This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/af/2223ca-ce38-49bb-b125-cca37606bf18/1/SY0oaouPknTSy2MmGqSQOcOco4Q.roa File: SY0oaouPknTSy2MmGqSQOcOco4Q.roa (raw, json) Hash identifier: HRxdYO/Iechw+UCcupxpKvFHOwFwn4JRjC6eMfFT/dQ= Subject key identifier: 49:8D:28:6A:8B:8F:92:74:D2:CB:63:26:1A:A4:90:39:C3:9C:A3:84 Certificate issuer: /CN=52cd9a6512dbf25a5f19b827d7a2c7e22a2ee8dd Certificate serial: 019B7EA6372FC6EF9F5B6437A5FA8BB5AD79 Authority key identifier: 52:CD:9A:65:12:DB:F2:5A:5F:19:B8:27:D7:A2:C7:E2:2A:2E:E8:DD Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Us2aZRLb8lpfGbgn16LH4iou6N0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/af/2223ca-ce38-49bb-b125-cca37606bf18/1/SY0oaouPknTSy2MmGqSQOcOco4Q.roa Signing time: Fri 02 Jan 2026 12:19:40 +0000 ROA not before: Fri 02 Jan 2026 12:19:40 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 36218 IP address blocks: 192.250.237.0/24 maxlen: 24 192.250.238.0/24 maxlen: 24 199.103.56.0/23 maxlen: 23 199.103.59.0/24 maxlen: 24 199.103.60.0/22 maxlen: 22 208.69.56.0/22 maxlen: 22 208.88.4.0/22 maxlen: 22 209.42.24.0/24 maxlen: 24 209.42.25.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/af/2223ca-ce38-49bb-b125-cca37606bf18/1/Us2aZRLb8lpfGbgn16LH4iou6N0.crl rsync://rpki.ripe.net/repository/DEFAULT/af/2223ca-ce38-49bb-b125-cca37606bf18/1/Us2aZRLb8lpfGbgn16LH4iou6N0.mft rsync://rpki.ripe.net/repository/DEFAULT/Us2aZRLb8lpfGbgn16LH4iou6N0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 13 Jan 2026 16:30:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7e:a6:37:2f:c6:ef:9f:5b:64:37:a5:fa:8b:b5:ad:79 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=52cd9a6512dbf25a5f19b827d7a2c7e22a2ee8dd Validity Not Before: Jan 2 12:19:40 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=498d286a8b8f9274d2cb63261aa49039c39ca384 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:1a:8f:31:fb:b4:77:32:89:ea:2b:a4:db:a9: b4:c1:00:54:22:72:e8:d5:29:4c:39:72:02:76:e7: c4:b4:8d:81:8c:b4:3b:86:54:30:58:27:1a:a6:ca: bf:57:2a:2d:2d:1b:48:0c:a6:9d:4f:34:d0:56:50: 34:1b:cf:3a:c8:84:ad:d8:74:ea:7b:cc:15:b5:2b: e2:d9:ee:eb:ee:8b:69:af:e8:34:fe:9a:63:44:78: fc:36:e8:79:d3:01:2a:4f:95:65:78:9d:4e:4e:6a: e2:32:0e:26:6f:0a:9c:98:e9:24:5b:de:8a:f2:14: 30:b4:eb:51:93:4d:93:90:ef:9e:01:02:39:ca:c5: 0b:f2:fe:10:ea:78:2b:af:6b:98:03:9a:c1:34:a1: ce:30:75:79:21:ad:22:d2:2f:73:51:c5:7d:13:95: 4e:0b:18:fd:fb:db:71:3f:a6:d6:69:c1:4b:d0:97: 36:4a:a2:df:cf:58:c8:67:af:bc:c3:e9:36:f2:6c: 80:a7:38:ef:d2:c5:c3:50:b4:bf:f3:a8:ae:cb:48: 49:81:dc:2f:a6:0f:4e:da:40:ee:95:a2:9a:90:68: 64:36:e8:9c:69:93:44:90:cf:f2:28:22:c5:0e:38: 88:a1:c7:59:07:1f:75:5e:97:05:d7:df:1a:d7:72: 55:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 49:8D:28:6A:8B:8F:92:74:D2:CB:63:26:1A:A4:90:39:C3:9C:A3:84 X509v3 Authority Key Identifier: keyid:52:CD:9A:65:12:DB:F2:5A:5F:19:B8:27:D7:A2:C7:E2:2A:2E:E8:DD X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Us2aZRLb8lpfGbgn16LH4iou6N0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/af/2223ca-ce38-49bb-b125-cca37606bf18/1/SY0oaouPknTSy2MmGqSQOcOco4Q.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/af/2223ca-ce38-49bb-b125-cca37606bf18/1/Us2aZRLb8lpfGbgn16LH4iou6N0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 192.250.237.0-192.250.238.255 199.103.56.0/23 199.103.59.0-199.103.63.255 208.69.56.0/22 208.88.4.0/22 209.42.24.0/23 Signature Algorithm: sha256WithRSAEncryption 25:f2:db:6c:20:7e:6a:00:b2:7e:9e:2c:8e:a4:9a:ba:5f:e2: 33:14:e0:75:6e:df:0e:7c:8d:57:d0:e0:9b:67:ad:7c:44:70: 52:5a:32:79:69:ca:20:73:71:40:6c:25:a0:af:9e:e0:e3:91: fa:9c:23:46:27:f0:32:b3:b3:4b:c0:be:55:83:59:d6:d7:82: 00:23:eb:80:d8:57:68:7d:0e:49:bd:90:7b:d3:ed:7e:22:ce: 34:00:1a:81:18:43:25:d9:fb:c1:02:9c:8a:86:cc:fc:82:0d: 64:1b:e4:c2:2c:4e:83:0e:bb:70:d0:92:f0:4b:c5:1a:5a:e2: 26:a6:9b:0b:34:59:10:3d:91:f2:c5:56:65:b9:16:d8:3c:98: 68:fa:50:0e:4b:34:1a:8e:36:19:6c:d8:37:6a:6d:c7:d1:83: f6:05:d7:90:f7:5a:1a:2d:76:ae:5a:d2:87:eb:b9:fd:a3:58: 6e:00:1e:6d:3e:9c:37:f0:3e:71:a7:f1:61:c4:d9:65:1b:27: cc:15:6e:29:62:53:87:85:23:8e:30:33:dd:db:5a:82:69:6c: ae:15:88:62:96:cb:55:78:03:21:38:5a:9d:08:77:69:a9:5c: c3:8e:90:ff:76:5d:6d:1b:ec:41:a7:2a:38:d6:eb:82:48:7e: b6:d1:00:cc -----BEGIN CERTIFICATE----- MIIFKzCCBBOgAwIBAgISAZt+pjcvxu+fW2Q3pfqLta15MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDUyY2Q5YTY1MTJkYmYyNWE1ZjE5YjgyN2Q3YTJjN2UyMmEy ZWU4ZGQwHhcNMjYwMTAyMTIxOTQwWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg0OThkMjg2YThiOGY5Mjc0ZDJjYjYzMjYxYWE0OTAzOWMzOWNhMzg0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyhqPMfu0dzKJ6iuk26m0wQBUInLo 1SlMOXICdufEtI2BjLQ7hlQwWCcapsq/VyotLRtIDKadTzTQVlA0G886yISt2HTq e8wVtSvi2e7r7otpr+g0/ppjRHj8Nuh50wEqT5VleJ1OTmriMg4mbwqcmOkkW96K 8hQwtOtRk02TkO+eAQI5ysUL8v4Q6ngrr2uYA5rBNKHOMHV5Ia0i0i9zUcV9E5VO Cxj9+9txP6bWacFL0Jc2SqLfz1jIZ6+8w+k28myApzjv0sXDULS/86iuy0hJgdwv pg9O2kDulaKakGhkNuicaZNEkM/yKCLFDjiIocdZBx91XpcF198a13JVewIDAQAB o4ICNzCCAjMwHQYDVR0OBBYEFEmNKGqLj5J00stjJhqkkDnDnKOEMB8GA1UdIwQY MBaAFFLNmmUS2/JaXxm4J9eix+IqLujdMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvVXMyYVpSTGI4bHBmR2JnbjE2TEg0aW91Nk4wLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hZi8yMjIzY2EtY2UzOC00OWJiLWIxMjUt Y2NhMzc2MDZiZjE4LzEvU1kwb2FvdVBrblRTeTJNbUdxU1FPY09jbzRRLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9hZi8yMjIzY2EtY2UzOC00OWJiLWIxMjUtY2NhMzc2MDZiZjE4 LzEvVXMyYVpSTGI4bHBmR2JnbjE2TEg0aW91Nk4wLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CME0GCCsGAQUFBwEHAQH/BD4wPDA6BAIAATA0MAwDBADA+u0D BADA+u4DBAHHZzgwDAMEAMdnOwMEBsdnAAMEAtBFOAMEAtBYBAMEAdEqGDANBgkq hkiG9w0BAQsFAAOCAQEAJfLbbCB+agCyfp4sjqSaul/iMxTgdW7fDnyNV9Dgm2et fERwUloyeWnKIHNxQGwloK+e4OOR+pwjRifwMrOzS8C+VYNZ1teCACPrgNhXaH0O Sb2Qe9PtfiLONAAagRhDJdn7wQKciobM/IINZBvkwixOgw67cNCS8EvFGlriJqab CzRZED2R8sVWZbkW2DyYaPpQDks0Go42GWzYN2ptx9GD9gXXkPdaGi12rlrSh+u5 /aNYbgAebT6cN/A+cafxYcTZZRsnzBVuKWJTh4UjjjAz3dtagmlsrhWIYpbLVXgD IThanQh3aalcw46Q/3ZdbRvsQacqONbrgkh+ttEAzA== -----END CERTIFICATE-----Generated at Tue Jan 13 02:47:16 2026 by rpki-client