This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/05/2a55f5-3cdc-43ea-9803-74ee83736e97/1/g_yh8ATZEMhSBF0G1C4tLoFKgkU.roa File: g_yh8ATZEMhSBF0G1C4tLoFKgkU.roa (raw, json) Hash identifier: Tk8GTttv9FTjfJX5sJv62gBRU6O1NMeWOJfwSexMHg8= Subject key identifier: 83:FC:A1:F0:04:D9:10:C8:52:04:5D:06:D4:2E:2D:2E:81:4A:82:45 Certificate issuer: /CN=6c895335ba98f7c626f0c819e9e2894c61d44754 Certificate serial: 019B7EA73B7BEEDF48B208A69E9BD7CA6EEF Authority key identifier: 6C:89:53:35:BA:98:F7:C6:26:F0:C8:19:E9:E2:89:4C:61:D4:47:54 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bIlTNbqY98Ym8MgZ6eKJTGHUR1Q.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/05/2a55f5-3cdc-43ea-9803-74ee83736e97/1/g_yh8ATZEMhSBF0G1C4tLoFKgkU.roa Signing time: Fri 02 Jan 2026 12:20:47 +0000 ROA not before: Fri 02 Jan 2026 12:20:47 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 41088 IP address blocks: 89.190.64.0/19 maxlen: 19 89.190.85.0/24 maxlen: 24 2a00:bfe0::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/05/2a55f5-3cdc-43ea-9803-74ee83736e97/1/bIlTNbqY98Ym8MgZ6eKJTGHUR1Q.crl rsync://rpki.ripe.net/repository/DEFAULT/05/2a55f5-3cdc-43ea-9803-74ee83736e97/1/bIlTNbqY98Ym8MgZ6eKJTGHUR1Q.mft rsync://rpki.ripe.net/repository/DEFAULT/bIlTNbqY98Ym8MgZ6eKJTGHUR1Q.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 03 Feb 2026 15:01:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7e:a7:3b:7b:ee:df:48:b2:08:a6:9e:9b:d7:ca:6e:ef Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6c895335ba98f7c626f0c819e9e2894c61d44754 Validity Not Before: Jan 2 12:20:47 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=83fca1f004d910c852045d06d42e2d2e814a8245 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:65:1a:af:e1:9a:07:a3:c8:28:4f:7d:42:de: 56:7c:e6:e3:af:a8:5c:86:dd:93:dd:c5:86:c2:b5: 7e:0f:d3:66:15:9e:c3:8e:2d:48:b9:87:56:21:55: f6:12:b0:32:53:37:e0:72:e5:5d:0d:ed:b3:14:b5: e6:95:de:79:b8:16:b0:6e:c8:37:b7:4e:89:cf:60: e2:19:fc:cb:10:8d:95:4e:ce:ca:ad:7e:60:95:64: c2:f6:f9:ff:34:9b:73:1e:13:4d:4d:22:42:30:c4: 41:e0:0c:28:78:e5:37:fc:f5:e8:fa:35:fa:6e:a9: 70:c6:f4:c3:14:e6:85:6f:7f:9b:10:af:cf:73:c2: 23:e7:27:c0:66:51:24:3d:a7:d0:a3:23:74:79:f6: b7:a7:aa:e9:ab:ad:22:09:72:44:b9:d5:15:05:e4: b2:c4:ca:ba:10:80:e8:69:2f:47:8d:f7:de:39:38: 9e:51:15:9c:4f:99:8b:de:6e:4d:84:1e:3d:1e:e4: 54:c2:9c:ec:43:da:5c:59:5e:63:bf:a4:ea:c7:83: e7:4d:ed:a1:5e:04:80:29:f4:7a:6e:f1:38:8c:ba: 56:6e:1f:55:80:fb:73:0a:2d:85:94:fc:3d:47:d3: 62:11:d2:c6:f7:d5:b8:9b:b1:d0:5c:0c:e0:77:b0: e3:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 83:FC:A1:F0:04:D9:10:C8:52:04:5D:06:D4:2E:2D:2E:81:4A:82:45 X509v3 Authority Key Identifier: keyid:6C:89:53:35:BA:98:F7:C6:26:F0:C8:19:E9:E2:89:4C:61:D4:47:54 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bIlTNbqY98Ym8MgZ6eKJTGHUR1Q.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/05/2a55f5-3cdc-43ea-9803-74ee83736e97/1/g_yh8ATZEMhSBF0G1C4tLoFKgkU.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/05/2a55f5-3cdc-43ea-9803-74ee83736e97/1/bIlTNbqY98Ym8MgZ6eKJTGHUR1Q.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 89.190.64.0/19 IPv6: 2a00:bfe0::/32 Signature Algorithm: sha256WithRSAEncryption ad:e8:4a:a6:7e:12:0f:87:cf:b9:3c:cc:02:1f:36:c8:92:5b: cf:b4:fb:b9:72:18:65:b2:2f:45:8a:20:6e:de:77:9b:ef:cf: ec:7b:2c:13:75:b5:ab:30:58:e1:bc:3f:31:e9:a8:2e:9b:a9: f8:77:b1:d6:3e:fa:1e:9c:51:59:1b:99:a3:b3:e3:85:df:49: f7:88:1f:4f:9c:51:f1:b9:ec:52:2d:bd:1d:e7:d1:7d:ed:86: b1:1d:40:6f:40:dc:a1:70:71:35:c6:33:e6:ea:d4:21:75:1c: d4:62:da:82:67:db:09:26:7e:7f:0c:ee:59:92:e7:ed:17:c9: 55:85:68:dd:c8:0d:57:e7:5b:ac:18:e6:5c:56:4b:6f:22:3d: 98:d4:7e:1e:e5:a7:d6:3b:80:84:8a:9c:35:40:22:d2:bf:31: f5:e4:7a:07:ad:fb:4d:4b:72:db:cc:f0:61:3e:75:4b:40:59: ba:37:94:a3:49:3d:69:43:91:59:a0:8e:c0:34:01:e2:19:a1: c1:1d:d8:d0:ec:3c:c4:17:90:ea:a7:b8:c4:2e:a2:8c:c6:3b: 28:9d:78:44:ee:d7:5c:bd:9e:b5:1d:04:0e:35:1b:b1:1b:99: 98:b8:51:3a:58:4d:aa:e7:8b:c7:ab:58:dd:ff:b6:ba:8c:9f: d0:b7:56:3f -----BEGIN CERTIFICATE----- MIIFDDCCA/SgAwIBAgISAZt+pzt77t9IsgimnpvXym7vMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDZjODk1MzM1YmE5OGY3YzYyNmYwYzgxOWU5ZTI4OTRjNjFk NDQ3NTQwHhcNMjYwMTAyMTIyMDQ3WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg4M2ZjYTFmMDA0ZDkxMGM4NTIwNDVkMDZkNDJlMmQyZTgxNGE4MjQ1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwGUar+GaB6PIKE99Qt5WfObjr6hc ht2T3cWGwrV+D9NmFZ7Dji1IuYdWIVX2ErAyUzfgcuVdDe2zFLXmld55uBawbsg3 t06Jz2DiGfzLEI2VTs7KrX5glWTC9vn/NJtzHhNNTSJCMMRB4AwoeOU3/PXo+jX6 bqlwxvTDFOaFb3+bEK/Pc8Ij5yfAZlEkPafQoyN0efa3p6rpq60iCXJEudUVBeSy xMq6EIDoaS9HjffeOTieURWcT5mL3m5NhB49HuRUwpzsQ9pcWV5jv6Tqx4PnTe2h XgSAKfR6bvE4jLpWbh9VgPtzCi2FlPw9R9NiEdLG99W4m7HQXAzgd7DjWQIDAQAB o4ICGDCCAhQwHQYDVR0OBBYEFIP8ofAE2RDIUgRdBtQuLS6BSoJFMB8GA1UdIwQY MBaAFGyJUzW6mPfGJvDIGeniiUxh1EdUMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvYklsVE5icVk5OFltOE1nWjZlS0pUR0hVUjFRLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wNS8yYTU1ZjUtM2NkYy00M2VhLTk4MDMt NzRlZTgzNzM2ZTk3LzEvZ195aDhBVFpFTWhTQkYwRzFDNHRMb0ZLZ2tVLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wNS8yYTU1ZjUtM2NkYy00M2VhLTk4MDMtNzRlZTgzNzM2ZTk3 LzEvYklsVE5icVk5OFltOE1nWjZlS0pUR0hVUjFRLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMC4GCCsGAQUFBwEHAQH/BB8wHTAMBAIAATAGAwQFWb5AMA0E AgACMAcDBQAqAL/gMA0GCSqGSIb3DQEBCwUAA4IBAQCt6EqmfhIPh8+5PMwCHzbI klvPtPu5chhlsi9FiiBu3neb78/seywTdbWrMFjhvD8x6agum6n4d7HWPvoenFFZ G5mjs+OF30n3iB9PnFHxuexSLb0d59F97YaxHUBvQNyhcHE1xjPm6tQhdRzUYtqC Z9sJJn5/DO5ZkuftF8lVhWjdyA1X51usGOZcVktvIj2Y1H4e5afWO4CEipw1QCLS vzH15HoHrftNS3LbzPBhPnVLQFm6N5SjST1pQ5FZoI7ANAHiGaHBHdjQ7DzEF5Dq p7jELqKMxjsonXhE7tdcvZ61HQQONRuxG5mYuFE6WE2q54vHq1jd/7a6jJ/Qt1Y/ -----END CERTIFICATE-----Generated at Mon Feb 2 17:17:55 2026 by rpki-client