This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/16/0c61a6-e0fa-4017-9582-1e7bdb7f30f6/1/Y6tlWJsn2-eO2pGWaQiPAUkPW7g.roa File: Y6tlWJsn2-eO2pGWaQiPAUkPW7g.roa (raw, json) Hash identifier: uARQVpL4FEL+I59HsU9UtUVf5F4ZPPjEs1mpi4DNxXs= Subject key identifier: 63:AB:65:58:9B:27:DB:E7:8E:DA:91:96:69:08:8F:01:49:0F:5B:B8 Certificate issuer: /CN=c853fb7988a42f39838b1c7f9f0400692e9295d7 Certificate serial: 019B76EB90B676C95BC6D41099B0AF199D42 Authority key identifier: C8:53:FB:79:88:A4:2F:39:83:8B:1C:7F:9F:04:00:69:2E:92:95:D7 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/yFP7eYikLzmDixx_nwQAaS6Sldc.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/16/0c61a6-e0fa-4017-9582-1e7bdb7f30f6/1/Y6tlWJsn2-eO2pGWaQiPAUkPW7g.roa Signing time: Thu 01 Jan 2026 00:18:27 +0000 ROA not before: Thu 01 Jan 2026 00:18:27 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 60781 IP address blocks: 91.214.108.0/24 maxlen: 24 91.214.109.0/24 maxlen: 24 91.214.110.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/16/0c61a6-e0fa-4017-9582-1e7bdb7f30f6/1/yFP7eYikLzmDixx_nwQAaS6Sldc.crl rsync://rpki.ripe.net/repository/DEFAULT/16/0c61a6-e0fa-4017-9582-1e7bdb7f30f6/1/yFP7eYikLzmDixx_nwQAaS6Sldc.mft rsync://rpki.ripe.net/repository/DEFAULT/yFP7eYikLzmDixx_nwQAaS6Sldc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 20 Jan 2026 09:01:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:76:eb:90:b6:76:c9:5b:c6:d4:10:99:b0:af:19:9d:42 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=c853fb7988a42f39838b1c7f9f0400692e9295d7 Validity Not Before: Jan 1 00:18:27 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=63ab65589b27dbe78eda919669088f01490f5bb8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:2e:e7:fb:da:99:5f:ce:17:5a:f2:3e:d0:2f: 57:b9:61:a8:4b:0b:1e:8a:e5:56:36:c5:fe:46:ce: cc:76:e3:8a:32:4b:ae:ef:7b:fc:f3:f0:e0:73:b7: 82:c9:3e:d9:a8:1d:66:8a:43:4a:39:e0:72:1b:de: 2a:bb:5f:a8:97:6a:d3:1f:84:91:8a:9e:11:72:a2: b1:89:b4:23:c3:15:d6:61:0b:61:12:4c:e8:e6:99: cf:8a:5c:ee:f2:0c:d6:f2:1c:ba:74:ca:4b:02:25: 94:c3:41:bd:e7:7b:c9:d3:c2:ed:61:e0:0f:04:4e: b3:7b:3f:8d:f2:7c:df:ec:18:da:e5:87:fa:9a:1c: 4d:dd:fc:f9:b4:aa:e3:78:8e:92:71:6d:24:ef:3b: ff:f0:42:0d:e4:4d:d5:b8:73:5a:1a:b1:4c:d6:cb: 83:c4:e2:1e:f9:99:1a:7d:3c:88:0e:32:61:19:db: 83:53:fc:54:1a:bb:25:1b:f3:50:9f:59:8b:0c:63: 9b:15:ee:b4:e9:93:4e:cb:d1:43:f1:a9:de:7d:8a: 8f:ce:13:23:30:6d:4a:bc:3c:bc:ae:e0:80:5e:d9: d5:76:86:5c:92:43:67:6d:97:bc:ed:35:3e:19:f9: 76:d9:27:d0:9f:14:69:71:2e:ed:11:61:f8:b8:1c: 2f:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 63:AB:65:58:9B:27:DB:E7:8E:DA:91:96:69:08:8F:01:49:0F:5B:B8 X509v3 Authority Key Identifier: keyid:C8:53:FB:79:88:A4:2F:39:83:8B:1C:7F:9F:04:00:69:2E:92:95:D7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yFP7eYikLzmDixx_nwQAaS6Sldc.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/16/0c61a6-e0fa-4017-9582-1e7bdb7f30f6/1/Y6tlWJsn2-eO2pGWaQiPAUkPW7g.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/16/0c61a6-e0fa-4017-9582-1e7bdb7f30f6/1/yFP7eYikLzmDixx_nwQAaS6Sldc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 91.214.108.0-91.214.110.255 Signature Algorithm: sha256WithRSAEncryption 23:b7:7e:4f:a4:8a:e2:63:3e:db:88:2c:dc:0e:4e:52:b0:a3: 9b:a2:a9:93:f9:0a:a5:85:1c:f3:2e:d9:3f:21:cf:08:34:8e: 23:44:23:a7:59:15:76:8a:5a:6d:81:c0:3b:6d:57:af:f8:18: 24:68:fb:69:a2:a0:ed:70:76:ce:34:49:ef:10:75:4b:5a:c4: ac:ee:f4:73:65:15:a5:52:e4:d6:5d:78:8d:4c:46:9e:2d:38: 1a:3d:db:96:5c:d6:9c:0a:da:77:01:4a:f7:a8:aa:57:23:f8: 4e:87:19:c6:4b:36:13:ec:e1:43:31:be:b4:cd:06:7b:71:6e: 26:1f:43:35:12:2b:b8:c7:9e:34:fd:22:30:c5:15:7c:a7:a3: e9:ef:9f:f7:bb:3c:c0:41:01:5a:fa:0f:74:cc:26:8e:da:2b: 3f:87:fb:60:b2:bd:96:d6:a1:c1:6e:c5:f0:69:4c:a0:c4:00: 99:45:83:3f:34:ce:59:dc:b5:63:cb:25:54:7b:2b:39:23:af: e6:d9:9f:9f:5d:6e:3f:32:21:b6:83:6a:3e:9a:1f:01:64:57: d3:59:16:99:b8:4d:6c:97:89:6d:c0:d3:74:2f:4f:ea:72:6c: 08:40:db:bd:13:17:25:e8:a0:1d:5f:20:a2:88:cb:bd:9c:d2: d0:1c:ec:d4 -----BEGIN CERTIFICATE----- MIIFBTCCA+2gAwIBAgISAZt265C2dslbxtQQmbCvGZ1CMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGM4NTNmYjc5ODhhNDJmMzk4MzhiMWM3ZjlmMDQwMDY5MmU5 Mjk1ZDcwHhcNMjYwMTAxMDAxODI3WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg2M2FiNjU1ODliMjdkYmU3OGVkYTkxOTY2OTA4OGYwMTQ5MGY1YmI4MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApy7n+9qZX84XWvI+0C9XuWGoSwse iuVWNsX+Rs7MduOKMkuu73v88/Dgc7eCyT7ZqB1mikNKOeByG94qu1+ol2rTH4SR ip4RcqKxibQjwxXWYQthEkzo5pnPilzu8gzW8hy6dMpLAiWUw0G953vJ08LtYeAP BE6zez+N8nzf7Bja5Yf6mhxN3fz5tKrjeI6ScW0k7zv/8EIN5E3VuHNaGrFM1suD xOIe+ZkafTyIDjJhGduDU/xUGrslG/NQn1mLDGObFe606ZNOy9FD8anefYqPzhMj MG1KvDy8ruCAXtnVdoZckkNnbZe87TU+Gfl22SfQnxRpcS7tEWH4uBwvJQIDAQAB o4ICETCCAg0wHQYDVR0OBBYEFGOrZVibJ9vnjtqRlmkIjwFJD1u4MB8GA1UdIwQY MBaAFMhT+3mIpC85g4scf58EAGkukpXXMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQveUZQN2VZaWtMem1EaXh4X253UUFhUzZTbGRjLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xNi8wYzYxYTYtZTBmYS00MDE3LTk1ODIt MWU3YmRiN2YzMGY2LzEvWTZ0bFdKc24yLWVPMnBHV2FRaVBBVWtQVzdnLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xNi8wYzYxYTYtZTBmYS00MDE3LTk1ODItMWU3YmRiN2YzMGY2 LzEveUZQN2VZaWtMem1EaXh4X253UUFhUzZTbGRjLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCcGCCsGAQUFBwEHAQH/BBgwFjAUBAIAATAOMAwDBAJb1mwD BABb1m4wDQYJKoZIhvcNAQELBQADggEBACO3fk+kiuJjPtuILNwOTlKwo5uiqZP5 CqWFHPMu2T8hzwg0jiNEI6dZFXaKWm2BwDttV6/4GCRo+2mioO1wds40Se8QdUta xKzu9HNlFaVS5NZdeI1MRp4tOBo925Zc1pwK2ncBSveoqlcj+E6HGcZLNhPs4UMx vrTNBntxbiYfQzUSK7jHnjT9IjDFFXyno+nvn/e7PMBBAVr6D3TMJo7aKz+H+2Cy vZbWocFuxfBpTKDEAJlFgz80zlnctWPLJVR7Kzkjr+bZn59dbj8yIbaDaj6aHwFk V9NZFpm4TWyXiW3A03QvT+pybAhA270TFyXooB1fIKKIy72c0tAc7NQ= -----END CERTIFICATE-----Generated at Mon Jan 19 16:50:37 2026 by rpki-client