This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/46/04975c-ef49-4754-96f9-9812d7cfd694/1/yv-OW_N6Uq-jDQ3EdCfxIbULs5c.roa File: yv-OW_N6Uq-jDQ3EdCfxIbULs5c.roa (raw, json) Hash identifier: Qu8VtwIrzD6nguGNzZTnf4XvAzHQDw9auayY6SSJ8gg= Subject key identifier: CA:FF:8E:5B:F3:7A:52:AF:A3:0D:0D:C4:74:27:F1:21:B5:0B:B3:97 Certificate issuer: /CN=3b4df9a5460cbd450b4e75380393a821e85c74d8 Certificate serial: 019B7D5CF1AD0436CB94EB1218638275BE54 Authority key identifier: 3B:4D:F9:A5:46:0C:BD:45:0B:4E:75:38:03:93:A8:21:E8:5C:74:D8 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/O035pUYMvUULTnU4A5OoIehcdNg.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/46/04975c-ef49-4754-96f9-9812d7cfd694/1/yv-OW_N6Uq-jDQ3EdCfxIbULs5c.roa Signing time: Fri 02 Jan 2026 06:20:01 +0000 ROA not before: Fri 02 Jan 2026 06:20:01 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 59715 IP address blocks: 185.5.200.0/22 maxlen: 24 2a02:cdc0::/29 maxlen: 52 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/46/04975c-ef49-4754-96f9-9812d7cfd694/1/O035pUYMvUULTnU4A5OoIehcdNg.crl rsync://rpki.ripe.net/repository/DEFAULT/46/04975c-ef49-4754-96f9-9812d7cfd694/1/O035pUYMvUULTnU4A5OoIehcdNg.mft rsync://rpki.ripe.net/repository/DEFAULT/O035pUYMvUULTnU4A5OoIehcdNg.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 02 Feb 2026 21:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7d:5c:f1:ad:04:36:cb:94:eb:12:18:63:82:75:be:54 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3b4df9a5460cbd450b4e75380393a821e85c74d8 Validity Not Before: Jan 2 06:20:01 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=caff8e5bf37a52afa30d0dc47427f121b50bb397 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:08:6f:70:09:89:49:f3:04:87:56:21:4f:fe: 0d:97:a3:51:71:48:bd:0f:8b:c4:23:04:b1:50:c2: e6:46:0b:8c:7c:c3:fa:f1:b5:4e:18:99:6b:dd:f1: fb:4b:a2:fe:3b:c4:ea:a8:d2:57:59:29:56:84:23: 67:3b:82:7b:e7:d4:72:3c:6f:05:b0:88:20:24:5b: 74:88:78:b2:54:f6:36:55:2f:24:f3:ad:68:0d:2a: 58:e9:0f:f8:bd:e1:f1:fa:e0:fd:21:c5:34:b0:34: 60:cc:d1:ed:cd:f3:aa:38:da:50:82:34:b6:0b:1a: 00:75:87:d7:1e:e0:1b:e9:81:f7:6f:a4:7f:94:9e: bb:1c:da:51:3e:cf:bf:19:a3:3d:dd:d2:6a:78:80: e1:3f:f8:f1:b9:a7:1e:07:2a:ea:69:f2:83:cb:b8: a5:ac:57:ba:dc:6e:66:94:f0:35:20:ff:55:73:d8: fe:5d:c7:06:f7:3f:44:73:8d:b3:9d:32:e0:25:66: 67:e7:9d:be:14:24:ba:d3:e7:a7:89:4f:59:6b:12: 3e:ba:bb:1c:dd:ed:54:08:60:4f:b7:a5:0b:77:4d: 10:ab:eb:b3:3e:c2:59:9f:78:63:1f:e7:09:ad:d1: 87:7d:65:bd:7d:8b:4a:48:f4:69:52:51:db:8d:bb: 58:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CA:FF:8E:5B:F3:7A:52:AF:A3:0D:0D:C4:74:27:F1:21:B5:0B:B3:97 X509v3 Authority Key Identifier: keyid:3B:4D:F9:A5:46:0C:BD:45:0B:4E:75:38:03:93:A8:21:E8:5C:74:D8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/O035pUYMvUULTnU4A5OoIehcdNg.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/46/04975c-ef49-4754-96f9-9812d7cfd694/1/yv-OW_N6Uq-jDQ3EdCfxIbULs5c.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/46/04975c-ef49-4754-96f9-9812d7cfd694/1/O035pUYMvUULTnU4A5OoIehcdNg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.5.200.0/22 IPv6: 2a02:cdc0::/29 Signature Algorithm: sha256WithRSAEncryption 75:af:71:52:ef:80:97:7b:9c:ea:2d:b2:5b:82:2d:0a:c7:8b: 00:89:58:f6:d2:a2:07:e2:c6:c7:7b:6b:59:02:63:60:f1:46: af:32:b1:28:71:28:b2:5d:61:53:3b:bf:d7:14:28:77:16:d7: 2c:1f:a5:ed:eb:2e:b9:52:cd:5a:26:e7:2c:2f:6a:c9:fc:51: 21:a5:b4:c1:2d:ca:98:ca:a5:69:a1:f1:05:23:c9:e0:14:5d: f6:33:81:2c:93:8c:a9:21:a8:91:5d:7c:9c:60:52:11:81:29: 06:ce:bd:d2:6b:82:10:c3:39:9b:61:6c:09:63:9a:eb:ea:7a: d5:e0:4f:40:0c:a0:2a:3c:86:40:3c:98:57:a7:85:be:04:21: 09:63:58:91:74:85:c1:e2:ce:a6:c6:f0:13:d8:a6:e9:11:0f: e6:db:2e:09:aa:88:72:fc:7b:ae:c9:a8:91:77:6d:c5:64:92: b6:cb:30:9e:0a:ce:e2:4c:5f:3e:32:fd:0e:ba:34:38:fa:51: 4d:d5:03:9d:20:c7:3a:f7:8c:84:4e:b5:c8:a0:b8:f7:94:77: d8:22:57:f1:e0:0a:e1:04:69:9a:51:ff:72:a0:e4:4a:f1:f1: a8:14:f4:f6:15:e5:84:eb:68:07:72:b9:40:62:5d:c1:fd:51: be:51:ec:e3 -----BEGIN CERTIFICATE----- MIIFDDCCA/SgAwIBAgISAZt9XPGtBDbLlOsSGGOCdb5UMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDNiNGRmOWE1NDYwY2JkNDUwYjRlNzUzODAzOTNhODIxZTg1 Yzc0ZDgwHhcNMjYwMTAyMDYyMDAxWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhjYWZmOGU1YmYzN2E1MmFmYTMwZDBkYzQ3NDI3ZjEyMWI1MGJiMzk3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA2ghvcAmJSfMEh1YhT/4Nl6NRcUi9 D4vEIwSxUMLmRguMfMP68bVOGJlr3fH7S6L+O8TqqNJXWSlWhCNnO4J759RyPG8F sIggJFt0iHiyVPY2VS8k861oDSpY6Q/4veHx+uD9IcU0sDRgzNHtzfOqONpQgjS2 CxoAdYfXHuAb6YH3b6R/lJ67HNpRPs+/GaM93dJqeIDhP/jxuaceByrqafKDy7il rFe63G5mlPA1IP9Vc9j+XccG9z9Ec42znTLgJWZn552+FCS60+eniU9ZaxI+ursc 3e1UCGBPt6ULd00Qq+uzPsJZn3hjH+cJrdGHfWW9fYtKSPRpUlHbjbtY+wIDAQAB o4ICGDCCAhQwHQYDVR0OBBYEFMr/jlvzelKvow0NxHQn8SG1C7OXMB8GA1UdIwQY MBaAFDtN+aVGDL1FC051OAOTqCHoXHTYMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvTzAzNXBVWU12VVVMVG5VNEE1T29JZWhjZE5nLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80Ni8wNDk3NWMtZWY0OS00NzU0LTk2Zjkt OTgxMmQ3Y2ZkNjk0LzEveXYtT1dfTjZVcS1qRFEzRWRDZnhJYlVMczVjLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC80Ni8wNDk3NWMtZWY0OS00NzU0LTk2ZjktOTgxMmQ3Y2ZkNjk0 LzEvTzAzNXBVWU12VVVMVG5VNEE1T29JZWhjZE5nLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMC4GCCsGAQUFBwEHAQH/BB8wHTAMBAIAATAGAwQCuQXIMA0E AgACMAcDBQMqAs3AMA0GCSqGSIb3DQEBCwUAA4IBAQB1r3FS74CXe5zqLbJbgi0K x4sAiVj20qIH4sbHe2tZAmNg8UavMrEocSiyXWFTO7/XFCh3FtcsH6Xt6y65Us1a JucsL2rJ/FEhpbTBLcqYyqVpofEFI8ngFF32M4Esk4ypIaiRXXycYFIRgSkGzr3S a4IQwzmbYWwJY5rr6nrV4E9ADKAqPIZAPJhXp4W+BCEJY1iRdIXB4s6mxvAT2Kbp EQ/m2y4Jqohy/HuuyaiRd23FZJK2yzCeCs7iTF8+Mv0OujQ4+lFN1QOdIMc694yE TrXIoLj3lHfYIlfx4ArhBGmaUf9yoORK8fGoFPT2FeWE62gHcrlAYl3B/VG+Uezj -----END CERTIFICATE-----Generated at Mon Feb 2 08:07:51 2026 by rpki-client