This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/07/bc5fd7-3e63-4945-afb7-1175e5a07a55/1/xY3oO-WMZjEDTENfTRiDC2FkHKs.roa File: xY3oO-WMZjEDTENfTRiDC2FkHKs.roa (raw, json) Hash identifier: wPsvyOO1iyC8jxQyomTONofcW3odk+2KnelEPbJzeYA= Subject key identifier: C5:8D:E8:3B:E5:8C:66:31:03:4C:43:5F:4D:18:83:0B:61:64:1C:AB Certificate issuer: /CN=d3f60b176d95fd8d3d0bd65c5d12c83941f7f054 Certificate serial: 019B7F82790E1D617A564001ECD91B65BB68 Authority key identifier: D3:F6:0B:17:6D:95:FD:8D:3D:0B:D6:5C:5D:12:C8:39:41:F7:F0:54 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0_YLF22V_Y09C9ZcXRLIOUH38FQ.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/07/bc5fd7-3e63-4945-afb7-1175e5a07a55/1/xY3oO-WMZjEDTENfTRiDC2FkHKs.roa Signing time: Fri 02 Jan 2026 16:20:15 +0000 ROA not before: Fri 02 Jan 2026 16:20:15 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 6984 IP address blocks: 62.189.149.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/07/bc5fd7-3e63-4945-afb7-1175e5a07a55/1/0_YLF22V_Y09C9ZcXRLIOUH38FQ.crl rsync://rpki.ripe.net/repository/DEFAULT/07/bc5fd7-3e63-4945-afb7-1175e5a07a55/1/0_YLF22V_Y09C9ZcXRLIOUH38FQ.mft rsync://rpki.ripe.net/repository/DEFAULT/0_YLF22V_Y09C9ZcXRLIOUH38FQ.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 11 Jan 2026 04:01:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7f:82:79:0e:1d:61:7a:56:40:01:ec:d9:1b:65:bb:68 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d3f60b176d95fd8d3d0bd65c5d12c83941f7f054 Validity Not Before: Jan 2 16:20:15 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=c58de83be58c6631034c435f4d18830b61641cab Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:b4:61:e4:bd:9b:c5:1d:05:f4:5d:e8:81:54: d9:f1:74:05:ec:cd:fa:48:13:3f:e6:a9:63:37:87: 7f:58:02:c2:76:61:0b:07:73:7a:75:a8:9a:24:08: ea:8f:d6:2d:eb:11:57:8a:41:28:d4:c1:c3:c7:d7: ca:a3:27:e7:1b:05:7d:aa:b3:3b:e4:48:3c:38:16: 28:27:44:b9:47:93:73:95:1f:c4:47:37:b2:2b:de: 57:94:a4:2c:db:49:f3:c9:f0:d8:54:33:6a:21:38: ab:9a:49:99:d1:e5:4c:51:3a:9c:28:0e:f4:cd:ac: 70:ba:4a:ba:45:7e:38:1b:bd:07:15:8f:e7:b7:bc: 38:ce:d0:61:0c:2f:41:6b:c2:c8:24:6e:38:68:da: 36:fb:38:9b:bf:7d:1d:39:3f:45:59:d7:94:ce:62: 8e:e5:0a:e5:41:d3:59:c1:ca:cd:22:16:a8:9b:cb: 1d:41:bc:aa:e0:ba:4e:27:fe:18:8f:00:fc:50:3e: 88:61:82:8f:bb:a4:5c:59:f6:21:5d:95:10:ab:b6: 38:86:16:ac:0b:ac:e3:e0:23:c9:0a:b2:96:5b:3e: ff:0f:6c:66:74:f6:d1:42:b1:89:bc:0e:34:e8:08: 3f:08:0d:a1:5b:3e:ab:a7:3e:0d:1e:c6:a6:e0:20: 2a:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C5:8D:E8:3B:E5:8C:66:31:03:4C:43:5F:4D:18:83:0B:61:64:1C:AB X509v3 Authority Key Identifier: keyid:D3:F6:0B:17:6D:95:FD:8D:3D:0B:D6:5C:5D:12:C8:39:41:F7:F0:54 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0_YLF22V_Y09C9ZcXRLIOUH38FQ.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/07/bc5fd7-3e63-4945-afb7-1175e5a07a55/1/xY3oO-WMZjEDTENfTRiDC2FkHKs.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/07/bc5fd7-3e63-4945-afb7-1175e5a07a55/1/0_YLF22V_Y09C9ZcXRLIOUH38FQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 62.189.149.0/24 Signature Algorithm: sha256WithRSAEncryption 53:81:1b:99:f7:d6:f2:35:3a:16:5c:11:1f:b6:d1:68:dc:42: a4:6d:37:25:99:96:e7:11:73:7c:56:d1:98:2a:1a:1b:2c:28: 64:37:8f:77:8e:c6:98:ec:fd:6a:36:bc:05:e8:84:69:73:97: 5e:03:f8:72:0d:cf:1e:b2:c7:5a:b4:2f:ce:07:4d:34:d6:67: 65:88:17:6d:89:92:92:2c:ab:8d:64:f8:ec:13:04:f9:42:70: 29:d0:d4:07:42:1d:39:02:79:f7:52:13:35:05:82:dc:2e:9e: 76:55:49:73:4c:2f:60:0c:a8:13:96:12:3e:0f:2a:0e:b2:a6: 3b:0d:38:7a:bc:e0:be:31:fa:36:d4:f5:fc:de:22:88:2e:5f: 50:9e:98:f4:23:c7:90:81:b6:01:a8:09:d6:03:5c:9b:fd:42: 9f:99:e4:86:e9:ee:10:4f:30:fb:65:2a:b4:83:7e:8a:76:d3: 18:dc:6b:c9:85:e9:4b:46:dd:81:b8:28:90:ba:ed:59:a5:58: ed:ef:b6:61:73:3f:b0:96:a4:76:c5:5b:6f:89:a0:f8:29:98: b2:f4:20:e4:aa:a6:39:ba:d6:f3:9b:f9:ff:e7:64:e6:74:45: 91:8f:87:1c:29:36:0f:e1:ab:ba:ff:90:31:a1:ab:ba:34:ab: 2e:51:19:f6 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt/gnkOHWF6VkAB7NkbZbtoMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGQzZjYwYjE3NmQ5NWZkOGQzZDBiZDY1YzVkMTJjODM5NDFm N2YwNTQwHhcNMjYwMTAyMTYyMDE1WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhjNThkZTgzYmU1OGM2NjMxMDM0YzQzNWY0ZDE4ODMwYjYxNjQxY2FiMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtLRh5L2bxR0F9F3ogVTZ8XQF7M36 SBM/5qljN4d/WALCdmELB3N6daiaJAjqj9Yt6xFXikEo1MHDx9fKoyfnGwV9qrM7 5Eg8OBYoJ0S5R5NzlR/ERzeyK95XlKQs20nzyfDYVDNqITirmkmZ0eVMUTqcKA70 zaxwukq6RX44G70HFY/nt7w4ztBhDC9Ba8LIJG44aNo2+zibv30dOT9FWdeUzmKO 5QrlQdNZwcrNIhaom8sdQbyq4LpOJ/4YjwD8UD6IYYKPu6RcWfYhXZUQq7Y4hhas C6zj4CPJCrKWWz7/D2xmdPbRQrGJvA406Ag/CA2hWz6rpz4NHsam4CAqKQIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFMWN6DvljGYxA0xDX00YgwthZByrMB8GA1UdIwQY MBaAFNP2Cxdtlf2NPQvWXF0SyDlB9/BUMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvMF9ZTEYyMlZfWTA5QzlaY1hSTElPVUgzOEZRLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wNy9iYzVmZDctM2U2My00OTQ1LWFmYjct MTE3NWU1YTA3YTU1LzEveFkzb08tV01aakVEVEVOZlRSaURDMkZrSEtzLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wNy9iYzVmZDctM2U2My00OTQ1LWFmYjctMTE3NWU1YTA3YTU1 LzEvMF9ZTEYyMlZfWTA5QzlaY1hSTElPVUgzOEZRLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAPr2VMA0G CSqGSIb3DQEBCwUAA4IBAQBTgRuZ99byNToWXBEfttFo3EKkbTclmZbnEXN8VtGY KhobLChkN493jsaY7P1qNrwF6IRpc5deA/hyDc8essdatC/OB0001mdliBdtiZKS LKuNZPjsEwT5QnAp0NQHQh05Ann3UhM1BYLcLp52VUlzTC9gDKgTlhI+DyoOsqY7 DTh6vOC+Mfo21PX83iKILl9Qnpj0I8eQgbYBqAnWA1yb/UKfmeSG6e4QTzD7ZSq0 g36KdtMY3GvJhelLRt2BuCiQuu1ZpVjt77Zhcz+wlqR2xVtviaD4KZiy9CDkqqY5 utbzm/n/52TmdEWRj4ccKTYP4au6/5Axoau6NKsuURn2 -----END CERTIFICATE-----Generated at Sat Jan 10 14:24:01 2026 by rpki-client