This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/06/ff5cc6-8f61-447b-b658-4fb559b3b9b3/1/yrbB1vsBIjdbUaylEPRfMMB-k3g.roa File: yrbB1vsBIjdbUaylEPRfMMB-k3g.roa (raw, json) Hash identifier: uUmid3sXY3uL8GFqpHsIlPFVeU82iqmCl12sBdQU42s= Subject key identifier: CA:B6:C1:D6:FB:01:22:37:5B:51:AC:A5:10:F4:5F:30:C0:7E:93:78 Certificate issuer: /CN=767f3bd4bfbd3071c38cd4d7092bd3490920c3d9 Certificate serial: 019B78A2FC341168EA8DC9E6F644339EBA3A Authority key identifier: 76:7F:3B:D4:BF:BD:30:71:C3:8C:D4:D7:09:2B:D3:49:09:20:C3:D9 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dn871L-9MHHDjNTXCSvTSQkgw9k.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/06/ff5cc6-8f61-447b-b658-4fb559b3b9b3/1/yrbB1vsBIjdbUaylEPRfMMB-k3g.roa Signing time: Thu 01 Jan 2026 08:18:25 +0000 ROA not before: Thu 01 Jan 2026 08:18:25 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 6762 IP address blocks: 185.252.211.0/24 maxlen: 24 212.24.113.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/06/ff5cc6-8f61-447b-b658-4fb559b3b9b3/1/dn871L-9MHHDjNTXCSvTSQkgw9k.crl rsync://rpki.ripe.net/repository/DEFAULT/06/ff5cc6-8f61-447b-b658-4fb559b3b9b3/1/dn871L-9MHHDjNTXCSvTSQkgw9k.mft rsync://rpki.ripe.net/repository/DEFAULT/dn871L-9MHHDjNTXCSvTSQkgw9k.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 21 Jan 2026 15:30:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:78:a2:fc:34:11:68:ea:8d:c9:e6:f6:44:33:9e:ba:3a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=767f3bd4bfbd3071c38cd4d7092bd3490920c3d9 Validity Not Before: Jan 1 08:18:25 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=cab6c1d6fb0122375b51aca510f45f30c07e9378 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:1d:55:b7:cb:0c:10:2c:2b:f2:50:7c:19:d7: 0d:96:96:4b:53:ae:e1:be:16:d1:94:57:62:11:3b: 98:96:c5:d1:47:aa:37:00:02:74:ba:97:8e:74:be: 8f:37:22:84:e8:d2:79:e1:e0:f7:58:a7:80:f4:14: 7a:18:03:88:5b:0d:fc:71:9e:3e:05:af:cf:83:c6: a6:ff:58:53:cb:02:38:35:f1:8c:62:b2:01:61:7b: f3:6e:c7:6f:c7:22:07:3f:1b:3e:7e:df:d4:bd:e6: 53:3c:ff:90:8a:f7:1a:3e:97:44:4a:8a:57:80:83: f4:00:cf:ae:f3:cc:2c:63:a6:c7:9d:f9:64:91:38: c0:0f:4d:22:a2:70:1e:05:29:d5:9d:15:fd:4e:f4: 66:d5:4d:32:8a:35:06:b1:2e:9c:e5:5d:0d:ca:76: b2:aa:be:92:c1:0b:34:9e:27:ce:54:21:35:2d:d5: 44:d6:c3:65:19:e2:af:8b:bd:70:6d:10:17:b9:28: f0:e8:cf:78:b4:5d:e0:36:e8:7e:5a:95:4c:64:32: 24:22:93:fe:37:3b:90:40:4d:2c:72:2f:b1:79:e1: fd:8a:a1:89:37:5b:14:3d:c9:d8:a0:16:57:5c:cd: 4d:04:6d:05:0d:0c:ea:42:26:c6:39:25:b1:96:b6: 71:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CA:B6:C1:D6:FB:01:22:37:5B:51:AC:A5:10:F4:5F:30:C0:7E:93:78 X509v3 Authority Key Identifier: keyid:76:7F:3B:D4:BF:BD:30:71:C3:8C:D4:D7:09:2B:D3:49:09:20:C3:D9 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dn871L-9MHHDjNTXCSvTSQkgw9k.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/06/ff5cc6-8f61-447b-b658-4fb559b3b9b3/1/yrbB1vsBIjdbUaylEPRfMMB-k3g.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/06/ff5cc6-8f61-447b-b658-4fb559b3b9b3/1/dn871L-9MHHDjNTXCSvTSQkgw9k.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.252.211.0/24 212.24.113.0/24 Signature Algorithm: sha256WithRSAEncryption 2e:3d:9a:9c:00:1f:5e:1a:30:83:ed:5e:55:3f:40:8c:d9:e5: a4:91:3f:c5:2d:60:bc:a5:ad:d0:76:ec:2f:ef:5c:fa:5a:73: 73:c2:ca:b2:06:2f:39:c5:32:84:aa:f7:39:18:a9:1a:10:73: a8:b3:13:80:da:43:79:d4:ea:b6:d0:f0:8f:ab:7f:7e:5e:53: c4:cf:0d:78:b4:8e:c0:53:0e:de:bd:99:f1:9b:e3:a7:31:fa: cc:d9:5e:ff:80:fc:9d:5d:e3:7f:ae:7e:f8:a9:f3:6a:8b:56: 41:eb:72:94:81:78:e1:06:53:2e:fc:8d:11:2c:f2:40:a4:26: bb:95:65:21:af:7b:bf:33:df:ba:05:60:35:d9:96:09:62:ba: cd:f4:d1:be:4e:78:3e:56:ee:7c:bd:53:a3:7e:8b:b0:c2:b4: ef:7a:cb:6e:a4:3c:b5:7e:91:ae:70:91:d6:b7:9b:15:c6:a3: 70:3b:65:89:36:ba:4b:d0:ab:06:71:05:c7:8f:42:1e:b1:d9: 6a:92:c0:bf:82:80:ed:3f:85:ce:bd:ee:97:b8:fa:b3:9a:80: da:2d:7c:47:21:ca:df:23:e1:bc:40:ff:77:6a:74:4f:23:81: b1:fa:37:76:35:40:91:0c:c2:f8:a4:fe:0a:49:85:17:f4:03: 7d:b3:3e:26 -----BEGIN CERTIFICATE----- MIIFAzCCA+ugAwIBAgISAZt4ovw0EWjqjcnm9kQznro6MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDc2N2YzYmQ0YmZiZDMwNzFjMzhjZDRkNzA5MmJkMzQ5MDky MGMzZDkwHhcNMjYwMTAxMDgxODI1WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhjYWI2YzFkNmZiMDEyMjM3NWI1MWFjYTUxMGY0NWYzMGMwN2U5Mzc4MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAox1Vt8sMECwr8lB8GdcNlpZLU67h vhbRlFdiETuYlsXRR6o3AAJ0upeOdL6PNyKE6NJ54eD3WKeA9BR6GAOIWw38cZ4+ Ba/Pg8am/1hTywI4NfGMYrIBYXvzbsdvxyIHPxs+ft/UveZTPP+QivcaPpdESopX gIP0AM+u88wsY6bHnflkkTjAD00ionAeBSnVnRX9TvRm1U0yijUGsS6c5V0Nynay qr6SwQs0nifOVCE1LdVE1sNlGeKvi71wbRAXuSjw6M94tF3gNuh+WpVMZDIkIpP+ NzuQQE0sci+xeeH9iqGJN1sUPcnYoBZXXM1NBG0FDQzqQibGOSWxlrZxQwIDAQAB o4ICDzCCAgswHQYDVR0OBBYEFMq2wdb7ASI3W1GspRD0XzDAfpN4MB8GA1UdIwQY MBaAFHZ/O9S/vTBxw4zU1wkr00kJIMPZMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvZG44NzFMLTlNSEhEak5UWENTdlRTUWtndzlrLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wNi9mZjVjYzYtOGY2MS00NDdiLWI2NTgt NGZiNTU5YjNiOWIzLzEveXJiQjF2c0JJamRiVWF5bEVQUmZNTUItazNnLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wNi9mZjVjYzYtOGY2MS00NDdiLWI2NTgtNGZiNTU5YjNiOWIz LzEvZG44NzFMLTlNSEhEak5UWENTdlRTUWtndzlrLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQAufzTAwQA 1BhxMA0GCSqGSIb3DQEBCwUAA4IBAQAuPZqcAB9eGjCD7V5VP0CM2eWkkT/FLWC8 pa3Qduwv71z6WnNzwsqyBi85xTKEqvc5GKkaEHOosxOA2kN51Oq20PCPq39+XlPE zw14tI7AUw7evZnxm+OnMfrM2V7/gPydXeN/rn74qfNqi1ZB63KUgXjhBlMu/I0R LPJApCa7lWUhr3u/M9+6BWA12ZYJYrrN9NG+Tng+Vu58vVOjfouwwrTvestupDy1 fpGucJHWt5sVxqNwO2WJNrpL0KsGcQXHj0IesdlqksC/goDtP4XOve6XuPqzmoDa LXxHIcrfI+G8QP93anRPI4Gx+jd2NUCRDML4pP4KSYUX9AN9sz4m -----END CERTIFICATE-----Generated at Tue Jan 20 22:47:39 2026 by rpki-client