This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fb/cf64f6-0789-43e3-bd6b-7bff296c6b02/1/yO-faN1p6CDhjtBsMnJFSamd0b4.roa File: yO-faN1p6CDhjtBsMnJFSamd0b4.roa (raw, json) Hash identifier: f5cjUT10BBqhpOr6X0AO88BjDl80sXjlHTe7MTa/7YQ= Subject key identifier: C8:EF:9F:68:DD:69:E8:20:E1:8E:D0:6C:32:72:45:49:A9:9D:D1:BE Certificate issuer: /CN=6d069e19e12c104004e8b4b75f8a7789b7e11396 Certificate serial: 019B797DE9CC2E77A64FA2F35202C4D60A91 Authority key identifier: 6D:06:9E:19:E1:2C:10:40:04:E8:B4:B7:5F:8A:77:89:B7:E1:13:96 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bQaeGeEsEEAE6LS3X4p3ibfhE5Y.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fb/cf64f6-0789-43e3-bd6b-7bff296c6b02/1/yO-faN1p6CDhjtBsMnJFSamd0b4.roa Signing time: Thu 01 Jan 2026 12:17:33 +0000 ROA not before: Thu 01 Jan 2026 12:17:33 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 212157 IP address blocks: 144.43.240.0/21 maxlen: 24 144.43.252.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fb/cf64f6-0789-43e3-bd6b-7bff296c6b02/1/bQaeGeEsEEAE6LS3X4p3ibfhE5Y.crl rsync://rpki.ripe.net/repository/DEFAULT/fb/cf64f6-0789-43e3-bd6b-7bff296c6b02/1/bQaeGeEsEEAE6LS3X4p3ibfhE5Y.mft rsync://rpki.ripe.net/repository/DEFAULT/bQaeGeEsEEAE6LS3X4p3ibfhE5Y.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 21 Jan 2026 03:00:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:79:7d:e9:cc:2e:77:a6:4f:a2:f3:52:02:c4:d6:0a:91 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6d069e19e12c104004e8b4b75f8a7789b7e11396 Validity Not Before: Jan 1 12:17:33 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=c8ef9f68dd69e820e18ed06c32724549a99dd1be Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:88:a4:10:74:b7:50:4e:d4:fd:2f:1c:fc:e2:75: 76:2d:dd:5e:ac:b9:a2:4f:ea:a5:e2:fe:53:80:e2: fa:6e:55:c5:03:79:c8:48:c5:2c:54:f5:6d:fa:14: e5:66:d3:11:03:ae:12:d3:8e:31:de:f3:87:3f:da: c5:a3:34:11:88:ec:62:98:0e:59:1c:db:e0:48:b5: 7c:08:31:41:89:12:aa:4b:ee:87:f5:a2:44:b9:3a: 32:30:09:90:f9:04:a0:ff:38:9f:e2:a4:26:02:67: f1:d9:92:48:ac:f1:9c:a2:0b:38:f5:ec:57:72:13: f9:71:54:1d:06:50:74:e4:61:84:26:6f:6d:79:2a: 4b:44:1f:5b:d1:2a:d5:7e:8b:86:04:c2:09:1b:05: 46:46:8a:5d:c3:48:57:52:47:f8:6f:17:4e:f0:02: 43:33:46:ed:c4:79:8a:2c:01:a2:6a:c3:40:50:26: 0e:42:04:0a:ca:76:2b:40:7e:a4:4e:83:ff:7c:f6: d5:be:db:e1:ca:c9:c0:09:5e:9c:17:c2:1f:68:16: 16:f7:75:16:e7:7d:81:48:2c:01:c7:f6:0f:12:36: 47:1d:99:39:c7:67:c1:a3:5f:5c:e3:fb:82:6f:9e: e8:43:71:65:f7:39:b3:51:ac:e1:0b:9b:62:62:bb: 8f:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C8:EF:9F:68:DD:69:E8:20:E1:8E:D0:6C:32:72:45:49:A9:9D:D1:BE X509v3 Authority Key Identifier: keyid:6D:06:9E:19:E1:2C:10:40:04:E8:B4:B7:5F:8A:77:89:B7:E1:13:96 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bQaeGeEsEEAE6LS3X4p3ibfhE5Y.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fb/cf64f6-0789-43e3-bd6b-7bff296c6b02/1/yO-faN1p6CDhjtBsMnJFSamd0b4.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/fb/cf64f6-0789-43e3-bd6b-7bff296c6b02/1/bQaeGeEsEEAE6LS3X4p3ibfhE5Y.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 144.43.240.0/21 144.43.252.0/22 Signature Algorithm: sha256WithRSAEncryption 30:ba:94:6f:ee:04:0e:b7:02:8a:dc:ba:d9:db:73:4a:8e:65: 01:2e:78:c3:04:4f:a5:6c:86:44:25:20:34:01:e3:ff:d9:a3: e6:ff:6b:49:7d:4f:da:50:49:f1:3f:95:f6:c2:63:95:8f:09: b1:26:de:25:87:0e:2d:51:45:65:29:dd:2b:8b:13:b9:22:f9: 35:52:55:a5:23:e5:2c:3a:41:4e:d6:15:51:53:dc:20:ff:97: 5e:cc:e6:59:e9:38:4e:f0:fa:f9:a5:32:3c:8f:20:aa:03:46: 29:7a:ba:75:9f:b4:63:79:3c:1c:c7:42:f2:e5:da:b2:5b:98: 9f:47:5a:f9:06:a7:56:ca:9f:ea:52:e3:25:25:51:c2:55:79: 64:ec:79:70:71:af:93:2d:67:f2:24:94:60:e3:75:97:bf:5d: bc:09:02:c3:3e:ed:8e:b2:36:a1:2a:2b:a2:ff:f4:07:25:47: 56:0d:54:3a:bb:1a:91:3b:80:76:96:e4:5d:88:6c:d3:c2:9e: f0:04:0d:1d:a5:f2:8e:b9:68:9c:e4:1e:50:69:eb:a7:10:2e: 31:48:de:dd:c7:d4:25:17:ef:ce:b0:43:55:9e:6f:fd:ca:98: 38:28:7a:1a:1c:34:c5:e4:c8:6a:d7:70:f2:72:10:7f:40:2c: 22:1f:8c:1d -----BEGIN CERTIFICATE----- MIIFAzCCA+ugAwIBAgISAZt5fenMLnemT6LzUgLE1gqRMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDZkMDY5ZTE5ZTEyYzEwNDAwNGU4YjRiNzVmOGE3Nzg5Yjdl MTEzOTYwHhcNMjYwMTAxMTIxNzMzWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhjOGVmOWY2OGRkNjllODIwZTE4ZWQwNmMzMjcyNDU0OWE5OWRkMWJlMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAiKQQdLdQTtT9Lxz84nV2Ld1erLmi T+ql4v5TgOL6blXFA3nISMUsVPVt+hTlZtMRA64S044x3vOHP9rFozQRiOximA5Z HNvgSLV8CDFBiRKqS+6H9aJEuToyMAmQ+QSg/zif4qQmAmfx2ZJIrPGcogs49exX chP5cVQdBlB05GGEJm9teSpLRB9b0SrVfouGBMIJGwVGRopdw0hXUkf4bxdO8AJD M0btxHmKLAGiasNAUCYOQgQKynYrQH6kToP/fPbVvtvhysnACV6cF8IfaBYW93UW 532BSCwBx/YPEjZHHZk5x2fBo19c4/uCb57oQ3Fl9zmzUazhC5tiYruPvQIDAQAB o4ICDzCCAgswHQYDVR0OBBYEFMjvn2jdaegg4Y7QbDJyRUmpndG+MB8GA1UdIwQY MBaAFG0GnhnhLBBABOi0t1+Kd4m34ROWMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvYlFhZUdlRXNFRUFFNkxTM1g0cDNpYmZoRTVZLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mYi9jZjY0ZjYtMDc4OS00M2UzLWJkNmIt N2JmZjI5NmM2YjAyLzEveU8tZmFOMXA2Q0RoanRCc01uSkZTYW1kMGI0LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9mYi9jZjY0ZjYtMDc4OS00M2UzLWJkNmItN2JmZjI5NmM2YjAy LzEvYlFhZUdlRXNFRUFFNkxTM1g0cDNpYmZoRTVZLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQDkCvwAwQC kCv8MA0GCSqGSIb3DQEBCwUAA4IBAQAwupRv7gQOtwKK3LrZ23NKjmUBLnjDBE+l bIZEJSA0AeP/2aPm/2tJfU/aUEnxP5X2wmOVjwmxJt4lhw4tUUVlKd0rixO5Ivk1 UlWlI+UsOkFO1hVRU9wg/5dezOZZ6ThO8Pr5pTI8jyCqA0Yperp1n7RjeTwcx0Ly 5dqyW5ifR1r5BqdWyp/qUuMlJVHCVXlk7Hlwca+TLWfyJJRg43WXv128CQLDPu2O sjahKiui//QHJUdWDVQ6uxqRO4B2luRdiGzTwp7wBA0dpfKOuWic5B5QaeunEC4x SN7dx9QlF+/OsENVnm/9ypg4KHoaHDTF5Mhq13DychB/QCwiH4wd -----END CERTIFICATE-----Generated at Tue Jan 20 11:09:41 2026 by rpki-client