This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d6/228b42-49fb-42cd-8b1b-2164d9995198/1/RdYGiesB8wE7Cc7xqOKt4JlLnok.roa File: RdYGiesB8wE7Cc7xqOKt4JlLnok.roa (raw, json) Hash identifier: W3DsiCdc3x/PMoGS82zn756ZVAXlVYusY8WrxMFT/7c= Subject key identifier: 45:D6:06:89:EB:01:F3:01:3B:09:CE:F1:A8:E2:AD:E0:99:4B:9E:89 Certificate issuer: /CN=2d2cc139321951db276f3ffa293ac0a0f3fa8bf7 Certificate serial: 019B7C127B7698314B71547B3DBBF1D69E64 Authority key identifier: 2D:2C:C1:39:32:19:51:DB:27:6F:3F:FA:29:3A:C0:A0:F3:FA:8B:F7 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/LSzBOTIZUdsnbz_6KTrAoPP6i_c.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d6/228b42-49fb-42cd-8b1b-2164d9995198/1/RdYGiesB8wE7Cc7xqOKt4JlLnok.roa Signing time: Fri 02 Jan 2026 00:19:04 +0000 ROA not before: Fri 02 Jan 2026 00:19:04 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 215138 IP address blocks: 193.17.67.0/24 maxlen: 24 2001:678:3ec::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d6/228b42-49fb-42cd-8b1b-2164d9995198/1/LSzBOTIZUdsnbz_6KTrAoPP6i_c.crl rsync://rpki.ripe.net/repository/DEFAULT/d6/228b42-49fb-42cd-8b1b-2164d9995198/1/LSzBOTIZUdsnbz_6KTrAoPP6i_c.mft rsync://rpki.ripe.net/repository/DEFAULT/LSzBOTIZUdsnbz_6KTrAoPP6i_c.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 15:00:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7c:12:7b:76:98:31:4b:71:54:7b:3d:bb:f1:d6:9e:64 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2d2cc139321951db276f3ffa293ac0a0f3fa8bf7 Validity Not Before: Jan 2 00:19:04 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=45d60689eb01f3013b09cef1a8e2ade0994b9e89 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:53:2b:70:24:3f:0b:3a:d4:68:ea:4b:de:54: 41:eb:5a:51:31:6c:12:0c:35:07:6e:cc:07:68:4a: 84:1d:00:08:6f:03:c5:e8:80:13:3f:81:6f:ce:a9: 08:8a:e2:65:2c:e2:3b:b6:a0:fd:cf:64:0b:fa:d5: be:b5:9e:ee:95:05:75:b7:64:c0:ed:67:92:33:8c: 15:ab:72:89:e7:54:de:5f:9d:43:ad:36:83:b1:4a: 53:a6:07:91:65:11:e7:32:ad:13:b5:a3:4d:aa:d9: 83:84:95:d2:6c:74:08:c1:ff:3e:4f:ea:be:c4:f1: 00:24:ae:b3:bc:2f:8f:57:8b:32:d9:3d:87:55:3d: 84:46:86:c9:6a:ba:59:14:72:a8:c0:b8:37:a7:59: 6b:36:18:a5:df:a7:30:7c:cb:ce:db:2d:43:9a:3e: a6:d9:c1:c1:96:c7:32:4a:3a:b7:21:40:8f:ab:32: 30:7f:13:65:60:0a:8f:46:59:6d:73:16:60:13:79: 86:b6:af:f9:1b:d4:07:01:36:44:83:21:4f:e2:9d: f6:06:a7:21:4e:cb:67:4e:42:d1:4f:d1:7c:f2:f2: c2:5c:79:be:ff:a6:a3:33:94:d7:8a:be:c5:2a:25: 7f:93:16:ee:59:b5:73:87:a6:ca:3f:14:68:3e:5f: f4:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 45:D6:06:89:EB:01:F3:01:3B:09:CE:F1:A8:E2:AD:E0:99:4B:9E:89 X509v3 Authority Key Identifier: keyid:2D:2C:C1:39:32:19:51:DB:27:6F:3F:FA:29:3A:C0:A0:F3:FA:8B:F7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/LSzBOTIZUdsnbz_6KTrAoPP6i_c.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d6/228b42-49fb-42cd-8b1b-2164d9995198/1/RdYGiesB8wE7Cc7xqOKt4JlLnok.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/d6/228b42-49fb-42cd-8b1b-2164d9995198/1/LSzBOTIZUdsnbz_6KTrAoPP6i_c.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 193.17.67.0/24 IPv6: 2001:678:3ec::/48 Signature Algorithm: sha256WithRSAEncryption 45:73:b4:d6:8c:81:a5:ca:22:e4:a1:85:8d:04:d1:04:54:ba: 06:23:17:4d:6c:a0:5d:a3:c7:7f:51:38:5d:cc:ff:0f:99:93: d3:11:9c:81:4a:b2:ed:17:87:7a:de:33:d4:cc:8d:77:56:69: 65:dd:2a:e6:83:86:a0:50:03:3e:68:f7:95:dc:05:06:7c:6a: 8b:d6:99:61:37:e7:ea:a5:81:fd:4d:6a:e4:b3:ba:77:fc:db: 79:0d:0b:79:e2:5a:bb:a1:87:a7:37:51:2c:cd:2b:c9:cd:f8: 43:2f:86:6a:67:c0:f6:72:d5:b7:d6:7d:66:3e:aa:99:53:f9: 97:f7:fd:03:61:e3:e7:87:39:12:9b:33:70:d0:a2:de:3f:eb: b0:0c:85:1f:6e:76:4f:7a:06:c0:ef:71:ac:98:78:1d:80:3f: 6e:aa:7e:92:e9:f8:43:a5:c6:ff:a4:6f:cd:34:73:d5:47:40: cc:65:80:38:c2:5a:29:ef:48:66:ad:13:c9:e1:49:c8:9e:fa: 13:29:e0:83:55:07:63:5e:e7:51:b0:2b:19:f4:36:16:f5:6f: 16:fe:31:a7:cc:c0:be:3b:34:dc:8e:4d:b9:96:18:23:dd:fe: 7a:68:c1:e2:10:ef:50:31:07:55:d3:94:61:4e:84:16:da:fb: ec:06:c7:e1 -----BEGIN CERTIFICATE----- MIIFDjCCA/agAwIBAgISAZt8Ent2mDFLcVR7Pbvx1p5kMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJkMmNjMTM5MzIxOTUxZGIyNzZmM2ZmYTI5M2FjMGEwZjNm YThiZjcwHhcNMjYwMTAyMDAxOTA0WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg0NWQ2MDY4OWViMDFmMzAxM2IwOWNlZjFhOGUyYWRlMDk5NGI5ZTg5MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA31MrcCQ/CzrUaOpL3lRB61pRMWwS DDUHbswHaEqEHQAIbwPF6IATP4FvzqkIiuJlLOI7tqD9z2QL+tW+tZ7ulQV1t2TA 7WeSM4wVq3KJ51TeX51DrTaDsUpTpgeRZRHnMq0TtaNNqtmDhJXSbHQIwf8+T+q+ xPEAJK6zvC+PV4sy2T2HVT2ERobJarpZFHKowLg3p1lrNhil36cwfMvO2y1Dmj6m 2cHBlscySjq3IUCPqzIwfxNlYAqPRlltcxZgE3mGtq/5G9QHATZEgyFP4p32Bqch TstnTkLRT9F88vLCXHm+/6ajM5TXir7FKiV/kxbuWbVzh6bKPxRoPl/04wIDAQAB o4ICGjCCAhYwHQYDVR0OBBYEFEXWBonrAfMBOwnO8ajireCZS56JMB8GA1UdIwQY MBaAFC0swTkyGVHbJ28/+ik6wKDz+ov3MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvTFN6Qk9USVpVZHNuYnpfNktUckFvUFA2aV9jLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kNi8yMjhiNDItNDlmYi00MmNkLThiMWIt MjE2NGQ5OTk1MTk4LzEvUmRZR2llc0I4d0U3Q2M3eHFPS3Q0SmxMbm9rLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kNi8yMjhiNDItNDlmYi00MmNkLThiMWItMjE2NGQ5OTk1MTk4 LzEvTFN6Qk9USVpVZHNuYnpfNktUckFvUFA2aV9jLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMDAGCCsGAQUFBwEHAQH/BCEwHzAMBAIAATAGAwQAwRFDMA8E AgACMAkDBwAgAQZ4A+wwDQYJKoZIhvcNAQELBQADggEBAEVztNaMgaXKIuShhY0E 0QRUugYjF01soF2jx39ROF3M/w+Zk9MRnIFKsu0Xh3reM9TMjXdWaWXdKuaDhqBQ Az5o95XcBQZ8aovWmWE35+qlgf1NauSzunf823kNC3niWruhh6c3USzNK8nN+EMv hmpnwPZy1bfWfWY+qplT+Zf3/QNh4+eHORKbM3DQot4/67AMhR9udk96BsDvcayY eB2AP26qfpLp+EOlxv+kb800c9VHQMxlgDjCWinvSGatE8nhScie+hMp4INVB2Ne 51GwKxn0Nhb1bxb+MafMwL47NNyOTbmWGCPd/npoweIQ71AxB1XTlGFOhBba++wG x+E= -----END CERTIFICATE-----Generated at Mon Jan 26 01:43:30 2026 by rpki-client