This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/78/66f05c-741c-4720-bc7e-89714a7e8d58/1/pAIBYyl03DB7XvIHrbS3QzCtJmw.roa File: pAIBYyl03DB7XvIHrbS3QzCtJmw.roa (raw, json) Hash identifier: GQ6FPXE4A+w0U7jvziiqaUGlGRv8mE2hgF7AEFVUJmU= Subject key identifier: A4:02:01:63:29:74:DC:30:7B:5E:F2:07:AD:B4:B7:43:30:AD:26:6C Certificate issuer: /CN=86cce06e70df970d90abfe3cbe7fa882f467b1e4 Certificate serial: 019B7CEE343B3C15B198E174D63561570067 Authority key identifier: 86:CC:E0:6E:70:DF:97:0D:90:AB:FE:3C:BE:7F:A8:82:F4:67:B1:E4 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hszgbnDflw2Qq_48vn-ogvRnseQ.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/78/66f05c-741c-4720-bc7e-89714a7e8d58/1/pAIBYyl03DB7XvIHrbS3QzCtJmw.roa Signing time: Fri 02 Jan 2026 04:19:04 +0000 ROA not before: Fri 02 Jan 2026 04:19:04 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 7018 IP address blocks: 37.218.208.0/21 maxlen: 24 37.218.216.0/21 maxlen: 24 82.163.68.0/22 maxlen: 24 149.126.88.0/22 maxlen: 24 185.86.142.0/23 maxlen: 24 188.215.124.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/78/66f05c-741c-4720-bc7e-89714a7e8d58/1/hszgbnDflw2Qq_48vn-ogvRnseQ.crl rsync://rpki.ripe.net/repository/DEFAULT/78/66f05c-741c-4720-bc7e-89714a7e8d58/1/hszgbnDflw2Qq_48vn-ogvRnseQ.mft rsync://rpki.ripe.net/repository/DEFAULT/hszgbnDflw2Qq_48vn-ogvRnseQ.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 19 Jan 2026 06:00:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7c:ee:34:3b:3c:15:b1:98:e1:74:d6:35:61:57:00:67 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=86cce06e70df970d90abfe3cbe7fa882f467b1e4 Validity Not Before: Jan 2 04:19:04 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=a40201632974dc307b5ef207adb4b74330ad266c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:dd:3f:5c:34:4c:6a:60:42:81:97:da:16:a4: 3b:11:92:0f:5f:98:d8:cb:bc:82:79:e2:76:36:da: 19:4f:30:97:f3:48:be:a8:d3:0c:78:ee:6a:9d:07: 9c:69:04:9f:84:c9:89:db:e8:8e:c8:65:22:85:11: 0b:e5:36:f6:00:c5:55:0f:ce:85:00:11:a4:2c:84: 4f:86:57:ab:e3:6b:27:72:00:2d:09:87:02:c0:f2: fd:17:ee:2d:6c:39:37:72:af:c9:c3:0f:ff:95:4e: 1c:2d:b0:98:d2:a0:94:5c:a8:32:f6:7b:4c:96:ff: 6b:21:65:08:20:8a:b2:74:e9:c8:2e:5c:f9:6e:9e: e2:86:46:db:bc:f1:0b:e9:c6:a6:c3:87:24:21:c4: fb:26:1b:88:4d:61:31:5a:f4:d9:05:3d:af:25:06: 22:ad:1c:f8:17:02:90:d8:72:b6:5b:c0:66:8b:1f: be:e1:05:32:14:34:1f:41:7b:19:a0:0e:60:7e:5d: 04:28:2c:66:9f:e9:b1:14:f1:46:3e:c7:c4:1d:8c: f9:83:f9:09:d3:4a:cc:a6:88:71:4e:15:d7:33:b7: c1:c2:a0:2c:15:95:68:d6:06:a6:4d:d2:5e:03:8a: 14:d2:08:fd:6a:30:c0:23:63:1a:a9:1d:d5:f0:2f: 56:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A4:02:01:63:29:74:DC:30:7B:5E:F2:07:AD:B4:B7:43:30:AD:26:6C X509v3 Authority Key Identifier: keyid:86:CC:E0:6E:70:DF:97:0D:90:AB:FE:3C:BE:7F:A8:82:F4:67:B1:E4 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hszgbnDflw2Qq_48vn-ogvRnseQ.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/78/66f05c-741c-4720-bc7e-89714a7e8d58/1/pAIBYyl03DB7XvIHrbS3QzCtJmw.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/78/66f05c-741c-4720-bc7e-89714a7e8d58/1/hszgbnDflw2Qq_48vn-ogvRnseQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 37.218.208.0/20 82.163.68.0/22 149.126.88.0/22 185.86.142.0/23 188.215.124.0/22 Signature Algorithm: sha256WithRSAEncryption 90:e1:b8:c0:90:27:14:39:b5:0b:0d:28:64:da:09:88:61:6d: 6d:ea:4d:8a:1c:4a:65:4d:b9:e2:31:b2:a8:b3:8d:09:83:50: 86:c1:a6:06:b4:a9:e6:ee:72:98:cc:ab:6d:8c:fa:6d:9a:02: 3c:d9:13:06:ac:f8:31:84:0c:01:2d:64:fd:9c:b9:de:a3:41: 83:ce:d3:bf:40:51:0b:e3:7e:c9:36:a1:48:15:da:18:ac:e1: c6:d1:67:4e:f4:0c:86:6b:4b:69:68:68:5c:15:e2:c4:59:66: 46:b9:26:91:90:0e:cf:78:6b:28:63:a7:aa:69:3c:f4:16:12: a6:12:1d:d8:b2:f1:8c:1f:bd:87:2f:c8:6a:de:f4:8d:66:ed: 07:37:98:d9:9a:33:9e:24:f9:3e:3f:3d:77:fb:f0:e2:d4:52: c5:93:dc:9f:cd:b5:28:3c:79:1e:a5:c7:88:41:40:db:03:e0: 8f:05:70:dd:46:3d:60:d5:3f:8c:31:94:e6:a4:c1:ff:c6:70: 16:40:d1:a6:11:ae:d8:9c:a7:07:f3:48:62:3e:84:25:90:27: 1d:ee:41:65:e7:3d:e3:e0:82:41:c3:15:c3:52:49:d2:2c:93: 56:61:9f:fa:8b:b1:9c:54:d4:12:a2:f3:b8:b8:06:0a:39:cd: bb:23:8f:78 -----BEGIN CERTIFICATE----- MIIFFTCCA/2gAwIBAgISAZt87jQ7PBWxmOF01jVhVwBnMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDg2Y2NlMDZlNzBkZjk3MGQ5MGFiZmUzY2JlN2ZhODgyZjQ2 N2IxZTQwHhcNMjYwMTAyMDQxOTA0WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhhNDAyMDE2MzI5NzRkYzMwN2I1ZWYyMDdhZGI0Yjc0MzMwYWQyNjZjMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAt90/XDRMamBCgZfaFqQ7EZIPX5jY y7yCeeJ2NtoZTzCX80i+qNMMeO5qnQecaQSfhMmJ2+iOyGUihREL5Tb2AMVVD86F ABGkLIRPhler42sncgAtCYcCwPL9F+4tbDk3cq/Jww//lU4cLbCY0qCUXKgy9ntM lv9rIWUIIIqydOnILlz5bp7ihkbbvPEL6camw4ckIcT7JhuITWExWvTZBT2vJQYi rRz4FwKQ2HK2W8Bmix++4QUyFDQfQXsZoA5gfl0EKCxmn+mxFPFGPsfEHYz5g/kJ 00rMpohxThXXM7fBwqAsFZVo1gamTdJeA4oU0gj9ajDAI2MaqR3V8C9W+wIDAQAB o4ICITCCAh0wHQYDVR0OBBYEFKQCAWMpdNwwe17yB620t0MwrSZsMB8GA1UdIwQY MBaAFIbM4G5w35cNkKv+PL5/qIL0Z7HkMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvaHN6Z2JuRGZsdzJRcV80OHZuLW9ndlJuc2VRLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83OC82NmYwNWMtNzQxYy00NzIwLWJjN2Ut ODk3MTRhN2U4ZDU4LzEvcEFJQll5bDAzREI3WHZJSHJiUzNRekN0Sm13LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC83OC82NmYwNWMtNzQxYy00NzIwLWJjN2UtODk3MTRhN2U4ZDU4 LzEvaHN6Z2JuRGZsdzJRcV80OHZuLW9ndlJuc2VRLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMDcGCCsGAQUFBwEHAQH/BCgwJjAkBAIAATAeAwQEJdrQAwQC UqNEAwQClX5YAwQBuVaOAwQCvNd8MA0GCSqGSIb3DQEBCwUAA4IBAQCQ4bjAkCcU ObULDShk2gmIYW1t6k2KHEplTbniMbKos40Jg1CGwaYGtKnm7nKYzKttjPptmgI8 2RMGrPgxhAwBLWT9nLneo0GDztO/QFEL437JNqFIFdoYrOHG0WdO9AyGa0tpaGhc FeLEWWZGuSaRkA7PeGsoY6eqaTz0FhKmEh3YsvGMH72HL8hq3vSNZu0HN5jZmjOe JPk+Pz13+/Di1FLFk9yfzbUoPHkepceIQUDbA+CPBXDdRj1g1T+MMZTmpMH/xnAW QNGmEa7YnKcH80hiPoQlkCcd7kFl5z3j4IJBwxXDUknSLJNWYZ/6i7GcVNQSovO4 uAYKOc27I494 -----END CERTIFICATE-----Generated at Sun Jan 18 11:04:36 2026 by rpki-client