This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bc/33b69d-f4ca-43aa-9780-1d55d5929cec/1/YOiCbjbkGoimIbW3nkdcU24V058.roa File: YOiCbjbkGoimIbW3nkdcU24V058.roa (raw, json) Hash identifier: jiSJ+O2fFYcLK2VQfO+2IbVyopzNGD9QLV+WZmnKJXk= Subject key identifier: 60:E8:82:6E:36:E4:1A:88:A6:21:B5:B7:9E:47:5C:53:6E:15:D3:9F Certificate issuer: /CN=c7ab6b2254e45730aafa45ab51973203614bb6cc Certificate serial: 019B7A5ADE02156EC739F22CE4F0DBEC1D8D Authority key identifier: C7:AB:6B:22:54:E4:57:30:AA:FA:45:AB:51:97:32:03:61:4B:B6:CC Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/x6trIlTkVzCq-kWrUZcyA2FLtsw.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bc/33b69d-f4ca-43aa-9780-1d55d5929cec/1/YOiCbjbkGoimIbW3nkdcU24V058.roa Signing time: Thu 01 Jan 2026 16:18:54 +0000 ROA not before: Thu 01 Jan 2026 16:18:54 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 205118 IP address blocks: 185.229.3.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bc/33b69d-f4ca-43aa-9780-1d55d5929cec/1/x6trIlTkVzCq-kWrUZcyA2FLtsw.crl rsync://rpki.ripe.net/repository/DEFAULT/bc/33b69d-f4ca-43aa-9780-1d55d5929cec/1/x6trIlTkVzCq-kWrUZcyA2FLtsw.mft rsync://rpki.ripe.net/repository/DEFAULT/x6trIlTkVzCq-kWrUZcyA2FLtsw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:01:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7a:5a:de:02:15:6e:c7:39:f2:2c:e4:f0:db:ec:1d:8d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=c7ab6b2254e45730aafa45ab51973203614bb6cc Validity Not Before: Jan 1 16:18:54 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=60e8826e36e41a88a621b5b79e475c536e15d39f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:69:ab:45:2f:8d:4a:2f:46:80:eb:f2:af:86: 0b:98:0e:a0:1a:b2:dc:31:d4:e2:73:69:05:7c:bc: 15:e2:43:96:13:25:d9:54:68:a8:f4:33:ec:c4:83: d4:10:e0:6d:89:3f:fb:44:33:1f:43:70:9a:1a:1b: f7:7b:1f:d1:c8:53:06:03:7d:bb:98:9e:82:a7:24: 01:ca:2f:99:d9:f6:a7:55:33:09:4a:34:bd:9a:fe: 8a:7c:f1:e9:73:11:8a:2e:0e:f7:c9:21:89:bd:1f: 2f:11:2e:c9:1a:d6:79:fb:84:27:36:ee:80:99:f5: cc:17:e5:d3:cf:e4:23:a3:73:05:2a:00:e6:13:90: 55:e8:06:c7:82:ee:ed:6a:5e:0c:fa:14:fc:f6:88: 40:0d:97:a6:07:95:df:20:fb:08:ea:f4:51:3e:78: 99:38:38:70:54:3e:b6:fb:3c:84:5a:f6:ef:61:fc: fb:69:74:72:5b:e9:1b:09:31:fb:e6:94:d8:fb:4b: 5c:b7:c1:ca:0e:d8:b1:5e:d1:76:93:c3:e1:6f:3c: c0:49:d6:de:64:f1:9c:15:73:3e:2e:60:b2:7a:b2: 3f:42:01:1f:ab:21:fd:08:a4:a1:63:96:a3:54:e0: 42:1d:8f:a4:d8:e8:41:41:93:1b:30:ac:d1:5f:83: a7:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 60:E8:82:6E:36:E4:1A:88:A6:21:B5:B7:9E:47:5C:53:6E:15:D3:9F X509v3 Authority Key Identifier: keyid:C7:AB:6B:22:54:E4:57:30:AA:FA:45:AB:51:97:32:03:61:4B:B6:CC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/x6trIlTkVzCq-kWrUZcyA2FLtsw.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/33b69d-f4ca-43aa-9780-1d55d5929cec/1/YOiCbjbkGoimIbW3nkdcU24V058.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/33b69d-f4ca-43aa-9780-1d55d5929cec/1/x6trIlTkVzCq-kWrUZcyA2FLtsw.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.229.3.0/24 Signature Algorithm: sha256WithRSAEncryption 29:59:f0:31:68:8f:8e:11:e9:fd:9e:c9:87:18:fd:ea:21:2b: 50:c5:45:5f:c4:d7:79:d9:75:f5:cd:07:7c:d1:bc:a3:fb:d4: aa:ac:69:d3:8c:f4:74:00:9d:20:a6:62:ca:b3:c5:7c:b2:68: 06:83:8d:12:13:61:d0:95:cf:56:6b:7b:86:93:fa:88:ac:35: 99:fa:c5:b9:e6:5b:1c:98:f5:9a:c5:c5:71:cc:8c:6d:91:40: 8f:ff:03:16:53:3c:aa:89:e7:0f:a2:8c:22:23:ed:fb:1e:9e: 97:ef:b9:3e:f2:4f:5f:c6:02:1a:21:71:81:f3:9e:cf:78:6d: 7a:ec:94:7c:12:ed:32:69:45:81:c2:c7:8d:55:13:c3:5c:ea: d6:d4:b0:df:1c:b8:5a:68:73:d8:1f:66:a6:0a:e3:64:8b:b3: 5d:eb:63:bc:9f:7f:ec:8c:fc:f0:77:87:19:d8:18:ce:f2:26: e2:47:83:62:d4:b1:e8:44:a8:0d:c4:21:99:39:54:9c:01:59: fe:f8:18:5d:d2:85:7b:c5:56:24:5b:8e:45:b0:0f:cc:31:30: 94:3b:2d:e0:6a:70:47:72:46:52:f2:46:e8:24:7b:12:fb:89: 8d:24:3f:cb:8b:b2:e8:7b:d5:1c:20:d6:5f:85:72:4d:08:cc: 2b:86:f9:dd -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt6Wt4CFW7HOfIs5PDb7B2NMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGM3YWI2YjIyNTRlNDU3MzBhYWZhNDVhYjUxOTczMjAzNjE0 YmI2Y2MwHhcNMjYwMTAxMTYxODU0WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg2MGU4ODI2ZTM2ZTQxYTg4YTYyMWI1Yjc5ZTQ3NWM1MzZlMTVkMzlmMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArWmrRS+NSi9GgOvyr4YLmA6gGrLc MdTic2kFfLwV4kOWEyXZVGio9DPsxIPUEOBtiT/7RDMfQ3CaGhv3ex/RyFMGA327 mJ6CpyQByi+Z2fanVTMJSjS9mv6KfPHpcxGKLg73ySGJvR8vES7JGtZ5+4QnNu6A mfXMF+XTz+Qjo3MFKgDmE5BV6AbHgu7tal4M+hT89ohADZemB5XfIPsI6vRRPniZ ODhwVD62+zyEWvbvYfz7aXRyW+kbCTH75pTY+0tct8HKDtixXtF2k8PhbzzASdbe ZPGcFXM+LmCyerI/QgEfqyH9CKShY5ajVOBCHY+k2OhBQZMbMKzRX4On9wIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFGDogm425BqIpiG1t55HXFNuFdOfMB8GA1UdIwQY MBaAFMerayJU5FcwqvpFq1GXMgNhS7bMMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQveDZ0cklsVGtWekNxLWtXclVaY3lBMkZMdHN3LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iYy8zM2I2OWQtZjRjYS00M2FhLTk3ODAt MWQ1NWQ1OTI5Y2VjLzEvWU9pQ2JqYmtHb2ltSWJXM25rZGNVMjRWMDU4LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iYy8zM2I2OWQtZjRjYS00M2FhLTk3ODAtMWQ1NWQ1OTI5Y2Vj LzEveDZ0cklsVGtWekNxLWtXclVaY3lBMkZMdHN3LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAueUDMA0G CSqGSIb3DQEBCwUAA4IBAQApWfAxaI+OEen9nsmHGP3qIStQxUVfxNd52XX1zQd8 0byj+9SqrGnTjPR0AJ0gpmLKs8V8smgGg40SE2HQlc9Wa3uGk/qIrDWZ+sW55lsc mPWaxcVxzIxtkUCP/wMWUzyqiecPoowiI+37Hp6X77k+8k9fxgIaIXGB857PeG16 7JR8Eu0yaUWBwseNVRPDXOrW1LDfHLhaaHPYH2amCuNki7Nd62O8n3/sjPzwd4cZ 2BjO8ibiR4Ni1LHoRKgNxCGZOVScAVn++Bhd0oV7xVYkW45FsA/MMTCUOy3ganBH ckZS8kboJHsS+4mNJD/Li7Loe9UcINZfhXJNCMwrhvnd -----END CERTIFICATE-----Generated at Mon Feb 9 18:43:55 2026 by rpki-client