This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ba/060859-7707-412a-9810-dbb2931a0f64/1/yE7elJQcwCE2lQSAbWletTxQ5Qo.roa File: yE7elJQcwCE2lQSAbWletTxQ5Qo.roa (raw, json) Hash identifier: tKAft8gW1YvZxBPlZ5+27HK7UOl/JK2+eMjDk7cQl10= Subject key identifier: C8:4E:DE:94:94:1C:C0:21:36:95:04:80:6D:69:5E:B5:3C:50:E5:0A Certificate issuer: /CN=9d239c08ead94bb04fc3e6b4a65e6e1c7dcf38f4 Certificate serial: 019B77C6FC49649AE52F92AE6D7537A0D299 Authority key identifier: 9D:23:9C:08:EA:D9:4B:B0:4F:C3:E6:B4:A6:5E:6E:1C:7D:CF:38:F4 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nSOcCOrZS7BPw-a0pl5uHH3POPQ.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ba/060859-7707-412a-9810-dbb2931a0f64/1/yE7elJQcwCE2lQSAbWletTxQ5Qo.roa Signing time: Thu 01 Jan 2026 04:18:08 +0000 ROA not before: Thu 01 Jan 2026 04:18:08 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 202918 IP address blocks: 185.150.156.0/22 maxlen: 24 185.150.156.0/24 maxlen: 24 185.150.157.0/24 maxlen: 24 185.150.158.0/24 maxlen: 24 185.150.159.0/24 maxlen: 24 185.246.28.0/23 maxlen: 24 2a07:71c0::/29 maxlen: 48 2a0d:7380::/29 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ba/060859-7707-412a-9810-dbb2931a0f64/1/nSOcCOrZS7BPw-a0pl5uHH3POPQ.crl rsync://rpki.ripe.net/repository/DEFAULT/ba/060859-7707-412a-9810-dbb2931a0f64/1/nSOcCOrZS7BPw-a0pl5uHH3POPQ.mft rsync://rpki.ripe.net/repository/DEFAULT/nSOcCOrZS7BPw-a0pl5uHH3POPQ.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 13:00:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:77:c6:fc:49:64:9a:e5:2f:92:ae:6d:75:37:a0:d2:99 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9d239c08ead94bb04fc3e6b4a65e6e1c7dcf38f4 Validity Not Before: Jan 1 04:18:08 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=c84ede94941cc021369504806d695eb53c50e50a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:94:26:3f:3b:0e:89:6f:d8:b4:e7:d8:c7:d8:5c: 67:8d:aa:10:13:da:6f:d8:68:c4:cd:50:a8:78:79: 4f:da:26:0e:4e:1d:16:b5:bf:4a:9d:5a:80:3e:a7: fe:ae:61:9f:50:45:77:40:a8:17:7d:75:80:51:95: 31:a5:03:fa:14:dd:fd:74:c6:eb:18:5c:97:ca:7b: dc:84:66:41:27:56:9c:d3:e4:15:bd:ae:3b:56:74: 85:df:84:95:d1:f2:b7:e3:ee:42:5d:7b:77:05:0a: 85:7a:ec:a2:c4:60:1e:a3:dc:d4:cd:20:5f:d7:4d: aa:3b:ec:b4:93:a7:8e:46:54:8e:07:22:3a:4f:dc: 9c:b9:97:46:fe:4d:32:ce:91:18:35:ef:00:f5:e8: 62:2e:f7:4c:78:48:9d:6d:24:a4:e5:7d:28:28:d1: e5:a8:e0:e1:e3:2f:dd:7a:f9:58:20:fc:38:87:e5: 29:ae:f3:f6:e7:1a:66:f5:ad:81:8f:18:20:30:a7: 4e:6f:16:1a:18:41:74:0f:49:6d:80:1a:93:37:4a: db:0d:bd:fb:80:fb:35:2e:9a:56:00:91:d0:61:59: ab:b5:21:cc:38:08:48:6f:3b:62:b0:11:ee:ef:c7: c6:1c:f1:06:af:30:1d:46:d4:99:5d:10:ed:02:db: 77:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C8:4E:DE:94:94:1C:C0:21:36:95:04:80:6D:69:5E:B5:3C:50:E5:0A X509v3 Authority Key Identifier: keyid:9D:23:9C:08:EA:D9:4B:B0:4F:C3:E6:B4:A6:5E:6E:1C:7D:CF:38:F4 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nSOcCOrZS7BPw-a0pl5uHH3POPQ.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ba/060859-7707-412a-9810-dbb2931a0f64/1/yE7elJQcwCE2lQSAbWletTxQ5Qo.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/ba/060859-7707-412a-9810-dbb2931a0f64/1/nSOcCOrZS7BPw-a0pl5uHH3POPQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.150.156.0/22 185.246.28.0/23 IPv6: 2a07:71c0::/29 2a0d:7380::/29 Signature Algorithm: sha256WithRSAEncryption 2e:a4:ed:23:03:a0:fe:74:73:52:a7:8e:63:c0:f8:6b:b4:4d: ea:3b:fc:93:66:45:77:e6:31:aa:49:cb:31:5e:18:b9:0d:52: dc:e3:64:d6:0e:a4:48:53:0a:91:64:ce:be:64:ef:60:99:a0: 43:19:6e:fb:f8:0d:9f:61:f1:f8:84:41:7e:57:bc:f7:70:2e: 9b:54:9c:4e:85:f5:b8:54:d6:11:e2:29:69:4d:73:c4:07:3c: 1d:fa:27:8d:8e:42:8a:b9:5e:52:66:c0:f3:2b:80:f9:b9:af: 29:e3:46:e2:65:b2:ad:1f:46:38:6d:b0:b9:f5:fd:e6:47:13: 6e:36:70:81:64:79:99:3b:3b:97:63:fd:42:20:c2:c9:de:4d: d6:d3:15:24:2d:bb:a9:d0:b1:a0:66:69:8d:00:60:2f:ca:7c: a6:a5:c8:b1:95:34:0a:48:a9:b9:bc:a7:c8:50:6d:b2:ef:93: ce:f2:e2:dd:19:2e:29:35:29:fc:b6:48:73:b9:4a:ca:96:f9: c8:00:fa:36:62:e5:32:e2:5c:de:1e:5d:04:fe:3a:f2:d2:29: 09:36:db:db:18:3b:e0:58:ab:ab:51:68:22:60:0d:a3:b5:c7: f0:f5:eb:b7:25:a2:d3:1c:56:38:e6:ba:86:cf:27:81:21:f9: 75:28:be:b1 -----BEGIN CERTIFICATE----- MIIFGTCCBAGgAwIBAgISAZt3xvxJZJrlL5KubXU3oNKZMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDlkMjM5YzA4ZWFkOTRiYjA0ZmMzZTZiNGE2NWU2ZTFjN2Rj ZjM4ZjQwHhcNMjYwMTAxMDQxODA4WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhjODRlZGU5NDk0MWNjMDIxMzY5NTA0ODA2ZDY5NWViNTNjNTBlNTBhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAlCY/Ow6Jb9i059jH2FxnjaoQE9pv 2GjEzVCoeHlP2iYOTh0Wtb9KnVqAPqf+rmGfUEV3QKgXfXWAUZUxpQP6FN39dMbr GFyXynvchGZBJ1ac0+QVva47VnSF34SV0fK34+5CXXt3BQqFeuyixGAeo9zUzSBf 102qO+y0k6eORlSOByI6T9ycuZdG/k0yzpEYNe8A9ehiLvdMeEidbSSk5X0oKNHl qODh4y/devlYIPw4h+UprvP25xpm9a2BjxggMKdObxYaGEF0D0ltgBqTN0rbDb37 gPs1LppWAJHQYVmrtSHMOAhIbztisBHu78fGHPEGrzAdRtSZXRDtAtt3XQIDAQAB o4ICJTCCAiEwHQYDVR0OBBYEFMhO3pSUHMAhNpUEgG1pXrU8UOUKMB8GA1UdIwQY MBaAFJ0jnAjq2UuwT8PmtKZebhx9zzj0MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvblNPY0NPclpTN0JQdy1hMHBsNXVISDNQT1BRLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iYS8wNjA4NTktNzcwNy00MTJhLTk4MTAt ZGJiMjkzMWEwZjY0LzEveUU3ZWxKUWN3Q0UybFFTQWJXbGV0VHhRNVFvLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iYS8wNjA4NTktNzcwNy00MTJhLTk4MTAtZGJiMjkzMWEwZjY0 LzEvblNPY0NPclpTN0JQdy1hMHBsNXVISDNQT1BRLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMDsGCCsGAQUFBwEHAQH/BCwwKjASBAIAATAMAwQCuZacAwQB ufYcMBQEAgACMA4DBQMqB3HAAwUDKg1zgDANBgkqhkiG9w0BAQsFAAOCAQEALqTt IwOg/nRzUqeOY8D4a7RN6jv8k2ZFd+YxqknLMV4YuQ1S3ONk1g6kSFMKkWTOvmTv YJmgQxlu+/gNn2Hx+IRBfle893Aum1ScToX1uFTWEeIpaU1zxAc8HfonjY5Cirle UmbA8yuA+bmvKeNG4mWyrR9GOG2wufX95kcTbjZwgWR5mTs7l2P9QiDCyd5N1tMV JC27qdCxoGZpjQBgL8p8pqXIsZU0CkipubynyFBtsu+TzvLi3RkuKTUp/LZIc7lK ypb5yAD6NmLlMuJc3h5dBP468tIpCTbb2xg74Firq1FoImANo7XH8PXrtyWi0xxW OOa6hs8ngSH5dSi+sQ== -----END CERTIFICATE-----Generated at Mon Feb 9 22:24:12 2026 by rpki-client