This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/18/733f9c-b115-49c8-959b-f58cb6480a7e/1/KyuLPj5o4j_n8r1tPjoVcUGqn_c.roa File: KyuLPj5o4j_n8r1tPjoVcUGqn_c.roa (raw, json) Hash identifier: 6rz3nPgtR7nYzXOgSBXCSqdxgUf8eCA4QNV+oiGauy0= Subject key identifier: 2B:2B:8B:3E:3E:68:E2:3F:E7:F2:BD:6D:3E:3A:15:71:41:AA:9F:F7 Certificate issuer: /CN=67589d5fe4bb1c5bdb83a353c2737dc604341326 Certificate serial: 019B7C7FCC747B8CFF3AF91674072C6F4274 Authority key identifier: 67:58:9D:5F:E4:BB:1C:5B:DB:83:A3:53:C2:73:7D:C6:04:34:13:26 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Z1idX-S7HFvbg6NTwnN9xgQ0EyY.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/18/733f9c-b115-49c8-959b-f58cb6480a7e/1/KyuLPj5o4j_n8r1tPjoVcUGqn_c.roa Signing time: Fri 02 Jan 2026 02:18:28 +0000 ROA not before: Fri 02 Jan 2026 02:18:28 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 9123 IP address blocks: 185.207.64.0/24 maxlen: 24 185.207.65.0/24 maxlen: 24 185.207.66.0/24 maxlen: 24 217.199.241.0/24 maxlen: 24 217.199.248.0/24 maxlen: 24 217.199.252.0/24 maxlen: 24 217.199.253.0/24 maxlen: 24 217.199.254.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/18/733f9c-b115-49c8-959b-f58cb6480a7e/1/Z1idX-S7HFvbg6NTwnN9xgQ0EyY.crl rsync://rpki.ripe.net/repository/DEFAULT/18/733f9c-b115-49c8-959b-f58cb6480a7e/1/Z1idX-S7HFvbg6NTwnN9xgQ0EyY.mft rsync://rpki.ripe.net/repository/DEFAULT/Z1idX-S7HFvbg6NTwnN9xgQ0EyY.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 22 Jan 2026 05:01:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7c:7f:cc:74:7b:8c:ff:3a:f9:16:74:07:2c:6f:42:74 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=67589d5fe4bb1c5bdb83a353c2737dc604341326 Validity Not Before: Jan 2 02:18:28 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=2b2b8b3e3e68e23fe7f2bd6d3e3a157141aa9ff7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:a9:62:d0:60:67:d3:a0:2c:38:d1:33:45:71: 9e:55:b3:f2:22:84:55:e4:04:39:55:52:46:03:c4: 3c:29:e4:1f:c9:ba:3f:fc:7b:c0:ff:36:ad:68:ae: 24:9f:0d:2c:62:9c:44:da:4b:fd:3b:b7:82:e8:5a: ea:f4:b4:6b:0e:bb:70:da:3c:27:da:09:b8:db:87: a8:9b:4b:05:cc:95:9c:66:0d:e6:86:76:d9:dd:df: 2a:a2:98:d1:55:de:9f:87:f8:96:ae:00:a1:6f:66: ae:ce:8d:17:33:47:d2:29:69:80:ab:c5:58:35:75: a5:2e:77:06:27:53:a6:bc:da:e4:47:67:ab:3c:48: fa:a0:43:a1:a0:c4:42:3b:ba:fe:a2:dc:f3:a7:1e: 37:5e:ff:fe:54:f4:9d:2d:91:c3:04:f6:46:b4:f6: 6d:d2:5d:96:58:8b:43:0e:ab:1c:56:e0:00:c4:bc: 06:55:78:eb:2c:05:5e:9e:dc:4d:e4:fe:6c:ab:55: 11:0f:a8:71:3f:dc:63:fb:d6:b9:0b:84:75:2d:3e: fb:b0:9a:92:49:91:08:0e:98:8c:d9:cd:8f:d3:f5: 5d:a7:5d:d8:fb:33:20:6a:f6:24:f6:fd:93:f4:2c: ef:05:15:65:fd:2c:aa:f9:fc:2e:01:ad:08:b3:6f: 16:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2B:2B:8B:3E:3E:68:E2:3F:E7:F2:BD:6D:3E:3A:15:71:41:AA:9F:F7 X509v3 Authority Key Identifier: keyid:67:58:9D:5F:E4:BB:1C:5B:DB:83:A3:53:C2:73:7D:C6:04:34:13:26 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Z1idX-S7HFvbg6NTwnN9xgQ0EyY.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/18/733f9c-b115-49c8-959b-f58cb6480a7e/1/KyuLPj5o4j_n8r1tPjoVcUGqn_c.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/18/733f9c-b115-49c8-959b-f58cb6480a7e/1/Z1idX-S7HFvbg6NTwnN9xgQ0EyY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.207.64.0-185.207.66.255 217.199.241.0/24 217.199.248.0/24 217.199.252.0-217.199.254.255 Signature Algorithm: sha256WithRSAEncryption 6f:04:21:35:55:33:b5:31:ec:32:c6:57:05:f6:e8:de:8e:ba: f0:2c:24:e0:67:72:dc:e8:3d:83:7a:b9:2a:af:96:f3:85:a9: 7f:b0:f5:8c:48:8c:4b:48:5f:9e:80:a9:db:fe:29:07:4e:33: 07:67:47:11:19:3a:57:88:62:14:92:9c:38:b4:cd:15:65:56: 3c:5c:cf:4f:75:47:49:3b:36:18:79:69:a5:84:e8:98:10:9b: 35:32:6e:cf:ee:be:3d:18:77:4b:46:99:16:d6:f7:d1:f2:38: c1:1d:85:6f:67:24:fb:5b:d5:7a:9d:7b:d6:bd:e6:d6:a5:61: bf:19:e2:a6:80:a0:57:57:f1:13:7b:07:d4:ca:1c:14:11:e4: 18:f5:f9:1c:e9:e7:61:83:03:b9:a3:1a:6d:ae:8d:e3:25:cd: 2e:af:c5:e0:72:a6:ec:d7:8e:61:49:1a:5c:50:5e:bf:47:4a: 42:e9:81:0e:bc:19:78:db:8c:01:72:9c:11:d2:6d:f1:9f:57: ad:aa:d4:0c:b3:2a:f1:ae:cc:a2:46:93:4c:c7:46:77:04:81: b5:cc:f3:4d:43:de:90:92:f5:28:3f:e1:fe:15:22:90:24:96: 30:e5:cb:ed:3d:9c:62:13:8c:56:66:22:86:54:63:aa:10:30: fc:64:5b:cd -----BEGIN CERTIFICATE----- MIIFHzCCBAegAwIBAgISAZt8f8x0e4z/OvkWdAcsb0J0MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDY3NTg5ZDVmZTRiYjFjNWJkYjgzYTM1M2MyNzM3ZGM2MDQz NDEzMjYwHhcNMjYwMTAyMDIxODI4WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygyYjJiOGIzZTNlNjhlMjNmZTdmMmJkNmQzZTNhMTU3MTQxYWE5ZmY3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0qli0GBn06AsONEzRXGeVbPyIoRV 5AQ5VVJGA8Q8KeQfybo//HvA/zataK4knw0sYpxE2kv9O7eC6Frq9LRrDrtw2jwn 2gm424eom0sFzJWcZg3mhnbZ3d8qopjRVd6fh/iWrgChb2auzo0XM0fSKWmAq8VY NXWlLncGJ1OmvNrkR2erPEj6oEOhoMRCO7r+otzzpx43Xv/+VPSdLZHDBPZGtPZt 0l2WWItDDqscVuAAxLwGVXjrLAVentxN5P5sq1URD6hxP9xj+9a5C4R1LT77sJqS SZEIDpiM2c2P0/Vdp13Y+zMgavYk9v2T9CzvBRVl/Syq+fwuAa0Is28WsQIDAQAB o4ICKzCCAicwHQYDVR0OBBYEFCsriz4+aOI/5/K9bT46FXFBqp/3MB8GA1UdIwQY MBaAFGdYnV/kuxxb24OjU8JzfcYENBMmMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvWjFpZFgtUzdIRnZiZzZOVHduTjl4Z1EwRXlZLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xOC83MzNmOWMtYjExNS00OWM4LTk1OWIt ZjU4Y2I2NDgwYTdlLzEvS3l1TFBqNW80al9uOHIxdFBqb1ZjVUdxbl9jLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xOC83MzNmOWMtYjExNS00OWM4LTk1OWItZjU4Y2I2NDgwYTdl LzEvWjFpZFgtUzdIRnZiZzZOVHduTjl4Z1EwRXlZLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMEEGCCsGAQUFBwEHAQH/BDIwMDAuBAIAATAoMAwDBAa5z0AD BAC5z0IDBADZx/EDBADZx/gwDAMEAtnH/AMEANnH/jANBgkqhkiG9w0BAQsFAAOC AQEAbwQhNVUztTHsMsZXBfbo3o668Cwk4Gdy3Og9g3q5Kq+W84Wpf7D1jEiMS0hf noCp2/4pB04zB2dHERk6V4hiFJKcOLTNFWVWPFzPT3VHSTs2GHlppYTomBCbNTJu z+6+PRh3S0aZFtb30fI4wR2Fb2ck+1vVep171r3m1qVhvxnipoCgV1fxE3sH1Moc FBHkGPX5HOnnYYMDuaMaba6N4yXNLq/F4HKm7NeOYUkaXFBev0dKQumBDrwZeNuM AXKcEdJt8Z9XrarUDLMq8a7MokaTTMdGdwSBtczzTUPekJL1KD/h/hUikCSWMOXL 7T2cYhOMVmYihlRjqhAw/GRbzQ== -----END CERTIFICATE-----Generated at Wed Jan 21 11:15:50 2026 by rpki-client