This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6d/147688-993a-40ff-bb6a-45b8e49bd143/1/YnDgGdGNIaHfL90rxrXGV2dS074.roa File: YnDgGdGNIaHfL90rxrXGV2dS074.roa (raw, json) Hash identifier: RJDrcH0GO4/uZ5S6vlgfqnLGtMCiNg9TBfHtJfZZyQQ= Subject key identifier: 62:70:E0:19:D1:8D:21:A1:DF:2F:DD:2B:C6:B5:C6:57:67:52:D3:BE Certificate issuer: /CN=4220475b680a18e4da34b2a289906283e285d82d Certificate serial: 019B4540BEBD5E44E66509C7297747434A85 Authority key identifier: 42:20:47:5B:68:0A:18:E4:DA:34:B2:A2:89:90:62:83:E2:85:D8:2D Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QiBHW2gKGOTaNLKiiZBig-KF2C0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6d/147688-993a-40ff-bb6a-45b8e49bd143/1/YnDgGdGNIaHfL90rxrXGV2dS074.roa Signing time: Mon 22 Dec 2025 08:50:29 +0000 ROA not before: Mon 22 Dec 2025 08:50:29 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 8551 IP address blocks: 185.235.246.0/24 maxlen: 24 2a12:dbc0::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/6d/147688-993a-40ff-bb6a-45b8e49bd143/1/QiBHW2gKGOTaNLKiiZBig-KF2C0.crl rsync://rpki.ripe.net/repository/DEFAULT/6d/147688-993a-40ff-bb6a-45b8e49bd143/1/QiBHW2gKGOTaNLKiiZBig-KF2C0.mft rsync://rpki.ripe.net/repository/DEFAULT/QiBHW2gKGOTaNLKiiZBig-KF2C0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 27 Dec 2025 11:01:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:45:40:be:bd:5e:44:e6:65:09:c7:29:77:47:43:4a:85 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4220475b680a18e4da34b2a289906283e285d82d Validity Not Before: Dec 22 08:50:29 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=6270e019d18d21a1df2fdd2bc6b5c6576752d3be Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:10:3e:c2:f0:7a:2c:c6:f1:7e:8f:a0:bd:d8: 54:2b:e2:3c:c4:c1:7e:e3:e9:90:01:2f:77:51:6d: fa:09:d6:bb:d8:67:b0:8d:7e:f3:71:14:b2:52:97: 28:f1:96:04:7c:15:12:be:1c:63:a5:49:8f:ff:b7: ca:21:df:96:99:7d:1a:5a:9f:7b:cd:72:d9:d3:bc: 05:d7:7a:bf:74:ca:1b:7b:01:82:aa:bb:24:92:62: f9:7a:ee:45:5a:0b:dc:66:f4:a4:bf:b5:11:23:25: 2e:21:68:29:a7:ce:21:f4:13:fb:a5:3f:df:04:d6: be:60:6b:33:11:7f:7d:28:68:18:b0:75:15:ee:0c: e6:3c:a7:bf:8f:81:80:ab:da:10:e8:fa:8f:ef:6d: 64:d7:51:c1:9c:a6:f3:d3:53:17:ae:2f:1d:a9:59: e6:fe:0c:4c:a8:c1:75:63:c0:94:44:5e:e4:10:5a: ba:ca:e4:14:39:be:de:98:b8:c4:17:bc:55:c6:83: 87:e7:37:66:39:e8:f6:7e:ac:fd:d0:b4:19:6a:2c: 1b:90:33:87:a2:72:dc:dd:96:e3:8e:8a:8b:f1:f7: 60:d9:5c:33:15:9c:50:2d:ab:dd:87:e5:19:26:51: b9:8a:49:26:63:ec:d7:7f:91:02:20:40:bc:1e:8d: 65:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 62:70:E0:19:D1:8D:21:A1:DF:2F:DD:2B:C6:B5:C6:57:67:52:D3:BE X509v3 Authority Key Identifier: keyid:42:20:47:5B:68:0A:18:E4:DA:34:B2:A2:89:90:62:83:E2:85:D8:2D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QiBHW2gKGOTaNLKiiZBig-KF2C0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6d/147688-993a-40ff-bb6a-45b8e49bd143/1/YnDgGdGNIaHfL90rxrXGV2dS074.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/6d/147688-993a-40ff-bb6a-45b8e49bd143/1/QiBHW2gKGOTaNLKiiZBig-KF2C0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.235.246.0/24 IPv6: 2a12:dbc0::/32 Signature Algorithm: sha256WithRSAEncryption 4e:de:6d:b8:2c:2c:ad:2a:05:76:f3:f4:fc:cd:8c:37:24:9e: cf:cd:4f:44:96:2a:57:16:ea:3d:66:94:73:31:fc:b5:0e:e8: ae:4c:e1:d7:eb:70:b9:f7:76:2c:89:8e:1f:c2:e4:7e:92:12: 11:ba:7e:7c:2a:e1:93:62:da:ca:48:f8:9b:ae:74:f2:f0:55: c0:7f:41:45:56:9b:3b:82:8d:70:59:20:de:5e:32:bd:1e:0e: 28:f0:7c:f2:a4:e9:14:ec:1a:3b:da:ef:cb:50:07:ee:9a:33: 6d:b2:1f:e8:e2:bd:9f:36:c3:cd:26:6c:d8:c7:98:2e:c5:b8: b8:89:1f:88:9e:39:6b:f6:54:e8:66:7a:63:f3:33:b5:a8:da: 29:74:8a:34:b9:71:fb:38:d3:28:c1:5a:09:65:e7:84:ac:6f: 2e:96:11:91:73:8d:e4:c3:1c:38:b7:21:7c:b4:aa:9c:a9:ce: 51:c9:16:78:8c:c8:f9:62:2d:32:40:ac:5e:fc:73:3b:c1:de: 3f:db:8a:ff:59:c4:b9:30:49:85:d2:8e:4c:15:98:c9:7b:fb: 10:39:2b:4d:94:c0:4f:a7:dc:b5:80:88:bd:fd:68:26:db:77: 7e:71:75:83:43:86:40:cc:a1:35:98:f9:56:30:d5:54:65:a3: 25:ad:e3:e8 -----BEGIN CERTIFICATE----- MIIFDDCCA/SgAwIBAgISAZtFQL69XkTmZQnHKXdHQ0qFMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDQyMjA0NzViNjgwYTE4ZTRkYTM0YjJhMjg5OTA2MjgzZTI4 NWQ4MmQwHhcNMjUxMjIyMDg1MDI5WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg2MjcwZTAxOWQxOGQyMWExZGYyZmRkMmJjNmI1YzY1NzY3NTJkM2JlMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtxA+wvB6LMbxfo+gvdhUK+I8xMF+ 4+mQAS93UW36Cda72GewjX7zcRSyUpco8ZYEfBUSvhxjpUmP/7fKId+WmX0aWp97 zXLZ07wF13q/dMobewGCqrskkmL5eu5FWgvcZvSkv7URIyUuIWgpp84h9BP7pT/f BNa+YGszEX99KGgYsHUV7gzmPKe/j4GAq9oQ6PqP721k11HBnKbz01MXri8dqVnm /gxMqMF1Y8CURF7kEFq6yuQUOb7emLjEF7xVxoOH5zdmOej2fqz90LQZaiwbkDOH onLc3ZbjjoqL8fdg2VwzFZxQLavdh+UZJlG5ikkmY+zXf5ECIEC8Ho1ldQIDAQAB o4ICGDCCAhQwHQYDVR0OBBYEFGJw4BnRjSGh3y/dK8a1xldnUtO+MB8GA1UdIwQY MBaAFEIgR1toChjk2jSyoomQYoPihdgtMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvUWlCSFcyZ0tHT1RhTkxLaWlaQmlnLUtGMkMwLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82ZC8xNDc2ODgtOTkzYS00MGZmLWJiNmEt NDViOGU0OWJkMTQzLzEvWW5EZ0dkR05JYUhmTDkwcnhyWEdWMmRTMDc0LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC82ZC8xNDc2ODgtOTkzYS00MGZmLWJiNmEtNDViOGU0OWJkMTQz LzEvUWlCSFcyZ0tHT1RhTkxLaWlaQmlnLUtGMkMwLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMC4GCCsGAQUFBwEHAQH/BB8wHTAMBAIAATAGAwQAuev2MA0E AgACMAcDBQAqEtvAMA0GCSqGSIb3DQEBCwUAA4IBAQBO3m24LCytKgV28/T8zYw3 JJ7PzU9ElipXFuo9ZpRzMfy1DuiuTOHX63C593YsiY4fwuR+khIRun58KuGTYtrK SPibrnTy8FXAf0FFVps7go1wWSDeXjK9Hg4o8HzypOkU7Bo72u/LUAfumjNtsh/o 4r2fNsPNJmzYx5guxbi4iR+Injlr9lToZnpj8zO1qNopdIo0uXH7ONMowVoJZeeE rG8ulhGRc43kwxw4tyF8tKqcqc5RyRZ4jMj5Yi0yQKxe/HM7wd4/24r/WcS5MEmF 0o5MFZjJe/sQOStNlMBPp9y1gIi9/Wgm23d+cXWDQ4ZAzKE1mPlWMNVUZaMlrePo -----END CERTIFICATE-----Generated at Fri Dec 26 17:23:34 2025 by rpki-client