This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/25/481269-dbdb-425e-9642-e1ea41c9a2e6/1/YAeu22loCmAQOVocekZI091KNAY.roa File: YAeu22loCmAQOVocekZI091KNAY.roa (raw, json) Hash identifier: IyieUfnyyVgNIxndlID6xDdRxS+iTHAiCnCvVa6dBlc= Subject key identifier: 60:07:AE:DB:69:68:0A:60:10:39:5A:1C:7A:46:48:D3:DD:4A:34:06 Certificate issuer: /CN=9ce94757ac3f70b40f369307d365ebc9657bab69 Certificate serial: 019B77590E3519CB347A2F1BE5A4D5827153 Authority key identifier: 9C:E9:47:57:AC:3F:70:B4:0F:36:93:07:D3:65:EB:C9:65:7B:AB:69 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nOlHV6w_cLQPNpMH02XryWV7q2k.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/25/481269-dbdb-425e-9642-e1ea41c9a2e6/1/YAeu22loCmAQOVocekZI091KNAY.roa Signing time: Thu 01 Jan 2026 02:18:03 +0000 ROA not before: Thu 01 Jan 2026 02:18:03 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 2200 IP address blocks: 156.28.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/25/481269-dbdb-425e-9642-e1ea41c9a2e6/1/nOlHV6w_cLQPNpMH02XryWV7q2k.crl rsync://rpki.ripe.net/repository/DEFAULT/25/481269-dbdb-425e-9642-e1ea41c9a2e6/1/nOlHV6w_cLQPNpMH02XryWV7q2k.mft rsync://rpki.ripe.net/repository/DEFAULT/nOlHV6w_cLQPNpMH02XryWV7q2k.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 16:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:77:59:0e:35:19:cb:34:7a:2f:1b:e5:a4:d5:82:71:53 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9ce94757ac3f70b40f369307d365ebc9657bab69 Validity Not Before: Jan 1 02:18:03 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=6007aedb69680a6010395a1c7a4648d3dd4a3406 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:07:ca:ca:b2:20:11:4c:d0:d6:ca:09:68:c4: 6f:08:c3:a6:a1:21:06:f6:f3:9d:d3:54:1b:f8:fd: 62:4f:10:53:a2:2d:bb:01:de:31:32:62:e2:c4:d9: f2:c0:f1:b9:d5:1f:bb:ac:46:cc:9a:2e:64:01:fc: 82:9c:6b:50:75:41:50:49:40:fd:8c:c9:23:9b:de: cc:98:e4:c2:17:1f:0e:59:09:1e:5e:5b:15:e1:84: b3:31:a5:c1:83:15:13:5f:0b:95:bd:69:53:e9:58: a2:c9:de:dc:8b:8a:5e:2b:d4:fa:e2:d6:58:3b:4d: c1:e6:12:e8:f9:b5:ed:78:76:3c:6b:fd:e0:29:68: 4c:d1:ce:ed:6e:ee:09:89:ce:6a:28:2f:0f:15:7b: 09:a7:5e:ed:4d:ef:ae:78:cb:45:b8:2e:d4:e1:b2: 35:f3:38:bd:c5:9f:fc:55:50:7a:40:79:cd:96:87: 54:b7:77:43:8b:16:5a:b7:42:5d:b9:2e:88:cb:36: 00:27:00:e4:c6:64:59:9b:43:ff:18:2e:19:e1:a8: be:f0:a7:9b:54:5d:1a:47:b3:4f:1e:c0:59:3e:64: b5:58:3b:be:f5:6f:9a:a6:d0:1a:16:ee:79:f1:40: d1:20:d6:06:0c:f5:5e:d4:a0:ef:8d:06:db:cf:97: 1f:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 60:07:AE:DB:69:68:0A:60:10:39:5A:1C:7A:46:48:D3:DD:4A:34:06 X509v3 Authority Key Identifier: keyid:9C:E9:47:57:AC:3F:70:B4:0F:36:93:07:D3:65:EB:C9:65:7B:AB:69 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nOlHV6w_cLQPNpMH02XryWV7q2k.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/25/481269-dbdb-425e-9642-e1ea41c9a2e6/1/YAeu22loCmAQOVocekZI091KNAY.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/25/481269-dbdb-425e-9642-e1ea41c9a2e6/1/nOlHV6w_cLQPNpMH02XryWV7q2k.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 156.28.0.0/16 Signature Algorithm: sha256WithRSAEncryption 8c:18:12:41:9a:67:fa:54:c5:09:55:26:e9:56:22:7c:1d:6a: 8c:8f:1d:c0:11:a8:aa:7f:4d:a6:e9:dd:3b:b3:98:64:ae:24: 23:bb:3f:ea:86:df:e6:ad:41:6c:42:23:97:86:07:75:c3:28: 57:7c:8d:82:80:9b:05:63:64:56:12:6e:4c:9b:ae:77:80:75: 43:a4:d5:34:a3:df:9b:11:df:2e:f4:a9:58:fe:d9:62:a5:a7: 2f:3c:42:9d:36:9c:ea:50:c8:6b:d6:71:48:72:5b:80:55:a0: 84:b3:4e:99:14:37:b6:c8:be:46:c1:0b:1e:43:85:08:dc:40: c9:f3:54:81:af:ef:5c:81:61:43:f0:30:c2:97:20:aa:37:da: ee:a5:a7:f1:0a:ee:1e:75:d3:c4:d1:eb:06:ea:db:e5:a0:78: 4a:32:7e:ac:2b:91:95:37:19:d2:13:ee:2b:e9:d8:b5:79:bb: 1d:02:a0:8b:11:9c:5a:01:5a:eb:6d:fa:f0:14:0f:c6:97:15: be:3e:56:9a:e3:53:08:73:d1:93:ca:0e:89:52:ba:0b:a5:c4: 1e:26:76:7a:0d:46:9a:5d:30:9a:b5:0f:16:f0:27:98:cf:44: 34:86:9e:ab:80:e8:8c:e5:bf:51:85:f2:29:2f:8e:c3:9a:51: fb:65:63:d3 -----BEGIN CERTIFICATE----- MIIE/DCCA+SgAwIBAgISAZt3WQ41Gcs0ei8b5aTVgnFTMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDljZTk0NzU3YWMzZjcwYjQwZjM2OTMwN2QzNjVlYmM5NjU3 YmFiNjkwHhcNMjYwMTAxMDIxODAzWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg2MDA3YWVkYjY5NjgwYTYwMTAzOTVhMWM3YTQ2NDhkM2RkNGEzNDA2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyAfKyrIgEUzQ1soJaMRvCMOmoSEG 9vOd01Qb+P1iTxBToi27Ad4xMmLixNnywPG51R+7rEbMmi5kAfyCnGtQdUFQSUD9 jMkjm97MmOTCFx8OWQkeXlsV4YSzMaXBgxUTXwuVvWlT6Viiyd7ci4peK9T64tZY O03B5hLo+bXteHY8a/3gKWhM0c7tbu4Jic5qKC8PFXsJp17tTe+ueMtFuC7U4bI1 8zi9xZ/8VVB6QHnNlodUt3dDixZat0JduS6IyzYAJwDkxmRZm0P/GC4Z4ai+8Keb VF0aR7NPHsBZPmS1WDu+9W+aptAaFu558UDRINYGDPVe1KDvjQbbz5cfQwIDAQAB o4ICCDCCAgQwHQYDVR0OBBYEFGAHrttpaApgEDlaHHpGSNPdSjQGMB8GA1UdIwQY MBaAFJzpR1esP3C0DzaTB9Nl68lle6tpMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvbk9sSFY2d19jTFFQTnBNSDAyWHJ5V1Y3cTJrLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yNS80ODEyNjktZGJkYi00MjVlLTk2NDIt ZTFlYTQxYzlhMmU2LzEvWUFldTIybG9DbUFRT1ZvY2VrWkkwOTFLTkFZLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yNS80ODEyNjktZGJkYi00MjVlLTk2NDItZTFlYTQxYzlhMmU2 LzEvbk9sSFY2d19jTFFQTnBNSDAyWHJ5V1Y3cTJrLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB4GCCsGAQUFBwEHAQH/BA8wDTALBAIAATAFAwMAnBwwDQYJ KoZIhvcNAQELBQADggEBAIwYEkGaZ/pUxQlVJulWInwdaoyPHcARqKp/Tabp3Tuz mGSuJCO7P+qG3+atQWxCI5eGB3XDKFd8jYKAmwVjZFYSbkybrneAdUOk1TSj35sR 3y70qVj+2WKlpy88Qp02nOpQyGvWcUhyW4BVoISzTpkUN7bIvkbBCx5DhQjcQMnz VIGv71yBYUPwMMKXIKo32u6lp/EK7h5108TR6wbq2+WgeEoyfqwrkZU3GdIT7ivp 2LV5ux0CoIsRnFoBWutt+vAUD8aXFb4+VprjUwhz0ZPKDolSugulxB4mdnoNRppd MJq1DxbwJ5jPRDSGnquA6Izlv1GF8ikvjsOaUftlY9M= -----END CERTIFICATE-----Generated at Mon Jan 26 00:14:12 2026 by rpki-client