This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9c/19870f-866c-4420-ad08-30c9e202e995/1/dYO1aq1zZEA34jZXu9Izj3X2U5c.roa File: dYO1aq1zZEA34jZXu9Izj3X2U5c.roa (raw, json) Hash identifier: l6cXM9dB669qPcg43es0B9QbAJ75AyUSvlMVZGVGxA4= Subject key identifier: 75:83:B5:6A:AD:73:64:40:37:E2:36:57:BB:D2:33:8F:75:F6:53:97 Certificate issuer: /CN=ead799026094d60516b527d842b6166805668e9e Certificate serial: 019B7F15467FE5388993ED4795855185C44D Authority key identifier: EA:D7:99:02:60:94:D6:05:16:B5:27:D8:42:B6:16:68:05:66:8E:9E Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6teZAmCU1gUWtSfYQrYWaAVmjp4.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9c/19870f-866c-4420-ad08-30c9e202e995/1/dYO1aq1zZEA34jZXu9Izj3X2U5c.roa Signing time: Fri 02 Jan 2026 14:20:59 +0000 ROA not before: Fri 02 Jan 2026 14:20:59 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 203 IP address blocks: 159.101.128.0/21 maxlen: 21 159.101.236.0/22 maxlen: 22 159.101.240.0/22 maxlen: 22 159.101.252.0/23 maxlen: 23 159.101.254.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9c/19870f-866c-4420-ad08-30c9e202e995/1/6teZAmCU1gUWtSfYQrYWaAVmjp4.crl rsync://rpki.ripe.net/repository/DEFAULT/9c/19870f-866c-4420-ad08-30c9e202e995/1/6teZAmCU1gUWtSfYQrYWaAVmjp4.mft rsync://rpki.ripe.net/repository/DEFAULT/6teZAmCU1gUWtSfYQrYWaAVmjp4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 23 Jan 2026 00:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7f:15:46:7f:e5:38:89:93:ed:47:95:85:51:85:c4:4d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ead799026094d60516b527d842b6166805668e9e Validity Not Before: Jan 2 14:20:59 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=7583b56aad73644037e23657bbd2338f75f65397 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:96:28:bd:1f:08:15:9c:b7:92:2f:f5:3a:bf:be: 72:95:c9:cf:87:ec:e3:54:86:c8:55:e3:9b:c7:10: 15:25:5e:a0:6d:e0:1e:ed:3a:06:ff:01:ca:fb:1f: 27:8d:7d:1c:36:44:53:cf:44:1c:4a:ee:c4:b3:d3: 1e:6f:41:2a:6b:04:c8:9b:26:b1:9b:5e:9a:83:81: 9b:dc:9b:60:b7:e5:e7:58:7e:87:7d:70:4c:9d:40: 18:17:07:6b:6e:1c:22:f8:da:a8:80:bf:7e:f6:1b: 0e:4f:bc:d7:1f:25:38:1a:16:08:f7:1e:b8:44:df: 34:f2:ec:e7:4e:8e:ae:98:f4:b7:16:ba:86:8b:c1: cb:26:6b:83:94:6a:c8:6b:ea:f9:e5:98:a2:51:8b: 44:2b:ab:99:4b:5d:80:05:1a:47:bc:75:b6:f4:28: e4:a9:02:bf:89:60:a0:39:a2:37:fd:30:31:5a:98: d2:14:10:ba:4a:96:a3:6b:8f:ea:e6:21:1c:cf:f4: b1:4f:cf:76:5d:22:b6:f8:f8:f0:2d:e5:70:de:ad: b8:74:0b:3f:c2:fa:3b:e3:40:57:89:61:e1:db:b4: 3c:4a:c3:23:f9:cb:3f:d9:08:4b:a2:1d:75:ec:0c: 7f:5c:eb:b2:9a:96:e6:0a:bb:a1:1e:4d:df:c2:f0: 8b:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 75:83:B5:6A:AD:73:64:40:37:E2:36:57:BB:D2:33:8F:75:F6:53:97 X509v3 Authority Key Identifier: keyid:EA:D7:99:02:60:94:D6:05:16:B5:27:D8:42:B6:16:68:05:66:8E:9E X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6teZAmCU1gUWtSfYQrYWaAVmjp4.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9c/19870f-866c-4420-ad08-30c9e202e995/1/dYO1aq1zZEA34jZXu9Izj3X2U5c.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/9c/19870f-866c-4420-ad08-30c9e202e995/1/6teZAmCU1gUWtSfYQrYWaAVmjp4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 159.101.128.0/21 159.101.236.0-159.101.243.255 159.101.252.0/22 Signature Algorithm: sha256WithRSAEncryption 78:8c:41:73:f1:e1:f3:70:6c:ff:66:b0:06:d0:f3:75:11:82: a0:c5:a1:01:a1:cf:7e:7d:8b:46:8a:94:47:68:5b:64:8c:c4: d1:3b:83:0b:d1:09:05:13:3d:e8:a5:50:23:49:5c:c7:64:80: 57:88:4b:61:a9:73:aa:a1:02:74:53:56:c7:8f:7a:db:25:f3: d1:62:73:ac:f2:3a:d9:78:ac:23:27:93:d6:61:41:7a:01:87: f3:af:2e:66:e0:90:02:b5:18:58:a8:6a:c2:46:c7:6f:f7:d2: 37:89:5b:41:36:9b:1a:cc:8f:0e:25:8d:30:ef:e1:f4:da:e8: 22:ec:2e:05:67:b7:41:25:79:3b:07:cd:6c:d1:71:83:8d:3d: 48:0c:ad:d0:79:61:27:f2:10:e7:33:b3:1c:ea:74:5c:40:77: 0b:ce:74:b5:87:dc:18:38:4f:16:da:41:c8:45:6c:9a:f5:3d: 67:e0:8e:e3:33:a1:9b:01:8a:c5:5b:d6:0e:a5:54:17:d0:a8: 04:da:6e:90:25:ff:08:ad:57:f0:d5:d1:27:04:22:f3:7a:31: 6d:28:fa:e3:f4:d5:2c:fb:e3:6c:aa:12:6d:bd:09:40:ca:b4: b5:8d:72:29:d7:96:4f:ab:ac:c1:30:88:3d:b1:7b:b1:2d:0b: 44:9a:09:40 -----BEGIN CERTIFICATE----- MIIFETCCA/mgAwIBAgISAZt/FUZ/5TiJk+1HlYVRhcRNMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGVhZDc5OTAyNjA5NGQ2MDUxNmI1MjdkODQyYjYxNjY4MDU2 NjhlOWUwHhcNMjYwMTAyMTQyMDU5WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg3NTgzYjU2YWFkNzM2NDQwMzdlMjM2NTdiYmQyMzM4Zjc1ZjY1Mzk3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAlii9HwgVnLeSL/U6v75ylcnPh+zj VIbIVeObxxAVJV6gbeAe7ToG/wHK+x8njX0cNkRTz0QcSu7Es9Meb0EqawTImyax m16ag4Gb3Jtgt+XnWH6HfXBMnUAYFwdrbhwi+NqogL9+9hsOT7zXHyU4GhYI9x64 RN808uznTo6umPS3FrqGi8HLJmuDlGrIa+r55ZiiUYtEK6uZS12ABRpHvHW29Cjk qQK/iWCgOaI3/TAxWpjSFBC6Spaja4/q5iEcz/SxT892XSK2+PjwLeVw3q24dAs/ wvo740BXiWHh27Q8SsMj+cs/2QhLoh117Ax/XOuympbmCruhHk3fwvCLeQIDAQAB o4ICHTCCAhkwHQYDVR0OBBYEFHWDtWqtc2RAN+I2V7vSM4919lOXMB8GA1UdIwQY MBaAFOrXmQJglNYFFrUn2EK2FmgFZo6eMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvNnRlWkFtQ1UxZ1VXdFNmWVFyWVdhQVZtanA0LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85Yy8xOTg3MGYtODY2Yy00NDIwLWFkMDgt MzBjOWUyMDJlOTk1LzEvZFlPMWFxMXpaRUEzNGpaWHU5SXpqM1gyVTVjLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC85Yy8xOTg3MGYtODY2Yy00NDIwLWFkMDgtMzBjOWUyMDJlOTk1 LzEvNnRlWkFtQ1UxZ1VXdFNmWVFyWVdhQVZtanA0LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMDMGCCsGAQUFBwEHAQH/BCQwIjAgBAIAATAaAwQDn2WAMAwD BAKfZewDBAKfZfADBAKfZfwwDQYJKoZIhvcNAQELBQADggEBAHiMQXPx4fNwbP9m sAbQ83URgqDFoQGhz359i0aKlEdoW2SMxNE7gwvRCQUTPeilUCNJXMdkgFeIS2Gp c6qhAnRTVsePetsl89Fic6zyOtl4rCMnk9ZhQXoBh/OvLmbgkAK1GFioasJGx2/3 0jeJW0E2mxrMjw4ljTDv4fTa6CLsLgVnt0EleTsHzWzRcYONPUgMrdB5YSfyEOcz sxzqdFxAdwvOdLWH3Bg4TxbaQchFbJr1PWfgjuMzoZsBisVb1g6lVBfQqATabpAl /witV/DV0ScEIvN6MW0o+uP01Sz742yqEm29CUDKtLWNcinXlk+rrMEwiD2xe7Et C0SaCUA= -----END CERTIFICATE-----Generated at Thu Jan 22 09:48:43 2026 by rpki-client