This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/46/b3f543-74cb-4298-82e1-8bca27cb30c0/1/rYNk5M1jOrRrGvLBvLntaHwWlhM.roa File: rYNk5M1jOrRrGvLBvLntaHwWlhM.roa (raw, json) Hash identifier: RlamOrUS9qC+/UKfMqeVdUehNtOg9iOWWGlF3b1jCi0= Subject key identifier: AD:83:64:E4:CD:63:3A:B4:6B:1A:F2:C1:BC:B9:ED:68:7C:16:96:13 Certificate issuer: /CN=dfad8b16099d6cdf8c3a811ca5860df0f6baf6de Certificate serial: 019B7834F15E2F960FFD58939499000C4093 Authority key identifier: DF:AD:8B:16:09:9D:6C:DF:8C:3A:81:1C:A5:86:0D:F0:F6:BA:F6:DE Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/362LFgmdbN-MOoEcpYYN8Pa69t4.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/46/b3f543-74cb-4298-82e1-8bca27cb30c0/1/rYNk5M1jOrRrGvLBvLntaHwWlhM.roa Signing time: Thu 01 Jan 2026 06:18:14 +0000 ROA not before: Thu 01 Jan 2026 06:18:14 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 16246 IP address blocks: 185.175.11.0/24 maxlen: 24 2a0d:187::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/46/b3f543-74cb-4298-82e1-8bca27cb30c0/1/362LFgmdbN-MOoEcpYYN8Pa69t4.crl rsync://rpki.ripe.net/repository/DEFAULT/46/b3f543-74cb-4298-82e1-8bca27cb30c0/1/362LFgmdbN-MOoEcpYYN8Pa69t4.mft rsync://rpki.ripe.net/repository/DEFAULT/362LFgmdbN-MOoEcpYYN8Pa69t4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 22:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:78:34:f1:5e:2f:96:0f:fd:58:93:94:99:00:0c:40:93 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=dfad8b16099d6cdf8c3a811ca5860df0f6baf6de Validity Not Before: Jan 1 06:18:14 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=ad8364e4cd633ab46b1af2c1bcb9ed687c169613 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:91:b8:dd:08:4f:f4:a9:01:f7:91:ef:e6:d3:ba: 33:ec:25:5a:dd:51:db:11:5b:0d:ba:f2:dd:15:f2: ea:35:7f:a1:de:85:05:2a:89:6b:ac:38:70:5d:58: f4:85:a8:38:58:ee:b8:5f:15:0a:e2:0c:b2:0b:e2: 3c:0c:41:9f:b8:f8:37:a6:e0:1b:82:7c:f5:c5:7a: 99:6a:8b:e0:06:ef:7c:ab:9d:62:a8:62:23:54:24: 37:37:af:7d:33:b4:2a:dc:67:2b:7d:40:05:f6:55: fc:bd:f2:f8:07:0e:f7:73:6f:24:8e:3b:52:79:ba: a3:17:3c:aa:bf:52:aa:2b:ba:c1:c7:0d:48:fc:6f: 66:b2:73:ab:a5:4f:ef:28:1b:87:9d:cc:75:e5:f7: 46:0a:44:7e:64:17:2e:75:a8:bd:0a:45:e8:3e:e7: 11:ed:9d:1c:2d:f2:68:90:a4:4d:57:9a:6e:63:47: e4:f5:16:3c:2a:cd:f2:61:2b:77:9e:75:a3:3a:01: 32:ef:c0:51:14:6a:80:22:e5:bd:fd:81:2e:91:63: 9a:cf:37:0d:7a:42:60:ad:2f:26:0b:7c:00:e8:9a: 01:07:fc:af:53:c2:0f:62:fa:75:13:81:ed:95:96: 6a:25:08:32:dc:ea:7b:4a:0e:b2:77:b7:bd:71:61: 9c:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AD:83:64:E4:CD:63:3A:B4:6B:1A:F2:C1:BC:B9:ED:68:7C:16:96:13 X509v3 Authority Key Identifier: keyid:DF:AD:8B:16:09:9D:6C:DF:8C:3A:81:1C:A5:86:0D:F0:F6:BA:F6:DE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/362LFgmdbN-MOoEcpYYN8Pa69t4.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/46/b3f543-74cb-4298-82e1-8bca27cb30c0/1/rYNk5M1jOrRrGvLBvLntaHwWlhM.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/46/b3f543-74cb-4298-82e1-8bca27cb30c0/1/362LFgmdbN-MOoEcpYYN8Pa69t4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.175.11.0/24 IPv6: 2a0d:187::/32 Signature Algorithm: sha256WithRSAEncryption 6c:7d:dc:9a:8e:b4:9f:fa:74:c0:20:47:8c:d3:68:27:40:2e: 93:5c:16:58:01:43:76:81:02:d3:13:f2:01:df:43:46:4b:96: 59:51:c4:52:3d:37:c2:de:a0:71:cb:05:46:65:4f:c5:02:9e: a2:1c:56:4f:a9:c9:8c:1e:23:7b:e7:64:fb:bc:e9:69:24:2b: e9:69:9b:ce:8b:4f:96:1d:89:a5:fa:f3:8b:60:c4:9e:20:a9: 50:d0:53:51:38:73:ca:ea:de:3a:60:d4:e3:8e:31:34:37:f3: 22:ea:79:cf:87:db:8b:c8:d6:0f:78:c1:35:12:87:d3:58:2f: 52:1e:ed:9e:a9:6f:f6:f7:f3:cc:bd:3e:61:40:1d:01:6f:5f: d5:23:40:cb:83:d6:b5:41:0b:ec:68:19:ab:17:df:b2:85:94: c3:78:b3:8c:cd:da:14:9d:ef:f4:76:86:44:3e:de:14:49:c4: 02:7a:fb:ca:70:fa:ab:f6:73:22:1a:9d:f9:e0:51:f2:39:be: dc:9e:2d:9c:51:b6:a9:5e:52:13:86:8a:ed:e7:8a:1c:7c:a3: 0e:08:33:66:1d:b7:13:28:8b:1b:fa:30:2c:64:89:73:c9:df: a8:ca:73:a8:93:ff:26:a2:04:76:68:9e:fe:f1:96:81:27:81: 63:8d:14:eb -----BEGIN CERTIFICATE----- MIIFDDCCA/SgAwIBAgISAZt4NPFeL5YP/ViTlJkADECTMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGRmYWQ4YjE2MDk5ZDZjZGY4YzNhODExY2E1ODYwZGYwZjZi YWY2ZGUwHhcNMjYwMTAxMDYxODE0WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhhZDgzNjRlNGNkNjMzYWI0NmIxYWYyYzFiY2I5ZWQ2ODdjMTY5NjEzMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAkbjdCE/0qQH3ke/m07oz7CVa3VHb EVsNuvLdFfLqNX+h3oUFKolrrDhwXVj0hag4WO64XxUK4gyyC+I8DEGfuPg3puAb gnz1xXqZaovgBu98q51iqGIjVCQ3N699M7Qq3GcrfUAF9lX8vfL4Bw73c28kjjtS ebqjFzyqv1KqK7rBxw1I/G9msnOrpU/vKBuHncx15fdGCkR+ZBcudai9CkXoPucR 7Z0cLfJokKRNV5puY0fk9RY8Ks3yYSt3nnWjOgEy78BRFGqAIuW9/YEukWOazzcN ekJgrS8mC3wA6JoBB/yvU8IPYvp1E4HtlZZqJQgy3Op7Sg6yd7e9cWGcYQIDAQAB o4ICGDCCAhQwHQYDVR0OBBYEFK2DZOTNYzq0axrywby57Wh8FpYTMB8GA1UdIwQY MBaAFN+tixYJnWzfjDqBHKWGDfD2uvbeMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvMzYyTEZnbWRiTi1NT29FY3BZWU44UGE2OXQ0LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80Ni9iM2Y1NDMtNzRjYi00Mjk4LTgyZTEt OGJjYTI3Y2IzMGMwLzEvcllOazVNMWpPclJyR3ZMQnZMbnRhSHdXbGhNLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC80Ni9iM2Y1NDMtNzRjYi00Mjk4LTgyZTEtOGJjYTI3Y2IzMGMw LzEvMzYyTEZnbWRiTi1NT29FY3BZWU44UGE2OXQ0LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMC4GCCsGAQUFBwEHAQH/BB8wHTAMBAIAATAGAwQAua8LMA0E AgACMAcDBQAqDQGHMA0GCSqGSIb3DQEBCwUAA4IBAQBsfdyajrSf+nTAIEeM02gn QC6TXBZYAUN2gQLTE/IB30NGS5ZZUcRSPTfC3qBxywVGZU/FAp6iHFZPqcmMHiN7 52T7vOlpJCvpaZvOi0+WHYml+vOLYMSeIKlQ0FNROHPK6t46YNTjjjE0N/Mi6nnP h9uLyNYPeME1EofTWC9SHu2eqW/29/PMvT5hQB0Bb1/VI0DLg9a1QQvsaBmrF9+y hZTDeLOMzdoUne/0doZEPt4UScQCevvKcPqr9nMiGp354FHyOb7cni2cUbapXlIT hort54ocfKMOCDNmHbcTKIsb+jAsZIlzyd+oynOok/8mogR2aJ7+8ZaBJ4FjjRTr -----END CERTIFICATE-----Generated at Mon Jan 26 04:20:02 2026 by rpki-client