This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f4/3c24be-266e-4522-97d6-7d9e62afc444/1/y5UyZn3R0XHujvT13C_kHj2w0cs.roa File: y5UyZn3R0XHujvT13C_kHj2w0cs.roa (raw, json) Hash identifier: ZG5nlrTnagfrNNiXJY30QrIi37+GVW+aj1DQcrSdzhI= Subject key identifier: CB:95:32:66:7D:D1:D1:71:EE:8E:F4:F5:DC:2F:E4:1E:3D:B0:D1:CB Certificate issuer: /CN=a4133524f24a4a8a21d46c06c1025f40f34ad27a Certificate serial: 019B7DCB0CC9B4E4858342FAE49AE17AA9C2 Authority key identifier: A4:13:35:24:F2:4A:4A:8A:21:D4:6C:06:C1:02:5F:40:F3:4A:D2:7A Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pBM1JPJKSooh1GwGwQJfQPNK0no.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f4/3c24be-266e-4522-97d6-7d9e62afc444/1/y5UyZn3R0XHujvT13C_kHj2w0cs.roa Signing time: Fri 02 Jan 2026 08:20:17 +0000 ROA not before: Fri 02 Jan 2026 08:20:17 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 13030 IP address blocks: 185.78.120.0/24 maxlen: 24 185.78.122.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f4/3c24be-266e-4522-97d6-7d9e62afc444/1/pBM1JPJKSooh1GwGwQJfQPNK0no.crl rsync://rpki.ripe.net/repository/DEFAULT/f4/3c24be-266e-4522-97d6-7d9e62afc444/1/pBM1JPJKSooh1GwGwQJfQPNK0no.mft rsync://rpki.ripe.net/repository/DEFAULT/pBM1JPJKSooh1GwGwQJfQPNK0no.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 13:21:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7d:cb:0c:c9:b4:e4:85:83:42:fa:e4:9a:e1:7a:a9:c2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=a4133524f24a4a8a21d46c06c1025f40f34ad27a Validity Not Before: Jan 2 08:20:17 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=cb9532667dd1d171ee8ef4f5dc2fe41e3db0d1cb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:55:bc:8f:14:84:2a:57:0c:60:56:ad:72:13: 6b:f2:49:22:a6:c0:3b:e4:17:04:29:3e:0b:73:62: 4a:41:c5:7b:df:b1:75:ab:f6:c3:ba:79:9c:02:51: 86:e1:40:b6:4d:d6:5b:60:0c:1e:12:a6:31:26:e7: 6a:86:ef:1c:5a:48:fb:f3:a0:50:42:c6:97:f0:e6: f5:cf:63:cf:ae:f8:15:31:53:a1:c1:59:d3:fa:d2: ee:2f:2c:4d:66:ab:ce:b8:88:03:a8:c8:7c:6d:71: 62:f2:1b:49:46:85:29:c5:02:6e:2d:f4:de:33:45: d2:79:fe:6c:37:c5:44:10:9e:62:ae:98:f4:78:41: ed:df:0f:a7:36:3a:f9:0e:7a:26:86:67:49:af:f9: e2:20:31:05:81:a2:09:9a:3c:1b:50:de:3c:78:d7: ce:b0:ac:fe:d1:27:8e:94:ce:83:12:33:7b:08:37: 83:1a:21:23:d8:4d:62:18:8b:24:1f:d5:9d:46:51: 45:e9:91:15:c8:ea:87:44:0a:f8:81:52:4c:96:cd: 02:6f:8b:81:68:7f:d7:c8:3d:78:1b:8e:55:b0:2c: 49:7a:c8:5b:20:f0:3d:fd:22:4d:83:94:01:74:fe: f7:cb:86:69:39:59:e8:2a:44:98:68:fa:7a:8a:4f: 14:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CB:95:32:66:7D:D1:D1:71:EE:8E:F4:F5:DC:2F:E4:1E:3D:B0:D1:CB X509v3 Authority Key Identifier: keyid:A4:13:35:24:F2:4A:4A:8A:21:D4:6C:06:C1:02:5F:40:F3:4A:D2:7A X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pBM1JPJKSooh1GwGwQJfQPNK0no.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f4/3c24be-266e-4522-97d6-7d9e62afc444/1/y5UyZn3R0XHujvT13C_kHj2w0cs.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/f4/3c24be-266e-4522-97d6-7d9e62afc444/1/pBM1JPJKSooh1GwGwQJfQPNK0no.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.78.120.0/24 185.78.122.0/24 Signature Algorithm: sha256WithRSAEncryption aa:b7:38:00:bf:3a:0f:42:ac:6e:23:f5:b9:df:a9:ff:88:07: 0a:73:8a:0a:8e:7a:1b:a7:00:ee:04:00:2a:ec:2a:d5:8c:62: d4:af:66:f3:86:3d:1b:1e:97:9a:f6:26:e8:de:b4:ac:e4:91: 14:db:5e:d5:ec:d9:9c:df:cc:fa:f9:73:f2:e1:95:ee:60:a6: 50:aa:31:2d:d0:0a:37:20:b8:a4:e4:71:61:20:9c:9e:53:15: e7:0b:8e:79:36:1b:c0:72:06:51:2a:2a:89:ee:a7:ca:8e:cc: 43:64:16:4e:98:b3:82:61:91:1a:30:51:86:65:52:ed:f4:24: 77:e6:be:83:60:31:d0:3d:da:a8:60:cc:e9:7c:e3:d6:6b:05: 83:de:8f:09:5a:6a:42:e5:45:84:13:75:c8:54:2f:1d:20:87: b1:9b:c4:f5:06:52:8a:be:2d:10:c0:92:bd:9d:e5:6b:e2:34: e3:c8:58:57:d1:44:16:81:c5:59:5b:19:a3:c9:f3:c3:02:0d: 22:2b:14:2c:76:33:8a:4a:1d:81:2d:09:b6:89:0e:85:b7:85: 6b:28:43:ff:52:4b:bb:44:cf:38:9e:1d:96:48:71:99:e8:0b: c2:14:ca:0a:40:0f:02:54:83:a2:88:85:e6:bf:45:e0:80:91: 2b:00:93:fb -----BEGIN CERTIFICATE----- MIIFAzCCA+ugAwIBAgISAZt9ywzJtOSFg0L65JrheqnCMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGE0MTMzNTI0ZjI0YTRhOGEyMWQ0NmMwNmMxMDI1ZjQwZjM0 YWQyN2EwHhcNMjYwMTAyMDgyMDE3WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhjYjk1MzI2NjdkZDFkMTcxZWU4ZWY0ZjVkYzJmZTQxZTNkYjBkMWNiMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAr1W8jxSEKlcMYFatchNr8kkipsA7 5BcEKT4Lc2JKQcV737F1q/bDunmcAlGG4UC2TdZbYAweEqYxJudqhu8cWkj786BQ QsaX8Ob1z2PPrvgVMVOhwVnT+tLuLyxNZqvOuIgDqMh8bXFi8htJRoUpxQJuLfTe M0XSef5sN8VEEJ5irpj0eEHt3w+nNjr5DnomhmdJr/niIDEFgaIJmjwbUN48eNfO sKz+0SeOlM6DEjN7CDeDGiEj2E1iGIskH9WdRlFF6ZEVyOqHRAr4gVJMls0Cb4uB aH/XyD14G45VsCxJeshbIPA9/SJNg5QBdP73y4ZpOVnoKkSYaPp6ik8UtQIDAQAB o4ICDzCCAgswHQYDVR0OBBYEFMuVMmZ90dFx7o709dwv5B49sNHLMB8GA1UdIwQY MBaAFKQTNSTySkqKIdRsBsECX0DzStJ6MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvcEJNMUpQSktTb29oMUd3R3dRSmZRUE5LMG5vLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mNC8zYzI0YmUtMjY2ZS00NTIyLTk3ZDYt N2Q5ZTYyYWZjNDQ0LzEveTVVeVpuM1IwWEh1anZUMTNDX2tIajJ3MGNzLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9mNC8zYzI0YmUtMjY2ZS00NTIyLTk3ZDYtN2Q5ZTYyYWZjNDQ0 LzEvcEJNMUpQSktTb29oMUd3R3dRSmZRUE5LMG5vLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQAuU54AwQA uU56MA0GCSqGSIb3DQEBCwUAA4IBAQCqtzgAvzoPQqxuI/W536n/iAcKc4oKjnob pwDuBAAq7CrVjGLUr2bzhj0bHpea9ibo3rSs5JEU217V7Nmc38z6+XPy4ZXuYKZQ qjEt0Ao3ILik5HFhIJyeUxXnC455NhvAcgZRKiqJ7qfKjsxDZBZOmLOCYZEaMFGG ZVLt9CR35r6DYDHQPdqoYMzpfOPWawWD3o8JWmpC5UWEE3XIVC8dIIexm8T1BlKK vi0QwJK9neVr4jTjyFhX0UQWgcVZWxmjyfPDAg0iKxQsdjOKSh2BLQm2iQ6Ft4Vr KEP/Uku7RM84nh2WSHGZ6AvCFMoKQA8CVIOiiIXmv0XggJErAJP7 -----END CERTIFICATE-----Generated at Sun Jan 25 23:32:35 2026 by rpki-client