68:15:4c:e8:9f:14: 81:e6:6e:f4:4c:b3:12:a8:c9:11:32:b0:10:68:cc:ff:a9:76: 33:c4:e1:e0:3d:3c:c3:a4:36:f5:04:12:d7:47:cb:ca:f6:27: 32:7f:98:b5:41:a3:20:5e:31:b4:dc:e2:ee:a9:21:09:05:fe: 05:77:fb:12:84:fd:4c:30:c6:f6:3b:c0:69:45:fd:b9:a6:41: da:2a:e7:0c:d2:72:57:a9:95:ba:95:6f:fb:fd:f2:b9:22:80: 8e:e2:16:a1:36:04:3d:ee:4c:bc:90:d7:cb:cc:0d:7f:9a:87: 83:0c:e4:ea:81:00:97:72:06:42:66:9e:eb:fe:55:8d:c9:43: de:56:69:6b:17:8d:1c:ea:fd:67:eb:97:39:f5:89:62:f6:e0: 3e:06:9b:d0 -----BEGIN CERTIFICATE----- MIIFDDCCA/SgAwIBAgISAZt/FW7Pho+edJzofKP4vQsxMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGM3ZGE4MmU4Nzc5MzNkOWMyYzk1MmNiMzc2YzkzYWFhMzM3 ZGQ3ZDIwHhcNMjYwMTAyMTQyMTA5WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg4OGI2YmI3ZjY0YjdmZGRmYTA3ZWQxOTNjM2E4MmRjYjRmOTQ4OWE5MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0/QgS+xElp6CemA9WWMeK/8JzbcF 5dS/3m7+TfvIgEsHizxdK5mQaF12/7WHAvjEmM5LC2omPa+2i7aeZDGTDRwlNe36 VOLeiI4eMt7DTTmALMcRsR5bXxaQkeDaJIx0JKlIjffAEGrq6xAqMsazffhM41+W AFdVNgnLqDeUrA/oplTJwjm2t+tN3CBai8GymrxgvsHX2rM8D+aHuGexVDPT9EYN egIcI6i46xLyYhDhjx+DCyO0LM4TeFTZ6y6dX3t8Jevk+Ire2AfoVHzJev0YGiB5 6HUdawLXcodM+QwcpH68z1sW5OMl9NFRn7yQAP5JbTyCOc3PudjBV9Rl/QIDAQAB o4ICGDCCAhQwHQYDVR0OBBYEFIi2u39kt/3foH7Rk8OoLctPlImpMB8GA1UdIwQY MBaAFMfaguh3kz2cLJUss3bJOqozfdfSMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQveDlxQzZIZVRQWndzbFN5emRzazZxak45MTlJLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mYi9jYjUzN2QtZDdlZi00MDljLTgyM2Mt ZWFlNGY2ZDMzY2E2LzEvaUxhN2YyUzNfZC1nZnRHVHc2Z3R5MC1VaWFrLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9mYi9jYjUzN2QtZDdlZi00MDljLTgyM2MtZWFlNGY2ZDMzY2E2 LzEveDlxQzZIZVRQWndzbFN5emRzazZxak45MTlJLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMC4GCCsGAQUFBwEHAQH/BB8wHTAMBAIAATAGAwQCuXxYMA0E AgACMAcDBQMqBbCAMA0GCSqGSIb3DQEBCwUAA4IBAQDFld4tFK2SYOYHpYko6I7C 9t6scfnqFJA6PxCES2kjLyd7+broILTxnre8lrqJyZ3PRHoJKHRncf7I+PbrfTqC WL4/GgE8W5qdDbWeh+07cw7+PuhgXcAhIYnxEpSBcdB24TaDzehoFUzonxSB5m70 TLMSqMkRMrAQaMz/qXYzxOHgPTzDpDb1BBLXR8vK9icyf5i1QaMgXjG03OLuqSEJ Bf4Fd/sShP1MMMb2O8BpRf25pkHaKucM0nJXqZW6lW/7/fK5IoCO4hahNgQ97ky8 kNfLzA1/moeDDOTqgQCXcgZCZp7r/lWNyUPeVmlrF40c6v1n65c59Yli9uA+BpvQ -----END CERTIFICATE-----Generated at Mon Jan 26 22:36:16 2026 by rpki-client