This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/32/064fac-eddd-4903-a13d-0b9c76c0d91c/1/ruf5ygSKBpBoMppN0_Ydb0zlKDA.roa File: ruf5ygSKBpBoMppN0_Ydb0zlKDA.roa (raw, json) Hash identifier: AYXx9sIQleSTgwqrdqLha3RogyCLh5BNOu7WolJzJ7Q= Subject key identifier: AE:E7:F9:CA:04:8A:06:90:68:32:9A:4D:D3:F6:1D:6F:4C:E5:28:30 Certificate issuer: /CN=657ed6f5bba633d55269fdd056bcf60c68c7b2b8 Certificate serial: 019B7F821E7724414611C4A458B88FB107D4 Authority key identifier: 65:7E:D6:F5:BB:A6:33:D5:52:69:FD:D0:56:BC:F6:0C:68:C7:B2:B8 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ZX7W9bumM9VSaf3QVrz2DGjHsrg.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/32/064fac-eddd-4903-a13d-0b9c76c0d91c/1/ruf5ygSKBpBoMppN0_Ydb0zlKDA.roa Signing time: Fri 02 Jan 2026 16:19:52 +0000 ROA not before: Fri 02 Jan 2026 16:19:52 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 12861 IP address blocks: 91.237.216.0/23 maxlen: 24 212.29.64.0/24 maxlen: 24 212.29.66.0/24 maxlen: 24 212.29.67.0/24 maxlen: 24 212.29.68.0/24 maxlen: 24 212.29.69.0/24 maxlen: 24 212.29.70.0/24 maxlen: 24 212.29.90.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/32/064fac-eddd-4903-a13d-0b9c76c0d91c/1/ZX7W9bumM9VSaf3QVrz2DGjHsrg.crl rsync://rpki.ripe.net/repository/DEFAULT/32/064fac-eddd-4903-a13d-0b9c76c0d91c/1/ZX7W9bumM9VSaf3QVrz2DGjHsrg.mft rsync://rpki.ripe.net/repository/DEFAULT/ZX7W9bumM9VSaf3QVrz2DGjHsrg.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 21:05:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7f:82:1e:77:24:41:46:11:c4:a4:58:b8:8f:b1:07:d4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=657ed6f5bba633d55269fdd056bcf60c68c7b2b8 Validity Not Before: Jan 2 16:19:52 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=aee7f9ca048a069068329a4dd3f61d6f4ce52830 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:1a:5b:d2:0e:b0:62:ab:e2:a6:d2:df:26:15: 46:0a:f0:12:74:34:af:d4:b3:ec:85:e7:53:01:2b: e7:a0:a5:8b:76:24:3f:90:a1:4b:c4:f0:de:54:e2: 2b:6e:eb:5c:c9:b0:cd:f0:cd:c6:52:cb:e4:41:0e: 23:60:1e:dc:90:2a:ec:0a:db:44:86:3a:46:5d:73: d5:01:25:02:ce:c2:54:4a:f5:21:19:6c:d7:c7:2f: d8:a2:c5:c6:f4:9b:35:de:a5:47:ad:02:6d:01:de: 36:34:71:13:af:06:f6:0d:de:59:6c:00:44:1d:48: 97:f5:d1:16:53:dd:d9:39:0a:cc:3f:bb:9c:15:91: 3a:34:25:05:96:4c:8a:b2:e9:61:22:f5:87:07:b1: 1b:a8:67:51:cd:b3:6c:64:51:0c:7c:44:5c:5b:5d: 87:fc:7f:4e:7c:77:1b:85:d7:ee:d4:da:e5:f5:f9: 43:89:0e:25:3b:ea:dd:33:3f:32:ca:58:f9:4c:f0: 5e:93:14:04:62:63:fb:a2:81:f7:5c:52:4d:6d:cf: dd:df:14:ce:4d:82:e5:cb:e4:90:4a:29:80:9a:b4: c6:b4:9f:58:a4:e5:84:f7:10:40:54:d5:73:74:23: be:64:db:3b:c5:e5:21:7c:eb:c2:3f:cc:6e:61:83: 7a:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AE:E7:F9:CA:04:8A:06:90:68:32:9A:4D:D3:F6:1D:6F:4C:E5:28:30 X509v3 Authority Key Identifier: keyid:65:7E:D6:F5:BB:A6:33:D5:52:69:FD:D0:56:BC:F6:0C:68:C7:B2:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZX7W9bumM9VSaf3QVrz2DGjHsrg.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/32/064fac-eddd-4903-a13d-0b9c76c0d91c/1/ruf5ygSKBpBoMppN0_Ydb0zlKDA.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/32/064fac-eddd-4903-a13d-0b9c76c0d91c/1/ZX7W9bumM9VSaf3QVrz2DGjHsrg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 91.237.216.0/23 212.29.64.0/24 212.29.66.0-212.29.70.255 212.29.90.0/24 Signature Algorithm: sha256WithRSAEncryption 91:77:1f:51:a6:07:73:89:d5:d2:ba:66:e9:d4:6f:df:50:19: 24:44:9c:bf:b8:27:94:e0:ab:e4:0f:24:74:81:59:18:68:d8: 14:b2:a9:35:3e:cd:08:5f:4f:09:a2:62:38:79:59:6f:26:08: ac:ae:88:75:e1:67:a0:fb:0a:4b:3c:c4:df:80:b6:0d:99:bc: 74:70:73:e9:c6:77:31:df:e3:85:9c:ea:7c:1a:0f:8c:f3:11: 3c:8d:df:9f:0c:08:27:9b:71:b1:2e:88:bb:0a:e5:23:34:d5: cf:49:71:03:fa:1b:86:30:23:1d:7f:c9:81:fd:26:cc:6f:e9: 6b:96:15:27:a6:ac:d3:0c:72:bc:ae:00:e7:fd:5a:e4:96:64: ae:a5:65:ee:6c:df:39:7b:02:8f:88:67:01:71:4c:81:e2:cd: a1:dc:bd:01:66:d3:ae:c1:6c:e2:21:46:36:a9:a6:9e:d9:19: da:50:36:ee:b1:e3:a1:8c:96:43:2c:8c:b1:00:6b:77:98:55: ed:3a:59:d5:7a:9c:65:8a:38:4a:cf:b2:98:3b:d5:11:91:8e: 62:07:6b:f9:97:81:d0:c4:ed:f9:f2:0b:3d:5d:01:64:89:3a: 79:69:c4:67:ad:b9:39:85:ce:2f:0b:bb:9f:ea:06:c3:6f:2a: 9e:47:7e:4a -----BEGIN CERTIFICATE----- MIIFFzCCA/+gAwIBAgISAZt/gh53JEFGEcSkWLiPsQfUMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDY1N2VkNmY1YmJhNjMzZDU1MjY5ZmRkMDU2YmNmNjBjNjhj N2IyYjgwHhcNMjYwMTAyMTYxOTUyWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhhZWU3ZjljYTA0OGEwNjkwNjgzMjlhNGRkM2Y2MWQ2ZjRjZTUyODMwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxhpb0g6wYqviptLfJhVGCvASdDSv 1LPshedTASvnoKWLdiQ/kKFLxPDeVOIrbutcybDN8M3GUsvkQQ4jYB7ckCrsCttE hjpGXXPVASUCzsJUSvUhGWzXxy/YosXG9Js13qVHrQJtAd42NHETrwb2Dd5ZbABE HUiX9dEWU93ZOQrMP7ucFZE6NCUFlkyKsulhIvWHB7EbqGdRzbNsZFEMfERcW12H /H9OfHcbhdfu1Nrl9flDiQ4lO+rdMz8yylj5TPBekxQEYmP7ooH3XFJNbc/d3xTO TYLly+SQSimAmrTGtJ9YpOWE9xBAVNVzdCO+ZNs7xeUhfOvCP8xuYYN6dQIDAQAB o4ICIzCCAh8wHQYDVR0OBBYEFK7n+coEigaQaDKaTdP2HW9M5SgwMB8GA1UdIwQY MBaAFGV+1vW7pjPVUmn90Fa89gxox7K4MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvWlg3VzlidW1NOVZTYWYzUVZyejJER2pIc3JnLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zMi8wNjRmYWMtZWRkZC00OTAzLWExM2Qt MGI5Yzc2YzBkOTFjLzEvcnVmNXlnU0tCcEJvTXBwTjBfWWRiMHpsS0RBLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zMi8wNjRmYWMtZWRkZC00OTAzLWExM2QtMGI5Yzc2YzBkOTFj LzEvWlg3VzlidW1NOVZTYWYzUVZyejJER2pIc3JnLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMDkGCCsGAQUFBwEHAQH/BCowKDAmBAIAATAgAwQBW+3YAwQA 1B1AMAwDBAHUHUIDBADUHUYDBADUHVowDQYJKoZIhvcNAQELBQADggEBAJF3H1Gm B3OJ1dK6ZunUb99QGSREnL+4J5Tgq+QPJHSBWRho2BSyqTU+zQhfTwmiYjh5WW8m CKyuiHXhZ6D7Cks8xN+Atg2ZvHRwc+nGdzHf44Wc6nwaD4zzETyN358MCCebcbEu iLsK5SM01c9JcQP6G4YwIx1/yYH9Jsxv6WuWFSemrNMMcryuAOf9WuSWZK6lZe5s 3zl7Ao+IZwFxTIHizaHcvQFm067BbOIhRjappp7ZGdpQNu6x46GMlkMsjLEAa3eY Ve06WdV6nGWKOErPspg71RGRjmIHa/mXgdDE7fnyCz1dAWSJOnlpxGetuTmFzi8L u5/qBsNvKp5Hfko= -----END CERTIFICATE-----Generated at Tue Feb 10 04:15:35 2026 by rpki-client