This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f0/cb53fc-7096-4594-91b1-d92785a61219/1/nyzykzCSciL9b7XcY2Eb25U1248.roa File: nyzykzCSciL9b7XcY2Eb25U1248.roa (raw, json) Hash identifier: y0AO2J7wuOu2+dkp56Hwq0efMMez1I5zXW1sHLiGxC8= Subject key identifier: 9F:2C:F2:93:30:92:72:22:FD:6F:B5:DC:63:61:1B:DB:95:35:DB:8F Certificate issuer: /CN=3812c97dbd32195b6afa91140b5520b5e0c2c5be Certificate serial: 019B7910AA760CD050E8542CB2321BDD962D Authority key identifier: 38:12:C9:7D:BD:32:19:5B:6A:FA:91:14:0B:55:20:B5:E0:C2:C5:BE Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OBLJfb0yGVtq-pEUC1UgteDCxb4.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f0/cb53fc-7096-4594-91b1-d92785a61219/1/nyzykzCSciL9b7XcY2Eb25U1248.roa Signing time: Thu 01 Jan 2026 10:18:13 +0000 ROA not before: Thu 01 Jan 2026 10:18:13 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 44322 IP address blocks: 185.83.240.0/22 maxlen: 24 2a05:a000::/29 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f0/cb53fc-7096-4594-91b1-d92785a61219/1/OBLJfb0yGVtq-pEUC1UgteDCxb4.crl rsync://rpki.ripe.net/repository/DEFAULT/f0/cb53fc-7096-4594-91b1-d92785a61219/1/OBLJfb0yGVtq-pEUC1UgteDCxb4.mft rsync://rpki.ripe.net/repository/DEFAULT/OBLJfb0yGVtq-pEUC1UgteDCxb4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 10:01:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:79:10:aa:76:0c:d0:50:e8:54:2c:b2:32:1b:dd:96:2d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3812c97dbd32195b6afa91140b5520b5e0c2c5be Validity Not Before: Jan 1 10:18:13 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=9f2cf29330927222fd6fb5dc63611bdb9535db8f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8c:3e:af:6c:65:20:5d:a8:ff:6c:2b:16:69:ca: 7b:bc:12:c8:91:eb:8f:71:e9:ba:e4:dc:22:a0:1d: 82:2a:44:f1:4f:9e:91:e6:21:00:3b:57:18:9a:97: e4:7e:19:ef:78:c8:fb:7b:9e:5b:b7:49:2b:2f:d4: 95:3b:23:f4:70:c1:00:4f:5b:62:9e:a7:a3:8c:59: f3:fe:e3:a5:6e:9b:5a:08:fd:a9:cf:d6:dc:41:fb: 0a:35:a2:a5:f2:bc:30:89:60:7a:1e:9f:b9:9d:43: 11:76:54:9b:a8:44:b7:08:03:e8:a4:80:0c:39:37: 81:e7:29:4f:41:a8:98:cc:b5:55:26:f7:9f:a6:8c: 70:dd:6d:02:ba:68:53:db:d6:df:3b:7d:a6:03:f2: 1f:13:ce:0a:4e:e3:e7:a1:82:0a:bc:a0:29:bd:87: b7:ac:ec:bc:5e:7d:f0:b6:30:ae:1b:18:ad:04:95: b2:9d:54:25:4e:63:b1:7a:e6:89:f1:fc:e9:93:27: d9:78:28:37:4e:82:a9:41:58:04:21:2d:81:b0:d6: 19:f0:87:74:cf:34:42:86:17:67:3b:63:02:14:6b: 4e:28:d6:d0:11:a0:dc:2c:6c:15:d5:cb:90:c6:81: 74:ab:2a:9e:e7:3b:47:19:0f:0e:78:21:06:37:1c: 8b:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9F:2C:F2:93:30:92:72:22:FD:6F:B5:DC:63:61:1B:DB:95:35:DB:8F X509v3 Authority Key Identifier: keyid:38:12:C9:7D:BD:32:19:5B:6A:FA:91:14:0B:55:20:B5:E0:C2:C5:BE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OBLJfb0yGVtq-pEUC1UgteDCxb4.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f0/cb53fc-7096-4594-91b1-d92785a61219/1/nyzykzCSciL9b7XcY2Eb25U1248.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/f0/cb53fc-7096-4594-91b1-d92785a61219/1/OBLJfb0yGVtq-pEUC1UgteDCxb4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.83.240.0/22 IPv6: 2a05:a000::/29 Signature Algorithm: sha256WithRSAEncryption 9e:ca:8e:9e:ee:33:86:f0:7f:e0:5d:8a:57:b6:c5:db:20:24: 52:e7:c2:90:ec:7e:c5:f7:6b:2e:73:b0:0c:26:14:4a:0e:36: 16:0d:e5:e8:9d:62:a2:0b:75:ad:7e:f9:cf:d4:6d:8b:8a:48: c6:73:ff:0b:7b:f9:b7:ab:f7:75:3a:81:2d:1d:1a:06:b2:96: 7a:cd:40:23:96:1d:95:6e:01:a4:94:eb:84:0f:af:66:93:a0: b5:a1:1e:04:0d:a4:9c:20:6f:08:9a:71:9a:88:26:9b:e9:45: 6a:3e:70:95:e1:e4:7a:a9:49:b0:80:f0:ca:44:07:08:e1:88: 90:8f:77:0e:7b:73:76:1c:47:5c:c0:95:75:4b:32:5e:8a:ad: 9a:3a:b8:a8:31:e1:50:09:fa:fd:e4:4f:cb:a3:da:ee:bf:3f: 65:87:7a:7a:5d:d2:09:45:d2:d5:db:42:58:fd:ef:ac:38:67: a3:09:da:e2:cf:9b:30:f9:8e:03:66:ad:6b:34:2e:37:a9:34: 12:3d:7f:d7:1a:19:1d:88:05:9d:ce:59:f1:f4:b2:ee:ca:ba: 53:a4:7c:6d:a2:8d:2d:e6:13:09:cf:f0:51:ff:ad:04:dd:a1: 9f:a8:96:62:0e:6a:20:df:8b:24:71:9f:ba:d7:70:08:5e:86: 87:8e:16:a4 -----BEGIN CERTIFICATE----- MIIFDDCCA/SgAwIBAgISAZt5EKp2DNBQ6FQssjIb3ZYtMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDM4MTJjOTdkYmQzMjE5NWI2YWZhOTExNDBiNTUyMGI1ZTBj MmM1YmUwHhcNMjYwMTAxMTAxODEzWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg5ZjJjZjI5MzMwOTI3MjIyZmQ2ZmI1ZGM2MzYxMWJkYjk1MzVkYjhmMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAjD6vbGUgXaj/bCsWacp7vBLIkeuP cem65NwioB2CKkTxT56R5iEAO1cYmpfkfhnveMj7e55bt0krL9SVOyP0cMEAT1ti nqejjFnz/uOlbptaCP2pz9bcQfsKNaKl8rwwiWB6Hp+5nUMRdlSbqES3CAPopIAM OTeB5ylPQaiYzLVVJvefpoxw3W0CumhT29bfO32mA/IfE84KTuPnoYIKvKApvYe3 rOy8Xn3wtjCuGxitBJWynVQlTmOxeuaJ8fzpkyfZeCg3ToKpQVgEIS2BsNYZ8Id0 zzRChhdnO2MCFGtOKNbQEaDcLGwV1cuQxoF0qyqe5ztHGQ8OeCEGNxyLCwIDAQAB o4ICGDCCAhQwHQYDVR0OBBYEFJ8s8pMwknIi/W+13GNhG9uVNduPMB8GA1UdIwQY MBaAFDgSyX29MhlbavqRFAtVILXgwsW+MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvT0JMSmZiMHlHVnRxLXBFVUMxVWd0ZURDeGI0LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mMC9jYjUzZmMtNzA5Ni00NTk0LTkxYjEt ZDkyNzg1YTYxMjE5LzEvbnl6eWt6Q1NjaUw5YjdYY1kyRWIyNVUxMjQ4LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9mMC9jYjUzZmMtNzA5Ni00NTk0LTkxYjEtZDkyNzg1YTYxMjE5 LzEvT0JMSmZiMHlHVnRxLXBFVUMxVWd0ZURDeGI0LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMC4GCCsGAQUFBwEHAQH/BB8wHTAMBAIAATAGAwQCuVPwMA0E AgACMAcDBQMqBaAAMA0GCSqGSIb3DQEBCwUAA4IBAQCeyo6e7jOG8H/gXYpXtsXb ICRS58KQ7H7F92suc7AMJhRKDjYWDeXonWKiC3WtfvnP1G2LikjGc/8Le/m3q/d1 OoEtHRoGspZ6zUAjlh2VbgGklOuED69mk6C1oR4EDaScIG8ImnGaiCab6UVqPnCV 4eR6qUmwgPDKRAcI4YiQj3cOe3N2HEdcwJV1SzJeiq2aOrioMeFQCfr95E/Lo9ru vz9lh3p6XdIJRdLV20JY/e+sOGejCdriz5sw+Y4DZq1rNC43qTQSPX/XGhkdiAWd zlnx9LLuyrpTpHxtoo0t5hMJz/BR/60E3aGfqJZiDmog34skcZ+613AIXoaHjhak -----END CERTIFICATE-----Generated at Mon Feb 9 18:42:26 2026 by rpki-client