This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/41/b416a5-ee4f-4cc7-b0c4-7475f70df9fa/1/Yo_sQDnlWVAHdBUjfYUlBGrEGAk.roa File: Yo_sQDnlWVAHdBUjfYUlBGrEGAk.roa (raw, json) Hash identifier: UtSlgr8dKlU2oiUU/YuYyiNrWIQBlqU7VjuzqeMr5iU= Subject key identifier: 62:8F:EC:40:39:E5:59:50:07:74:15:23:7D:85:25:04:6A:C4:18:09 Certificate issuer: /CN=ff1f615b91839f51ed3a5b53753b27b02c76da95 Certificate serial: 019B7A5ABA83D2448750353AA49832278DD4 Authority key identifier: FF:1F:61:5B:91:83:9F:51:ED:3A:5B:53:75:3B:27:B0:2C:76:DA:95 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_x9hW5GDn1HtOltTdTsnsCx22pU.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/41/b416a5-ee4f-4cc7-b0c4-7475f70df9fa/1/Yo_sQDnlWVAHdBUjfYUlBGrEGAk.roa Signing time: Thu 01 Jan 2026 16:18:44 +0000 ROA not before: Thu 01 Jan 2026 16:18:44 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 56567 IP address blocks: 185.114.148.0/22 maxlen: 22 185.220.192.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/41/b416a5-ee4f-4cc7-b0c4-7475f70df9fa/1/_x9hW5GDn1HtOltTdTsnsCx22pU.crl rsync://rpki.ripe.net/repository/DEFAULT/41/b416a5-ee4f-4cc7-b0c4-7475f70df9fa/1/_x9hW5GDn1HtOltTdTsnsCx22pU.mft rsync://rpki.ripe.net/repository/DEFAULT/_x9hW5GDn1HtOltTdTsnsCx22pU.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7a:5a:ba:83:d2:44:87:50:35:3a:a4:98:32:27:8d:d4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ff1f615b91839f51ed3a5b53753b27b02c76da95 Validity Not Before: Jan 1 16:18:44 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=628fec4039e55950077415237d8525046ac41809 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:15:a8:3e:c0:54:c3:72:ac:51:0a:e1:d1:94: 8f:38:b1:f5:77:b3:c9:48:e7:8e:ed:3e:ae:8f:8b: 7e:af:2a:e0:bf:a1:8f:c9:3e:73:f7:a9:d5:2d:09: 5e:99:a9:98:56:55:d0:d9:b9:3b:97:9b:ae:c1:3f: 6d:c7:2a:ff:44:ed:3a:f7:86:44:c4:da:5b:a9:ae: bb:98:c8:ec:0e:66:15:86:8b:bf:a6:41:ee:23:6d: 6c:a4:97:14:63:48:44:25:93:b2:97:b4:53:8f:68: 25:45:b3:d2:77:27:7e:e8:f5:1a:b5:51:4d:ac:a8: d2:30:94:2f:65:28:e1:d5:fa:fd:af:41:f6:92:a2: cd:37:50:4e:4a:38:ce:cd:32:7b:9c:6d:eb:5d:16: a3:4f:27:2d:1e:80:44:14:71:6d:9f:7c:34:90:a8: 8d:79:d6:80:c8:aa:00:04:19:60:a9:2f:c3:3c:58: 6d:fe:3c:81:e3:22:65:60:0d:2e:a1:c4:40:83:e3: c1:52:5e:e4:0d:85:eb:18:a2:61:2d:06:a0:b9:ad: 9c:f4:98:56:fc:1a:42:1f:ed:41:c7:2a:55:7b:a1: a0:26:c9:68:7f:96:4a:9e:16:2e:7c:3f:d3:49:9a: d8:1d:f3:83:c2:07:52:dd:13:13:31:c1:1f:2e:82: a7:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 62:8F:EC:40:39:E5:59:50:07:74:15:23:7D:85:25:04:6A:C4:18:09 X509v3 Authority Key Identifier: keyid:FF:1F:61:5B:91:83:9F:51:ED:3A:5B:53:75:3B:27:B0:2C:76:DA:95 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_x9hW5GDn1HtOltTdTsnsCx22pU.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/41/b416a5-ee4f-4cc7-b0c4-7475f70df9fa/1/Yo_sQDnlWVAHdBUjfYUlBGrEGAk.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/41/b416a5-ee4f-4cc7-b0c4-7475f70df9fa/1/_x9hW5GDn1HtOltTdTsnsCx22pU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.114.148.0/22 185.220.192.0/22 Signature Algorithm: sha256WithRSAEncryption 41:db:e2:08:da:0b:d4:e0:82:c0:b9:f4:a0:d8:e0:ca:71:e1: 44:b7:62:97:c8:c8:99:e2:5c:9c:4b:07:1b:3b:42:8d:ec:cc: 66:c9:86:92:f9:74:0d:23:9b:e6:3a:04:40:09:bf:1b:5d:1d: 9d:01:af:0b:12:9f:8d:36:29:7a:d1:c8:0b:62:35:16:b2:27: 17:6d:a7:6d:ca:6f:3f:09:d6:83:0e:6a:82:1e:5a:be:65:2b: af:c5:2b:72:58:7a:3c:3f:91:8b:85:7d:c0:d5:12:19:b2:44: de:d0:06:34:df:79:ea:86:e1:6a:c0:bb:a4:40:0b:bb:18:c3: a6:b0:c6:57:c6:cc:aa:53:4e:3f:13:71:e7:af:ea:2e:2b:c1: 39:27:6d:61:c2:dc:f9:70:30:f6:1e:d2:91:e4:e1:26:a5:dd: b0:42:60:ec:e4:df:5d:bb:bd:97:34:34:07:e0:99:78:42:ee: 86:85:28:e5:22:da:87:1f:75:e8:f4:7b:c4:b4:9a:b4:80:b8: 81:60:cc:03:a9:79:6c:27:95:5d:28:98:22:75:e1:8e:b6:45: 36:24:19:49:14:60:69:23:bd:bf:85:42:d5:3c:47:f0:b8:c7: 9e:c2:51:25:9f:61:37:f2:b1:6c:80:5b:05:d8:6e:de:6e:23: a9:32:a0:84 -----BEGIN CERTIFICATE----- MIIFAzCCA+ugAwIBAgISAZt6WrqD0kSHUDU6pJgyJ43UMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGZmMWY2MTViOTE4MzlmNTFlZDNhNWI1Mzc1M2IyN2IwMmM3 NmRhOTUwHhcNMjYwMTAxMTYxODQ0WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg2MjhmZWM0MDM5ZTU1OTUwMDc3NDE1MjM3ZDg1MjUwNDZhYzQxODA5MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0hWoPsBUw3KsUQrh0ZSPOLH1d7PJ SOeO7T6uj4t+ryrgv6GPyT5z96nVLQlemamYVlXQ2bk7l5uuwT9txyr/RO0694ZE xNpbqa67mMjsDmYVhou/pkHuI21spJcUY0hEJZOyl7RTj2glRbPSdyd+6PUatVFN rKjSMJQvZSjh1fr9r0H2kqLNN1BOSjjOzTJ7nG3rXRajTyctHoBEFHFtn3w0kKiN edaAyKoABBlgqS/DPFht/jyB4yJlYA0uocRAg+PBUl7kDYXrGKJhLQagua2c9JhW /BpCH+1BxypVe6GgJslof5ZKnhYufD/TSZrYHfODwgdS3RMTMcEfLoKnEwIDAQAB o4ICDzCCAgswHQYDVR0OBBYEFGKP7EA55VlQB3QVI32FJQRqxBgJMB8GA1UdIwQY MBaAFP8fYVuRg59R7TpbU3U7J7AsdtqVMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvX3g5aFc1R0RuMUh0T2x0VGRUc25zQ3gyMnBVLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80MS9iNDE2YTUtZWU0Zi00Y2M3LWIwYzQt NzQ3NWY3MGRmOWZhLzEvWW9fc1FEbmxXVkFIZEJVamZZVWxCR3JFR0FrLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC80MS9iNDE2YTUtZWU0Zi00Y2M3LWIwYzQtNzQ3NWY3MGRmOWZh LzEvX3g5aFc1R0RuMUh0T2x0VGRUc25zQ3gyMnBVLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQCuXKUAwQC udzAMA0GCSqGSIb3DQEBCwUAA4IBAQBB2+II2gvU4ILAufSg2ODKceFEt2KXyMiZ 4lycSwcbO0KN7MxmyYaS+XQNI5vmOgRACb8bXR2dAa8LEp+NNil60cgLYjUWsicX badtym8/CdaDDmqCHlq+ZSuvxStyWHo8P5GLhX3A1RIZskTe0AY033nqhuFqwLuk QAu7GMOmsMZXxsyqU04/E3Hnr+ouK8E5J21hwtz5cDD2HtKR5OEmpd2wQmDs5N9d u72XNDQH4Jl4Qu6GhSjlItqHH3Xo9HvEtJq0gLiBYMwDqXlsJ5VdKJgideGOtkU2 JBlJFGBpI72/hULVPEfwuMeewlEln2E38rFsgFsF2G7ebiOpMqCE -----END CERTIFICATE-----Generated at Mon Feb 9 22:15:01 2026 by rpki-client