This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/20/6db427-f7dc-4ea9-ae95-41490872fc4e/1/yNd_DMkIMvgYnrn_7Wsari1U2DE.roa File: yNd_DMkIMvgYnrn_7Wsari1U2DE.roa (raw, json) Hash identifier: IEhZvaGq91qhQu5JNN1NRfY/8v2XmumSPV2Zm2UUU6I= Subject key identifier: C8:D7:7F:0C:C9:08:32:F8:18:9E:B9:FF:ED:6B:1A:AE:2D:54:D8:31 Certificate issuer: /CN=0969a2a39635b797476f1f1633ae8f27bf33b533 Certificate serial: 019B77C763D7A3C7AA1FCA5B2F202C3429F2 Authority key identifier: 09:69:A2:A3:96:35:B7:97:47:6F:1F:16:33:AE:8F:27:BF:33:B5:33 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CWmio5Y1t5dHbx8WM66PJ78ztTM.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/20/6db427-f7dc-4ea9-ae95-41490872fc4e/1/yNd_DMkIMvgYnrn_7Wsari1U2DE.roa Signing time: Thu 01 Jan 2026 04:18:34 +0000 ROA not before: Thu 01 Jan 2026 04:18:34 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 207709 IP address blocks: 2.56.152.0/24 maxlen: 24 2.56.153.0/24 maxlen: 24 2.56.154.0/24 maxlen: 24 2.56.155.0/24 maxlen: 24 185.242.160.0/24 maxlen: 24 185.242.161.0/24 maxlen: 24 185.242.162.0/24 maxlen: 24 185.242.163.0/24 maxlen: 24 195.85.216.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/20/6db427-f7dc-4ea9-ae95-41490872fc4e/1/CWmio5Y1t5dHbx8WM66PJ78ztTM.crl rsync://rpki.ripe.net/repository/DEFAULT/20/6db427-f7dc-4ea9-ae95-41490872fc4e/1/CWmio5Y1t5dHbx8WM66PJ78ztTM.mft rsync://rpki.ripe.net/repository/DEFAULT/CWmio5Y1t5dHbx8WM66PJ78ztTM.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 27 Jan 2026 01:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:77:c7:63:d7:a3:c7:aa:1f:ca:5b:2f:20:2c:34:29:f2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0969a2a39635b797476f1f1633ae8f27bf33b533 Validity Not Before: Jan 1 04:18:34 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=c8d77f0cc90832f8189eb9ffed6b1aae2d54d831 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:71:6f:f8:20:d4:6b:01:ef:ac:43:a5:79:19: 06:65:4e:d9:41:75:48:df:1c:45:45:a6:43:1b:e4: 82:28:51:c3:b7:7b:86:11:af:fc:ba:e6:aa:9f:b2: 8e:51:36:17:40:72:19:b9:c9:97:77:ba:ea:50:5a: f7:8f:05:8f:f1:98:a0:90:2d:6d:a1:b6:45:1f:74: 24:18:61:f9:2e:d9:c9:fa:91:35:20:41:26:85:65: 5c:5d:3b:64:d1:51:24:94:c9:3d:a0:f6:e2:38:cb: f3:db:70:8e:46:b8:b2:60:92:05:17:ba:14:b4:2e: 7c:f7:90:f7:f0:db:09:ad:3c:2b:60:fc:fc:fb:c7: 26:46:d2:ac:c2:27:62:63:a1:d0:f8:dd:51:42:b5: e2:18:f8:6c:9f:1a:7b:fd:ee:52:d6:3c:a6:e9:f3: 96:43:6e:fe:79:92:4f:e5:24:13:e4:fc:da:b3:45: de:f8:c2:9f:80:cc:17:a1:a3:e8:7b:b5:b1:a1:00: 91:ca:8b:0a:0f:e5:26:7f:e4:be:e8:2b:ca:99:6b: 3c:2d:44:f8:d1:7c:ac:a9:23:58:a6:99:32:78:b7: da:4c:31:b7:0c:d3:32:b2:25:f7:72:63:27:41:06: 2d:69:d7:e3:7a:02:4d:35:5c:37:06:7f:db:d2:86: 9e:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C8:D7:7F:0C:C9:08:32:F8:18:9E:B9:FF:ED:6B:1A:AE:2D:54:D8:31 X509v3 Authority Key Identifier: keyid:09:69:A2:A3:96:35:B7:97:47:6F:1F:16:33:AE:8F:27:BF:33:B5:33 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CWmio5Y1t5dHbx8WM66PJ78ztTM.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/20/6db427-f7dc-4ea9-ae95-41490872fc4e/1/yNd_DMkIMvgYnrn_7Wsari1U2DE.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/20/6db427-f7dc-4ea9-ae95-41490872fc4e/1/CWmio5Y1t5dHbx8WM66PJ78ztTM.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 2.56.152.0/22 185.242.160.0/22 195.85.216.0/24 Signature Algorithm: sha256WithRSAEncryption 96:18:4c:0d:45:2c:4a:a8:86:7a:de:fe:9d:13:10:9f:1c:fb: 6e:20:20:8a:fa:57:e0:f8:31:69:e1:4c:e9:46:e9:ca:aa:8e: cc:63:c6:68:db:f7:76:e3:fb:f7:97:03:35:9b:f1:bc:21:3d: a0:f1:3a:48:fd:e5:10:a0:b8:ce:6b:7d:be:3c:78:74:4c:d2: 1a:51:96:81:49:f0:c2:13:74:c3:4f:1f:94:86:0c:cc:ac:ab: 0e:6d:78:97:a3:2f:6c:04:14:13:f5:1d:4f:13:cf:a7:e3:33: d4:02:f3:18:cd:65:1b:dc:56:98:6a:6d:f9:85:81:c3:9d:02: 26:50:31:96:40:a6:3d:28:c1:62:5e:ed:dd:0c:d4:ea:f1:85: cf:f6:d9:eb:d4:e5:91:e3:f3:b0:59:8d:3c:b1:76:ed:7d:af: b1:41:8c:52:4e:a2:21:80:e6:06:bd:5d:4e:97:2f:83:0d:84: e2:39:39:3a:d2:81:ea:5c:b7:01:54:2e:d5:52:0b:13:ca:39: 22:bc:8b:a0:11:93:de:ee:b1:04:6e:c3:f9:84:3e:07:63:50: f3:8f:1c:08:5c:ce:1d:c5:e9:5b:52:09:df:63:c2:e7:1b:fe: e9:68:d4:bd:01:87:af:4f:c5:52:28:d6:2c:9b:72:60:c0:33: 8e:04:b3:88 -----BEGIN CERTIFICATE----- MIIFCTCCA/GgAwIBAgISAZt3x2PXo8eqH8pbLyAsNCnyMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDA5NjlhMmEzOTYzNWI3OTc0NzZmMWYxNjMzYWU4ZjI3YmYz M2I1MzMwHhcNMjYwMTAxMDQxODM0WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhjOGQ3N2YwY2M5MDgzMmY4MTg5ZWI5ZmZlZDZiMWFhZTJkNTRkODMxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwXFv+CDUawHvrEOleRkGZU7ZQXVI 3xxFRaZDG+SCKFHDt3uGEa/8uuaqn7KOUTYXQHIZucmXd7rqUFr3jwWP8ZigkC1t obZFH3QkGGH5LtnJ+pE1IEEmhWVcXTtk0VEklMk9oPbiOMvz23CORriyYJIFF7oU tC5895D38NsJrTwrYPz8+8cmRtKswidiY6HQ+N1RQrXiGPhsnxp7/e5S1jym6fOW Q27+eZJP5SQT5Pzas0Xe+MKfgMwXoaPoe7WxoQCRyosKD+Umf+S+6CvKmWs8LUT4 0XysqSNYppkyeLfaTDG3DNMysiX3cmMnQQYtadfjegJNNVw3Bn/b0oaenQIDAQAB o4ICFTCCAhEwHQYDVR0OBBYEFMjXfwzJCDL4GJ65/+1rGq4tVNgxMB8GA1UdIwQY MBaAFAlpoqOWNbeXR28fFjOujye/M7UzMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvQ1dtaW81WTF0NWRIYng4V002NlBKNzh6dFRNLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yMC82ZGI0MjctZjdkYy00ZWE5LWFlOTUt NDE0OTA4NzJmYzRlLzEveU5kX0RNa0lNdmdZbnJuXzdXc2FyaTFVMkRFLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yMC82ZGI0MjctZjdkYy00ZWE5LWFlOTUtNDE0OTA4NzJmYzRl LzEvQ1dtaW81WTF0NWRIYng4V002NlBKNzh6dFRNLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCsGCCsGAQUFBwEHAQH/BBwwGjAYBAIAATASAwQCAjiYAwQC ufKgAwQAw1XYMA0GCSqGSIb3DQEBCwUAA4IBAQCWGEwNRSxKqIZ63v6dExCfHPtu ICCK+lfg+DFp4UzpRunKqo7MY8Zo2/d24/v3lwM1m/G8IT2g8TpI/eUQoLjOa32+ PHh0TNIaUZaBSfDCE3TDTx+UhgzMrKsObXiXoy9sBBQT9R1PE8+n4zPUAvMYzWUb 3FaYam35hYHDnQImUDGWQKY9KMFiXu3dDNTq8YXP9tnr1OWR4/OwWY08sXbtfa+x QYxSTqIhgOYGvV1Oly+DDYTiOTk60oHqXLcBVC7VUgsTyjkivIugEZPe7rEEbsP5 hD4HY1DzjxwIXM4dxelbUgnfY8LnG/7paNS9AYevT8VSKNYsm3JgwDOOBLOI -----END CERTIFICATE-----Generated at Mon Jan 26 11:05:03 2026 by rpki-client