This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/07/335797-9b21-4c50-b044-c86ed4862501/1/_jY6WgV8hi820mrkCVqkQdpe6r4.roa File: _jY6WgV8hi820mrkCVqkQdpe6r4.roa (raw, json) Hash identifier: jZcpfUNVzLyH3QEOmN/Qa0Ri+06CTJZ/zNPfr5mVdOM= Subject key identifier: FE:36:3A:5A:05:7C:86:2F:36:D2:6A:E4:09:5A:A4:41:DA:5E:EA:BE Certificate issuer: /CN=f14a6318b2ed6d0c8234f98208f88de0e9d4698e Certificate serial: 019B7F14771BFEA70893B7DCF814D93AB65D Authority key identifier: F1:4A:63:18:B2:ED:6D:0C:82:34:F9:82:08:F8:8D:E0:E9:D4:69:8E Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8UpjGLLtbQyCNPmCCPiN4OnUaY4.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/07/335797-9b21-4c50-b044-c86ed4862501/1/_jY6WgV8hi820mrkCVqkQdpe6r4.roa Signing time: Fri 02 Jan 2026 14:20:06 +0000 ROA not before: Fri 02 Jan 2026 14:20:06 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 56798 IP address blocks: 45.66.220.0/22 maxlen: 22 45.86.36.0/24 maxlen: 24 91.200.144.0/24 maxlen: 24 91.207.207.0/24 maxlen: 24 91.223.132.0/24 maxlen: 24 185.34.102.0/24 maxlen: 24 185.54.7.0/24 maxlen: 24 193.17.33.0/24 maxlen: 24 195.114.125.0/24 maxlen: 24 2a0f:9180::/29 maxlen: 29 2a0f:9180:1::/48 maxlen: 48 2a10:d440:1::/48 maxlen: 48 2a10:d440:2::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/07/335797-9b21-4c50-b044-c86ed4862501/1/8UpjGLLtbQyCNPmCCPiN4OnUaY4.crl rsync://rpki.ripe.net/repository/DEFAULT/07/335797-9b21-4c50-b044-c86ed4862501/1/8UpjGLLtbQyCNPmCCPiN4OnUaY4.mft rsync://rpki.ripe.net/repository/DEFAULT/8UpjGLLtbQyCNPmCCPiN4OnUaY4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 12 Jan 2026 05:02:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7f:14:77:1b:fe:a7:08:93:b7:dc:f8:14:d9:3a:b6:5d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=f14a6318b2ed6d0c8234f98208f88de0e9d4698e Validity Not Before: Jan 2 14:20:06 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=fe363a5a057c862f36d26ae4095aa441da5eeabe Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:77:47:6a:8f:37:03:77:78:42:cf:0f:04:4a: 32:08:bf:3f:e9:b2:95:69:4d:8a:4b:21:26:64:86: 35:92:58:e9:17:96:4f:e2:3d:5a:17:ea:0d:52:fc: e8:77:35:b6:bf:ca:d4:85:c5:fb:1d:35:d3:d4:9e: e3:69:38:1d:37:b4:bc:c6:ea:1b:00:01:eb:81:0c: d7:fe:41:58:12:b5:8e:bb:33:d5:d6:c7:30:86:03: 44:af:9a:25:83:82:2b:a6:15:e9:2a:27:11:a4:95: e1:3b:e8:8e:c8:1d:68:e3:c1:a0:c3:c3:33:2a:36: e7:47:95:f6:79:30:56:62:1c:1e:d2:0c:20:a5:2e: b9:0a:05:c2:5e:95:73:f8:22:3e:72:26:dd:26:5d: e1:e3:96:56:0a:38:c2:2e:58:b9:a0:41:ed:be:25: 45:a1:16:3b:4d:e2:c4:ba:27:e7:db:d1:74:94:fc: a0:ef:89:0e:91:85:7d:30:67:78:e4:30:4a:bf:0e: 5f:a0:71:6e:c6:f3:c9:46:4d:c5:0d:20:9f:ef:14: 5f:ae:cb:9e:fe:8d:c9:48:83:1e:78:d8:bb:a4:0a: f8:49:bf:4d:e7:ef:50:ab:4f:95:a4:cb:28:ab:14: ec:ab:94:98:3e:6e:c5:69:57:23:db:fe:39:d4:02: 26:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FE:36:3A:5A:05:7C:86:2F:36:D2:6A:E4:09:5A:A4:41:DA:5E:EA:BE X509v3 Authority Key Identifier: keyid:F1:4A:63:18:B2:ED:6D:0C:82:34:F9:82:08:F8:8D:E0:E9:D4:69:8E X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8UpjGLLtbQyCNPmCCPiN4OnUaY4.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/07/335797-9b21-4c50-b044-c86ed4862501/1/_jY6WgV8hi820mrkCVqkQdpe6r4.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/07/335797-9b21-4c50-b044-c86ed4862501/1/8UpjGLLtbQyCNPmCCPiN4OnUaY4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 45.66.220.0/22 45.86.36.0/24 91.200.144.0/24 91.207.207.0/24 91.223.132.0/24 185.34.102.0/24 185.54.7.0/24 193.17.33.0/24 195.114.125.0/24 IPv6: 2a0f:9180::/29 2a10:d440:1::-2a10:d440:2:ffff:ffff:ffff:ffff:ffff Signature Algorithm: sha256WithRSAEncryption 92:7d:fc:ab:88:78:9b:e2:66:37:f4:3f:a1:51:40:2b:2e:6a: ed:f5:b2:c4:92:c7:b3:70:24:3a:ce:fc:6d:3d:be:3b:cc:87: 51:64:44:06:0b:7f:db:8a:0d:8b:71:a0:f5:cc:18:4c:bd:2e: 78:af:fa:09:ca:95:fa:65:b3:c1:c8:68:c4:27:89:20:a3:07: 04:57:3b:1e:24:12:b2:5c:35:83:38:9a:be:91:4c:73:32:b6: 88:25:8e:35:06:65:e0:0f:dd:59:51:aa:ad:c3:c3:5b:62:75: 72:ed:fc:d3:9b:1b:72:59:6f:d1:0b:ce:2a:98:e7:b3:d1:67: c6:07:dc:54:41:9f:1e:38:cd:b3:e0:45:7a:0c:15:16:d6:fd: b5:75:fc:d2:75:d4:40:34:b5:61:96:26:0e:07:a2:18:f5:e4: 47:d7:83:c3:a9:9c:39:bb:66:46:40:7e:8c:33:03:8d:76:22: c7:2d:82:5f:ba:4c:a1:5f:a8:e2:42:e1:9f:1f:b4:fa:24:1b: 13:9f:50:af:e0:d4:46:78:8b:a9:62:36:0a:37:ce:dc:99:0b: 29:d0:29:15:6d:38:f7:d6:47:19:d2:9b:63:c0:20:2a:77:40: cb:df:a4:b2:01:05:e9:0c:cf:41:e3:75:2c:de:36:af:02:e0: 9a:7c:18:6e -----BEGIN CERTIFICATE----- MIIFUDCCBDigAwIBAgISAZt/FHcb/qcIk7fc+BTZOrZdMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGYxNGE2MzE4YjJlZDZkMGM4MjM0Zjk4MjA4Zjg4ZGUwZTlk NDY5OGUwHhcNMjYwMTAyMTQyMDA2WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhmZTM2M2E1YTA1N2M4NjJmMzZkMjZhZTQwOTVhYTQ0MWRhNWVlYWJlMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArXdHao83A3d4Qs8PBEoyCL8/6bKV aU2KSyEmZIY1kljpF5ZP4j1aF+oNUvzodzW2v8rUhcX7HTXT1J7jaTgdN7S8xuob AAHrgQzX/kFYErWOuzPV1scwhgNEr5olg4IrphXpKicRpJXhO+iOyB1o48Ggw8Mz KjbnR5X2eTBWYhwe0gwgpS65CgXCXpVz+CI+cibdJl3h45ZWCjjCLli5oEHtviVF oRY7TeLEuifn29F0lPyg74kOkYV9MGd45DBKvw5foHFuxvPJRk3FDSCf7xRfrsue /o3JSIMeeNi7pAr4Sb9N5+9Qq0+VpMsoqxTsq5SYPm7FaVcj2/451AImbQIDAQAB o4ICXDCCAlgwHQYDVR0OBBYEFP42OloFfIYvNtJq5AlapEHaXuq+MB8GA1UdIwQY MBaAFPFKYxiy7W0MgjT5ggj4jeDp1GmOMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvOFVwakdMTHRiUXlDTlBtQ0NQaU40T25VYVk0LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wNy8zMzU3OTctOWIyMS00YzUwLWIwNDQt Yzg2ZWQ0ODYyNTAxLzEvX2pZNldnVjhoaTgyMG1ya0NWcWtRZHBlNnI0LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wNy8zMzU3OTctOWIyMS00YzUwLWIwNDQtYzg2ZWQ0ODYyNTAx LzEvOFVwakdMTHRiUXlDTlBtQ0NQaU40T25VYVk0LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMHIGCCsGAQUFBwEHAQH/BGMwYTA8BAIAATA2AwQCLULcAwQA LVYkAwQAW8iQAwQAW8/PAwQAW9+EAwQAuSJmAwQAuTYHAwQAwREhAwQAw3J9MCEE AgACMBsDBQMqD5GAMBIDBwAqENRAAAEDBwAqENRAAAIwDQYJKoZIhvcNAQELBQAD ggEBAJJ9/KuIeJviZjf0P6FRQCsuau31ssSSx7NwJDrO/G09vjvMh1FkRAYLf9uK DYtxoPXMGEy9Lniv+gnKlfpls8HIaMQniSCjBwRXOx4kErJcNYM4mr6RTHMytogl jjUGZeAP3VlRqq3Dw1tidXLt/NObG3JZb9ELziqY57PRZ8YH3FRBnx44zbPgRXoM FRbW/bV1/NJ11EA0tWGWJg4Hohj15EfXg8OpnDm7ZkZAfowzA412Isctgl+6TKFf qOJC4Z8ftPokGxOfUK/g1EZ4i6liNgo3ztyZCynQKRVtOPfWRxnSm2PAICp3QMvf pLIBBekMz0HjdSzeNq8C4Jp8GG4= -----END CERTIFICATE-----Generated at Sun Jan 11 16:13:02 2026 by rpki-client