This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1b/246b4d-4d3e-4e02-8c07-ac68a50d0c99/1/ykn6ra4wP0urmcyUyxV1FWZ2Kp0.roa File: ykn6ra4wP0urmcyUyxV1FWZ2Kp0.roa (raw, json) Hash identifier: IJ1D7ZuY9/uNKyGnyBgDEp0dSpIFh5mPiRSScoZkO+Y= Subject key identifier: CA:49:FA:AD:AE:30:3F:4B:AB:99:CC:94:CB:15:75:15:66:76:2A:9D Certificate issuer: /CN=c8a4bbd78af363fa5beee632e8bdc48b6297343c Certificate serial: 019B7CED0F30D4A2C1FB4432D7D1611A5AF7 Authority key identifier: C8:A4:BB:D7:8A:F3:63:FA:5B:EE:E6:32:E8:BD:C4:8B:62:97:34:3C Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/yKS714rzY_pb7uYy6L3Ei2KXNDw.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1b/246b4d-4d3e-4e02-8c07-ac68a50d0c99/1/ykn6ra4wP0urmcyUyxV1FWZ2Kp0.roa Signing time: Fri 02 Jan 2026 04:17:49 +0000 ROA not before: Fri 02 Jan 2026 04:17:49 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 396982 IP address blocks: 198.151.157.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1b/246b4d-4d3e-4e02-8c07-ac68a50d0c99/1/yKS714rzY_pb7uYy6L3Ei2KXNDw.crl rsync://rpki.ripe.net/repository/DEFAULT/1b/246b4d-4d3e-4e02-8c07-ac68a50d0c99/1/yKS714rzY_pb7uYy6L3Ei2KXNDw.mft rsync://rpki.ripe.net/repository/DEFAULT/yKS714rzY_pb7uYy6L3Ei2KXNDw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 09 Jan 2026 21:02:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7c:ed:0f:30:d4:a2:c1:fb:44:32:d7:d1:61:1a:5a:f7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=c8a4bbd78af363fa5beee632e8bdc48b6297343c Validity Not Before: Jan 2 04:17:49 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=ca49faadae303f4bab99cc94cb15751566762a9d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:1c:af:5d:1c:af:2e:78:e4:fb:f2:5a:c3:76: 45:5f:9d:72:0f:92:0d:9e:98:82:6a:28:b9:91:a2: 13:65:08:0b:e6:d0:69:e7:38:81:85:0c:f2:c5:26: 48:34:b0:2b:aa:b6:05:f3:6c:8a:da:e6:c0:8a:6f: f8:fe:45:27:b7:ae:37:ac:f4:5a:a2:9e:11:dc:46: 02:41:42:6e:52:ba:55:ef:68:59:74:fa:4f:a4:5e: 1d:9e:c2:6a:42:f3:44:d6:37:a0:c9:9a:d2:11:3d: f2:9f:f2:ad:a4:4a:ac:07:96:1c:28:46:1b:33:ed: a9:c6:ec:46:a5:ad:70:e3:06:ac:58:fa:6e:30:9b: 76:d4:57:9c:9a:e8:ff:1f:c0:65:65:83:22:de:80: 57:6b:6b:69:4f:a8:5a:dc:25:4b:02:32:0a:23:b4: a1:2b:24:7f:aa:9b:2b:13:62:d5:08:6b:59:af:ea: dc:ff:dd:ce:3b:ff:4f:a4:ed:1f:d8:83:0c:68:ab: 86:1b:a4:29:3d:41:5c:2c:48:94:a0:b9:95:fb:9d: 0e:a7:c1:a1:4f:46:1e:b5:04:da:cf:95:a0:83:c6: e5:a0:6b:2c:b7:5e:57:e1:e9:eb:a3:b0:6d:f3:8f: c1:9c:5f:35:2d:cb:db:35:ef:24:e2:50:32:9c:6d: f7:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CA:49:FA:AD:AE:30:3F:4B:AB:99:CC:94:CB:15:75:15:66:76:2A:9D X509v3 Authority Key Identifier: keyid:C8:A4:BB:D7:8A:F3:63:FA:5B:EE:E6:32:E8:BD:C4:8B:62:97:34:3C X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yKS714rzY_pb7uYy6L3Ei2KXNDw.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1b/246b4d-4d3e-4e02-8c07-ac68a50d0c99/1/ykn6ra4wP0urmcyUyxV1FWZ2Kp0.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/1b/246b4d-4d3e-4e02-8c07-ac68a50d0c99/1/yKS714rzY_pb7uYy6L3Ei2KXNDw.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 198.151.157.0/24 Signature Algorithm: sha256WithRSAEncryption 20:96:8a:82:bd:e5:21:38:1d:f1:92:96:02:b9:ea:3e:05:9c: 54:44:65:f2:3c:b8:76:14:8d:f3:1c:3a:34:bc:8d:af:aa:cd: b9:60:09:08:7b:c5:88:76:8d:6a:36:de:85:99:a2:c2:44:1a: 7e:13:87:48:5a:9e:28:9b:68:24:cd:91:55:70:0b:53:df:09: 35:41:c7:bc:99:92:7a:7e:ce:f0:82:be:07:a9:3c:e8:a4:e0: 2b:15:c9:e7:c3:bc:06:75:16:5f:40:32:90:72:db:45:df:d4: d0:f4:de:a4:2d:60:e4:cb:74:37:7e:ae:c7:00:05:9a:4c:7a: 78:2a:eb:67:12:e7:b4:27:7b:8f:dd:47:f8:7e:bc:b7:a9:52: 19:8a:91:d4:2a:fb:45:b0:3d:94:67:e0:2b:0a:ea:d4:8e:af: 1c:1d:ad:6a:9e:57:33:31:12:03:33:e8:50:82:6f:91:6c:04: bc:40:a4:84:24:30:96:75:f4:4b:b3:51:fb:70:12:0b:5f:ee: ab:21:4e:75:c4:d0:96:0f:b0:32:eb:36:39:54:34:2f:99:8d: 43:63:0c:93:0a:c5:86:2c:84:f2:8c:67:2e:06:41:95:d2:dc: 1d:ae:d8:22:ac:c3:90:24:ab:fd:14:72:7c:b0:f2:f9:53:48: 51:50:e3:af -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt87Q8w1KLB+0Qy19FhGlr3MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGM4YTRiYmQ3OGFmMzYzZmE1YmVlZTYzMmU4YmRjNDhiNjI5 NzM0M2MwHhcNMjYwMTAyMDQxNzQ5WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhjYTQ5ZmFhZGFlMzAzZjRiYWI5OWNjOTRjYjE1NzUxNTY2NzYyYTlkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0RyvXRyvLnjk+/Jaw3ZFX51yD5IN npiCaii5kaITZQgL5tBp5ziBhQzyxSZINLArqrYF82yK2ubAim/4/kUnt643rPRa op4R3EYCQUJuUrpV72hZdPpPpF4dnsJqQvNE1jegyZrSET3yn/KtpEqsB5YcKEYb M+2pxuxGpa1w4wasWPpuMJt21Fecmuj/H8BlZYMi3oBXa2tpT6ha3CVLAjIKI7Sh KyR/qpsrE2LVCGtZr+rc/93OO/9PpO0f2IMMaKuGG6QpPUFcLEiUoLmV+50Op8Gh T0YetQTaz5Wgg8bloGsst15X4enro7Bt84/BnF81LcvbNe8k4lAynG33IwIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFMpJ+q2uMD9Lq5nMlMsVdRVmdiqdMB8GA1UdIwQY MBaAFMiku9eK82P6W+7mMui9xItilzQ8MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQveUtTNzE0cnpZX3BiN3VZeTZMM0VpMktYTkR3LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xYi8yNDZiNGQtNGQzZS00ZTAyLThjMDct YWM2OGE1MGQwYzk5LzEveWtuNnJhNHdQMHVybWN5VXl4VjFGV1oyS3AwLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xYi8yNDZiNGQtNGQzZS00ZTAyLThjMDctYWM2OGE1MGQwYzk5 LzEveUtTNzE0cnpZX3BiN3VZeTZMM0VpMktYTkR3LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAxpedMA0G CSqGSIb3DQEBCwUAA4IBAQAgloqCveUhOB3xkpYCueo+BZxURGXyPLh2FI3zHDo0 vI2vqs25YAkIe8WIdo1qNt6FmaLCRBp+E4dIWp4om2gkzZFVcAtT3wk1Qce8mZJ6 fs7wgr4HqTzopOArFcnnw7wGdRZfQDKQcttF39TQ9N6kLWDky3Q3fq7HAAWaTHp4 KutnEue0J3uP3Uf4fry3qVIZipHUKvtFsD2UZ+ArCurUjq8cHa1qnlczMRIDM+hQ gm+RbAS8QKSEJDCWdfRLs1H7cBILX+6rIU51xNCWD7Ay6zY5VDQvmY1DYwyTCsWG LITyjGcuBkGV0twdrtgirMOQJKv9FHJ8sPL5U0hRUOOv -----END CERTIFICATE-----Generated at Fri Jan 9 06:25:49 2026 by rpki-client