This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c9/2d8e6c-69e2-47cb-bf8d-ef9a584bd113/1/Y8PMGb7a4QUK3mSZ5k3bsYLTUzk.roa File: Y8PMGb7a4QUK3mSZ5k3bsYLTUzk.roa (raw, json) Hash identifier: lJBNAotuivDf99O5O2/2MLFjTpeWzRblk6WWXgUzJz4= Subject key identifier: 63:C3:CC:19:BE:DA:E1:05:0A:DE:64:99:E6:4D:DB:B1:82:D3:53:39 Certificate issuer: /CN=96e5ad53bfc73840c425711c010453571057dc23 Certificate serial: 019BE9A3E25F63F0F9F95373AFE97A2C9C0E Authority key identifier: 96:E5:AD:53:BF:C7:38:40:C4:25:71:1C:01:04:53:57:10:57:DC:23 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/luWtU7_HOEDEJXEcAQRTVxBX3CM.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c9/2d8e6c-69e2-47cb-bf8d-ef9a584bd113/1/Y8PMGb7a4QUK3mSZ5k3bsYLTUzk.roa Signing time: Fri 23 Jan 2026 06:56:30 +0000 ROA not before: Fri 23 Jan 2026 06:56:30 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 215197 IP address blocks: 204.57.220.0/24 maxlen: 24 2001:67c:e40::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c9/2d8e6c-69e2-47cb-bf8d-ef9a584bd113/1/luWtU7_HOEDEJXEcAQRTVxBX3CM.crl rsync://rpki.ripe.net/repository/DEFAULT/c9/2d8e6c-69e2-47cb-bf8d-ef9a584bd113/1/luWtU7_HOEDEJXEcAQRTVxBX3CM.mft rsync://rpki.ripe.net/repository/DEFAULT/luWtU7_HOEDEJXEcAQRTVxBX3CM.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 21:00:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:e9:a3:e2:5f:63:f0:f9:f9:53:73:af:e9:7a:2c:9c:0e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=96e5ad53bfc73840c425711c010453571057dc23 Validity Not Before: Jan 23 06:56:30 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=63c3cc19bedae1050ade6499e64ddbb182d35339 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:f8:4b:48:f9:28:ad:25:f9:0f:b6:5b:65:b0: 16:e6:48:f2:bc:34:d6:ad:ae:8a:dc:9b:fb:b7:19: b6:8d:9a:71:a4:81:85:be:72:70:0c:a6:05:c4:a6: a4:50:b6:c8:f8:de:0c:f6:1a:3c:8c:2e:af:89:53: bf:31:18:9f:b0:10:a3:e0:6c:4b:2e:dc:62:e1:1f: 7d:ee:fd:06:9c:5f:72:be:c6:51:57:f0:77:b6:bf: 05:b1:b7:ac:f6:c5:a8:18:64:4c:40:f0:83:10:45: 7e:58:bb:24:f0:85:90:9c:82:4e:f1:e1:39:31:c0: a1:37:99:95:fd:22:20:4f:3f:f6:c9:90:38:31:92: ae:85:37:dd:09:43:ad:fc:76:16:cc:0f:e6:e5:e0: 86:c9:c1:f9:26:5b:31:41:1e:28:48:13:f2:36:60: b9:ec:2f:2c:d1:b5:7c:f6:3c:68:b9:e7:88:5e:2f: b1:e1:22:36:ad:06:4f:76:6f:6e:49:3d:f4:39:9d: e2:9f:5f:31:53:e0:da:30:ea:8c:f6:03:75:13:48: 15:02:da:b4:55:69:53:f1:7a:e1:8f:e1:aa:1f:a3: b6:03:fe:b7:2c:f7:bd:77:e2:fb:d1:73:8a:d9:15: 7c:13:bb:65:e9:f4:c8:67:24:2e:2b:a7:18:1c:c7: 1f:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 63:C3:CC:19:BE:DA:E1:05:0A:DE:64:99:E6:4D:DB:B1:82:D3:53:39 X509v3 Authority Key Identifier: keyid:96:E5:AD:53:BF:C7:38:40:C4:25:71:1C:01:04:53:57:10:57:DC:23 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/luWtU7_HOEDEJXEcAQRTVxBX3CM.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c9/2d8e6c-69e2-47cb-bf8d-ef9a584bd113/1/Y8PMGb7a4QUK3mSZ5k3bsYLTUzk.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/c9/2d8e6c-69e2-47cb-bf8d-ef9a584bd113/1/luWtU7_HOEDEJXEcAQRTVxBX3CM.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 204.57.220.0/24 IPv6: 2001:67c:e40::/48 Signature Algorithm: sha256WithRSAEncryption 00:9b:64:c2:39:3c:8c:12:44:7a:5b:72:19:6c:44:59:6f:ae: d2:0d:1e:0a:62:1b:bc:65:ba:ec:32:c2:06:ad:c2:51:a6:6b: da:8a:ea:2d:39:a3:61:e0:d4:23:93:ef:f1:35:9c:24:b3:64: 2e:30:75:a3:4f:26:40:d2:d4:17:f4:ce:35:7e:75:05:e4:df: 41:82:7d:5d:c8:ab:94:ff:d0:d3:56:f7:73:87:62:e4:ed:18: 83:8c:92:2f:da:6b:90:73:b2:ab:32:e2:c7:e1:4e:0f:76:11: 0d:2c:15:b0:35:f2:43:d2:48:1a:93:37:a8:1b:eb:35:e6:c5: 42:a4:ab:43:b0:5d:02:bd:ef:d8:5e:ad:a6:b5:73:74:80:b6: e4:0c:82:70:8e:13:77:aa:04:31:b4:a7:a7:24:cf:23:d8:f4: ca:c7:84:eb:af:7e:80:23:20:b2:5a:1f:d1:7d:aa:f9:f8:c4: 2a:35:35:e5:59:9b:87:02:b6:f7:a0:86:f8:58:b6:c4:e4:3b: f3:ec:38:f5:13:c0:f8:2d:fe:8f:76:06:e2:29:5e:ef:6e:ec: d5:4c:2e:b4:22:0d:18:03:c8:2f:3a:36:f5:d7:bb:ab:19:19: cb:be:13:86:52:55:0b:40:79:10:aa:a0:ea:0d:31:2d:28:95: 9c:c1:71:81 -----BEGIN CERTIFICATE----- MIIFDjCCA/agAwIBAgISAZvpo+JfY/D5+VNzr+l6LJwOMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDk2ZTVhZDUzYmZjNzM4NDBjNDI1NzExYzAxMDQ1MzU3MTA1 N2RjMjMwHhcNMjYwMTIzMDY1NjMwWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg2M2MzY2MxOWJlZGFlMTA1MGFkZTY0OTllNjRkZGJiMTgyZDM1MzM5MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAovhLSPkorSX5D7ZbZbAW5kjyvDTW ra6K3Jv7txm2jZpxpIGFvnJwDKYFxKakULbI+N4M9ho8jC6viVO/MRifsBCj4GxL Ltxi4R997v0GnF9yvsZRV/B3tr8Fsbes9sWoGGRMQPCDEEV+WLsk8IWQnIJO8eE5 McChN5mV/SIgTz/2yZA4MZKuhTfdCUOt/HYWzA/m5eCGycH5JlsxQR4oSBPyNmC5 7C8s0bV89jxoueeIXi+x4SI2rQZPdm9uST30OZ3in18xU+DaMOqM9gN1E0gVAtq0 VWlT8Xrhj+GqH6O2A/63LPe9d+L70XOK2RV8E7tl6fTIZyQuK6cYHMcfHQIDAQAB o4ICGjCCAhYwHQYDVR0OBBYEFGPDzBm+2uEFCt5kmeZN27GC01M5MB8GA1UdIwQY MBaAFJblrVO/xzhAxCVxHAEEU1cQV9wjMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvbHVXdFU3X0hPRURFSlhFY0FRUlRWeEJYM0NNLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jOS8yZDhlNmMtNjllMi00N2NiLWJmOGQt ZWY5YTU4NGJkMTEzLzEvWThQTUdiN2E0UVVLM21TWjVrM2JzWUxUVXprLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9jOS8yZDhlNmMtNjllMi00N2NiLWJmOGQtZWY5YTU4NGJkMTEz LzEvbHVXdFU3X0hPRURFSlhFY0FRUlRWeEJYM0NNLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMDAGCCsGAQUFBwEHAQH/BCEwHzAMBAIAATAGAwQAzDncMA8E AgACMAkDBwAgAQZ8DkAwDQYJKoZIhvcNAQELBQADggEBAACbZMI5PIwSRHpbchls RFlvrtINHgpiG7xluuwywgatwlGma9qK6i05o2Hg1COT7/E1nCSzZC4wdaNPJkDS 1Bf0zjV+dQXk30GCfV3Iq5T/0NNW93OHYuTtGIOMki/aa5Bzsqsy4sfhTg92EQ0s FbA18kPSSBqTN6gb6zXmxUKkq0OwXQK979heraa1c3SAtuQMgnCOE3eqBDG0p6ck zyPY9MrHhOuvfoAjILJaH9F9qvn4xCo1NeVZm4cCtveghvhYtsTkO/PsOPUTwPgt /o92BuIpXu9u7NVMLrQiDRgDyC86NvXXu6sZGcu+E4ZSVQtAeRCqoOoNMS0olZzB cYE= -----END CERTIFICATE-----Generated at Tue Feb 10 03:06:07 2026 by rpki-client