This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6a/aedb03-b04c-4212-813b-ff25ba599031/1/Yk7EtxaPSgexIl9t_80_swVzD3M.roa File: Yk7EtxaPSgexIl9t_80_swVzD3M.roa (raw, json) Hash identifier: yR1cez1xIT9IyHabmgmwE9BLuhvd89zm0L14ABJdEh0= Subject key identifier: 62:4E:C4:B7:16:8F:4A:07:B1:22:5F:6D:FF:CD:3F:B3:05:73:0F:73 Certificate issuer: /CN=550b7c0c8bae610f7e519c0485a4773bceb48dab Certificate serial: 019B7C7FED57B661E0ACA85A50259A884E0E Authority key identifier: 55:0B:7C:0C:8B:AE:61:0F:7E:51:9C:04:85:A4:77:3B:CE:B4:8D:AB Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VQt8DIuuYQ9-UZwEhaR3O860jas.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6a/aedb03-b04c-4212-813b-ff25ba599031/1/Yk7EtxaPSgexIl9t_80_swVzD3M.roa Signing time: Fri 02 Jan 2026 02:18:37 +0000 ROA not before: Fri 02 Jan 2026 02:18:37 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 34619 IP address blocks: 37.148.208.0/21 maxlen: 24 80.253.240.0/22 maxlen: 24 85.159.64.0/21 maxlen: 24 89.19.0.0/19 maxlen: 24 94.73.128.0/18 maxlen: 24 185.22.184.0/22 maxlen: 24 185.22.184.0/24 maxlen: 24 185.22.185.0/24 maxlen: 24 185.22.186.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/6a/aedb03-b04c-4212-813b-ff25ba599031/1/VQt8DIuuYQ9-UZwEhaR3O860jas.crl rsync://rpki.ripe.net/repository/DEFAULT/6a/aedb03-b04c-4212-813b-ff25ba599031/1/VQt8DIuuYQ9-UZwEhaR3O860jas.mft rsync://rpki.ripe.net/repository/DEFAULT/VQt8DIuuYQ9-UZwEhaR3O860jas.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 27 Jan 2026 01:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7c:7f:ed:57:b6:61:e0:ac:a8:5a:50:25:9a:88:4e:0e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=550b7c0c8bae610f7e519c0485a4773bceb48dab Validity Not Before: Jan 2 02:18:37 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=624ec4b7168f4a07b1225f6dffcd3fb305730f73 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:50:a1:e7:dd:29:85:fd:ab:71:32:b7:08:97: a3:45:07:83:45:e1:8a:29:9d:6e:69:c5:69:71:c7: df:f2:68:40:55:16:3f:86:7f:78:30:3a:d4:18:a5: 9c:51:44:14:2e:a3:b2:26:8a:d5:7c:84:4e:45:5d: 30:d8:1d:1f:1e:39:ff:99:06:57:cc:34:99:c2:56: 5d:00:5d:e8:53:cd:fa:be:f9:dd:71:d3:98:4b:5a: c9:b5:ce:cb:b0:cf:c6:19:12:e1:e2:09:7d:14:91: 2c:a4:ac:a0:31:54:69:78:4f:3f:7e:d6:a2:0f:22: ad:cf:16:85:ce:4e:5f:89:b6:29:66:4a:d8:f5:c2: 2c:30:46:fd:ca:df:d1:d6:b1:86:84:d5:ad:36:6e: 29:5f:72:e5:8c:ff:5f:ef:95:66:c6:01:69:88:7a: 93:4b:93:5e:a5:ac:f5:f6:2c:b1:67:b2:03:39:a5: 67:d2:9f:79:3b:04:e1:de:83:2b:97:d2:81:bf:3a: 71:a6:84:2f:a1:b3:0e:d3:92:02:ee:39:49:86:2a: 2a:e1:a6:57:59:65:e7:d5:be:a3:15:e1:0b:b4:3c: 1e:51:a0:96:5f:b9:06:5b:54:a5:5d:f3:22:17:d5: 0e:c7:a2:3a:76:a7:24:38:47:a6:21:0d:65:36:7e: a9:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 62:4E:C4:B7:16:8F:4A:07:B1:22:5F:6D:FF:CD:3F:B3:05:73:0F:73 X509v3 Authority Key Identifier: keyid:55:0B:7C:0C:8B:AE:61:0F:7E:51:9C:04:85:A4:77:3B:CE:B4:8D:AB X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VQt8DIuuYQ9-UZwEhaR3O860jas.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6a/aedb03-b04c-4212-813b-ff25ba599031/1/Yk7EtxaPSgexIl9t_80_swVzD3M.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/6a/aedb03-b04c-4212-813b-ff25ba599031/1/VQt8DIuuYQ9-UZwEhaR3O860jas.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 37.148.208.0/21 80.253.240.0/22 85.159.64.0/21 89.19.0.0/19 94.73.128.0/18 185.22.184.0/22 Signature Algorithm: sha256WithRSAEncryption 5f:a4:6c:b7:00:a3:c6:fd:85:41:04:85:d8:ac:e8:ed:7f:1c: a6:d7:4b:b3:40:a9:45:23:14:0b:bc:10:58:56:9f:0b:76:f0: bb:ff:d8:90:0d:c9:07:d0:29:95:35:e9:2f:ab:f0:80:b8:91: f4:a0:56:51:a4:4b:21:44:bc:0c:ac:3b:45:de:d1:dd:66:19: 4d:aa:5e:c0:27:fc:cc:c5:48:05:e7:45:01:e4:79:a4:90:d8: 53:26:5e:23:da:aa:07:9f:5d:a8:f6:4b:8e:91:8b:77:83:dc: 03:86:04:00:7b:ac:82:54:f2:e2:a4:01:40:02:d2:ff:e4:f0: b0:cb:a4:0f:9f:b8:fc:73:91:c0:81:23:7a:66:99:d2:e9:83: 54:5a:bb:48:85:4e:ff:44:12:aa:3f:aa:42:e6:72:1c:d3:10: e5:20:f2:6e:bd:b7:df:4a:cd:c5:7f:4e:5b:7a:bb:16:0e:06: 3e:d7:9b:49:a3:a3:2d:40:ae:0b:e0:71:db:30:83:f7:f4:52: 1a:9b:3d:8a:0d:ba:a8:6e:50:cd:28:95:42:47:f4:a2:ef:cd: f2:27:ae:e5:99:f5:39:2c:a1:fd:93:bf:07:81:c8:01:70:e9: cd:b0:18:97:6e:03:29:fa:a8:95:6e:d4:df:32:4f:c6:78:1b: 2b:49:01:2a -----BEGIN CERTIFICATE----- MIIFGzCCBAOgAwIBAgISAZt8f+1XtmHgrKhaUCWaiE4OMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDU1MGI3YzBjOGJhZTYxMGY3ZTUxOWMwNDg1YTQ3NzNiY2Vi NDhkYWIwHhcNMjYwMTAyMDIxODM3WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg2MjRlYzRiNzE2OGY0YTA3YjEyMjVmNmRmZmNkM2ZiMzA1NzMwZjczMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArFCh590phf2rcTK3CJejRQeDReGK KZ1uacVpccff8mhAVRY/hn94MDrUGKWcUUQULqOyJorVfIRORV0w2B0fHjn/mQZX zDSZwlZdAF3oU836vvndcdOYS1rJtc7LsM/GGRLh4gl9FJEspKygMVRpeE8/ftai DyKtzxaFzk5fibYpZkrY9cIsMEb9yt/R1rGGhNWtNm4pX3LljP9f75VmxgFpiHqT S5Nepaz19iyxZ7IDOaVn0p95OwTh3oMrl9KBvzpxpoQvobMO05IC7jlJhioq4aZX WWXn1b6jFeELtDweUaCWX7kGW1SlXfMiF9UOx6I6dqckOEemIQ1lNn6pLwIDAQAB o4ICJzCCAiMwHQYDVR0OBBYEFGJOxLcWj0oHsSJfbf/NP7MFcw9zMB8GA1UdIwQY MBaAFFULfAyLrmEPflGcBIWkdzvOtI2rMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvVlF0OERJdXVZUTktVVp3RWhhUjNPODYwamFzLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82YS9hZWRiMDMtYjA0Yy00MjEyLTgxM2It ZmYyNWJhNTk5MDMxLzEvWWs3RXR4YVBTZ2V4SWw5dF84MF9zd1Z6RDNNLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC82YS9hZWRiMDMtYjA0Yy00MjEyLTgxM2ItZmYyNWJhNTk5MDMx LzEvVlF0OERJdXVZUTktVVp3RWhhUjNPODYwamFzLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMD0GCCsGAQUFBwEHAQH/BC4wLDAqBAIAATAkAwQDJZTQAwQC UP3wAwQDVZ9AAwQFWRMAAwQGXkmAAwQCuRa4MA0GCSqGSIb3DQEBCwUAA4IBAQBf pGy3AKPG/YVBBIXYrOjtfxym10uzQKlFIxQLvBBYVp8LdvC7/9iQDckH0CmVNekv q/CAuJH0oFZRpEshRLwMrDtF3tHdZhlNql7AJ/zMxUgF50UB5HmkkNhTJl4j2qoH n12o9kuOkYt3g9wDhgQAe6yCVPLipAFAAtL/5PCwy6QPn7j8c5HAgSN6ZpnS6YNU WrtIhU7/RBKqP6pC5nIc0xDlIPJuvbffSs3Ff05bersWDgY+15tJo6MtQK4L4HHb MIP39FIamz2KDbqoblDNKJVCR/Si783yJ67lmfU5LKH9k78HgcgBcOnNsBiXbgMp +qiVbtTfMk/GeBsrSQEq -----END CERTIFICATE-----Generated at Mon Jan 26 11:16:54 2026 by rpki-client