This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/2ba97e-598b-48dd-8d56-f5fb71b9a51f/1/ygGjKKC2rt_r7z3WN6elQyJesZM.roa File: ygGjKKC2rt_r7z3WN6elQyJesZM.roa (raw, json) Hash identifier: +2SgBLWhKwHY0ZnBObD5An3hPoGzuoUPiwBHPXBeX0U= Subject key identifier: CA:01:A3:28:A0:B6:AE:DF:EB:EF:3D:D6:37:A7:A5:43:22:5E:B1:93 Certificate issuer: /CN=f04a58047f37bbc057944bbf8cad8742879592da Certificate serial: 019B7E37CF5FF9AA0F60444294E328E39395 Authority key identifier: F0:4A:58:04:7F:37:BB:C0:57:94:4B:BF:8C:AD:87:42:87:95:92:DA Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8EpYBH83u8BXlEu_jK2HQoeVkto.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/2ba97e-598b-48dd-8d56-f5fb71b9a51f/1/ygGjKKC2rt_r7z3WN6elQyJesZM.roa Signing time: Fri 02 Jan 2026 10:19:05 +0000 ROA not before: Fri 02 Jan 2026 10:19:05 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 268624 IP address blocks: 77.246.245.0/24 maxlen: 24 124.198.135.0/24 maxlen: 24 124.198.145.0/24 maxlen: 24 155.2.189.0/24 maxlen: 24 170.62.161.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/66/2ba97e-598b-48dd-8d56-f5fb71b9a51f/1/8EpYBH83u8BXlEu_jK2HQoeVkto.crl rsync://rpki.ripe.net/repository/DEFAULT/66/2ba97e-598b-48dd-8d56-f5fb71b9a51f/1/8EpYBH83u8BXlEu_jK2HQoeVkto.mft rsync://rpki.ripe.net/repository/DEFAULT/8EpYBH83u8BXlEu_jK2HQoeVkto.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 24 Jan 2026 00:00:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7e:37:cf:5f:f9:aa:0f:60:44:42:94:e3:28:e3:93:95 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=f04a58047f37bbc057944bbf8cad8742879592da Validity Not Before: Jan 2 10:19:05 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=ca01a328a0b6aedfebef3dd637a7a543225eb193 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:99:6c:3a:69:5e:df:ee:27:fe:2d:32:70:63: 08:68:ce:8e:6f:cd:78:a0:b8:57:7e:89:ae:8c:d7: 2b:31:61:3b:15:e6:c2:f9:0b:d2:bd:65:7d:05:4b: 13:64:b4:fb:96:d3:ff:85:08:1b:1e:ee:45:ae:5b: 8f:d6:a7:72:29:47:c3:1a:b1:96:e4:67:81:27:da: 6a:37:61:16:28:1f:cb:02:08:71:82:9c:9d:93:ae: 33:5e:42:e6:0e:9c:97:49:2f:ac:09:d9:2a:38:d5: a0:c4:3a:f1:79:34:b4:9f:41:32:f2:cb:45:57:0a: 87:c0:9e:6e:1a:7c:04:e0:37:33:bc:50:dc:fd:2c: bb:9a:10:fe:fe:aa:e2:59:ff:1a:25:d0:1b:c6:07: 2a:f4:6d:b7:07:a3:c3:fa:d5:6e:a1:8a:2e:c7:a3: 12:f9:66:8f:e4:7f:db:08:d5:ba:8b:1b:12:a2:dd: 50:e2:d4:07:37:cb:17:d7:41:cf:ab:f3:2f:16:54: d4:55:10:9a:bf:4a:79:da:c6:32:d3:2d:20:17:67: 14:37:45:29:51:7d:e7:c0:59:14:42:e6:02:50:30: 23:c1:1c:f0:72:38:4e:d4:bb:a2:fb:f0:ec:cf:bf: 5d:b7:a5:f2:76:44:76:7b:28:56:6a:71:8e:77:c0: 14:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CA:01:A3:28:A0:B6:AE:DF:EB:EF:3D:D6:37:A7:A5:43:22:5E:B1:93 X509v3 Authority Key Identifier: keyid:F0:4A:58:04:7F:37:BB:C0:57:94:4B:BF:8C:AD:87:42:87:95:92:DA X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8EpYBH83u8BXlEu_jK2HQoeVkto.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/2ba97e-598b-48dd-8d56-f5fb71b9a51f/1/ygGjKKC2rt_r7z3WN6elQyJesZM.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/66/2ba97e-598b-48dd-8d56-f5fb71b9a51f/1/8EpYBH83u8BXlEu_jK2HQoeVkto.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 77.246.245.0/24 124.198.135.0/24 124.198.145.0/24 155.2.189.0/24 170.62.161.0/24 Signature Algorithm: sha256WithRSAEncryption 66:e7:ae:63:f7:c9:bb:a5:59:df:22:80:54:30:83:9e:39:64: fc:07:e3:3e:fc:7c:38:d7:e2:ed:8f:03:5f:8e:3e:d9:d7:44: 7e:ae:1b:52:10:f9:96:d0:83:68:cc:7b:42:c8:98:9d:c4:44: 48:4e:fc:86:02:8c:5b:01:62:25:2d:76:0c:78:6f:5f:e8:24: b7:57:fc:ed:3a:44:72:28:22:09:bc:2a:de:aa:b9:aa:6b:b8: b1:65:63:86:a4:e9:30:35:f5:81:70:e7:47:17:9d:0c:97:77: cb:33:03:86:86:06:d1:f6:db:b6:bb:1a:50:0a:10:77:70:f8: 75:67:dc:6c:e0:da:29:32:6a:2c:31:68:b7:51:34:16:b9:28: a9:e8:50:f0:5d:f3:94:27:38:42:44:d8:e1:49:61:f2:f7:74: 75:88:bf:b9:0b:52:d6:47:e8:9d:b6:24:6a:de:cd:7d:c6:fc: 46:e1:e9:55:0b:02:98:9a:74:69:9d:08:88:28:c7:c4:20:34: 2d:54:0a:06:4c:31:21:1a:f3:b2:fe:96:00:09:64:b1:3f:65: 1a:e6:d1:3b:bb:2a:6b:cd:58:14:9d:49:bb:a9:76:a3:6b:47: 7e:ef:91:76:27:ea:90:e3:a8:5c:da:e9:87:0c:e8:d6:64:6e: 53:de:08:53 -----BEGIN CERTIFICATE----- MIIFFTCCA/2gAwIBAgISAZt+N89f+aoPYERClOMo45OVMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGYwNGE1ODA0N2YzN2JiYzA1Nzk0NGJiZjhjYWQ4NzQyODc5 NTkyZGEwHhcNMjYwMTAyMTAxOTA1WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhjYTAxYTMyOGEwYjZhZWRmZWJlZjNkZDYzN2E3YTU0MzIyNWViMTkzMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsJlsOmle3+4n/i0ycGMIaM6Ob814 oLhXfomujNcrMWE7FebC+QvSvWV9BUsTZLT7ltP/hQgbHu5FrluP1qdyKUfDGrGW 5GeBJ9pqN2EWKB/LAghxgpydk64zXkLmDpyXSS+sCdkqONWgxDrxeTS0n0Ey8stF VwqHwJ5uGnwE4DczvFDc/Sy7mhD+/qriWf8aJdAbxgcq9G23B6PD+tVuoYoux6MS +WaP5H/bCNW6ixsSot1Q4tQHN8sX10HPq/MvFlTUVRCav0p52sYy0y0gF2cUN0Up UX3nwFkUQuYCUDAjwRzwcjhO1Lui+/Dsz79dt6XydkR2eyhWanGOd8AUAQIDAQAB o4ICITCCAh0wHQYDVR0OBBYEFMoBoyigtq7f6+891jenpUMiXrGTMB8GA1UdIwQY MBaAFPBKWAR/N7vAV5RLv4yth0KHlZLaMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvOEVwWUJIODN1OEJYbEV1X2pLMkhRb2VWa3RvLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82Ni8yYmE5N2UtNTk4Yi00OGRkLThkNTYt ZjVmYjcxYjlhNTFmLzEveWdHaktLQzJydF9yN3ozV042ZWxReUplc1pNLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC82Ni8yYmE5N2UtNTk4Yi00OGRkLThkNTYtZjVmYjcxYjlhNTFm LzEvOEVwWUJIODN1OEJYbEV1X2pLMkhRb2VWa3RvLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMDcGCCsGAQUFBwEHAQH/BCgwJjAkBAIAATAeAwQATfb1AwQA fMaHAwQAfMaRAwQAmwK9AwQAqj6hMA0GCSqGSIb3DQEBCwUAA4IBAQBm565j98m7 pVnfIoBUMIOeOWT8B+M+/Hw41+LtjwNfjj7Z10R+rhtSEPmW0INozHtCyJidxERI TvyGAoxbAWIlLXYMeG9f6CS3V/ztOkRyKCIJvCreqrmqa7ixZWOGpOkwNfWBcOdH F50Ml3fLMwOGhgbR9tu2uxpQChB3cPh1Z9xs4NopMmosMWi3UTQWuSip6FDwXfOU JzhCRNjhSWHy93R1iL+5C1LWR+idtiRq3s19xvxG4elVCwKYmnRpnQiIKMfEIDQt VAoGTDEhGvOy/pYACWSxP2Ua5tE7uyprzVgUnUm7qXaja0d+75F2J+qQ46hc2umH DOjWZG5T3ghT -----END CERTIFICATE-----Generated at Fri Jan 23 04:39:09 2026 by rpki-client