This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/32/fe131d-aa10-4c6b-8128-f55bc8af1506/1/yRUaitnmXUxZxGbULPkZbaJ4rlQ.roa File: yRUaitnmXUxZxGbULPkZbaJ4rlQ.roa (raw, json) Hash identifier: C+dkviU9NULiViFs9l9KMMoHApjfQiWaRWnrAEZ92P0= Subject key identifier: C9:15:1A:8A:D9:E6:5D:4C:59:C4:66:D4:2C:F9:19:6D:A2:78:AE:54 Certificate issuer: /CN=a8d52cc870606a3f3f32c0fff97cf6931fa65ca3 Certificate serial: 019B78A36F7960E4B8114EAF22021969B5F3 Authority key identifier: A8:D5:2C:C8:70:60:6A:3F:3F:32:C0:FF:F9:7C:F6:93:1F:A6:5C:A3 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qNUsyHBgaj8_MsD_-Xz2kx-mXKM.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/32/fe131d-aa10-4c6b-8128-f55bc8af1506/1/yRUaitnmXUxZxGbULPkZbaJ4rlQ.roa Signing time: Thu 01 Jan 2026 08:18:55 +0000 ROA not before: Thu 01 Jan 2026 08:18:55 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 57091 IP address blocks: 185.185.120.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/32/fe131d-aa10-4c6b-8128-f55bc8af1506/1/qNUsyHBgaj8_MsD_-Xz2kx-mXKM.crl rsync://rpki.ripe.net/repository/DEFAULT/32/fe131d-aa10-4c6b-8128-f55bc8af1506/1/qNUsyHBgaj8_MsD_-Xz2kx-mXKM.mft rsync://rpki.ripe.net/repository/DEFAULT/qNUsyHBgaj8_MsD_-Xz2kx-mXKM.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 17:00:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:78:a3:6f:79:60:e4:b8:11:4e:af:22:02:19:69:b5:f3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=a8d52cc870606a3f3f32c0fff97cf6931fa65ca3 Validity Not Before: Jan 1 08:18:55 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=c9151a8ad9e65d4c59c466d42cf9196da278ae54 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8c:bb:d2:c7:3e:4a:8b:ec:ef:66:ef:b0:fd:72: ad:09:07:71:b4:a9:85:80:b4:fe:a3:2c:cc:74:d1: 33:c1:cd:00:12:24:db:ec:9e:11:98:31:95:e8:c7: fe:f3:f9:1a:ca:20:f9:e5:33:f0:d9:1d:0a:29:03: 49:a7:7a:a5:72:b3:e8:6b:61:e2:a5:17:9c:39:e4: 3e:20:6b:d8:fc:2c:21:c7:12:c2:48:47:4c:c7:51: cb:37:b7:4a:46:39:36:11:d9:1a:68:24:3a:70:cd: 38:b2:41:c6:75:43:30:01:6b:94:7c:33:90:41:b6: db:f6:bc:21:e6:37:79:0e:b2:ec:01:43:86:f6:eb: ad:d4:d9:71:7f:0a:d8:36:04:72:c8:1c:35:72:21: 8f:4e:99:7d:0a:73:2d:4b:d6:23:f7:56:d1:9f:b3: 63:bc:19:91:d7:0e:b2:97:75:4e:c8:9a:62:12:ff: d1:5f:2d:c6:23:ff:0e:93:e3:3c:ec:66:54:44:32: 4e:08:0b:c8:c7:56:f7:c9:69:ef:58:c5:ef:93:8c: 3c:9f:cc:65:32:4a:5d:3c:e8:9f:cf:ea:67:ea:a0: 3a:f7:c0:1f:5a:17:ad:e6:c6:30:74:0c:48:a0:f2: a7:da:89:be:6f:8f:9a:32:df:63:a9:2c:ae:d1:4a: ed:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C9:15:1A:8A:D9:E6:5D:4C:59:C4:66:D4:2C:F9:19:6D:A2:78:AE:54 X509v3 Authority Key Identifier: keyid:A8:D5:2C:C8:70:60:6A:3F:3F:32:C0:FF:F9:7C:F6:93:1F:A6:5C:A3 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qNUsyHBgaj8_MsD_-Xz2kx-mXKM.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/32/fe131d-aa10-4c6b-8128-f55bc8af1506/1/yRUaitnmXUxZxGbULPkZbaJ4rlQ.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/32/fe131d-aa10-4c6b-8128-f55bc8af1506/1/qNUsyHBgaj8_MsD_-Xz2kx-mXKM.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.185.120.0/22 Signature Algorithm: sha256WithRSAEncryption 37:7c:e7:c6:52:36:91:80:04:ac:13:c6:8d:9d:ae:45:f8:bf: 21:ed:2b:d2:d8:7c:21:b8:a8:4d:63:c6:16:c2:fa:be:16:34: 7f:26:b4:aa:43:92:59:6b:d2:d4:6b:88:46:43:76:9e:99:7a: fc:b9:9b:cd:ea:cb:4f:49:72:21:5e:22:6d:c7:8f:39:2a:69: a2:52:6c:7e:9a:4a:21:ff:76:19:ff:fc:d5:54:ee:3b:ea:08: 02:76:7d:a8:9c:40:18:3e:83:43:a5:2d:95:16:20:56:71:b2: 26:de:68:b8:56:6d:35:55:4b:8d:3f:42:b5:21:27:c7:70:99: f2:c8:b7:06:28:04:b9:c0:42:da:31:26:97:4e:d4:df:c8:8a: bf:72:12:f2:b5:b9:a7:3d:f5:c2:3b:02:43:17:16:f0:80:ad: 89:0d:45:05:84:90:58:5e:96:c3:12:7e:00:b7:d0:33:03:60: 13:2d:f4:28:8a:cc:6b:1b:07:52:52:b2:bf:c4:a1:b0:55:9d: 2b:f2:33:dc:92:84:f1:1b:4b:54:79:ca:b9:61:eb:6b:3f:ef: 95:ea:b7:08:41:01:fd:22:d3:02:e8:82:b7:18:b8:8b:68:6b: 07:db:68:00:83:9b:e3:91:4f:ee:74:1e:94:39:5f:48:59:d2: 19:bd:db:2b -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt4o295YOS4EU6vIgIZabXzMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGE4ZDUyY2M4NzA2MDZhM2YzZjMyYzBmZmY5N2NmNjkzMWZh NjVjYTMwHhcNMjYwMTAxMDgxODU1WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhjOTE1MWE4YWQ5ZTY1ZDRjNTljNDY2ZDQyY2Y5MTk2ZGEyNzhhZTU0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAjLvSxz5Ki+zvZu+w/XKtCQdxtKmF gLT+oyzMdNEzwc0AEiTb7J4RmDGV6Mf+8/kayiD55TPw2R0KKQNJp3qlcrPoa2Hi pRecOeQ+IGvY/CwhxxLCSEdMx1HLN7dKRjk2EdkaaCQ6cM04skHGdUMwAWuUfDOQ Qbbb9rwh5jd5DrLsAUOG9uut1NlxfwrYNgRyyBw1ciGPTpl9CnMtS9Yj91bRn7Nj vBmR1w6yl3VOyJpiEv/RXy3GI/8Ok+M87GZURDJOCAvIx1b3yWnvWMXvk4w8n8xl MkpdPOifz+pn6qA698AfWhet5sYwdAxIoPKn2om+b4+aMt9jqSyu0UrtQwIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFMkVGorZ5l1MWcRm1Cz5GW2ieK5UMB8GA1UdIwQY MBaAFKjVLMhwYGo/PzLA//l89pMfplyjMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvcU5Vc3lIQmdhajhfTXNEXy1YejJreC1tWEtNLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zMi9mZTEzMWQtYWExMC00YzZiLTgxMjgt ZjU1YmM4YWYxNTA2LzEveVJVYWl0bm1YVXhaeEdiVUxQa1piYUo0cmxRLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zMi9mZTEzMWQtYWExMC00YzZiLTgxMjgtZjU1YmM4YWYxNTA2 LzEvcU5Vc3lIQmdhajhfTXNEXy1YejJreC1tWEtNLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCubl4MA0G CSqGSIb3DQEBCwUAA4IBAQA3fOfGUjaRgASsE8aNna5F+L8h7SvS2HwhuKhNY8YW wvq+FjR/JrSqQ5JZa9LUa4hGQ3aemXr8uZvN6stPSXIhXiJtx485KmmiUmx+mkoh /3YZ//zVVO476ggCdn2onEAYPoNDpS2VFiBWcbIm3mi4Vm01VUuNP0K1ISfHcJny yLcGKAS5wELaMSaXTtTfyIq/chLytbmnPfXCOwJDFxbwgK2JDUUFhJBYXpbDEn4A t9AzA2ATLfQoisxrGwdSUrK/xKGwVZ0r8jPckoTxG0tUecq5YetrP++V6rcIQQH9 ItMC6IK3GLiLaGsH22gAg5vjkU/udB6UOV9IWdIZvdsr -----END CERTIFICATE-----Generated at Tue Feb 10 01:28:23 2026 by rpki-client