This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/67/39c622-4867-4fb3-8ef7-5d27f9dbed66/1/umIyQ32hARkovH7pXTjPbQsyUAw.roa File: umIyQ32hARkovH7pXTjPbQsyUAw.roa (raw, json) Hash identifier: Vykeq8JG9Smu2I4EYLNs8vno3gc9BXMxlVVP02kGN2s= Subject key identifier: BA:62:32:43:7D:A1:01:19:28:BC:7E:E9:5D:38:CF:6D:0B:32:50:0C Certificate issuer: /CN=facf5e1e9288860780d12e34a4ad3b40d98483fc Certificate serial: 019B7D5D118A16659D93BF0D4CE12E9DCF25 Authority key identifier: FA:CF:5E:1E:92:88:86:07:80:D1:2E:34:A4:AD:3B:40:D9:84:83:FC Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-s9eHpKIhgeA0S40pK07QNmEg_w.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/67/39c622-4867-4fb3-8ef7-5d27f9dbed66/1/umIyQ32hARkovH7pXTjPbQsyUAw.roa Signing time: Fri 02 Jan 2026 06:20:09 +0000 ROA not before: Fri 02 Jan 2026 06:20:09 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 60894 IP address blocks: 203.34.219.0/24 maxlen: 24 2001:67c:26c4::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/67/39c622-4867-4fb3-8ef7-5d27f9dbed66/1/1-s9eHpKIhgeA0S40pK07QNmEg_w.crl rsync://rpki.ripe.net/repository/DEFAULT/67/39c622-4867-4fb3-8ef7-5d27f9dbed66/1/1-s9eHpKIhgeA0S40pK07QNmEg_w.mft rsync://rpki.ripe.net/repository/DEFAULT/1-s9eHpKIhgeA0S40pK07QNmEg_w.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 12:00:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7d:5d:11:8a:16:65:9d:93:bf:0d:4c:e1:2e:9d:cf:25 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=facf5e1e9288860780d12e34a4ad3b40d98483fc Validity Not Before: Jan 2 06:20:09 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=ba6232437da1011928bc7ee95d38cf6d0b32500c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:ab:8a:62:90:6e:e1:6e:75:ba:bd:7c:ef:ea: 74:00:a0:de:a7:f0:57:48:4c:3a:44:c1:a5:ef:c8: 7b:5c:54:67:71:5d:e1:04:f8:a0:0b:46:01:c5:31: 93:54:d5:cf:8e:c9:20:ec:2f:98:38:b2:03:a8:61: bc:8d:16:10:8f:96:eb:31:9e:63:ae:c0:da:22:e3: c3:9c:42:90:12:be:b8:5c:ac:fa:b5:62:b0:37:1c: 80:b8:c8:25:a1:f6:10:92:8a:08:8d:0f:6a:6a:34: 99:b1:15:83:fa:b0:ad:b6:77:cd:83:c8:c2:08:ef: 3a:f0:3a:62:33:bd:c2:f0:6b:98:97:9e:0e:93:44: 72:bf:ae:cd:55:12:51:82:0b:91:84:a9:63:5a:f1: 3c:79:46:5a:ee:fb:01:40:4c:f5:ef:7d:07:0b:20: e7:4e:16:17:24:92:0d:cf:36:e6:04:95:48:4d:08: 01:bb:bd:f8:a7:5f:2a:2b:a0:48:af:6f:80:37:f8: 18:24:e9:dc:ea:ec:0b:1a:59:cc:da:f3:35:04:06: c8:b7:3a:b1:87:89:84:76:8a:b2:02:f1:2e:91:0a: b2:94:68:e8:a8:3a:5d:61:39:39:85:5d:95:87:0e: 88:f2:18:89:20:d7:68:a6:77:c0:18:aa:73:4e:76: 29:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BA:62:32:43:7D:A1:01:19:28:BC:7E:E9:5D:38:CF:6D:0B:32:50:0C X509v3 Authority Key Identifier: keyid:FA:CF:5E:1E:92:88:86:07:80:D1:2E:34:A4:AD:3B:40:D9:84:83:FC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-s9eHpKIhgeA0S40pK07QNmEg_w.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/67/39c622-4867-4fb3-8ef7-5d27f9dbed66/1/umIyQ32hARkovH7pXTjPbQsyUAw.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/67/39c622-4867-4fb3-8ef7-5d27f9dbed66/1/1-s9eHpKIhgeA0S40pK07QNmEg_w.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 203.34.219.0/24 IPv6: 2001:67c:26c4::/48 Signature Algorithm: sha256WithRSAEncryption 20:1f:cb:1a:d1:d8:8f:50:4e:94:5e:c2:8e:90:c3:0b:15:a2: ff:c0:e0:e8:ce:89:b5:6c:11:f9:93:3b:35:69:ee:12:8e:4e: e8:c2:38:5d:10:97:d8:f8:82:bd:ab:01:04:c9:e0:ec:ef:72: 65:de:d2:2a:f7:74:60:6a:10:c1:68:1c:0e:ff:36:ab:00:96: 26:94:fc:04:fd:4d:c5:c6:15:ca:3b:9c:22:c9:ed:9d:b1:1e: 0b:6e:7d:b9:80:73:33:b7:15:0e:20:0a:76:50:fc:1b:ec:24: d3:65:41:0b:5f:72:b5:23:2a:15:64:e8:f3:ff:08:3b:33:75: 6a:79:fb:e4:81:a5:c6:af:62:9b:1b:ae:cd:59:c0:3e:d2:06: de:57:33:1c:52:36:0f:c0:db:e5:39:62:4f:66:52:bf:ec:48: 88:15:9e:9c:01:4a:de:25:65:3b:f2:eb:46:3d:73:93:71:1e: e3:2e:97:8f:05:65:51:f8:f2:16:73:f5:53:43:1f:05:d4:d0: 9f:9f:7d:73:8e:e9:15:d3:8b:cc:35:5b:1d:17:cd:64:f9:5b: 0b:02:77:5f:e3:be:78:81:56:5c:41:fc:e1:de:99:cb:4f:5e: c1:58:60:41:fe:93:6a:a6:cb:0f:6b:f0:5c:9f:40:73:28:ba: 34:04:32:16 -----BEGIN CERTIFICATE----- MIIFEDCCA/igAwIBAgISAZt9XRGKFmWdk78NTOEunc8lMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGZhY2Y1ZTFlOTI4ODg2MDc4MGQxMmUzNGE0YWQzYjQwZDk4 NDgzZmMwHhcNMjYwMTAyMDYyMDA5WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhiYTYyMzI0MzdkYTEwMTE5MjhiYzdlZTk1ZDM4Y2Y2ZDBiMzI1MDBjMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA26uKYpBu4W51ur187+p0AKDep/BX SEw6RMGl78h7XFRncV3hBPigC0YBxTGTVNXPjskg7C+YOLIDqGG8jRYQj5brMZ5j rsDaIuPDnEKQEr64XKz6tWKwNxyAuMglofYQkooIjQ9qajSZsRWD+rCttnfNg8jC CO868DpiM73C8GuYl54Ok0Ryv67NVRJRgguRhKljWvE8eUZa7vsBQEz1730HCyDn ThYXJJINzzbmBJVITQgBu734p18qK6BIr2+AN/gYJOnc6uwLGlnM2vM1BAbItzqx h4mEdoqyAvEukQqylGjoqDpdYTk5hV2Vhw6I8hiJINdopnfAGKpzTnYpBwIDAQAB o4ICHDCCAhgwHQYDVR0OBBYEFLpiMkN9oQEZKLx+6V04z20LMlAMMB8GA1UdIwQY MBaAFPrPXh6SiIYHgNEuNKStO0DZhIP8MA4GA1UdDwEB/wQEAwIHgDBlBggrBgEF BQcBAQRZMFcwVQYIKwYBBQUHMAKGSXJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvMS1zOWVIcEtJaGdlQTBTNDBwSzA3UU5tRWdfdy5jZXIw gY0GCCsGAQUFBwELBIGAMH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBl Lm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNjcvMzljNjIyLTQ4NjctNGZiMy04ZWY3 LTVkMjdmOWRiZWQ2Ni8xL3VtSXlRMzJoQVJrb3ZIN3BYVGpQYlFzeVVBdy5yb2Ew gYIGA1UdHwR7MHkwd6B1oHOGcXJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0 b3J5L0RFRkFVTFQvNjcvMzljNjIyLTQ4NjctNGZiMy04ZWY3LTVkMjdmOWRiZWQ2 Ni8xLzEtczllSHBLSWhnZUEwUzQwcEswN1FObUVnX3cuY3JsMBgGA1UdIAEB/wQO MAwwCgYIKwYBBQUHDgIwMAYIKwYBBQUHAQcBAf8EITAfMAwEAgABMAYDBADLItsw DwQCAAIwCQMHACABBnwmxDANBgkqhkiG9w0BAQsFAAOCAQEAIB/LGtHYj1BOlF7C jpDDCxWi/8Dg6M6JtWwR+ZM7NWnuEo5O6MI4XRCX2PiCvasBBMng7O9yZd7SKvd0 YGoQwWgcDv82qwCWJpT8BP1NxcYVyjucIsntnbEeC259uYBzM7cVDiAKdlD8G+wk 02VBC19ytSMqFWTo8/8IOzN1ann75IGlxq9imxuuzVnAPtIG3lczHFI2D8Db5Tli T2ZSv+xIiBWenAFK3iVlO/LrRj1zk3Ee4y6XjwVlUfjyFnP1U0MfBdTQn599c47p FdOLzDVbHRfNZPlbCwJ3X+O+eIFWXEH84d6Zy09ewVhgQf6TaqbLD2vwXJ9Acyi6 NAQyFg== -----END CERTIFICATE-----Generated at Mon Feb 9 19:39:15 2026 by rpki-client