This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b1/cdddd5-817a-4113-8b82-23049e4d2f12/1/Y717qVS96YjYgAZkrscDp7OEvWY.roa File: Y717qVS96YjYgAZkrscDp7OEvWY.roa (raw, json) Hash identifier: bvdM3ELPzWVbs/s6wCevWXdZqt/DIba2BD86BPGfAIQ= Subject key identifier: 63:BD:7B:A9:54:BD:E9:88:D8:80:06:64:AE:C7:03:A7:B3:84:BD:66 Certificate issuer: /CN=351a2fd6f5e5af87d5cea095066fbcc3d3e546a4 Certificate serial: 019B79ECBE41963209A61C4778FA2C029F69 Authority key identifier: 35:1A:2F:D6:F5:E5:AF:87:D5:CE:A0:95:06:6F:BC:C3:D3:E5:46:A4 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NRov1vXlr4fVzqCVBm-8w9PlRqQ.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b1/cdddd5-817a-4113-8b82-23049e4d2f12/1/Y717qVS96YjYgAZkrscDp7OEvWY.roa Signing time: Thu 01 Jan 2026 14:18:36 +0000 ROA not before: Thu 01 Jan 2026 14:18:36 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 47223 IP address blocks: 91.106.24.0/23 maxlen: 23 91.106.26.0/23 maxlen: 23 91.106.30.0/23 maxlen: 23 94.240.0.0/24 maxlen: 24 94.240.1.0/24 maxlen: 24 94.240.2.0/24 maxlen: 24 94.240.3.0/24 maxlen: 24 94.240.4.0/24 maxlen: 24 94.240.7.0/24 maxlen: 24 94.240.23.0/24 maxlen: 24 94.240.32.0/21 maxlen: 21 94.240.32.0/23 maxlen: 23 94.240.34.0/24 maxlen: 24 94.240.35.0/24 maxlen: 24 94.240.40.0/24 maxlen: 24 94.240.42.0/24 maxlen: 24 94.240.44.0/22 maxlen: 22 94.240.46.0/24 maxlen: 24 94.240.48.0/22 maxlen: 22 94.240.48.0/24 maxlen: 24 94.240.50.0/24 maxlen: 24 94.240.51.0/24 maxlen: 24 94.240.62.0/23 maxlen: 23 94.240.63.0/24 maxlen: 24 185.139.16.0/22 maxlen: 22 194.152.46.0/23 maxlen: 23 2a01:6e80::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b1/cdddd5-817a-4113-8b82-23049e4d2f12/1/NRov1vXlr4fVzqCVBm-8w9PlRqQ.crl rsync://rpki.ripe.net/repository/DEFAULT/b1/cdddd5-817a-4113-8b82-23049e4d2f12/1/NRov1vXlr4fVzqCVBm-8w9PlRqQ.mft rsync://rpki.ripe.net/repository/DEFAULT/NRov1vXlr4fVzqCVBm-8w9PlRqQ.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 22:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:79:ec:be:41:96:32:09:a6:1c:47:78:fa:2c:02:9f:69 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=351a2fd6f5e5af87d5cea095066fbcc3d3e546a4 Validity Not Before: Jan 1 14:18:36 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=63bd7ba954bde988d8800664aec703a7b384bd66 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:eb:c6:54:cb:f2:df:a3:6c:43:0e:6c:2d:16: 1d:92:24:de:a1:8d:53:82:82:37:18:67:73:49:e8: 65:60:34:d1:de:75:54:b4:1d:c2:a4:80:c5:25:f8: 53:05:9f:f4:56:2c:d4:48:26:50:9b:56:05:70:6c: 91:08:16:39:54:4f:b6:56:9a:2d:3c:d9:85:de:60: a9:56:0b:ea:c8:7a:16:8d:4a:80:ad:fe:0a:99:50: c4:bb:eb:7e:a3:21:af:67:0a:ee:e5:7f:66:65:52: e6:45:c4:9b:28:c9:a9:03:a1:82:2c:94:e7:55:2b: a9:7a:e6:17:ea:5d:9c:b9:69:87:e1:86:3a:f8:9a: 5d:2c:4f:76:39:a3:47:83:e3:27:62:42:34:4c:d2: 3a:a4:84:3f:08:2e:3c:ae:87:98:a3:51:f3:5e:9f: ac:dd:c7:a6:5a:3b:f7:bf:7f:4f:2a:cd:4f:3e:76: ef:06:c8:03:c4:f5:d7:37:93:5f:1e:16:ab:5d:e9: e4:6d:03:9a:fa:1e:1a:3b:d8:1c:fb:02:90:b3:4d: b3:12:5c:1b:36:78:dd:e7:bf:d7:03:f2:8a:47:ed: f4:70:d5:94:49:b1:7d:9e:83:2d:46:6f:ce:33:cf: 50:d8:cc:dd:71:fe:8b:35:44:1a:dc:80:fb:48:26: 88:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 63:BD:7B:A9:54:BD:E9:88:D8:80:06:64:AE:C7:03:A7:B3:84:BD:66 X509v3 Authority Key Identifier: keyid:35:1A:2F:D6:F5:E5:AF:87:D5:CE:A0:95:06:6F:BC:C3:D3:E5:46:A4 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NRov1vXlr4fVzqCVBm-8w9PlRqQ.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/cdddd5-817a-4113-8b82-23049e4d2f12/1/Y717qVS96YjYgAZkrscDp7OEvWY.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/cdddd5-817a-4113-8b82-23049e4d2f12/1/NRov1vXlr4fVzqCVBm-8w9PlRqQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 91.106.24.0/22 91.106.30.0/23 94.240.0.0-94.240.4.255 94.240.7.0/24 94.240.23.0/24 94.240.32.0-94.240.40.255 94.240.42.0/24 94.240.44.0-94.240.51.255 94.240.62.0/23 185.139.16.0/22 194.152.46.0/23 IPv6: 2a01:6e80::/32 Signature Algorithm: sha256WithRSAEncryption 02:de:7c:17:d0:b0:0e:d3:80:26:db:ab:18:fd:65:5c:22:98: 35:9d:62:82:88:e8:e1:c0:87:51:66:f1:9d:96:c9:51:fe:19: 2e:8b:88:1a:2f:43:90:83:5c:33:2b:43:8d:bd:02:90:ad:de: 24:1a:56:4b:ea:4c:fc:73:f5:61:d7:da:5e:e4:59:29:25:d4: b7:9a:25:11:6a:17:bc:b8:87:47:c1:36:af:62:2d:0f:91:d1: 10:49:dc:2e:10:19:ef:4e:32:aa:62:44:24:e7:85:89:2b:e8: e3:0c:ac:7f:ce:33:b6:a0:3b:d8:82:76:25:8d:2d:61:12:46: df:ba:44:5d:ee:3e:73:85:18:10:ac:56:8d:10:10:ff:81:78: 07:98:cb:b4:93:81:23:70:16:62:2a:8b:e8:66:87:39:a8:71: 63:16:cc:c2:bf:ca:d4:3e:a4:5a:10:6d:84:9f:5f:8a:ba:5c: d9:1f:87:78:b5:ab:ab:7f:81:a0:00:75:67:ba:fd:ab:08:f8: 1d:d3:2d:d3:66:cb:91:0a:bf:7d:0a:24:4e:b2:0f:d8:f5:06: d4:35:dd:ef:f3:bd:e6:13:52:eb:5f:5b:16:82:77:e3:a4:69: 9a:a7:a7:a6:53:2e:f7:ef:e2:b2:4c:2f:7c:e7:5c:5e:76:70: fb:b9:53:de -----BEGIN CERTIFICATE----- MIIFYDCCBEigAwIBAgISAZt57L5BljIJphxHePosAp9pMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDM1MWEyZmQ2ZjVlNWFmODdkNWNlYTA5NTA2NmZiY2MzZDNl NTQ2YTQwHhcNMjYwMTAxMTQxODM2WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg2M2JkN2JhOTU0YmRlOTg4ZDg4MDA2NjRhZWM3MDNhN2IzODRiZDY2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzuvGVMvy36NsQw5sLRYdkiTeoY1T goI3GGdzSehlYDTR3nVUtB3CpIDFJfhTBZ/0VizUSCZQm1YFcGyRCBY5VE+2Vpot PNmF3mCpVgvqyHoWjUqArf4KmVDEu+t+oyGvZwru5X9mZVLmRcSbKMmpA6GCLJTn VSupeuYX6l2cuWmH4YY6+JpdLE92OaNHg+MnYkI0TNI6pIQ/CC48roeYo1HzXp+s 3cemWjv3v39PKs1PPnbvBsgDxPXXN5NfHharXenkbQOa+h4aO9gc+wKQs02zElwb Nnjd57/XA/KKR+30cNWUSbF9noMtRm/OM89Q2Mzdcf6LNUQa3ID7SCaI6QIDAQAB o4ICbDCCAmgwHQYDVR0OBBYEFGO9e6lUvemI2IAGZK7HA6ezhL1mMB8GA1UdIwQY MBaAFDUaL9b15a+H1c6glQZvvMPT5UakMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvTlJvdjF2WGxyNGZWenFDVkJtLTh3OVBsUnFRLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iMS9jZGRkZDUtODE3YS00MTEzLThiODIt MjMwNDllNGQyZjEyLzEvWTcxN3FWUzk2WWpZZ0Faa3JzY0RwN09FdldZLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iMS9jZGRkZDUtODE3YS00MTEzLThiODItMjMwNDllNGQyZjEy LzEvTlJvdjF2WGxyNGZWenFDVkJtLTh3OVBsUnFRLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMIGBBggrBgEFBQcBBwEB/wRyMHAwXwQCAAEwWQMEAltqGAME AVtqHjALAwMEXvADBABe8AQDBABe8AcDBABe8BcwDAMEBV7wIAMEAF7wKAMEAF7w KjAMAwQCXvAsAwQCXvAwAwQBXvA+AwQCuYsQAwQBwpguMA0EAgACMAcDBQAqAW6A MA0GCSqGSIb3DQEBCwUAA4IBAQAC3nwX0LAO04Am26sY/WVcIpg1nWKCiOjhwIdR ZvGdlslR/hkui4gaL0OQg1wzK0ONvQKQrd4kGlZL6kz8c/Vh19pe5FkpJdS3miUR ahe8uIdHwTavYi0PkdEQSdwuEBnvTjKqYkQk54WJK+jjDKx/zjO2oDvYgnYljS1h EkbfukRd7j5zhRgQrFaNEBD/gXgHmMu0k4EjcBZiKovoZoc5qHFjFszCv8rUPqRa EG2En1+KulzZH4d4taurf4GgAHVnuv2rCPgd0y3TZsuRCr99CiROsg/Y9QbUNd3v 873mE1LrX1sWgnfjpGmap6emUy737+KyTC9851xednD7uVPe -----END CERTIFICATE-----Generated at Mon Jan 26 07:09:57 2026 by rpki-client