This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4c/399d62-882a-443d-bd80-55ddf80e9a9d/1/YqgbCTBdte2ogbdDfcLF7Chsb3Y.roa File: YqgbCTBdte2ogbdDfcLF7Chsb3Y.roa (raw, json) Hash identifier: kVqwoLLbEpvLFrLtgoJmEkwq7O0fcevuzW4yIfblZ9k= Subject key identifier: 62:A8:1B:09:30:5D:B5:ED:A8:81:B7:43:7D:C2:C5:EC:28:6C:6F:76 Certificate issuer: /CN=00d946a5340b7f0ff50d9afa6519ade7f3a4a082 Certificate serial: 019B7B360D039BAB0C206C22A69305952DA6 Authority key identifier: 00:D9:46:A5:34:0B:7F:0F:F5:0D:9A:FA:65:19:AD:E7:F3:A4:A0:82 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ANlGpTQLfw_1DZr6ZRmt5_OkoII.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4c/399d62-882a-443d-bd80-55ddf80e9a9d/1/YqgbCTBdte2ogbdDfcLF7Chsb3Y.roa Signing time: Thu 01 Jan 2026 20:18:18 +0000 ROA not before: Thu 01 Jan 2026 20:18:18 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 205854 IP address blocks: 185.185.188.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4c/399d62-882a-443d-bd80-55ddf80e9a9d/1/ANlGpTQLfw_1DZr6ZRmt5_OkoII.crl rsync://rpki.ripe.net/repository/DEFAULT/4c/399d62-882a-443d-bd80-55ddf80e9a9d/1/ANlGpTQLfw_1DZr6ZRmt5_OkoII.mft rsync://rpki.ripe.net/repository/DEFAULT/ANlGpTQLfw_1DZr6ZRmt5_OkoII.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7b:36:0d:03:9b:ab:0c:20:6c:22:a6:93:05:95:2d:a6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=00d946a5340b7f0ff50d9afa6519ade7f3a4a082 Validity Not Before: Jan 1 20:18:18 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=62a81b09305db5eda881b7437dc2c5ec286c6f76 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:2d:bb:9b:f0:19:14:20:66:ae:32:d0:1b:b9: 41:33:7e:77:48:0f:9a:45:26:48:74:d3:de:5b:4a: 57:62:e5:86:60:b7:ce:c8:57:04:98:5c:bd:fb:03: f0:aa:46:bc:26:17:16:ff:5d:c6:6a:3b:b3:c1:6d: 77:62:4c:df:d2:76:14:c4:11:8d:22:97:ea:81:48: 89:1e:f9:92:cd:d1:93:7b:d1:e9:08:3e:9c:66:6a: d0:68:2e:bb:49:9d:ef:b0:37:84:22:a3:0b:f1:91: 24:02:04:cd:61:b8:be:14:51:47:52:5d:ee:54:14: 53:ba:19:4a:8d:23:36:42:a1:76:b9:79:69:65:24: 2c:8d:2d:eb:7d:a9:d3:e7:ae:e0:f9:6b:ec:43:80: bd:3b:45:5d:f8:e3:71:af:34:7c:b4:03:4e:f1:69: 46:f2:9b:75:af:76:76:14:a7:56:0e:f1:34:fa:a3: ae:b4:ab:c4:d7:84:02:51:f5:57:e2:14:ad:22:d4: 3a:13:8a:af:01:79:c8:bb:8c:fd:b0:18:12:68:09: 6e:b8:35:65:91:43:cf:71:dd:25:cd:57:d5:cb:07: 32:e4:e6:6b:1e:28:6d:d0:93:ff:ea:54:b5:79:1a: d6:32:cd:25:48:d6:2c:91:9e:3c:7d:da:f4:ac:69: 6e:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 62:A8:1B:09:30:5D:B5:ED:A8:81:B7:43:7D:C2:C5:EC:28:6C:6F:76 X509v3 Authority Key Identifier: keyid:00:D9:46:A5:34:0B:7F:0F:F5:0D:9A:FA:65:19:AD:E7:F3:A4:A0:82 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ANlGpTQLfw_1DZr6ZRmt5_OkoII.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/399d62-882a-443d-bd80-55ddf80e9a9d/1/YqgbCTBdte2ogbdDfcLF7Chsb3Y.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/399d62-882a-443d-bd80-55ddf80e9a9d/1/ANlGpTQLfw_1DZr6ZRmt5_OkoII.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.185.188.0/22 Signature Algorithm: sha256WithRSAEncryption 61:a5:a2:2e:f4:db:52:26:5c:96:ac:9d:c3:ea:d2:4f:a9:d9: 33:c4:9e:4d:f0:cb:95:5b:55:1f:40:d2:ee:1b:ba:1b:60:d2: eb:a5:ce:f7:a4:28:4c:21:62:43:e9:08:31:40:ba:3a:56:25: 1b:74:8d:93:93:d2:38:02:51:6a:e2:a5:5d:5d:06:c9:db:8b: db:f3:b4:82:88:88:06:23:43:53:49:fb:a7:72:46:7e:87:8e: 22:5a:62:9f:5d:55:db:9b:c4:70:0f:5f:a0:89:56:4c:fb:a7: 4a:3c:bb:26:8b:51:aa:03:cc:65:ef:17:c7:16:1a:fe:bf:cf: c4:7c:e4:4b:4b:6e:b1:a7:ff:89:56:fe:ce:88:b1:e3:35:be: f5:76:22:7e:f2:a2:13:a6:a6:bd:67:7e:7b:52:97:a5:16:ec: 84:d9:72:70:2a:b1:76:08:fb:5c:6f:d6:b7:c6:19:c6:42:17: a3:72:b9:63:22:43:54:77:1f:3c:88:bb:0b:6c:a3:9b:09:25: 24:10:b7:77:35:9c:bf:d5:f2:60:18:40:46:07:c1:fc:85:b8: 89:bd:62:50:3c:da:00:93:81:12:dc:78:f4:8f:74:f9:0c:70: c4:d0:c3:be:8c:36:5d:67:0f:07:e3:c2:02:73:36:d2:66:0e: f3:e2:7f:d2 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt7Ng0Dm6sMIGwippMFlS2mMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDAwZDk0NmE1MzQwYjdmMGZmNTBkOWFmYTY1MTlhZGU3ZjNh NGEwODIwHhcNMjYwMTAxMjAxODE4WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg2MmE4MWIwOTMwNWRiNWVkYTg4MWI3NDM3ZGMyYzVlYzI4NmM2Zjc2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuy27m/AZFCBmrjLQG7lBM353SA+a RSZIdNPeW0pXYuWGYLfOyFcEmFy9+wPwqka8JhcW/13GajuzwW13Ykzf0nYUxBGN IpfqgUiJHvmSzdGTe9HpCD6cZmrQaC67SZ3vsDeEIqML8ZEkAgTNYbi+FFFHUl3u VBRTuhlKjSM2QqF2uXlpZSQsjS3rfanT567g+WvsQ4C9O0Vd+ONxrzR8tANO8WlG 8pt1r3Z2FKdWDvE0+qOutKvE14QCUfVX4hStItQ6E4qvAXnIu4z9sBgSaAluuDVl kUPPcd0lzVfVywcy5OZrHiht0JP/6lS1eRrWMs0lSNYskZ48fdr0rGludwIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFGKoGwkwXbXtqIG3Q33CxewobG92MB8GA1UdIwQY MBaAFADZRqU0C38P9Q2a+mUZrefzpKCCMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvQU5sR3BUUUxmd18xRFpyNlpSbXQ1X09rb0lJLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80Yy8zOTlkNjItODgyYS00NDNkLWJkODAt NTVkZGY4MGU5YTlkLzEvWXFnYkNUQmR0ZTJvZ2JkRGZjTEY3Q2hzYjNZLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC80Yy8zOTlkNjItODgyYS00NDNkLWJkODAtNTVkZGY4MGU5YTlk LzEvQU5sR3BUUUxmd18xRFpyNlpSbXQ1X09rb0lJLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCubm8MA0G CSqGSIb3DQEBCwUAA4IBAQBhpaIu9NtSJlyWrJ3D6tJPqdkzxJ5N8MuVW1UfQNLu G7obYNLrpc73pChMIWJD6QgxQLo6ViUbdI2Tk9I4AlFq4qVdXQbJ24vb87SCiIgG I0NTSfunckZ+h44iWmKfXVXbm8RwD1+giVZM+6dKPLsmi1GqA8xl7xfHFhr+v8/E fORLS26xp/+JVv7OiLHjNb71diJ+8qITpqa9Z357UpelFuyE2XJwKrF2CPtcb9a3 xhnGQhejcrljIkNUdx88iLsLbKObCSUkELd3NZy/1fJgGEBGB8H8hbiJvWJQPNoA k4ES3Hj0j3T5DHDE0MO+jDZdZw8H48ICczbSZg7z4n/S -----END CERTIFICATE-----Generated at Mon Feb 9 23:42:40 2026 by rpki-client