This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4d/c43a75-a326-4c6d-87ca-817d84e53d53/1/TYub0TncnmCJgK5YqhcQq6uxFY8.roa File: TYub0TncnmCJgK5YqhcQq6uxFY8.roa (raw, json) Hash identifier: PVSgFXhha0Tttkf2YheReFWR8vkcxo99w+Rpb5iRQR8= Subject key identifier: 4D:8B:9B:D1:39:DC:9E:60:89:80:AE:58:AA:17:10:AB:AB:B1:15:8F Certificate issuer: /CN=9e0374d71bc57db96dc393e91febb9e9d59fef9a Certificate serial: 019B76EB17C799A3612E3F2A9389D4BC248E Authority key identifier: 9E:03:74:D7:1B:C5:7D:B9:6D:C3:93:E9:1F:EB:B9:E9:D5:9F:EF:9A Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ngN01xvFfbltw5PpH-u56dWf75o.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4d/c43a75-a326-4c6d-87ca-817d84e53d53/1/TYub0TncnmCJgK5YqhcQq6uxFY8.roa Signing time: Thu 01 Jan 2026 00:17:57 +0000 ROA not before: Thu 01 Jan 2026 00:17:57 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 200571 IP address blocks: 185.97.9.0/24 maxlen: 24 185.97.11.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4d/c43a75-a326-4c6d-87ca-817d84e53d53/1/ngN01xvFfbltw5PpH-u56dWf75o.crl rsync://rpki.ripe.net/repository/DEFAULT/4d/c43a75-a326-4c6d-87ca-817d84e53d53/1/ngN01xvFfbltw5PpH-u56dWf75o.mft rsync://rpki.ripe.net/repository/DEFAULT/ngN01xvFfbltw5PpH-u56dWf75o.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 03 Jan 2026 21:00:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:76:eb:17:c7:99:a3:61:2e:3f:2a:93:89:d4:bc:24:8e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9e0374d71bc57db96dc393e91febb9e9d59fef9a Validity Not Before: Jan 1 00:17:57 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=4d8b9bd139dc9e608980ae58aa1710ababb1158f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:0e:48:b7:d1:e7:2f:9a:8e:8e:e9:a1:66:df: 77:b0:e0:28:3f:6c:d3:af:b5:7f:67:97:39:90:fb: f1:c9:51:e0:a4:41:4c:36:74:3b:ce:e4:e4:0b:ec: 2c:16:32:1f:9d:4a:2e:18:df:f6:e1:d3:14:67:e0: d9:68:db:ab:bd:39:bc:a5:07:44:8a:1f:38:4d:ae: b3:18:9a:7a:dd:d8:86:e5:d8:3c:19:dc:63:98:23: 7e:c2:d2:fd:29:2f:6e:d6:97:9b:4d:d6:a9:32:88: cc:40:c9:36:61:0f:29:2d:31:4f:29:3e:e2:49:c9: 6d:e0:c8:cd:9b:1d:b0:b5:75:07:0d:e2:a8:f7:10: 58:69:59:41:ea:cf:c7:f0:c2:b6:75:9b:ab:4a:ff: 83:bd:bf:04:b0:89:70:37:70:6c:ca:59:e0:e6:38: 73:50:bf:86:f3:eb:ca:4c:6b:71:10:ca:e8:a5:06: fe:1d:e5:64:b7:c1:ec:20:43:8e:fc:2e:df:a8:0d: 18:ed:91:18:fe:98:11:8d:da:59:c4:34:78:52:0c: dd:59:c3:ef:63:96:79:16:3c:8c:9e:7a:2d:c1:3f: 33:79:a7:37:3d:1b:8f:c0:a2:d3:22:3f:49:8e:32: fc:7f:66:31:cd:aa:bc:e0:bf:77:0a:da:d5:5c:48: 96:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4D:8B:9B:D1:39:DC:9E:60:89:80:AE:58:AA:17:10:AB:AB:B1:15:8F X509v3 Authority Key Identifier: keyid:9E:03:74:D7:1B:C5:7D:B9:6D:C3:93:E9:1F:EB:B9:E9:D5:9F:EF:9A X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ngN01xvFfbltw5PpH-u56dWf75o.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/c43a75-a326-4c6d-87ca-817d84e53d53/1/TYub0TncnmCJgK5YqhcQq6uxFY8.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/c43a75-a326-4c6d-87ca-817d84e53d53/1/ngN01xvFfbltw5PpH-u56dWf75o.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.97.9.0/24 185.97.11.0/24 Signature Algorithm: sha256WithRSAEncryption 26:e3:c4:2c:5f:86:a8:78:fd:e4:b8:a4:66:82:9f:73:55:e4: fe:9c:cb:96:07:f0:40:99:3a:cb:0d:e7:36:aa:9a:a7:c3:76: 1c:32:d1:a1:de:06:76:b3:40:50:5d:ea:75:86:0a:78:cf:8b: d7:92:82:7b:76:eb:3d:5e:0d:c0:5c:d5:f9:cc:3c:3e:27:ab: 52:98:20:6e:0f:43:a9:5b:ce:fc:10:f8:a0:8a:b6:ca:fd:5e: f6:c1:a3:7d:62:dd:d6:16:18:78:98:57:5a:97:7f:44:8c:e9: 57:3f:db:bb:5f:b0:4a:65:8a:ac:14:73:d4:8e:96:b6:81:1b: 72:4e:0c:3f:ab:35:ec:29:82:7e:c8:c0:b4:de:92:1b:f2:fa: c2:ef:86:0c:34:da:a3:7d:0d:85:b2:cd:6b:10:80:d9:b2:f2: c2:04:d2:6f:4e:47:0a:be:d0:bb:4f:21:b2:80:fe:fc:5f:ad: 76:b9:22:ae:c3:76:a6:3b:5f:93:0e:65:26:b9:9a:4a:97:c5: 9d:72:6d:ef:72:ee:45:1e:ba:23:8e:9c:32:96:63:ec:c1:38: 5a:cc:02:d5:3e:83:d2:3c:eb:b4:01:d4:e8:b1:99:4a:36:31: af:8a:75:36:9d:43:9d:aa:6c:49:c7:dc:6e:86:c1:75:1f:da: 70:09:ed:8d -----BEGIN CERTIFICATE----- MIIFAzCCA+ugAwIBAgISAZt26xfHmaNhLj8qk4nUvCSOMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDllMDM3NGQ3MWJjNTdkYjk2ZGMzOTNlOTFmZWJiOWU5ZDU5 ZmVmOWEwHhcNMjYwMTAxMDAxNzU3WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg0ZDhiOWJkMTM5ZGM5ZTYwODk4MGFlNThhYTE3MTBhYmFiYjExNThmMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvA5It9HnL5qOjumhZt93sOAoP2zT r7V/Z5c5kPvxyVHgpEFMNnQ7zuTkC+wsFjIfnUouGN/24dMUZ+DZaNurvTm8pQdE ih84Ta6zGJp63diG5dg8GdxjmCN+wtL9KS9u1pebTdapMojMQMk2YQ8pLTFPKT7i Sclt4MjNmx2wtXUHDeKo9xBYaVlB6s/H8MK2dZurSv+Dvb8EsIlwN3Bsylng5jhz UL+G8+vKTGtxEMropQb+HeVkt8HsIEOO/C7fqA0Y7ZEY/pgRjdpZxDR4UgzdWcPv Y5Z5FjyMnnotwT8zeac3PRuPwKLTIj9JjjL8f2Yxzaq84L93CtrVXEiWDQIDAQAB o4ICDzCCAgswHQYDVR0OBBYEFE2Lm9E53J5giYCuWKoXEKursRWPMB8GA1UdIwQY MBaAFJ4DdNcbxX25bcOT6R/ruenVn++aMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvbmdOMDF4dkZmYmx0dzVQcEgtdTU2ZFdmNzVvLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80ZC9jNDNhNzUtYTMyNi00YzZkLTg3Y2Et ODE3ZDg0ZTUzZDUzLzEvVFl1YjBUbmNubUNKZ0s1WXFoY1FxNnV4Rlk4LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC80ZC9jNDNhNzUtYTMyNi00YzZkLTg3Y2EtODE3ZDg0ZTUzZDUz LzEvbmdOMDF4dkZmYmx0dzVQcEgtdTU2ZFdmNzVvLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQAuWEJAwQA uWELMA0GCSqGSIb3DQEBCwUAA4IBAQAm48QsX4aoeP3kuKRmgp9zVeT+nMuWB/BA mTrLDec2qpqnw3YcMtGh3gZ2s0BQXep1hgp4z4vXkoJ7dus9Xg3AXNX5zDw+J6tS mCBuD0OpW878EPigirbK/V72waN9Yt3WFhh4mFdal39EjOlXP9u7X7BKZYqsFHPU jpa2gRtyTgw/qzXsKYJ+yMC03pIb8vrC74YMNNqjfQ2Fss1rEIDZsvLCBNJvTkcK vtC7TyGygP78X612uSKuw3amO1+TDmUmuZpKl8Wdcm3vcu5FHrojjpwylmPswTha zALVPoPSPOu0AdTosZlKNjGvinU2nUOdqmxJx9xuhsF1H9pwCe2N -----END CERTIFICATE-----Generated at Sat Jan 3 01:34:21 2026 by rpki-client