This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4d/21a927-8dd3-48f7-92ce-02ffceff1acc/1/Y1SgnZdGMmo9fGpuJl7wUQaxlkc.roa File: Y1SgnZdGMmo9fGpuJl7wUQaxlkc.roa (raw, json) Hash identifier: c5a6z6fFSi3Ksmn1qg/vCHzequVOvVzrYowSPYYXoZY= Subject key identifier: 63:54:A0:9D:97:46:32:6A:3D:7C:6A:6E:26:5E:F0:51:06:B1:96:47 Certificate issuer: /CN=ecb1ea5a1050a829224ea486c0e22ebfc75d640c Certificate serial: 019B7CEE6B3FC2291B2ADC326BE5146237E7 Authority key identifier: EC:B1:EA:5A:10:50:A8:29:22:4E:A4:86:C0:E2:2E:BF:C7:5D:64:0C Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/7LHqWhBQqCkiTqSGwOIuv8ddZAw.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4d/21a927-8dd3-48f7-92ce-02ffceff1acc/1/Y1SgnZdGMmo9fGpuJl7wUQaxlkc.roa Signing time: Fri 02 Jan 2026 04:19:18 +0000 ROA not before: Fri 02 Jan 2026 04:19:18 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 214308 IP address blocks: 185.87.60.0/24 maxlen: 24 2a03:5f60::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4d/21a927-8dd3-48f7-92ce-02ffceff1acc/1/7LHqWhBQqCkiTqSGwOIuv8ddZAw.crl rsync://rpki.ripe.net/repository/DEFAULT/4d/21a927-8dd3-48f7-92ce-02ffceff1acc/1/7LHqWhBQqCkiTqSGwOIuv8ddZAw.mft rsync://rpki.ripe.net/repository/DEFAULT/7LHqWhBQqCkiTqSGwOIuv8ddZAw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 27 Jan 2026 04:00:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7c:ee:6b:3f:c2:29:1b:2a:dc:32:6b:e5:14:62:37:e7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ecb1ea5a1050a829224ea486c0e22ebfc75d640c Validity Not Before: Jan 2 04:19:18 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=6354a09d9746326a3d7c6a6e265ef05106b19647 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e5:2c:f6:46:48:ce:05:e8:de:e2:5d:24:36:22: 53:a5:d5:a2:db:e6:c3:8e:11:df:2b:bb:63:eb:b0: de:25:cf:ba:3e:77:6d:ac:10:7b:d7:2d:49:b9:f9: 1a:e0:cb:3c:ad:1d:1a:4c:4b:a8:77:8f:44:28:1a: 4b:22:ee:d2:dc:4e:7e:0c:bd:3f:ae:b8:14:b2:10: 16:90:59:5e:68:f6:68:eb:5d:27:25:38:3a:98:9b: b1:44:84:39:d9:20:d3:8f:22:78:24:43:8e:7a:3d: 98:56:0a:ba:20:af:b5:78:c5:33:7e:e5:6b:c1:55: b5:64:77:83:70:bb:cf:2e:fe:2a:5a:5a:10:ea:ed: 1b:34:52:c9:ee:55:b1:f9:3d:4d:77:44:d5:92:88: 02:63:ea:cc:57:0a:17:c2:20:f9:15:aa:ea:07:ed: 7b:ee:78:ef:88:92:bf:e3:0c:91:7e:dd:87:3e:e5: 76:04:21:e3:1c:a0:34:02:f9:ae:a8:29:f2:f7:6a: f2:64:57:1e:88:60:06:66:dd:7c:16:b3:3c:41:65: 96:ca:67:5c:ff:9c:cd:86:08:c6:63:01:53:db:03: 7a:f4:80:06:8b:e4:d9:dd:e8:e4:e1:02:88:98:54: 6f:bf:5d:24:04:57:c7:20:dc:9c:95:41:3b:e9:cd: 2e:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 63:54:A0:9D:97:46:32:6A:3D:7C:6A:6E:26:5E:F0:51:06:B1:96:47 X509v3 Authority Key Identifier: keyid:EC:B1:EA:5A:10:50:A8:29:22:4E:A4:86:C0:E2:2E:BF:C7:5D:64:0C X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/7LHqWhBQqCkiTqSGwOIuv8ddZAw.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/21a927-8dd3-48f7-92ce-02ffceff1acc/1/Y1SgnZdGMmo9fGpuJl7wUQaxlkc.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/21a927-8dd3-48f7-92ce-02ffceff1acc/1/7LHqWhBQqCkiTqSGwOIuv8ddZAw.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.87.60.0/24 IPv6: 2a03:5f60::/32 Signature Algorithm: sha256WithRSAEncryption 68:66:b0:bf:dd:b7:ee:fd:26:59:cb:ca:f3:a9:68:c2:7f:04: 2a:ca:27:00:69:0d:37:8d:80:dd:9e:bc:89:1f:73:33:5a:fd: 62:83:1b:36:db:c9:25:ec:57:3d:47:a3:d9:4b:c4:85:d8:64: 12:f3:45:28:2f:05:47:c0:d7:e7:30:89:57:a1:e4:e4:4d:d3: 4f:fa:4f:c9:68:b6:c3:04:27:de:78:ee:8f:6d:e9:2e:ca:4e: a8:fc:29:41:14:fc:86:0f:9f:24:0c:87:9b:4a:fa:8c:87:00: 0f:0e:8e:79:59:2c:7f:65:22:68:45:7d:a5:e4:61:e5:86:39: 95:f0:f4:44:94:87:75:31:96:4b:26:55:78:cc:2e:82:88:0f: eb:de:99:0e:0d:bf:b5:07:fd:4c:92:d3:5b:a4:b1:0d:0e:e2: ad:7a:6b:07:d4:47:81:1a:5d:46:fb:29:7b:ef:50:e6:bb:93: 07:89:ad:d8:0f:67:03:78:3a:fe:84:0a:49:26:87:77:82:99: 27:80:dd:0e:9b:bf:68:2d:07:1e:eb:c5:9d:18:cd:b2:3c:6e: df:45:69:04:87:46:4c:25:ca:51:f0:6d:d5:c7:41:f4:87:62: eb:38:ff:17:68:68:ed:63:7c:aa:f9:5f:40:4e:6a:65:48:59: 64:e1:69:04 -----BEGIN CERTIFICATE----- MIIFDDCCA/SgAwIBAgISAZt87ms/wikbKtwya+UUYjfnMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGVjYjFlYTVhMTA1MGE4MjkyMjRlYTQ4NmMwZTIyZWJmYzc1 ZDY0MGMwHhcNMjYwMTAyMDQxOTE4WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg2MzU0YTA5ZDk3NDYzMjZhM2Q3YzZhNmUyNjVlZjA1MTA2YjE5NjQ3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA5Sz2RkjOBeje4l0kNiJTpdWi2+bD jhHfK7tj67DeJc+6PndtrBB71y1Jufka4Ms8rR0aTEuod49EKBpLIu7S3E5+DL0/ rrgUshAWkFleaPZo610nJTg6mJuxRIQ52SDTjyJ4JEOOej2YVgq6IK+1eMUzfuVr wVW1ZHeDcLvPLv4qWloQ6u0bNFLJ7lWx+T1Nd0TVkogCY+rMVwoXwiD5FarqB+17 7njviJK/4wyRft2HPuV2BCHjHKA0AvmuqCny92ryZFceiGAGZt18FrM8QWWWymdc /5zNhgjGYwFT2wN69IAGi+TZ3ejk4QKImFRvv10kBFfHINyclUE76c0uZwIDAQAB o4ICGDCCAhQwHQYDVR0OBBYEFGNUoJ2XRjJqPXxqbiZe8FEGsZZHMB8GA1UdIwQY MBaAFOyx6loQUKgpIk6khsDiLr/HXWQMMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvN0xIcVdoQlFxQ2tpVHFTR3dPSXV2OGRkWkF3LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80ZC8yMWE5MjctOGRkMy00OGY3LTkyY2Ut MDJmZmNlZmYxYWNjLzEvWTFTZ25aZEdNbW85ZkdwdUpsN3dVUWF4bGtjLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC80ZC8yMWE5MjctOGRkMy00OGY3LTkyY2UtMDJmZmNlZmYxYWNj LzEvN0xIcVdoQlFxQ2tpVHFTR3dPSXV2OGRkWkF3LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMC4GCCsGAQUFBwEHAQH/BB8wHTAMBAIAATAGAwQAuVc8MA0E AgACMAcDBQAqA19gMA0GCSqGSIb3DQEBCwUAA4IBAQBoZrC/3bfu/SZZy8rzqWjC fwQqyicAaQ03jYDdnryJH3MzWv1igxs228kl7Fc9R6PZS8SF2GQS80UoLwVHwNfn MIlXoeTkTdNP+k/JaLbDBCfeeO6Pbekuyk6o/ClBFPyGD58kDIebSvqMhwAPDo55 WSx/ZSJoRX2l5GHlhjmV8PRElId1MZZLJlV4zC6CiA/r3pkODb+1B/1MktNbpLEN DuKtemsH1EeBGl1G+yl771Dmu5MHia3YD2cDeDr+hApJJod3gpkngN0Om79oLQce 68WdGM2yPG7fRWkEh0ZMJcpR8G3Vx0H0h2LrOP8XaGjtY3yq+V9ATmplSFlk4WkE -----END CERTIFICATE-----Generated at Mon Jan 26 11:44:40 2026 by rpki-client