This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/u00yRcBZZwf4qtkJXSAQFoJC75w.roa File: u00yRcBZZwf4qtkJXSAQFoJC75w.roa (raw, json) Hash identifier: RNaLeViS4+VFOHeNuOkmf6rYPEWpXVtceGafLP04eC0= Subject key identifier: BB:4D:32:45:C0:59:67:07:F8:AA:D9:09:5D:20:10:16:82:42:EF:9C Certificate issuer: /CN=606784c105085b9d6ad5f73a03b20d9a5c114caf Certificate serial: 019B7C13A9032C03C96552A86D1B72881BF3 Authority key identifier: 60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/u00yRcBZZwf4qtkJXSAQFoJC75w.roa Signing time: Fri 02 Jan 2026 00:20:21 +0000 ROA not before: Fri 02 Jan 2026 00:20:21 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 400039 IP address blocks: 185.214.109.0/24 maxlen: 24 185.234.23.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/YGeEwQUIW51q1fc6A7INmlwRTK8.crl rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/YGeEwQUIW51q1fc6A7INmlwRTK8.mft rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 03 Jan 2026 19:40:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7c:13:a9:03:2c:03:c9:65:52:a8:6d:1b:72:88:1b:f3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=606784c105085b9d6ad5f73a03b20d9a5c114caf Validity Not Before: Jan 2 00:20:21 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=bb4d3245c0596707f8aad9095d2010168242ef9c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:92:4b:c6:1d:b2:a9:db:37:d0:49:ce:0b:2f:2a: ca:15:d5:ab:09:55:d8:01:38:5e:2a:9e:78:32:14: c5:94:9b:ad:7e:02:e7:1e:9d:ff:a5:3c:a2:88:d1: 26:83:c9:68:fd:8a:22:f6:2a:4a:e0:c2:2a:bd:ee: cd:da:28:5d:ba:44:87:f3:37:aa:eb:6a:91:8b:e0: 89:24:51:20:1e:6b:cc:2f:8a:79:77:a6:ab:bd:61: 87:51:bf:ff:8a:0a:76:8e:61:79:c2:ce:d1:26:bf: cf:85:4b:02:e4:e3:37:f2:bb:65:e5:a9:49:57:51: c7:9c:87:af:ea:62:6e:4d:30:3b:b1:2f:d3:36:d0: 8c:6c:68:e1:ae:94:96:97:db:10:1f:d6:52:a1:8e: 89:73:37:9d:f0:c7:b8:a0:07:5b:9f:01:30:34:f2: 2e:4f:13:83:2c:5d:49:22:23:44:14:f2:68:96:28: 68:f3:dd:78:00:be:f5:d1:71:56:9c:4c:31:c5:3c: 6e:0a:ed:84:e0:22:eb:b3:3c:a9:f4:24:15:3e:41: 60:c1:77:6d:fe:7e:f2:7f:47:be:ec:4b:3c:d8:15: f4:02:85:45:ff:e7:40:78:76:e7:ae:60:f6:8d:08: 76:74:eb:84:d5:b8:59:ea:18:ed:dc:3b:7a:61:a1: a7:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BB:4D:32:45:C0:59:67:07:F8:AA:D9:09:5D:20:10:16:82:42:EF:9C X509v3 Authority Key Identifier: keyid:60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/u00yRcBZZwf4qtkJXSAQFoJC75w.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/YGeEwQUIW51q1fc6A7INmlwRTK8.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.214.109.0/24 185.234.23.0/24 Signature Algorithm: sha256WithRSAEncryption 3b:75:a5:46:7a:cb:88:2f:77:88:2f:be:07:68:7c:1c:90:e8: 13:77:e6:3f:a7:98:29:fd:e9:ac:88:ac:4c:9c:c0:5b:fc:c7: 51:57:d5:dc:b2:e4:f8:52:49:dd:07:39:f1:1c:d7:43:52:44: 2a:ba:66:92:08:f5:c6:30:72:11:8b:c6:ae:ec:59:e4:d7:c5: 48:eb:65:05:69:79:7f:c9:73:74:0d:57:7e:a0:ea:69:14:16: ea:b6:e9:21:ec:45:c7:35:7d:b9:90:b2:fc:2d:70:94:31:de: 51:79:df:5e:36:a1:83:6a:74:5b:52:b4:e1:06:de:3c:8d:b0: c2:dc:74:aa:bc:b8:09:ab:37:4c:9a:1a:09:68:94:b2:4c:b4: fc:17:9e:b4:d6:ad:fa:b5:d4:82:a3:95:61:c3:a5:02:98:20: 8c:13:5f:06:24:fa:7e:26:62:1b:78:40:cc:8c:4b:eb:8e:10: eb:85:0b:93:5f:8b:44:3a:14:7b:55:e3:a6:c3:4e:dc:91:8d: b6:aa:a2:2e:4e:2a:87:c7:99:3e:5d:4c:82:89:6d:34:8c:86: 3c:1a:3b:e7:dc:8b:23:1f:b1:fd:7a:f3:c8:9f:98:09:73:55: d7:bc:45:7e:9a:ad:b8:3a:f7:7c:0d:de:54:c0:4a:b5:71:17: 69:d4:15:57 -----BEGIN CERTIFICATE----- MIIFAzCCA+ugAwIBAgISAZt8E6kDLAPJZVKobRtyiBvzMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDYwNjc4NGMxMDUwODViOWQ2YWQ1ZjczYTAzYjIwZDlhNWMx MTRjYWYwHhcNMjYwMTAyMDAyMDIxWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhiYjRkMzI0NWMwNTk2NzA3ZjhhYWQ5MDk1ZDIwMTAxNjgyNDJlZjljMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAkkvGHbKp2zfQSc4LLyrKFdWrCVXY ATheKp54MhTFlJutfgLnHp3/pTyiiNEmg8lo/Yoi9ipK4MIqve7N2ihdukSH8zeq 62qRi+CJJFEgHmvML4p5d6arvWGHUb//igp2jmF5ws7RJr/PhUsC5OM38rtl5alJ V1HHnIev6mJuTTA7sS/TNtCMbGjhrpSWl9sQH9ZSoY6Jczed8Me4oAdbnwEwNPIu TxODLF1JIiNEFPJoliho8914AL710XFWnEwxxTxuCu2E4CLrszyp9CQVPkFgwXdt /n7yf0e+7Es82BX0AoVF/+dAeHbnrmD2jQh2dOuE1bhZ6hjt3Dt6YaGnnQIDAQAB o4ICDzCCAgswHQYDVR0OBBYEFLtNMkXAWWcH+KrZCV0gEBaCQu+cMB8GA1UdIwQY MBaAFGBnhMEFCFudatX3OgOyDZpcEUyvMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvWUdlRXdRVUlXNTFxMWZjNkE3SU5tbHdSVEs4LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kMC8yYjgzNGUtYmFkMi00OWZmLWJhMzgt YjQzNDJiYTkxYWJjLzEvdTAweVJjQlpad2Y0cXRrSlhTQVFGb0pDNzV3LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kMC8yYjgzNGUtYmFkMi00OWZmLWJhMzgtYjQzNDJiYTkxYWJj LzEvWUdlRXdRVUlXNTFxMWZjNkE3SU5tbHdSVEs4LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQAudZtAwQA ueoXMA0GCSqGSIb3DQEBCwUAA4IBAQA7daVGesuIL3eIL74HaHwckOgTd+Y/p5gp /emsiKxMnMBb/MdRV9XcsuT4UkndBznxHNdDUkQqumaSCPXGMHIRi8au7Fnk18VI 62UFaXl/yXN0DVd+oOppFBbqtukh7EXHNX25kLL8LXCUMd5Red9eNqGDanRbUrTh Bt48jbDC3HSqvLgJqzdMmhoJaJSyTLT8F5601q36tdSCo5Vhw6UCmCCME18GJPp+ JmIbeEDMjEvrjhDrhQuTX4tEOhR7VeOmw07ckY22qqIuTiqHx5k+XUyCiW00jIY8 Gjvn3IsjH7H9evPIn5gJc1XXvEV+mq24Ovd8Dd5UwEq1cRdp1BVX -----END CERTIFICATE-----Generated at Fri Jan 2 23:48:15 2026 by rpki-client