This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2b/81fd1a-47a7-45d8-be74-3ac9e56c3089/1/YG1SYVMf9zttl-j4DOz_JSKK2hA.roa File: YG1SYVMf9zttl-j4DOz_JSKK2hA.roa (raw, json) Hash identifier: UAwnjI7+wWIc+QmqWE5SlGIBq3eJYExDSWQK7gu+/9E= Subject key identifier: 60:6D:52:61:53:1F:F7:3B:6D:97:E8:F8:0C:EC:FF:25:22:8A:DA:10 Certificate issuer: /CN=8bab30683859ec7e0206fe9265363e8e3971a9a8 Certificate serial: 019B7F8532E48087A1F0BCB64E671F7C2D62 Authority key identifier: 8B:AB:30:68:38:59:EC:7E:02:06:FE:92:65:36:3E:8E:39:71:A9:A8 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i6swaDhZ7H4CBv6SZTY-jjlxqag.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2b/81fd1a-47a7-45d8-be74-3ac9e56c3089/1/YG1SYVMf9zttl-j4DOz_JSKK2hA.roa Signing time: Fri 02 Jan 2026 16:23:14 +0000 ROA not before: Fri 02 Jan 2026 16:23:14 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 7922 IP address blocks: 45.150.168.0/22 maxlen: 22 45.151.196.0/22 maxlen: 22 193.31.104.0/22 maxlen: 22 195.138.109.0/24 maxlen: 24 195.138.110.0/24 maxlen: 24 195.138.113.0/24 maxlen: 24 195.138.115.0/24 maxlen: 24 195.138.124.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2b/81fd1a-47a7-45d8-be74-3ac9e56c3089/1/i6swaDhZ7H4CBv6SZTY-jjlxqag.crl rsync://rpki.ripe.net/repository/DEFAULT/2b/81fd1a-47a7-45d8-be74-3ac9e56c3089/1/i6swaDhZ7H4CBv6SZTY-jjlxqag.mft rsync://rpki.ripe.net/repository/DEFAULT/i6swaDhZ7H4CBv6SZTY-jjlxqag.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 10 Jan 2026 03:00:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7f:85:32:e4:80:87:a1:f0:bc:b6:4e:67:1f:7c:2d:62 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8bab30683859ec7e0206fe9265363e8e3971a9a8 Validity Not Before: Jan 2 16:23:14 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=606d5261531ff73b6d97e8f80cecff25228ada10 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:5f:f2:63:87:c1:a5:34:f4:36:d4:a7:b0:49: d7:04:49:da:36:c2:ae:19:bc:f3:c6:96:59:0f:a5: 52:0b:57:20:51:f3:bf:80:2c:fb:45:e7:50:40:3e: fc:2d:e1:80:9b:db:bc:7e:37:74:91:ed:bd:d1:83: 8c:4a:ac:15:d7:1f:90:3f:40:27:c2:0a:e5:46:7a: 9e:b2:3d:f8:e3:30:cf:42:d8:0b:c9:47:f1:68:87: 9a:24:2a:3a:67:65:63:03:7a:58:9a:e2:26:57:bd: 4e:ae:b0:9d:86:d0:d6:51:b2:0a:eb:84:d0:a7:60: ab:31:e7:60:1d:f5:b9:d4:56:a3:71:6c:c1:31:e6: 16:e2:5f:ee:9f:0b:90:c2:a9:7e:0e:eb:14:60:cd: 9d:a9:34:f8:e4:dd:4a:f9:51:1b:64:4c:c8:4f:49: 8d:02:f0:85:67:24:92:a2:49:0e:58:84:aa:fd:58: d8:e0:58:bc:55:53:14:1c:fa:61:5b:0a:42:f0:ed: 27:1b:23:32:69:da:e3:67:86:dc:ff:10:11:0d:ae: 23:aa:86:46:20:07:fd:92:a1:d3:09:31:4a:7d:4b: 79:f0:29:9b:cb:e3:8b:8a:72:a4:ce:f8:a2:71:07: f2:d2:91:f8:a6:45:cb:0f:44:6b:00:17:d5:e2:bf: 2f:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 60:6D:52:61:53:1F:F7:3B:6D:97:E8:F8:0C:EC:FF:25:22:8A:DA:10 X509v3 Authority Key Identifier: keyid:8B:AB:30:68:38:59:EC:7E:02:06:FE:92:65:36:3E:8E:39:71:A9:A8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i6swaDhZ7H4CBv6SZTY-jjlxqag.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/81fd1a-47a7-45d8-be74-3ac9e56c3089/1/YG1SYVMf9zttl-j4DOz_JSKK2hA.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/81fd1a-47a7-45d8-be74-3ac9e56c3089/1/i6swaDhZ7H4CBv6SZTY-jjlxqag.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 45.150.168.0/22 45.151.196.0/22 193.31.104.0/22 195.138.109.0-195.138.110.255 195.138.113.0/24 195.138.115.0/24 195.138.124.0/22 Signature Algorithm: sha256WithRSAEncryption 8c:cf:03:18:5a:b5:23:c4:10:26:0a:b2:a9:1e:0d:5c:13:10: 6e:be:f3:c3:08:33:ed:f0:0e:99:8f:cb:a4:f1:73:ec:28:df: 4a:45:7c:cd:a9:66:de:29:ce:f2:f0:75:ec:36:a8:7b:a7:d8: ec:21:52:06:87:9f:2c:41:bc:df:c5:eb:fc:b6:0f:70:d3:75: 7e:88:70:70:ec:00:e3:51:44:e9:49:1c:86:b9:40:98:0d:06: 10:7a:35:92:91:a5:f8:4f:b1:f6:51:11:50:21:02:fe:02:69: 41:17:ab:d5:65:f0:2b:6c:6e:7e:91:4d:d1:9f:c5:f2:7d:09: e9:5a:29:a8:95:35:11:c4:8c:fd:a9:cf:b6:00:7d:ec:ba:97: d3:81:71:29:91:31:39:cf:6d:fb:ff:76:9c:36:e3:89:58:24: a5:e2:22:66:af:3b:bd:7f:5b:d8:77:3c:ee:21:c7:ed:75:fd: 4f:f5:05:68:74:c6:b9:29:27:11:ad:c1:e5:b8:35:d9:be:68: 45:f6:6e:14:77:fc:ae:05:61:18:5f:ad:fd:f9:a5:41:95:3d: a8:b8:79:0c:69:63:25:21:e7:a1:b5:cd:b6:e7:14:5c:20:69: 5d:fa:75:58:81:70:11:61:7e:60:80:9b:78:f4:0f:6b:c2:ae: d3:72:44:05 -----BEGIN CERTIFICATE----- MIIFKTCCBBGgAwIBAgISAZt/hTLkgIeh8Ly2TmcffC1iMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDhiYWIzMDY4Mzg1OWVjN2UwMjA2ZmU5MjY1MzYzZThlMzk3 MWE5YTgwHhcNMjYwMTAyMTYyMzE0WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg2MDZkNTI2MTUzMWZmNzNiNmQ5N2U4ZjgwY2VjZmYyNTIyOGFkYTEwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzF/yY4fBpTT0NtSnsEnXBEnaNsKu GbzzxpZZD6VSC1cgUfO/gCz7RedQQD78LeGAm9u8fjd0ke290YOMSqwV1x+QP0An wgrlRnqesj344zDPQtgLyUfxaIeaJCo6Z2VjA3pYmuImV71OrrCdhtDWUbIK64TQ p2CrMedgHfW51FajcWzBMeYW4l/unwuQwql+DusUYM2dqTT45N1K+VEbZEzIT0mN AvCFZySSokkOWISq/VjY4Fi8VVMUHPphWwpC8O0nGyMyadrjZ4bc/xARDa4jqoZG IAf9kqHTCTFKfUt58Cmby+OLinKkzviicQfy0pH4pkXLD0RrABfV4r8vgQIDAQAB o4ICNTCCAjEwHQYDVR0OBBYEFGBtUmFTH/c7bZfo+Azs/yUiitoQMB8GA1UdIwQY MBaAFIurMGg4Wex+Agb+kmU2Po45camoMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvaTZzd2FEaFo3SDRDQnY2U1pUWS1qamx4cWFnLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yYi84MWZkMWEtNDdhNy00NWQ4LWJlNzQt M2FjOWU1NmMzMDg5LzEvWUcxU1lWTWY5enR0bC1qNERPel9KU0tLMmhBLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yYi84MWZkMWEtNDdhNy00NWQ4LWJlNzQtM2FjOWU1NmMzMDg5 LzEvaTZzd2FEaFo3SDRDQnY2U1pUWS1qamx4cWFnLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMEsGCCsGAQUFBwEHAQH/BDwwOjA4BAIAATAyAwQCLZaoAwQC LZfEAwQCwR9oMAwDBADDim0DBADDim4DBADDinEDBADDinMDBALDinwwDQYJKoZI hvcNAQELBQADggEBAIzPAxhatSPEECYKsqkeDVwTEG6+88MIM+3wDpmPy6Txc+wo 30pFfM2pZt4pzvLwdew2qHun2OwhUgaHnyxBvN/F6/y2D3DTdX6IcHDsAONRROlJ HIa5QJgNBhB6NZKRpfhPsfZREVAhAv4CaUEXq9Vl8Ctsbn6RTdGfxfJ9CelaKaiV NRHEjP2pz7YAfey6l9OBcSmRMTnPbfv/dpw244lYJKXiImavO71/W9h3PO4hx+11 /U/1BWh0xrkpJxGtweW4Ndm+aEX2bhR3/K4FYRhfrf35pUGVPai4eQxpYyUh56G1 zbbnFFwgaV36dViBcBFhfmCAm3j0D2vCrtNyRAU= -----END CERTIFICATE-----Generated at Fri Jan 9 12:06:15 2026 by rpki-client