This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/YNNiamRflBw3bTZDA-t7ml8d4os.roa File: YNNiamRflBw3bTZDA-t7ml8d4os.roa (raw, json) Hash identifier: 9jtNG//JJMRFIPFjP4Ei/OyURsIPa7tyV3ubLH+kh9E= Subject key identifier: 60:D3:62:6A:64:5F:94:1C:37:6D:36:43:03:EB:7B:9A:5F:1D:E2:8B Certificate issuer: /CN=22c4ac3e3c43d70d05349c815baadd38ad775e9d Certificate serial: 019B78A31B1569899D062A09E30E220BC0A4 Authority key identifier: 22:C4:AC:3E:3C:43:D7:0D:05:34:9C:81:5B:AA:DD:38:AD:77:5E:9D Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/YNNiamRflBw3bTZDA-t7ml8d4os.roa Signing time: Thu 01 Jan 2026 08:18:33 +0000 ROA not before: Thu 01 Jan 2026 08:18:33 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 197516 IP address blocks: 217.145.95.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/IsSsPjxD1w0FNJyBW6rdOK13Xp0.crl rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/IsSsPjxD1w0FNJyBW6rdOK13Xp0.mft rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 03 Jan 2026 02:00:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:78:a3:1b:15:69:89:9d:06:2a:09:e3:0e:22:0b:c0:a4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=22c4ac3e3c43d70d05349c815baadd38ad775e9d Validity Not Before: Jan 1 08:18:33 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=60d3626a645f941c376d364303eb7b9a5f1de28b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:a0:45:65:95:b0:98:38:b9:25:a4:72:c7:4c: 6d:0e:44:09:50:9f:14:2c:8e:14:ad:45:2f:83:ed: 8b:b0:c4:54:ac:6c:4f:85:cf:a0:45:f2:4b:93:51: d7:35:9b:02:fb:84:28:d2:e5:a6:1f:3d:88:4f:53: c9:c2:cc:94:63:74:d9:66:9f:e5:53:7d:0b:8c:f6: 22:19:db:3f:b8:28:84:97:24:05:08:3a:e8:ed:9e: c0:5b:86:71:e7:24:8a:15:aa:b4:7d:bf:80:72:9e: b0:36:46:a2:d5:b7:80:a4:1b:3e:e8:3e:6c:78:e4: a0:ea:99:00:36:c6:9c:5f:40:d4:e6:12:22:fb:dc: ac:be:a6:ca:e2:d0:7f:1d:d8:92:10:07:ee:e6:1c: eb:7c:21:a7:ea:8a:ab:2f:44:2d:0f:ed:05:a6:94: c0:c0:99:c5:e1:0c:50:ad:dc:f3:e5:37:ef:08:c1: 3d:99:54:26:01:5a:dc:42:34:bf:61:db:bd:df:05: bc:ad:f8:cb:ed:51:9e:ee:73:35:8a:a5:1e:42:36: ab:89:9a:58:3f:51:70:c8:b5:3d:d9:ea:64:cf:0a: 10:e9:0c:01:0e:49:1b:d2:ba:bb:3a:04:bf:8b:d6: b2:bd:03:a9:8f:1b:b0:8c:28:38:0e:f9:46:98:13: 85:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 60:D3:62:6A:64:5F:94:1C:37:6D:36:43:03:EB:7B:9A:5F:1D:E2:8B X509v3 Authority Key Identifier: keyid:22:C4:AC:3E:3C:43:D7:0D:05:34:9C:81:5B:AA:DD:38:AD:77:5E:9D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/YNNiamRflBw3bTZDA-t7ml8d4os.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/IsSsPjxD1w0FNJyBW6rdOK13Xp0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 217.145.95.0/24 Signature Algorithm: sha256WithRSAEncryption a3:03:7d:8e:0e:c5:95:bf:16:ad:b8:c8:bb:bd:fa:cd:5d:7f: 6f:1e:5e:12:1f:68:9a:15:9a:92:07:d6:f4:71:32:94:38:a8: 69:7a:3e:df:29:22:6f:d8:af:6f:62:e4:52:b8:b0:38:fe:a2: d2:08:e6:15:18:10:a0:e4:ac:d7:b5:ce:dc:9d:c7:63:c2:20: 45:8d:59:b0:e8:fd:8f:2e:25:89:73:a7:19:3a:6d:02:fe:51: a7:35:6a:c1:77:9d:69:60:e7:1a:76:36:22:d2:d9:7b:b7:fe: 05:9d:1e:e4:53:cb:36:32:3f:f2:d4:d1:88:74:cb:7e:d7:d5: 05:ad:71:88:39:3c:9b:d0:ed:d5:5d:53:d6:a8:b4:99:06:a7: 84:e7:57:a7:0c:f9:ab:0f:16:51:7f:84:98:30:f3:dc:6f:50: 79:41:1d:c8:de:64:54:c0:d2:4d:5e:a5:3c:e8:0c:f6:3d:4b: 78:94:c0:03:26:00:30:38:f5:3c:76:d9:a3:ce:2a:fc:2e:dc: 06:14:bb:13:ea:da:d4:a2:be:1d:18:2c:ef:9c:5a:13:22:13: 70:30:1b:1c:38:66:05:34:7a:2b:d3:4a:03:08:5a:38:82:ec: 38:db:ee:18:9a:b2:42:16:10:d1:5d:1e:e5:b1:06:ee:8a:14: 00:60:54:ed -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt4oxsVaYmdBioJ4w4iC8CkMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDIyYzRhYzNlM2M0M2Q3MGQwNTM0OWM4MTViYWFkZDM4YWQ3 NzVlOWQwHhcNMjYwMTAxMDgxODMzWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg2MGQzNjI2YTY0NWY5NDFjMzc2ZDM2NDMwM2ViN2I5YTVmMWRlMjhiMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyaBFZZWwmDi5JaRyx0xtDkQJUJ8U LI4UrUUvg+2LsMRUrGxPhc+gRfJLk1HXNZsC+4Qo0uWmHz2IT1PJwsyUY3TZZp/l U30LjPYiGds/uCiElyQFCDro7Z7AW4Zx5ySKFaq0fb+Acp6wNkai1beApBs+6D5s eOSg6pkANsacX0DU5hIi+9ysvqbK4tB/HdiSEAfu5hzrfCGn6oqrL0QtD+0FppTA wJnF4QxQrdzz5TfvCME9mVQmAVrcQjS/Ydu93wW8rfjL7VGe7nM1iqUeQjariZpY P1FwyLU92epkzwoQ6QwBDkkb0rq7OgS/i9ayvQOpjxuwjCg4DvlGmBOF8wIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFGDTYmpkX5QcN202QwPre5pfHeKLMB8GA1UdIwQY MBaAFCLErD48Q9cNBTScgVuq3Titd16dMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSXNTc1BqeEQxdzBGTkp5Qlc2cmRPSzEzWHAwLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wMy85MTNhM2EtZjU1MC00NmYwLWFjYzct Y2QzY2E1OTc1NzEyLzEvWU5OaWFtUmZsQnczYlRaREEtdDdtbDhkNG9zLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wMy85MTNhM2EtZjU1MC00NmYwLWFjYzctY2QzY2E1OTc1NzEy LzEvSXNTc1BqeEQxdzBGTkp5Qlc2cmRPSzEzWHAwLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQA2ZFfMA0G CSqGSIb3DQEBCwUAA4IBAQCjA32ODsWVvxatuMi7vfrNXX9vHl4SH2iaFZqSB9b0 cTKUOKhpej7fKSJv2K9vYuRSuLA4/qLSCOYVGBCg5KzXtc7cncdjwiBFjVmw6P2P LiWJc6cZOm0C/lGnNWrBd51pYOcadjYi0tl7t/4FnR7kU8s2Mj/y1NGIdMt+19UF rXGIOTyb0O3VXVPWqLSZBqeE51enDPmrDxZRf4SYMPPcb1B5QR3I3mRUwNJNXqU8 6Az2PUt4lMADJgAwOPU8dtmjzir8LtwGFLsT6trUor4dGCzvnFoTIhNwMBscOGYF NHor00oDCFo4guw42+4YmrJCFhDRXR7lsQbuihQAYFTt -----END CERTIFICATE-----Generated at Fri Jan 2 12:03:28 2026 by rpki-client