This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8e/39f4bf-38fc-4312-8516-b430e8de7747/1/yQ4lwVZKtZ37ncDrw-J5ETPGiug.roa File: yQ4lwVZKtZ37ncDrw-J5ETPGiug.roa (raw, json) Hash identifier: YOCERM8UiZIP0yKzgGY8Yras8dDVp4zqydgV9vmHZ3M= Subject key identifier: C9:0E:25:C1:56:4A:B5:9D:FB:9D:C0:EB:C3:E2:79:11:33:C6:8A:E8 Certificate issuer: /CN=aa6782cd7bb922ca4bc6e80e7857f4922f5c23c4 Certificate serial: 019B7F831A6AEB50FBAF42C9C453492E4269 Authority key identifier: AA:67:82:CD:7B:B9:22:CA:4B:C6:E8:0E:78:57:F4:92:2F:5C:23:C4 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qmeCzXu5IspLxugOeFf0ki9cI8Q.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8e/39f4bf-38fc-4312-8516-b430e8de7747/1/yQ4lwVZKtZ37ncDrw-J5ETPGiug.roa Signing time: Fri 02 Jan 2026 16:20:56 +0000 ROA not before: Fri 02 Jan 2026 16:20:56 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 9123 IP address blocks: 217.149.25.0/24 maxlen: 24 217.149.29.0/24 maxlen: 24 217.149.30.0/24 maxlen: 24 217.149.31.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8e/39f4bf-38fc-4312-8516-b430e8de7747/1/qmeCzXu5IspLxugOeFf0ki9cI8Q.crl rsync://rpki.ripe.net/repository/DEFAULT/8e/39f4bf-38fc-4312-8516-b430e8de7747/1/qmeCzXu5IspLxugOeFf0ki9cI8Q.mft rsync://rpki.ripe.net/repository/DEFAULT/qmeCzXu5IspLxugOeFf0ki9cI8Q.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 22 Jan 2026 01:01:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7f:83:1a:6a:eb:50:fb:af:42:c9:c4:53:49:2e:42:69 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=aa6782cd7bb922ca4bc6e80e7857f4922f5c23c4 Validity Not Before: Jan 2 16:20:56 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=c90e25c1564ab59dfb9dc0ebc3e2791133c68ae8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:fe:ce:ac:ad:7a:65:a8:3a:06:8f:97:a1:72:7e: 05:bb:63:a5:29:07:1d:c8:cd:fa:60:99:0d:60:63: 12:3b:c0:69:e8:83:cb:36:b3:53:73:28:8c:9f:74: fc:2f:25:85:40:94:b2:66:98:4c:68:51:90:dc:3e: 84:05:0d:a6:05:73:fa:08:7a:a0:11:69:1a:c2:84: e1:79:d6:42:cd:cd:36:79:26:db:58:b6:8f:8c:7d: 57:e0:7d:c0:36:ab:6c:7e:35:66:10:0c:e1:67:86: af:ce:bd:cf:6b:bf:d3:2b:e2:22:1a:40:9f:17:ad: dd:1b:f0:64:ad:d3:9d:2a:cc:c5:78:fa:ff:df:37: 12:b2:d4:a4:62:e7:60:ba:c4:24:fe:66:a3:68:a3: 44:68:17:b4:23:95:73:73:b6:de:fd:bd:1c:bc:68: 65:03:fc:16:98:83:f2:e4:d5:8b:61:e0:ea:e1:08: 02:4f:16:97:c6:18:04:ba:fa:0c:8d:b3:7f:ff:09: 2b:d6:a9:81:a0:a5:72:d3:00:88:06:dc:52:5b:b8: 3f:dc:21:91:49:31:eb:66:0b:7b:65:d1:4b:ae:a5: f5:7a:8a:92:43:03:b4:1a:8c:43:f2:7c:3c:35:50: 73:8c:2c:ae:4c:19:fa:50:dc:06:4f:c4:6f:79:b1: e3:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C9:0E:25:C1:56:4A:B5:9D:FB:9D:C0:EB:C3:E2:79:11:33:C6:8A:E8 X509v3 Authority Key Identifier: keyid:AA:67:82:CD:7B:B9:22:CA:4B:C6:E8:0E:78:57:F4:92:2F:5C:23:C4 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qmeCzXu5IspLxugOeFf0ki9cI8Q.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/39f4bf-38fc-4312-8516-b430e8de7747/1/yQ4lwVZKtZ37ncDrw-J5ETPGiug.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/39f4bf-38fc-4312-8516-b430e8de7747/1/qmeCzXu5IspLxugOeFf0ki9cI8Q.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 217.149.25.0/24 217.149.29.0-217.149.31.255 Signature Algorithm: sha256WithRSAEncryption 66:9a:0a:24:58:54:8d:df:71:4b:e9:c6:2c:05:83:0b:fe:37: f4:95:2c:48:61:2d:aa:89:2b:9f:0f:8d:c1:e4:8d:83:b5:3c: d6:e6:c9:fd:a9:fd:60:00:0e:a2:56:29:36:ec:03:05:79:ef: 09:0a:c7:c8:19:ae:a3:25:a4:da:b8:44:20:c8:48:8e:d8:cc: a7:6a:21:7b:df:31:96:df:7f:5e:70:e2:da:30:15:31:1b:b6: a6:b1:1a:a7:f8:bb:58:26:df:ff:bc:15:f1:c9:bf:84:e0:de: 9c:f4:b3:be:dc:80:18:44:72:c8:12:d4:59:e3:3e:d0:69:5b: e1:8d:0f:a7:23:f4:21:9e:dc:0e:f8:0d:94:15:71:0f:ba:c6: 0d:e9:fc:d4:bb:61:47:7e:aa:fe:32:54:6d:54:4b:e9:4d:9c: 05:4f:fb:fc:20:4a:25:ad:a3:32:ed:39:cc:25:c6:37:06:bf: 4f:d5:b5:63:69:e2:b8:1d:6f:9f:fd:dc:9f:16:14:6f:ae:d3: 1e:04:01:83:79:44:85:7b:e3:e6:fb:07:bb:e2:00:17:85:b2: 14:41:47:f3:a0:84:7b:e8:6e:74:80:5f:6c:19:da:91:f9:13: f5:77:6d:e5:0d:f4:9a:41:3e:f5:00:a5:b1:c9:7e:8c:ff:59: 2c:11:2b:8b -----BEGIN CERTIFICATE----- MIIFCzCCA/OgAwIBAgISAZt/gxpq61D7r0LJxFNJLkJpMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGFhNjc4MmNkN2JiOTIyY2E0YmM2ZTgwZTc4NTdmNDkyMmY1 YzIzYzQwHhcNMjYwMTAyMTYyMDU2WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhjOTBlMjVjMTU2NGFiNTlkZmI5ZGMwZWJjM2UyNzkxMTMzYzY4YWU4MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA/s6srXplqDoGj5ehcn4Fu2OlKQcd yM36YJkNYGMSO8Bp6IPLNrNTcyiMn3T8LyWFQJSyZphMaFGQ3D6EBQ2mBXP6CHqg EWkawoThedZCzc02eSbbWLaPjH1X4H3ANqtsfjVmEAzhZ4avzr3Pa7/TK+IiGkCf F63dG/BkrdOdKszFePr/3zcSstSkYudgusQk/majaKNEaBe0I5Vzc7be/b0cvGhl A/wWmIPy5NWLYeDq4QgCTxaXxhgEuvoMjbN//wkr1qmBoKVy0wCIBtxSW7g/3CGR STHrZgt7ZdFLrqX1eoqSQwO0GoxD8nw8NVBzjCyuTBn6UNwGT8RvebHjWQIDAQAB o4ICFzCCAhMwHQYDVR0OBBYEFMkOJcFWSrWd+53A68PieREzxoroMB8GA1UdIwQY MBaAFKpngs17uSLKS8boDnhX9JIvXCPEMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvcW1lQ3pYdTVJc3BMeHVnT2VGZjBraTljSThRLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84ZS8zOWY0YmYtMzhmYy00MzEyLTg1MTYt YjQzMGU4ZGU3NzQ3LzEveVE0bHdWWkt0WjM3bmNEcnctSjVFVFBHaXVnLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC84ZS8zOWY0YmYtMzhmYy00MzEyLTg1MTYtYjQzMGU4ZGU3NzQ3 LzEvcW1lQ3pYdTVJc3BMeHVnT2VGZjBraTljSThRLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMC0GCCsGAQUFBwEHAQH/BB4wHDAaBAIAATAUAwQA2ZUZMAwD BADZlR0DBAXZlQAwDQYJKoZIhvcNAQELBQADggEBAGaaCiRYVI3fcUvpxiwFgwv+ N/SVLEhhLaqJK58PjcHkjYO1PNbmyf2p/WAADqJWKTbsAwV57wkKx8gZrqMlpNq4 RCDISI7YzKdqIXvfMZbff15w4towFTEbtqaxGqf4u1gm3/+8FfHJv4Tg3pz0s77c gBhEcsgS1FnjPtBpW+GND6cj9CGe3A74DZQVcQ+6xg3p/NS7YUd+qv4yVG1US+lN nAVP+/wgSiWtozLtOcwlxjcGv0/VtWNp4rgdb5/93J8WFG+u0x4EAYN5RIV74+b7 B7viABeFshRBR/OghHvobnSAX2wZ2pH5E/V3beUN9JpBPvUApbHJfoz/WSwRK4s= -----END CERTIFICATE-----Generated at Wed Jan 21 11:16:11 2026 by rpki-client