This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/f09ecf-e805-4158-b315-f2be9f6c664c/1/STYQYIqL7Dt4J7O_LHA8QDp9Yb0.roa File: STYQYIqL7Dt4J7O_LHA8QDp9Yb0.roa (raw, json) Hash identifier: UNIZlKXaPNDNVfdtZ55+FsQNvqeMf4MT3m6G76K9hRU= Subject key identifier: 49:36:10:60:8A:8B:EC:3B:78:27:B3:BF:2C:70:3C:40:3A:7D:61:BD Certificate issuer: /CN=8d59c4323f767ce4ffc85daad208b90c04fbd3e9 Certificate serial: 019B7F846AE444F33AE981EC3B75E09AC210 Authority key identifier: 8D:59:C4:32:3F:76:7C:E4:FF:C8:5D:AA:D2:08:B9:0C:04:FB:D3:E9 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jVnEMj92fOT_yF2q0gi5DAT70-k.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/f09ecf-e805-4158-b315-f2be9f6c664c/1/STYQYIqL7Dt4J7O_LHA8QDp9Yb0.roa Signing time: Fri 02 Jan 2026 16:22:23 +0000 ROA not before: Fri 02 Jan 2026 16:22:23 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 197042 IP address blocks: 213.14.209.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/66/f09ecf-e805-4158-b315-f2be9f6c664c/1/jVnEMj92fOT_yF2q0gi5DAT70-k.crl rsync://rpki.ripe.net/repository/DEFAULT/66/f09ecf-e805-4158-b315-f2be9f6c664c/1/jVnEMj92fOT_yF2q0gi5DAT70-k.mft rsync://rpki.ripe.net/repository/DEFAULT/jVnEMj92fOT_yF2q0gi5DAT70-k.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 13:01:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7f:84:6a:e4:44:f3:3a:e9:81:ec:3b:75:e0:9a:c2:10 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8d59c4323f767ce4ffc85daad208b90c04fbd3e9 Validity Not Before: Jan 2 16:22:23 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=493610608a8bec3b7827b3bf2c703c403a7d61bd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:4c:bc:52:3c:19:64:4c:14:ae:9e:b7:3e:c3: b7:6a:60:17:5f:be:10:ab:7e:9c:7a:f2:b0:e2:85: 17:69:0a:51:d3:2c:75:6c:0f:0b:eb:64:52:98:a5: 4b:6b:8e:58:35:43:90:3e:e3:bd:3f:87:44:68:15: 02:d7:3f:88:2b:f8:77:cf:2e:1b:11:9b:20:55:df: 49:f6:0a:5f:71:c8:d5:a7:c8:53:5c:b3:8c:41:d1: ad:c7:48:bd:4b:af:ec:3f:bc:34:c6:58:1e:f9:6c: 95:d1:1a:df:d2:99:c8:9e:60:70:7e:2d:5f:23:dc: 8f:5c:fa:4e:db:f9:03:64:bc:0a:db:5e:f5:e3:ee: 50:0f:2d:48:b6:73:e5:c1:bc:06:5d:d0:a2:4f:16: 6c:b9:9c:f2:8c:73:e1:84:16:2b:ba:40:76:17:9c: cc:de:a0:07:2c:ec:fa:47:ab:8c:fe:36:56:39:a7: ea:9d:24:d6:e1:42:cf:57:c8:93:c6:06:fe:c6:50: e6:50:ac:2f:bd:b2:6a:ee:18:c9:10:f7:c2:19:0b: a3:88:26:3f:2b:67:5a:09:64:30:2f:17:64:44:af: be:c7:f1:57:d2:47:c3:2f:18:b4:bf:00:6b:b6:52: 73:eb:5f:2f:f0:bc:f2:d8:a2:83:36:a7:fc:b9:73: 86:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 49:36:10:60:8A:8B:EC:3B:78:27:B3:BF:2C:70:3C:40:3A:7D:61:BD X509v3 Authority Key Identifier: keyid:8D:59:C4:32:3F:76:7C:E4:FF:C8:5D:AA:D2:08:B9:0C:04:FB:D3:E9 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jVnEMj92fOT_yF2q0gi5DAT70-k.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/f09ecf-e805-4158-b315-f2be9f6c664c/1/STYQYIqL7Dt4J7O_LHA8QDp9Yb0.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/66/f09ecf-e805-4158-b315-f2be9f6c664c/1/jVnEMj92fOT_yF2q0gi5DAT70-k.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 213.14.209.0/24 Signature Algorithm: sha256WithRSAEncryption 33:8c:7d:a2:46:f7:5c:83:c8:88:49:94:5c:4e:a6:57:54:97: 7b:9a:09:d8:01:4d:9b:b5:89:d3:43:2f:c1:74:ea:9d:95:b5: e3:cc:2a:de:52:cc:c8:fc:2a:6b:36:ca:44:e2:99:73:b8:63: 6f:fb:75:e6:ab:23:b1:b7:d9:6f:95:ba:bf:4e:56:68:c8:6e: cb:ed:3b:0d:d7:3d:7a:fa:ac:ad:7a:89:6f:44:c5:be:d7:9d: 2c:5e:e6:14:67:6a:f2:de:03:02:77:48:21:3e:bf:b8:3a:85: 17:e1:73:7c:af:6b:a4:48:ed:99:07:6c:69:f0:3b:dc:dd:56: 61:f3:dc:53:91:c7:e0:b5:88:8b:95:f1:8e:de:ca:04:7d:72: 21:72:df:90:df:4e:fc:f1:79:88:c5:a9:9f:8d:fa:60:a6:3e: 2e:c8:57:29:5e:ff:1a:95:1d:f8:18:89:7f:de:05:f4:cc:f8: f4:b3:29:42:a3:2a:a4:ca:de:c8:da:68:4e:d7:e6:4b:39:e4: ab:4a:8f:a0:4c:ef:87:9e:e9:7f:64:60:a9:fa:a0:51:b6:ae: 2f:2f:75:33:a1:a6:51:71:27:fa:d0:49:35:bf:b2:9a:3b:b4: c7:a7:75:a3:98:71:8b:4a:d0:61:91:c2:d9:be:fb:72:a0:8f: ae:e4:ec:b6 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt/hGrkRPM66YHsO3XgmsIQMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDhkNTljNDMyM2Y3NjdjZTRmZmM4NWRhYWQyMDhiOTBjMDRm YmQzZTkwHhcNMjYwMTAyMTYyMjIzWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg0OTM2MTA2MDhhOGJlYzNiNzgyN2IzYmYyYzcwM2M0MDNhN2Q2MWJkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwEy8UjwZZEwUrp63PsO3amAXX74Q q36cevKw4oUXaQpR0yx1bA8L62RSmKVLa45YNUOQPuO9P4dEaBUC1z+IK/h3zy4b EZsgVd9J9gpfccjVp8hTXLOMQdGtx0i9S6/sP7w0xlge+WyV0Rrf0pnInmBwfi1f I9yPXPpO2/kDZLwK21714+5QDy1ItnPlwbwGXdCiTxZsuZzyjHPhhBYrukB2F5zM 3qAHLOz6R6uM/jZWOafqnSTW4ULPV8iTxgb+xlDmUKwvvbJq7hjJEPfCGQujiCY/ K2daCWQwLxdkRK++x/FX0kfDLxi0vwBrtlJz618v8Lzy2KKDNqf8uXOG5QIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFEk2EGCKi+w7eCezvyxwPEA6fWG9MB8GA1UdIwQY MBaAFI1ZxDI/dnzk/8hdqtIIuQwE+9PpMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvalZuRU1qOTJmT1RfeUYycTBnaTVEQVQ3MC1rLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82Ni9mMDllY2YtZTgwNS00MTU4LWIzMTUt ZjJiZTlmNmM2NjRjLzEvU1RZUVlJcUw3RHQ0SjdPX0xIQThRRHA5WWIwLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC82Ni9mMDllY2YtZTgwNS00MTU4LWIzMTUtZjJiZTlmNmM2NjRj LzEvalZuRU1qOTJmT1RfeUYycTBnaTVEQVQ3MC1rLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQA1Q7RMA0G CSqGSIb3DQEBCwUAA4IBAQAzjH2iRvdcg8iISZRcTqZXVJd7mgnYAU2btYnTQy/B dOqdlbXjzCreUszI/CprNspE4plzuGNv+3XmqyOxt9lvlbq/TlZoyG7L7TsN1z16 +qyteolvRMW+150sXuYUZ2ry3gMCd0ghPr+4OoUX4XN8r2ukSO2ZB2xp8Dvc3VZh 89xTkcfgtYiLlfGO3soEfXIhct+Q30788XmIxamfjfpgpj4uyFcpXv8alR34GIl/ 3gX0zPj0sylCoyqkyt7I2mhO1+ZLOeSrSo+gTO+Hnul/ZGCp+qBRtq4vL3UzoaZR cSf60Ek1v7KaO7THp3WjmHGLStBhkcLZvvtyoI+u5Oy2 -----END CERTIFICATE-----Generated at Sun Jan 25 22:14:22 2026 by rpki-client