This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1a/2b70f0-4da3-4b45-a95d-48a20e6e5d8b/1/yGo3bd_PBkdSOHP97aSwO25CbMs.roa File: yGo3bd_PBkdSOHP97aSwO25CbMs.roa (raw, json) Hash identifier: 4G7Mo+idHxtoGcT5AVhMItxtHJ9uui0A13uK+5ubrzY= Subject key identifier: C8:6A:37:6D:DF:CF:06:47:52:38:73:FD:ED:A4:B0:3B:6E:42:6C:CB Certificate issuer: /CN=a1646d3f90758d8a3743f155f62bffff1bb6366a Certificate serial: 019B7C7F836EA42FCFF65051767DF32C5944 Authority key identifier: A1:64:6D:3F:90:75:8D:8A:37:43:F1:55:F6:2B:FF:FF:1B:B6:36:6A Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oWRtP5B1jYo3Q_FV9iv__xu2Nmo.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1a/2b70f0-4da3-4b45-a95d-48a20e6e5d8b/1/yGo3bd_PBkdSOHP97aSwO25CbMs.roa Signing time: Fri 02 Jan 2026 02:18:10 +0000 ROA not before: Fri 02 Jan 2026 02:18:10 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 62250 IP address blocks: 185.209.188.0/22 maxlen: 22 185.209.188.0/24 maxlen: 24 185.209.189.0/24 maxlen: 24 185.209.190.0/24 maxlen: 24 185.209.191.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1a/2b70f0-4da3-4b45-a95d-48a20e6e5d8b/1/oWRtP5B1jYo3Q_FV9iv__xu2Nmo.crl rsync://rpki.ripe.net/repository/DEFAULT/1a/2b70f0-4da3-4b45-a95d-48a20e6e5d8b/1/oWRtP5B1jYo3Q_FV9iv__xu2Nmo.mft rsync://rpki.ripe.net/repository/DEFAULT/oWRtP5B1jYo3Q_FV9iv__xu2Nmo.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7c:7f:83:6e:a4:2f:cf:f6:50:51:76:7d:f3:2c:59:44 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=a1646d3f90758d8a3743f155f62bffff1bb6366a Validity Not Before: Jan 2 02:18:10 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=c86a376ddfcf0647523873fdeda4b03b6e426ccb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:9c:b2:77:c8:45:ba:2e:b5:eb:57:4c:8b:7e: ba:3a:cc:29:2a:67:b3:69:88:33:4f:cd:c5:41:ac: c4:79:04:65:4e:f0:b3:f3:49:d2:85:13:45:21:f0: 78:1c:7d:e6:3f:be:ef:a0:50:18:d6:e9:fd:50:1a: c6:b2:a1:c2:58:80:cf:5a:78:05:79:33:42:95:56: dd:9f:32:d0:7a:e1:fb:1e:81:a4:e1:b8:f8:27:f2: 29:cc:e1:af:34:ef:a5:23:56:c1:ab:56:16:d5:8d: 03:6c:48:15:bf:3d:fe:71:d0:e2:da:50:3c:f1:5f: 41:d8:a9:79:ef:27:f3:5e:c4:e3:de:00:83:cd:37: 6e:f6:e2:f5:63:23:c1:c3:57:8c:9f:52:de:1d:89: 9d:1a:a9:80:91:52:09:7b:0d:d3:17:96:c6:75:4b: 03:10:10:b2:9d:47:7d:08:b2:ae:9f:d8:53:19:70: a4:35:e8:c2:60:b0:52:eb:24:28:7a:d5:b4:f1:1a: ea:c5:b1:a8:17:41:f0:48:fd:05:7a:79:4c:0a:1c: cc:9f:a1:2a:33:6f:bc:b7:22:ae:18:9a:57:6b:e3: 73:59:3a:b0:fb:0c:2d:7b:63:2d:43:6e:75:0b:e6: 97:78:3f:44:62:5a:22:01:95:da:f4:84:97:6a:bc: 5f:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C8:6A:37:6D:DF:CF:06:47:52:38:73:FD:ED:A4:B0:3B:6E:42:6C:CB X509v3 Authority Key Identifier: keyid:A1:64:6D:3F:90:75:8D:8A:37:43:F1:55:F6:2B:FF:FF:1B:B6:36:6A X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oWRtP5B1jYo3Q_FV9iv__xu2Nmo.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1a/2b70f0-4da3-4b45-a95d-48a20e6e5d8b/1/yGo3bd_PBkdSOHP97aSwO25CbMs.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/1a/2b70f0-4da3-4b45-a95d-48a20e6e5d8b/1/oWRtP5B1jYo3Q_FV9iv__xu2Nmo.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.209.188.0/22 Signature Algorithm: sha256WithRSAEncryption 69:fd:09:9f:53:f8:2d:a4:8a:76:de:7e:1a:26:21:e0:9c:4a: 7b:7b:47:05:43:1f:e8:91:65:7b:fd:5f:2d:11:b4:f0:22:42: f6:2a:cf:90:cf:f8:51:aa:b4:10:51:2b:44:d2:91:bb:08:2e: 5b:be:8c:5e:f6:4c:84:04:56:97:4a:ff:7d:98:fc:f4:39:ff: f9:17:0b:a7:78:f1:9d:98:62:6c:51:e5:64:63:37:30:e0:ad: ec:dd:23:d0:7f:88:2f:d2:c8:e3:f9:5e:eb:24:4d:d4:52:3f: f3:71:78:31:30:04:ec:d7:7f:40:cb:3f:e8:e6:90:32:d1:ac: ed:a7:50:eb:d2:65:05:ff:03:1f:6e:0c:04:68:7d:31:8e:55: 38:11:23:61:5c:19:18:e8:97:af:2c:b5:52:34:ca:33:8a:9f: 22:d4:a4:c3:9f:e2:bc:f7:4d:df:f5:26:27:27:74:00:c4:cb: 85:20:cd:2d:bd:43:9c:d0:17:46:14:04:74:5f:cd:4f:21:40: 6c:9d:9e:55:96:1f:5f:ef:92:ec:6a:15:f7:3d:25:4c:3b:c3: 04:57:b1:d4:20:ea:68:4e:5a:02:54:69:4f:3a:9d:6e:be:72: 82:3b:ab:3b:2d:0e:f5:ef:d6:05:d3:12:73:86:54:2a:5e:ce: 7c:39:9e:d1 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt8f4NupC/P9lBRdn3zLFlEMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGExNjQ2ZDNmOTA3NThkOGEzNzQzZjE1NWY2MmJmZmZmMWJi NjM2NmEwHhcNMjYwMTAyMDIxODEwWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhjODZhMzc2ZGRmY2YwNjQ3NTIzODczZmRlZGE0YjAzYjZlNDI2Y2NiMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAs5yyd8hFui6161dMi366OswpKmez aYgzT83FQazEeQRlTvCz80nShRNFIfB4HH3mP77voFAY1un9UBrGsqHCWIDPWngF eTNClVbdnzLQeuH7HoGk4bj4J/IpzOGvNO+lI1bBq1YW1Y0DbEgVvz3+cdDi2lA8 8V9B2Kl57yfzXsTj3gCDzTdu9uL1YyPBw1eMn1LeHYmdGqmAkVIJew3TF5bGdUsD EBCynUd9CLKun9hTGXCkNejCYLBS6yQoetW08RrqxbGoF0HwSP0FenlMChzMn6Eq M2+8tyKuGJpXa+NzWTqw+wwte2MtQ251C+aXeD9EYloiAZXa9ISXarxf2wIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFMhqN23fzwZHUjhz/e2ksDtuQmzLMB8GA1UdIwQY MBaAFKFkbT+QdY2KN0PxVfYr//8btjZqMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvb1dSdFA1QjFqWW8zUV9GVjlpdl9feHUyTm1vLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xYS8yYjcwZjAtNGRhMy00YjQ1LWE5NWQt NDhhMjBlNmU1ZDhiLzEveUdvM2JkX1BCa2RTT0hQOTdhU3dPMjVDYk1zLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xYS8yYjcwZjAtNGRhMy00YjQ1LWE5NWQtNDhhMjBlNmU1ZDhi LzEvb1dSdFA1QjFqWW8zUV9GVjlpdl9feHUyTm1vLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCudG8MA0G CSqGSIb3DQEBCwUAA4IBAQBp/QmfU/gtpIp23n4aJiHgnEp7e0cFQx/okWV7/V8t EbTwIkL2Ks+Qz/hRqrQQUStE0pG7CC5bvoxe9kyEBFaXSv99mPz0Of/5FwunePGd mGJsUeVkYzcw4K3s3SPQf4gv0sjj+V7rJE3UUj/zcXgxMATs139Ayz/o5pAy0azt p1Dr0mUF/wMfbgwEaH0xjlU4ESNhXBkY6JevLLVSNMozip8i1KTDn+K8903f9SYn J3QAxMuFIM0tvUOc0BdGFAR0X81PIUBsnZ5Vlh9f75LsahX3PSVMO8MEV7HUIOpo TloCVGlPOp1uvnKCO6s7LQ7179YF0xJzhlQqXs58OZ7R -----END CERTIFICATE-----Generated at Mon Feb 9 22:15:40 2026 by rpki-client