This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/c63c94-e569-41b8-8e2b-d18b09cf3a1d/1/153fjxVtV5IdmULjsKFsyho7xsA.roa File: 153fjxVtV5IdmULjsKFsyho7xsA.roa (raw, json) Hash identifier: sMHTNIGNQvUhkdN5VlDx3F2+I4FUHbgADAQUyA3sCa0= Subject key identifier: D7:9D:DF:8F:15:6D:57:92:1D:99:42:E3:B0:A1:6C:CA:1A:3B:C6:C0 Certificate issuer: /CN=cb1383473e8aa8727068fc752e060e3dbf63e0ef Certificate serial: 019B7DC896FC9CDFFC9152D1B03F926FEAA5 Authority key identifier: CB:13:83:47:3E:8A:A8:72:70:68:FC:75:2E:06:0E:3D:BF:63:E0:EF Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/yxODRz6KqHJwaPx1LgYOPb9j4O8.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/c63c94-e569-41b8-8e2b-d18b09cf3a1d/1/153fjxVtV5IdmULjsKFsyho7xsA.roa Signing time: Fri 02 Jan 2026 08:17:36 +0000 ROA not before: Fri 02 Jan 2026 08:17:36 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 33915 IP address blocks: 194.34.199.0/24 maxlen: 24 194.35.11.0/24 maxlen: 24 194.35.73.0/24 maxlen: 24 194.35.75.0/24 maxlen: 24 194.104.99.0/24 maxlen: 24 2a00:7940::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/66/c63c94-e569-41b8-8e2b-d18b09cf3a1d/1/yxODRz6KqHJwaPx1LgYOPb9j4O8.crl rsync://rpki.ripe.net/repository/DEFAULT/66/c63c94-e569-41b8-8e2b-d18b09cf3a1d/1/yxODRz6KqHJwaPx1LgYOPb9j4O8.mft rsync://rpki.ripe.net/repository/DEFAULT/yxODRz6KqHJwaPx1LgYOPb9j4O8.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 27 Jan 2026 15:35:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7d:c8:96:fc:9c:df:fc:91:52:d1:b0:3f:92:6f:ea:a5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=cb1383473e8aa8727068fc752e060e3dbf63e0ef Validity Not Before: Jan 2 08:17:36 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=d79ddf8f156d57921d9942e3b0a16cca1a3bc6c0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:fb:06:31:ec:8e:21:d4:ba:5c:1b:fe:f6:dd: 93:8a:62:a4:74:90:6c:74:e8:5f:41:46:49:1d:d6: 28:cc:db:8c:6a:d7:9f:54:52:a7:a2:6d:49:f3:bd: 8e:f6:a3:5d:7f:b7:f3:1e:9a:4a:e4:8b:72:0a:09: 2e:0b:69:bf:c8:50:ba:78:62:fc:ea:10:cb:da:c1: bb:5e:96:f3:fb:98:41:a6:72:f5:de:4d:69:ff:f5: 61:cc:92:7e:74:fa:5b:9f:3a:23:ad:dd:38:18:cd: c7:92:dd:de:50:6a:eb:ce:f6:74:4b:37:1e:60:97: 6d:d7:7b:dd:5e:63:09:5b:0c:6b:a2:f1:28:b8:af: 12:55:e6:b9:a3:d7:ae:7c:7e:88:7c:30:3b:43:83: d0:d5:2f:91:e3:8b:79:e9:c8:f7:71:2f:9b:65:54: 91:b3:6d:97:b3:5a:f1:13:4e:35:3c:83:58:b6:16: 75:31:e6:a3:5c:9e:a1:3b:c3:f5:99:08:8c:d1:7f: 68:4c:d1:10:30:eb:59:40:69:05:0e:cf:cd:32:0e: d5:91:ef:b5:fa:45:16:9e:8b:1f:bd:59:8c:37:33: 0e:7c:23:11:70:03:91:73:89:77:1e:38:24:c4:f8: 6e:7b:c2:f9:e0:f4:bd:f9:d1:97:4a:49:26:74:82: 48:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D7:9D:DF:8F:15:6D:57:92:1D:99:42:E3:B0:A1:6C:CA:1A:3B:C6:C0 X509v3 Authority Key Identifier: keyid:CB:13:83:47:3E:8A:A8:72:70:68:FC:75:2E:06:0E:3D:BF:63:E0:EF X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yxODRz6KqHJwaPx1LgYOPb9j4O8.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/c63c94-e569-41b8-8e2b-d18b09cf3a1d/1/153fjxVtV5IdmULjsKFsyho7xsA.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/66/c63c94-e569-41b8-8e2b-d18b09cf3a1d/1/yxODRz6KqHJwaPx1LgYOPb9j4O8.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 194.34.199.0/24 194.35.11.0/24 194.35.73.0/24 194.35.75.0/24 194.104.99.0/24 IPv6: 2a00:7940::/32 Signature Algorithm: sha256WithRSAEncryption 19:10:47:c9:34:ce:f1:c6:6c:f4:ec:aa:75:67:ee:be:f0:f8: 85:cb:f8:f8:91:e9:52:07:d8:79:d0:0a:02:93:0e:d7:a3:32: e7:c2:b7:7a:4e:34:3e:b8:25:f4:71:ac:55:1e:d6:cd:90:c5: fc:8d:bf:5f:43:dc:34:7c:a4:99:54:57:92:55:86:27:a0:53: 44:b3:e9:2c:d7:01:ff:b8:1c:89:e1:72:77:5f:f4:28:f4:73: 04:fb:e1:bf:77:4b:d4:b3:de:e5:dc:0a:e3:f3:da:e8:ea:ef: 64:80:87:70:0e:53:a2:eb:0a:3c:7e:e7:fa:20:96:4b:f9:67: a2:5a:be:df:f4:ea:40:a7:63:a5:03:73:25:93:da:87:02:95: 10:ee:6f:22:34:09:21:83:52:ed:a6:59:a5:f1:2c:31:91:c2: 6c:16:4e:49:52:9f:eb:64:b7:ed:7e:21:47:01:13:45:c0:71: 4a:e2:4a:6c:65:f6:cd:3d:a2:cf:fa:30:9e:d4:f1:77:c0:df: 10:5e:47:eb:ee:41:54:85:1e:aa:3d:c3:89:6d:03:4d:1a:57: 0d:15:9d:de:1c:7d:77:cc:a1:ae:38:36:b4:17:c9:24:12:98: 1a:04:e0:1b:82:16:aa:4c:d0:79:16:4a:f9:2a:42:25:de:3c: 02:97:8f:4f -----BEGIN CERTIFICATE----- MIIFJDCCBAygAwIBAgISAZt9yJb8nN/8kVLRsD+Sb+qlMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGNiMTM4MzQ3M2U4YWE4NzI3MDY4ZmM3NTJlMDYwZTNkYmY2 M2UwZWYwHhcNMjYwMTAyMDgxNzM2WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhkNzlkZGY4ZjE1NmQ1NzkyMWQ5OTQyZTNiMGExNmNjYTFhM2JjNmMwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnfsGMeyOIdS6XBv+9t2TimKkdJBs dOhfQUZJHdYozNuMatefVFKnom1J872O9qNdf7fzHppK5ItyCgkuC2m/yFC6eGL8 6hDL2sG7Xpbz+5hBpnL13k1p//VhzJJ+dPpbnzojrd04GM3Hkt3eUGrrzvZ0Szce YJdt13vdXmMJWwxrovEouK8SVea5o9eufH6IfDA7Q4PQ1S+R44t56cj3cS+bZVSR s22Xs1rxE041PINYthZ1MeajXJ6hO8P1mQiM0X9oTNEQMOtZQGkFDs/NMg7Vke+1 +kUWnosfvVmMNzMOfCMRcAORc4l3HjgkxPhue8L54PS9+dGXSkkmdIJI3QIDAQAB o4ICMDCCAiwwHQYDVR0OBBYEFNed348VbVeSHZlC47ChbMoaO8bAMB8GA1UdIwQY MBaAFMsTg0c+iqhycGj8dS4GDj2/Y+DvMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQveXhPRFJ6NktxSEp3YVB4MUxnWU9QYjlqNE84LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82Ni9jNjNjOTQtZTU2OS00MWI4LThlMmIt ZDE4YjA5Y2YzYTFkLzEvMTUzZmp4VnRWNUlkbVVManNLRnN5aG83eHNBLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC82Ni9jNjNjOTQtZTU2OS00MWI4LThlMmItZDE4YjA5Y2YzYTFk LzEveXhPRFJ6NktxSEp3YVB4MUxnWU9QYjlqNE84LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMEYGCCsGAQUFBwEHAQH/BDcwNTAkBAIAATAeAwQAwiLHAwQA wiMLAwQAwiNJAwQAwiNLAwQAwmhjMA0EAgACMAcDBQAqAHlAMA0GCSqGSIb3DQEB CwUAA4IBAQAZEEfJNM7xxmz07Kp1Z+6+8PiFy/j4kelSB9h50AoCkw7XozLnwrd6 TjQ+uCX0caxVHtbNkMX8jb9fQ9w0fKSZVFeSVYYnoFNEs+ks1wH/uByJ4XJ3X/Qo 9HME++G/d0vUs97l3Arj89ro6u9kgIdwDlOi6wo8fuf6IJZL+WeiWr7f9OpAp2Ol A3Mlk9qHApUQ7m8iNAkhg1Ltplml8SwxkcJsFk5JUp/rZLftfiFHARNFwHFK4kps ZfbNPaLP+jCe1PF3wN8QXkfr7kFUhR6qPcOJbQNNGlcNFZ3eHH13zKGuODa0F8kk EpgaBOAbghaqTNB5Fkr5KkIl3jwCl49P -----END CERTIFICATE-----Generated at Tue Jan 27 00:26:29 2026 by rpki-client