This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/00/d4469a-13a8-472c-b46f-4bb414623a14/1/YYlR0VhASW-c1FKU9zzl7csrdhQ.roa File: YYlR0VhASW-c1FKU9zzl7csrdhQ.roa (raw, json) Hash identifier: L8Cgn7blv4wmGFxmaxB9nE0adWzGkvnaCFP3mMVQv7g= Subject key identifier: 61:89:51:D1:58:40:49:6F:9C:D4:52:94:F7:3C:E5:ED:CB:2B:76:14 Certificate issuer: /CN=89a041670001660a3720b77d764d836852190138 Certificate serial: 019B7CEDBCF83103D8484EAA94096F43CF62 Authority key identifier: 89:A0:41:67:00:01:66:0A:37:20:B7:7D:76:4D:83:68:52:19:01:38 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iaBBZwABZgo3ILd9dk2DaFIZATg.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/00/d4469a-13a8-472c-b46f-4bb414623a14/1/YYlR0VhASW-c1FKU9zzl7csrdhQ.roa Signing time: Fri 02 Jan 2026 04:18:33 +0000 ROA not before: Fri 02 Jan 2026 04:18:33 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 2914 IP address blocks: 95.128.152.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/00/d4469a-13a8-472c-b46f-4bb414623a14/1/iaBBZwABZgo3ILd9dk2DaFIZATg.crl rsync://rpki.ripe.net/repository/DEFAULT/00/d4469a-13a8-472c-b46f-4bb414623a14/1/iaBBZwABZgo3ILd9dk2DaFIZATg.mft rsync://rpki.ripe.net/repository/DEFAULT/iaBBZwABZgo3ILd9dk2DaFIZATg.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 08 Jan 2026 15:30:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7c:ed:bc:f8:31:03:d8:48:4e:aa:94:09:6f:43:cf:62 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=89a041670001660a3720b77d764d836852190138 Validity Not Before: Jan 2 04:18:33 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=618951d15840496f9cd45294f73ce5edcb2b7614 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f4:3d:44:e3:6f:a2:55:4c:f4:12:69:b9:a1:e4: d7:6b:d1:63:74:c7:1a:80:f1:8d:a1:fb:40:84:b8: ed:65:10:2a:83:b6:fb:4d:98:a5:35:3a:06:63:62: c1:e7:e3:b2:ae:c5:b5:03:90:a5:3d:f2:d7:05:ce: ce:65:7f:1e:e9:90:34:b8:8a:95:f7:99:44:6c:c5: 87:e1:05:dc:bf:ae:b2:bb:eb:0d:72:4d:2f:48:4a: cc:8b:e3:df:f3:00:af:04:67:1d:cd:62:32:6f:76: 4e:e8:3f:78:5f:b4:85:02:13:91:2f:74:55:37:8d: e2:fa:5a:67:cf:40:c5:04:ff:b7:f5:bf:ae:59:5d: c8:0f:7b:15:b3:e9:9e:54:c9:3f:a7:b6:0f:58:9c: 3d:8f:b6:1c:4e:c0:0b:89:90:a5:b9:66:2d:c5:36: 05:ba:10:6a:f3:fb:ba:b3:48:10:f9:a6:dd:e1:08: 38:ae:0a:c6:ba:ec:7c:ac:7e:51:72:e5:cd:2c:8e: 67:64:59:96:30:b8:92:79:88:1d:90:4d:f2:b9:a3: d0:0c:3e:f3:f0:e6:0d:3f:c3:f3:69:25:4f:17:51: 73:08:40:60:8e:a6:2c:c1:7e:fd:a7:02:2d:1c:a2: c4:c2:1b:72:8b:05:f1:8f:a8:de:58:64:24:47:cb: ad:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 61:89:51:D1:58:40:49:6F:9C:D4:52:94:F7:3C:E5:ED:CB:2B:76:14 X509v3 Authority Key Identifier: keyid:89:A0:41:67:00:01:66:0A:37:20:B7:7D:76:4D:83:68:52:19:01:38 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iaBBZwABZgo3ILd9dk2DaFIZATg.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/00/d4469a-13a8-472c-b46f-4bb414623a14/1/YYlR0VhASW-c1FKU9zzl7csrdhQ.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/00/d4469a-13a8-472c-b46f-4bb414623a14/1/iaBBZwABZgo3ILd9dk2DaFIZATg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 95.128.152.0/24 Signature Algorithm: sha256WithRSAEncryption 93:18:49:92:05:94:99:4c:8f:f4:af:75:4c:06:d4:38:74:e5: 8a:41:fa:92:84:07:c1:7e:a2:84:6b:c9:ae:59:6a:3e:b2:86: bf:8d:64:25:2b:07:32:92:cc:a7:4f:59:b8:76:aa:70:02:53: c4:bb:50:d5:eb:4f:8f:12:47:75:f2:32:d1:08:e3:f2:2d:8f: 9c:fb:91:bd:33:b4:00:43:64:c6:ae:2c:e7:4b:43:e4:35:0f: 7e:77:f7:dc:4f:15:92:ea:a0:6d:db:b1:7b:9e:2b:b9:34:5d: 75:c0:d0:d0:53:35:95:75:46:fc:3f:c4:79:50:ec:b3:7c:28: da:84:24:0b:2d:5c:d4:a8:0e:9c:1d:74:83:99:91:2a:fc:33: 2c:11:ee:7b:27:04:61:00:a8:0a:7e:80:ba:9d:ee:5b:5d:c8: 83:54:f6:b6:80:2b:e1:81:94:18:d2:0f:c9:76:4f:12:d9:4c: ec:ca:06:f0:99:9c:c8:fe:a8:58:f3:6a:92:cb:33:58:b7:b1: 36:29:dc:82:3b:5f:45:9e:1a:ca:8e:ab:4a:72:ba:67:22:73: 3a:61:23:75:fe:62:7f:03:21:1c:bd:4d:f4:40:22:fd:00:c7: 71:98:05:ad:a3:5a:7b:32:53:f0:0b:e1:69:6d:40:18:4f:96: 14:bc:33:46 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt87bz4MQPYSE6qlAlvQ89iMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDg5YTA0MTY3MDAwMTY2MGEzNzIwYjc3ZDc2NGQ4MzY4NTIx OTAxMzgwHhcNMjYwMTAyMDQxODMzWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg2MTg5NTFkMTU4NDA0OTZmOWNkNDUyOTRmNzNjZTVlZGNiMmI3NjE0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA9D1E42+iVUz0Emm5oeTXa9FjdMca gPGNoftAhLjtZRAqg7b7TZilNToGY2LB5+OyrsW1A5ClPfLXBc7OZX8e6ZA0uIqV 95lEbMWH4QXcv66yu+sNck0vSErMi+Pf8wCvBGcdzWIyb3ZO6D94X7SFAhORL3RV N43i+lpnz0DFBP+39b+uWV3ID3sVs+meVMk/p7YPWJw9j7YcTsALiZCluWYtxTYF uhBq8/u6s0gQ+abd4Qg4rgrGuux8rH5RcuXNLI5nZFmWMLiSeYgdkE3yuaPQDD7z 8OYNP8PzaSVPF1FzCEBgjqYswX79pwItHKLEwhtyiwXxj6jeWGQkR8ut0wIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFGGJUdFYQElvnNRSlPc85e3LK3YUMB8GA1UdIwQY MBaAFImgQWcAAWYKNyC3fXZNg2hSGQE4MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvaWFCQlp3QUJaZ28zSUxkOWRrMkRhRklaQVRnLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wMC9kNDQ2OWEtMTNhOC00NzJjLWI0NmYt NGJiNDE0NjIzYTE0LzEvWVlsUjBWaEFTVy1jMUZLVTl6emw3Y3NyZGhRLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wMC9kNDQ2OWEtMTNhOC00NzJjLWI0NmYtNGJiNDE0NjIzYTE0 LzEvaWFCQlp3QUJaZ28zSUxkOWRrMkRhRklaQVRnLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAX4CYMA0G CSqGSIb3DQEBCwUAA4IBAQCTGEmSBZSZTI/0r3VMBtQ4dOWKQfqShAfBfqKEa8mu WWo+soa/jWQlKwcyksynT1m4dqpwAlPEu1DV60+PEkd18jLRCOPyLY+c+5G9M7QA Q2TGriznS0PkNQ9+d/fcTxWS6qBt27F7niu5NF11wNDQUzWVdUb8P8R5UOyzfCja hCQLLVzUqA6cHXSDmZEq/DMsEe57JwRhAKgKfoC6ne5bXciDVPa2gCvhgZQY0g/J dk8S2UzsygbwmZzI/qhY82qSyzNYt7E2KdyCO19FnhrKjqtKcrpnInM6YSN1/mJ/ AyEcvU30QCL9AMdxmAWto1p7MlPwC+FpbUAYT5YUvDNG -----END CERTIFICATE-----Generated at Thu Jan 8 00:16:39 2026 by rpki-client