This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/aa/059975-ef90-421b-8af3-3814c57fe9bb/1/y5NcApjS5_rDCgexUqkW-sOr7LA.roa File: y5NcApjS5_rDCgexUqkW-sOr7LA.roa (raw, json) Hash identifier: iNlwoFrzX2UsLRpZnY8/tJMxzCRcasSdqgo0ouKBIzM= Subject key identifier: CB:93:5C:02:98:D2:E7:FA:C3:0A:07:B1:52:A9:16:FA:C3:AB:EC:B0 Certificate issuer: /CN=efe691427c6e41806f6ceb1e218a7dc6320fdeed Certificate serial: 019B7834B070BBF866D213F22A01DC773E39 Authority key identifier: EF:E6:91:42:7C:6E:41:80:6F:6C:EB:1E:21:8A:7D:C6:32:0F:DE:ED Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/7-aRQnxuQYBvbOseIYp9xjIP3u0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/aa/059975-ef90-421b-8af3-3814c57fe9bb/1/y5NcApjS5_rDCgexUqkW-sOr7LA.roa Signing time: Thu 01 Jan 2026 06:17:57 +0000 ROA not before: Thu 01 Jan 2026 06:17:57 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 51262 IP address blocks: 185.147.8.0/24 maxlen: 24 185.147.9.0/24 maxlen: 24 185.147.10.0/23 maxlen: 23 185.147.10.0/24 maxlen: 24 185.147.11.0/24 maxlen: 24 2a0a:dc00::/32 maxlen: 32 2a0a:dc01::/32 maxlen: 32 2a0a:dc02::/32 maxlen: 32 2a0a:dc03::/32 maxlen: 32 2a0a:dc04::/32 maxlen: 32 2a0a:dc05::/32 maxlen: 32 2a0a:dc06::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/aa/059975-ef90-421b-8af3-3814c57fe9bb/1/7-aRQnxuQYBvbOseIYp9xjIP3u0.crl rsync://rpki.ripe.net/repository/DEFAULT/aa/059975-ef90-421b-8af3-3814c57fe9bb/1/7-aRQnxuQYBvbOseIYp9xjIP3u0.mft rsync://rpki.ripe.net/repository/DEFAULT/7-aRQnxuQYBvbOseIYp9xjIP3u0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 27 Jan 2026 09:00:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:78:34:b0:70:bb:f8:66:d2:13:f2:2a:01:dc:77:3e:39 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=efe691427c6e41806f6ceb1e218a7dc6320fdeed Validity Not Before: Jan 1 06:17:57 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=cb935c0298d2e7fac30a07b152a916fac3abecb0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:8d:46:e1:06:4a:e9:4b:cd:7a:ab:5e:11:12: f2:4d:95:c5:c2:c4:7b:e6:9a:f3:49:b6:a6:5c:4d: 4a:2b:78:e2:9a:d2:a6:4f:b0:6c:e1:b1:91:45:6e: 1f:46:af:c4:41:bf:4e:80:d4:f4:e1:49:6b:31:f4: 8e:94:ee:02:e9:31:5b:31:2c:c1:34:3d:39:03:ff: cb:71:22:9c:57:a8:8a:5d:8f:1f:b8:b2:a2:9f:81: d2:7b:3c:6c:ef:f6:e5:a3:68:7b:cf:f3:5b:84:fa: 44:cc:cb:db:76:33:c7:f1:40:8b:d6:43:cd:68:16: a0:88:81:d5:60:90:58:a8:07:80:1f:aa:d1:b7:b8: 7a:b4:7f:66:f6:cd:be:a7:1f:4a:45:81:7c:6b:00: 95:fc:ff:ca:01:b3:b4:2b:f7:9d:6a:fd:00:85:9b: ae:e2:eb:39:41:d2:e5:31:eb:cc:cd:60:36:ee:a4: 59:5f:88:c3:9c:d7:ee:fe:d0:e7:cc:e5:58:d2:06: 65:eb:2d:1d:21:ad:a3:d7:5a:36:7c:e1:c1:65:c3: f2:3c:26:0c:12:39:68:19:17:a6:4c:6d:02:f2:aa: 0d:66:18:74:90:21:75:f8:b0:df:ac:79:c0:6e:a6: 40:38:35:a7:95:17:c2:b4:ff:78:20:a3:e6:5a:10: cf:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CB:93:5C:02:98:D2:E7:FA:C3:0A:07:B1:52:A9:16:FA:C3:AB:EC:B0 X509v3 Authority Key Identifier: keyid:EF:E6:91:42:7C:6E:41:80:6F:6C:EB:1E:21:8A:7D:C6:32:0F:DE:ED X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/7-aRQnxuQYBvbOseIYp9xjIP3u0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/059975-ef90-421b-8af3-3814c57fe9bb/1/y5NcApjS5_rDCgexUqkW-sOr7LA.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/059975-ef90-421b-8af3-3814c57fe9bb/1/7-aRQnxuQYBvbOseIYp9xjIP3u0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.147.8.0/22 IPv6: 2a0a:dc00::-2a0a:dc06:ffff:ffff:ffff:ffff:ffff:ffff Signature Algorithm: sha256WithRSAEncryption 3d:44:27:e7:de:59:76:f5:3a:4a:5a:8d:16:65:ec:cb:9a:d6: b9:2f:38:ee:bf:40:a9:e4:e7:dd:e0:1d:7f:e3:f5:54:3d:46: d6:85:8e:87:cc:95:31:b4:03:bb:5f:fe:be:b3:46:12:78:f9: 44:39:cc:9d:99:af:d3:ac:1c:d7:15:01:29:87:62:a7:15:90: 08:dc:1c:06:f1:a8:14:67:76:8f:a2:69:d1:52:2a:73:67:34: 6b:73:09:e6:e8:c9:a4:92:eb:82:5c:fb:66:f4:00:95:53:45: f3:0c:f6:80:34:b5:ad:79:52:0e:b8:39:3b:ac:a7:ea:a3:98: be:d8:e5:ef:1d:13:3d:b0:a5:75:d5:e7:01:01:b4:47:bc:65: da:72:1b:e9:f4:fa:3b:27:24:30:4b:82:34:84:1b:f9:0c:52: fa:1a:49:37:84:d9:40:f5:0f:88:d8:0f:e4:32:82:2f:88:a7: 67:41:cf:88:00:2d:aa:c0:5e:69:b2:9e:b0:78:96:fe:f6:23: 98:8b:83:a0:5a:9e:6f:69:66:0d:35:33:2b:54:f1:26:6b:35: 17:65:c2:30:07:4a:82:c9:a7:a4:9c:91:89:bc:2d:19:ba:cd: c8:1f:ae:e6:ec:f1:f3:22:6a:9b:23:74:a0:75:8b:1f:7d:e4: 80:ec:22:58 -----BEGIN CERTIFICATE----- MIIFFDCCA/ygAwIBAgISAZt4NLBwu/hm0hPyKgHcdz45MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGVmZTY5MTQyN2M2ZTQxODA2ZjZjZWIxZTIxOGE3ZGM2MzIw ZmRlZWQwHhcNMjYwMTAxMDYxNzU3WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhjYjkzNWMwMjk4ZDJlN2ZhYzMwYTA3YjE1MmE5MTZmYWMzYWJlY2IwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAx41G4QZK6UvNeqteERLyTZXFwsR7 5przSbamXE1KK3jimtKmT7Bs4bGRRW4fRq/EQb9OgNT04UlrMfSOlO4C6TFbMSzB ND05A//LcSKcV6iKXY8fuLKin4HSezxs7/blo2h7z/NbhPpEzMvbdjPH8UCL1kPN aBagiIHVYJBYqAeAH6rRt7h6tH9m9s2+px9KRYF8awCV/P/KAbO0K/edav0AhZuu 4us5QdLlMevMzWA27qRZX4jDnNfu/tDnzOVY0gZl6y0dIa2j11o2fOHBZcPyPCYM EjloGRemTG0C8qoNZhh0kCF1+LDfrHnAbqZAODWnlRfCtP94IKPmWhDP/wIDAQAB o4ICIDCCAhwwHQYDVR0OBBYEFMuTXAKY0uf6wwoHsVKpFvrDq+ywMB8GA1UdIwQY MBaAFO/mkUJ8bkGAb2zrHiGKfcYyD97tMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvNy1hUlFueHVRWUJ2Yk9zZUlZcDl4aklQM3UwLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hYS8wNTk5NzUtZWY5MC00MjFiLThhZjMt MzgxNGM1N2ZlOWJiLzEveTVOY0FwalM1X3JEQ2dleFVxa1ctc09yN0xBLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9hYS8wNTk5NzUtZWY5MC00MjFiLThhZjMtMzgxNGM1N2ZlOWJi LzEvNy1hUlFueHVRWUJ2Yk9zZUlZcDl4aklQM3UwLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMDYGCCsGAQUFBwEHAQH/BCcwJTAMBAIAATAGAwQCuZMIMBUE AgACMA8wDQMEAioK3AMFACoK3AYwDQYJKoZIhvcNAQELBQADggEBAD1EJ+feWXb1 OkpajRZl7Mua1rkvOO6/QKnk593gHX/j9VQ9RtaFjofMlTG0A7tf/r6zRhJ4+UQ5 zJ2Zr9OsHNcVASmHYqcVkAjcHAbxqBRndo+iadFSKnNnNGtzCeboyaSS64Jc+2b0 AJVTRfMM9oA0ta15Ug64OTusp+qjmL7Y5e8dEz2wpXXV5wEBtEe8ZdpyG+n0+jsn JDBLgjSEG/kMUvoaSTeE2UD1D4jYD+Qygi+Ip2dBz4gALarAXmmynrB4lv72I5iL g6Banm9pZg01MytU8SZrNRdlwjAHSoLJp6SckYm8LRm6zcgfrubs8fMiapsjdKB1 ix995IDsIlg= -----END CERTIFICATE-----Generated at Mon Jan 26 18:19:24 2026 by rpki-client