This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/dYGqxiUu2VELBu4bQQSGI6uAQTM.roa File: dYGqxiUu2VELBu4bQQSGI6uAQTM.roa (raw, json) Hash identifier: YniWfNmsJ3K73pYFc4GkZOqPp0mX4HgjZ39Udnpx/Wk= Subject key identifier: 75:81:AA:C6:25:2E:D9:51:0B:06:EE:1B:41:04:86:23:AB:80:41:33 Certificate issuer: /CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7 Certificate serial: 019B7F857019D70BA076F5D25F7A09836A29 Authority key identifier: 35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/dYGqxiUu2VELBu4bQQSGI6uAQTM.roa Signing time: Fri 02 Jan 2026 16:23:29 +0000 ROA not before: Fri 02 Jan 2026 16:23:29 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 213887 IP address blocks: 194.87.29.0/24 maxlen: 24 194.87.77.0/24 maxlen: 24 212.192.246.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/NWkPXjLVyGrx4TSd_U6M7rcOGsc.crl rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/NWkPXjLVyGrx4TSd_U6M7rcOGsc.mft rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 20 Jan 2026 13:02:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7f:85:70:19:d7:0b:a0:76:f5:d2:5f:7a:09:83:6a:29 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7 Validity Not Before: Jan 2 16:23:29 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=7581aac6252ed9510b06ee1b41048623ab804133 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:7c:7e:47:81:50:50:f5:2a:89:9a:8c:0e:6a: 72:f1:79:3f:7e:19:f8:da:e0:9c:f8:91:05:fd:40: 75:52:1f:87:e0:e3:d0:3a:d2:31:aa:ba:37:ba:76: b0:23:7e:b5:63:c4:38:3e:73:fd:c7:4d:84:d9:06: 0b:0b:c2:04:ab:bc:d0:ea:5c:64:1c:08:60:27:f8: 9b:f5:b7:e1:af:0d:49:b2:fc:58:b7:23:eb:61:c1: 8b:08:d3:df:ee:78:9e:1a:f1:42:a1:6a:32:8d:f7: 97:66:b6:3d:ee:73:8e:3f:4d:5a:8f:d2:58:bd:13: 05:a5:9b:bf:14:ca:65:a6:ad:b4:b8:78:70:a9:e8: ae:d6:01:5f:a7:7a:cb:2b:88:91:58:a2:29:f4:80: 5b:b8:a0:2d:6b:a4:67:a0:f9:47:ad:9f:e8:ac:b0: 51:ce:12:64:c6:14:4a:cf:9c:54:fe:4e:ea:49:89: 35:cf:56:53:7e:56:1e:a6:b1:03:55:0e:75:18:b6: 41:d5:c3:70:04:99:a8:87:b8:59:f7:8d:f7:45:a6: 07:88:2d:c5:a6:af:7f:d2:f1:69:13:c4:11:1b:04: 5e:a5:23:76:d0:cb:1e:09:1e:d1:f1:7e:20:93:c0: 32:35:24:82:af:2b:f4:d7:8f:90:d5:8e:cd:3d:03: 2d:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 75:81:AA:C6:25:2E:D9:51:0B:06:EE:1B:41:04:86:23:AB:80:41:33 X509v3 Authority Key Identifier: keyid:35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/dYGqxiUu2VELBu4bQQSGI6uAQTM.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/NWkPXjLVyGrx4TSd_U6M7rcOGsc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 194.87.29.0/24 194.87.77.0/24 212.192.246.0/24 Signature Algorithm: sha256WithRSAEncryption 67:3e:91:2b:b3:fd:85:e4:84:03:a4:ea:e2:7d:d5:f2:dd:2e: 40:82:08:5b:46:b9:94:22:86:ff:2d:13:b0:96:3b:11:19:46: 01:63:6a:df:4b:56:67:64:3f:04:fb:2f:86:c9:cd:cf:b0:61: 0b:5c:92:75:b5:df:b5:c2:89:92:81:2f:54:15:49:a5:b3:63: 7e:d1:f6:78:38:81:28:a2:4e:63:f7:6e:bf:c1:e8:7a:5f:fd: 92:b0:7c:fe:bc:d3:83:b6:7c:31:3b:bf:cf:be:78:f9:0c:34: 3f:87:79:28:85:2b:97:0a:03:a2:85:44:f3:00:68:95:bd:19: 19:53:18:c5:67:eb:cb:1a:ee:d9:f4:37:c4:b0:da:95:ad:ad: b3:c4:ff:03:48:cc:78:fa:c9:2f:b2:bf:94:6d:66:cd:5c:23: 9d:d6:0d:6b:a9:02:b8:2f:05:e0:4b:07:07:7b:d5:1d:65:8e: 72:fe:93:47:7c:54:13:7a:3d:b7:6c:ee:68:89:a7:7c:20:fa: a2:0a:4e:a9:17:19:97:52:d6:91:55:b3:eb:e3:f5:98:ab:4f: 0e:da:6b:d4:fd:bf:63:1a:72:0f:98:0c:4c:f5:0c:e1:89:79: 0a:dd:8b:cf:cf:d0:ff:62:54:75:ec:7f:55:53:66:ac:1f:e3: a3:fa:f4:70 -----BEGIN CERTIFICATE----- MIIFCTCCA/GgAwIBAgISAZt/hXAZ1wugdvXSX3oJg2opMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDM1NjkwZjVlMzJkNWM4NmFmMWUxMzQ5ZGZkNGU4Y2VlYjcw ZTFhYzcwHhcNMjYwMTAyMTYyMzI5WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg3NTgxYWFjNjI1MmVkOTUxMGIwNmVlMWI0MTA0ODYyM2FiODA0MTMzMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxHx+R4FQUPUqiZqMDmpy8Xk/fhn4 2uCc+JEF/UB1Uh+H4OPQOtIxqro3unawI361Y8Q4PnP9x02E2QYLC8IEq7zQ6lxk HAhgJ/ib9bfhrw1JsvxYtyPrYcGLCNPf7nieGvFCoWoyjfeXZrY97nOOP01aj9JY vRMFpZu/FMplpq20uHhwqeiu1gFfp3rLK4iRWKIp9IBbuKAta6RnoPlHrZ/orLBR zhJkxhRKz5xU/k7qSYk1z1ZTflYeprEDVQ51GLZB1cNwBJmoh7hZ9433RaYHiC3F pq9/0vFpE8QRGwRepSN20MseCR7R8X4gk8AyNSSCryv014+Q1Y7NPQMtQQIDAQAB o4ICFTCCAhEwHQYDVR0OBBYEFHWBqsYlLtlRCwbuG0EEhiOrgEEzMB8GA1UdIwQY MBaAFDVpD14y1chq8eE0nf1OjO63DhrHMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvTldrUFhqTFZ5R3J4NFRTZF9VNk03cmNPR3NjLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wMC9lMTQ0N2EtOGYxOC00YTgwLWE0MjIt NWE0MjQyOGYxMTQzLzEvZFlHcXhpVXUyVkVMQnU0YlFRU0dJNnVBUVRNLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wMC9lMTQ0N2EtOGYxOC00YTgwLWE0MjItNWE0MjQyOGYxMTQz LzEvTldrUFhqTFZ5R3J4NFRTZF9VNk03cmNPR3NjLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCsGCCsGAQUFBwEHAQH/BBwwGjAYBAIAATASAwQAwlcdAwQA wldNAwQA1MD2MA0GCSqGSIb3DQEBCwUAA4IBAQBnPpErs/2F5IQDpOrifdXy3S5A gghbRrmUIob/LROwljsRGUYBY2rfS1ZnZD8E+y+Gyc3PsGELXJJ1td+1womSgS9U FUmls2N+0fZ4OIEook5j926/weh6X/2SsHz+vNODtnwxO7/Pvnj5DDQ/h3kohSuX CgOihUTzAGiVvRkZUxjFZ+vLGu7Z9DfEsNqVra2zxP8DSMx4+skvsr+UbWbNXCOd 1g1rqQK4LwXgSwcHe9UdZY5y/pNHfFQTej23bO5oiad8IPqiCk6pFxmXUtaRVbPr 4/WYq08O2mvU/b9jGnIPmAxM9QzhiXkK3YvPz9D/YlR17H9VU2asH+Oj+vRw -----END CERTIFICATE-----Generated at Mon Jan 19 20:00:44 2026 by rpki-client