This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ff/66b959-472f-4922-a226-e0f930806bdc/1/ibmc9wsJZvcLnKLI-HoZNttO1zA.roa File: ibmc9wsJZvcLnKLI-HoZNttO1zA.roa (raw, json) Hash identifier: xpCzDqZRfT8zeb7gy3XI7XFp4/7LKgH6afs/PfJpe7Q= Subject key identifier: 89:B9:9C:F7:0B:09:66:F7:0B:9C:A2:C8:F8:7A:19:36:DB:4E:D7:30 Certificate issuer: /CN=2cbd76688b87c03914ae2a2e1490c2f1e9141661 Certificate serial: 019B7CED27B2F6F93CC6B939CE451FDDD989 Authority key identifier: 2C:BD:76:68:8B:87:C0:39:14:AE:2A:2E:14:90:C2:F1:E9:14:16:61 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/LL12aIuHwDkUriouFJDC8ekUFmE.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ff/66b959-472f-4922-a226-e0f930806bdc/1/ibmc9wsJZvcLnKLI-HoZNttO1zA.roa Signing time: Fri 02 Jan 2026 04:17:55 +0000 ROA not before: Fri 02 Jan 2026 04:17:55 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 52059 IP address blocks: 185.47.180.0/24 maxlen: 24 185.47.181.0/24 maxlen: 24 185.47.182.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ff/66b959-472f-4922-a226-e0f930806bdc/1/LL12aIuHwDkUriouFJDC8ekUFmE.crl rsync://rpki.ripe.net/repository/DEFAULT/ff/66b959-472f-4922-a226-e0f930806bdc/1/LL12aIuHwDkUriouFJDC8ekUFmE.mft rsync://rpki.ripe.net/repository/DEFAULT/LL12aIuHwDkUriouFJDC8ekUFmE.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 20 Jan 2026 19:00:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7c:ed:27:b2:f6:f9:3c:c6:b9:39:ce:45:1f:dd:d9:89 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2cbd76688b87c03914ae2a2e1490c2f1e9141661 Validity Not Before: Jan 2 04:17:55 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=89b99cf70b0966f70b9ca2c8f87a1936db4ed730 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:13:db:78:20:87:8c:df:3f:07:f6:1a:36:47: 36:bd:73:ad:ff:46:f3:bd:69:35:78:85:71:d0:7f: 6c:e6:2c:30:2a:d2:d8:f9:1a:ac:bf:21:f4:bc:12: 7d:8e:90:48:4e:96:5d:b5:b9:48:0d:c5:d2:71:42: d4:dc:3a:5b:33:65:fc:e2:40:1b:65:89:53:6d:ee: e4:ec:a7:f1:00:d6:76:a6:76:54:cc:c0:30:96:22: 26:26:cd:22:eb:5c:e3:75:76:5c:85:e1:5c:cb:02: 7e:20:d9:8a:8f:74:b1:7d:22:bf:8b:11:23:17:39: f2:67:4d:4e:06:b7:ed:0f:07:82:6a:df:63:91:33: 22:cc:48:6c:0e:34:9a:74:dc:59:77:cb:c8:00:b9: 11:6d:83:5c:2d:6f:68:0a:7f:f8:ce:d8:3a:3a:ba: 46:22:f5:e9:89:bc:e8:bf:58:06:54:cd:e8:39:db: 03:0e:de:25:fc:29:c6:4f:5b:af:fc:33:70:6c:e4: 80:21:0e:e3:b1:0b:6f:34:5c:a4:50:e2:ad:de:9f: a0:83:9d:72:cb:de:49:74:c0:21:85:af:3f:9a:a0: 45:f0:4d:42:7e:a4:51:3f:9d:7d:74:00:f4:9c:2e: 59:9f:06:33:1e:29:e5:df:3d:43:60:42:9c:5c:fa: 99:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 89:B9:9C:F7:0B:09:66:F7:0B:9C:A2:C8:F8:7A:19:36:DB:4E:D7:30 X509v3 Authority Key Identifier: keyid:2C:BD:76:68:8B:87:C0:39:14:AE:2A:2E:14:90:C2:F1:E9:14:16:61 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/LL12aIuHwDkUriouFJDC8ekUFmE.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ff/66b959-472f-4922-a226-e0f930806bdc/1/ibmc9wsJZvcLnKLI-HoZNttO1zA.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/ff/66b959-472f-4922-a226-e0f930806bdc/1/LL12aIuHwDkUriouFJDC8ekUFmE.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.47.180.0-185.47.182.255 Signature Algorithm: sha256WithRSAEncryption 0d:0e:e0:31:a3:f7:00:c7:b6:d1:fc:83:b8:78:00:49:c4:d2: 96:78:d7:c7:19:f0:bd:de:71:83:1a:10:9a:5d:3f:68:30:02: 04:ba:c9:11:cd:0d:53:bd:69:b9:29:7f:ed:f9:7c:d4:66:56: 94:57:e4:09:98:b3:9f:20:60:89:f3:04:4a:c3:51:40:27:b2: ff:91:b2:83:8b:ce:ff:5c:64:3b:ae:12:96:7f:4d:a7:fd:23: 61:76:95:96:35:41:6e:15:f3:40:1d:1d:6f:d3:f1:22:cb:1a: c7:96:d6:47:db:4d:6b:9c:95:fe:4b:45:cb:00:78:e4:e1:84: c2:41:54:9c:a4:23:1f:0d:0a:31:69:4b:40:aa:7d:dd:a4:3f: 35:27:cd:62:eb:75:22:0b:a9:7a:29:bb:47:0b:06:cf:66:89: 73:be:0c:43:a0:17:e1:1d:c7:ae:43:c6:25:59:55:a5:17:30: 74:5f:b5:46:ca:93:71:ae:13:aa:6e:d7:d4:33:6d:51:00:59: 27:4c:46:90:6b:f0:a6:04:de:26:9e:d1:33:ed:b2:03:2d:3a: 94:d0:b0:1d:b5:c6:a9:b5:cc:a0:87:18:1c:68:db:b4:c1:c1: 1d:9e:c2:ea:14:bb:f5:24:dc:f7:49:0d:43:69:e8:9b:5c:ae: fb:62:d9:dc -----BEGIN CERTIFICATE----- MIIFBTCCA+2gAwIBAgISAZt87Sey9vk8xrk5zkUf3dmJMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJjYmQ3NjY4OGI4N2MwMzkxNGFlMmEyZTE0OTBjMmYxZTkx NDE2NjEwHhcNMjYwMTAyMDQxNzU1WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg4OWI5OWNmNzBiMDk2NmY3MGI5Y2EyYzhmODdhMTkzNmRiNGVkNzMwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtRPbeCCHjN8/B/YaNkc2vXOt/0bz vWk1eIVx0H9s5iwwKtLY+RqsvyH0vBJ9jpBITpZdtblIDcXScULU3DpbM2X84kAb ZYlTbe7k7KfxANZ2pnZUzMAwliImJs0i61zjdXZcheFcywJ+INmKj3SxfSK/ixEj FznyZ01OBrftDweCat9jkTMizEhsDjSadNxZd8vIALkRbYNcLW9oCn/4ztg6OrpG IvXpibzov1gGVM3oOdsDDt4l/CnGT1uv/DNwbOSAIQ7jsQtvNFykUOKt3p+gg51y y95JdMAhha8/mqBF8E1CfqRRP519dAD0nC5ZnwYzHinl3z1DYEKcXPqZgwIDAQAB o4ICETCCAg0wHQYDVR0OBBYEFIm5nPcLCWb3C5yiyPh6GTbbTtcwMB8GA1UdIwQY MBaAFCy9dmiLh8A5FK4qLhSQwvHpFBZhMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvTEwxMmFJdUh3RGtVcmlvdUZKREM4ZWtVRm1FLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mZi82NmI5NTktNDcyZi00OTIyLWEyMjYt ZTBmOTMwODA2YmRjLzEvaWJtYzl3c0padmNMbktMSS1Ib1pOdHRPMXpBLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9mZi82NmI5NTktNDcyZi00OTIyLWEyMjYtZTBmOTMwODA2YmRj LzEvTEwxMmFJdUh3RGtVcmlvdUZKREM4ZWtVRm1FLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCcGCCsGAQUFBwEHAQH/BBgwFjAUBAIAATAOMAwDBAK5L7QD BAC5L7YwDQYJKoZIhvcNAQELBQADggEBAA0O4DGj9wDHttH8g7h4AEnE0pZ418cZ 8L3ecYMaEJpdP2gwAgS6yRHNDVO9abkpf+35fNRmVpRX5AmYs58gYInzBErDUUAn sv+RsoOLzv9cZDuuEpZ/Taf9I2F2lZY1QW4V80AdHW/T8SLLGseW1kfbTWuclf5L RcsAeOThhMJBVJykIx8NCjFpS0Cqfd2kPzUnzWLrdSILqXopu0cLBs9miXO+DEOg F+Edx65DxiVZVaUXMHRftUbKk3GuE6pu19QzbVEAWSdMRpBr8KYE3iae0TPtsgMt OpTQsB21xqm1zKCHGBxo27TBwR2ewuoUu/Uk3PdJDUNp6Jtcrvti2dw= -----END CERTIFICATE-----Generated at Tue Jan 20 04:46:10 2026 by rpki-client