This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ba/634a12-e58c-455c-8933-6e6e8d9303e9/1/yuZ207ZJKtZoW9jfm_MLQlQ6DH0.roa File: yuZ207ZJKtZoW9jfm_MLQlQ6DH0.roa (raw, json) Hash identifier: YnYml4UkB8mK1DtGV4RcykMNaOP/4CH8hUy+LRFYkt8= Subject key identifier: CA:E6:76:D3:B6:49:2A:D6:68:5B:D8:DF:9B:F3:0B:42:54:3A:0C:7D Certificate issuer: /CN=04a2ae2cd094333018c41daafb474c6cfa80d07d Certificate serial: 019B791064EA49F2AC0BD6032C33B25DBD60 Authority key identifier: 04:A2:AE:2C:D0:94:33:30:18:C4:1D:AA:FB:47:4C:6C:FA:80:D0:7D Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BKKuLNCUMzAYxB2q-0dMbPqA0H0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ba/634a12-e58c-455c-8933-6e6e8d9303e9/1/yuZ207ZJKtZoW9jfm_MLQlQ6DH0.roa Signing time: Thu 01 Jan 2026 10:17:56 +0000 ROA not before: Thu 01 Jan 2026 10:17:56 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 12426 IP address blocks: 185.28.144.0/22 maxlen: 22 217.145.192.0/20 maxlen: 20 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ba/634a12-e58c-455c-8933-6e6e8d9303e9/1/BKKuLNCUMzAYxB2q-0dMbPqA0H0.crl rsync://rpki.ripe.net/repository/DEFAULT/ba/634a12-e58c-455c-8933-6e6e8d9303e9/1/BKKuLNCUMzAYxB2q-0dMbPqA0H0.mft rsync://rpki.ripe.net/repository/DEFAULT/BKKuLNCUMzAYxB2q-0dMbPqA0H0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 27 Jan 2026 13:01:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:79:10:64:ea:49:f2:ac:0b:d6:03:2c:33:b2:5d:bd:60 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=04a2ae2cd094333018c41daafb474c6cfa80d07d Validity Not Before: Jan 1 10:17:56 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=cae676d3b6492ad6685bd8df9bf30b42543a0c7d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e2:98:e2:98:58:4b:23:96:69:cc:69:f5:ec:bd: 31:4f:75:8f:ce:ca:e0:ff:a4:16:92:f3:ba:3d:f6: 8e:d9:66:42:1f:12:97:5c:36:a7:b5:26:22:6d:a0: 1b:e0:5b:eb:65:8e:38:3d:eb:57:2d:6b:c2:5c:1f: 1e:83:2f:e0:7e:17:6d:05:60:42:5d:54:56:4d:ff: 9f:bc:5b:3e:42:a8:ba:d6:39:5e:82:20:d5:2a:16: 7c:b2:fb:b1:f4:3a:e3:b2:1a:ec:cf:4b:10:09:03: ae:0f:1b:2c:0d:9c:5c:ae:aa:26:12:ea:fe:32:99: 8c:49:28:ef:b1:44:34:85:3f:ea:01:27:58:8b:bb: e6:2a:61:15:94:dc:4c:fe:08:b0:b9:57:96:78:00: 70:0d:f9:cb:db:60:03:f6:e3:70:18:e1:84:44:7d: 4f:4b:bc:4c:99:33:48:eb:4f:27:f0:21:1e:cf:c9: 5e:76:09:4c:4b:23:a9:aa:2a:d5:40:ed:2c:f5:d4: 9f:84:18:e3:97:e7:2c:1f:ae:b9:df:ae:53:73:a0: 8b:8e:ec:06:44:50:7c:4a:fd:ec:99:79:0a:9f:78: 7b:fb:c5:3a:9a:87:0a:94:49:99:5f:78:fa:a3:5d: 4b:b7:3d:71:d6:14:40:4a:0d:26:39:ab:4b:31:fd: 4e:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CA:E6:76:D3:B6:49:2A:D6:68:5B:D8:DF:9B:F3:0B:42:54:3A:0C:7D X509v3 Authority Key Identifier: keyid:04:A2:AE:2C:D0:94:33:30:18:C4:1D:AA:FB:47:4C:6C:FA:80:D0:7D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BKKuLNCUMzAYxB2q-0dMbPqA0H0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ba/634a12-e58c-455c-8933-6e6e8d9303e9/1/yuZ207ZJKtZoW9jfm_MLQlQ6DH0.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/ba/634a12-e58c-455c-8933-6e6e8d9303e9/1/BKKuLNCUMzAYxB2q-0dMbPqA0H0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.28.144.0/22 217.145.192.0/20 Signature Algorithm: sha256WithRSAEncryption a3:ad:de:d3:a5:44:9a:4c:a5:e1:60:bc:d3:10:86:6b:70:d9: 74:03:62:02:f6:9c:39:d5:64:32:d5:5c:6f:4e:2d:86:4e:21: e6:28:96:24:6f:a7:f4:60:70:6f:ea:c6:9c:dc:5d:f0:04:16: 59:e1:f8:2f:40:ea:30:02:4b:8f:94:d9:c4:49:8c:85:98:a9: 30:45:63:a0:2c:38:da:e5:50:80:91:45:3e:06:e5:f9:fa:6f: 43:e3:1c:22:5d:0c:05:d8:42:36:cf:b2:1d:2a:ef:00:f9:c4: 36:4b:73:17:da:57:4e:a9:26:f9:e0:c2:79:df:08:e0:d8:71: fe:a4:c7:30:f1:b4:22:34:31:c3:ff:21:3b:0f:35:69:a3:65: ca:7c:20:7f:f2:59:fb:ee:c8:cd:8f:03:86:15:d2:a7:40:a2: 0d:00:44:2a:5f:86:bf:b1:93:55:b9:e0:35:7f:9c:04:28:0b: 54:a2:56:ff:57:94:ce:18:12:c7:ca:ce:7f:3d:3b:29:f2:02: 2f:92:81:4e:e5:4d:3c:40:25:67:17:89:07:78:e3:21:7a:d0: 00:44:1b:de:db:b6:80:ed:08:4a:2b:a0:a2:d1:25:09:6d:3e: 43:03:ba:c4:c2:6b:4a:99:66:92:3b:29:bf:8d:97:93:e2:36: 07:09:a9:fc -----BEGIN CERTIFICATE----- MIIFAzCCA+ugAwIBAgISAZt5EGTqSfKsC9YDLDOyXb1gMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDA0YTJhZTJjZDA5NDMzMzAxOGM0MWRhYWZiNDc0YzZjZmE4 MGQwN2QwHhcNMjYwMTAxMTAxNzU2WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhjYWU2NzZkM2I2NDkyYWQ2Njg1YmQ4ZGY5YmYzMGI0MjU0M2EwYzdkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA4pjimFhLI5ZpzGn17L0xT3WPzsrg /6QWkvO6PfaO2WZCHxKXXDantSYibaAb4FvrZY44PetXLWvCXB8egy/gfhdtBWBC XVRWTf+fvFs+Qqi61jlegiDVKhZ8svux9Drjshrsz0sQCQOuDxssDZxcrqomEur+ MpmMSSjvsUQ0hT/qASdYi7vmKmEVlNxM/giwuVeWeABwDfnL22AD9uNwGOGERH1P S7xMmTNI608n8CEez8ledglMSyOpqirVQO0s9dSfhBjjl+csH665365Tc6CLjuwG RFB8Sv3smXkKn3h7+8U6mocKlEmZX3j6o11Ltz1x1hRASg0mOatLMf1OtQIDAQAB o4ICDzCCAgswHQYDVR0OBBYEFMrmdtO2SSrWaFvY35vzC0JUOgx9MB8GA1UdIwQY MBaAFASirizQlDMwGMQdqvtHTGz6gNB9MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvQktLdUxOQ1VNekFZeEIycS0wZE1iUHFBMEgwLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iYS82MzRhMTItZTU4Yy00NTVjLTg5MzMt NmU2ZThkOTMwM2U5LzEveXVaMjA3WkpLdFpvVzlqZm1fTUxRbFE2REgwLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iYS82MzRhMTItZTU4Yy00NTVjLTg5MzMtNmU2ZThkOTMwM2U5 LzEvQktLdUxOQ1VNekFZeEIycS0wZE1iUHFBMEgwLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQCuRyQAwQE 2ZHAMA0GCSqGSIb3DQEBCwUAA4IBAQCjrd7TpUSaTKXhYLzTEIZrcNl0A2IC9pw5 1WQy1VxvTi2GTiHmKJYkb6f0YHBv6sac3F3wBBZZ4fgvQOowAkuPlNnESYyFmKkw RWOgLDja5VCAkUU+BuX5+m9D4xwiXQwF2EI2z7IdKu8A+cQ2S3MX2ldOqSb54MJ5 3wjg2HH+pMcw8bQiNDHD/yE7DzVpo2XKfCB/8ln77sjNjwOGFdKnQKINAEQqX4a/ sZNVueA1f5wEKAtUolb/V5TOGBLHys5/PTsp8gIvkoFO5U08QCVnF4kHeOMhetAA RBve27aA7QhKK6Ci0SUJbT5DA7rEwmtKmWaSOym/jZeT4jYHCan8 -----END CERTIFICATE-----Generated at Mon Jan 26 17:46:25 2026 by rpki-client