This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0c/bdd1e7-b79a-4c21-9ba9-f157c3294d40/1/yxoCaKfgeTweKDIo2zxWc2jeH10.roa File: yxoCaKfgeTweKDIo2zxWc2jeH10.roa (raw, json) Hash identifier: iUYOXpm89oJ723QbmJPdvxscW5Vo8+6ZFKBfX+z5wi8= Subject key identifier: CB:1A:02:68:A7:E0:79:3C:1E:28:32:28:DB:3C:56:73:68:DE:1F:5D Certificate issuer: /CN=63b842254bbd6bf33e09d05a458f00a0484cf16f Certificate serial: 019B78A296EAE6924BF4288F11E635D3A561 Authority key identifier: 63:B8:42:25:4B:BD:6B:F3:3E:09:D0:5A:45:8F:00:A0:48:4C:F1:6F Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y7hCJUu9a_M-CdBaRY8AoEhM8W8.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0c/bdd1e7-b79a-4c21-9ba9-f157c3294d40/1/yxoCaKfgeTweKDIo2zxWc2jeH10.roa Signing time: Thu 01 Jan 2026 08:18:00 +0000 ROA not before: Thu 01 Jan 2026 08:18:00 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 49981 IP address blocks: 45.93.23.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0c/bdd1e7-b79a-4c21-9ba9-f157c3294d40/1/Y7hCJUu9a_M-CdBaRY8AoEhM8W8.crl rsync://rpki.ripe.net/repository/DEFAULT/0c/bdd1e7-b79a-4c21-9ba9-f157c3294d40/1/Y7hCJUu9a_M-CdBaRY8AoEhM8W8.mft rsync://rpki.ripe.net/repository/DEFAULT/Y7hCJUu9a_M-CdBaRY8AoEhM8W8.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 20 Jan 2026 08:01:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:78:a2:96:ea:e6:92:4b:f4:28:8f:11:e6:35:d3:a5:61 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=63b842254bbd6bf33e09d05a458f00a0484cf16f Validity Not Before: Jan 1 08:18:00 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=cb1a0268a7e0793c1e283228db3c567368de1f5d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:61:a7:1c:56:7d:e1:18:b1:11:f3:2c:37:4a: 79:91:49:3a:19:ec:64:75:bd:74:c5:61:ac:7a:46: 3b:b5:ff:d1:fa:14:9f:6f:37:82:47:58:91:f8:ca: c7:fb:57:bd:d2:7b:da:cf:53:0b:82:8f:0d:51:62: 59:78:3e:35:f1:fa:28:f2:4e:7b:a7:f9:3d:bd:b0: 42:22:d9:21:b8:2e:87:51:9c:e7:d7:b9:f1:16:b7: ad:18:56:af:59:33:0b:58:01:ed:f6:62:f5:f6:6b: f8:08:4c:24:5e:b9:82:f0:d9:c1:d3:24:8d:e7:f6: d3:2f:10:01:9a:68:64:38:27:99:0f:5a:45:b1:19: 02:cd:3f:e9:66:c5:34:d7:bb:61:a4:a1:4b:a1:d2: a0:2f:40:36:22:aa:6a:bc:59:49:65:1d:12:ad:dd: 5c:be:80:00:17:e6:d8:20:56:63:28:3c:59:a7:e0: b3:c5:0f:0c:ed:0a:59:6e:0c:c3:23:d8:03:07:a0: f6:83:d1:3a:1b:af:5f:47:be:af:3a:11:cb:eb:ec: 50:74:a9:ad:19:6c:a6:10:1e:14:b5:a8:9d:ae:16: 37:88:56:68:98:65:07:53:6a:d7:0d:94:2d:60:13: 16:4a:0d:48:1a:bb:37:fe:30:c7:ca:3b:1a:a3:c2: 8c:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CB:1A:02:68:A7:E0:79:3C:1E:28:32:28:DB:3C:56:73:68:DE:1F:5D X509v3 Authority Key Identifier: keyid:63:B8:42:25:4B:BD:6B:F3:3E:09:D0:5A:45:8F:00:A0:48:4C:F1:6F X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y7hCJUu9a_M-CdBaRY8AoEhM8W8.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/bdd1e7-b79a-4c21-9ba9-f157c3294d40/1/yxoCaKfgeTweKDIo2zxWc2jeH10.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/bdd1e7-b79a-4c21-9ba9-f157c3294d40/1/Y7hCJUu9a_M-CdBaRY8AoEhM8W8.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 45.93.23.0/24 Signature Algorithm: sha256WithRSAEncryption 01:f8:51:01:01:0d:cf:a4:17:2c:6f:8a:25:ff:9c:cf:b0:95: 77:31:e6:81:2b:9c:e4:1c:22:17:03:21:6d:2b:48:0e:17:03: 5c:8d:77:cc:63:3d:f1:8d:2a:97:9f:97:ed:4c:e0:ad:19:ad: 8e:7c:85:2e:7d:e8:62:f9:46:56:0f:5d:91:54:c5:a4:8e:da: 57:a1:38:b1:03:da:c6:23:00:9a:73:7f:15:89:4e:63:09:45: 3e:c1:fb:b8:2c:cb:b3:7c:af:82:70:9c:85:b8:dd:94:89:cc: aa:aa:aa:47:75:af:d9:06:bb:f1:4c:97:bc:b6:00:5b:ba:e8: 60:ef:be:3d:25:5f:c8:07:0c:47:c1:e7:c3:35:a0:b5:f2:19: b6:f8:3b:6b:f1:cd:56:ef:bc:d2:27:1d:a5:6e:f3:19:51:83: 69:fe:05:93:34:e1:21:39:a3:ac:0d:06:60:cb:12:46:3f:0a: 54:30:34:7e:69:c1:72:60:50:67:ae:07:22:1f:03:9f:73:d9: 39:c9:fe:95:0d:b4:7b:c1:e5:b8:23:bd:c5:26:07:1a:d4:7f: b5:48:cd:d2:17:99:c0:ce:ee:f3:ea:49:9c:e6:0c:73:ab:03: 9f:ac:4b:2c:fe:20:c4:0a:a1:71:c0:bf:b0:29:38:2e:55:3f: 5e:46:33:62 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt4opbq5pJL9CiPEeY106VhMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDYzYjg0MjI1NGJiZDZiZjMzZTA5ZDA1YTQ1OGYwMGEwNDg0 Y2YxNmYwHhcNMjYwMTAxMDgxODAwWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhjYjFhMDI2OGE3ZTA3OTNjMWUyODMyMjhkYjNjNTY3MzY4ZGUxZjVkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAo2GnHFZ94RixEfMsN0p5kUk6Gexk db10xWGsekY7tf/R+hSfbzeCR1iR+MrH+1e90nvaz1MLgo8NUWJZeD418foo8k57 p/k9vbBCItkhuC6HUZzn17nxFretGFavWTMLWAHt9mL19mv4CEwkXrmC8NnB0ySN 5/bTLxABmmhkOCeZD1pFsRkCzT/pZsU017thpKFLodKgL0A2IqpqvFlJZR0Srd1c voAAF+bYIFZjKDxZp+CzxQ8M7QpZbgzDI9gDB6D2g9E6G69fR76vOhHL6+xQdKmt GWymEB4UtaidrhY3iFZomGUHU2rXDZQtYBMWSg1IGrs3/jDHyjsao8KMMQIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFMsaAmin4Hk8HigyKNs8VnNo3h9dMB8GA1UdIwQY MBaAFGO4QiVLvWvzPgnQWkWPAKBITPFvMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvWTdoQ0pVdTlhX00tQ2RCYVJZOEFvRWhNOFc4LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wYy9iZGQxZTctYjc5YS00YzIxLTliYTkt ZjE1N2MzMjk0ZDQwLzEveXhvQ2FLZmdlVHdlS0RJbzJ6eFdjMmplSDEwLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wYy9iZGQxZTctYjc5YS00YzIxLTliYTktZjE1N2MzMjk0ZDQw LzEvWTdoQ0pVdTlhX00tQ2RCYVJZOEFvRWhNOFc4LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQALV0XMA0G CSqGSIb3DQEBCwUAA4IBAQAB+FEBAQ3PpBcsb4ol/5zPsJV3MeaBK5zkHCIXAyFt K0gOFwNcjXfMYz3xjSqXn5ftTOCtGa2OfIUufehi+UZWD12RVMWkjtpXoTixA9rG IwCac38ViU5jCUU+wfu4LMuzfK+CcJyFuN2UicyqqqpHda/ZBrvxTJe8tgBbuuhg 7749JV/IBwxHwefDNaC18hm2+Dtr8c1W77zSJx2lbvMZUYNp/gWTNOEhOaOsDQZg yxJGPwpUMDR+acFyYFBnrgciHwOfc9k5yf6VDbR7weW4I73FJgca1H+1SM3SF5nA zu7z6kmc5gxzqwOfrEss/iDECqFxwL+wKTguVT9eRjNi -----END CERTIFICATE-----Generated at Mon Jan 19 17:32:59 2026 by rpki-client