This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8a/fb791b-8013-458a-9a1e-25dbf43804c5/1/Y2s2825ga2ucY3EOWuDfFuc9iPI.roa File: Y2s2825ga2ucY3EOWuDfFuc9iPI.roa (raw, json) Hash identifier: cqZwOJdbELkT6j9xmowfaAmEQNAvGVbEZxGevSkkmDk= Subject key identifier: 63:6B:36:F3:6E:60:6B:6B:9C:63:71:0E:5A:E0:DF:16:E7:3D:88:F2 Certificate issuer: /CN=9c542f5df3c1acb857fd50eeb016eed07385ff8c Certificate serial: 019B79EBBE2E9692F5F82B134A94F9A46676 Authority key identifier: 9C:54:2F:5D:F3:C1:AC:B8:57:FD:50:EE:B0:16:EE:D0:73:85:FF:8C Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nFQvXfPBrLhX_VDusBbu0HOF_4w.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8a/fb791b-8013-458a-9a1e-25dbf43804c5/1/Y2s2825ga2ucY3EOWuDfFuc9iPI.roa Signing time: Thu 01 Jan 2026 14:17:31 +0000 ROA not before: Thu 01 Jan 2026 14:17:31 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 9050 IP address blocks: 185.253.6.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8a/fb791b-8013-458a-9a1e-25dbf43804c5/1/nFQvXfPBrLhX_VDusBbu0HOF_4w.crl rsync://rpki.ripe.net/repository/DEFAULT/8a/fb791b-8013-458a-9a1e-25dbf43804c5/1/nFQvXfPBrLhX_VDusBbu0HOF_4w.mft rsync://rpki.ripe.net/repository/DEFAULT/nFQvXfPBrLhX_VDusBbu0HOF_4w.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 13:21:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:79:eb:be:2e:96:92:f5:f8:2b:13:4a:94:f9:a4:66:76 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9c542f5df3c1acb857fd50eeb016eed07385ff8c Validity Not Before: Jan 1 14:17:31 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=636b36f36e606b6b9c63710e5ae0df16e73d88f2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:94:70:28:90:d2:d3:6b:86:69:0d:cf:11:e9: 45:c2:ef:21:6b:cb:27:d6:8b:dc:ef:4c:b9:df:d7: 3b:8f:fe:14:40:6a:d6:c9:c6:64:65:09:0b:0d:07: 94:10:09:24:98:7c:b6:c1:9f:e6:ac:be:b0:19:90: ad:81:52:a9:3d:20:77:22:ca:77:25:50:aa:86:1d: 11:88:0c:ac:05:f7:88:9e:da:0e:35:fe:a4:61:29: be:f6:2e:08:c9:a6:2d:6e:fd:5d:03:d8:fb:c8:b7: 89:62:08:24:4c:3f:15:9b:2c:4b:e7:d8:42:b2:d4: f2:58:89:08:6b:9f:84:0a:fc:38:5a:54:3b:ad:34: 26:f6:38:f4:4f:38:9d:66:e5:de:f2:33:0f:28:5f: c4:8f:80:cc:bc:ef:1f:4a:7e:ae:da:90:b0:39:ab: f2:25:62:98:96:f8:fc:ac:47:3f:6f:44:c1:9a:17: c1:6f:c2:82:5c:02:24:f9:1a:d4:74:db:f6:b7:78: 7c:a3:cd:0b:46:58:af:8f:3d:bd:61:23:4f:de:52: c7:3c:b1:af:d9:b0:0d:5f:00:92:44:e1:2b:6e:f5: e3:02:f4:f9:81:71:67:9e:4d:87:1c:f1:ad:43:7f: 88:67:12:46:f7:a5:e7:26:27:9f:f5:fd:f2:6c:9f: 6e:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 63:6B:36:F3:6E:60:6B:6B:9C:63:71:0E:5A:E0:DF:16:E7:3D:88:F2 X509v3 Authority Key Identifier: keyid:9C:54:2F:5D:F3:C1:AC:B8:57:FD:50:EE:B0:16:EE:D0:73:85:FF:8C X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nFQvXfPBrLhX_VDusBbu0HOF_4w.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/fb791b-8013-458a-9a1e-25dbf43804c5/1/Y2s2825ga2ucY3EOWuDfFuc9iPI.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/fb791b-8013-458a-9a1e-25dbf43804c5/1/nFQvXfPBrLhX_VDusBbu0HOF_4w.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.253.6.0/24 Signature Algorithm: sha256WithRSAEncryption 9f:37:5b:46:70:e0:22:cc:81:fa:ac:f7:6e:9b:5d:45:24:3a: 5a:5f:87:ea:10:c1:04:34:69:5b:59:5b:bb:fb:54:47:b6:f6: 6c:f8:50:ee:16:6e:1c:78:04:0b:0d:35:0e:47:d0:7a:c2:36: 53:51:71:10:d0:66:b1:25:6f:5a:51:6d:a6:8d:bc:6a:dc:8e: b9:73:91:e2:69:bf:10:18:f0:89:b8:bb:11:f9:a7:06:a4:01: 62:b7:79:b9:24:5f:49:6c:13:c7:ca:c6:86:ac:4a:b2:68:40: cd:44:dd:3e:fa:a9:f4:8c:39:2e:a8:a9:8f:8d:98:74:d5:1c: 5b:ce:d4:63:3d:66:12:25:36:1e:aa:a8:84:6e:71:5c:27:96: ce:c0:7f:28:b2:70:52:dc:71:a9:1e:46:37:c4:05:57:6d:c3: 31:1d:4c:06:5b:28:95:7f:48:6f:5a:32:53:e5:1b:ed:45:2f: 3b:e1:52:e7:92:12:ff:d3:99:bf:61:1e:c1:63:19:e4:ac:72: ed:22:fe:c2:a4:ee:30:94:8d:08:c6:d8:f0:5b:8f:18:57:d3: 9e:9b:b0:50:8a:62:2d:93:aa:de:c5:b1:3e:ac:c2:89:7d:28: 4f:87:41:05:70:cd:ed:00:71:89:19:29:a9:27:f6:cc:39:1a: ef:2d:30:24 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt5674ulpL1+CsTSpT5pGZ2MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDljNTQyZjVkZjNjMWFjYjg1N2ZkNTBlZWIwMTZlZWQwNzM4 NWZmOGMwHhcNMjYwMTAxMTQxNzMxWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg2MzZiMzZmMzZlNjA2YjZiOWM2MzcxMGU1YWUwZGYxNmU3M2Q4OGYyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqZRwKJDS02uGaQ3PEelFwu8ha8sn 1ovc70y539c7j/4UQGrWycZkZQkLDQeUEAkkmHy2wZ/mrL6wGZCtgVKpPSB3Isp3 JVCqhh0RiAysBfeIntoONf6kYSm+9i4IyaYtbv1dA9j7yLeJYggkTD8VmyxL59hC stTyWIkIa5+ECvw4WlQ7rTQm9jj0TzidZuXe8jMPKF/Ej4DMvO8fSn6u2pCwOavy JWKYlvj8rEc/b0TBmhfBb8KCXAIk+RrUdNv2t3h8o80LRlivjz29YSNP3lLHPLGv 2bANXwCSROErbvXjAvT5gXFnnk2HHPGtQ3+IZxJG96XnJief9f3ybJ9uzwIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFGNrNvNuYGtrnGNxDlrg3xbnPYjyMB8GA1UdIwQY MBaAFJxUL13zway4V/1Q7rAW7tBzhf+MMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvbkZRdlhmUEJyTGhYX1ZEdXNCYnUwSE9GXzR3LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84YS9mYjc5MWItODAxMy00NThhLTlhMWUt MjVkYmY0MzgwNGM1LzEvWTJzMjgyNWdhMnVjWTNFT1d1RGZGdWM5aVBJLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC84YS9mYjc5MWItODAxMy00NThhLTlhMWUtMjVkYmY0MzgwNGM1 LzEvbkZRdlhmUEJyTGhYX1ZEdXNCYnUwSE9GXzR3LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAuf0GMA0G CSqGSIb3DQEBCwUAA4IBAQCfN1tGcOAizIH6rPdum11FJDpaX4fqEMEENGlbWVu7 +1RHtvZs+FDuFm4ceAQLDTUOR9B6wjZTUXEQ0GaxJW9aUW2mjbxq3I65c5Hiab8Q GPCJuLsR+acGpAFit3m5JF9JbBPHysaGrEqyaEDNRN0++qn0jDkuqKmPjZh01Rxb ztRjPWYSJTYeqqiEbnFcJ5bOwH8osnBS3HGpHkY3xAVXbcMxHUwGWyiVf0hvWjJT 5RvtRS874VLnkhL/05m/YR7BYxnkrHLtIv7CpO4wlI0IxtjwW48YV9Oem7BQimIt k6rexbE+rMKJfShPh0EFcM3tAHGJGSmpJ/bMORrvLTAk -----END CERTIFICATE-----Generated at Sun Jan 25 19:35:17 2026 by rpki-client