This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0e/3555fe-12cd-402a-a810-5554d6e1686f/1/yWTLRF1VJkJE9zQ2nOOh6_ST9Ig.roa File: yWTLRF1VJkJE9zQ2nOOh6_ST9Ig.roa (raw, json) Hash identifier: eGGcvH1mVcXIebZixtAkl52yyjTZ7DndsNu+6hOR02I= Subject key identifier: C9:64:CB:44:5D:55:26:42:44:F7:34:36:9C:E3:A1:EB:F4:93:F4:88 Certificate issuer: /CN=ab0952c8ba8dadb1d34de6c6a93864a609fc41ec Certificate serial: 019B7AC7D02EDAB4D99116CCD775C43A8D6F Authority key identifier: AB:09:52:C8:BA:8D:AD:B1:D3:4D:E6:C6:A9:38:64:A6:09:FC:41:EC Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qwlSyLqNrbHTTebGqThkpgn8Qew.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0e/3555fe-12cd-402a-a810-5554d6e1686f/1/yWTLRF1VJkJE9zQ2nOOh6_ST9Ig.roa Signing time: Thu 01 Jan 2026 18:17:53 +0000 ROA not before: Thu 01 Jan 2026 18:17:53 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 44242 IP address blocks: 159.148.30.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0e/3555fe-12cd-402a-a810-5554d6e1686f/1/qwlSyLqNrbHTTebGqThkpgn8Qew.crl rsync://rpki.ripe.net/repository/DEFAULT/0e/3555fe-12cd-402a-a810-5554d6e1686f/1/qwlSyLqNrbHTTebGqThkpgn8Qew.mft rsync://rpki.ripe.net/repository/DEFAULT/qwlSyLqNrbHTTebGqThkpgn8Qew.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 20 Jan 2026 16:55:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7a:c7:d0:2e:da:b4:d9:91:16:cc:d7:75:c4:3a:8d:6f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ab0952c8ba8dadb1d34de6c6a93864a609fc41ec Validity Not Before: Jan 1 18:17:53 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=c964cb445d55264244f734369ce3a1ebf493f488 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:f3:b3:a6:71:65:0a:6c:05:a3:86:a9:1c:36: 9e:7c:04:22:15:7f:25:42:38:5d:2a:a4:10:34:d0: 27:46:b3:06:30:95:61:a7:01:5f:16:8e:58:f6:27: b5:de:fe:6a:1c:19:08:5a:98:53:2a:f4:0a:2e:22: 64:e6:32:41:23:80:b1:62:4e:85:cc:23:93:eb:8b: 0e:0b:dc:97:85:11:eb:be:00:ec:9f:a1:69:e9:04: 02:1a:af:59:3e:45:cf:f9:0a:7e:e9:e5:85:ce:a8: ea:f5:45:90:58:ba:e0:60:ba:dd:61:1a:d0:2e:f2: f0:d2:24:ab:2f:09:c3:cc:d7:42:fc:24:42:9a:6e: 63:03:50:bd:a5:88:c3:e3:78:40:3a:16:7a:76:a4: 55:b8:34:ad:13:ae:a4:cd:7b:7f:c3:03:6e:61:6b: 9a:0f:6c:cf:9e:f3:93:22:37:86:4e:a3:db:ce:67: 23:6f:5e:ea:d5:78:b8:cc:ad:c2:3b:23:7d:90:74: 7e:38:ed:84:e7:e5:d2:44:6d:42:f5:94:12:9b:bb: 70:55:7d:54:da:e2:95:a5:d5:40:0b:58:c1:1a:45: 28:2e:6f:1c:8f:45:8e:ed:ea:0c:1f:44:9d:d0:5c: bc:bb:9d:6c:9b:9f:88:ee:53:d0:82:3f:d4:a0:14: ce:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C9:64:CB:44:5D:55:26:42:44:F7:34:36:9C:E3:A1:EB:F4:93:F4:88 X509v3 Authority Key Identifier: keyid:AB:09:52:C8:BA:8D:AD:B1:D3:4D:E6:C6:A9:38:64:A6:09:FC:41:EC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qwlSyLqNrbHTTebGqThkpgn8Qew.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0e/3555fe-12cd-402a-a810-5554d6e1686f/1/yWTLRF1VJkJE9zQ2nOOh6_ST9Ig.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/0e/3555fe-12cd-402a-a810-5554d6e1686f/1/qwlSyLqNrbHTTebGqThkpgn8Qew.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 159.148.30.0/24 Signature Algorithm: sha256WithRSAEncryption 93:d3:24:83:59:72:6c:d6:95:ba:e1:b2:59:6f:be:c3:9e:6e: fd:d1:c1:f3:8e:ef:6b:08:17:a8:30:16:49:9c:65:d9:d7:8b: 44:08:3e:44:ea:af:b6:99:2d:cc:b8:53:fc:c7:21:54:d0:ae: 98:0d:a6:53:b0:4a:22:c7:44:77:d4:17:77:7c:61:c7:3b:71: cf:4f:71:21:5c:9a:c6:75:09:9f:1a:b9:1f:53:2a:86:a3:c1: c2:10:86:4e:c0:60:83:7d:20:7e:86:ca:23:24:58:f2:12:a9: 62:45:a1:95:e4:ac:f2:d3:0a:1e:62:9a:9f:68:f2:74:ed:34: ad:1d:e1:26:8b:f2:c2:7e:80:c2:90:13:bf:af:11:90:34:67: c3:df:c4:7e:0b:7e:ac:17:1c:30:35:86:3f:fa:c4:00:0e:65: 76:76:7e:cb:ee:36:98:87:d7:93:3b:3c:2f:17:90:a9:39:7a: b7:84:f1:a2:13:1c:5b:70:d2:33:96:ed:a0:7b:9b:2f:7a:82: 33:0c:e0:a3:35:fd:cb:3f:53:db:35:3f:58:2d:35:b0:7d:ba: 4d:25:b5:20:81:db:d7:2b:44:e6:60:6f:92:5f:25:93:92:9a: 93:79:e5:0a:90:a9:32:53:cf:db:c0:36:20:8b:8b:bc:78:2b: c9:ec:28:f9 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt6x9Au2rTZkRbM13XEOo1vMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGFiMDk1MmM4YmE4ZGFkYjFkMzRkZTZjNmE5Mzg2NGE2MDlm YzQxZWMwHhcNMjYwMTAxMTgxNzUzWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhjOTY0Y2I0NDVkNTUyNjQyNDRmNzM0MzY5Y2UzYTFlYmY0OTNmNDg4MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAn/OzpnFlCmwFo4apHDaefAQiFX8l QjhdKqQQNNAnRrMGMJVhpwFfFo5Y9ie13v5qHBkIWphTKvQKLiJk5jJBI4CxYk6F zCOT64sOC9yXhRHrvgDsn6Fp6QQCGq9ZPkXP+Qp+6eWFzqjq9UWQWLrgYLrdYRrQ LvLw0iSrLwnDzNdC/CRCmm5jA1C9pYjD43hAOhZ6dqRVuDStE66kzXt/wwNuYWua D2zPnvOTIjeGTqPbzmcjb17q1Xi4zK3COyN9kHR+OO2E5+XSRG1C9ZQSm7twVX1U 2uKVpdVAC1jBGkUoLm8cj0WO7eoMH0Sd0Fy8u51sm5+I7lPQgj/UoBTO5QIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFMlky0RdVSZCRPc0Npzjoev0k/SIMB8GA1UdIwQY MBaAFKsJUsi6ja2x003mxqk4ZKYJ/EHsMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvcXdsU3lMcU5yYkhUVGViR3FUaGtwZ244UWV3LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wZS8zNTU1ZmUtMTJjZC00MDJhLWE4MTAt NTU1NGQ2ZTE2ODZmLzEveVdUTFJGMVZKa0pFOXpRMm5PT2g2X1NUOUlnLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wZS8zNTU1ZmUtMTJjZC00MDJhLWE4MTAtNTU1NGQ2ZTE2ODZm LzEvcXdsU3lMcU5yYkhUVGViR3FUaGtwZ244UWV3LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAn5QeMA0G CSqGSIb3DQEBCwUAA4IBAQCT0ySDWXJs1pW64bJZb77Dnm790cHzju9rCBeoMBZJ nGXZ14tECD5E6q+2mS3MuFP8xyFU0K6YDaZTsEoix0R31Bd3fGHHO3HPT3EhXJrG dQmfGrkfUyqGo8HCEIZOwGCDfSB+hsojJFjyEqliRaGV5Kzy0woeYpqfaPJ07TSt HeEmi/LCfoDCkBO/rxGQNGfD38R+C36sFxwwNYY/+sQADmV2dn7L7jaYh9eTOzwv F5CpOXq3hPGiExxbcNIzlu2ge5sveoIzDOCjNf3LP1PbNT9YLTWwfbpNJbUggdvX K0TmYG+SXyWTkpqTeeUKkKkyU8/bwDYgi4u8eCvJ7Cj5 -----END CERTIFICATE-----Generated at Mon Jan 19 20:00:41 2026 by rpki-client