This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/11/b263a2-0f6f-4f5d-af9e-a39ac2539fc5/1/_ygHtGvR24HuWaJMdL7Yhupa0Yw.roa File: _ygHtGvR24HuWaJMdL7Yhupa0Yw.roa (raw, json) Hash identifier: sSh3ORTimwaeXw7IwoVRV4KVddU59NOigj+7ABHcdk8= Subject key identifier: FF:28:07:B4:6B:D1:DB:81:EE:59:A2:4C:74:BE:D8:86:EA:5A:D1:8C Certificate issuer: /CN=ffa3e55141c1a1f9f2e28811ed7e77fad378a579 Certificate serial: 019B7E38E857078B6ECC8B129EADC41F1D19 Authority key identifier: FF:A3:E5:51:41:C1:A1:F9:F2:E2:88:11:ED:7E:77:FA:D3:78:A5:79 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_6PlUUHBofny4ogR7X53-tN4pXk.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/11/b263a2-0f6f-4f5d-af9e-a39ac2539fc5/1/_ygHtGvR24HuWaJMdL7Yhupa0Yw.roa Signing time: Fri 02 Jan 2026 10:20:17 +0000 ROA not before: Fri 02 Jan 2026 10:20:17 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 44486 IP address blocks: 109.122.10.0/24 maxlen: 24 109.122.27.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/11/b263a2-0f6f-4f5d-af9e-a39ac2539fc5/1/_6PlUUHBofny4ogR7X53-tN4pXk.crl rsync://rpki.ripe.net/repository/DEFAULT/11/b263a2-0f6f-4f5d-af9e-a39ac2539fc5/1/_6PlUUHBofny4ogR7X53-tN4pXk.mft rsync://rpki.ripe.net/repository/DEFAULT/_6PlUUHBofny4ogR7X53-tN4pXk.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 12 Jan 2026 10:01:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7e:38:e8:57:07:8b:6e:cc:8b:12:9e:ad:c4:1f:1d:19 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ffa3e55141c1a1f9f2e28811ed7e77fad378a579 Validity Not Before: Jan 2 10:20:17 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=ff2807b46bd1db81ee59a24c74bed886ea5ad18c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:47:35:84:a5:06:1f:7d:7e:00:d5:1a:de:ef: 36:c3:5b:6e:68:ba:e6:40:47:3f:4d:8d:62:7c:2d: 3b:d4:70:7a:66:71:58:1c:19:45:78:52:77:96:ec: 3c:2d:ea:97:e1:f3:e7:cd:97:72:78:e6:df:05:99: 98:3f:e7:4c:23:ec:8f:98:71:3e:90:81:d6:08:b8: ca:ce:e1:ab:97:2a:c4:ba:05:6f:d1:b2:7f:f3:ee: 09:4e:31:de:1d:92:09:56:b7:b8:6c:71:20:35:15: 0b:07:63:60:f1:76:3c:de:4b:6f:83:3e:b0:06:0e: 1d:44:ef:59:6d:c6:89:1d:1e:2a:05:ae:d7:dd:f5: 8d:7a:61:03:f4:6b:9a:3a:af:1d:8b:61:e2:29:55: 20:27:b5:6d:3c:9a:dc:33:44:f6:b6:ce:a0:79:35: 04:e6:36:6c:2d:77:b7:3b:5f:df:2b:d1:f1:6b:95: 16:96:6d:7f:61:67:d4:8d:c0:16:62:34:d9:42:1d: 52:71:8c:72:4e:7d:67:8d:58:84:5a:3f:6c:2e:02: ff:8f:bf:56:f9:58:6f:ba:e3:f2:dc:2b:a0:f3:a8: 5c:55:a2:62:f1:4d:95:93:ac:dc:2a:71:fc:5c:dc: 59:4e:f1:7a:ae:8a:e7:42:b3:45:e0:0a:24:0c:dc: 28:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FF:28:07:B4:6B:D1:DB:81:EE:59:A2:4C:74:BE:D8:86:EA:5A:D1:8C X509v3 Authority Key Identifier: keyid:FF:A3:E5:51:41:C1:A1:F9:F2:E2:88:11:ED:7E:77:FA:D3:78:A5:79 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_6PlUUHBofny4ogR7X53-tN4pXk.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/11/b263a2-0f6f-4f5d-af9e-a39ac2539fc5/1/_ygHtGvR24HuWaJMdL7Yhupa0Yw.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/11/b263a2-0f6f-4f5d-af9e-a39ac2539fc5/1/_6PlUUHBofny4ogR7X53-tN4pXk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 109.122.10.0/24 109.122.27.0/24 Signature Algorithm: sha256WithRSAEncryption 68:80:60:b9:6a:7a:1c:05:34:03:01:37:a3:6d:bc:c7:76:eb: 41:ad:59:e3:52:3b:c3:03:ec:db:42:2b:b0:25:a5:a2:61:91: 3a:6f:1b:bb:f2:4e:f4:c8:2d:bb:7c:38:96:08:a5:2c:1a:48: f9:8d:e5:f9:92:3f:3d:28:90:66:6d:4a:13:c5:83:e7:9c:ea: 91:cc:18:50:c9:77:2a:ab:1c:49:52:5a:62:bb:f6:00:b5:63: 19:a2:08:4f:78:37:ba:d6:54:65:0d:81:96:a3:dd:cf:f4:e5: ed:7a:9c:89:2b:ec:df:67:fd:85:05:30:75:f9:89:c8:7b:d8: 5d:b2:c2:86:b1:f2:b8:9f:29:07:d2:0c:cd:a2:5c:49:b3:47: 0f:81:fe:f8:34:fa:cf:0b:b1:21:ea:75:33:e5:fc:26:8d:e9: 4d:b2:0b:6a:b5:f8:b5:04:80:06:a4:f7:b8:c6:d9:d1:b0:b2: 5c:55:c3:f2:54:73:e1:c5:37:cc:30:2b:9c:53:cb:20:f7:0d: 6f:5f:e0:35:a5:66:3e:ea:40:5a:a7:b8:9d:2a:81:c5:39:3a: 3c:6f:06:03:1f:23:80:9c:2b:06:84:47:8a:ab:4b:fc:48:da: 15:74:a3:7e:6f:98:e1:a9:ad:a8:dd:45:83:b2:c9:98:02:5a: 9a:57:d0:92 -----BEGIN CERTIFICATE----- MIIFAzCCA+ugAwIBAgISAZt+OOhXB4tuzIsSnq3EHx0ZMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGZmYTNlNTUxNDFjMWExZjlmMmUyODgxMWVkN2U3N2ZhZDM3 OGE1NzkwHhcNMjYwMTAyMTAyMDE3WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhmZjI4MDdiNDZiZDFkYjgxZWU1OWEyNGM3NGJlZDg4NmVhNWFkMThjMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAoEc1hKUGH31+ANUa3u82w1tuaLrm QEc/TY1ifC071HB6ZnFYHBlFeFJ3luw8LeqX4fPnzZdyeObfBZmYP+dMI+yPmHE+ kIHWCLjKzuGrlyrEugVv0bJ/8+4JTjHeHZIJVre4bHEgNRULB2Ng8XY83ktvgz6w Bg4dRO9ZbcaJHR4qBa7X3fWNemED9GuaOq8di2HiKVUgJ7VtPJrcM0T2ts6geTUE 5jZsLXe3O1/fK9Hxa5UWlm1/YWfUjcAWYjTZQh1ScYxyTn1njViEWj9sLgL/j79W +VhvuuPy3Cug86hcVaJi8U2Vk6zcKnH8XNxZTvF6rornQrNF4AokDNwofQIDAQAB o4ICDzCCAgswHQYDVR0OBBYEFP8oB7Rr0duB7lmiTHS+2IbqWtGMMB8GA1UdIwQY MBaAFP+j5VFBwaH58uKIEe1+d/rTeKV5MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvXzZQbFVVSEJvZm55NG9nUjdYNTMtdE40cFhrLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xMS9iMjYzYTItMGY2Zi00ZjVkLWFmOWUt YTM5YWMyNTM5ZmM1LzEvX3lnSHRHdlIyNEh1V2FKTWRMN1lodXBhMFl3LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xMS9iMjYzYTItMGY2Zi00ZjVkLWFmOWUtYTM5YWMyNTM5ZmM1 LzEvXzZQbFVVSEJvZm55NG9nUjdYNTMtdE40cFhrLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQAbXoKAwQA bXobMA0GCSqGSIb3DQEBCwUAA4IBAQBogGC5anocBTQDATejbbzHdutBrVnjUjvD A+zbQiuwJaWiYZE6bxu78k70yC27fDiWCKUsGkj5jeX5kj89KJBmbUoTxYPnnOqR zBhQyXcqqxxJUlpiu/YAtWMZoghPeDe61lRlDYGWo93P9OXtepyJK+zfZ/2FBTB1 +YnIe9hdssKGsfK4nykH0gzNolxJs0cPgf74NPrPC7Eh6nUz5fwmjelNsgtqtfi1 BIAGpPe4xtnRsLJcVcPyVHPhxTfMMCucU8sg9w1vX+A1pWY+6kBap7idKoHFOTo8 bwYDHyOAnCsGhEeKq0v8SNoVdKN+b5jhqa2o3UWDssmYAlqaV9CS -----END CERTIFICATE-----Generated at Sun Jan 11 21:00:53 2026 by rpki-client