This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1d/453542-08b2-4399-bc5c-c756ae01fa8a/1/Ya4-DOHb6IMAOxmkcETIsWTPCOg.roa File: Ya4-DOHb6IMAOxmkcETIsWTPCOg.roa (raw, json) Hash identifier: u4TLCuqpTYyL9fIrK/kr+oWhEP1P1uyD8bPrTE+F3k0= Subject key identifier: 61:AE:3E:0C:E1:DB:E8:83:00:3B:19:A4:70:44:C8:B1:64:CF:08:E8 Certificate issuer: /CN=83608851202328dce5fc01bf9dd292520530d9fe Certificate serial: 019B7F15F9B4693139893B5957D6620B5247 Authority key identifier: 83:60:88:51:20:23:28:DC:E5:FC:01:BF:9D:D2:92:52:05:30:D9:FE Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/g2CIUSAjKNzl_AG_ndKSUgUw2f4.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1d/453542-08b2-4399-bc5c-c756ae01fa8a/1/Ya4-DOHb6IMAOxmkcETIsWTPCOg.roa Signing time: Fri 02 Jan 2026 14:21:45 +0000 ROA not before: Fri 02 Jan 2026 14:21:45 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 9145 IP address blocks: 194.113.250.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1d/453542-08b2-4399-bc5c-c756ae01fa8a/1/g2CIUSAjKNzl_AG_ndKSUgUw2f4.crl rsync://rpki.ripe.net/repository/DEFAULT/1d/453542-08b2-4399-bc5c-c756ae01fa8a/1/g2CIUSAjKNzl_AG_ndKSUgUw2f4.mft rsync://rpki.ripe.net/repository/DEFAULT/g2CIUSAjKNzl_AG_ndKSUgUw2f4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7f:15:f9:b4:69:31:39:89:3b:59:57:d6:62:0b:52:47 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=83608851202328dce5fc01bf9dd292520530d9fe Validity Not Before: Jan 2 14:21:45 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=61ae3e0ce1dbe883003b19a47044c8b164cf08e8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e2:3d:30:67:b2:74:fa:c4:6c:2f:7e:a4:cf:bf: e5:ca:3f:e7:b7:b9:56:43:53:6f:9e:88:89:a0:c6: 05:bd:0e:7d:74:e9:db:c1:99:5f:19:4c:09:e7:a4: c2:a5:72:19:1d:59:6d:3e:ec:27:29:11:14:7f:5b: d9:2b:8f:c3:b6:31:d0:f6:19:bc:f3:bd:3f:1c:e0: e7:aa:40:1a:47:e6:50:13:47:97:fb:46:7b:a1:a9: 57:07:05:6c:1a:b3:ef:7b:cd:be:0f:e7:bb:1f:70: 11:4f:b8:e0:16:ff:39:1e:e4:b9:4f:f7:f1:b9:f7: c1:49:f6:bd:80:d2:a4:74:18:e7:c7:6e:8d:fc:5e: a5:2f:c8:de:0a:c3:ba:01:b9:ab:05:74:52:6f:e1: 7f:fd:7c:65:e2:5f:08:b4:24:00:f0:fa:52:58:32: 4a:c4:fb:42:e1:37:2c:61:e4:c5:dd:31:94:fa:fd: 57:3a:aa:32:e9:50:96:b8:36:6e:50:ce:7f:f1:e7: 64:aa:c8:29:de:2b:71:c9:0a:23:04:64:81:4f:ac: 8d:cc:71:4e:14:70:ec:cb:dc:92:ea:a1:3e:e9:ea: 68:b9:52:0f:5f:76:04:b3:fe:2e:b3:4c:76:d8:d3: 0b:27:33:9d:a8:5d:2d:c8:93:a4:fb:7e:6d:68:fd: dc:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 61:AE:3E:0C:E1:DB:E8:83:00:3B:19:A4:70:44:C8:B1:64:CF:08:E8 X509v3 Authority Key Identifier: keyid:83:60:88:51:20:23:28:DC:E5:FC:01:BF:9D:D2:92:52:05:30:D9:FE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/g2CIUSAjKNzl_AG_ndKSUgUw2f4.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1d/453542-08b2-4399-bc5c-c756ae01fa8a/1/Ya4-DOHb6IMAOxmkcETIsWTPCOg.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/1d/453542-08b2-4399-bc5c-c756ae01fa8a/1/g2CIUSAjKNzl_AG_ndKSUgUw2f4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 194.113.250.0/23 Signature Algorithm: sha256WithRSAEncryption 2a:2f:c8:91:99:15:3f:c4:2a:24:42:47:02:c7:f8:36:c5:fb: 13:fa:81:be:02:c8:bd:11:00:71:ca:89:b9:07:73:f1:a7:b8: 9b:03:90:0e:ea:8c:b4:c3:0b:51:80:e2:31:5b:df:58:9a:e4: 37:14:00:e9:d9:5f:c8:31:4d:fd:74:f1:84:f7:6f:e3:88:4d: d2:ff:15:03:7b:e3:e5:90:93:95:e1:5f:57:ef:95:9f:34:4f: ec:46:ca:fc:5b:1d:b5:52:0a:b8:a7:95:f2:35:49:c5:2b:7d: 08:89:4e:ba:8d:4d:5d:b5:67:71:c7:73:aa:f5:9f:3d:7f:bc: 7c:64:e6:cf:b5:d5:9a:94:e1:de:23:41:2c:ad:15:91:63:cd: 12:7a:e5:d8:b5:1f:7f:4a:4a:06:6c:c8:e8:51:4f:9a:ec:29: 97:6b:c6:7c:ce:9f:58:45:ed:4c:bd:84:da:d5:f6:65:f1:28: 5f:fb:0d:27:4e:1a:12:51:5f:92:2b:21:e2:7f:78:96:5c:2c: 6b:f8:8c:c4:49:f5:17:20:4d:c7:a5:5f:51:ff:b4:82:64:01: c3:d4:e5:d5:a6:61:80:c7:50:f7:a6:a5:6e:22:25:20:65:b3: 1c:92:6d:fb:e1:8b:eb:be:d9:7d:c5:16:3b:56:6d:41:2e:19: d6:71:4e:c0 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt/Ffm0aTE5iTtZV9ZiC1JHMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDgzNjA4ODUxMjAyMzI4ZGNlNWZjMDFiZjlkZDI5MjUyMDUz MGQ5ZmUwHhcNMjYwMTAyMTQyMTQ1WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg2MWFlM2UwY2UxZGJlODgzMDAzYjE5YTQ3MDQ0YzhiMTY0Y2YwOGU4MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA4j0wZ7J0+sRsL36kz7/lyj/nt7lW Q1NvnoiJoMYFvQ59dOnbwZlfGUwJ56TCpXIZHVltPuwnKREUf1vZK4/DtjHQ9hm8 870/HODnqkAaR+ZQE0eX+0Z7oalXBwVsGrPve82+D+e7H3ART7jgFv85HuS5T/fx uffBSfa9gNKkdBjnx26N/F6lL8jeCsO6AbmrBXRSb+F//Xxl4l8ItCQA8PpSWDJK xPtC4TcsYeTF3TGU+v1XOqoy6VCWuDZuUM5/8edkqsgp3itxyQojBGSBT6yNzHFO FHDsy9yS6qE+6epouVIPX3YEs/4us0x22NMLJzOdqF0tyJOk+35taP3cBQIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFGGuPgzh2+iDADsZpHBEyLFkzwjoMB8GA1UdIwQY MBaAFINgiFEgIyjc5fwBv53SklIFMNn+MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvZzJDSVVTQWpLTnpsX0FHX25kS1NVZ1V3MmY0LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xZC80NTM1NDItMDhiMi00Mzk5LWJjNWMt Yzc1NmFlMDFmYThhLzEvWWE0LURPSGI2SU1BT3hta2NFVElzV1RQQ09nLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xZC80NTM1NDItMDhiMi00Mzk5LWJjNWMtYzc1NmFlMDFmYThh LzEvZzJDSVVTQWpLTnpsX0FHX25kS1NVZ1V3MmY0LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBwnH6MA0G CSqGSIb3DQEBCwUAA4IBAQAqL8iRmRU/xCokQkcCx/g2xfsT+oG+Asi9EQBxyom5 B3Pxp7ibA5AO6oy0wwtRgOIxW99YmuQ3FADp2V/IMU39dPGE92/jiE3S/xUDe+Pl kJOV4V9X75WfNE/sRsr8Wx21Ugq4p5XyNUnFK30IiU66jU1dtWdxx3Oq9Z89f7x8 ZObPtdWalOHeI0EsrRWRY80SeuXYtR9/SkoGbMjoUU+a7CmXa8Z8zp9YRe1MvYTa 1fZl8Shf+w0nThoSUV+SKyHif3iWXCxr+IzESfUXIE3HpV9R/7SCZAHD1OXVpmGA x1D3pqVuIiUgZbMckm374Yvrvtl9xRY7Vm1BLhnWcU7A -----END CERTIFICATE-----Generated at Mon Feb 9 22:15:31 2026 by rpki-client