This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b2/d71269-4b56-4572-a711-d84ecb2505c4/1/Y53-K6eCcM2LGOvi8Fn2PE_O8Hs.roa File: Y53-K6eCcM2LGOvi8Fn2PE_O8Hs.roa (raw, json) Hash identifier: epaNlilaUn33+8n2mw835ikIL/eJJhBznXtCVWydLWA= Subject key identifier: 63:9D:FE:2B:A7:82:70:CD:8B:18:EB:E2:F0:59:F6:3C:4F:CE:F0:7B Certificate issuer: /CN=e541a4c152b5f786d623d85c41465299cdda3389 Certificate serial: 019B7EA699666ED35F6CE788C43786494554 Authority key identifier: E5:41:A4:C1:52:B5:F7:86:D6:23:D8:5C:41:46:52:99:CD:DA:33:89 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5UGkwVK194bWI9hcQUZSmc3aM4k.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b2/d71269-4b56-4572-a711-d84ecb2505c4/1/Y53-K6eCcM2LGOvi8Fn2PE_O8Hs.roa Signing time: Fri 02 Jan 2026 12:20:05 +0000 ROA not before: Fri 02 Jan 2026 12:20:05 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 60955 IP address blocks: 31.172.112.0/20 maxlen: 20 31.172.112.0/23 maxlen: 23 31.172.114.0/24 maxlen: 24 31.172.115.0/24 maxlen: 24 31.172.116.0/22 maxlen: 22 185.22.220.0/22 maxlen: 24 193.192.40.0/23 maxlen: 23 2a04:2200::/29 maxlen: 29 2a04:2200::/32 maxlen: 32 2a04:2201::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b2/d71269-4b56-4572-a711-d84ecb2505c4/1/5UGkwVK194bWI9hcQUZSmc3aM4k.crl rsync://rpki.ripe.net/repository/DEFAULT/b2/d71269-4b56-4572-a711-d84ecb2505c4/1/5UGkwVK194bWI9hcQUZSmc3aM4k.mft rsync://rpki.ripe.net/repository/DEFAULT/5UGkwVK194bWI9hcQUZSmc3aM4k.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 21:05:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7e:a6:99:66:6e:d3:5f:6c:e7:88:c4:37:86:49:45:54 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=e541a4c152b5f786d623d85c41465299cdda3389 Validity Not Before: Jan 2 12:20:05 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=639dfe2ba78270cd8b18ebe2f059f63c4fcef07b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f3:bb:51:07:08:44:29:b4:99:fb:69:63:51:96: d3:2d:83:4c:f7:b4:1f:bf:71:68:70:d6:79:ed:eb: de:71:7f:46:81:7c:0e:0a:da:44:20:c4:e4:8e:cc: 9f:36:e6:60:ec:dd:d4:40:12:ce:81:8a:e5:dd:5d: cb:dc:79:93:60:70:53:ba:53:28:6a:c8:be:38:0e: a3:12:f3:b8:31:ef:69:23:12:fb:7b:b5:fe:ae:ec: 5f:e5:49:02:9a:ba:2d:3a:54:73:47:20:ee:4d:74: 9c:22:b5:d9:9c:a5:7f:3d:88:fc:53:d2:72:38:95: 89:b1:50:68:2b:aa:86:4d:47:bd:88:6b:ee:0d:77: 4b:ea:22:1e:83:33:00:95:66:65:82:5d:e7:2b:c1: 06:af:80:f7:c0:26:98:d0:b8:bf:9a:fc:78:42:a0: a0:99:2d:61:01:89:d5:e3:1c:25:ff:10:ed:42:56: 76:6e:39:0b:7f:c4:f4:5e:6f:b4:eb:93:2c:5c:49: 82:93:35:97:77:9d:6f:25:98:f5:a3:e6:b6:38:12: dd:33:99:bf:8f:65:88:bb:96:89:5a:0a:b7:f7:d8: 8b:c9:61:4a:9e:e3:c1:8f:eb:c8:49:00:45:55:f0: 76:2c:51:c7:3e:c3:b1:40:94:23:8c:f7:d5:25:6d: 84:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 63:9D:FE:2B:A7:82:70:CD:8B:18:EB:E2:F0:59:F6:3C:4F:CE:F0:7B X509v3 Authority Key Identifier: keyid:E5:41:A4:C1:52:B5:F7:86:D6:23:D8:5C:41:46:52:99:CD:DA:33:89 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5UGkwVK194bWI9hcQUZSmc3aM4k.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/d71269-4b56-4572-a711-d84ecb2505c4/1/Y53-K6eCcM2LGOvi8Fn2PE_O8Hs.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/d71269-4b56-4572-a711-d84ecb2505c4/1/5UGkwVK194bWI9hcQUZSmc3aM4k.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 31.172.112.0/20 185.22.220.0/22 193.192.40.0/23 IPv6: 2a04:2200::/29 Signature Algorithm: sha256WithRSAEncryption 9a:cf:02:65:bd:96:9a:5f:90:e1:f4:0e:e1:be:05:5c:f0:5d: 7e:dc:93:db:f2:43:4b:c1:d0:34:ac:8b:aa:69:81:76:5e:ad: e7:66:e4:5b:ff:ed:d6:f4:4d:c7:18:ca:30:ec:a7:b5:2e:0a: d7:c7:e0:26:7d:3c:87:5f:98:00:eb:21:b9:3d:44:e9:32:69: 19:3c:ab:3a:23:ff:cb:fb:8c:ea:a6:ad:c0:0f:4b:48:bb:26: 56:4a:7d:85:7d:8a:9d:1b:7d:93:2c:bb:6e:9c:5e:bf:05:ca: f1:23:52:17:01:3d:30:a9:99:0d:4a:24:6d:d8:73:81:cf:ff: 51:c5:d5:93:67:65:f7:f3:7d:0a:62:61:8b:de:42:eb:5b:bf: a8:c7:c2:54:8e:5e:3a:fe:6d:f5:98:ca:c7:ba:ee:30:85:79: fe:1e:9b:97:2c:b7:42:ce:5d:df:b5:f8:73:a8:72:6c:fa:b3: b4:3f:31:77:bd:02:9e:c3:1d:4c:41:87:4d:82:78:b9:c0:2f: d4:84:d4:8a:14:2e:b0:7d:81:dd:36:44:c9:10:76:75:af:fb: 6e:db:e2:77:69:98:ed:d0:84:37:ad:78:38:2a:7d:be:cf:ee: 50:82:3f:c0:8d:40:fd:54:f7:fe:36:78:72:01:6d:a4:3e:4d: 9c:19:a7:e5 -----BEGIN CERTIFICATE----- MIIFGDCCBACgAwIBAgISAZt+pplmbtNfbOeIxDeGSUVUMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGU1NDFhNGMxNTJiNWY3ODZkNjIzZDg1YzQxNDY1Mjk5Y2Rk YTMzODkwHhcNMjYwMTAyMTIyMDA1WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg2MzlkZmUyYmE3ODI3MGNkOGIxOGViZTJmMDU5ZjYzYzRmY2VmMDdiMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA87tRBwhEKbSZ+2ljUZbTLYNM97Qf v3FocNZ57evecX9GgXwOCtpEIMTkjsyfNuZg7N3UQBLOgYrl3V3L3HmTYHBTulMo asi+OA6jEvO4Me9pIxL7e7X+ruxf5UkCmrotOlRzRyDuTXScIrXZnKV/PYj8U9Jy OJWJsVBoK6qGTUe9iGvuDXdL6iIegzMAlWZlgl3nK8EGr4D3wCaY0Li/mvx4QqCg mS1hAYnV4xwl/xDtQlZ2bjkLf8T0Xm+065MsXEmCkzWXd51vJZj1o+a2OBLdM5m/ j2WIu5aJWgq399iLyWFKnuPBj+vISQBFVfB2LFHHPsOxQJQjjPfVJW2EgwIDAQAB o4ICJDCCAiAwHQYDVR0OBBYEFGOd/iungnDNixjr4vBZ9jxPzvB7MB8GA1UdIwQY MBaAFOVBpMFStfeG1iPYXEFGUpnN2jOJMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvNVVHa3dWSzE5NGJXSTloY1FVWlNtYzNhTTRrLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iMi9kNzEyNjktNGI1Ni00NTcyLWE3MTEt ZDg0ZWNiMjUwNWM0LzEvWTUzLUs2ZUNjTTJMR092aThGbjJQRV9POEhzLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iMi9kNzEyNjktNGI1Ni00NTcyLWE3MTEtZDg0ZWNiMjUwNWM0 LzEvNVVHa3dWSzE5NGJXSTloY1FVWlNtYzNhTTRrLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMDoGCCsGAQUFBwEHAQH/BCswKTAYBAIAATASAwQEH6xwAwQC uRbcAwQBwcAoMA0EAgACMAcDBQMqBCIAMA0GCSqGSIb3DQEBCwUAA4IBAQCazwJl vZaaX5Dh9A7hvgVc8F1+3JPb8kNLwdA0rIuqaYF2Xq3nZuRb/+3W9E3HGMow7Ke1 LgrXx+AmfTyHX5gA6yG5PUTpMmkZPKs6I//L+4zqpq3AD0tIuyZWSn2FfYqdG32T LLtunF6/BcrxI1IXAT0wqZkNSiRt2HOBz/9RxdWTZ2X3830KYmGL3kLrW7+ox8JU jl46/m31mMrHuu4whXn+HpuXLLdCzl3ftfhzqHJs+rO0PzF3vQKewx1MQYdNgni5 wC/UhNSKFC6wfYHdNkTJEHZ1r/tu2+J3aZjt0IQ3rXg4Kn2+z+5Qgj/AjUD9VPf+ NnhyAW2kPk2cGafl -----END CERTIFICATE-----Generated at Tue Feb 10 04:30:58 2026 by rpki-client