This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0e/5c3cfa-a363-40a4-bfa6-c29beb1a4734/1/ybGK7D59nhsrV5zcx9pDpZj5zRw.roa File: ybGK7D59nhsrV5zcx9pDpZj5zRw.roa (raw, json) Hash identifier: lUVMObnC7ci77KqYjQKC6vaADGXMIPOZVK0KWxLUoCw= Subject key identifier: C9:B1:8A:EC:3E:7D:9E:1B:2B:57:9C:DC:C7:DA:43:A5:98:F9:CD:1C Certificate issuer: /CN=8c20753dd51633aa2e17a92c59f4c4845d876cd3 Certificate serial: 019B7F1518012C0A6D5B6368230F2BA345B0 Authority key identifier: 8C:20:75:3D:D5:16:33:AA:2E:17:A9:2C:59:F4:C4:84:5D:87:6C:D3 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jCB1PdUWM6ouF6ksWfTEhF2HbNM.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0e/5c3cfa-a363-40a4-bfa6-c29beb1a4734/1/ybGK7D59nhsrV5zcx9pDpZj5zRw.roa Signing time: Fri 02 Jan 2026 14:20:47 +0000 ROA not before: Fri 02 Jan 2026 14:20:47 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 202081 IP address blocks: 91.222.185.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0e/5c3cfa-a363-40a4-bfa6-c29beb1a4734/1/jCB1PdUWM6ouF6ksWfTEhF2HbNM.crl rsync://rpki.ripe.net/repository/DEFAULT/0e/5c3cfa-a363-40a4-bfa6-c29beb1a4734/1/jCB1PdUWM6ouF6ksWfTEhF2HbNM.mft rsync://rpki.ripe.net/repository/DEFAULT/jCB1PdUWM6ouF6ksWfTEhF2HbNM.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 27 Jan 2026 20:39:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7f:15:18:01:2c:0a:6d:5b:63:68:23:0f:2b:a3:45:b0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8c20753dd51633aa2e17a92c59f4c4845d876cd3 Validity Not Before: Jan 2 14:20:47 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=c9b18aec3e7d9e1b2b579cdcc7da43a598f9cd1c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:d0:ce:77:56:2d:cd:8f:f6:4e:d7:58:5c:e2: 57:0a:89:52:6a:c8:25:19:6e:13:1a:9f:ea:dd:5d: 19:92:63:dc:43:4b:36:6f:90:64:e5:11:f9:0c:f9: 97:79:cd:e6:88:d6:e1:f9:c8:cb:a6:7b:ad:7a:b0: a5:0a:00:d7:16:27:9d:31:cf:55:15:0f:15:9b:e3: a0:00:a0:c4:33:b0:fe:dc:da:1f:88:ea:15:6f:ec: c8:c4:09:94:2a:47:3b:f9:47:ed:05:3c:71:0d:8b: 6b:6d:04:89:df:56:cf:0e:4c:95:e0:49:2a:57:89: 52:bf:c5:be:e4:03:90:c5:d4:41:e7:47:be:ae:5c: d0:80:b6:c6:90:32:fe:52:a0:62:3f:19:13:cd:28: 44:fe:08:41:04:7f:e7:c0:73:06:27:a7:23:9b:b7: d6:4f:c9:fe:44:11:8d:de:c0:f7:bb:5c:e5:51:8d: 84:36:0a:42:7c:46:41:d5:dc:29:86:33:dc:36:bf: 20:86:94:57:0f:4d:9d:cb:cc:85:4c:01:62:81:0f: 3f:82:59:ec:60:27:a3:66:e1:43:1f:f1:57:f5:ae: 6c:20:02:c2:38:0c:1c:58:6b:cb:c2:c4:64:b6:ed: 3c:40:ca:b7:0a:de:e2:01:57:30:25:e6:7a:f9:11: fd:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C9:B1:8A:EC:3E:7D:9E:1B:2B:57:9C:DC:C7:DA:43:A5:98:F9:CD:1C X509v3 Authority Key Identifier: keyid:8C:20:75:3D:D5:16:33:AA:2E:17:A9:2C:59:F4:C4:84:5D:87:6C:D3 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jCB1PdUWM6ouF6ksWfTEhF2HbNM.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0e/5c3cfa-a363-40a4-bfa6-c29beb1a4734/1/ybGK7D59nhsrV5zcx9pDpZj5zRw.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/0e/5c3cfa-a363-40a4-bfa6-c29beb1a4734/1/jCB1PdUWM6ouF6ksWfTEhF2HbNM.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 91.222.185.0/24 Signature Algorithm: sha256WithRSAEncryption 15:8f:20:e8:71:d6:be:81:0d:07:1a:66:93:a1:de:02:42:cc: 50:7a:a9:bb:d1:b0:41:a5:ee:62:a5:e3:d4:d8:20:71:68:93: 73:92:f4:81:83:b9:21:e7:fe:20:0b:8b:ce:38:f1:1d:47:56: ff:35:f1:6d:d7:47:d3:15:65:0e:17:1a:5a:62:a2:40:18:f2: e7:6b:cd:f7:b7:db:79:eb:e0:77:43:6e:9f:7a:11:ba:06:4e: cc:ce:91:35:13:a4:fd:58:f7:20:ae:a8:45:55:3f:30:e3:29: 59:4e:31:91:d4:3c:aa:cd:8a:07:b1:c1:4f:9e:51:88:74:63: 74:8f:82:d6:3c:70:6d:49:77:09:98:03:d8:70:e6:af:be:05: d5:11:e2:9d:20:0a:bd:32:e8:ff:66:07:3f:a3:8f:12:41:3f: 2b:6f:8c:8d:cd:ed:4c:ca:d3:a9:9e:fe:4d:df:f4:e4:3a:c8: 85:f1:7e:dc:f8:32:84:76:2a:48:46:4c:4e:12:3a:cf:08:dd: 5d:43:2c:a6:06:87:7b:53:fd:0c:d6:f8:bf:fa:f1:b6:a0:40: 2d:ef:02:28:76:e3:ba:3f:c3:18:65:80:45:c6:a6:a6:b1:66: 1c:d3:c5:67:d5:10:33:e7:04:b7:68:fd:88:0c:d6:39:d8:bc: 9b:db:99:b2 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt/FRgBLAptW2NoIw8ro0WwMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDhjMjA3NTNkZDUxNjMzYWEyZTE3YTkyYzU5ZjRjNDg0NWQ4 NzZjZDMwHhcNMjYwMTAyMTQyMDQ3WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhjOWIxOGFlYzNlN2Q5ZTFiMmI1NzljZGNjN2RhNDNhNTk4ZjljZDFjMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAotDOd1YtzY/2TtdYXOJXColSasgl GW4TGp/q3V0ZkmPcQ0s2b5Bk5RH5DPmXec3miNbh+cjLpnuterClCgDXFiedMc9V FQ8Vm+OgAKDEM7D+3NofiOoVb+zIxAmUKkc7+UftBTxxDYtrbQSJ31bPDkyV4Ekq V4lSv8W+5AOQxdRB50e+rlzQgLbGkDL+UqBiPxkTzShE/ghBBH/nwHMGJ6cjm7fW T8n+RBGN3sD3u1zlUY2ENgpCfEZB1dwphjPcNr8ghpRXD02dy8yFTAFigQ8/glns YCejZuFDH/FX9a5sIALCOAwcWGvLwsRktu08QMq3Ct7iAVcwJeZ6+RH9NwIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFMmxiuw+fZ4bK1ec3MfaQ6WY+c0cMB8GA1UdIwQY MBaAFIwgdT3VFjOqLhepLFn0xIRdh2zTMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvakNCMVBkVVdNNm91RjZrc1dmVEVoRjJIYk5NLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wZS81YzNjZmEtYTM2My00MGE0LWJmYTYt YzI5YmViMWE0NzM0LzEveWJHSzdENTluaHNyVjV6Y3g5cERwWmo1elJ3LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wZS81YzNjZmEtYTM2My00MGE0LWJmYTYtYzI5YmViMWE0NzM0 LzEvakNCMVBkVVdNNm91RjZrc1dmVEVoRjJIYk5NLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAW965MA0G CSqGSIb3DQEBCwUAA4IBAQAVjyDocda+gQ0HGmaTod4CQsxQeqm70bBBpe5ipePU 2CBxaJNzkvSBg7kh5/4gC4vOOPEdR1b/NfFt10fTFWUOFxpaYqJAGPLna833t9t5 6+B3Q26fehG6Bk7MzpE1E6T9WPcgrqhFVT8w4ylZTjGR1DyqzYoHscFPnlGIdGN0 j4LWPHBtSXcJmAPYcOavvgXVEeKdIAq9Muj/Zgc/o48SQT8rb4yNze1MytOpnv5N 3/TkOsiF8X7c+DKEdipIRkxOEjrPCN1dQyymBod7U/0M1vi/+vG2oEAt7wIoduO6 P8MYZYBFxqamsWYc08Vn1RAz5wS3aP2IDNY52Lyb25my -----END CERTIFICATE-----Generated at Tue Jan 27 04:23:14 2026 by rpki-client