This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/65/74e15f-f487-4559-bfdd-0fc58e58cac9/1/pyuMnNg45Imlk2H0jl_EMiwNCJY.roa File: pyuMnNg45Imlk2H0jl_EMiwNCJY.roa (raw, json) Hash identifier: Du2wmMU/s9sp+p6yThJQ53vWQyfYeVO+yB5tdkmnkw0= Subject key identifier: A7:2B:8C:9C:D8:38:E4:89:A5:93:61:F4:8E:5F:C4:32:2C:0D:08:96 Certificate issuer: /CN=765ea3400a3748c3b6c61268d492f8bf0a908239 Certificate serial: 019B7AC78212FD39B51D9132136D79322CE3 Authority key identifier: 76:5E:A3:40:0A:37:48:C3:B6:C6:12:68:D4:92:F8:BF:0A:90:82:39 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dl6jQAo3SMO2xhJo1JL4vwqQgjk.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/65/74e15f-f487-4559-bfdd-0fc58e58cac9/1/pyuMnNg45Imlk2H0jl_EMiwNCJY.roa Signing time: Thu 01 Jan 2026 18:17:33 +0000 ROA not before: Thu 01 Jan 2026 18:17:33 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 207254 IP address blocks: 185.154.220.0/24 maxlen: 24 185.154.221.0/24 maxlen: 24 185.154.222.0/24 maxlen: 24 185.154.223.0/24 maxlen: 24 195.130.196.0/24 maxlen: 24 2a0b:6140:1::/48 maxlen: 48 2a0b:6140:2::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/65/74e15f-f487-4559-bfdd-0fc58e58cac9/1/dl6jQAo3SMO2xhJo1JL4vwqQgjk.crl rsync://rpki.ripe.net/repository/DEFAULT/65/74e15f-f487-4559-bfdd-0fc58e58cac9/1/dl6jQAo3SMO2xhJo1JL4vwqQgjk.mft rsync://rpki.ripe.net/repository/DEFAULT/dl6jQAo3SMO2xhJo1JL4vwqQgjk.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 09:00:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7a:c7:82:12:fd:39:b5:1d:91:32:13:6d:79:32:2c:e3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=765ea3400a3748c3b6c61268d492f8bf0a908239 Validity Not Before: Jan 1 18:17:33 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=a72b8c9cd838e489a59361f48e5fc4322c0d0896 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:84:f9:91:a7:ad:20:33:c9:9f:90:08:01:ad:f2: 14:25:74:48:8c:df:b2:65:a0:e7:4c:bb:26:be:c1: 3d:41:d3:f5:93:ca:7a:ec:01:f1:19:58:e9:c0:7a: 13:37:2a:5f:a6:2d:bd:d5:1e:0c:7c:d2:0a:5b:22: 7a:9f:38:b8:e3:7f:c3:cf:32:94:08:b7:c4:12:2e: 5f:18:31:df:64:0e:25:3c:05:56:8b:52:46:54:26: d5:b0:ba:75:9e:03:f5:35:8e:95:d0:86:8a:cb:97: 60:7d:a7:9f:12:70:1b:d5:3c:b3:f2:f0:54:ee:73: 17:10:97:31:dd:92:7e:81:28:d8:ad:e7:4e:82:08: cc:7c:6d:0c:0c:05:cb:fe:52:32:1d:5d:74:2a:87: dc:59:c0:44:28:50:03:ec:00:fa:8d:24:45:aa:d3: 4b:60:f8:e1:c4:61:5e:59:1b:68:0b:0f:24:70:29: 62:48:2e:1f:ec:15:c0:c7:3b:d5:c8:65:05:19:84: ad:7e:19:6b:27:75:69:dc:ab:f8:6c:87:dd:7c:12: ed:6c:cb:67:f3:a4:30:33:34:cd:b8:47:93:18:29: cb:31:c5:e8:fa:9a:7c:a5:6a:0f:f1:a9:0c:60:48: 93:14:73:88:5c:92:25:fc:4d:e1:46:1e:9d:43:b9: 53:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A7:2B:8C:9C:D8:38:E4:89:A5:93:61:F4:8E:5F:C4:32:2C:0D:08:96 X509v3 Authority Key Identifier: keyid:76:5E:A3:40:0A:37:48:C3:B6:C6:12:68:D4:92:F8:BF:0A:90:82:39 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dl6jQAo3SMO2xhJo1JL4vwqQgjk.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/65/74e15f-f487-4559-bfdd-0fc58e58cac9/1/pyuMnNg45Imlk2H0jl_EMiwNCJY.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/65/74e15f-f487-4559-bfdd-0fc58e58cac9/1/dl6jQAo3SMO2xhJo1JL4vwqQgjk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.154.220.0/22 195.130.196.0/24 IPv6: 2a0b:6140:1::-2a0b:6140:2:ffff:ffff:ffff:ffff:ffff Signature Algorithm: sha256WithRSAEncryption 3e:eb:ca:6f:cf:82:cd:83:ff:bc:92:51:58:66:bd:14:f5:ae: 59:ac:3a:b2:60:44:b0:99:db:a3:76:98:d0:fd:ac:14:ff:5e: cb:ba:a1:16:af:1f:09:71:4a:48:00:8e:58:13:44:8e:cb:14: 2b:ee:9c:ac:a8:9a:6f:d7:04:0a:b6:9f:18:4d:6d:2d:d9:df: 31:ae:9e:b5:19:14:f7:e8:fd:63:80:fd:ee:cb:be:1a:b6:5f: 82:96:39:23:c2:62:ec:db:6c:0e:c6:b0:db:8d:33:ed:d1:fd: 9e:8a:52:f5:af:82:c5:a8:5d:66:49:13:05:93:54:55:e3:ff: 51:5a:2f:38:05:13:aa:99:c6:c5:35:01:c7:7e:64:dc:9f:ef: 2d:27:29:f5:9d:1e:35:d2:dc:41:e5:cb:ba:d6:4b:11:21:b0: d2:03:14:d9:bc:32:1c:71:9f:53:68:b7:9d:71:ea:3d:63:48: 63:e3:56:48:a2:4c:c7:dd:1c:db:45:9f:bf:3e:40:35:22:13: c4:97:58:eb:ef:07:22:f5:7e:7e:58:79:5c:ea:22:1b:93:f8: 30:8d:be:a0:37:ba:5e:49:af:6a:d2:90:24:03:b9:24:94:4e: 06:f3:33:65:3a:61:b7:3d:eb:ee:7c:64:ab:87:7a:c4:2e:b8: bd:f6:ae:2a -----BEGIN CERTIFICATE----- MIIFHzCCBAegAwIBAgISAZt6x4IS/Tm1HZEyE215MizjMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDc2NWVhMzQwMGEzNzQ4YzNiNmM2MTI2OGQ0OTJmOGJmMGE5 MDgyMzkwHhcNMjYwMTAxMTgxNzMzWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhhNzJiOGM5Y2Q4MzhlNDg5YTU5MzYxZjQ4ZTVmYzQzMjJjMGQwODk2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAhPmRp60gM8mfkAgBrfIUJXRIjN+y ZaDnTLsmvsE9QdP1k8p67AHxGVjpwHoTNypfpi291R4MfNIKWyJ6nzi443/DzzKU CLfEEi5fGDHfZA4lPAVWi1JGVCbVsLp1ngP1NY6V0IaKy5dgfaefEnAb1Tyz8vBU 7nMXEJcx3ZJ+gSjYredOggjMfG0MDAXL/lIyHV10KofcWcBEKFAD7AD6jSRFqtNL YPjhxGFeWRtoCw8kcCliSC4f7BXAxzvVyGUFGYStfhlrJ3Vp3Kv4bIfdfBLtbMtn 86QwMzTNuEeTGCnLMcXo+pp8pWoP8akMYEiTFHOIXJIl/E3hRh6dQ7lTgQIDAQAB o4ICKzCCAicwHQYDVR0OBBYEFKcrjJzYOOSJpZNh9I5fxDIsDQiWMB8GA1UdIwQY MBaAFHZeo0AKN0jDtsYSaNSS+L8KkII5MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvZGw2alFBbzNTTU8yeGhKbzFKTDR2d3FRZ2prLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82NS83NGUxNWYtZjQ4Ny00NTU5LWJmZGQt MGZjNThlNThjYWM5LzEvcHl1TW5OZzQ1SW1sazJIMGpsX0VNaXdOQ0pZLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC82NS83NGUxNWYtZjQ4Ny00NTU5LWJmZGQtMGZjNThlNThjYWM5 LzEvZGw2alFBbzNTTU8yeGhKbzFKTDR2d3FRZ2prLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMEEGCCsGAQUFBwEHAQH/BDIwMDASBAIAATAMAwQCuZrcAwQA w4LEMBoEAgACMBQwEgMHACoLYUAAAQMHACoLYUAAAjANBgkqhkiG9w0BAQsFAAOC AQEAPuvKb8+CzYP/vJJRWGa9FPWuWaw6smBEsJnbo3aY0P2sFP9ey7qhFq8fCXFK SACOWBNEjssUK+6crKiab9cECrafGE1tLdnfMa6etRkU9+j9Y4D97su+GrZfgpY5 I8Ji7NtsDsaw240z7dH9nopS9a+CxahdZkkTBZNUVeP/UVovOAUTqpnGxTUBx35k 3J/vLScp9Z0eNdLcQeXLutZLESGw0gMU2bwyHHGfU2i3nXHqPWNIY+NWSKJMx90c 20Wfvz5ANSITxJdY6+8HIvV+flh5XOoiG5P4MI2+oDe6XkmvatKQJAO5JJROBvMz ZTphtz3r7nxkq4d6xC64vfauKg== -----END CERTIFICATE-----Generated at Mon Feb 9 18:44:20 2026 by rpki-client