This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fe/1fa6a3-8dc5-4c35-a49b-171c367be782/1/iuklIzN3cd1myy3SDGqaIIPCfVQ.roa File: iuklIzN3cd1myy3SDGqaIIPCfVQ.roa (raw, json) Hash identifier: 3qfnX7bi5LJVGXxA1CUbsRAXKqiE2M+t9Nh2aQQGCqc= Subject key identifier: 8A:E9:25:23:33:77:71:DD:66:CB:2D:D2:0C:6A:9A:20:83:C2:7D:54 Certificate issuer: /CN=7508475ff0d8ec960336016e0e04221a98e5ecf2 Certificate serial: 019B7D5CD6AC825165284AD434450E029EF7 Authority key identifier: 75:08:47:5F:F0:D8:EC:96:03:36:01:6E:0E:04:22:1A:98:E5:EC:F2 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dQhHX_DY7JYDNgFuDgQiGpjl7PI.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fe/1fa6a3-8dc5-4c35-a49b-171c367be782/1/iuklIzN3cd1myy3SDGqaIIPCfVQ.roa Signing time: Fri 02 Jan 2026 06:19:54 +0000 ROA not before: Fri 02 Jan 2026 06:19:54 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 207713 IP address blocks: 89.23.103.0/24 maxlen: 24 89.23.107.0/24 maxlen: 24 89.23.108.0/24 maxlen: 24 89.23.113.0/24 maxlen: 24 185.39.204.0/24 maxlen: 24 185.39.207.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fe/1fa6a3-8dc5-4c35-a49b-171c367be782/1/dQhHX_DY7JYDNgFuDgQiGpjl7PI.crl rsync://rpki.ripe.net/repository/DEFAULT/fe/1fa6a3-8dc5-4c35-a49b-171c367be782/1/dQhHX_DY7JYDNgFuDgQiGpjl7PI.mft rsync://rpki.ripe.net/repository/DEFAULT/dQhHX_DY7JYDNgFuDgQiGpjl7PI.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 10 Jan 2026 18:01:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7d:5c:d6:ac:82:51:65:28:4a:d4:34:45:0e:02:9e:f7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7508475ff0d8ec960336016e0e04221a98e5ecf2 Validity Not Before: Jan 2 06:19:54 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=8ae92523337771dd66cb2dd20c6a9a2083c27d54 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:ef:c0:29:b9:f5:a3:92:f7:3b:59:59:47:b1: 55:4c:97:4f:d7:9a:2e:4c:99:59:4a:e7:de:ae:08: ac:36:12:d1:ad:f1:01:ad:2f:11:61:8f:4a:6d:1d: e3:ce:cf:75:2f:7e:75:2e:2e:fb:4c:e6:ae:9f:c6: 64:a0:ac:06:23:7a:b7:c8:8e:ae:ef:20:1a:e7:35: ea:75:4b:98:ef:74:c3:41:fb:99:4c:a9:e3:54:0e: 94:95:cb:dc:48:d7:01:b7:80:a1:1c:e6:e5:15:91: df:fa:b7:4b:e3:91:1d:d9:46:3c:bf:ae:9d:aa:df: 74:35:a2:f1:83:be:ef:a4:ad:86:a4:8d:fe:0d:b2: 51:50:d5:0c:60:1b:85:72:51:be:ad:2c:ed:01:fe: 79:f4:d0:d1:01:d6:6b:53:36:6a:eb:d3:fc:9c:46: 05:3b:38:a3:72:21:b9:27:3c:a0:e4:a6:6c:d0:ca: 0d:3c:e7:a3:e8:3d:eb:4f:7c:ee:52:87:49:cc:50: fe:75:a6:5c:38:1e:96:0b:38:16:8c:22:ff:71:9c: 73:d8:7d:17:83:9d:7d:d9:21:db:05:3e:b8:44:67: d2:28:99:d0:01:0f:7d:a5:fa:46:20:cc:7c:76:db: c9:dc:3b:ef:bc:e3:44:42:8d:3e:31:0e:97:2d:6f: 75:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8A:E9:25:23:33:77:71:DD:66:CB:2D:D2:0C:6A:9A:20:83:C2:7D:54 X509v3 Authority Key Identifier: keyid:75:08:47:5F:F0:D8:EC:96:03:36:01:6E:0E:04:22:1A:98:E5:EC:F2 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dQhHX_DY7JYDNgFuDgQiGpjl7PI.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/1fa6a3-8dc5-4c35-a49b-171c367be782/1/iuklIzN3cd1myy3SDGqaIIPCfVQ.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/1fa6a3-8dc5-4c35-a49b-171c367be782/1/dQhHX_DY7JYDNgFuDgQiGpjl7PI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 89.23.103.0/24 89.23.107.0-89.23.108.255 89.23.113.0/24 185.39.204.0/24 185.39.207.0/24 Signature Algorithm: sha256WithRSAEncryption 53:2f:1a:35:78:1e:44:25:57:00:1b:30:79:76:d5:fe:2c:20: 61:a1:ae:ac:c1:d2:a4:cc:5c:5f:8d:92:0f:27:a3:49:e7:e9: d5:22:b9:40:43:7c:20:7c:82:7f:1f:cf:d3:ef:0f:13:91:72: 47:80:45:27:7a:50:b0:03:87:82:0a:c2:80:8a:d2:e6:4f:84: da:b7:e5:3a:e4:bc:55:61:b7:9b:66:ee:95:4c:84:91:ab:7b: 74:3c:c5:33:b0:95:c2:48:a2:84:62:f7:3f:24:9e:bf:cf:b2: 33:11:34:a9:b8:5e:95:8b:c2:90:80:fa:b9:57:56:af:7a:93: 68:cd:a0:56:8e:7f:02:9f:fc:80:28:3e:56:04:63:0f:82:fa: 04:3b:a4:f8:3a:fd:d3:87:7b:94:f5:7f:cf:59:59:db:b3:8f: c7:2e:aa:d1:73:00:cc:e4:8b:9d:2c:b8:b4:3c:1d:41:2f:93: f1:25:c5:9d:29:b9:fb:84:4b:d3:6a:c0:38:2b:6a:e1:13:f1: 37:95:9f:e6:67:74:1a:15:44:ef:9b:00:d3:fb:71:eb:f7:88: fc:21:49:83:f8:ee:3c:d6:77:e2:3d:c2:2b:94:a7:b1:6d:69: 41:c9:a5:5d:81:b7:60:12:76:c0:7f:b8:cf:d3:d6:78:35:46: 4d:de:44:1f -----BEGIN CERTIFICATE----- MIIFHTCCBAWgAwIBAgISAZt9XNasglFlKErUNEUOAp73MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDc1MDg0NzVmZjBkOGVjOTYwMzM2MDE2ZTBlMDQyMjFhOThl NWVjZjIwHhcNMjYwMTAyMDYxOTU0WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg4YWU5MjUyMzMzNzc3MWRkNjZjYjJkZDIwYzZhOWEyMDgzYzI3ZDU0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAue/AKbn1o5L3O1lZR7FVTJdP15ou TJlZSufergisNhLRrfEBrS8RYY9KbR3jzs91L351Li77TOaun8ZkoKwGI3q3yI6u 7yAa5zXqdUuY73TDQfuZTKnjVA6UlcvcSNcBt4ChHOblFZHf+rdL45Ed2UY8v66d qt90NaLxg77vpK2GpI3+DbJRUNUMYBuFclG+rSztAf559NDRAdZrUzZq69P8nEYF OzijciG5Jzyg5KZs0MoNPOej6D3rT3zuUodJzFD+daZcOB6WCzgWjCL/cZxz2H0X g5192SHbBT64RGfSKJnQAQ99pfpGIMx8dtvJ3DvvvONEQo0+MQ6XLW91SwIDAQAB o4ICKTCCAiUwHQYDVR0OBBYEFIrpJSMzd3HdZsst0gxqmiCDwn1UMB8GA1UdIwQY MBaAFHUIR1/w2OyWAzYBbg4EIhqY5ezyMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvZFFoSFhfRFk3SllETmdGdURnUWlHcGpsN1BJLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mZS8xZmE2YTMtOGRjNS00YzM1LWE0OWIt MTcxYzM2N2JlNzgyLzEvaXVrbEl6TjNjZDFteXkzU0RHcWFJSVBDZlZRLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9mZS8xZmE2YTMtOGRjNS00YzM1LWE0OWItMTcxYzM2N2JlNzgy LzEvZFFoSFhfRFk3SllETmdGdURnUWlHcGpsN1BJLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMD8GCCsGAQUFBwEHAQH/BDAwLjAsBAIAATAmAwQAWRdnMAwD BABZF2sDBABZF2wDBABZF3EDBAC5J8wDBAC5J88wDQYJKoZIhvcNAQELBQADggEB AFMvGjV4HkQlVwAbMHl21f4sIGGhrqzB0qTMXF+Nkg8no0nn6dUiuUBDfCB8gn8f z9PvDxORckeARSd6ULADh4IKwoCK0uZPhNq35TrkvFVht5tm7pVMhJGre3Q8xTOw lcJIooRi9z8knr/PsjMRNKm4XpWLwpCA+rlXVq96k2jNoFaOfwKf/IAoPlYEYw+C +gQ7pPg6/dOHe5T1f89ZWduzj8cuqtFzAMzki50suLQ8HUEvk/ElxZ0pufuES9Nq wDgrauET8TeVn+ZndBoVRO+bANP7cev3iPwhSYP47jzWd+I9wiuUp7FtaUHJpV2B t2ASdsB/uM/T1ng1Rk3eRB8= -----END CERTIFICATE-----Generated at Sat Jan 10 03:14:55 2026 by rpki-client