This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/35/fcdbee-db9d-46b8-9e03-146e0b178085/1/YEziWd2u7JNVBZhfbqD7tAgw6N0.roa File: YEziWd2u7JNVBZhfbqD7tAgw6N0.roa (raw, json) Hash identifier: MKjaPlRYWsRt/x04oa9rkmteLx1QuLJM6GSjP/NuL4c= Subject key identifier: 60:4C:E2:59:DD:AE:EC:93:55:05:98:5F:6E:A0:FB:B4:08:30:E8:DD Certificate issuer: /CN=01a0d5868c7a41d6fe9dcbcf93805ac42cbdbdbf Certificate serial: 019B7C8097BB7A456DBF23185100F4B09DC4 Authority key identifier: 01:A0:D5:86:8C:7A:41:D6:FE:9D:CB:CF:93:80:5A:C4:2C:BD:BD:BF Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AaDVhox6Qdb-ncvPk4BaxCy9vb8.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/35/fcdbee-db9d-46b8-9e03-146e0b178085/1/YEziWd2u7JNVBZhfbqD7tAgw6N0.roa Signing time: Fri 02 Jan 2026 02:19:20 +0000 ROA not before: Fri 02 Jan 2026 02:19:20 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 211493 IP address blocks: 193.32.84.0/24 maxlen: 24 2a10:d2c0::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/35/fcdbee-db9d-46b8-9e03-146e0b178085/1/AaDVhox6Qdb-ncvPk4BaxCy9vb8.crl rsync://rpki.ripe.net/repository/DEFAULT/35/fcdbee-db9d-46b8-9e03-146e0b178085/1/AaDVhox6Qdb-ncvPk4BaxCy9vb8.mft rsync://rpki.ripe.net/repository/DEFAULT/AaDVhox6Qdb-ncvPk4BaxCy9vb8.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7c:80:97:bb:7a:45:6d:bf:23:18:51:00:f4:b0:9d:c4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=01a0d5868c7a41d6fe9dcbcf93805ac42cbdbdbf Validity Not Before: Jan 2 02:19:20 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=604ce259ddaeec935505985f6ea0fbb40830e8dd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:10:9d:b5:83:c8:bf:5a:1f:b8:f2:2b:36:07: 2d:87:ce:4a:21:85:bd:2e:4a:d1:08:02:02:6a:d4: ae:4d:c0:3a:3a:8d:f3:b6:4f:9e:7b:65:84:20:48: 45:dd:c5:52:f5:ca:1e:cc:11:47:8f:d3:a2:8d:00: 08:a4:f0:78:12:2b:1e:be:a4:05:50:27:f3:f6:7f: c7:66:fd:6c:a4:5c:f1:b5:03:f8:e8:f3:4d:45:1c: cf:ce:f2:46:62:43:50:94:63:a4:b0:40:bd:f6:e8: 69:e8:5f:01:e5:e4:bc:82:df:b1:81:82:15:97:c5: 59:3e:2e:73:2c:07:46:a2:dc:b7:95:13:cb:88:aa: 8c:1c:88:71:3b:a6:6f:2c:74:df:e8:17:57:05:86: 40:bd:12:3b:d5:8f:bb:8e:17:3d:3f:61:03:9b:2a: 07:b8:38:26:af:18:d2:e5:bd:37:80:80:e8:2d:62: a5:f8:f3:bd:ca:bf:2d:fd:4c:34:25:5f:2c:12:50: a4:0b:2c:5e:06:77:66:db:00:a3:04:ae:da:e7:49: 36:05:32:40:aa:98:98:af:e7:95:ba:f9:64:d5:a2: fa:d7:df:19:e9:65:a3:e6:3f:8d:40:06:c3:e5:0c: eb:99:a8:6b:a6:b7:46:fd:c9:d4:02:13:99:52:e9: 6f:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 60:4C:E2:59:DD:AE:EC:93:55:05:98:5F:6E:A0:FB:B4:08:30:E8:DD X509v3 Authority Key Identifier: keyid:01:A0:D5:86:8C:7A:41:D6:FE:9D:CB:CF:93:80:5A:C4:2C:BD:BD:BF X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AaDVhox6Qdb-ncvPk4BaxCy9vb8.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/35/fcdbee-db9d-46b8-9e03-146e0b178085/1/YEziWd2u7JNVBZhfbqD7tAgw6N0.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/35/fcdbee-db9d-46b8-9e03-146e0b178085/1/AaDVhox6Qdb-ncvPk4BaxCy9vb8.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 193.32.84.0/24 IPv6: 2a10:d2c0::/32 Signature Algorithm: sha256WithRSAEncryption 10:c6:76:fd:ff:c6:90:a6:c9:3a:1f:42:24:fa:9a:52:b7:c1: d3:d6:25:b3:56:cf:c2:69:fc:22:1e:2c:0a:a6:31:a8:eb:50: dc:01:7a:57:be:42:d0:47:11:ab:8b:a4:cd:83:89:0e:77:dd: 25:ae:b8:21:c9:67:28:ab:10:f1:3d:70:24:b9:54:a4:57:2a: 26:0f:06:b0:23:14:9f:07:72:f5:0f:cf:23:c7:1a:92:3f:ca: 36:ed:e5:d0:b8:88:3c:2d:1e:e2:5b:6b:a2:17:fd:93:c4:d9: 2f:ff:ad:bc:ae:3c:1a:48:e8:7b:21:e5:5f:1a:bd:24:c9:78: ff:c9:10:df:17:6a:6b:74:50:1e:52:ea:7b:da:8f:f4:cc:d4: 83:4e:4b:b9:57:f2:df:f2:b4:ee:56:8b:b1:60:c2:46:0d:40: 61:5a:70:ae:6b:34:00:87:6b:64:c8:b4:ce:b0:e8:c1:3a:08: 79:ef:97:98:36:e0:27:fd:48:5f:d6:e2:61:c1:43:66:50:57: c8:15:e4:c7:0d:2c:df:f6:19:88:60:d9:c0:79:bf:85:ad:37: 4f:a4:31:f8:32:76:09:4e:c8:9f:0d:aa:ca:bb:c3:14:43:59: 64:cd:e4:88:34:cb:06:cd:65:07:1b:8b:5a:35:6c:83:41:28: 83:5a:5d:4e -----BEGIN CERTIFICATE----- MIIFDDCCA/SgAwIBAgISAZt8gJe7ekVtvyMYUQD0sJ3EMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDAxYTBkNTg2OGM3YTQxZDZmZTlkY2JjZjkzODA1YWM0MmNi ZGJkYmYwHhcNMjYwMTAyMDIxOTIwWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg2MDRjZTI1OWRkYWVlYzkzNTUwNTk4NWY2ZWEwZmJiNDA4MzBlOGRkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxhCdtYPIv1ofuPIrNgcth85KIYW9 LkrRCAICatSuTcA6Oo3ztk+ee2WEIEhF3cVS9coezBFHj9OijQAIpPB4EisevqQF UCfz9n/HZv1spFzxtQP46PNNRRzPzvJGYkNQlGOksEC99uhp6F8B5eS8gt+xgYIV l8VZPi5zLAdGoty3lRPLiKqMHIhxO6ZvLHTf6BdXBYZAvRI71Y+7jhc9P2EDmyoH uDgmrxjS5b03gIDoLWKl+PO9yr8t/Uw0JV8sElCkCyxeBndm2wCjBK7a50k2BTJA qpiYr+eVuvlk1aL6198Z6WWj5j+NQAbD5QzrmahrprdG/cnUAhOZUulvKQIDAQAB o4ICGDCCAhQwHQYDVR0OBBYEFGBM4lndruyTVQWYX26g+7QIMOjdMB8GA1UdIwQY MBaAFAGg1YaMekHW/p3Lz5OAWsQsvb2/MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvQWFEVmhveDZRZGItbmN2UGs0QmF4Q3k5dmI4LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zNS9mY2RiZWUtZGI5ZC00NmI4LTllMDMt MTQ2ZTBiMTc4MDg1LzEvWUV6aVdkMnU3Sk5WQlpoZmJxRDd0QWd3Nk4wLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zNS9mY2RiZWUtZGI5ZC00NmI4LTllMDMtMTQ2ZTBiMTc4MDg1 LzEvQWFEVmhveDZRZGItbmN2UGs0QmF4Q3k5dmI4LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMC4GCCsGAQUFBwEHAQH/BB8wHTAMBAIAATAGAwQAwSBUMA0E AgACMAcDBQAqENLAMA0GCSqGSIb3DQEBCwUAA4IBAQAQxnb9/8aQpsk6H0Ik+ppS t8HT1iWzVs/CafwiHiwKpjGo61DcAXpXvkLQRxGri6TNg4kOd90lrrghyWcoqxDx PXAkuVSkVyomDwawIxSfB3L1D88jxxqSP8o27eXQuIg8LR7iW2uiF/2TxNkv/628 rjwaSOh7IeVfGr0kyXj/yRDfF2prdFAeUup72o/0zNSDTku5V/Lf8rTuVouxYMJG DUBhWnCuazQAh2tkyLTOsOjBOgh575eYNuAn/Uhf1uJhwUNmUFfIFeTHDSzf9hmI YNnAeb+FrTdPpDH4MnYJTsifDarKu8MUQ1lkzeSINMsGzWUHG4taNWyDQSiDWl1O -----END CERTIFICATE-----Generated at Mon Feb 9 22:32:20 2026 by rpki-client