This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/db/434344-323e-48f8-ade2-624f83682169/1/yWaDK5srT5k2WUJDHHIexqT-SUw.roa File: yWaDK5srT5k2WUJDHHIexqT-SUw.roa (raw, json) Hash identifier: ju3Pb68m0FKpSwBfTyj/2egCnhf7dZEhijFgYyPnrRY= Subject key identifier: C9:66:83:2B:9B:2B:4F:99:36:59:42:43:1C:72:1E:C6:A4:FE:49:4C Certificate issuer: /CN=3ee770f47fd903925d80ac58e05e076f3baa110b Certificate serial: 019B791064085656231472E1C721F240D7DB Authority key identifier: 3E:E7:70:F4:7F:D9:03:92:5D:80:AC:58:E0:5E:07:6F:3B:AA:11:0B Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Pudw9H_ZA5JdgKxY4F4HbzuqEQs.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/db/434344-323e-48f8-ade2-624f83682169/1/yWaDK5srT5k2WUJDHHIexqT-SUw.roa Signing time: Thu 01 Jan 2026 10:17:55 +0000 ROA not before: Thu 01 Jan 2026 10:17:55 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 201078 IP address blocks: 185.38.27.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/db/434344-323e-48f8-ade2-624f83682169/1/Pudw9H_ZA5JdgKxY4F4HbzuqEQs.crl rsync://rpki.ripe.net/repository/DEFAULT/db/434344-323e-48f8-ade2-624f83682169/1/Pudw9H_ZA5JdgKxY4F4HbzuqEQs.mft rsync://rpki.ripe.net/repository/DEFAULT/Pudw9H_ZA5JdgKxY4F4HbzuqEQs.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 12 Jan 2026 18:00:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:79:10:64:08:56:56:23:14:72:e1:c7:21:f2:40:d7:db Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3ee770f47fd903925d80ac58e05e076f3baa110b Validity Not Before: Jan 1 10:17:55 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=c966832b9b2b4f99365942431c721ec6a4fe494c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:86:79:04:03:a8:03:76:f9:ed:d9:49:ce:83: af:32:4c:81:fc:cc:92:d1:88:4b:38:24:ae:3a:6a: 51:03:0c:04:c9:c9:f2:ab:f3:10:3c:2d:38:1a:f3: 50:de:d8:0d:99:b6:ee:5e:4f:2e:6e:e4:4d:df:1a: 8a:a6:f9:3a:25:8e:e5:b0:5b:04:19:03:8d:78:87: af:71:c0:5a:e0:33:fe:52:d2:ca:ed:33:e6:d6:b0: 5b:2b:cb:d6:e6:8b:ba:25:36:1e:16:96:ba:04:ff: 02:98:93:d8:1e:f5:05:97:2c:87:76:3d:3a:73:67: 1b:05:57:86:a5:18:5b:e9:04:11:ce:de:51:bf:de: e4:4d:53:db:c1:01:e1:2c:e8:aa:da:29:b5:84:f0: 1e:09:5d:16:89:58:d7:c0:07:55:0a:df:52:00:fd: ca:a9:ce:de:53:b8:cc:42:25:33:80:a1:1b:c4:26: 63:65:a1:fe:ce:55:44:da:18:a7:79:15:30:4a:7d: 6b:e2:ea:43:76:a4:ce:23:f9:a4:ed:37:19:6a:46: c9:b6:62:b0:f3:fd:dc:99:16:aa:94:37:82:1c:01: f6:c3:9e:51:41:6b:45:23:05:1f:7e:52:16:a4:95: 85:20:ec:5b:8f:12:ab:e5:50:17:57:57:f9:6b:b3: 0b:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C9:66:83:2B:9B:2B:4F:99:36:59:42:43:1C:72:1E:C6:A4:FE:49:4C X509v3 Authority Key Identifier: keyid:3E:E7:70:F4:7F:D9:03:92:5D:80:AC:58:E0:5E:07:6F:3B:AA:11:0B X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Pudw9H_ZA5JdgKxY4F4HbzuqEQs.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/db/434344-323e-48f8-ade2-624f83682169/1/yWaDK5srT5k2WUJDHHIexqT-SUw.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/db/434344-323e-48f8-ade2-624f83682169/1/Pudw9H_ZA5JdgKxY4F4HbzuqEQs.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.38.27.0/24 Signature Algorithm: sha256WithRSAEncryption a4:bd:fd:41:d0:0b:0a:19:56:87:c6:ff:f6:91:55:66:8c:fe: 5c:e6:87:89:15:79:eb:b8:9c:d7:77:bd:59:8a:ef:74:13:d3: 09:5b:df:de:b2:c4:4f:d2:08:03:e3:87:25:46:5f:b6:b1:f3: 7e:a0:9f:fd:a7:5d:5c:e7:7a:3f:77:72:16:f9:ed:02:83:e8: 1f:12:98:06:fd:ef:f7:96:ce:67:da:25:c5:05:7e:aa:e6:e1: 99:f2:a9:87:24:80:b4:3f:5a:a5:a9:79:a1:61:f6:16:44:3a: c7:ab:79:e5:ae:81:c4:03:1a:81:35:38:20:10:f7:c4:bb:19: 34:22:18:d3:b2:3e:65:19:fc:24:49:e4:3e:be:67:10:b2:f4: 28:7a:39:06:cd:46:ab:4c:c8:76:0b:c1:99:08:18:14:74:03: a5:69:64:0d:7f:61:83:ba:1d:b9:bd:51:ef:08:3a:be:cb:88: ab:68:d5:d2:0c:cf:99:dc:7b:86:6a:f4:9d:cb:11:85:5d:33: 35:26:21:ef:e9:2b:0e:20:03:a7:cd:d4:79:18:17:e3:07:71: cf:e8:2e:13:f8:20:d1:99:0a:74:27:f5:56:85:1c:6d:ad:10: c3:b6:7d:b8:73:fc:fa:fc:38:30:64:28:8f:ce:de:f7:40:59: 90:37:cc:2f -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt5EGQIVlYjFHLhxyHyQNfbMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDNlZTc3MGY0N2ZkOTAzOTI1ZDgwYWM1OGUwNWUwNzZmM2Jh YTExMGIwHhcNMjYwMTAxMTAxNzU1WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhjOTY2ODMyYjliMmI0Zjk5MzY1OTQyNDMxYzcyMWVjNmE0ZmU0OTRjMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsYZ5BAOoA3b57dlJzoOvMkyB/MyS 0YhLOCSuOmpRAwwEycnyq/MQPC04GvNQ3tgNmbbuXk8ubuRN3xqKpvk6JY7lsFsE GQONeIevccBa4DP+UtLK7TPm1rBbK8vW5ou6JTYeFpa6BP8CmJPYHvUFlyyHdj06 c2cbBVeGpRhb6QQRzt5Rv97kTVPbwQHhLOiq2im1hPAeCV0WiVjXwAdVCt9SAP3K qc7eU7jMQiUzgKEbxCZjZaH+zlVE2hineRUwSn1r4upDdqTOI/mk7TcZakbJtmKw 8/3cmRaqlDeCHAH2w55RQWtFIwUfflIWpJWFIOxbjxKr5VAXV1f5a7MLrQIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFMlmgyubK0+ZNllCQxxyHsak/klMMB8GA1UdIwQY MBaAFD7ncPR/2QOSXYCsWOBeB287qhELMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvUHVkdzlIX1pBNUpkZ0t4WTRGNEhienVxRVFzLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kYi80MzQzNDQtMzIzZS00OGY4LWFkZTIt NjI0ZjgzNjgyMTY5LzEveVdhREs1c3JUNWsyV1VKREhISWV4cVQtU1V3LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kYi80MzQzNDQtMzIzZS00OGY4LWFkZTItNjI0ZjgzNjgyMTY5 LzEvUHVkdzlIX1pBNUpkZ0t4WTRGNEhienVxRVFzLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAuSYbMA0G CSqGSIb3DQEBCwUAA4IBAQCkvf1B0AsKGVaHxv/2kVVmjP5c5oeJFXnruJzXd71Z iu90E9MJW9/essRP0ggD44clRl+2sfN+oJ/9p11c53o/d3IW+e0Cg+gfEpgG/e/3 ls5n2iXFBX6q5uGZ8qmHJIC0P1qlqXmhYfYWRDrHq3nlroHEAxqBNTggEPfEuxk0 IhjTsj5lGfwkSeQ+vmcQsvQoejkGzUarTMh2C8GZCBgUdAOlaWQNf2GDuh25vVHv CDq+y4iraNXSDM+Z3HuGavSdyxGFXTM1JiHv6SsOIAOnzdR5GBfjB3HP6C4T+CDR mQp0J/VWhRxtrRDDtn24c/z6/DgwZCiPzt73QFmQN8wv -----END CERTIFICATE-----Generated at Sun Jan 11 23:38:37 2026 by rpki-client