This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fa/a0e01a-9bbc-44ee-98a3-597b6e2492ab/1/6yY85OHD-46vFhP-wtPZWs3MeCY.roa File: 6yY85OHD-46vFhP-wtPZWs3MeCY.roa (raw, json) Hash identifier: hOno4SiXgMirUzFVpAXsEoPlI4QIn/ikV8WWQvXsoXg= Subject key identifier: EB:26:3C:E4:E1:C3:FB:8E:AF:16:13:FE:C2:D3:D9:5A:CD:CC:78:26 Certificate issuer: /CN=bba35cf8ab6f3eaa2aebadd9e2373dec0893625e Certificate serial: 019B7EA6A05645462D755D458530A4B030CE Authority key identifier: BB:A3:5C:F8:AB:6F:3E:AA:2A:EB:AD:D9:E2:37:3D:EC:08:93:62:5E Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/u6Nc-KtvPqoq663Z4jc97AiTYl4.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fa/a0e01a-9bbc-44ee-98a3-597b6e2492ab/1/6yY85OHD-46vFhP-wtPZWs3MeCY.roa Signing time: Fri 02 Jan 2026 12:20:07 +0000 ROA not before: Fri 02 Jan 2026 12:20:07 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 11749 IP address blocks: 157.23.249.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fa/a0e01a-9bbc-44ee-98a3-597b6e2492ab/1/u6Nc-KtvPqoq663Z4jc97AiTYl4.crl rsync://rpki.ripe.net/repository/DEFAULT/fa/a0e01a-9bbc-44ee-98a3-597b6e2492ab/1/u6Nc-KtvPqoq663Z4jc97AiTYl4.mft rsync://rpki.ripe.net/repository/DEFAULT/u6Nc-KtvPqoq663Z4jc97AiTYl4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 07:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7e:a6:a0:56:45:46:2d:75:5d:45:85:30:a4:b0:30:ce Signature Algorithm: sha256WithRSAEncryption Issuer: CN=bba35cf8ab6f3eaa2aebadd9e2373dec0893625e Validity Not Before: Jan 2 12:20:07 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=eb263ce4e1c3fb8eaf1613fec2d3d95acdcc7826 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:e5:69:c5:66:44:8b:fd:80:27:1d:e2:16:76: fb:48:c7:3b:e0:8c:87:c2:5b:cb:17:c6:36:ca:f1: 44:3d:74:60:8e:59:3c:77:76:4d:48:64:1b:3c:a3: 5c:21:d1:d6:9c:ca:a0:c0:46:ef:25:d6:ce:05:96: b3:4a:ea:84:42:20:35:cc:0f:8d:fe:bc:26:b1:78: 2f:7b:13:c3:8a:cd:01:92:e2:31:d9:4a:38:bb:26: 3b:b0:53:15:43:57:55:56:01:3c:c8:66:1a:3d:a1: 24:df:d8:9e:bd:73:02:12:d3:79:96:a8:3a:f1:84: f2:a7:d6:16:e3:44:5d:ff:e7:5a:18:48:28:83:0c: cf:d2:42:2e:ad:c2:31:84:7a:1b:8b:c7:a0:6f:0c: d1:3d:6b:bb:2f:f3:cc:fc:80:f7:fd:b9:9c:9d:ea: e1:ba:91:7f:f6:a5:5c:5b:7f:2e:38:29:18:32:53: 39:20:46:bd:72:58:61:40:d9:03:ea:f7:89:ec:d0: e2:3b:37:60:5e:1e:e7:46:3f:2f:60:c4:e2:c5:8b: 04:ce:b7:26:8f:7b:1e:19:af:eb:4c:c8:55:bd:4d: de:f8:24:25:3f:3b:16:0d:74:f0:04:bc:79:a2:1e: 07:bf:c3:e6:c8:ca:9e:bf:b1:7a:75:b4:41:26:cf: da:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EB:26:3C:E4:E1:C3:FB:8E:AF:16:13:FE:C2:D3:D9:5A:CD:CC:78:26 X509v3 Authority Key Identifier: keyid:BB:A3:5C:F8:AB:6F:3E:AA:2A:EB:AD:D9:E2:37:3D:EC:08:93:62:5E X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/u6Nc-KtvPqoq663Z4jc97AiTYl4.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fa/a0e01a-9bbc-44ee-98a3-597b6e2492ab/1/6yY85OHD-46vFhP-wtPZWs3MeCY.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/fa/a0e01a-9bbc-44ee-98a3-597b6e2492ab/1/u6Nc-KtvPqoq663Z4jc97AiTYl4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 157.23.249.0/24 Signature Algorithm: sha256WithRSAEncryption 64:b9:28:20:01:a9:ce:3b:9c:b5:d1:fe:8e:12:91:b8:82:57: fe:1f:b5:8c:1e:34:f3:ab:10:9e:53:86:ed:a0:78:1a:de:5a: d5:d2:75:65:2a:2c:21:07:22:d5:82:78:bd:9c:74:f8:26:51: 7f:3f:8a:91:f0:8c:2c:31:7b:ef:65:00:8d:c9:10:88:14:90: 37:05:ee:f6:f2:77:58:db:2f:2d:99:be:be:df:fe:59:ab:d7: 1b:41:20:77:3a:82:6c:7c:65:a7:23:85:00:a1:b0:22:41:d3: df:8d:3d:8a:0e:20:37:4d:a1:bd:fa:4e:8c:43:39:42:8c:dd: 57:fd:2e:6d:e8:e3:ea:9d:39:3f:de:05:aa:ab:0d:dd:84:f3: 57:b6:78:43:ec:33:ba:3d:bc:a0:f3:e7:6b:20:8a:1f:ea:77: 47:f7:41:38:4e:e5:9a:8f:43:c8:d6:6e:3f:fa:54:4b:58:b0: 98:68:70:da:6e:08:4c:72:42:ec:c6:36:3b:96:d8:51:7e:66: 91:5c:39:67:8e:ad:9a:75:9d:25:ff:3a:72:64:17:70:9f:a8: 1b:cd:0d:de:44:f6:ab:ce:f3:f5:81:32:b6:4b:c4:2a:c5:b1: 3d:06:b0:7b:20:94:5c:c4:4e:c8:90:c3:a8:05:09:38:9c:9f: b6:a2:b1:37 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt+pqBWRUYtdV1FhTCksDDOMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGJiYTM1Y2Y4YWI2ZjNlYWEyYWViYWRkOWUyMzczZGVjMDg5 MzYyNWUwHhcNMjYwMTAyMTIyMDA3WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhlYjI2M2NlNGUxYzNmYjhlYWYxNjEzZmVjMmQzZDk1YWNkY2M3ODI2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAy+VpxWZEi/2AJx3iFnb7SMc74IyH wlvLF8Y2yvFEPXRgjlk8d3ZNSGQbPKNcIdHWnMqgwEbvJdbOBZazSuqEQiA1zA+N /rwmsXgvexPDis0BkuIx2Uo4uyY7sFMVQ1dVVgE8yGYaPaEk39ievXMCEtN5lqg6 8YTyp9YW40Rd/+daGEgogwzP0kIurcIxhHobi8egbwzRPWu7L/PM/ID3/bmcnerh upF/9qVcW38uOCkYMlM5IEa9clhhQNkD6veJ7NDiOzdgXh7nRj8vYMTixYsEzrcm j3seGa/rTMhVvU3e+CQlPzsWDXTwBLx5oh4Hv8PmyMqev7F6dbRBJs/acwIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFOsmPOThw/uOrxYT/sLT2VrNzHgmMB8GA1UdIwQY MBaAFLujXPirbz6qKuut2eI3PewIk2JeMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvdTZOYy1LdHZQcW9xNjYzWjRqYzk3QWlUWWw0LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mYS9hMGUwMWEtOWJiYy00NGVlLTk4YTMt NTk3YjZlMjQ5MmFiLzEvNnlZODVPSEQtNDZ2RmhQLXd0UFpXczNNZUNZLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9mYS9hMGUwMWEtOWJiYy00NGVlLTk4YTMtNTk3YjZlMjQ5MmFi LzEvdTZOYy1LdHZQcW9xNjYzWjRqYzk3QWlUWWw0LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAnRf5MA0G CSqGSIb3DQEBCwUAA4IBAQBkuSggAanOO5y10f6OEpG4glf+H7WMHjTzqxCeU4bt oHga3lrV0nVlKiwhByLVgni9nHT4JlF/P4qR8IwsMXvvZQCNyRCIFJA3Be728ndY 2y8tmb6+3/5Zq9cbQSB3OoJsfGWnI4UAobAiQdPfjT2KDiA3TaG9+k6MQzlCjN1X /S5t6OPqnTk/3gWqqw3dhPNXtnhD7DO6Pbyg8+drIIof6ndH90E4TuWaj0PI1m4/ +lRLWLCYaHDabghMckLsxjY7lthRfmaRXDlnjq2adZ0l/zpyZBdwn6gbzQ3eRPar zvP1gTK2S8QqxbE9BrB7IJRcxE7IkMOoBQk4nJ+2orE3 -----END CERTIFICATE-----Generated at Sun Jan 25 14:10:32 2026 by rpki-client