This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/46/081bd4-1210-4021-a864-b50cf5f2aa22/1/mI1bOyES1SUvd3jXkMpsFL9UDNs.roa File: mI1bOyES1SUvd3jXkMpsFL9UDNs.roa (raw, json) Hash identifier: G8pWjV9esRmq6YgXU83pAW+6b6j1UXEhnMOTBHJgNSw= Subject key identifier: 98:8D:5B:3B:21:12:D5:25:2F:77:78:D7:90:CA:6C:14:BF:54:0C:DB Certificate issuer: /CN=83c103d65a54d6af1efba6ac3e63722028af2bb1 Certificate serial: 019B7E39160FFEDB3D9AC2A2FD9D7670363C Authority key identifier: 83:C1:03:D6:5A:54:D6:AF:1E:FB:A6:AC:3E:63:72:20:28:AF:2B:B1 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/g8ED1lpU1q8e-6asPmNyICivK7E.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/46/081bd4-1210-4021-a864-b50cf5f2aa22/1/mI1bOyES1SUvd3jXkMpsFL9UDNs.roa Signing time: Fri 02 Jan 2026 10:20:28 +0000 ROA not before: Fri 02 Jan 2026 10:20:28 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 139070 IP address blocks: 66.22.228.0/23 maxlen: 24 66.22.228.0/24 maxlen: 24 66.22.229.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/46/081bd4-1210-4021-a864-b50cf5f2aa22/1/g8ED1lpU1q8e-6asPmNyICivK7E.crl rsync://rpki.ripe.net/repository/DEFAULT/46/081bd4-1210-4021-a864-b50cf5f2aa22/1/g8ED1lpU1q8e-6asPmNyICivK7E.mft rsync://rpki.ripe.net/repository/DEFAULT/g8ED1lpU1q8e-6asPmNyICivK7E.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 03 Jan 2026 19:00:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7e:39:16:0f:fe:db:3d:9a:c2:a2:fd:9d:76:70:36:3c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=83c103d65a54d6af1efba6ac3e63722028af2bb1 Validity Not Before: Jan 2 10:20:28 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=988d5b3b2112d5252f7778d790ca6c14bf540cdb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:c2:46:38:de:58:31:3e:cc:ce:61:69:81:7a: cc:41:f1:ad:06:7c:79:d4:91:4c:1a:08:ca:09:4b: 34:26:66:7f:e8:76:49:4b:be:c9:4f:a8:4a:e6:21: ee:f9:07:3c:39:66:68:9b:eb:8c:3d:ad:18:82:9b: 67:0a:04:32:73:38:e7:a6:c0:1a:7e:2e:32:7a:81: f7:9d:bc:d9:6f:0a:00:70:64:ac:28:c3:3e:ac:e7: 6f:88:12:c0:06:1b:b9:53:dc:2e:3b:41:a2:d5:3b: 3e:89:e5:25:77:a5:1d:33:fc:eb:79:7e:00:2e:c3: 6a:34:84:74:a9:16:5a:01:65:48:bb:84:26:8a:30: 58:62:08:23:d3:44:f7:3e:03:33:e6:82:f6:bf:82: 78:1f:ef:bc:f6:b8:ba:ee:ab:d9:11:25:3e:1c:cd: 64:34:f7:41:29:3a:cf:bb:2f:a6:63:2e:92:31:68: 70:35:40:67:6d:d1:e9:75:6f:07:7d:d7:a8:36:d8: ba:c5:cb:f6:a0:ac:28:9d:2f:5d:ad:5d:18:3a:5c: 08:d8:b9:4e:81:33:75:13:ef:ba:3b:11:44:87:05: 27:60:60:09:53:e0:97:39:bd:c5:65:0b:f6:e1:01: 47:57:73:b1:4f:95:9f:7f:6a:2f:23:9c:2f:ea:5c: 2a:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 98:8D:5B:3B:21:12:D5:25:2F:77:78:D7:90:CA:6C:14:BF:54:0C:DB X509v3 Authority Key Identifier: keyid:83:C1:03:D6:5A:54:D6:AF:1E:FB:A6:AC:3E:63:72:20:28:AF:2B:B1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/g8ED1lpU1q8e-6asPmNyICivK7E.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/46/081bd4-1210-4021-a864-b50cf5f2aa22/1/mI1bOyES1SUvd3jXkMpsFL9UDNs.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/46/081bd4-1210-4021-a864-b50cf5f2aa22/1/g8ED1lpU1q8e-6asPmNyICivK7E.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 66.22.228.0/23 Signature Algorithm: sha256WithRSAEncryption 95:d1:08:15:55:12:3d:dd:ee:dc:3c:96:9d:ea:a8:c2:06:f5: 73:75:3e:22:a0:9c:a7:d4:51:0c:c5:c6:54:28:7f:75:48:e6: 7f:fe:41:0b:25:07:bf:d3:1a:a5:2f:ae:b7:e7:92:f7:26:b9: 8c:83:6d:86:cc:52:26:dd:5e:81:ad:ba:b4:f6:50:12:77:f4: 5b:0c:e8:16:62:4a:37:8e:da:e2:3d:8c:00:7b:32:c5:65:63: b5:0c:bd:cd:4c:83:17:66:11:59:05:45:d6:08:1c:bb:ce:0b: 3b:cd:28:91:c6:ea:00:23:c3:41:16:09:96:d7:12:4a:3f:91: 2c:ae:58:3c:d0:a5:d8:d8:58:5a:c1:6b:c3:a2:34:df:15:ba: 2c:1b:94:20:53:82:19:35:cc:10:73:4d:e8:06:2f:57:03:9a: 00:ab:60:69:86:cf:00:73:4d:ef:16:26:a3:cf:89:ba:48:01: 7b:15:bd:b2:2c:e9:45:81:17:93:6a:7a:07:f9:1e:af:58:73: f1:f3:24:b8:0c:4b:8f:a4:c7:4a:04:54:a3:00:61:56:6b:51: 22:01:74:93:b2:3e:5f:41:5f:9b:56:2a:df:b0:b3:f0:f4:af: 5e:93:29:0d:ee:dc:de:56:1f:c7:bc:6d:7d:59:27:89:62:cb: 55:b1:9d:d6 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt+ORYP/ts9msKi/Z12cDY8MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDgzYzEwM2Q2NWE1NGQ2YWYxZWZiYTZhYzNlNjM3MjIwMjhh ZjJiYjEwHhcNMjYwMTAyMTAyMDI4WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg5ODhkNWIzYjIxMTJkNTI1MmY3Nzc4ZDc5MGNhNmMxNGJmNTQwY2RiMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvcJGON5YMT7MzmFpgXrMQfGtBnx5 1JFMGgjKCUs0JmZ/6HZJS77JT6hK5iHu+Qc8OWZom+uMPa0YgptnCgQyczjnpsAa fi4yeoH3nbzZbwoAcGSsKMM+rOdviBLABhu5U9wuO0Gi1Ts+ieUld6UdM/zreX4A LsNqNIR0qRZaAWVIu4QmijBYYggj00T3PgMz5oL2v4J4H++89ri67qvZESU+HM1k NPdBKTrPuy+mYy6SMWhwNUBnbdHpdW8HfdeoNti6xcv2oKwonS9drV0YOlwI2LlO gTN1E++6OxFEhwUnYGAJU+CXOb3FZQv24QFHV3OxT5Wff2ovI5wv6lwqFQIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFJiNWzshEtUlL3d415DKbBS/VAzbMB8GA1UdIwQY MBaAFIPBA9ZaVNavHvumrD5jciAoryuxMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvZzhFRDFscFUxcThlLTZhc1BtTnlJQ2l2SzdFLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80Ni8wODFiZDQtMTIxMC00MDIxLWE4NjQt YjUwY2Y1ZjJhYTIyLzEvbUkxYk95RVMxU1V2ZDNqWGtNcHNGTDlVRE5zLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC80Ni8wODFiZDQtMTIxMC00MDIxLWE4NjQtYjUwY2Y1ZjJhYTIy LzEvZzhFRDFscFUxcThlLTZhc1BtTnlJQ2l2SzdFLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBQhbkMA0G CSqGSIb3DQEBCwUAA4IBAQCV0QgVVRI93e7cPJad6qjCBvVzdT4ioJyn1FEMxcZU KH91SOZ//kELJQe/0xqlL66355L3JrmMg22GzFIm3V6Brbq09lASd/RbDOgWYko3 jtriPYwAezLFZWO1DL3NTIMXZhFZBUXWCBy7zgs7zSiRxuoAI8NBFgmW1xJKP5Es rlg80KXY2FhawWvDojTfFbosG5QgU4IZNcwQc03oBi9XA5oAq2Bphs8Ac03vFiaj z4m6SAF7Fb2yLOlFgReTanoH+R6vWHPx8yS4DEuPpMdKBFSjAGFWa1EiAXSTsj5f QV+bVirfsLPw9K9ekykN7tzeVh/HvG19WSeJYstVsZ3W -----END CERTIFICATE-----Generated at Sat Jan 3 03:52:47 2026 by rpki-client