This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/aCYPKN0D3Wm1uTWnyyPvMnJPCXw.roa File: aCYPKN0D3Wm1uTWnyyPvMnJPCXw.roa (raw, json) Hash identifier: 4z0tKY/DpvTXM5Ik1S5ycseZtR8/MCfNdEicfwgX0kA= Subject key identifier: 68:26:0F:28:DD:03:DD:69:B5:B9:35:A7:CB:23:EF:32:72:4F:09:7C Certificate issuer: /CN=606784c105085b9d6ad5f73a03b20d9a5c114caf Certificate serial: 019B664A672518AD10BD9DF2528B4BB30451 Authority key identifier: 60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/aCYPKN0D3Wm1uTWnyyPvMnJPCXw.roa Signing time: Sun 28 Dec 2025 18:48:30 +0000 ROA not before: Sun 28 Dec 2025 18:48:30 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 21859 IP address blocks: 185.227.144.0/24 maxlen: 24 194.76.172.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/YGeEwQUIW51q1fc6A7INmlwRTK8.crl rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/YGeEwQUIW51q1fc6A7INmlwRTK8.mft rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 30 Dec 2025 04:00:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:66:4a:67:25:18:ad:10:bd:9d:f2:52:8b:4b:b3:04:51 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=606784c105085b9d6ad5f73a03b20d9a5c114caf Validity Not Before: Dec 28 18:48:30 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=68260f28dd03dd69b5b935a7cb23ef32724f097c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:02:50:81:be:a6:96:25:c2:c4:90:23:b7:8d: a3:4a:92:04:9c:d4:5a:06:4c:e6:81:c9:17:61:9e: df:78:34:8b:a0:75:8b:79:a3:2a:c6:22:3b:04:a3: 7c:ea:d0:a9:32:92:51:3c:47:3c:98:fe:f0:d6:8c: b4:1f:68:f7:a9:f3:9f:c8:b9:4c:20:c9:95:0f:64: 69:28:eb:6f:ce:23:60:71:90:4e:64:3a:1a:5f:26: cf:e6:00:35:99:71:85:81:b6:08:5b:d0:3a:64:37: fc:62:c4:e0:bc:cc:50:45:54:c8:28:e0:66:2d:c1: e8:42:2a:2b:c6:8d:1d:7e:59:e8:c5:80:e1:cd:ea: a0:86:90:d2:30:2a:33:1e:e8:f3:3f:0c:00:9d:5c: cc:8e:84:20:8c:4f:4c:ae:db:ad:85:9b:e8:ef:58: ef:9c:e0:21:bf:a8:93:21:12:f7:01:ac:8f:52:78: b6:4b:91:4d:ce:e7:f2:eb:d4:b3:fa:53:68:5d:c1: 31:ff:b3:3d:6a:8b:91:75:a8:d5:63:53:67:db:70: 6a:5e:a6:e7:cc:c4:f2:57:80:b4:39:e4:be:67:91: 30:a8:7c:ab:a4:a3:16:0c:2a:05:43:a2:04:cf:f2: a3:57:6d:e9:89:dd:b5:9a:e2:35:34:85:5c:18:c9: b3:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 68:26:0F:28:DD:03:DD:69:B5:B9:35:A7:CB:23:EF:32:72:4F:09:7C X509v3 Authority Key Identifier: keyid:60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/aCYPKN0D3Wm1uTWnyyPvMnJPCXw.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/YGeEwQUIW51q1fc6A7INmlwRTK8.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.227.144.0/24 194.76.172.0/24 Signature Algorithm: sha256WithRSAEncryption b5:f6:8f:8b:1c:c6:d9:dd:ca:81:ec:b1:74:a6:d2:a9:60:89: 12:d6:16:b6:bb:15:1a:ca:4d:f0:68:5e:f4:71:02:9f:09:4b: 3b:3a:a8:33:37:67:61:7b:ac:84:20:82:b6:38:e2:9f:6f:04: 38:66:f1:f7:07:fe:6b:32:57:88:77:4b:5d:ab:2d:69:12:7f: ad:46:c3:f6:29:94:09:2d:0a:22:2a:d9:48:af:d4:1e:0a:b4: 40:63:52:f9:97:3d:b9:7a:02:ec:34:05:f8:2b:97:c1:22:53: 81:dc:0b:97:5e:47:43:2d:e4:29:6c:b4:be:31:ac:63:c7:14: c2:b6:1a:a7:d6:27:01:b5:87:4a:0f:80:27:0a:65:8a:2d:32: c1:55:f1:c3:68:a7:31:62:a4:76:32:9b:a2:4b:63:0f:7c:c2: 92:44:76:55:2a:eb:3e:05:8a:04:1c:89:f2:59:12:e0:83:ab: 74:bc:78:ce:c9:d7:8f:f5:6f:54:81:f8:25:ef:6f:52:f1:2d: 1e:e3:a8:84:bf:87:98:fd:ff:86:f7:23:98:70:ff:e7:87:04: a6:8e:ad:ff:90:cc:13:0c:30:10:6b:d3:f8:f5:29:da:56:76: c3:b3:4b:27:16:d4:e9:bd:c8:d7:3c:39:3b:ef:bc:6e:e9:a9: 2c:d2:b1:f1 -----BEGIN CERTIFICATE----- MIIFAzCCA+ugAwIBAgISAZtmSmclGK0QvZ3yUotLswRRMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDYwNjc4NGMxMDUwODViOWQ2YWQ1ZjczYTAzYjIwZDlhNWMx MTRjYWYwHhcNMjUxMjI4MTg0ODMwWhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg2ODI2MGYyOGRkMDNkZDY5YjViOTM1YTdjYjIzZWYzMjcyNGYwOTdjMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwAJQgb6mliXCxJAjt42jSpIEnNRa BkzmgckXYZ7feDSLoHWLeaMqxiI7BKN86tCpMpJRPEc8mP7w1oy0H2j3qfOfyLlM IMmVD2RpKOtvziNgcZBOZDoaXybP5gA1mXGFgbYIW9A6ZDf8YsTgvMxQRVTIKOBm LcHoQiorxo0dflnoxYDhzeqghpDSMCozHujzPwwAnVzMjoQgjE9MrtuthZvo71jv nOAhv6iTIRL3AayPUni2S5FNzufy69Sz+lNoXcEx/7M9aouRdajVY1Nn23BqXqbn zMTyV4C0OeS+Z5EwqHyrpKMWDCoFQ6IEz/KjV23pid21muI1NIVcGMmz0wIDAQAB o4ICDzCCAgswHQYDVR0OBBYEFGgmDyjdA91ptbk1p8sj7zJyTwl8MB8GA1UdIwQY MBaAFGBnhMEFCFudatX3OgOyDZpcEUyvMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvWUdlRXdRVUlXNTFxMWZjNkE3SU5tbHdSVEs4LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kMC8yYjgzNGUtYmFkMi00OWZmLWJhMzgt YjQzNDJiYTkxYWJjLzEvYUNZUEtOMEQzV20xdVRXbnl5UHZNbkpQQ1h3LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kMC8yYjgzNGUtYmFkMi00OWZmLWJhMzgtYjQzNDJiYTkxYWJj LzEvWUdlRXdRVUlXNTFxMWZjNkE3SU5tbHdSVEs4LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQAueOQAwQA wkysMA0GCSqGSIb3DQEBCwUAA4IBAQC19o+LHMbZ3cqB7LF0ptKpYIkS1ha2uxUa yk3waF70cQKfCUs7OqgzN2dhe6yEIIK2OOKfbwQ4ZvH3B/5rMleId0tdqy1pEn+t RsP2KZQJLQoiKtlIr9QeCrRAY1L5lz25egLsNAX4K5fBIlOB3AuXXkdDLeQpbLS+ MaxjxxTCthqn1icBtYdKD4AnCmWKLTLBVfHDaKcxYqR2MpuiS2MPfMKSRHZVKus+ BYoEHInyWRLgg6t0vHjOydeP9W9Ugfgl729S8S0e46iEv4eY/f+G9yOYcP/nhwSm jq3/kMwTDDAQa9P49SnaVnbDs0snFtTpvcjXPDk777xu6aks0rHx -----END CERTIFICATE-----Generated at Mon Dec 29 07:55:36 2025 by rpki-client