This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a9/ccd96e-133e-45b7-88b7-e2ae055eced1/1/SdYBPf9hyZeCBZ0CXzRVluMGnGU.roa File: SdYBPf9hyZeCBZ0CXzRVluMGnGU.roa (raw, json) Hash identifier: hgdsfyjTVsGnv4VajpzC0ZJUGOBghoLM7l+xd5EQZGI= Subject key identifier: 49:D6:01:3D:FF:61:C9:97:82:05:9D:02:5F:34:55:96:E3:06:9C:65 Certificate issuer: /CN=2df8779a3c82f00fc14435ee7d8d0b8d6dd8204e Certificate serial: 019B797F087C302408D71160B2A3DF1F0730 Authority key identifier: 2D:F8:77:9A:3C:82:F0:0F:C1:44:35:EE:7D:8D:0B:8D:6D:D8:20:4E Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Lfh3mjyC8A_BRDXufY0LjW3YIE4.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a9/ccd96e-133e-45b7-88b7-e2ae055eced1/1/SdYBPf9hyZeCBZ0CXzRVluMGnGU.roa Signing time: Thu 01 Jan 2026 12:18:46 +0000 ROA not before: Thu 01 Jan 2026 12:18:46 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 48095 IP address blocks: 31.40.224.0/23 maxlen: 23 31.40.226.0/23 maxlen: 23 77.247.112.0/23 maxlen: 23 77.247.114.0/23 maxlen: 23 87.101.80.0/22 maxlen: 22 185.158.68.0/23 maxlen: 23 185.158.70.0/23 maxlen: 23 185.222.132.0/22 maxlen: 22 188.65.16.0/22 maxlen: 22 193.9.152.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a9/ccd96e-133e-45b7-88b7-e2ae055eced1/1/Lfh3mjyC8A_BRDXufY0LjW3YIE4.crl rsync://rpki.ripe.net/repository/DEFAULT/a9/ccd96e-133e-45b7-88b7-e2ae055eced1/1/Lfh3mjyC8A_BRDXufY0LjW3YIE4.mft rsync://rpki.ripe.net/repository/DEFAULT/Lfh3mjyC8A_BRDXufY0LjW3YIE4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 21:01:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:79:7f:08:7c:30:24:08:d7:11:60:b2:a3:df:1f:07:30 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2df8779a3c82f00fc14435ee7d8d0b8d6dd8204e Validity Not Before: Jan 1 12:18:46 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=49d6013dff61c99782059d025f345596e3069c65 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:9f:42:a5:3e:1d:e6:39:4f:19:73:90:72:87: 64:17:3b:6f:be:dc:5f:cb:3b:f1:68:69:95:c5:1c: 16:95:38:3f:96:c8:20:3a:93:05:bc:13:49:6f:fe: 2e:88:7c:25:08:89:9a:5f:4d:c0:40:43:9a:4c:18: cc:11:7e:54:7e:ca:1a:bd:3b:d4:08:30:68:8b:e0: 58:24:fe:59:46:d4:01:fb:25:df:a5:96:28:a1:c1: b2:ef:ca:f4:a8:c4:88:11:b7:f4:d9:61:9f:a7:c0: 40:cd:26:6e:95:ba:cf:11:3f:7a:4e:ce:f8:02:78: 39:3d:4e:6e:3c:e6:fd:48:09:08:41:38:50:2b:07: 30:fe:d4:06:89:05:90:1c:31:ed:9b:c5:ee:10:53: d2:ba:81:53:54:31:1d:8d:a1:90:39:92:12:ce:f4: 79:41:97:12:7a:92:30:75:7b:87:7c:9a:48:da:7d: e4:ca:f8:7a:a6:74:fb:20:70:b9:b4:ae:a9:d1:17: b2:02:ce:dc:91:a2:39:6d:4b:34:7e:95:b4:f4:b6: 51:12:63:af:e2:6b:d4:4f:83:fd:f1:8e:7d:66:18: f7:81:f7:19:dd:f2:f5:9d:11:57:aa:b6:37:4b:e0: 31:79:3a:b3:69:5d:78:0b:e9:2a:86:64:50:d4:c1: 14:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 49:D6:01:3D:FF:61:C9:97:82:05:9D:02:5F:34:55:96:E3:06:9C:65 X509v3 Authority Key Identifier: keyid:2D:F8:77:9A:3C:82:F0:0F:C1:44:35:EE:7D:8D:0B:8D:6D:D8:20:4E X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Lfh3mjyC8A_BRDXufY0LjW3YIE4.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a9/ccd96e-133e-45b7-88b7-e2ae055eced1/1/SdYBPf9hyZeCBZ0CXzRVluMGnGU.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/a9/ccd96e-133e-45b7-88b7-e2ae055eced1/1/Lfh3mjyC8A_BRDXufY0LjW3YIE4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 31.40.224.0/22 77.247.112.0/22 87.101.80.0/22 185.158.68.0/22 185.222.132.0/22 188.65.16.0/22 193.9.152.0/22 Signature Algorithm: sha256WithRSAEncryption 7b:1b:c0:7e:5e:a6:99:66:1d:84:a7:01:57:67:50:81:39:21: 10:44:e6:ef:5f:e5:39:5e:20:43:c0:24:1c:19:4e:e9:ce:f0: 56:11:92:72:d6:6f:7e:1b:32:d2:f5:8a:a8:14:23:e6:e8:9f: 76:90:7b:85:c8:7c:f9:3a:15:0a:5a:7b:9b:f4:20:f7:0f:3a: 4d:15:5b:69:c6:b1:c9:20:82:2b:36:47:2d:cc:55:aa:f1:39: 9e:83:73:41:94:ca:e6:81:e9:93:25:00:00:f5:bb:26:f0:7e: 0e:24:13:c4:c6:e6:1f:90:c4:40:c8:8f:6d:cf:9b:15:40:3d: ef:a5:10:65:b9:41:a1:c6:a1:87:24:b9:fa:c4:ae:8e:4e:14: 3a:48:ba:04:7f:bd:cf:75:58:50:94:b7:0e:20:4b:6b:8f:88: 74:49:49:33:d9:d3:60:59:b4:1a:46:3d:19:4c:4b:ab:d8:a0: e4:38:ca:58:25:14:50:a7:16:e6:91:85:da:ac:3d:fa:17:cb: 51:5d:bb:09:1f:61:30:85:3c:6e:e7:f4:a5:d7:5a:ff:e3:38: 4b:ab:ad:8b:7a:93:33:6a:54:c6:b8:32:05:5c:0e:31:50:e1: 79:6b:a2:8d:26:bb:56:06:b6:d5:15:e7:fe:d2:83:4f:36:57: e2:f4:c5:77 -----BEGIN CERTIFICATE----- MIIFITCCBAmgAwIBAgISAZt5fwh8MCQI1xFgsqPfHwcwMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJkZjg3NzlhM2M4MmYwMGZjMTQ0MzVlZTdkOGQwYjhkNmRk ODIwNGUwHhcNMjYwMTAxMTIxODQ2WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg0OWQ2MDEzZGZmNjFjOTk3ODIwNTlkMDI1ZjM0NTU5NmUzMDY5YzY1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyJ9CpT4d5jlPGXOQcodkFztvvtxf yzvxaGmVxRwWlTg/lsggOpMFvBNJb/4uiHwlCImaX03AQEOaTBjMEX5UfsoavTvU CDBoi+BYJP5ZRtQB+yXfpZYoocGy78r0qMSIEbf02WGfp8BAzSZulbrPET96Ts74 Ang5PU5uPOb9SAkIQThQKwcw/tQGiQWQHDHtm8XuEFPSuoFTVDEdjaGQOZISzvR5 QZcSepIwdXuHfJpI2n3kyvh6pnT7IHC5tK6p0ReyAs7ckaI5bUs0fpW09LZREmOv 4mvUT4P98Y59Zhj3gfcZ3fL1nRFXqrY3S+AxeTqzaV14C+kqhmRQ1MEU7wIDAQAB o4ICLTCCAikwHQYDVR0OBBYEFEnWAT3/YcmXggWdAl80VZbjBpxlMB8GA1UdIwQY MBaAFC34d5o8gvAPwUQ17n2NC41t2CBOMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvTGZoM21qeUM4QV9CUkRYdWZZMExqVzNZSUU0LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hOS9jY2Q5NmUtMTMzZS00NWI3LTg4Yjct ZTJhZTA1NWVjZWQxLzEvU2RZQlBmOWh5WmVDQlowQ1h6UlZsdU1HbkdVLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9hOS9jY2Q5NmUtMTMzZS00NWI3LTg4YjctZTJhZTA1NWVjZWQx LzEvTGZoM21qeUM4QV9CUkRYdWZZMExqVzNZSUU0LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMEMGCCsGAQUFBwEHAQH/BDQwMjAwBAIAATAqAwQCHyjgAwQC TfdwAwQCV2VQAwQCuZ5EAwQCud6EAwQCvEEQAwQCwQmYMA0GCSqGSIb3DQEBCwUA A4IBAQB7G8B+XqaZZh2EpwFXZ1CBOSEQRObvX+U5XiBDwCQcGU7pzvBWEZJy1m9+ GzLS9YqoFCPm6J92kHuFyHz5OhUKWnub9CD3DzpNFVtpxrHJIIIrNkctzFWq8Tme g3NBlMrmgemTJQAA9bsm8H4OJBPExuYfkMRAyI9tz5sVQD3vpRBluUGhxqGHJLn6 xK6OThQ6SLoEf73PdVhQlLcOIEtrj4h0SUkz2dNgWbQaRj0ZTEur2KDkOMpYJRRQ pxbmkYXarD36F8tRXbsJH2EwhTxu5/Sl11r/4zhLq62LepMzalTGuDIFXA4xUOF5 a6KNJrtWBrbVFef+0oNPNlfi9MV3 -----END CERTIFICATE-----Generated at Mon Jan 26 03:27:21 2026 by rpki-client