This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ce/487c15-6f6f-407f-949f-a8e4e71bee51/1/yLjJ3nLSiELitR79aZqorJ0E2nc.roa File: yLjJ3nLSiELitR79aZqorJ0E2nc.roa (raw, json) Hash identifier: xtAiyE7KLrMeKdwMrZXmwAda9WUSSp0xD353CtNzkqA= Subject key identifier: C8:B8:C9:DE:72:D2:88:42:E2:B5:1E:FD:69:9A:A8:AC:9D:04:DA:77 Certificate issuer: /CN=42c4c90ed16aa20e49178420bfc84a883c12ac68 Certificate serial: 019B76EB779BFFDD4E26EAE8A5193E5A58EF Authority key identifier: 42:C4:C9:0E:D1:6A:A2:0E:49:17:84:20:BF:C8:4A:88:3C:12:AC:68 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QsTJDtFqog5JF4Qgv8hKiDwSrGg.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ce/487c15-6f6f-407f-949f-a8e4e71bee51/1/yLjJ3nLSiELitR79aZqorJ0E2nc.roa Signing time: Thu 01 Jan 2026 00:18:21 +0000 ROA not before: Thu 01 Jan 2026 00:18:21 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 9121 IP address blocks: 185.206.71.0/24 maxlen: 24 194.146.156.0/24 maxlen: 24 194.146.157.0/24 maxlen: 24 194.146.158.0/24 maxlen: 24 194.146.159.0/24 maxlen: 24 212.108.128.0/24 maxlen: 24 212.108.129.0/24 maxlen: 24 212.108.130.0/24 maxlen: 24 212.108.131.0/24 maxlen: 24 212.108.132.0/24 maxlen: 24 212.108.133.0/24 maxlen: 24 212.108.134.0/24 maxlen: 24 212.108.135.0/24 maxlen: 24 212.108.136.0/24 maxlen: 24 212.108.137.0/24 maxlen: 24 212.108.138.0/24 maxlen: 24 212.108.139.0/24 maxlen: 24 212.108.140.0/24 maxlen: 24 212.108.141.0/24 maxlen: 24 212.108.142.0/24 maxlen: 24 212.108.143.0/24 maxlen: 24 212.108.144.0/24 maxlen: 24 212.108.145.0/24 maxlen: 24 212.108.146.0/24 maxlen: 24 212.108.147.0/24 maxlen: 24 212.108.148.0/24 maxlen: 24 212.108.149.0/24 maxlen: 24 212.108.150.0/24 maxlen: 24 212.108.151.0/24 maxlen: 24 212.108.152.0/24 maxlen: 24 212.108.153.0/24 maxlen: 24 212.108.154.0/24 maxlen: 24 212.108.155.0/24 maxlen: 24 212.108.156.0/24 maxlen: 24 212.108.157.0/24 maxlen: 24 212.108.158.0/24 maxlen: 24 212.108.159.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ce/487c15-6f6f-407f-949f-a8e4e71bee51/1/QsTJDtFqog5JF4Qgv8hKiDwSrGg.crl rsync://rpki.ripe.net/repository/DEFAULT/ce/487c15-6f6f-407f-949f-a8e4e71bee51/1/QsTJDtFqog5JF4Qgv8hKiDwSrGg.mft rsync://rpki.ripe.net/repository/DEFAULT/QsTJDtFqog5JF4Qgv8hKiDwSrGg.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 22 Jan 2026 06:01:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:76:eb:77:9b:ff:dd:4e:26:ea:e8:a5:19:3e:5a:58:ef Signature Algorithm: sha256WithRSAEncryption Issuer: CN=42c4c90ed16aa20e49178420bfc84a883c12ac68 Validity Not Before: Jan 1 00:18:21 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=c8b8c9de72d28842e2b51efd699aa8ac9d04da77 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:9b:b2:c8:29:1f:b0:cf:ad:4b:42:7d:4d:7b: cd:57:62:20:38:f0:ac:d2:17:ec:7f:9d:3d:fc:3b: fd:cc:68:e3:87:15:40:bd:a0:46:9e:cf:61:9f:8c: 54:06:84:82:99:45:17:8a:e3:fe:4a:d1:83:d9:02: c2:cc:5a:1d:7d:fd:4a:97:c2:c2:d5:50:5a:24:a4: a9:79:07:ad:59:d4:0e:0b:7e:36:3d:82:cc:4f:31: 17:90:17:99:8e:8a:c5:c1:d5:6f:09:e0:10:14:c4: 21:ce:e2:1a:18:d1:fa:a1:43:eb:f6:ac:4e:26:4d: 1e:64:d3:eb:73:65:e6:b7:18:59:8e:88:6f:9a:26: 19:df:8c:50:4e:d1:8e:1b:5f:41:1f:23:c9:17:72: e1:91:25:a6:79:17:70:e3:ac:33:18:ab:15:63:5d: 3d:46:c0:9c:ce:e3:54:d9:aa:59:58:68:2c:f7:d0: dd:46:2a:44:60:20:fb:74:8a:bf:98:ab:81:48:04: 1c:88:1c:63:8a:a0:01:b0:ee:03:fe:68:6a:64:1e: 22:3c:2c:19:54:65:df:72:5c:66:ce:7f:c1:4e:de: 21:4a:e5:97:e6:39:20:01:78:6f:02:85:62:5f:9b: 49:f6:cf:2c:59:73:af:eb:ce:82:63:3a:9a:b1:4f: 39:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C8:B8:C9:DE:72:D2:88:42:E2:B5:1E:FD:69:9A:A8:AC:9D:04:DA:77 X509v3 Authority Key Identifier: keyid:42:C4:C9:0E:D1:6A:A2:0E:49:17:84:20:BF:C8:4A:88:3C:12:AC:68 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QsTJDtFqog5JF4Qgv8hKiDwSrGg.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ce/487c15-6f6f-407f-949f-a8e4e71bee51/1/yLjJ3nLSiELitR79aZqorJ0E2nc.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/ce/487c15-6f6f-407f-949f-a8e4e71bee51/1/QsTJDtFqog5JF4Qgv8hKiDwSrGg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.206.71.0/24 194.146.156.0/22 212.108.128.0/19 Signature Algorithm: sha256WithRSAEncryption 40:08:21:2f:47:33:a1:04:24:7f:90:dd:36:ac:6a:f5:35:21: 7e:df:de:22:de:51:fc:c9:25:17:ac:6d:af:b1:76:86:1e:c8: 5f:e8:e2:b2:a3:14:95:4e:46:c1:40:b4:1a:aa:96:6f:34:8a: 15:55:97:42:89:de:1a:3a:db:9b:34:8d:af:a6:da:77:f0:cc: a2:e2:87:c7:91:77:bb:6f:b3:f3:42:74:5a:55:c6:a6:ca:8f: 8c:01:4b:ff:83:de:8b:62:b1:a7:c1:b0:cf:0c:3e:63:2a:b6: 11:b3:e3:78:78:4d:13:5c:7b:ef:6f:48:d0:4f:63:75:96:99: 39:53:e2:4b:5d:67:95:5a:cd:96:6a:3d:df:1b:b5:8c:fa:b7: 8d:94:ec:60:a3:5f:4c:ee:89:6a:a0:d3:d2:a4:c2:44:be:31: 15:b5:cc:54:4f:a4:b4:d2:f5:52:49:cc:45:96:7c:3e:53:14: 1d:22:80:2f:e8:a6:26:a1:88:09:6f:47:b6:72:b9:1e:d0:b0: 53:6e:b1:d1:ed:34:78:58:32:65:2a:af:b7:00:81:79:e8:4e: ea:17:c7:bc:8c:a0:d7:79:b1:ba:32:3a:8b:a9:7f:cb:78:f8: 2b:d6:dd:9a:44:32:17:9f:a5:dc:ba:cc:59:41:dc:02:11:26: 12:1e:2e:f7 -----BEGIN CERTIFICATE----- MIIFCTCCA/GgAwIBAgISAZt263eb/91OJuropRk+WljvMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDQyYzRjOTBlZDE2YWEyMGU0OTE3ODQyMGJmYzg0YTg4M2Mx MmFjNjgwHhcNMjYwMTAxMDAxODIxWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhjOGI4YzlkZTcyZDI4ODQyZTJiNTFlZmQ2OTlhYThhYzlkMDRkYTc3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAppuyyCkfsM+tS0J9TXvNV2IgOPCs 0hfsf509/Dv9zGjjhxVAvaBGns9hn4xUBoSCmUUXiuP+StGD2QLCzFodff1Kl8LC 1VBaJKSpeQetWdQOC342PYLMTzEXkBeZjorFwdVvCeAQFMQhzuIaGNH6oUPr9qxO Jk0eZNPrc2XmtxhZjohvmiYZ34xQTtGOG19BHyPJF3LhkSWmeRdw46wzGKsVY109 RsCczuNU2apZWGgs99DdRipEYCD7dIq/mKuBSAQciBxjiqABsO4D/mhqZB4iPCwZ VGXfclxmzn/BTt4hSuWX5jkgAXhvAoViX5tJ9s8sWXOv686CYzqasU85YQIDAQAB o4ICFTCCAhEwHQYDVR0OBBYEFMi4yd5y0ohC4rUe/WmaqKydBNp3MB8GA1UdIwQY MBaAFELEyQ7RaqIOSReEIL/ISog8EqxoMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvUXNUSkR0RnFvZzVKRjRRZ3Y4aEtpRHdTckdnLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jZS80ODdjMTUtNmY2Zi00MDdmLTk0OWYt YThlNGU3MWJlZTUxLzEveUxqSjNuTFNpRUxpdFI3OWFacW9ySjBFMm5jLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9jZS80ODdjMTUtNmY2Zi00MDdmLTk0OWYtYThlNGU3MWJlZTUx LzEvUXNUSkR0RnFvZzVKRjRRZ3Y4aEtpRHdTckdnLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCsGCCsGAQUFBwEHAQH/BBwwGjAYBAIAATASAwQAuc5HAwQC wpKcAwQF1GyAMA0GCSqGSIb3DQEBCwUAA4IBAQBACCEvRzOhBCR/kN02rGr1NSF+ 394i3lH8ySUXrG2vsXaGHshf6OKyoxSVTkbBQLQaqpZvNIoVVZdCid4aOtubNI2v ptp38Myi4ofHkXe7b7PzQnRaVcamyo+MAUv/g96LYrGnwbDPDD5jKrYRs+N4eE0T XHvvb0jQT2N1lpk5U+JLXWeVWs2Waj3fG7WM+reNlOxgo19M7olqoNPSpMJEvjEV tcxUT6S00vVSScxFlnw+UxQdIoAv6KYmoYgJb0e2crke0LBTbrHR7TR4WDJlKq+3 AIF56E7qF8e8jKDXebG6MjqLqX/LePgr1t2aRDIXn6XcusxZQdwCESYSHi73 -----END CERTIFICATE-----Generated at Wed Jan 21 13:17:13 2026 by rpki-client