This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/13/525707-1a12-4138-ae46-9f7e8a6122a3/1/YYn49ElJf0Sq1r0mfkdIQTwmQdg.roa File: YYn49ElJf0Sq1r0mfkdIQTwmQdg.roa (raw, json) Hash identifier: QxGuwFKApJYfN3mvWwP7KytzI3pNw7rmnyOPXpRIZcM= Subject key identifier: 61:89:F8:F4:49:49:7F:44:AA:D6:BD:26:7E:47:48:41:3C:26:41:D8 Certificate issuer: /CN=c78b52ddfd0be561d410ca8846fc797e2298b3cc Certificate serial: 019B7A5B3015EA598B7274526449537DEDB9 Authority key identifier: C7:8B:52:DD:FD:0B:E5:61:D4:10:CA:88:46:FC:79:7E:22:98:B3:CC Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/x4tS3f0L5WHUEMqIRvx5fiKYs8w.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/13/525707-1a12-4138-ae46-9f7e8a6122a3/1/YYn49ElJf0Sq1r0mfkdIQTwmQdg.roa Signing time: Thu 01 Jan 2026 16:19:14 +0000 ROA not before: Thu 01 Jan 2026 16:19:14 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 8788 IP address blocks: 91.205.16.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/13/525707-1a12-4138-ae46-9f7e8a6122a3/1/x4tS3f0L5WHUEMqIRvx5fiKYs8w.crl rsync://rpki.ripe.net/repository/DEFAULT/13/525707-1a12-4138-ae46-9f7e8a6122a3/1/x4tS3f0L5WHUEMqIRvx5fiKYs8w.mft rsync://rpki.ripe.net/repository/DEFAULT/x4tS3f0L5WHUEMqIRvx5fiKYs8w.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7a:5b:30:15:ea:59:8b:72:74:52:64:49:53:7d:ed:b9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=c78b52ddfd0be561d410ca8846fc797e2298b3cc Validity Not Before: Jan 1 16:19:14 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=6189f8f449497f44aad6bd267e4748413c2641d8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:03:6d:72:41:e7:72:ee:df:ce:a2:98:2e:09: cb:ae:e7:9d:a1:83:c9:29:42:d3:ad:20:41:ab:49: 50:0d:53:55:42:0e:35:26:bb:a7:77:06:38:2d:e2: 8e:7d:31:51:19:c2:38:78:4d:ef:93:65:aa:b1:8e: 30:e0:28:23:1f:a1:2a:ea:32:c2:cf:09:73:dc:cf: ca:96:31:b4:d1:a3:2d:43:64:b7:f6:ae:9a:01:3c: 6f:a8:c2:85:ac:df:4f:5b:dc:64:e0:b1:95:fe:7e: 0c:31:d4:b9:3d:d3:66:a3:53:4d:4f:93:0f:58:73: 81:73:07:8c:4c:b7:9b:1c:8d:51:5a:4a:b5:a0:aa: 1a:ba:3a:12:19:fe:5d:eb:6c:9c:4b:73:de:cf:50: e5:5e:80:67:da:43:8b:fc:38:50:15:ee:3d:3b:d2: 50:39:7f:a1:c2:e3:ca:de:8b:8a:ff:1d:5a:05:1a: aa:97:57:d6:72:a6:4c:b2:87:aa:f4:75:35:55:46: 31:35:fa:93:9e:79:47:45:24:9e:b3:d6:83:5e:ad: 27:81:13:34:2f:86:99:b6:1e:61:54:7e:ab:0a:ad: ac:2a:c9:70:32:66:22:6b:db:6e:b7:48:8b:b4:41: d0:10:27:03:12:5c:36:e4:5e:64:57:07:1c:e3:eb: 94:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 61:89:F8:F4:49:49:7F:44:AA:D6:BD:26:7E:47:48:41:3C:26:41:D8 X509v3 Authority Key Identifier: keyid:C7:8B:52:DD:FD:0B:E5:61:D4:10:CA:88:46:FC:79:7E:22:98:B3:CC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/x4tS3f0L5WHUEMqIRvx5fiKYs8w.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/13/525707-1a12-4138-ae46-9f7e8a6122a3/1/YYn49ElJf0Sq1r0mfkdIQTwmQdg.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/13/525707-1a12-4138-ae46-9f7e8a6122a3/1/x4tS3f0L5WHUEMqIRvx5fiKYs8w.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 91.205.16.0/22 Signature Algorithm: sha256WithRSAEncryption a1:d1:47:8e:ea:19:e3:7c:34:87:7f:69:47:64:38:0b:89:23: e5:2d:a2:47:cd:5c:34:51:37:7a:d4:df:df:25:a1:4c:5f:a4: 6c:85:c9:af:5f:6c:87:ad:fe:d6:df:bf:08:30:7a:65:3c:e6: be:f9:61:d9:7d:f8:26:a7:d6:ad:c7:a6:6e:a9:04:3d:13:55: 6a:57:f6:c4:d7:a6:56:dc:10:83:28:01:76:79:b6:6b:e0:9d: 7a:5b:9c:d1:fe:db:88:a9:ba:ae:93:d5:00:7e:66:d2:ec:35: db:9c:31:23:de:cf:3c:32:2a:e6:56:12:54:8c:0b:64:b2:63: 3c:e1:a4:cd:61:45:75:00:93:84:71:0e:e1:ae:76:de:97:3d: e9:68:55:0b:e5:06:73:20:4c:e8:03:0d:ae:28:f6:0a:2f:8b: 23:7d:c2:23:94:03:46:3e:fa:fe:83:ef:9e:cc:e4:60:db:66: a5:73:d1:43:c9:03:79:c3:e8:7f:a3:39:58:e1:42:05:b4:23: 62:aa:82:3a:cf:25:14:2a:ea:c6:f4:92:1a:d1:9c:e1:5a:82: 1e:a9:17:a2:75:5b:7f:f2:60:86:02:4b:e9:8b:1a:c7:0c:7d: 9c:81:f7:3f:cf:2b:42:da:7d:ed:a1:3e:ac:12:ed:d6:48:c7: 61:55:7b:f2 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt6WzAV6lmLcnRSZElTfe25MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGM3OGI1MmRkZmQwYmU1NjFkNDEwY2E4ODQ2ZmM3OTdlMjI5 OGIzY2MwHhcNMjYwMTAxMTYxOTE0WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg2MTg5ZjhmNDQ5NDk3ZjQ0YWFkNmJkMjY3ZTQ3NDg0MTNjMjY0MWQ4MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzANtckHncu7fzqKYLgnLruedoYPJ KULTrSBBq0lQDVNVQg41JrundwY4LeKOfTFRGcI4eE3vk2WqsY4w4CgjH6Eq6jLC zwlz3M/KljG00aMtQ2S39q6aATxvqMKFrN9PW9xk4LGV/n4MMdS5PdNmo1NNT5MP WHOBcweMTLebHI1RWkq1oKoaujoSGf5d62ycS3Pez1DlXoBn2kOL/DhQFe49O9JQ OX+hwuPK3ouK/x1aBRqql1fWcqZMsoeq9HU1VUYxNfqTnnlHRSSes9aDXq0ngRM0 L4aZth5hVH6rCq2sKslwMmYia9tut0iLtEHQECcDElw25F5kVwcc4+uUOQIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFGGJ+PRJSX9Eqta9Jn5HSEE8JkHYMB8GA1UdIwQY MBaAFMeLUt39C+Vh1BDKiEb8eX4imLPMMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQveDR0UzNmMEw1V0hVRU1xSVJ2eDVmaUtZczh3LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xMy81MjU3MDctMWExMi00MTM4LWFlNDYt OWY3ZThhNjEyMmEzLzEvWVluNDlFbEpmMFNxMXIwbWZrZElRVHdtUWRnLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xMy81MjU3MDctMWExMi00MTM4LWFlNDYtOWY3ZThhNjEyMmEz LzEveDR0UzNmMEw1V0hVRU1xSVJ2eDVmaUtZczh3LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCW80QMA0G CSqGSIb3DQEBCwUAA4IBAQCh0UeO6hnjfDSHf2lHZDgLiSPlLaJHzVw0UTd61N/f JaFMX6RshcmvX2yHrf7W378IMHplPOa++WHZffgmp9atx6ZuqQQ9E1VqV/bE16ZW 3BCDKAF2ebZr4J16W5zR/tuIqbquk9UAfmbS7DXbnDEj3s88MirmVhJUjAtksmM8 4aTNYUV1AJOEcQ7hrnbelz3paFUL5QZzIEzoAw2uKPYKL4sjfcIjlANGPvr+g++e zORg22alc9FDyQN5w+h/ozlY4UIFtCNiqoI6zyUUKurG9JIa0ZzhWoIeqReidVt/ 8mCGAkvpixrHDH2cgfc/zytC2n3toT6sEu3WSMdhVXvy -----END CERTIFICATE-----Generated at Mon Feb 9 22:57:39 2026 by rpki-client