This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/15/7193db-7f85-42bb-b09a-f52c47c225db/1/jykBVgkOlo30ua22TQelOUGZ824.roa File: jykBVgkOlo30ua22TQelOUGZ824.roa (raw, json) Hash identifier: M3m3DqbfGhOhNFRQJHuoxROicEtSV08m7Rk7TlVGtig= Subject key identifier: 8F:29:01:56:09:0E:96:8D:F4:B9:AD:B6:4D:07:A5:39:41:99:F3:6E Certificate issuer: /CN=3183785916cd98d7c770d685145499a8a0a15722 Certificate serial: 019A9FFE0518DC3B040A2F5DEA19D9227F09 Authority key identifier: 31:83:78:59:16:CD:98:D7:C7:70:D6:85:14:54:99:A8:A0:A1:57:22 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MYN4WRbNmNfHcNaFFFSZqKChVyI.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/15/7193db-7f85-42bb-b09a-f52c47c225db/1/jykBVgkOlo30ua22TQelOUGZ824.roa Signing time: Thu 20 Nov 2025 06:40:16 +0000 ROA not before: Thu 20 Nov 2025 06:40:16 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 48753 IP address blocks: 80.97.160.0/24 maxlen: 24 80.97.161.0/24 maxlen: 24 85.121.148.0/24 maxlen: 24 194.102.104.0/24 maxlen: 24 217.156.62.0/24 maxlen: 24 217.156.66.0/24 maxlen: 24 217.156.67.0/24 maxlen: 24 217.156.122.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/15/7193db-7f85-42bb-b09a-f52c47c225db/1/MYN4WRbNmNfHcNaFFFSZqKChVyI.crl rsync://rpki.ripe.net/repository/DEFAULT/15/7193db-7f85-42bb-b09a-f52c47c225db/1/MYN4WRbNmNfHcNaFFFSZqKChVyI.mft rsync://rpki.ripe.net/repository/DEFAULT/MYN4WRbNmNfHcNaFFFSZqKChVyI.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 06 Dec 2025 11:00:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:9f:fe:05:18:dc:3b:04:0a:2f:5d:ea:19:d9:22:7f:09 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3183785916cd98d7c770d685145499a8a0a15722 Validity Not Before: Nov 20 06:40:16 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=8f290156090e968df4b9adb64d07a5394199f36e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:67:51:b9:17:7b:7f:ad:19:a9:1f:88:75:ed: 73:38:61:87:97:0e:cc:2c:1f:12:f0:b7:dd:c1:cf: e4:cb:73:61:cb:72:4e:30:41:79:28:8b:f2:d5:77: a6:ff:f7:87:ca:4b:90:f8:e5:41:e5:29:f1:76:a2: b7:bc:6f:53:cc:c8:11:b5:d2:25:f1:4e:ea:c0:94: 7e:8d:97:01:88:35:01:ca:73:75:d4:41:d4:9d:2d: 75:b6:6b:62:bd:33:48:2c:fd:6c:e2:0f:da:05:d4: c1:59:6f:82:8d:2a:42:1b:6b:01:50:94:04:2d:74: bf:79:9a:7f:15:36:d2:78:29:0d:da:35:fc:f6:64: 90:33:1f:11:26:5b:20:5b:6c:9e:19:47:da:94:3f: 1c:bb:ea:74:da:db:ea:50:80:21:88:bd:7c:2a:4d: 44:9c:8a:7a:b2:d4:bb:1f:7a:d3:d4:19:e9:d0:35: 0d:a6:ad:f8:a1:13:58:2d:f1:db:1f:66:af:0a:fa: 13:09:a9:e3:74:4e:59:28:3f:a7:6f:5b:d2:34:8a: 3f:5b:47:f1:34:99:2b:7c:ee:77:22:fa:5f:fc:3c: fd:ab:17:43:ed:f2:31:14:a8:39:4e:fb:70:3a:ab: 3a:43:ce:e6:7d:99:2d:9f:bc:0c:d1:ed:38:56:f7: 10:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8F:29:01:56:09:0E:96:8D:F4:B9:AD:B6:4D:07:A5:39:41:99:F3:6E X509v3 Authority Key Identifier: keyid:31:83:78:59:16:CD:98:D7:C7:70:D6:85:14:54:99:A8:A0:A1:57:22 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MYN4WRbNmNfHcNaFFFSZqKChVyI.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/15/7193db-7f85-42bb-b09a-f52c47c225db/1/jykBVgkOlo30ua22TQelOUGZ824.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/15/7193db-7f85-42bb-b09a-f52c47c225db/1/MYN4WRbNmNfHcNaFFFSZqKChVyI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 80.97.160.0/23 85.121.148.0/24 194.102.104.0/24 217.156.62.0/24 217.156.66.0/23 217.156.122.0/24 Signature Algorithm: sha256WithRSAEncryption bc:7f:6f:c6:00:8c:54:81:48:40:bc:aa:41:e5:e3:f5:7a:14: 56:f3:92:7e:dd:f1:8c:b6:89:b1:a1:70:5a:3e:37:33:72:83: db:51:32:f8:02:5c:ec:11:52:6c:08:5b:10:d2:b8:ee:d0:e3: 80:fc:c7:42:01:b1:6f:6b:84:b3:95:4f:ac:af:01:69:69:e3: 0d:82:0a:18:a3:9d:53:1e:3b:dd:bd:ba:e5:4f:7e:5b:57:d7: ae:ff:39:f5:3c:3f:7f:37:62:d3:94:b3:08:e4:11:9b:98:de: 47:54:2c:60:26:db:de:99:f1:62:04:ec:bd:8e:88:c6:97:c4: 9c:1b:3a:e9:4f:b5:a4:ea:32:19:dc:b5:27:89:65:b5:e7:2a: 9e:d6:62:4b:61:38:8c:a8:7e:e1:f9:e7:92:5f:19:f7:27:72: 97:4d:bd:a4:bc:74:eb:79:a1:cd:20:6f:01:43:d0:0e:15:80: 92:d5:4f:5f:7b:e6:e5:17:bb:3d:e6:d7:be:45:09:83:dd:47: ba:2b:48:2f:4b:03:52:33:50:a6:81:1b:8a:96:9d:ae:6c:3e: e0:a3:bd:9b:98:c5:73:b9:47:20:13:bb:cc:dd:f2:1e:ef:8a: a0:b0:88:a7:89:31:33:14:e3:0b:dd:ad:03:ad:c7:43:22:bb: 95:ea:2f:41 -----BEGIN CERTIFICATE----- MIIFGzCCBAOgAwIBAgISAZqf/gUY3DsECi9d6hnZIn8JMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDMxODM3ODU5MTZjZDk4ZDdjNzcwZDY4NTE0NTQ5OWE4YTBh MTU3MjIwHhcNMjUxMTIwMDY0MDE2WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg4ZjI5MDE1NjA5MGU5NjhkZjRiOWFkYjY0ZDA3YTUzOTQxOTlmMzZlMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqGdRuRd7f60ZqR+Ide1zOGGHlw7M LB8S8Lfdwc/ky3Nhy3JOMEF5KIvy1Xem//eHykuQ+OVB5SnxdqK3vG9TzMgRtdIl 8U7qwJR+jZcBiDUBynN11EHUnS11tmtivTNILP1s4g/aBdTBWW+CjSpCG2sBUJQE LXS/eZp/FTbSeCkN2jX89mSQMx8RJlsgW2yeGUfalD8cu+p02tvqUIAhiL18Kk1E nIp6stS7H3rT1Bnp0DUNpq34oRNYLfHbH2avCvoTCanjdE5ZKD+nb1vSNIo/W0fx NJkrfO53Ivpf/Dz9qxdD7fIxFKg5TvtwOqs6Q87mfZktn7wM0e04VvcQ3QIDAQAB o4ICJzCCAiMwHQYDVR0OBBYEFI8pAVYJDpaN9Lmttk0HpTlBmfNuMB8GA1UdIwQY MBaAFDGDeFkWzZjXx3DWhRRUmaigoVciMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvTVlONFdSYk5tTmZIY05hRkZGU1pxS0NoVnlJLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xNS83MTkzZGItN2Y4NS00MmJiLWIwOWEt ZjUyYzQ3YzIyNWRiLzEvanlrQlZna09sbzMwdWEyMlRRZWxPVUdaODI0LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xNS83MTkzZGItN2Y4NS00MmJiLWIwOWEtZjUyYzQ3YzIyNWRi LzEvTVlONFdSYk5tTmZIY05hRkZGU1pxS0NoVnlJLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMD0GCCsGAQUFBwEHAQH/BC4wLDAqBAIAATAkAwQBUGGgAwQA VXmUAwQAwmZoAwQA2Zw+AwQB2ZxCAwQA2Zx6MA0GCSqGSIb3DQEBCwUAA4IBAQC8 f2/GAIxUgUhAvKpB5eP1ehRW85J+3fGMtomxoXBaPjczcoPbUTL4AlzsEVJsCFsQ 0rju0OOA/MdCAbFva4SzlU+srwFpaeMNggoYo51THjvdvbrlT35bV9eu/zn1PD9/ N2LTlLMI5BGbmN5HVCxgJtvemfFiBOy9jojGl8ScGzrpT7Wk6jIZ3LUniWW15yqe 1mJLYTiMqH7h+eeSXxn3J3KXTb2kvHTreaHNIG8BQ9AOFYCS1U9fe+blF7s95te+ RQmD3Ue6K0gvSwNSM1CmgRuKlp2ubD7go72bmMVzuUcgE7vM3fIe74qgsIiniTEz FOML3a0DrcdDIruV6i9B -----END CERTIFICATE-----Generated at Fri Dec 5 20:15:16 2025 by rpki-client