This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/33/863ba0-0476-43d7-8be7-66eda228fec7/1/0kY6OhYo0S_p-TBiI-10NgXfoNY.roa File: 0kY6OhYo0S_p-TBiI-10NgXfoNY.roa (raw, json) Hash identifier: iP04yPh9hD6VA4QlzUY//5ykcFDzpWeK08TGnMp/HjE= Subject key identifier: D2:46:3A:3A:16:28:D1:2F:E9:F9:30:62:23:ED:74:36:05:DF:A0:D6 Certificate issuer: /CN=bc4703e08ca0d6a310cbc643ffcb307ff6cdc65c Certificate serial: 019B7C803CC796C5354D955E823310DD1805 Authority key identifier: BC:47:03:E0:8C:A0:D6:A3:10:CB:C6:43:FF:CB:30:7F:F6:CD:C6:5C Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vEcD4Iyg1qMQy8ZD_8swf_bNxlw.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/33/863ba0-0476-43d7-8be7-66eda228fec7/1/0kY6OhYo0S_p-TBiI-10NgXfoNY.roa Signing time: Fri 02 Jan 2026 02:18:57 +0000 ROA not before: Fri 02 Jan 2026 02:18:57 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 8477 IP address blocks: 109.232.24.0/22 maxlen: 22 185.13.168.0/22 maxlen: 22 213.156.96.0/22 maxlen: 22 213.156.104.0/22 maxlen: 22 213.156.108.0/22 maxlen: 22 213.156.112.0/22 maxlen: 22 213.156.116.0/22 maxlen: 22 213.156.120.0/22 maxlen: 22 213.156.124.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/33/863ba0-0476-43d7-8be7-66eda228fec7/1/vEcD4Iyg1qMQy8ZD_8swf_bNxlw.crl rsync://rpki.ripe.net/repository/DEFAULT/33/863ba0-0476-43d7-8be7-66eda228fec7/1/vEcD4Iyg1qMQy8ZD_8swf_bNxlw.mft rsync://rpki.ripe.net/repository/DEFAULT/vEcD4Iyg1qMQy8ZD_8swf_bNxlw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 27 Jan 2026 10:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7c:80:3c:c7:96:c5:35:4d:95:5e:82:33:10:dd:18:05 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=bc4703e08ca0d6a310cbc643ffcb307ff6cdc65c Validity Not Before: Jan 2 02:18:57 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=d2463a3a1628d12fe9f9306223ed743605dfa0d6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:97:3e:f0:6f:e4:06:0b:aa:79:0d:98:8b:62:8f: 59:a3:83:0b:32:36:a5:77:8c:b1:0f:50:67:61:9f: 82:75:c3:9a:76:6e:0b:f8:08:e8:47:81:2d:52:9e: e9:e7:9f:17:bb:d8:25:aa:8b:3b:d9:7f:11:54:2b: e2:e2:2d:0e:39:f8:91:38:9d:d3:9c:dd:ed:f6:31: 00:4e:7e:17:4d:db:4c:08:ec:63:d6:a6:2b:cb:44: 10:21:f5:9d:1c:53:88:4d:6b:25:7c:45:be:62:b9: d7:b3:9f:23:57:4e:0e:5a:e1:8d:7c:a5:1f:94:04: 06:c9:2f:96:71:7d:9e:e1:39:c4:58:a3:81:d8:c0: db:95:f5:0f:3d:68:31:d0:1c:8f:3a:21:d6:46:ac: 77:cd:1a:59:64:f3:a5:93:61:4d:f9:bf:0a:9e:10: 92:e1:ec:09:75:ab:72:05:1c:05:30:97:eb:fc:40: 94:a3:29:91:97:14:97:42:06:18:2d:1a:6f:6c:e1: 77:8a:b3:41:d5:7c:e2:9c:28:a3:2b:c8:30:8b:31: bc:1a:51:1b:48:ea:40:24:df:2f:61:e6:f8:8f:0f: 8f:e8:79:0e:80:9f:c6:ce:6b:8a:36:45:91:41:1e: 6a:d7:69:9d:d3:21:44:f8:32:7a:68:9c:b6:56:dc: 79:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D2:46:3A:3A:16:28:D1:2F:E9:F9:30:62:23:ED:74:36:05:DF:A0:D6 X509v3 Authority Key Identifier: keyid:BC:47:03:E0:8C:A0:D6:A3:10:CB:C6:43:FF:CB:30:7F:F6:CD:C6:5C X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vEcD4Iyg1qMQy8ZD_8swf_bNxlw.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/33/863ba0-0476-43d7-8be7-66eda228fec7/1/0kY6OhYo0S_p-TBiI-10NgXfoNY.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/33/863ba0-0476-43d7-8be7-66eda228fec7/1/vEcD4Iyg1qMQy8ZD_8swf_bNxlw.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 109.232.24.0/22 185.13.168.0/22 213.156.96.0/22 213.156.104.0-213.156.127.255 Signature Algorithm: sha256WithRSAEncryption 54:58:82:88:8d:68:88:c7:bd:33:df:94:0d:a0:26:39:68:65: 46:d2:26:51:c9:80:70:a9:ef:b3:2a:ff:87:8c:79:9a:38:97: 8a:54:98:f4:8c:e2:4f:6b:0b:0a:b4:8a:b2:93:ef:8d:a9:32: d8:75:29:76:d7:4e:cc:91:99:fa:5d:69:e1:03:c3:8b:5d:a8: d0:79:3a:31:17:4c:77:08:95:29:8a:cd:9e:3d:be:0e:80:49: e0:60:4a:3d:95:11:0a:1c:ff:6e:b3:2d:cb:d6:e2:76:9f:6c: 8d:0e:24:15:42:b4:56:72:41:e4:60:59:8e:66:0a:2a:87:13: 24:b9:0c:d0:e4:19:85:ce:0e:ae:79:ec:22:a1:0b:e0:83:d1: af:39:1b:e0:56:22:af:77:da:54:d8:63:38:63:a7:d5:43:5f: 16:81:d5:6b:d3:48:b1:fc:5f:50:11:d1:83:5d:84:81:41:d3: 39:b5:97:91:7a:62:a2:86:04:48:7f:de:3f:be:a4:d1:50:f2: 59:29:86:45:0f:8b:c6:95:90:9a:ae:6a:10:eb:91:8d:29:46: bc:da:59:8e:59:25:f5:94:d2:fd:d9:bd:eb:61:61:a8:5a:f9: e4:7d:08:36:c9:eb:4c:d8:3f:ed:0c:c5:88:69:55:fc:20:eb: c9:ad:58:73 -----BEGIN CERTIFICATE----- MIIFFzCCA/+gAwIBAgISAZt8gDzHlsU1TZVegjMQ3RgFMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGJjNDcwM2UwOGNhMGQ2YTMxMGNiYzY0M2ZmY2IzMDdmZjZj ZGM2NWMwHhcNMjYwMTAyMDIxODU3WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhkMjQ2M2EzYTE2MjhkMTJmZTlmOTMwNjIyM2VkNzQzNjA1ZGZhMGQ2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAlz7wb+QGC6p5DZiLYo9Zo4MLMjal d4yxD1BnYZ+CdcOadm4L+AjoR4EtUp7p558Xu9glqos72X8RVCvi4i0OOfiROJ3T nN3t9jEATn4XTdtMCOxj1qYry0QQIfWdHFOITWslfEW+YrnXs58jV04OWuGNfKUf lAQGyS+WcX2e4TnEWKOB2MDblfUPPWgx0ByPOiHWRqx3zRpZZPOlk2FN+b8KnhCS 4ewJdatyBRwFMJfr/ECUoymRlxSXQgYYLRpvbOF3irNB1XzinCijK8gwizG8GlEb SOpAJN8vYeb4jw+P6HkOgJ/GzmuKNkWRQR5q12md0yFE+DJ6aJy2Vtx5IQIDAQAB o4ICIzCCAh8wHQYDVR0OBBYEFNJGOjoWKNEv6fkwYiPtdDYF36DWMB8GA1UdIwQY MBaAFLxHA+CMoNajEMvGQ//LMH/2zcZcMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvdkVjRDRJeWcxcU1ReThaRF84c3dmX2JOeGx3LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zMy84NjNiYTAtMDQ3Ni00M2Q3LThiZTct NjZlZGEyMjhmZWM3LzEvMGtZNk9oWW8wU19wLVRCaUktMTBOZ1hmb05ZLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zMy84NjNiYTAtMDQ3Ni00M2Q3LThiZTctNjZlZGEyMjhmZWM3 LzEvdkVjRDRJeWcxcU1ReThaRF84c3dmX2JOeGx3LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMDkGCCsGAQUFBwEHAQH/BCowKDAmBAIAATAgAwQCbegYAwQC uQ2oAwQC1ZxgMAwDBAPVnGgDBAfVnAAwDQYJKoZIhvcNAQELBQADggEBAFRYgoiN aIjHvTPflA2gJjloZUbSJlHJgHCp77Mq/4eMeZo4l4pUmPSM4k9rCwq0irKT742p Mth1KXbXTsyRmfpdaeEDw4tdqNB5OjEXTHcIlSmKzZ49vg6ASeBgSj2VEQoc/26z LcvW4nafbI0OJBVCtFZyQeRgWY5mCiqHEyS5DNDkGYXODq557CKhC+CD0a85G+BW Iq932lTYYzhjp9VDXxaB1WvTSLH8X1AR0YNdhIFB0zm1l5F6YqKGBEh/3j++pNFQ 8lkphkUPi8aVkJquahDrkY0pRrzaWY5ZJfWU0v3ZvethYaha+eR9CDbJ60zYP+0M xYhpVfwg68mtWHM= -----END CERTIFICATE-----Generated at Mon Jan 26 14:09:36 2026 by rpki-client