This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/21/e84340-128a-4497-946f-09787f152ade/1/1YosK2bs-CaTfjpVd5NwlTvXFM8.roa File: 1YosK2bs-CaTfjpVd5NwlTvXFM8.roa (raw, json) Hash identifier: lm/8j8Y6n/TMsVGpFA+ZRagcGuoQKRzJ2ZtpQEbhM6U= Subject key identifier: D5:8A:2C:2B:66:EC:F8:26:93:7E:3A:55:77:93:70:95:3B:D7:14:CF Certificate issuer: /CN=66df7742890173927935206a28efbf48123e787c Certificate serial: 019B791004BF7B5DC9BF7359979A4424620A Authority key identifier: 66:DF:77:42:89:01:73:92:79:35:20:6A:28:EF:BF:48:12:3E:78:7C Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Zt93QokBc5J5NSBqKO-_SBI-eHw.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/21/e84340-128a-4497-946f-09787f152ade/1/1YosK2bs-CaTfjpVd5NwlTvXFM8.roa Signing time: Thu 01 Jan 2026 10:17:31 +0000 ROA not before: Thu 01 Jan 2026 10:17:31 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 8613 IP address blocks: 185.8.204.0/22 maxlen: 24 195.200.128.0/19 maxlen: 24 212.102.192.0/19 maxlen: 24 2a00:b300::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/21/e84340-128a-4497-946f-09787f152ade/1/Zt93QokBc5J5NSBqKO-_SBI-eHw.crl rsync://rpki.ripe.net/repository/DEFAULT/21/e84340-128a-4497-946f-09787f152ade/1/Zt93QokBc5J5NSBqKO-_SBI-eHw.mft rsync://rpki.ripe.net/repository/DEFAULT/Zt93QokBc5J5NSBqKO-_SBI-eHw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 24 Jan 2026 10:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:79:10:04:bf:7b:5d:c9:bf:73:59:97:9a:44:24:62:0a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=66df7742890173927935206a28efbf48123e787c Validity Not Before: Jan 1 10:17:31 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=d58a2c2b66ecf826937e3a55779370953bd714cf Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:86:0a:7c:b0:bf:b8:66:55:50:4f:d9:2f:45: 9c:f4:12:a8:fd:7e:93:84:0d:9f:ae:f1:59:94:10: 41:d7:08:0d:fe:df:4f:1f:b0:6a:9b:8e:90:4d:22: 9c:0b:38:75:0f:df:6f:f9:f3:20:d6:42:df:32:89: ef:8e:15:1a:b7:26:73:22:f4:cf:ac:41:04:27:28: 7f:d5:90:f1:07:59:c8:4f:db:03:f7:93:fe:ae:93: 53:61:d6:09:22:f4:41:db:98:00:b1:99:c9:f3:4a: 37:d2:06:96:56:65:46:a1:96:4c:ff:a6:35:2a:64: e7:f1:a5:c4:83:fb:e9:5a:43:73:8e:59:eb:99:0a: 90:ea:49:40:c3:7a:ac:57:57:d6:d2:6b:f7:79:f9: cf:5e:b1:a9:98:81:c4:5b:38:c0:1e:29:72:15:81: 41:eb:bb:bb:42:ef:1b:73:7c:13:64:c1:47:bd:b7: 74:12:23:d8:fd:13:fb:ba:0f:2c:ae:f7:02:57:a9: 91:2b:19:a9:94:25:55:3c:a6:dd:ac:8d:03:4d:9b: fc:4e:a9:2e:69:cb:61:e0:fe:d7:14:30:de:ae:a6: 8f:e5:a8:19:04:ff:df:1b:e2:19:aa:59:30:e0:52: 47:b1:69:c8:de:c3:b7:12:4e:d7:54:a8:23:a2:17: 6a:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D5:8A:2C:2B:66:EC:F8:26:93:7E:3A:55:77:93:70:95:3B:D7:14:CF X509v3 Authority Key Identifier: keyid:66:DF:77:42:89:01:73:92:79:35:20:6A:28:EF:BF:48:12:3E:78:7C X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Zt93QokBc5J5NSBqKO-_SBI-eHw.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/21/e84340-128a-4497-946f-09787f152ade/1/1YosK2bs-CaTfjpVd5NwlTvXFM8.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/21/e84340-128a-4497-946f-09787f152ade/1/Zt93QokBc5J5NSBqKO-_SBI-eHw.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.8.204.0/22 195.200.128.0/19 212.102.192.0/19 IPv6: 2a00:b300::/32 Signature Algorithm: sha256WithRSAEncryption 38:94:07:75:59:63:54:df:c5:96:c4:c4:a3:90:c3:7c:a9:ba: a9:21:27:d3:19:73:50:73:66:19:63:53:fd:bb:eb:6b:ea:9a: 2b:e7:80:73:35:06:6f:6a:57:0b:e6:f4:e8:fe:88:ac:f4:30: 69:7a:81:c5:4c:7d:bd:e1:d1:e1:a6:f2:9b:64:cf:c5:45:90: 94:a1:93:e6:8c:1d:9e:40:65:1d:ea:11:6f:df:96:7c:92:e6: d1:34:c8:68:04:39:52:30:94:c5:c6:69:e6:0f:1b:4c:09:e8: 46:f9:10:9d:42:ae:f1:9c:5f:ef:76:0b:58:0b:2e:34:fb:50: 97:67:a7:cf:05:2b:0f:69:af:13:9a:83:0a:e6:bd:e8:07:01: 9c:0d:95:72:99:ba:ed:9e:6b:0a:66:10:a9:47:7a:83:11:9a: 5d:f5:45:e3:2c:9b:a5:10:dc:b5:71:fb:e3:58:8f:5c:31:4f: 5a:d3:85:1c:fb:69:c3:9d:66:98:89:79:8d:3f:fe:5e:7f:44: 4d:b1:82:b8:6a:68:24:72:17:bd:bb:b5:34:28:c9:0f:91:62: 3f:ac:c7:21:04:13:5e:e2:3e:56:29:fa:cd:ca:fa:6c:3e:20: b8:1d:ce:76:c3:e2:c8:d1:db:f5:8b:6b:f6:30:a3:c9:a3:24: dd:3d:51:c4 -----BEGIN CERTIFICATE----- MIIFGDCCBACgAwIBAgISAZt5EAS/e13Jv3NZl5pEJGIKMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDY2ZGY3NzQyODkwMTczOTI3OTM1MjA2YTI4ZWZiZjQ4MTIz ZTc4N2MwHhcNMjYwMTAxMTAxNzMxWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhkNThhMmMyYjY2ZWNmODI2OTM3ZTNhNTU3NzkzNzA5NTNiZDcxNGNmMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuYYKfLC/uGZVUE/ZL0Wc9BKo/X6T hA2frvFZlBBB1wgN/t9PH7Bqm46QTSKcCzh1D99v+fMg1kLfMonvjhUatyZzIvTP rEEEJyh/1ZDxB1nIT9sD95P+rpNTYdYJIvRB25gAsZnJ80o30gaWVmVGoZZM/6Y1 KmTn8aXEg/vpWkNzjlnrmQqQ6klAw3qsV1fW0mv3efnPXrGpmIHEWzjAHilyFYFB 67u7Qu8bc3wTZMFHvbd0EiPY/RP7ug8srvcCV6mRKxmplCVVPKbdrI0DTZv8Tqku acth4P7XFDDerqaP5agZBP/fG+IZqlkw4FJHsWnI3sO3Ek7XVKgjohdqtQIDAQAB o4ICJDCCAiAwHQYDVR0OBBYEFNWKLCtm7Pgmk346VXeTcJU71xTPMB8GA1UdIwQY MBaAFGbfd0KJAXOSeTUgaijvv0gSPnh8MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvWnQ5M1Fva0JjNUo1TlNCcUtPLV9TQkktZUh3LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yMS9lODQzNDAtMTI4YS00NDk3LTk0NmYt MDk3ODdmMTUyYWRlLzEvMVlvc0syYnMtQ2FUZmpwVmQ1TndsVHZYRk04LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yMS9lODQzNDAtMTI4YS00NDk3LTk0NmYtMDk3ODdmMTUyYWRl LzEvWnQ5M1Fva0JjNUo1TlNCcUtPLV9TQkktZUh3LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMDoGCCsGAQUFBwEHAQH/BCswKTAYBAIAATASAwQCuQjMAwQF w8iAAwQF1GbAMA0EAgACMAcDBQAqALMAMA0GCSqGSIb3DQEBCwUAA4IBAQA4lAd1 WWNU38WWxMSjkMN8qbqpISfTGXNQc2YZY1P9u+tr6por54BzNQZvalcL5vTo/ois 9DBpeoHFTH294dHhpvKbZM/FRZCUoZPmjB2eQGUd6hFv35Z8kubRNMhoBDlSMJTF xmnmDxtMCehG+RCdQq7xnF/vdgtYCy40+1CXZ6fPBSsPaa8TmoMK5r3oBwGcDZVy mbrtnmsKZhCpR3qDEZpd9UXjLJulENy1cfvjWI9cMU9a04Uc+2nDnWaYiXmNP/5e f0RNsYK4amgkche9u7U0KMkPkWI/rMchBBNe4j5WKfrNyvpsPiC4Hc52w+LI0dv1 i2v2MKPJoyTdPVHE -----END CERTIFICATE-----Generated at Fri Jan 23 19:18:12 2026 by rpki-client