This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/14/10e965-7409-44d8-9502-cf0aa3ecad28/1/YziHvLlX14Bti0NY0Sx9Yo0T07A.roa File: YziHvLlX14Bti0NY0Sx9Yo0T07A.roa (raw, json) Hash identifier: BqFk3R+lISgdo5MfFHtGUi+lKU/wYg9RUvKXdhv9EyM= Subject key identifier: 63:38:87:BC:B9:57:D7:80:6D:8B:43:58:D1:2C:7D:62:8D:13:D3:B0 Certificate issuer: /CN=0802b95ce6239d526c35ae7a8e2ceb48aeb82b5f Certificate serial: 019B7F13EEA1110D7B265F488B7B97327206 Authority key identifier: 08:02:B9:5C:E6:23:9D:52:6C:35:AE:7A:8E:2C:EB:48:AE:B8:2B:5F Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CAK5XOYjnVJsNa56jizrSK64K18.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/14/10e965-7409-44d8-9502-cf0aa3ecad28/1/YziHvLlX14Bti0NY0Sx9Yo0T07A.roa Signing time: Fri 02 Jan 2026 14:19:31 +0000 ROA not before: Fri 02 Jan 2026 14:19:31 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 42031 IP address blocks: 195.91.142.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/14/10e965-7409-44d8-9502-cf0aa3ecad28/1/CAK5XOYjnVJsNa56jizrSK64K18.crl rsync://rpki.ripe.net/repository/DEFAULT/14/10e965-7409-44d8-9502-cf0aa3ecad28/1/CAK5XOYjnVJsNa56jizrSK64K18.mft rsync://rpki.ripe.net/repository/DEFAULT/CAK5XOYjnVJsNa56jizrSK64K18.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 05 Feb 2026 23:01:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7f:13:ee:a1:11:0d:7b:26:5f:48:8b:7b:97:32:72:06 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0802b95ce6239d526c35ae7a8e2ceb48aeb82b5f Validity Not Before: Jan 2 14:19:31 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=633887bcb957d7806d8b4358d12c7d628d13d3b0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:7a:c5:4b:0b:3a:12:17:2d:b7:07:82:3b:4c: 1c:b9:e8:22:b5:cf:f3:2a:f1:f4:50:ca:2f:80:13: 37:4a:c9:87:8a:fc:24:db:ea:79:02:9e:13:52:15: fa:49:3d:84:ef:09:83:34:86:8c:05:f0:14:bd:12: 38:86:e4:e5:10:32:fb:b2:6b:6f:be:9f:8a:85:dd: d1:5e:db:9e:49:e8:e5:49:f0:50:57:e6:00:14:c2: 98:90:be:f6:6f:56:4e:27:9d:c3:bb:5e:28:c1:0e: 03:af:5a:55:8d:87:c4:ac:f8:9c:c3:a0:3c:0f:13: 44:2e:60:f2:b2:11:93:b2:96:10:34:c9:ff:0e:cb: f5:bc:76:06:5f:2a:8b:37:4a:9a:47:34:3d:90:be: 4a:0e:1a:00:15:56:5e:22:09:ce:e8:4e:7d:10:ad: 77:de:7e:72:20:e2:6a:fd:54:d5:86:c3:2b:c2:9a: 71:61:80:ea:4b:e1:3d:a7:bd:81:a9:d0:ea:51:bb: 55:76:bc:b0:3d:4f:a2:77:0d:8e:ed:7c:29:c0:d4: 7c:54:e1:ee:cf:f0:a0:35:0c:c0:3b:7b:fa:9b:41: db:40:84:dd:e5:27:0e:01:6f:ad:a9:fa:34:16:34: 5a:80:73:01:e0:60:cc:ef:4f:26:f0:0c:c8:4e:54: 63:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 63:38:87:BC:B9:57:D7:80:6D:8B:43:58:D1:2C:7D:62:8D:13:D3:B0 X509v3 Authority Key Identifier: keyid:08:02:B9:5C:E6:23:9D:52:6C:35:AE:7A:8E:2C:EB:48:AE:B8:2B:5F X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CAK5XOYjnVJsNa56jizrSK64K18.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/14/10e965-7409-44d8-9502-cf0aa3ecad28/1/YziHvLlX14Bti0NY0Sx9Yo0T07A.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/14/10e965-7409-44d8-9502-cf0aa3ecad28/1/CAK5XOYjnVJsNa56jizrSK64K18.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 195.91.142.0/23 Signature Algorithm: sha256WithRSAEncryption c0:80:51:57:83:b4:fe:60:95:f1:ff:10:28:0b:8d:cf:a3:25: 98:73:04:f6:6d:e9:f9:9b:46:9b:e0:b7:3e:0b:70:dc:71:71: 80:fd:e1:13:5e:e2:d0:c7:1f:cd:b2:ec:72:5d:ce:c5:ba:b8: c4:e1:81:c4:c4:56:44:93:14:2b:42:ad:b3:44:e8:3a:a6:c3: a1:f3:6e:4a:60:a9:38:d1:6f:40:8d:9f:15:b1:b3:e2:cc:21: 2a:f6:8a:90:af:0a:f0:b1:ad:57:67:de:47:c8:2e:ad:a5:80: 3d:ef:f3:d6:f6:4b:63:3b:af:90:e6:61:3e:c0:de:f0:ef:fd: 2c:cd:1d:af:d7:1d:5f:b2:10:ae:41:14:47:ea:2a:bd:ea:e5: 9f:33:16:86:43:9f:35:32:43:69:5b:d5:d9:fb:51:09:ca:22: 82:e0:5e:cb:f4:c3:6c:11:4c:d8:c1:0b:78:cf:10:d2:bf:65: e0:92:53:85:61:94:59:e5:48:f4:8e:0e:ae:0b:06:b1:b5:89: 80:24:d5:9a:8d:3e:bb:46:a5:c2:61:35:af:5b:65:48:19:01: f6:d0:d6:5f:ee:8e:e0:69:22:46:07:94:ff:fc:39:d9:3d:3c: 1c:65:ff:91:31:e7:31:28:c7:83:ad:84:0a:6a:30:4f:38:9e: 0c:73:d8:7c -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt/E+6hEQ17Jl9Ii3uXMnIGMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDA4MDJiOTVjZTYyMzlkNTI2YzM1YWU3YThlMmNlYjQ4YWVi ODJiNWYwHhcNMjYwMTAyMTQxOTMxWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg2MzM4ODdiY2I5NTdkNzgwNmQ4YjQzNThkMTJjN2Q2MjhkMTNkM2IwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuXrFSws6EhcttweCO0wcuegitc/z KvH0UMovgBM3SsmHivwk2+p5Ap4TUhX6ST2E7wmDNIaMBfAUvRI4huTlEDL7smtv vp+Khd3RXtueSejlSfBQV+YAFMKYkL72b1ZOJ53Du14owQ4Dr1pVjYfErPicw6A8 DxNELmDyshGTspYQNMn/Dsv1vHYGXyqLN0qaRzQ9kL5KDhoAFVZeIgnO6E59EK13 3n5yIOJq/VTVhsMrwppxYYDqS+E9p72BqdDqUbtVdrywPU+idw2O7XwpwNR8VOHu z/CgNQzAO3v6m0HbQITd5ScOAW+tqfo0FjRagHMB4GDM708m8AzITlRjnwIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFGM4h7y5V9eAbYtDWNEsfWKNE9OwMB8GA1UdIwQY MBaAFAgCuVzmI51SbDWueo4s60iuuCtfMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvQ0FLNVhPWWpuVkpzTmE1NmppenJTSzY0SzE4LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xNC8xMGU5NjUtNzQwOS00NGQ4LTk1MDIt Y2YwYWEzZWNhZDI4LzEvWXppSHZMbFgxNEJ0aTBOWTBTeDlZbzBUMDdBLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xNC8xMGU5NjUtNzQwOS00NGQ4LTk1MDItY2YwYWEzZWNhZDI4 LzEvQ0FLNVhPWWpuVkpzTmE1NmppenJTSzY0SzE4LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBw1uOMA0G CSqGSIb3DQEBCwUAA4IBAQDAgFFXg7T+YJXx/xAoC43PoyWYcwT2ben5m0ab4Lc+ C3DccXGA/eETXuLQxx/NsuxyXc7FurjE4YHExFZEkxQrQq2zROg6psOh825KYKk4 0W9AjZ8VsbPizCEq9oqQrwrwsa1XZ95HyC6tpYA97/PW9ktjO6+Q5mE+wN7w7/0s zR2v1x1fshCuQRRH6iq96uWfMxaGQ581MkNpW9XZ+1EJyiKC4F7L9MNsEUzYwQt4 zxDSv2XgklOFYZRZ5Uj0jg6uCwaxtYmAJNWajT67RqXCYTWvW2VIGQH20NZf7o7g aSJGB5T//DnZPTwcZf+RMecxKMeDrYQKajBPOJ4Mc9h8 -----END CERTIFICATE-----Generated at Thu Feb 5 05:55:04 2026 by rpki-client