This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/00/64e49a-5fe1-45c2-8310-34a9e98a5f86/1/jYy2uYNL4nb69qr5FWiz-y5I14g.roa File: jYy2uYNL4nb69qr5FWiz-y5I14g.roa (raw, json) Hash identifier: uK2ZzVfws+izj4DF8qyLOr4woZd1HOHCjMW0FZXm+bY= Subject key identifier: 8D:8C:B6:B9:83:4B:E2:76:FA:F6:AA:F9:15:68:B3:FB:2E:48:D7:88 Certificate issuer: /CN=066369e2705cb433db0658ab666d08b67b1551dc Certificate serial: 019B77C65F78F68DC407893F017AABBAB7F2 Authority key identifier: 06:63:69:E2:70:5C:B4:33:DB:06:58:AB:66:6D:08:B6:7B:15:51:DC Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BmNp4nBctDPbBlirZm0ItnsVUdw.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/00/64e49a-5fe1-45c2-8310-34a9e98a5f86/1/jYy2uYNL4nb69qr5FWiz-y5I14g.roa Signing time: Thu 01 Jan 2026 04:17:27 +0000 ROA not before: Thu 01 Jan 2026 04:17:27 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 197308 IP address blocks: 5.179.112.0/21 maxlen: 21 31.216.32.0/21 maxlen: 21 81.91.0.0/20 maxlen: 20 176.57.88.0/22 maxlen: 22 185.21.144.0/22 maxlen: 22 185.27.240.0/22 maxlen: 22 193.108.0.0/21 maxlen: 21 193.108.0.0/24 maxlen: 24 193.108.1.0/24 maxlen: 24 193.108.2.0/23 maxlen: 23 193.108.4.0/24 maxlen: 24 193.108.5.0/24 maxlen: 24 193.108.6.0/24 maxlen: 24 213.180.64.0/19 maxlen: 19 2a00:5860::/32 maxlen: 32 2a03:2f80::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/00/64e49a-5fe1-45c2-8310-34a9e98a5f86/1/BmNp4nBctDPbBlirZm0ItnsVUdw.crl rsync://rpki.ripe.net/repository/DEFAULT/00/64e49a-5fe1-45c2-8310-34a9e98a5f86/1/BmNp4nBctDPbBlirZm0ItnsVUdw.mft rsync://rpki.ripe.net/repository/DEFAULT/BmNp4nBctDPbBlirZm0ItnsVUdw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 16:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:77:c6:5f:78:f6:8d:c4:07:89:3f:01:7a:ab:ba:b7:f2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=066369e2705cb433db0658ab666d08b67b1551dc Validity Not Before: Jan 1 04:17:27 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=8d8cb6b9834be276faf6aaf91568b3fb2e48d788 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:92:46:b8:ce:00:cf:66:d9:02:91:9c:bf:a3: 42:73:88:1d:ea:58:a9:9d:87:d7:f4:72:75:ed:1f: 6e:09:92:11:a2:b5:0c:6c:d3:c7:e6:e2:58:7c:01: 8b:00:3b:9c:0b:51:bc:2a:cf:57:aa:27:4d:70:30: 45:cf:61:68:b0:a2:a2:c7:8d:80:aa:dd:78:ff:c0: 65:d1:04:fa:d5:8e:35:b3:3c:ab:14:99:34:9b:9a: ef:1a:54:1d:d4:a6:c4:72:57:0e:c1:b4:10:bf:8e: b0:65:7f:9a:81:d2:40:af:38:d9:95:66:2a:96:87: 02:94:0a:1a:ca:7b:1a:c8:98:cc:09:28:3d:da:14: 46:94:65:0e:7f:cf:ab:cc:67:28:75:1c:50:a3:57: 7c:8c:e7:02:8a:fb:99:91:19:25:a0:2a:8c:d3:1b: bb:6b:5a:b5:3e:99:df:30:06:0d:6e:3e:ae:d0:6a: c4:7b:17:f8:3c:43:ec:fa:fe:63:c7:78:b0:88:2a: 12:e0:93:06:33:70:42:59:c6:da:f0:cf:4e:ec:e2: e3:83:37:4e:26:65:89:6a:3e:b6:df:69:23:3a:0f: 77:0a:10:c4:c9:8b:39:c4:88:1b:77:d9:eb:5b:b6: ad:f5:f7:5e:66:15:77:44:a8:4c:c8:70:d1:12:6e: 8b:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8D:8C:B6:B9:83:4B:E2:76:FA:F6:AA:F9:15:68:B3:FB:2E:48:D7:88 X509v3 Authority Key Identifier: keyid:06:63:69:E2:70:5C:B4:33:DB:06:58:AB:66:6D:08:B6:7B:15:51:DC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BmNp4nBctDPbBlirZm0ItnsVUdw.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/00/64e49a-5fe1-45c2-8310-34a9e98a5f86/1/jYy2uYNL4nb69qr5FWiz-y5I14g.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/00/64e49a-5fe1-45c2-8310-34a9e98a5f86/1/BmNp4nBctDPbBlirZm0ItnsVUdw.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 5.179.112.0/21 31.216.32.0/21 81.91.0.0/20 176.57.88.0/22 185.21.144.0/22 185.27.240.0/22 193.108.0.0/21 213.180.64.0/19 IPv6: 2a00:5860::/32 2a03:2f80::/32 Signature Algorithm: sha256WithRSAEncryption 58:f0:e4:c0:bf:ac:81:73:df:61:3a:18:2b:48:71:35:0b:63: 2a:39:8d:f7:93:ea:b6:da:25:d0:e0:69:a1:30:a7:1d:6b:5e: fe:8e:b9:98:43:2d:77:f1:4a:bd:4b:a7:7f:8b:7f:91:b2:0a: 2b:d2:29:ba:71:41:bc:3c:48:96:14:95:fe:8d:91:67:b0:c7: 3d:b6:13:19:b1:d5:81:89:4d:23:e3:4d:85:23:a3:96:f9:89: b4:1d:35:89:61:bd:17:47:0d:e0:1c:36:b3:9c:d7:a7:a9:18: 47:c5:98:7b:ce:3e:e5:dd:8c:a8:84:5e:dd:b5:c5:7b:51:32: 81:a8:b1:c2:0e:f0:84:8f:df:d1:3f:ea:19:ac:26:d0:6f:52: 63:e9:b4:7a:cd:3b:b9:2e:bf:05:d1:05:e1:04:b3:fd:d3:6f: ef:66:57:05:a6:ed:f0:46:01:be:22:f8:3d:05:90:38:b7:f9: 8a:a6:9b:0e:56:ac:b5:c7:9b:4f:82:63:75:8e:b4:50:12:5c: b0:24:23:f4:9e:c7:59:4e:2c:45:b1:30:49:28:62:22:e1:7c: 7d:7d:69:13:de:59:44:fa:5a:7f:de:93:e0:20:06:c0:ad:9b: 6e:9e:be:da:09:dd:62:7e:01:c3:18:46:ad:c5:56:7f:68:d7: 1f:b7:68:f3 -----BEGIN CERTIFICATE----- MIIFPTCCBCWgAwIBAgISAZt3xl949o3EB4k/AXqrurfyMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDA2NjM2OWUyNzA1Y2I0MzNkYjA2NThhYjY2NmQwOGI2N2Ix NTUxZGMwHhcNMjYwMTAxMDQxNzI3WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg4ZDhjYjZiOTgzNGJlMjc2ZmFmNmFhZjkxNTY4YjNmYjJlNDhkNzg4MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAypJGuM4Az2bZApGcv6NCc4gd6lip nYfX9HJ17R9uCZIRorUMbNPH5uJYfAGLADucC1G8Ks9XqidNcDBFz2FosKKix42A qt14/8Bl0QT61Y41szyrFJk0m5rvGlQd1KbEclcOwbQQv46wZX+agdJArzjZlWYq locClAoaynsayJjMCSg92hRGlGUOf8+rzGcodRxQo1d8jOcCivuZkRkloCqM0xu7 a1q1PpnfMAYNbj6u0GrEexf4PEPs+v5jx3iwiCoS4JMGM3BCWcba8M9O7OLjgzdO JmWJaj6232kjOg93ChDEyYs5xIgbd9nrW7at9fdeZhV3RKhMyHDREm6L1QIDAQAB o4ICSTCCAkUwHQYDVR0OBBYEFI2MtrmDS+J2+vaq+RVos/suSNeIMB8GA1UdIwQY MBaAFAZjaeJwXLQz2wZYq2ZtCLZ7FVHcMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvQm1OcDRuQmN0RFBiQmxpclptMEl0bnNWVWR3LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wMC82NGU0OWEtNWZlMS00NWMyLTgzMTAt MzRhOWU5OGE1Zjg2LzEvall5MnVZTkw0bmI2OXFyNUZXaXoteTVJMTRnLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wMC82NGU0OWEtNWZlMS00NWMyLTgzMTAtMzRhOWU5OGE1Zjg2 LzEvQm1OcDRuQmN0RFBiQmxpclptMEl0bnNWVWR3LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMF8GCCsGAQUFBwEHAQH/BFAwTjA2BAIAATAwAwQDBbNwAwQD H9ggAwQEUVsAAwQCsDlYAwQCuRWQAwQCuRvwAwQDwWwAAwQF1bRAMBQEAgACMA4D BQAqAFhgAwUAKgMvgDANBgkqhkiG9w0BAQsFAAOCAQEAWPDkwL+sgXPfYToYK0hx NQtjKjmN95Pqttol0OBpoTCnHWte/o65mEMtd/FKvUunf4t/kbIKK9IpunFBvDxI lhSV/o2RZ7DHPbYTGbHVgYlNI+NNhSOjlvmJtB01iWG9F0cN4Bw2s5zXp6kYR8WY e84+5d2MqIRe3bXFe1Eygaixwg7whI/f0T/qGawm0G9SY+m0es07uS6/BdEF4QSz /dNv72ZXBabt8EYBviL4PQWQOLf5iqabDlastcebT4JjdY60UBJcsCQj9J7HWU4s RbEwSShiIuF8fX1pE95ZRPpaf96T4CAGwK2bbp6+2gndYn4BwxhGrcVWf2jXH7do 8w== -----END CERTIFICATE-----Generated at Mon Jan 26 01:44:02 2026 by rpki-client