This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c0/45772a-a10f-429d-b5db-9218f92f3036/1/yAmjstmK_WAKkiMnnSQlSpVnKX0.roa File: yAmjstmK_WAKkiMnnSQlSpVnKX0.roa (raw, json) Hash identifier: rk5CxmSreGsegz3mqebupC7Tg4Z4mve0MyRTJ4uS7E4= Subject key identifier: C8:09:A3:B2:D9:8A:FD:60:0A:92:23:27:9D:24:25:4A:95:67:29:7D Certificate issuer: /CN=e9057470fd56f1b773b2e40abaee79f9966e4436 Certificate serial: 019B7DCA05694387FA6655090C22CA2D5267 Authority key identifier: E9:05:74:70:FD:56:F1:B7:73:B2:E4:0A:BA:EE:79:F9:96:6E:44:36 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6QV0cP1W8bdzsuQKuu55-ZZuRDY.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c0/45772a-a10f-429d-b5db-9218f92f3036/1/yAmjstmK_WAKkiMnnSQlSpVnKX0.roa Signing time: Fri 02 Jan 2026 08:19:10 +0000 ROA not before: Fri 02 Jan 2026 08:19:10 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 209014 IP address blocks: 164.138.192.0/21 maxlen: 21 2a00:bac0::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c0/45772a-a10f-429d-b5db-9218f92f3036/1/6QV0cP1W8bdzsuQKuu55-ZZuRDY.crl rsync://rpki.ripe.net/repository/DEFAULT/c0/45772a-a10f-429d-b5db-9218f92f3036/1/6QV0cP1W8bdzsuQKuu55-ZZuRDY.mft rsync://rpki.ripe.net/repository/DEFAULT/6QV0cP1W8bdzsuQKuu55-ZZuRDY.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 13:21:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7d:ca:05:69:43:87:fa:66:55:09:0c:22:ca:2d:52:67 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=e9057470fd56f1b773b2e40abaee79f9966e4436 Validity Not Before: Jan 2 08:19:10 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=c809a3b2d98afd600a9223279d24254a9567297d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:00:0a:d1:a2:07:a1:97:90:51:d4:cf:da:d9: bd:10:87:9d:24:3d:e5:93:23:6f:2c:2c:45:77:f2: ac:33:fb:d7:1d:88:3f:25:eb:11:a9:c5:64:05:d9: 9c:74:68:f5:b8:44:e9:f0:5c:ac:2f:47:97:b3:10: 12:88:dc:0b:81:be:0b:a0:c2:cd:e9:b7:6e:3f:96: cb:90:fa:4a:f8:ac:d6:29:92:1f:72:ff:b0:58:2a: c3:46:35:e2:a6:c3:a9:4c:c6:8c:f3:2d:12:09:ca: 09:73:74:8c:62:30:af:3a:b9:15:32:ee:c8:e6:3b: 79:70:f2:c2:74:a6:f3:7d:57:7d:46:9b:6e:a5:71: 41:0c:b4:1b:be:b8:3e:2c:7e:df:55:bc:8a:f5:34: 8b:f2:b8:3b:be:39:cc:5c:91:51:7d:b3:a4:28:5b: 4d:96:f4:09:db:4e:fa:2d:49:ca:51:c5:21:84:d1: e8:d7:5c:eb:2c:c4:98:77:b9:fb:f7:16:6c:84:8d: e3:da:78:3e:9b:10:6c:be:26:8a:55:b0:b9:c8:a1: 09:3b:f3:bf:03:4e:47:b5:73:3b:db:3b:bd:c6:e9: fb:76:e9:21:9c:db:72:81:61:b5:d6:ee:61:af:17: bf:49:2a:24:06:92:04:fa:a2:53:0b:44:30:6b:95: 15:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C8:09:A3:B2:D9:8A:FD:60:0A:92:23:27:9D:24:25:4A:95:67:29:7D X509v3 Authority Key Identifier: keyid:E9:05:74:70:FD:56:F1:B7:73:B2:E4:0A:BA:EE:79:F9:96:6E:44:36 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6QV0cP1W8bdzsuQKuu55-ZZuRDY.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/45772a-a10f-429d-b5db-9218f92f3036/1/yAmjstmK_WAKkiMnnSQlSpVnKX0.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/45772a-a10f-429d-b5db-9218f92f3036/1/6QV0cP1W8bdzsuQKuu55-ZZuRDY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 164.138.192.0/21 IPv6: 2a00:bac0::/32 Signature Algorithm: sha256WithRSAEncryption 5a:77:ae:97:00:1a:b4:b0:7e:65:1b:ae:6c:75:5f:be:88:3b: 7a:de:e6:41:a9:65:ef:32:e9:29:44:a1:da:2a:81:c7:46:5a: 5c:9f:71:0c:af:59:dc:3c:4b:49:2d:6d:5e:f0:2b:a6:c7:1a: 2e:61:92:9c:95:4c:0d:74:c0:4a:51:c8:44:fe:d4:9d:7a:36: 7e:e0:46:64:8e:a8:e1:fa:7f:b0:21:ca:c0:9f:8f:e4:2d:d3: 94:df:0d:5e:0a:9f:77:1a:3b:19:e1:39:e8:a3:1f:bd:4d:30: cd:a5:3e:74:1c:73:ac:6c:70:f9:68:24:c7:b1:03:61:52:7b: c5:ad:f8:54:fb:ee:1d:65:6a:ae:fa:0f:7f:bd:e0:83:4f:d3: b2:3d:b7:09:da:64:ec:63:fc:8e:56:f7:de:d9:c0:19:02:80: 64:2b:5c:62:a7:b5:6e:aa:6c:66:4b:b7:70:50:63:89:72:d3: a4:a1:21:db:8b:17:7f:4f:7d:dd:92:2e:6f:3e:d6:de:a9:c0: f0:45:6e:9d:14:69:8a:fa:92:00:71:20:cc:67:1c:af:5c:1e: 4e:0c:26:80:cd:0d:ce:99:aa:d4:b1:10:bd:85:7d:fc:0d:c1: d5:98:ba:28:18:42:fb:10:18:e5:93:48:54:fc:87:9e:9e:30: c8:1b:70:f2 -----BEGIN CERTIFICATE----- MIIFDDCCA/SgAwIBAgISAZt9ygVpQ4f6ZlUJDCLKLVJnMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGU5MDU3NDcwZmQ1NmYxYjc3M2IyZTQwYWJhZWU3OWY5OTY2 ZTQ0MzYwHhcNMjYwMTAyMDgxOTEwWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhjODA5YTNiMmQ5OGFmZDYwMGE5MjIzMjc5ZDI0MjU0YTk1NjcyOTdkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAoQAK0aIHoZeQUdTP2tm9EIedJD3l kyNvLCxFd/KsM/vXHYg/JesRqcVkBdmcdGj1uETp8FysL0eXsxASiNwLgb4LoMLN 6bduP5bLkPpK+KzWKZIfcv+wWCrDRjXipsOpTMaM8y0SCcoJc3SMYjCvOrkVMu7I 5jt5cPLCdKbzfVd9RptupXFBDLQbvrg+LH7fVbyK9TSL8rg7vjnMXJFRfbOkKFtN lvQJ2076LUnKUcUhhNHo11zrLMSYd7n79xZshI3j2ng+mxBsviaKVbC5yKEJO/O/ A05HtXM72zu9xun7dukhnNtygWG11u5hrxe/SSokBpIE+qJTC0Qwa5UV3QIDAQAB o4ICGDCCAhQwHQYDVR0OBBYEFMgJo7LZiv1gCpIjJ50kJUqVZyl9MB8GA1UdIwQY MBaAFOkFdHD9VvG3c7LkCrruefmWbkQ2MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvNlFWMGNQMVc4YmR6c3VRS3V1NTUtWlp1UkRZLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jMC80NTc3MmEtYTEwZi00MjlkLWI1ZGIt OTIxOGY5MmYzMDM2LzEveUFtanN0bUtfV0FLa2lNbm5TUWxTcFZuS1gwLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9jMC80NTc3MmEtYTEwZi00MjlkLWI1ZGItOTIxOGY5MmYzMDM2 LzEvNlFWMGNQMVc4YmR6c3VRS3V1NTUtWlp1UkRZLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMC4GCCsGAQUFBwEHAQH/BB8wHTAMBAIAATAGAwQDpIrAMA0E AgACMAcDBQAqALrAMA0GCSqGSIb3DQEBCwUAA4IBAQBad66XABq0sH5lG65sdV++ iDt63uZBqWXvMukpRKHaKoHHRlpcn3EMr1ncPEtJLW1e8CumxxouYZKclUwNdMBK UchE/tSdejZ+4EZkjqjh+n+wIcrAn4/kLdOU3w1eCp93GjsZ4Tnoox+9TTDNpT50 HHOsbHD5aCTHsQNhUnvFrfhU++4dZWqu+g9/veCDT9OyPbcJ2mTsY/yOVvfe2cAZ AoBkK1xip7VuqmxmS7dwUGOJctOkoSHbixd/T33dki5vPtbeqcDwRW6dFGmK+pIA cSDMZxyvXB5ODCaAzQ3OmarUsRC9hX38DcHVmLooGEL7EBjlk0hU/IeenjDIG3Dy -----END CERTIFICATE-----Generated at Sun Jan 25 21:27:23 2026 by rpki-client