This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a3/22ad4c-0b05-474d-919f-3b540a6bc3dc/1/bY4WY1iKxzvuOL6bmkVqfpfooVA.roa File: bY4WY1iKxzvuOL6bmkVqfpfooVA.roa (raw, json) Hash identifier: Ph+QZYyi/7d0WLmkOSuDFC4tOnaIRjljQNdRjvbGpWg= Subject key identifier: 6D:8E:16:63:58:8A:C7:3B:EE:38:BE:9B:9A:45:6A:7E:97:E8:A1:50 Certificate issuer: /CN=30c45fc3147102824f9d2d547766a809aeaf245a Certificate serial: 019B76EBA315CD36DD51E48044AC95BF6F95 Authority key identifier: 30:C4:5F:C3:14:71:02:82:4F:9D:2D:54:77:66:A8:09:AE:AF:24:5A Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MMRfwxRxAoJPnS1Ud2aoCa6vJFo.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a3/22ad4c-0b05-474d-919f-3b540a6bc3dc/1/bY4WY1iKxzvuOL6bmkVqfpfooVA.roa Signing time: Thu 01 Jan 2026 00:18:32 +0000 ROA not before: Thu 01 Jan 2026 00:18:32 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 58350 IP address blocks: 176.115.0.0/19 maxlen: 19 2001:678:258::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a3/22ad4c-0b05-474d-919f-3b540a6bc3dc/1/MMRfwxRxAoJPnS1Ud2aoCa6vJFo.crl rsync://rpki.ripe.net/repository/DEFAULT/a3/22ad4c-0b05-474d-919f-3b540a6bc3dc/1/MMRfwxRxAoJPnS1Ud2aoCa6vJFo.mft rsync://rpki.ripe.net/repository/DEFAULT/MMRfwxRxAoJPnS1Ud2aoCa6vJFo.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:76:eb:a3:15:cd:36:dd:51:e4:80:44:ac:95:bf:6f:95 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=30c45fc3147102824f9d2d547766a809aeaf245a Validity Not Before: Jan 1 00:18:32 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=6d8e1663588ac73bee38be9b9a456a7e97e8a150 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:ff:31:3f:73:0a:e7:e9:25:c5:c8:e5:56:7c: fc:5d:2f:50:6d:8f:e4:4e:0c:ac:9f:24:9a:cf:3a: 33:6e:c0:7c:88:40:3b:46:97:42:de:43:cc:c0:05: 95:73:40:d6:1c:80:06:52:7a:af:82:36:b2:ca:66: 33:07:40:1b:82:71:46:56:d4:01:a5:ca:8b:f2:4f: a6:59:27:21:90:6d:db:2e:bb:35:00:c7:39:20:dc: a4:b7:45:d5:7e:de:6e:59:ec:57:d4:21:78:7b:4c: 12:26:45:c2:07:ea:cf:0f:5f:bb:ef:f8:06:2c:30: 79:fd:0d:31:94:ea:7c:fa:eb:e8:d6:4c:d7:d3:e1: 01:5f:dc:be:dc:7f:91:3f:2c:81:f2:ca:3d:3b:c4: 56:07:1f:cc:ff:71:55:40:56:bc:c7:32:84:6e:cd: bb:2f:e9:65:62:7c:a4:ed:a2:ea:6d:29:a1:ab:05: 31:bc:89:07:45:fc:06:8f:db:9a:f0:9b:49:32:6a: 14:d8:56:91:30:03:da:97:b9:43:c9:41:e6:a3:f8: a0:5c:df:86:d1:9c:7a:be:21:04:3f:11:fb:13:c8: bb:30:6f:d8:de:51:cf:fc:54:eb:c4:c1:79:99:98: e3:70:6d:92:7a:09:6c:09:c3:93:24:11:9b:e5:a5: 69:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6D:8E:16:63:58:8A:C7:3B:EE:38:BE:9B:9A:45:6A:7E:97:E8:A1:50 X509v3 Authority Key Identifier: keyid:30:C4:5F:C3:14:71:02:82:4F:9D:2D:54:77:66:A8:09:AE:AF:24:5A X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MMRfwxRxAoJPnS1Ud2aoCa6vJFo.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/22ad4c-0b05-474d-919f-3b540a6bc3dc/1/bY4WY1iKxzvuOL6bmkVqfpfooVA.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/22ad4c-0b05-474d-919f-3b540a6bc3dc/1/MMRfwxRxAoJPnS1Ud2aoCa6vJFo.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 176.115.0.0/19 IPv6: 2001:678:258::/48 Signature Algorithm: sha256WithRSAEncryption 1d:79:83:53:16:36:64:b3:01:89:ec:93:54:73:3d:bf:89:40: fc:0f:86:4c:ec:c3:55:70:98:87:c4:a3:a3:6c:10:bc:40:bd: 77:2e:8f:c4:91:e3:91:ac:e4:47:e1:dd:8f:79:58:db:eb:ec: 91:cc:30:1d:1d:9a:db:33:05:9e:83:33:e4:51:16:e6:a0:40: 3e:fc:b1:20:0e:8e:5d:2f:f4:95:4f:39:e2:f3:5b:f8:af:72: aa:f7:2b:16:fd:6c:d9:1a:03:53:99:cb:03:84:06:fb:04:77: 1f:e8:5d:ea:d3:79:cd:7c:e8:5e:60:5b:5e:5b:ce:ef:d8:35: de:7f:98:a1:eb:c0:26:57:d4:6c:20:da:2c:c9:02:b0:9d:bd: ad:ef:a6:4a:a9:7a:e0:fa:ef:d0:b2:a6:5a:67:3f:98:b5:f2: 25:79:b3:b2:db:93:cc:46:1f:ef:d6:1b:d7:5e:54:ff:f5:f5: 65:05:53:5c:ba:a6:a1:10:76:d6:8f:59:41:c3:12:49:a4:76: ca:79:07:2b:ed:eb:ec:f6:17:fa:bd:20:91:a7:35:f2:7d:8e: ff:a0:15:18:e0:02:d1:b9:23:37:da:f3:1f:cc:c9:53:11:2a: 0b:bb:a6:80:85:a2:76:7c:2a:d5:bb:00:76:81:94:5c:9f:65: 21:0c:da:98 -----BEGIN CERTIFICATE----- MIIFDjCCA/agAwIBAgISAZt266MVzTbdUeSARKyVv2+VMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDMwYzQ1ZmMzMTQ3MTAyODI0ZjlkMmQ1NDc3NjZhODA5YWVh ZjI0NWEwHhcNMjYwMTAxMDAxODMyWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg2ZDhlMTY2MzU4OGFjNzNiZWUzOGJlOWI5YTQ1NmE3ZTk3ZThhMTUwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA2v8xP3MK5+klxcjlVnz8XS9QbY/k TgysnySazzozbsB8iEA7RpdC3kPMwAWVc0DWHIAGUnqvgjayymYzB0AbgnFGVtQB pcqL8k+mWSchkG3bLrs1AMc5INykt0XVft5uWexX1CF4e0wSJkXCB+rPD1+77/gG LDB5/Q0xlOp8+uvo1kzX0+EBX9y+3H+RPyyB8so9O8RWBx/M/3FVQFa8xzKEbs27 L+llYnyk7aLqbSmhqwUxvIkHRfwGj9ua8JtJMmoU2FaRMAPal7lDyUHmo/igXN+G 0Zx6viEEPxH7E8i7MG/Y3lHP/FTrxMF5mZjjcG2SeglsCcOTJBGb5aVpowIDAQAB o4ICGjCCAhYwHQYDVR0OBBYEFG2OFmNYisc77ji+m5pFan6X6KFQMB8GA1UdIwQY MBaAFDDEX8MUcQKCT50tVHdmqAmuryRaMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvTU1SZnd4UnhBb0pQblMxVWQyYW9DYTZ2SkZvLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hMy8yMmFkNGMtMGIwNS00NzRkLTkxOWYt M2I1NDBhNmJjM2RjLzEvYlk0V1kxaUt4enZ1T0w2Ym1rVnFmcGZvb1ZBLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9hMy8yMmFkNGMtMGIwNS00NzRkLTkxOWYtM2I1NDBhNmJjM2Rj LzEvTU1SZnd4UnhBb0pQblMxVWQyYW9DYTZ2SkZvLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMDAGCCsGAQUFBwEHAQH/BCEwHzAMBAIAATAGAwQFsHMAMA8E AgACMAkDBwAgAQZ4AlgwDQYJKoZIhvcNAQELBQADggEBAB15g1MWNmSzAYnsk1Rz Pb+JQPwPhkzsw1VwmIfEo6NsELxAvXcuj8SR45Gs5Efh3Y95WNvr7JHMMB0dmtsz BZ6DM+RRFuagQD78sSAOjl0v9JVPOeLzW/ivcqr3Kxb9bNkaA1OZywOEBvsEdx/o XerTec186F5gW15bzu/YNd5/mKHrwCZX1Gwg2izJArCdva3vpkqpeuD679Cyplpn P5i18iV5s7Lbk8xGH+/WG9deVP/19WUFU1y6pqEQdtaPWUHDEkmkdsp5Byvt6+z2 F/q9IJGnNfJ9jv+gFRjgAtG5Izfa8x/MyVMRKgu7poCFonZ8KtW7AHaBlFyfZSEM 2pg= -----END CERTIFICATE-----Generated at Mon Feb 9 22:15:58 2026 by rpki-client