This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d5/dec3f1-ce3a-4cb5-9cfc-a30f537d9c5b/1/yV-ewrH7k-ZVeTB7O_UFnpgog5A.roa File: yV-ewrH7k-ZVeTB7O_UFnpgog5A.roa (raw, json) Hash identifier: SiYFSeHpUqqYdl2Q6Z3QwRJgzrvQFbWknDDTKnXeGdw= Subject key identifier: C9:5F:9E:C2:B1:FB:93:E6:55:79:30:7B:3B:F5:05:9E:98:28:83:90 Certificate issuer: /CN=081868ee84c5f27d9169d243c337b74b6ff8c14d Certificate serial: 019B7E37E9DCF8E8149A4D26C025CB6EE471 Authority key identifier: 08:18:68:EE:84:C5:F2:7D:91:69:D2:43:C3:37:B7:4B:6F:F8:C1:4D Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CBho7oTF8n2RadJDwze3S2_4wU0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d5/dec3f1-ce3a-4cb5-9cfc-a30f537d9c5b/1/yV-ewrH7k-ZVeTB7O_UFnpgog5A.roa Signing time: Fri 02 Jan 2026 10:19:12 +0000 ROA not before: Fri 02 Jan 2026 10:19:12 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 198682 IP address blocks: 185.140.136.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d5/dec3f1-ce3a-4cb5-9cfc-a30f537d9c5b/1/CBho7oTF8n2RadJDwze3S2_4wU0.crl rsync://rpki.ripe.net/repository/DEFAULT/d5/dec3f1-ce3a-4cb5-9cfc-a30f537d9c5b/1/CBho7oTF8n2RadJDwze3S2_4wU0.mft rsync://rpki.ripe.net/repository/DEFAULT/CBho7oTF8n2RadJDwze3S2_4wU0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 07:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7e:37:e9:dc:f8:e8:14:9a:4d:26:c0:25:cb:6e:e4:71 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=081868ee84c5f27d9169d243c337b74b6ff8c14d Validity Not Before: Jan 2 10:19:12 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=c95f9ec2b1fb93e65579307b3bf5059e98288390 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9a:00:29:b0:b3:ab:1e:e3:9b:de:92:cb:00:ed: 78:8c:b6:3c:87:e9:27:1b:2f:57:8d:d0:90:2c:90: 2e:3f:64:a5:31:27:ab:47:ec:90:7e:3f:e1:b7:50: c9:6f:6c:20:52:39:2d:26:8d:e6:41:4d:b1:f0:c8: d7:ac:b5:db:c8:b0:b2:ad:11:f3:9e:aa:f5:96:cd: d3:c2:0a:cd:e9:4b:d0:28:6a:52:1e:86:6d:e7:38: 2b:c1:16:f7:9c:f2:d8:24:49:b3:89:99:32:d0:bc: 23:cd:e1:f6:b4:6d:7d:a6:a1:5e:ab:6c:cf:2a:8d: 1c:d9:d5:4d:cd:3a:af:0c:27:9a:1f:59:d2:fe:f6: ee:d0:c3:96:25:44:64:f3:12:0c:29:6c:6a:1c:9d: 42:0b:de:16:7f:f4:4f:24:d7:70:d0:61:04:45:4a: 57:c8:02:37:22:22:0d:aa:4e:44:71:2b:7a:ff:b2: d5:89:47:59:be:cc:d6:bc:a5:e7:1e:23:28:17:3b: 6d:7c:09:00:f1:88:12:6c:35:1f:64:99:23:09:fe: f7:3b:a4:1f:2a:80:1a:9a:62:4b:ea:39:98:2f:1f: 57:53:91:13:26:08:69:b8:a2:3c:90:9b:a4:3e:23: 7e:ba:d9:b0:d2:79:bd:1d:1a:43:af:a7:0a:8e:c9: 93:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C9:5F:9E:C2:B1:FB:93:E6:55:79:30:7B:3B:F5:05:9E:98:28:83:90 X509v3 Authority Key Identifier: keyid:08:18:68:EE:84:C5:F2:7D:91:69:D2:43:C3:37:B7:4B:6F:F8:C1:4D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CBho7oTF8n2RadJDwze3S2_4wU0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d5/dec3f1-ce3a-4cb5-9cfc-a30f537d9c5b/1/yV-ewrH7k-ZVeTB7O_UFnpgog5A.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/d5/dec3f1-ce3a-4cb5-9cfc-a30f537d9c5b/1/CBho7oTF8n2RadJDwze3S2_4wU0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.140.136.0/22 Signature Algorithm: sha256WithRSAEncryption 21:c0:79:7e:4d:30:5f:7e:17:03:fc:01:99:40:0a:00:6d:af: ee:44:a7:80:e8:e5:d2:59:8e:8c:17:a1:91:a6:20:ef:8e:64: 85:7c:56:91:d7:01:c6:ce:34:94:91:24:c2:d4:9c:fc:24:84: ae:60:7a:a2:b6:6b:c4:28:b7:54:81:de:84:c5:99:83:06:df: d6:8d:2b:4d:ee:c1:6b:ad:db:12:94:0d:3b:27:63:51:14:aa: 4e:9c:77:09:3a:a3:70:07:69:47:61:66:5a:4a:d0:dc:59:bc: 43:f5:33:36:b7:06:b2:26:61:bd:d7:f8:ab:57:b3:93:89:69: 17:c1:15:35:12:b6:3f:74:74:a3:3e:10:33:fc:e0:1f:ae:be: 40:ee:55:74:1f:23:9b:4c:81:13:33:0b:12:7e:ea:55:66:ca: c5:18:59:05:15:c7:03:e2:e0:16:df:fb:71:9b:d0:a4:21:b9: d7:51:da:e4:9d:f4:90:c1:8f:eb:1e:27:c4:d3:46:d4:7e:bb: fd:c4:f4:50:38:96:37:ec:c3:26:7f:29:c6:8e:f0:e5:44:7d: 67:c2:d0:ff:45:66:75:20:33:14:52:17:3b:eb:e8:00:cc:70: c2:e7:f4:1d:b6:1f:7b:b9:95:91:18:15:0d:a7:10:48:4f:6e: 13:a9:d9:2e -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt+N+nc+OgUmk0mwCXLbuRxMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDA4MTg2OGVlODRjNWYyN2Q5MTY5ZDI0M2MzMzdiNzRiNmZm OGMxNGQwHhcNMjYwMTAyMTAxOTEyWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhjOTVmOWVjMmIxZmI5M2U2NTU3OTMwN2IzYmY1MDU5ZTk4Mjg4MzkwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmgApsLOrHuOb3pLLAO14jLY8h+kn Gy9XjdCQLJAuP2SlMSerR+yQfj/ht1DJb2wgUjktJo3mQU2x8MjXrLXbyLCyrRHz nqr1ls3TwgrN6UvQKGpSHoZt5zgrwRb3nPLYJEmziZky0LwjzeH2tG19pqFeq2zP Ko0c2dVNzTqvDCeaH1nS/vbu0MOWJURk8xIMKWxqHJ1CC94Wf/RPJNdw0GEERUpX yAI3IiINqk5EcSt6/7LViUdZvszWvKXnHiMoFzttfAkA8YgSbDUfZJkjCf73O6Qf KoAammJL6jmYLx9XU5ETJghpuKI8kJukPiN+utmw0nm9HRpDr6cKjsmTwQIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFMlfnsKx+5PmVXkwezv1BZ6YKIOQMB8GA1UdIwQY MBaAFAgYaO6ExfJ9kWnSQ8M3t0tv+MFNMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvQ0JobzdvVEY4bjJSYWRKRHd6ZTNTMl80d1UwLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kNS9kZWMzZjEtY2UzYS00Y2I1LTljZmMt YTMwZjUzN2Q5YzViLzEveVYtZXdySDdrLVpWZVRCN09fVUZucGdvZzVBLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kNS9kZWMzZjEtY2UzYS00Y2I1LTljZmMtYTMwZjUzN2Q5YzVi LzEvQ0JobzdvVEY4bjJSYWRKRHd6ZTNTMl80d1UwLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCuYyIMA0G CSqGSIb3DQEBCwUAA4IBAQAhwHl+TTBffhcD/AGZQAoAba/uRKeA6OXSWY6MF6GR piDvjmSFfFaR1wHGzjSUkSTC1Jz8JISuYHqitmvEKLdUgd6ExZmDBt/WjStN7sFr rdsSlA07J2NRFKpOnHcJOqNwB2lHYWZaStDcWbxD9TM2twayJmG91/irV7OTiWkX wRU1ErY/dHSjPhAz/OAfrr5A7lV0HyObTIETMwsSfupVZsrFGFkFFccD4uAW3/tx m9CkIbnXUdrknfSQwY/rHifE00bUfrv9xPRQOJY37MMmfynGjvDlRH1nwtD/RWZ1 IDMUUhc76+gAzHDC5/Qdth97uZWRGBUNpxBIT24Tqdku -----END CERTIFICATE-----Generated at Sun Jan 25 17:34:44 2026 by rpki-client