This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/xm17J1lotF7m7MMeykZv27syuYo.roa File: xm17J1lotF7m7MMeykZv27syuYo.roa (raw, json) Hash identifier: 7rTy2mq870yOgpxF6mNOSemjdpJsKVBZNgWSBP0EhFo= Subject key identifier: C6:6D:7B:27:59:68:B4:5E:E6:EC:C3:1E:CA:46:6F:DB:BB:32:B9:8A Certificate issuer: /CN=606784c105085b9d6ad5f73a03b20d9a5c114caf Certificate serial: 019B9D28290A06B6BFD6ACBB18F60DBDD9E0 Authority key identifier: 60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/xm17J1lotF7m7MMeykZv27syuYo.roa Signing time: Thu 08 Jan 2026 10:30:13 +0000 ROA not before: Thu 08 Jan 2026 10:30:13 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 25198 IP address blocks: 185.199.158.0/24 maxlen: 24 185.234.22.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/YGeEwQUIW51q1fc6A7INmlwRTK8.crl rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/YGeEwQUIW51q1fc6A7INmlwRTK8.mft rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 10 Jan 2026 11:36:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:9d:28:29:0a:06:b6:bf:d6:ac:bb:18:f6:0d:bd:d9:e0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=606784c105085b9d6ad5f73a03b20d9a5c114caf Validity Not Before: Jan 8 10:30:13 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=c66d7b275968b45ee6ecc31eca466fdbbb32b98a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:6b:d9:bf:7f:82:67:bb:61:0e:1c:fd:ee:be: ce:69:52:cd:6a:c5:ab:2e:43:1a:80:89:31:65:f9: ea:3b:cf:5c:d2:b5:c9:66:c1:d1:d4:18:50:78:df: d1:50:88:a5:d5:b3:9a:52:c9:9c:c9:30:40:1f:44: 3d:5e:8e:8e:88:bb:c3:f7:3a:39:4d:82:d6:fa:35: 11:5f:4a:52:80:5a:1d:5f:06:54:4a:5b:0b:5a:27: 74:d3:82:53:44:ad:6d:6e:3a:99:d5:ee:16:2a:c2: 64:a7:fa:26:88:65:b4:98:20:7c:09:f4:07:dd:77: e3:97:2a:18:5e:58:d7:23:27:7f:3b:b8:b8:22:22: 02:52:aa:ca:73:2f:90:ca:4d:c3:a8:4b:a5:de:54: fc:3f:c4:05:99:8d:a1:da:1e:84:fe:a3:1d:ed:77: 3e:5c:c9:5d:ef:4e:cf:35:b1:af:19:8d:4c:85:4d: 8d:9d:d0:7e:41:14:cf:dc:fd:a0:ad:ae:e9:c1:d5: c1:9c:05:44:5c:33:ee:b9:6e:06:60:f0:6f:63:b0: 67:42:dc:a5:20:2d:9e:26:a4:ca:95:fa:97:a4:b5: e6:f5:b8:26:68:82:4e:f9:be:a1:ad:e3:13:c1:5f: a7:a3:96:36:9b:8d:f4:d1:f2:05:df:63:06:a1:b8: 39:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C6:6D:7B:27:59:68:B4:5E:E6:EC:C3:1E:CA:46:6F:DB:BB:32:B9:8A X509v3 Authority Key Identifier: keyid:60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/xm17J1lotF7m7MMeykZv27syuYo.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/YGeEwQUIW51q1fc6A7INmlwRTK8.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.199.158.0/24 185.234.22.0/24 Signature Algorithm: sha256WithRSAEncryption 3d:75:3d:09:8e:eb:50:6b:e2:57:12:75:07:25:7e:b0:0b:c3: f6:c2:ad:d3:12:a9:d4:35:79:c4:72:f4:7d:3b:b8:1d:41:50: 47:87:5f:50:05:67:ee:e2:ba:fd:80:3d:95:ed:78:ef:f6:ad: b2:2f:0b:40:3d:53:91:71:4a:97:ae:5c:54:96:c9:0d:7e:72: 66:75:5f:a5:d5:4a:30:b7:f8:77:b6:d4:d5:2a:9c:7b:0f:01: ab:10:aa:e7:a8:86:76:e9:78:6f:3f:8a:56:9f:20:ed:e1:92: 8c:62:24:8c:23:f5:10:fa:5d:11:5a:95:ef:e9:e1:51:fd:bd: 46:e2:9c:8a:a5:1c:88:50:e2:cf:e8:33:50:17:bb:61:1a:8f: d5:2c:c3:e8:99:dd:98:37:02:a9:b7:69:39:5d:e0:73:ca:45: 7b:99:62:91:9a:75:0c:d4:e5:ff:37:b2:fd:ac:79:1b:74:c0: 55:5b:21:23:67:ba:2a:0b:3a:c5:ad:5d:f1:4a:62:8f:38:8e: 67:7c:f2:6b:9c:93:22:a7:ac:57:d4:ba:74:85:9b:c0:c9:83: 61:1a:94:53:86:1a:ab:12:a4:ae:a1:3b:68:cf:99:c4:f2:96: 6a:04:94:02:3b:22:0d:f4:98:79:0f:0f:fb:d7:03:98:ec:be: 5f:07:c8:6c -----BEGIN CERTIFICATE----- MIIFAzCCA+ugAwIBAgISAZudKCkKBra/1qy7GPYNvdngMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDYwNjc4NGMxMDUwODViOWQ2YWQ1ZjczYTAzYjIwZDlhNWMx MTRjYWYwHhcNMjYwMTA4MTAzMDEzWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhjNjZkN2IyNzU5NjhiNDVlZTZlY2MzMWVjYTQ2NmZkYmJiMzJiOThhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyWvZv3+CZ7thDhz97r7OaVLNasWr LkMagIkxZfnqO89c0rXJZsHR1BhQeN/RUIil1bOaUsmcyTBAH0Q9Xo6OiLvD9zo5 TYLW+jURX0pSgFodXwZUSlsLWid004JTRK1tbjqZ1e4WKsJkp/omiGW0mCB8CfQH 3XfjlyoYXljXIyd/O7i4IiICUqrKcy+Qyk3DqEul3lT8P8QFmY2h2h6E/qMd7Xc+ XMld707PNbGvGY1MhU2NndB+QRTP3P2gra7pwdXBnAVEXDPuuW4GYPBvY7BnQtyl IC2eJqTKlfqXpLXm9bgmaIJO+b6hreMTwV+no5Y2m4300fIF32MGobg58QIDAQAB o4ICDzCCAgswHQYDVR0OBBYEFMZteydZaLRe5uzDHspGb9u7MrmKMB8GA1UdIwQY MBaAFGBnhMEFCFudatX3OgOyDZpcEUyvMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvWUdlRXdRVUlXNTFxMWZjNkE3SU5tbHdSVEs4LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kMC8yYjgzNGUtYmFkMi00OWZmLWJhMzgt YjQzNDJiYTkxYWJjLzEveG0xN0oxbG90RjdtN01NZXlrWnYyN3N5dVlvLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kMC8yYjgzNGUtYmFkMi00OWZmLWJhMzgtYjQzNDJiYTkxYWJj LzEvWUdlRXdRVUlXNTFxMWZjNkE3SU5tbHdSVEs4LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQAuceeAwQA ueoWMA0GCSqGSIb3DQEBCwUAA4IBAQA9dT0JjutQa+JXEnUHJX6wC8P2wq3TEqnU NXnEcvR9O7gdQVBHh19QBWfu4rr9gD2V7Xjv9q2yLwtAPVORcUqXrlxUlskNfnJm dV+l1Uowt/h3ttTVKpx7DwGrEKrnqIZ26XhvP4pWnyDt4ZKMYiSMI/UQ+l0RWpXv 6eFR/b1G4pyKpRyIUOLP6DNQF7thGo/VLMPomd2YNwKpt2k5XeBzykV7mWKRmnUM 1OX/N7L9rHkbdMBVWyEjZ7oqCzrFrV3xSmKPOI5nfPJrnJMip6xX1Lp0hZvAyYNh GpRThhqrEqSuoTtoz5nE8pZqBJQCOyIN9Jh5Dw/71wOY7L5fB8hs -----END CERTIFICATE-----Generated at Fri Jan 9 18:38:13 2026 by rpki-client