This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/94/0a3827-b6c5-4c3a-96e6-e8db018b36dd/1/wY32X17vqmE6TNpSn-iDhOxjobk.roa File: wY32X17vqmE6TNpSn-iDhOxjobk.roa (raw, json) Hash identifier: vfOtRMFNB5neX98f6+6QdNtzcKjmVk0nCI3PhC1o6Kc= Subject key identifier: C1:8D:F6:5F:5E:EF:AA:61:3A:4C:DA:52:9F:E8:83:84:EC:63:A1:B9 Certificate issuer: /CN=9b835e9b4d376ee6ab6cad275e243cf404c12af4 Certificate serial: 019B7DCB39FE01E091DFF1C4EF9BA3D0B2C4 Authority key identifier: 9B:83:5E:9B:4D:37:6E:E6:AB:6C:AD:27:5E:24:3C:F4:04:C1:2A:F4 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/m4Nem003buarbK0nXiQ89ATBKvQ.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/94/0a3827-b6c5-4c3a-96e6-e8db018b36dd/1/wY32X17vqmE6TNpSn-iDhOxjobk.roa Signing time: Fri 02 Jan 2026 08:20:29 +0000 ROA not before: Fri 02 Jan 2026 08:20:29 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 200652 IP address blocks: 185.100.60.0/22 maxlen: 22 2a06:1740::/29 maxlen: 29 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/94/0a3827-b6c5-4c3a-96e6-e8db018b36dd/1/m4Nem003buarbK0nXiQ89ATBKvQ.crl rsync://rpki.ripe.net/repository/DEFAULT/94/0a3827-b6c5-4c3a-96e6-e8db018b36dd/1/m4Nem003buarbK0nXiQ89ATBKvQ.mft rsync://rpki.ripe.net/repository/DEFAULT/m4Nem003buarbK0nXiQ89ATBKvQ.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 21:05:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7d:cb:39:fe:01:e0:91:df:f1:c4:ef:9b:a3:d0:b2:c4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9b835e9b4d376ee6ab6cad275e243cf404c12af4 Validity Not Before: Jan 2 08:20:29 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=c18df65f5eefaa613a4cda529fe88384ec63a1b9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:26:c7:39:71:81:12:12:28:0d:3e:8e:91:03: d4:1c:d4:1a:d3:60:7c:f9:fd:b2:36:7b:47:fa:a6: 5b:26:a2:d9:75:81:a4:02:42:54:8a:66:55:c2:2e: cb:a9:74:d0:88:db:63:29:24:eb:5c:b0:8b:2b:59: a2:7a:f8:77:e8:4b:bb:e9:68:5e:05:de:3a:e6:b3: 05:87:31:8e:37:76:32:05:ca:86:24:7d:05:3a:c6: b8:4b:42:1e:de:5b:fe:55:83:e7:3d:61:c7:65:93: 4f:47:46:2f:76:35:68:8a:39:4c:b5:38:04:8c:49: ac:fa:35:0c:fa:dd:aa:8b:b6:b2:f0:c2:3a:24:21: 1d:97:a9:0d:ce:39:b4:63:d9:ad:6d:fd:60:7b:d4: 4b:1d:56:95:a8:ed:a0:dc:6e:15:ea:33:fe:b7:35: 30:1a:89:d5:d9:ba:af:dc:f6:61:00:97:f4:03:34: c4:7c:63:29:75:b7:82:87:7e:7a:ae:fa:2c:69:5e: ae:1c:9f:7d:4b:92:93:75:19:7f:3e:77:a2:56:44: 80:25:76:23:0f:4f:54:cf:c1:44:6b:4f:e9:61:c4: 76:64:97:b8:0f:6d:ba:b3:7c:1c:e9:d6:b0:9b:08: 6e:13:aa:13:ce:8f:4e:de:0a:14:b0:53:87:24:b8: 89:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C1:8D:F6:5F:5E:EF:AA:61:3A:4C:DA:52:9F:E8:83:84:EC:63:A1:B9 X509v3 Authority Key Identifier: keyid:9B:83:5E:9B:4D:37:6E:E6:AB:6C:AD:27:5E:24:3C:F4:04:C1:2A:F4 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/m4Nem003buarbK0nXiQ89ATBKvQ.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/94/0a3827-b6c5-4c3a-96e6-e8db018b36dd/1/wY32X17vqmE6TNpSn-iDhOxjobk.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/94/0a3827-b6c5-4c3a-96e6-e8db018b36dd/1/m4Nem003buarbK0nXiQ89ATBKvQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.100.60.0/22 IPv6: 2a06:1740::/29 Signature Algorithm: sha256WithRSAEncryption 3d:db:45:f9:9e:cf:80:ec:dc:8e:4c:b4:9e:99:e8:ff:af:dd: 48:b4:b1:87:ff:be:45:15:37:69:f8:94:3d:68:74:33:a7:5f: ce:2d:0f:69:3b:7a:f3:8d:b3:74:42:62:89:ce:41:ce:96:81: 94:3e:1e:57:ef:c8:7c:0e:d9:fd:e2:39:d8:a1:e1:eb:a7:37: 34:36:69:c1:ec:c9:c2:26:40:26:a8:ff:71:6b:15:ef:a4:4e: 80:2d:05:42:28:9d:c6:eb:a5:db:67:5b:48:fb:2d:3d:b6:04: 80:c1:81:66:5f:40:b9:5d:d8:ed:98:03:f6:d1:31:38:f7:15: 43:e8:31:83:56:0c:37:a4:07:b2:34:da:dc:5f:64:ae:00:39: a1:12:bf:a3:94:b5:b4:24:c7:1c:4a:aa:4b:ac:1a:d1:4a:72: 37:08:76:76:1d:55:19:56:52:dd:98:26:47:4e:f6:3f:16:eb: 3d:88:66:8d:b0:6c:db:f3:93:39:f6:4c:fb:b0:e6:50:0b:4e: a2:75:b8:75:94:88:f5:25:97:b2:37:3a:8c:cc:5c:6e:75:6c: 42:ca:9a:f5:4d:ef:9b:2c:04:f7:ab:32:90:84:ac:e2:e8:1b: 0d:18:ab:7b:13:0f:f1:c4:e6:5b:6a:20:80:88:09:8b:25:fa: 5f:cf:f2:85 -----BEGIN CERTIFICATE----- MIIFDDCCA/SgAwIBAgISAZt9yzn+AeCR3/HE75uj0LLEMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDliODM1ZTliNGQzNzZlZTZhYjZjYWQyNzVlMjQzY2Y0MDRj MTJhZjQwHhcNMjYwMTAyMDgyMDI5WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhjMThkZjY1ZjVlZWZhYTYxM2E0Y2RhNTI5ZmU4ODM4NGVjNjNhMWI5MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0ybHOXGBEhIoDT6OkQPUHNQa02B8 +f2yNntH+qZbJqLZdYGkAkJUimZVwi7LqXTQiNtjKSTrXLCLK1mievh36Eu76Whe Bd465rMFhzGON3YyBcqGJH0FOsa4S0Ie3lv+VYPnPWHHZZNPR0YvdjVoijlMtTgE jEms+jUM+t2qi7ay8MI6JCEdl6kNzjm0Y9mtbf1ge9RLHVaVqO2g3G4V6jP+tzUw GonV2bqv3PZhAJf0AzTEfGMpdbeCh356rvosaV6uHJ99S5KTdRl/PneiVkSAJXYj D09Uz8FEa0/pYcR2ZJe4D226s3wc6dawmwhuE6oTzo9O3goUsFOHJLiJYwIDAQAB o4ICGDCCAhQwHQYDVR0OBBYEFMGN9l9e76phOkzaUp/og4TsY6G5MB8GA1UdIwQY MBaAFJuDXptNN27mq2ytJ14kPPQEwSr0MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvbTROZW0wMDNidWFyYkswblhpUTg5QVRCS3ZRLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85NC8wYTM4MjctYjZjNS00YzNhLTk2ZTYt ZThkYjAxOGIzNmRkLzEvd1kzMlgxN3ZxbUU2VE5wU24taURoT3hqb2JrLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC85NC8wYTM4MjctYjZjNS00YzNhLTk2ZTYtZThkYjAxOGIzNmRk LzEvbTROZW0wMDNidWFyYkswblhpUTg5QVRCS3ZRLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMC4GCCsGAQUFBwEHAQH/BB8wHTAMBAIAATAGAwQCuWQ8MA0E AgACMAcDBQMqBhdAMA0GCSqGSIb3DQEBCwUAA4IBAQA920X5ns+A7NyOTLSemej/ r91ItLGH/75FFTdp+JQ9aHQzp1/OLQ9pO3rzjbN0QmKJzkHOloGUPh5X78h8Dtn9 4jnYoeHrpzc0NmnB7MnCJkAmqP9xaxXvpE6ALQVCKJ3G66XbZ1tI+y09tgSAwYFm X0C5XdjtmAP20TE49xVD6DGDVgw3pAeyNNrcX2SuADmhEr+jlLW0JMccSqpLrBrR SnI3CHZ2HVUZVlLdmCZHTvY/Fus9iGaNsGzb85M59kz7sOZQC06idbh1lIj1JZey NzqMzFxudWxCypr1Te+bLAT3qzKQhKzi6BsNGKt7Ew/xxOZbaiCAiAmLJfpfz/KF -----END CERTIFICATE-----Generated at Tue Feb 10 07:30:59 2026 by rpki-client