This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/33/518fab-7606-4832-aa66-5a8c67842389/1/Yx7l960TQn9HM_7QR6gs0XY-qcA.roa File: Yx7l960TQn9HM_7QR6gs0XY-qcA.roa (raw, json) Hash identifier: O+2F1pg3A5EVSk1DJbaRJDwXaNusK4Cx5sLgaLCJXdM= Subject key identifier: 63:1E:E5:F7:AD:13:42:7F:47:33:FE:D0:47:A8:2C:D1:76:3E:A9:C0 Certificate issuer: /CN=007e6b5aa437d3693151502a211496e37d4ae2c5 Certificate serial: 019B7B36153F75FE6BB75F2A84D74EE4D8B0 Authority key identifier: 00:7E:6B:5A:A4:37:D3:69:31:51:50:2A:21:14:96:E3:7D:4A:E2:C5 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AH5rWqQ302kxUVAqIRSW431K4sU.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/33/518fab-7606-4832-aa66-5a8c67842389/1/Yx7l960TQn9HM_7QR6gs0XY-qcA.roa Signing time: Thu 01 Jan 2026 20:18:20 +0000 ROA not before: Thu 01 Jan 2026 20:18:20 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 19905 IP address blocks: 89.106.184.0/21 maxlen: 24 160.92.0.0/16 maxlen: 24 192.136.30.0/24 maxlen: 24 193.16.186.0/23 maxlen: 24 193.16.188.0/22 maxlen: 24 193.56.46.0/24 maxlen: 24 193.58.80.0/21 maxlen: 24 193.201.76.0/23 maxlen: 24 2a01:20::/48 maxlen: 48 2a01:20:4::/48 maxlen: 48 2a01:20:6::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/33/518fab-7606-4832-aa66-5a8c67842389/1/AH5rWqQ302kxUVAqIRSW431K4sU.crl rsync://rpki.ripe.net/repository/DEFAULT/33/518fab-7606-4832-aa66-5a8c67842389/1/AH5rWqQ302kxUVAqIRSW431K4sU.mft rsync://rpki.ripe.net/repository/DEFAULT/AH5rWqQ302kxUVAqIRSW431K4sU.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 20 Jan 2026 18:00:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7b:36:15:3f:75:fe:6b:b7:5f:2a:84:d7:4e:e4:d8:b0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=007e6b5aa437d3693151502a211496e37d4ae2c5 Validity Not Before: Jan 1 20:18:20 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=631ee5f7ad13427f4733fed047a82cd1763ea9c0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:95:e5:41:d9:c7:b4:18:81:be:a5:24:77:f5:70: 52:f5:77:5e:2e:58:90:32:98:79:70:df:12:78:f4: c7:a0:88:78:94:ae:ed:76:f8:60:f0:58:ae:da:1b: ef:2f:64:23:cf:da:a6:fb:8a:50:82:d0:60:11:ca: bf:e7:52:bf:b6:ba:e7:94:0e:91:9c:dc:2c:14:f7: 7a:87:42:1a:f1:03:2c:a0:bc:b2:61:ec:f5:25:79: 4d:44:5f:b7:84:ac:ac:a6:d8:96:43:63:12:8f:63: eb:a0:4e:7a:5d:bb:b9:dc:84:1f:65:25:6a:2d:47: ce:37:ef:48:c9:50:6d:f2:c6:c1:94:60:f9:d0:73: 82:6c:b8:03:74:bf:0f:d4:aa:64:b8:33:39:52:a3: 85:01:18:60:a9:7d:43:d5:be:05:0a:96:90:e7:db: 1a:b8:f1:bc:c0:78:f7:ca:57:6b:23:7b:e0:2f:9f: a1:24:d2:ab:c0:33:6e:97:ec:15:83:90:0f:86:20: 90:72:7b:77:ea:c2:46:72:bc:53:7e:14:23:1c:e3: ee:62:7b:66:53:19:08:1f:62:3e:24:72:f9:ce:30: f3:29:95:41:a0:02:a6:95:c2:01:29:69:c6:a1:e1: 2d:93:66:d8:34:f2:d6:70:07:1a:da:04:33:94:af: 83:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 63:1E:E5:F7:AD:13:42:7F:47:33:FE:D0:47:A8:2C:D1:76:3E:A9:C0 X509v3 Authority Key Identifier: keyid:00:7E:6B:5A:A4:37:D3:69:31:51:50:2A:21:14:96:E3:7D:4A:E2:C5 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AH5rWqQ302kxUVAqIRSW431K4sU.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/33/518fab-7606-4832-aa66-5a8c67842389/1/Yx7l960TQn9HM_7QR6gs0XY-qcA.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/33/518fab-7606-4832-aa66-5a8c67842389/1/AH5rWqQ302kxUVAqIRSW431K4sU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 89.106.184.0/21 160.92.0.0/16 192.136.30.0/24 193.16.186.0-193.16.191.255 193.56.46.0/24 193.58.80.0/21 193.201.76.0/23 IPv6: 2a01:20::/48 2a01:20:4::/48 2a01:20:6::/48 Signature Algorithm: sha256WithRSAEncryption 03:7f:fc:1d:8e:63:7e:5f:84:63:93:6d:57:fc:2d:3d:a9:c6: 74:24:fa:1d:38:65:81:46:c2:b1:c5:31:ca:a6:ae:2a:0b:7f: 30:72:92:d8:75:97:b6:fb:9b:1a:75:4c:0e:14:b2:8b:1a:e0: 54:bb:ee:2b:88:fb:03:98:65:49:46:f1:12:c4:95:e6:dc:2e: 64:2a:0b:3d:a4:85:03:4f:03:b0:ae:b6:82:60:9d:e3:50:97: 3a:c3:e4:64:f6:33:9b:78:0e:aa:f4:4d:a5:f9:2e:be:9c:69: 39:ff:14:62:c0:e8:a7:1d:45:25:fc:22:33:72:ac:16:0d:02: ce:64:89:b6:14:95:48:6c:f4:c6:a6:fd:6a:2f:1f:39:50:d3: a4:ea:8b:05:7d:1f:8a:fa:47:0d:08:b1:4d:8a:f3:18:ef:46: a6:0f:d8:eb:04:c1:af:fd:05:5d:6f:d0:5e:d0:c6:43:71:c2: 38:90:5e:52:f7:25:fd:56:a5:47:0c:33:7c:99:51:92:0e:5a: 87:78:68:a4:8e:01:17:36:b8:16:4d:d2:02:b8:b1:e7:c1:58: 55:b0:fc:95:bf:ff:04:3e:3b:aa:7a:c1:91:d9:7d:cc:24:36: a7:1d:2b:75:0f:48:26:b2:36:50:b3:4b:19:af:b6:9d:4a:40: e4:f0:80:7f -----BEGIN CERTIFICATE----- MIIFSzCCBDOgAwIBAgISAZt7NhU/df5rt18qhNdO5NiwMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDAwN2U2YjVhYTQzN2QzNjkzMTUxNTAyYTIxMTQ5NmUzN2Q0 YWUyYzUwHhcNMjYwMTAxMjAxODIwWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg2MzFlZTVmN2FkMTM0MjdmNDczM2ZlZDA0N2E4MmNkMTc2M2VhOWMwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAleVB2ce0GIG+pSR39XBS9XdeLliQ Mph5cN8SePTHoIh4lK7tdvhg8Fiu2hvvL2Qjz9qm+4pQgtBgEcq/51K/trrnlA6R nNwsFPd6h0Ia8QMsoLyyYez1JXlNRF+3hKysptiWQ2MSj2ProE56Xbu53IQfZSVq LUfON+9IyVBt8sbBlGD50HOCbLgDdL8P1KpkuDM5UqOFARhgqX1D1b4FCpaQ59sa uPG8wHj3yldrI3vgL5+hJNKrwDNul+wVg5APhiCQcnt36sJGcrxTfhQjHOPuYntm UxkIH2I+JHL5zjDzKZVBoAKmlcIBKWnGoeEtk2bYNPLWcAca2gQzlK+DqQIDAQAB o4ICVzCCAlMwHQYDVR0OBBYEFGMe5fetE0J/RzP+0EeoLNF2PqnAMB8GA1UdIwQY MBaAFAB+a1qkN9NpMVFQKiEUluN9SuLFMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvQUg1cldxUTMwMmt4VVZBcUlSU1c0MzFLNHNVLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zMy81MThmYWItNzYwNi00ODMyLWFhNjYt NWE4YzY3ODQyMzg5LzEvWXg3bDk2MFRRbjlITV83UVI2Z3MwWFktcWNBLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zMy81MThmYWItNzYwNi00ODMyLWFhNjYtNWE4YzY3ODQyMzg5 LzEvQUg1cldxUTMwMmt4VVZBcUlSU1c0MzFLNHNVLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMG0GCCsGAQUFBwEHAQH/BF4wXDA3BAIAATAxAwQDWWq4AwMA oFwDBADAiB4wDAMEAcEQugMEBsEQgAMEAME4LgMEA8E6UAMEAcHJTDAhBAIAAjAb AwcAKgEAIAAAAwcAKgEAIAAEAwcAKgEAIAAGMA0GCSqGSIb3DQEBCwUAA4IBAQAD f/wdjmN+X4Rjk21X/C09qcZ0JPodOGWBRsKxxTHKpq4qC38wcpLYdZe2+5sadUwO FLKLGuBUu+4riPsDmGVJRvESxJXm3C5kKgs9pIUDTwOwrraCYJ3jUJc6w+Rk9jOb eA6q9E2l+S6+nGk5/xRiwOinHUUl/CIzcqwWDQLOZIm2FJVIbPTGpv1qLx85UNOk 6osFfR+K+kcNCLFNivMY70amD9jrBMGv/QVdb9Be0MZDccI4kF5S9yX9VqVHDDN8 mVGSDlqHeGikjgEXNrgWTdICuLHnwVhVsPyVv/8EPjuqesGR2X3MJDanHSt1D0gm sjZQs0sZr7adSkDk8IB/ -----END CERTIFICATE-----Generated at Tue Jan 20 01:22:21 2026 by rpki-client