This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/21/2cb3bb-0ed1-4ecf-8af5-ee73fe21ed23/1/YI0pCgu2ykn3yzVOtlSfyJA849I.roa File: YI0pCgu2ykn3yzVOtlSfyJA849I.roa (raw, json) Hash identifier: EahNolpQ9StYuOrtKhWwzZ1bxJLzeXPdTxQKSkepaik= Subject key identifier: 60:8D:29:0A:0B:B6:CA:49:F7:CB:35:4E:B6:54:9F:C8:90:3C:E3:D2 Certificate issuer: /CN=58b29e7b8a0ddb9c36c6e0e3f49577817b0ea3a6 Certificate serial: 019BB2B9E468F4687347DD852FBCDE3F4A17 Authority key identifier: 58:B2:9E:7B:8A:0D:DB:9C:36:C6:E0:E3:F4:95:77:81:7B:0E:A3:A6 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/WLKee4oN25w2xuDj9JV3gXsOo6Y.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/21/2cb3bb-0ed1-4ecf-8af5-ee73fe21ed23/1/YI0pCgu2ykn3yzVOtlSfyJA849I.roa Signing time: Mon 12 Jan 2026 15:01:25 +0000 ROA not before: Mon 12 Jan 2026 15:01:25 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 35228 IP address blocks: 82.132.138.0/23 maxlen: 24 82.132.160.0/23 maxlen: 24 82.132.162.0/23 maxlen: 24 82.132.164.0/23 maxlen: 24 82.132.166.0/23 maxlen: 24 82.132.168.0/23 maxlen: 24 82.132.170.0/23 maxlen: 24 82.132.172.0/23 maxlen: 24 82.132.174.0/23 maxlen: 24 82.132.176.0/23 maxlen: 24 82.132.180.0/23 maxlen: 24 82.132.182.0/23 maxlen: 24 82.132.184.0/22 maxlen: 24 82.132.198.0/23 maxlen: 24 82.132.199.0/24 maxlen: 24 82.132.210.0/23 maxlen: 24 82.132.212.0/22 maxlen: 24 82.132.216.0/22 maxlen: 24 82.132.220.0/22 maxlen: 24 82.132.224.0/22 maxlen: 24 82.132.228.0/22 maxlen: 24 82.132.232.0/22 maxlen: 24 82.132.236.0/22 maxlen: 24 82.132.240.0/22 maxlen: 24 82.132.244.0/22 maxlen: 24 82.132.248.0/23 maxlen: 24 2a03:dd00:810::/46 maxlen: 48 2a03:dd00:821::/48 maxlen: 48 2a03:dd00:822::/48 maxlen: 48 2a03:dd00:2000::/40 maxlen: 48 2a03:dd00:2100::/40 maxlen: 48 2a03:dd00:2200::/40 maxlen: 48 2a03:dd00:2300::/40 maxlen: 48 2a03:dd00:2400::/40 maxlen: 48 2a03:dd00:2500::/40 maxlen: 48 2a03:dd00:2600::/40 maxlen: 48 2a03:dd00:2700::/40 maxlen: 48 2a03:dd00:3000::/44 maxlen: 48 2a03:dd00:3002::/48 maxlen: 48 2a03:dd00:300d::/48 maxlen: 48 2a03:dd00:3040::/48 maxlen: 48 2a03:dd00:3042::/48 maxlen: 48 2a03:dd00:3044::/48 maxlen: 48 2a03:dd00:3046::/48 maxlen: 48 2a03:dd00:3048::/48 maxlen: 48 2a03:dd00:304a::/48 maxlen: 48 2a03:dd00:304e::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/21/2cb3bb-0ed1-4ecf-8af5-ee73fe21ed23/1/WLKee4oN25w2xuDj9JV3gXsOo6Y.crl rsync://rpki.ripe.net/repository/DEFAULT/21/2cb3bb-0ed1-4ecf-8af5-ee73fe21ed23/1/WLKee4oN25w2xuDj9JV3gXsOo6Y.mft rsync://rpki.ripe.net/repository/DEFAULT/WLKee4oN25w2xuDj9JV3gXsOo6Y.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:b2:b9:e4:68:f4:68:73:47:dd:85:2f:bc:de:3f:4a:17 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=58b29e7b8a0ddb9c36c6e0e3f49577817b0ea3a6 Validity Not Before: Jan 12 15:01:25 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=608d290a0bb6ca49f7cb354eb6549fc8903ce3d2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:0b:84:9a:63:01:d3:78:fb:6b:b4:a2:71:1b: 7d:8b:1c:44:f9:78:7f:91:e5:bb:ee:62:ab:fc:e0: 2d:8f:31:9b:bc:9e:d0:1f:44:a2:39:b0:5b:d1:10: 2f:64:e7:69:d0:62:34:02:3a:eb:5f:29:fe:22:1f: 27:4a:5a:90:13:c5:10:79:52:8f:cd:3a:06:fd:5c: 8e:08:3a:49:91:df:a7:b9:a7:b4:9f:96:83:dc:2a: 05:4c:26:af:1d:a8:fb:5e:a5:a4:00:b6:4e:c4:b8: 4a:04:c5:09:64:5f:20:10:6f:d1:ad:17:80:ee:ca: 42:7a:e0:42:0d:68:23:7e:99:83:78:ca:95:2e:e1: 5e:66:f9:ec:00:f0:1a:ad:8f:ab:f6:14:3e:77:7c: e0:c2:e3:12:7c:d9:fd:92:1f:dc:20:bd:6e:3c:b3: 48:91:bd:06:ad:9a:f5:5d:38:67:55:95:cb:a5:21: 71:74:8e:a2:b7:30:ef:88:a3:32:2f:10:cd:37:71: a2:dd:91:a5:c1:33:f1:37:6d:5f:e5:34:84:3a:f1: 50:92:ff:8a:5e:44:00:ca:7e:85:1c:dc:21:20:ce: 84:c6:e8:c2:b4:66:14:96:a6:f7:a4:e9:e3:ba:31: 76:ec:c6:01:56:4a:b6:4a:68:79:08:85:45:68:6a: 06:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 60:8D:29:0A:0B:B6:CA:49:F7:CB:35:4E:B6:54:9F:C8:90:3C:E3:D2 X509v3 Authority Key Identifier: keyid:58:B2:9E:7B:8A:0D:DB:9C:36:C6:E0:E3:F4:95:77:81:7B:0E:A3:A6 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/WLKee4oN25w2xuDj9JV3gXsOo6Y.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/21/2cb3bb-0ed1-4ecf-8af5-ee73fe21ed23/1/YI0pCgu2ykn3yzVOtlSfyJA849I.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/21/2cb3bb-0ed1-4ecf-8af5-ee73fe21ed23/1/WLKee4oN25w2xuDj9JV3gXsOo6Y.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 82.132.138.0/23 82.132.160.0-82.132.177.255 82.132.180.0-82.132.187.255 82.132.198.0/23 82.132.210.0-82.132.249.255 IPv6: 2a03:dd00:810::/46 2a03:dd00:821::-2a03:dd00:822:ffff:ffff:ffff:ffff:ffff 2a03:dd00:2000::/37 2a03:dd00:3000::/44 2a03:dd00:3040::/48 2a03:dd00:3042::/48 2a03:dd00:3044::/48 2a03:dd00:3046::/48 2a03:dd00:3048::/48 2a03:dd00:304a::/48 2a03:dd00:304e::/48 Signature Algorithm: sha256WithRSAEncryption 21:c5:ac:35:c5:44:5b:3a:a8:e4:95:a4:48:18:e7:02:fd:ca: 50:cd:f4:8e:3f:7c:80:34:5e:0e:1d:4b:50:ba:ff:e6:47:f5: 3b:e2:bb:f5:64:6a:88:1e:fd:8e:bd:3e:55:c7:7f:e4:4e:2e: af:ac:77:5b:5c:92:b7:ae:3a:1a:af:94:cd:4a:d6:a4:60:9f: 46:83:0f:17:84:16:7e:ed:f9:85:ab:5e:bf:c9:8b:01:53:64: e0:cf:40:ad:e3:2f:47:cc:c2:65:53:fc:8a:92:4e:b1:82:5a: d9:6c:a3:fc:04:8e:92:01:39:0f:87:cd:ba:ad:c2:c4:cd:6b: f5:d9:d5:24:2c:3e:33:5c:0d:9a:cc:c0:5e:df:19:d2:5e:7b: 59:b2:f3:50:58:62:bb:59:ea:01:bb:cd:b4:0d:55:c7:99:1c: 41:60:2e:0a:66:a1:74:57:81:79:44:1a:ff:c3:ee:27:d9:be: d1:8f:67:85:df:38:54:4b:b7:aa:61:f1:53:34:0d:d5:c7:0e: 18:38:1c:68:d3:f8:04:3e:0b:37:66:71:f6:33:d5:95:11:e9: ba:05:8f:55:5e:59:0c:b2:a5:c8:9f:d8:66:b3:ef:ae:c5:95: 84:89:88:48:39:1f:1e:15:74:13:5a:40:07:9d:3c:13:03:78: c0:aa:09:2b -----BEGIN CERTIFICATE----- MIIFpTCCBI2gAwIBAgISAZuyueRo9GhzR92FL7zeP0oXMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDU4YjI5ZTdiOGEwZGRiOWMzNmM2ZTBlM2Y0OTU3NzgxN2Iw ZWEzYTYwHhcNMjYwMTEyMTUwMTI1WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg2MDhkMjkwYTBiYjZjYTQ5ZjdjYjM1NGViNjU0OWZjODkwM2NlM2QyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxwuEmmMB03j7a7SicRt9ixxE+Xh/ keW77mKr/OAtjzGbvJ7QH0SiObBb0RAvZOdp0GI0AjrrXyn+Ih8nSlqQE8UQeVKP zToG/VyOCDpJkd+nuae0n5aD3CoFTCavHaj7XqWkALZOxLhKBMUJZF8gEG/RrReA 7spCeuBCDWgjfpmDeMqVLuFeZvnsAPAarY+r9hQ+d3zgwuMSfNn9kh/cIL1uPLNI kb0GrZr1XThnVZXLpSFxdI6itzDviKMyLxDNN3Gi3ZGlwTPxN21f5TSEOvFQkv+K XkQAyn6FHNwhIM6ExujCtGYUlqb3pOnjujF27MYBVkq2Smh5CIVFaGoGUwIDAQAB o4ICsTCCAq0wHQYDVR0OBBYEFGCNKQoLtspJ98s1TrZUn8iQPOPSMB8GA1UdIwQY MBaAFFiynnuKDducNsbg4/SVd4F7DqOmMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvV0xLZWU0b04yNXcyeHVEajlKVjNnWHNPbzZZLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yMS8yY2IzYmItMGVkMS00ZWNmLThhZjUt ZWU3M2ZlMjFlZDIzLzEvWUkwcENndTJ5a24zeXpWT3RsU2Z5SkE4NDlJLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yMS8yY2IzYmItMGVkMS00ZWNmLThhZjUtZWU3M2ZlMjFlZDIz LzEvV0xLZWU0b04yNXcyeHVEajlKVjNnWHNPbzZZLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMIHGBggrBgEFBQcBBwEB/wSBtjCBszA8BAIAATA2AwQBUoSK MAwDBAVShKADBAFShLAwDAMEAlKEtAMEAlKEuAMEAVKExjAMAwQBUoTSAwQBUoT4 MHMEAgACMG0DBwIqA90ACBAwEgMHACoD3QAIIQMHACoD3QAIIgMGAyoD3QAgAwcE KgPdADAAAwcAKgPdADBAAwcAKgPdADBCAwcAKgPdADBEAwcAKgPdADBGAwcAKgPd ADBIAwcAKgPdADBKAwcAKgPdADBOMA0GCSqGSIb3DQEBCwUAA4IBAQAhxaw1xURb OqjklaRIGOcC/cpQzfSOP3yANF4OHUtQuv/mR/U74rv1ZGqIHv2OvT5Vx3/kTi6v rHdbXJK3rjoar5TNStakYJ9Ggw8XhBZ+7fmFq16/yYsBU2Tgz0Ct4y9HzMJlU/yK kk6xglrZbKP8BI6SATkPh826rcLEzWv12dUkLD4zXA2azMBe3xnSXntZsvNQWGK7 WeoBu820DVXHmRxBYC4KZqF0V4F5RBr/w+4n2b7Rj2eF3zhUS7eqYfFTNA3Vxw4Y OBxo0/gEPgs3ZnH2M9WVEem6BY9VXlkMsqXIn9hms++uxZWEiYhIOR8eFXQTWkAH nTwTA3jAqgkr -----END CERTIFICATE-----Generated at Mon Feb 9 19:38:32 2026 by rpki-client