This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/34/069008-2e4f-4323-b6a2-e8d6c2f071df/1/YdLZYGNBx5ifVhvHrE-Wi4s5Pq8.roa File: YdLZYGNBx5ifVhvHrE-Wi4s5Pq8.roa (raw, json) Hash identifier: UhcnEKVQY6GztLAChvJDoRhnDCVtXiX/WS/jkKhjOg0= Subject key identifier: 61:D2:D9:60:63:41:C7:98:9F:56:1B:C7:AC:4F:96:8B:8B:39:3E:AF Certificate issuer: /CN=9fa7859dc39d4736142cf1e229c8ac4be623b903 Certificate serial: 019B7CED15961D3D10DD273C93E4D16ADD26 Authority key identifier: 9F:A7:85:9D:C3:9D:47:36:14:2C:F1:E2:29:C8:AC:4B:E6:23:B9:03 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/n6eFncOdRzYULPHiKcisS-YjuQM.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/34/069008-2e4f-4323-b6a2-e8d6c2f071df/1/YdLZYGNBx5ifVhvHrE-Wi4s5Pq8.roa Signing time: Fri 02 Jan 2026 04:17:50 +0000 ROA not before: Fri 02 Jan 2026 04:17:50 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 0 IP address blocks: 185.1.107.0/24 maxlen: 24 2001:7f8:c1::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/34/069008-2e4f-4323-b6a2-e8d6c2f071df/1/n6eFncOdRzYULPHiKcisS-YjuQM.crl rsync://rpki.ripe.net/repository/DEFAULT/34/069008-2e4f-4323-b6a2-e8d6c2f071df/1/n6eFncOdRzYULPHiKcisS-YjuQM.mft rsync://rpki.ripe.net/repository/DEFAULT/n6eFncOdRzYULPHiKcisS-YjuQM.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 08 Jan 2026 15:30:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7c:ed:15:96:1d:3d:10:dd:27:3c:93:e4:d1:6a:dd:26 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9fa7859dc39d4736142cf1e229c8ac4be623b903 Validity Not Before: Jan 2 04:17:50 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=61d2d9606341c7989f561bc7ac4f968b8b393eaf Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ed:ae:4b:04:41:48:57:2c:9d:0c:27:08:06:7d: 5a:6c:9f:f6:5a:88:25:6f:bd:93:f7:32:b9:5f:b7: b3:71:8e:e4:ee:00:57:53:ff:21:a0:26:8a:3d:06: 01:1d:97:fb:60:c8:0c:5a:ea:f8:8b:0e:fc:af:e9: 62:dc:92:0c:43:50:b0:1f:94:02:ef:11:df:09:b2: 84:95:7f:c3:53:7d:c5:a4:9f:61:fc:08:7f:85:9e: c2:ce:d7:24:53:6e:28:38:6d:af:ce:03:ba:de:a1: ff:1a:ce:7f:5d:2b:3e:00:82:a6:f1:80:22:13:2f: 9d:24:ef:1a:fa:fe:45:62:1b:f2:48:fd:2b:77:63: c9:7a:aa:1c:95:e9:56:ba:5f:d2:02:61:fb:3e:24: 51:1e:c6:bc:39:57:a5:40:04:50:09:0d:50:4d:f9: 0a:f9:dd:03:c0:19:32:5b:e1:15:ed:e4:55:61:28: 12:55:66:4f:3b:a8:79:a5:08:e3:e0:f2:b5:00:df: 8a:41:6b:a1:4c:da:ea:29:74:29:5c:39:60:87:3e: 2e:b3:9b:cf:b9:9a:8e:41:d8:2f:3c:58:a0:66:06: b3:87:90:49:a7:b3:86:6a:b3:0b:ff:f9:46:11:a2: f0:55:64:53:f3:7d:e2:a7:be:ab:27:7f:e8:09:40: c8:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 61:D2:D9:60:63:41:C7:98:9F:56:1B:C7:AC:4F:96:8B:8B:39:3E:AF X509v3 Authority Key Identifier: keyid:9F:A7:85:9D:C3:9D:47:36:14:2C:F1:E2:29:C8:AC:4B:E6:23:B9:03 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/n6eFncOdRzYULPHiKcisS-YjuQM.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/34/069008-2e4f-4323-b6a2-e8d6c2f071df/1/YdLZYGNBx5ifVhvHrE-Wi4s5Pq8.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/34/069008-2e4f-4323-b6a2-e8d6c2f071df/1/n6eFncOdRzYULPHiKcisS-YjuQM.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.1.107.0/24 IPv6: 2001:7f8:c1::/48 Signature Algorithm: sha256WithRSAEncryption 8f:b6:cb:aa:6e:aa:64:f0:5e:87:7c:2b:8f:60:0f:1a:2a:61: eb:db:51:89:1b:a8:35:a3:af:41:ab:2a:4d:90:89:d2:92:90: cf:0c:3c:e3:97:38:58:63:54:76:91:79:a9:04:a3:56:20:b7: ed:30:c8:e8:6c:5d:ca:71:d4:49:17:4c:72:22:7a:ae:ca:28: 25:2f:47:c0:05:55:58:a9:42:a0:3c:76:e6:fa:54:96:c0:d6: af:57:3c:3d:ac:7a:a6:4b:25:8e:42:03:43:a5:33:cc:11:52: 73:3e:1f:10:ba:8f:d4:78:8e:ce:89:76:06:f0:6e:7b:ba:9f: 6d:53:0b:13:49:68:be:65:ac:6f:47:c9:4a:33:31:86:43:9d: b0:d6:eb:3f:14:9e:c9:c8:60:1c:63:d1:d1:00:c7:b8:73:ea: ce:dc:af:2c:88:a0:ee:4c:29:16:eb:74:66:bb:de:98:3c:7b: 0f:98:c6:5b:89:6b:5f:6d:ae:27:00:e4:5d:b1:51:25:44:03: e5:67:50:4e:fe:7a:c6:5c:af:11:ae:22:f4:f8:5e:92:b7:c5: 8f:42:be:72:22:b9:90:e5:63:db:f2:1d:86:bf:b1:ee:bf:5c: f0:aa:52:72:3b:36:91:ac:4e:d3:7b:fc:00:5b:25:ab:4a:d4: 34:7d:7b:e0 -----BEGIN CERTIFICATE----- MIIFDjCCA/agAwIBAgISAZt87RWWHT0Q3Sc8k+TRat0mMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDlmYTc4NTlkYzM5ZDQ3MzYxNDJjZjFlMjI5YzhhYzRiZTYy M2I5MDMwHhcNMjYwMTAyMDQxNzUwWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg2MWQyZDk2MDYzNDFjNzk4OWY1NjFiYzdhYzRmOTY4YjhiMzkzZWFmMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA7a5LBEFIVyydDCcIBn1abJ/2Wogl b72T9zK5X7ezcY7k7gBXU/8hoCaKPQYBHZf7YMgMWur4iw78r+li3JIMQ1CwH5QC 7xHfCbKElX/DU33FpJ9h/Ah/hZ7CztckU24oOG2vzgO63qH/Gs5/XSs+AIKm8YAi Ey+dJO8a+v5FYhvySP0rd2PJeqoclelWul/SAmH7PiRRHsa8OVelQARQCQ1QTfkK +d0DwBkyW+EV7eRVYSgSVWZPO6h5pQjj4PK1AN+KQWuhTNrqKXQpXDlghz4us5vP uZqOQdgvPFigZgazh5BJp7OGarML//lGEaLwVWRT833ip76rJ3/oCUDIFQIDAQAB o4ICGjCCAhYwHQYDVR0OBBYEFGHS2WBjQceYn1Ybx6xPlouLOT6vMB8GA1UdIwQY MBaAFJ+nhZ3DnUc2FCzx4inIrEvmI7kDMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvbjZlRm5jT2RSellVTFBIaUtjaXNTLVlqdVFNLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zNC8wNjkwMDgtMmU0Zi00MzIzLWI2YTIt ZThkNmMyZjA3MWRmLzEvWWRMWllHTkJ4NWlmVmh2SHJFLVdpNHM1UHE4LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zNC8wNjkwMDgtMmU0Zi00MzIzLWI2YTItZThkNmMyZjA3MWRm LzEvbjZlRm5jT2RSellVTFBIaUtjaXNTLVlqdVFNLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMDAGCCsGAQUFBwEHAQH/BCEwHzAMBAIAATAGAwQAuQFrMA8E AgACMAkDBwAgAQf4AMEwDQYJKoZIhvcNAQELBQADggEBAI+2y6puqmTwXod8K49g DxoqYevbUYkbqDWjr0GrKk2QidKSkM8MPOOXOFhjVHaReakEo1Ygt+0wyOhsXcpx 1EkXTHIieq7KKCUvR8AFVVipQqA8dub6VJbA1q9XPD2seqZLJY5CA0OlM8wRUnM+ HxC6j9R4js6Jdgbwbnu6n21TCxNJaL5lrG9HyUozMYZDnbDW6z8UnsnIYBxj0dEA x7hz6s7cryyIoO5MKRbrdGa73pg8ew+YxluJa19tricA5F2xUSVEA+VnUE7+esZc rxGuIvT4XpK3xY9CvnIiuZDlY9vyHYa/se6/XPCqUnI7NpGsTtN7/ABbJatK1DR9 e+A= -----END CERTIFICATE-----Generated at Wed Jan 7 23:47:40 2026 by rpki-client