This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0e/3555fe-12cd-402a-a810-5554d6e1686f/1/yrqc9CxhjS0nUD1nMDK2orDxuuo.roa File: yrqc9CxhjS0nUD1nMDK2orDxuuo.roa (raw, json) Hash identifier: YaLoLeeUkkqioZF3p9aQOm6pKih70mzWh21+AcHcw3I= Subject key identifier: CA:BA:9C:F4:2C:61:8D:2D:27:50:3D:67:30:32:B6:A2:B0:F1:BA:EA Certificate issuer: /CN=ab0952c8ba8dadb1d34de6c6a93864a609fc41ec Certificate serial: 019B7AC7D4257AA910C05A700871DBA494C1 Authority key identifier: AB:09:52:C8:BA:8D:AD:B1:D3:4D:E6:C6:A9:38:64:A6:09:FC:41:EC Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qwlSyLqNrbHTTebGqThkpgn8Qew.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0e/3555fe-12cd-402a-a810-5554d6e1686f/1/yrqc9CxhjS0nUD1nMDK2orDxuuo.roa Signing time: Thu 01 Jan 2026 18:17:54 +0000 ROA not before: Thu 01 Jan 2026 18:17:54 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 57844 IP address blocks: 159.148.66.0/24 maxlen: 24 159.148.234.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0e/3555fe-12cd-402a-a810-5554d6e1686f/1/qwlSyLqNrbHTTebGqThkpgn8Qew.crl rsync://rpki.ripe.net/repository/DEFAULT/0e/3555fe-12cd-402a-a810-5554d6e1686f/1/qwlSyLqNrbHTTebGqThkpgn8Qew.mft rsync://rpki.ripe.net/repository/DEFAULT/qwlSyLqNrbHTTebGqThkpgn8Qew.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 20 Jan 2026 16:55:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7a:c7:d4:25:7a:a9:10:c0:5a:70:08:71:db:a4:94:c1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ab0952c8ba8dadb1d34de6c6a93864a609fc41ec Validity Not Before: Jan 1 18:17:54 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=caba9cf42c618d2d27503d673032b6a2b0f1baea Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:9a:7b:28:4a:c7:2a:f2:4a:dd:bb:40:a0:97: e4:f9:e4:1b:e3:21:82:31:9f:d9:67:c8:e1:2c:5b: 01:2b:84:9d:dd:a6:62:6b:d0:94:9c:7c:9c:d8:33: 07:63:7c:98:0e:87:20:cb:63:12:29:d4:87:e0:c8: c9:32:6e:e0:ce:58:ad:50:f8:a3:e1:06:5a:0e:f2: 69:5a:96:45:08:b8:63:f0:8d:e1:69:6e:dd:88:ee: 5b:75:d3:1e:4e:cc:92:70:59:9b:44:92:54:8b:4b: b8:36:70:95:90:67:95:22:04:c5:ef:05:8a:fc:b6: 06:7c:e4:6e:9e:78:6c:a2:b3:47:41:8b:77:bc:bd: 2b:df:a9:f7:05:b6:2e:ff:eb:4b:d8:e2:a1:44:20: 41:b1:20:31:3e:1a:cb:00:e7:c1:f2:4f:3f:01:b5: be:4f:2b:0f:d3:84:93:ae:81:7d:36:33:2b:54:25: e6:60:a6:cb:54:99:f5:fe:0b:bc:f0:ea:b3:55:42: 77:62:04:3c:ae:14:89:8e:61:21:ed:cf:bc:5d:10: 9a:ff:c4:c8:73:39:ea:ba:f5:45:62:5e:1c:93:12: 61:4a:8a:85:f8:d4:ae:20:60:bc:f6:6f:e1:7b:87: 8b:34:40:70:d8:15:51:04:de:72:7d:2a:b4:a0:47: c0:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CA:BA:9C:F4:2C:61:8D:2D:27:50:3D:67:30:32:B6:A2:B0:F1:BA:EA X509v3 Authority Key Identifier: keyid:AB:09:52:C8:BA:8D:AD:B1:D3:4D:E6:C6:A9:38:64:A6:09:FC:41:EC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qwlSyLqNrbHTTebGqThkpgn8Qew.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0e/3555fe-12cd-402a-a810-5554d6e1686f/1/yrqc9CxhjS0nUD1nMDK2orDxuuo.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/0e/3555fe-12cd-402a-a810-5554d6e1686f/1/qwlSyLqNrbHTTebGqThkpgn8Qew.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 159.148.66.0/24 159.148.234.0/24 Signature Algorithm: sha256WithRSAEncryption 32:7b:cb:21:a1:7b:f4:c0:f5:1c:4d:95:2f:a3:ac:8b:d8:b4: 39:09:27:19:ce:49:ce:ae:aa:4b:c1:0d:36:2c:02:08:16:44: bd:7d:0a:64:c8:2f:1f:ce:79:16:57:1e:a3:39:c5:89:13:95: 0d:f4:85:b8:7a:1e:ad:cf:47:0a:97:10:1d:9f:44:d2:67:87: 31:f7:e5:57:1a:1e:bc:f5:a5:e6:b0:ed:1d:93:d6:04:73:3e: d8:ba:35:06:60:67:57:a5:65:78:d4:fd:4f:77:80:95:44:86: 05:ac:ee:d1:b4:eb:3f:c0:56:85:72:7b:04:7b:86:48:68:35: fa:95:58:98:0a:ad:82:43:de:18:08:2f:c8:db:48:87:5a:76: 66:21:12:14:6e:fc:55:6c:ca:70:0a:56:98:71:07:3e:d4:2c: 1c:b2:f4:77:ad:c4:e5:38:bd:44:37:9c:e9:44:27:c2:c8:69: e4:59:c4:40:22:dd:f3:9c:30:5c:84:d6:29:e9:68:cf:69:cd: 8f:ef:60:c9:bc:ac:cf:64:8d:ee:fb:fd:9b:e0:b9:41:ed:db: 9c:03:8b:d2:0d:14:ab:4a:b0:ee:e9:ae:7e:dc:29:25:44:d1: 8e:c8:0d:99:92:c6:52:35:51:c0:17:01:25:13:1e:92:a2:73: 82:33:6a:21 -----BEGIN CERTIFICATE----- MIIFAzCCA+ugAwIBAgISAZt6x9QleqkQwFpwCHHbpJTBMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGFiMDk1MmM4YmE4ZGFkYjFkMzRkZTZjNmE5Mzg2NGE2MDlm YzQxZWMwHhcNMjYwMTAxMTgxNzU0WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhjYWJhOWNmNDJjNjE4ZDJkMjc1MDNkNjczMDMyYjZhMmIwZjFiYWVhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAv5p7KErHKvJK3btAoJfk+eQb4yGC MZ/ZZ8jhLFsBK4Sd3aZia9CUnHyc2DMHY3yYDocgy2MSKdSH4MjJMm7gzlitUPij 4QZaDvJpWpZFCLhj8I3haW7diO5bddMeTsyScFmbRJJUi0u4NnCVkGeVIgTF7wWK /LYGfORunnhsorNHQYt3vL0r36n3BbYu/+tL2OKhRCBBsSAxPhrLAOfB8k8/AbW+ TysP04STroF9NjMrVCXmYKbLVJn1/gu88OqzVUJ3YgQ8rhSJjmEh7c+8XRCa/8TI cznquvVFYl4ckxJhSoqF+NSuIGC89m/he4eLNEBw2BVRBN5yfSq0oEfAgwIDAQAB o4ICDzCCAgswHQYDVR0OBBYEFMq6nPQsYY0tJ1A9ZzAytqKw8brqMB8GA1UdIwQY MBaAFKsJUsi6ja2x003mxqk4ZKYJ/EHsMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvcXdsU3lMcU5yYkhUVGViR3FUaGtwZ244UWV3LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wZS8zNTU1ZmUtMTJjZC00MDJhLWE4MTAt NTU1NGQ2ZTE2ODZmLzEveXJxYzlDeGhqUzBuVUQxbk1ESzJvckR4dXVvLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wZS8zNTU1ZmUtMTJjZC00MDJhLWE4MTAtNTU1NGQ2ZTE2ODZm LzEvcXdsU3lMcU5yYkhUVGViR3FUaGtwZ244UWV3LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQAn5RCAwQA n5TqMA0GCSqGSIb3DQEBCwUAA4IBAQAye8shoXv0wPUcTZUvo6yL2LQ5CScZzknO rqpLwQ02LAIIFkS9fQpkyC8fznkWVx6jOcWJE5UN9IW4eh6tz0cKlxAdn0TSZ4cx 9+VXGh689aXmsO0dk9YEcz7YujUGYGdXpWV41P1Pd4CVRIYFrO7RtOs/wFaFcnsE e4ZIaDX6lViYCq2CQ94YCC/I20iHWnZmIRIUbvxVbMpwClaYcQc+1CwcsvR3rcTl OL1EN5zpRCfCyGnkWcRAIt3znDBchNYp6WjPac2P72DJvKzPZI3u+/2b4LlB7duc A4vSDRSrSrDu6a5+3CklRNGOyA2ZksZSNVHAFwElEx6SonOCM2oh -----END CERTIFICATE-----Generated at Mon Jan 19 20:01:07 2026 by rpki-client