This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/99/97744d-5988-46ae-82f1-64187e30435b/1/hYLp43OSPXsL4JxLswilkc5UtXM.roa File: hYLp43OSPXsL4JxLswilkc5UtXM.roa (raw, json) Hash identifier: rqjG85ikI7yDLzBtgViqukIp7fUAhh1OKd6HYF2+ojM= Subject key identifier: 85:82:E9:E3:73:92:3D:7B:0B:E0:9C:4B:B3:08:A5:91:CE:54:B5:73 Certificate issuer: /CN=be2f2ccf1baa39033ec76a586f846a36218f209d Certificate serial: 019B79ECA744DEE7AA33FF3E528683AA55D4 Authority key identifier: BE:2F:2C:CF:1B:AA:39:03:3E:C7:6A:58:6F:84:6A:36:21:8F:20:9D Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vi8szxuqOQM-x2pYb4RqNiGPIJ0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/99/97744d-5988-46ae-82f1-64187e30435b/1/hYLp43OSPXsL4JxLswilkc5UtXM.roa Signing time: Thu 01 Jan 2026 14:18:31 +0000 ROA not before: Thu 01 Jan 2026 14:18:31 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 39382 IP address blocks: 159.255.200.0/21 maxlen: 21 195.234.116.0/22 maxlen: 22 2a03:8680::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/99/97744d-5988-46ae-82f1-64187e30435b/1/vi8szxuqOQM-x2pYb4RqNiGPIJ0.crl rsync://rpki.ripe.net/repository/DEFAULT/99/97744d-5988-46ae-82f1-64187e30435b/1/vi8szxuqOQM-x2pYb4RqNiGPIJ0.mft rsync://rpki.ripe.net/repository/DEFAULT/vi8szxuqOQM-x2pYb4RqNiGPIJ0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 14:00:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:79:ec:a7:44:de:e7:aa:33:ff:3e:52:86:83:aa:55:d4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=be2f2ccf1baa39033ec76a586f846a36218f209d Validity Not Before: Jan 1 14:18:31 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=8582e9e373923d7b0be09c4bb308a591ce54b573 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:8d:60:95:b3:7c:21:a5:36:34:ae:f7:38:1b: 30:cb:c4:d7:60:5e:e0:cc:4e:b4:52:a9:e5:f6:38: ed:f2:c1:c5:e8:d8:a2:ed:e7:43:81:ea:72:af:09: 8d:25:dd:72:96:16:87:79:69:39:24:15:a1:c8:27: b5:36:cc:72:7b:7a:77:06:95:7a:8b:c7:53:c9:48: 47:2d:8b:80:95:9d:52:dc:5c:a2:b7:6a:83:54:16: aa:38:25:7f:2a:97:7d:f3:ec:f2:67:9b:28:c7:03: fc:2c:01:28:c0:2d:2f:81:0a:6a:8a:c8:c0:00:84: a6:72:b6:57:a0:ea:f9:bd:1c:8e:a5:a3:c5:06:08: 97:a4:d3:2a:83:df:83:24:73:27:66:cc:4c:3e:50: 24:c1:41:8b:6e:79:c1:67:bd:95:08:2c:c3:36:68: 4f:63:12:88:7f:93:0b:7a:2b:ba:36:51:9b:92:70: e1:d6:9b:03:c3:1b:8d:76:55:5d:c8:68:af:3f:b0: 4a:bc:f9:67:7e:41:ca:a7:8d:76:cc:a8:ce:f0:c1: ad:39:89:35:42:18:f9:46:93:71:fe:d6:d7:44:03: 12:2f:fa:b9:54:87:2a:07:d9:7b:f1:86:84:38:a3: ec:b8:e0:69:f8:ac:8e:51:0a:ca:d9:00:74:2f:24: c0:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 85:82:E9:E3:73:92:3D:7B:0B:E0:9C:4B:B3:08:A5:91:CE:54:B5:73 X509v3 Authority Key Identifier: keyid:BE:2F:2C:CF:1B:AA:39:03:3E:C7:6A:58:6F:84:6A:36:21:8F:20:9D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vi8szxuqOQM-x2pYb4RqNiGPIJ0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/99/97744d-5988-46ae-82f1-64187e30435b/1/hYLp43OSPXsL4JxLswilkc5UtXM.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/99/97744d-5988-46ae-82f1-64187e30435b/1/vi8szxuqOQM-x2pYb4RqNiGPIJ0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 159.255.200.0/21 195.234.116.0/22 IPv6: 2a03:8680::/32 Signature Algorithm: sha256WithRSAEncryption 22:5a:1d:a6:4a:d7:36:46:bd:9d:ab:be:9e:aa:ef:2f:be:72: 55:35:7a:15:70:aa:c1:b6:1a:05:32:f5:53:2e:c2:d3:f8:5a: 4d:db:f3:44:eb:4d:00:82:73:10:32:32:39:78:45:08:1e:62: 45:29:21:41:3d:a9:33:06:a8:15:2d:e1:b9:23:1b:19:2a:4e: c4:69:4a:01:4c:f5:09:26:da:a5:ad:b5:08:59:ca:e4:46:32: 10:7a:cc:c0:c3:c9:f2:15:7e:50:c6:61:fa:47:11:1b:76:ce: aa:fd:cb:da:08:bb:4f:64:72:7c:09:6f:3c:68:00:04:a5:25: cb:01:1e:1d:88:bb:cf:6e:99:eb:69:cc:99:40:3a:7a:e9:a9: 4b:7d:8f:b7:da:ac:cf:9c:bc:2d:85:43:e1:c7:34:09:2d:9c: f7:99:9b:fb:40:df:69:ba:37:ae:38:dc:df:17:72:a8:34:d0: 79:74:b9:b9:45:b6:96:d9:ff:3a:5f:8e:3c:ac:40:94:78:87: 60:48:a1:55:80:08:07:e7:cf:36:87:76:46:48:59:95:8f:7b: 5a:59:03:e6:77:86:f2:69:80:cf:23:fe:2e:42:fa:a0:ed:58: 16:4c:2e:b4:7b:99:69:b3:b9:6e:cf:e7:b9:05:74:fe:a9:3c: 43:d0:7c:a6 -----BEGIN CERTIFICATE----- MIIFEjCCA/qgAwIBAgISAZt57KdE3ueqM/8+UoaDqlXUMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGJlMmYyY2NmMWJhYTM5MDMzZWM3NmE1ODZmODQ2YTM2MjE4 ZjIwOWQwHhcNMjYwMTAxMTQxODMxWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg4NTgyZTllMzczOTIzZDdiMGJlMDljNGJiMzA4YTU5MWNlNTRiNTczMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA3o1glbN8IaU2NK73OBswy8TXYF7g zE60Uqnl9jjt8sHF6Nii7edDgepyrwmNJd1ylhaHeWk5JBWhyCe1Nsxye3p3BpV6 i8dTyUhHLYuAlZ1S3Fyit2qDVBaqOCV/Kpd98+zyZ5soxwP8LAEowC0vgQpqisjA AISmcrZXoOr5vRyOpaPFBgiXpNMqg9+DJHMnZsxMPlAkwUGLbnnBZ72VCCzDNmhP YxKIf5MLeiu6NlGbknDh1psDwxuNdlVdyGivP7BKvPlnfkHKp412zKjO8MGtOYk1 Qhj5RpNx/tbXRAMSL/q5VIcqB9l78YaEOKPsuOBp+KyOUQrK2QB0LyTAMQIDAQAB o4ICHjCCAhowHQYDVR0OBBYEFIWC6eNzkj17C+CcS7MIpZHOVLVzMB8GA1UdIwQY MBaAFL4vLM8bqjkDPsdqWG+EajYhjyCdMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvdmk4c3p4dXFPUU0teDJwWWI0UnFOaUdQSUowLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85OS85Nzc0NGQtNTk4OC00NmFlLTgyZjEt NjQxODdlMzA0MzViLzEvaFlMcDQzT1NQWHNMNEp4THN3aWxrYzVVdFhNLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC85OS85Nzc0NGQtNTk4OC00NmFlLTgyZjEtNjQxODdlMzA0MzVi LzEvdmk4c3p4dXFPUU0teDJwWWI0UnFOaUdQSUowLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMDQGCCsGAQUFBwEHAQH/BCUwIzASBAIAATAMAwQDn//IAwQC w+p0MA0EAgACMAcDBQAqA4aAMA0GCSqGSIb3DQEBCwUAA4IBAQAiWh2mStc2Rr2d q76equ8vvnJVNXoVcKrBthoFMvVTLsLT+FpN2/NE600AgnMQMjI5eEUIHmJFKSFB PakzBqgVLeG5IxsZKk7EaUoBTPUJJtqlrbUIWcrkRjIQeszAw8nyFX5QxmH6RxEb ds6q/cvaCLtPZHJ8CW88aAAEpSXLAR4diLvPbpnracyZQDp66alLfY+32qzPnLwt hUPhxzQJLZz3mZv7QN9pujeuONzfF3KoNNB5dLm5RbaW2f86X448rECUeIdgSKFV gAgH5882h3ZGSFmVj3taWQPmd4byaYDPI/4uQvqg7VgWTC60e5lps7luz+e5BXT+ qTxD0Hym -----END CERTIFICATE-----Generated at Mon Feb 9 19:39:15 2026 by rpki-client