This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0a/d9a01c-5c91-4d00-a09a-f8792f577b9a/1/YjThpUKY8dmKpHgsGQ94ajjW1mw.roa File: YjThpUKY8dmKpHgsGQ94ajjW1mw.roa (raw, json) Hash identifier: mU028HajfQlA+sa9l/YSlDKUMFBYx7IaDAclqqbnoIg= Subject key identifier: 62:34:E1:A5:42:98:F1:D9:8A:A4:78:2C:19:0F:78:6A:38:D6:D6:6C Certificate issuer: /CN=75386a6fae1e55f576a405bd74b7f08e7a6c4653 Certificate serial: 019B7AC90DD3C361D09218A303BAED9252FD Authority key identifier: 75:38:6A:6F:AE:1E:55:F5:76:A4:05:BD:74:B7:F0:8E:7A:6C:46:53 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dThqb64eVfV2pAW9dLfwjnpsRlM.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0a/d9a01c-5c91-4d00-a09a-f8792f577b9a/1/YjThpUKY8dmKpHgsGQ94ajjW1mw.roa Signing time: Thu 01 Jan 2026 18:19:15 +0000 ROA not before: Thu 01 Jan 2026 18:19:15 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 62000 IP address blocks: 185.163.124.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0a/d9a01c-5c91-4d00-a09a-f8792f577b9a/1/dThqb64eVfV2pAW9dLfwjnpsRlM.crl rsync://rpki.ripe.net/repository/DEFAULT/0a/d9a01c-5c91-4d00-a09a-f8792f577b9a/1/dThqb64eVfV2pAW9dLfwjnpsRlM.mft rsync://rpki.ripe.net/repository/DEFAULT/dThqb64eVfV2pAW9dLfwjnpsRlM.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 13:21:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7a:c9:0d:d3:c3:61:d0:92:18:a3:03:ba:ed:92:52:fd Signature Algorithm: sha256WithRSAEncryption Issuer: CN=75386a6fae1e55f576a405bd74b7f08e7a6c4653 Validity Not Before: Jan 1 18:19:15 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=6234e1a54298f1d98aa4782c190f786a38d6d66c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:79:42:a0:c2:42:8d:95:4c:8e:9f:51:02:34: a2:17:05:9c:78:6a:66:f4:39:fc:04:c6:1c:b2:af: d1:e1:d1:e5:a0:c4:75:6f:1f:a1:49:39:14:e4:e3: 00:51:e0:56:96:6c:cd:dc:65:77:4e:32:79:4e:bc: 08:ae:db:34:11:9d:71:42:f5:bd:31:ee:1e:ac:f1: 58:d6:cf:9f:c8:4f:d7:31:2c:c4:ee:ef:44:e7:4c: 20:fb:08:eb:66:5b:13:90:32:01:05:e1:12:e8:38: bd:a6:03:19:78:0e:9d:07:ff:30:a4:1e:fe:5f:70: 9f:e3:26:36:9a:32:4a:03:f7:ae:45:05:22:55:27: 94:4a:ef:80:2d:a7:29:36:fa:17:96:c2:d6:bc:8a: 53:f0:db:77:2b:28:1e:3c:f6:1f:79:20:e2:36:4b: 40:1f:9f:8c:2d:75:9a:79:c6:a7:39:fd:e5:37:38: e5:6a:bd:a0:15:f5:1c:2c:26:c3:08:a8:96:28:f6: 70:d0:0d:c1:bc:8b:58:05:61:b4:69:46:22:ac:70: 83:a6:1b:55:6b:18:74:e9:6c:26:11:9e:2e:a9:13: cc:f1:7e:c0:66:15:0e:dc:a5:c5:cb:0f:a6:9d:f5: 96:4d:eb:b9:37:5b:1f:01:e7:2d:d8:61:10:d0:20: 5a:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 62:34:E1:A5:42:98:F1:D9:8A:A4:78:2C:19:0F:78:6A:38:D6:D6:6C X509v3 Authority Key Identifier: keyid:75:38:6A:6F:AE:1E:55:F5:76:A4:05:BD:74:B7:F0:8E:7A:6C:46:53 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dThqb64eVfV2pAW9dLfwjnpsRlM.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0a/d9a01c-5c91-4d00-a09a-f8792f577b9a/1/YjThpUKY8dmKpHgsGQ94ajjW1mw.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/0a/d9a01c-5c91-4d00-a09a-f8792f577b9a/1/dThqb64eVfV2pAW9dLfwjnpsRlM.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.163.124.0/22 Signature Algorithm: sha256WithRSAEncryption 0d:54:a9:18:ad:7e:88:48:f9:f3:e5:7e:52:34:7c:c6:a5:b8: ac:bc:23:b5:75:ae:36:a5:f7:b7:bb:f2:1c:e6:e7:9f:d0:fe: 6f:6d:87:22:0c:71:74:b9:51:a7:fa:5f:49:bd:99:69:a0:85: 68:72:00:27:07:fb:1f:bd:69:95:36:d2:c7:38:a5:f7:fc:23: 4f:39:55:0b:34:f9:d0:02:7d:fc:f2:e8:92:ea:ea:ee:13:4c: 3d:2b:ad:df:58:e2:d4:c1:12:17:f1:b3:61:f5:11:59:48:f9: 49:1e:43:62:aa:70:80:d7:58:27:d0:cd:13:0d:d3:80:4c:b1: 44:1a:74:9a:37:3b:bf:6e:96:1d:6c:bc:0c:cb:79:69:79:34: e8:bf:22:27:4f:de:0a:78:44:b5:8a:51:46:d4:bc:b1:84:54: 08:0e:2c:cb:28:18:d8:95:93:d1:9b:38:22:d9:a8:2a:bf:26: 59:bf:d5:d4:7a:66:4c:b5:b9:1e:52:47:f8:fd:9c:ab:02:3c: f5:c4:18:fa:86:ea:3d:70:c1:eb:50:a0:d3:15:ed:c6:16:a5: ec:04:0e:a8:4b:fd:8d:42:c7:67:58:52:57:de:4c:6b:f8:77: 01:bb:4f:55:22:48:e6:85:a3:30:69:6c:46:9d:13:97:4a:70: 73:4f:50:a7 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt6yQ3Tw2HQkhijA7rtklL9MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDc1Mzg2YTZmYWUxZTU1ZjU3NmE0MDViZDc0YjdmMDhlN2E2 YzQ2NTMwHhcNMjYwMTAxMTgxOTE1WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg2MjM0ZTFhNTQyOThmMWQ5OGFhNDc4MmMxOTBmNzg2YTM4ZDZkNjZjMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAznlCoMJCjZVMjp9RAjSiFwWceGpm 9Dn8BMYcsq/R4dHloMR1bx+hSTkU5OMAUeBWlmzN3GV3TjJ5TrwIrts0EZ1xQvW9 Me4erPFY1s+fyE/XMSzE7u9E50wg+wjrZlsTkDIBBeES6Di9pgMZeA6dB/8wpB7+ X3Cf4yY2mjJKA/euRQUiVSeUSu+ALacpNvoXlsLWvIpT8Nt3KygePPYfeSDiNktA H5+MLXWaecanOf3lNzjlar2gFfUcLCbDCKiWKPZw0A3BvItYBWG0aUYirHCDphtV axh06WwmEZ4uqRPM8X7AZhUO3KXFyw+mnfWWTeu5N1sfAect2GEQ0CBazQIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFGI04aVCmPHZiqR4LBkPeGo41tZsMB8GA1UdIwQY MBaAFHU4am+uHlX1dqQFvXS38I56bEZTMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvZFRocWI2NGVWZlYycEFXOWRMZndqbnBzUmxNLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wYS9kOWEwMWMtNWM5MS00ZDAwLWEwOWEt Zjg3OTJmNTc3YjlhLzEvWWpUaHBVS1k4ZG1LcEhnc0dROTRhampXMW13LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wYS9kOWEwMWMtNWM5MS00ZDAwLWEwOWEtZjg3OTJmNTc3Yjlh LzEvZFRocWI2NGVWZlYycEFXOWRMZndqbnBzUmxNLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCuaN8MA0G CSqGSIb3DQEBCwUAA4IBAQANVKkYrX6ISPnz5X5SNHzGpbisvCO1da42pfe3u/Ic 5uef0P5vbYciDHF0uVGn+l9JvZlpoIVocgAnB/sfvWmVNtLHOKX3/CNPOVULNPnQ An388uiS6uruE0w9K63fWOLUwRIX8bNh9RFZSPlJHkNiqnCA11gn0M0TDdOATLFE GnSaNzu/bpYdbLwMy3lpeTTovyInT94KeES1ilFG1LyxhFQIDizLKBjYlZPRmzgi 2agqvyZZv9XUemZMtbkeUkf4/ZyrAjz1xBj6huo9cMHrUKDTFe3GFqXsBA6oS/2N QsdnWFJX3kxr+HcBu09VIkjmhaMwaWxGnROXSnBzT1Cn -----END CERTIFICATE-----Generated at Sun Jan 25 23:33:09 2026 by rpki-client