This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/55/381125-0248-4ebc-a74d-b8dad6e5c3bf/1/Ylv10vSg516VZiCHF-V4XQ_Q1lM.roa File: Ylv10vSg516VZiCHF-V4XQ_Q1lM.roa (raw, json) Hash identifier: n4eisXfR10vCp8bRVZ+o+LnCZlLeQphgEpVjncPOq/M= Subject key identifier: 62:5B:F5:D2:F4:A0:E7:5E:95:66:20:87:17:E5:78:5D:0F:D0:D6:53 Certificate issuer: /CN=374c2617a372e466e98d42532dd0bd8e5cdd993d Certificate serial: 019B7BA5045B85DF57261D0FDCE0C26805DC Authority key identifier: 37:4C:26:17:A3:72:E4:66:E9:8D:42:53:2D:D0:BD:8E:5C:DD:99:3D Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/N0wmF6Ny5GbpjUJTLdC9jlzdmT0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/55/381125-0248-4ebc-a74d-b8dad6e5c3bf/1/Ylv10vSg516VZiCHF-V4XQ_Q1lM.roa Signing time: Thu 01 Jan 2026 22:19:30 +0000 ROA not before: Thu 01 Jan 2026 22:19:30 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 201510 IP address blocks: 91.211.160.0/23 maxlen: 23 91.211.160.0/24 maxlen: 24 91.211.161.0/24 maxlen: 24 185.73.92.0/24 maxlen: 24 185.73.93.0/24 maxlen: 24 185.73.94.0/24 maxlen: 24 2a03:41e0::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/55/381125-0248-4ebc-a74d-b8dad6e5c3bf/1/N0wmF6Ny5GbpjUJTLdC9jlzdmT0.crl rsync://rpki.ripe.net/repository/DEFAULT/55/381125-0248-4ebc-a74d-b8dad6e5c3bf/1/N0wmF6Ny5GbpjUJTLdC9jlzdmT0.mft rsync://rpki.ripe.net/repository/DEFAULT/N0wmF6Ny5GbpjUJTLdC9jlzdmT0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 27 Jan 2026 20:39:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7b:a5:04:5b:85:df:57:26:1d:0f:dc:e0:c2:68:05:dc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=374c2617a372e466e98d42532dd0bd8e5cdd993d Validity Not Before: Jan 1 22:19:30 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=625bf5d2f4a0e75e9566208717e5785d0fd0d653 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:a3:56:b1:d9:07:60:19:11:2a:12:ec:0d:4c: fb:73:74:f3:f3:06:e9:c9:79:16:0c:77:04:63:cb: 78:f0:28:c1:e1:4e:5c:fa:49:e3:46:df:c4:7f:df: 9b:c3:f7:d2:34:b0:a3:d6:7d:d0:61:01:13:10:ed: be:7d:68:87:63:0a:ed:14:e3:09:9e:e4:1c:bc:99: 61:50:b8:8c:24:3a:ec:6b:52:93:df:a4:16:db:c4: f6:24:a3:52:30:c3:09:60:3f:10:67:b0:45:73:e0: cf:5e:60:86:10:a6:9d:67:6d:1c:50:77:c5:a2:5d: 19:fe:30:55:28:f3:8c:71:e5:49:60:e0:f4:c1:81: 23:57:10:aa:14:1c:0b:e9:ab:a9:b7:7e:12:4d:43: a9:d9:df:df:e0:c5:83:53:39:dc:78:d2:85:14:70: d7:f0:37:f8:bd:95:69:82:36:34:02:d5:cc:1e:e6: cf:94:b6:78:01:b9:ae:bc:ed:b5:b1:d4:d2:34:a4: 53:11:4f:6d:c4:da:2e:73:03:86:5e:e2:3e:27:6b: ac:dc:fe:ae:b2:23:c2:60:3c:89:47:ea:1c:8c:ab: b9:30:e1:b7:ca:16:93:5c:82:b7:52:8d:dc:dc:c4: 70:2a:4f:51:e0:b2:8b:a2:c4:3c:ed:36:c0:b8:cd: 11:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 62:5B:F5:D2:F4:A0:E7:5E:95:66:20:87:17:E5:78:5D:0F:D0:D6:53 X509v3 Authority Key Identifier: keyid:37:4C:26:17:A3:72:E4:66:E9:8D:42:53:2D:D0:BD:8E:5C:DD:99:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/N0wmF6Ny5GbpjUJTLdC9jlzdmT0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/55/381125-0248-4ebc-a74d-b8dad6e5c3bf/1/Ylv10vSg516VZiCHF-V4XQ_Q1lM.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/55/381125-0248-4ebc-a74d-b8dad6e5c3bf/1/N0wmF6Ny5GbpjUJTLdC9jlzdmT0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 91.211.160.0/23 185.73.92.0-185.73.94.255 IPv6: 2a03:41e0::/32 Signature Algorithm: sha256WithRSAEncryption 20:93:2c:d5:cb:10:99:7d:f1:87:a2:c9:2e:26:fc:7f:42:5c: 7c:05:31:38:a1:86:62:73:8b:c2:11:4b:3e:a7:2a:3f:87:12: b7:9c:6a:67:7d:30:d8:bd:49:cd:96:d1:ff:62:88:ad:5c:a5: d2:27:dd:2c:e3:31:9e:e3:3d:36:3f:a1:57:59:2d:53:89:5f: 22:22:cc:e5:ae:28:df:1c:88:f4:31:3e:80:8e:09:f0:a5:d3: d4:e6:69:df:90:74:83:3c:17:b7:75:04:84:be:85:a1:d3:27: 55:df:58:7d:73:53:84:2f:b9:bc:82:7e:1b:72:49:b6:cf:d5: 4a:a1:5b:b5:6d:72:37:d7:0e:2f:1f:7a:c4:bb:d5:61:22:f8: e0:2c:13:09:7b:5f:b2:12:da:c3:c7:b9:d7:eb:bc:d6:0f:73: a7:94:d3:ce:2f:f7:e3:7f:93:f9:0b:30:29:a5:2b:83:f8:25: fe:e9:4b:bb:0f:b8:b8:a7:2e:70:c0:8d:e7:27:63:15:76:05: 8a:94:66:01:65:32:aa:ba:b5:c1:f9:07:45:63:7d:10:3f:56: 8c:17:16:9a:ad:2f:c1:38:64:65:a3:68:00:67:55:f7:7e:42: 7b:85:ba:1e:28:36:aa:90:c0:a1:9c:fd:a1:46:ff:35:ac:c5: a7:8d:a3:15 -----BEGIN CERTIFICATE----- MIIFGjCCBAKgAwIBAgISAZt7pQRbhd9XJh0P3ODCaAXcMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDM3NGMyNjE3YTM3MmU0NjZlOThkNDI1MzJkZDBiZDhlNWNk ZDk5M2QwHhcNMjYwMTAxMjIxOTMwWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg2MjViZjVkMmY0YTBlNzVlOTU2NjIwODcxN2U1Nzg1ZDBmZDBkNjUzMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyqNWsdkHYBkRKhLsDUz7c3Tz8wbp yXkWDHcEY8t48CjB4U5c+knjRt/Ef9+bw/fSNLCj1n3QYQETEO2+fWiHYwrtFOMJ nuQcvJlhULiMJDrsa1KT36QW28T2JKNSMMMJYD8QZ7BFc+DPXmCGEKadZ20cUHfF ol0Z/jBVKPOMceVJYOD0wYEjVxCqFBwL6aupt34STUOp2d/f4MWDUznceNKFFHDX 8Df4vZVpgjY0AtXMHubPlLZ4AbmuvO21sdTSNKRTEU9txNoucwOGXuI+J2us3P6u siPCYDyJR+ocjKu5MOG3yhaTXIK3Uo3c3MRwKk9R4LKLosQ87TbAuM0RFwIDAQAB o4ICJjCCAiIwHQYDVR0OBBYEFGJb9dL0oOdelWYghxfleF0P0NZTMB8GA1UdIwQY MBaAFDdMJhejcuRm6Y1CUy3QvY5c3Zk9MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvTjB3bUY2Tnk1R2JwalVKVExkQzlqbHpkbVQwLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81NS8zODExMjUtMDI0OC00ZWJjLWE3NGQt YjhkYWQ2ZTVjM2JmLzEvWWx2MTB2U2c1MTZWWmlDSEYtVjRYUV9RMWxNLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81NS8zODExMjUtMDI0OC00ZWJjLWE3NGQtYjhkYWQ2ZTVjM2Jm LzEvTjB3bUY2Tnk1R2JwalVKVExkQzlqbHpkbVQwLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMDwGCCsGAQUFBwEHAQH/BC0wKzAaBAIAATAUAwQBW9OgMAwD BAK5SVwDBAC5SV4wDQQCAAIwBwMFACoDQeAwDQYJKoZIhvcNAQELBQADggEBACCT LNXLEJl98YeiyS4m/H9CXHwFMTihhmJzi8IRSz6nKj+HErecamd9MNi9Sc2W0f9i iK1cpdIn3SzjMZ7jPTY/oVdZLVOJXyIizOWuKN8ciPQxPoCOCfCl09Tmad+QdIM8 F7d1BIS+haHTJ1XfWH1zU4QvubyCfhtySbbP1UqhW7VtcjfXDi8fesS71WEi+OAs Ewl7X7IS2sPHudfrvNYPc6eU084v9+N/k/kLMCmlK4P4Jf7pS7sPuLinLnDAjecn YxV2BYqUZgFlMqq6tcH5B0VjfRA/VowXFpqtL8E4ZGWjaABnVfd+QnuFuh4oNqqQ wKGc/aFG/zWsxaeNoxU= -----END CERTIFICATE-----Generated at Tue Jan 27 03:26:40 2026 by rpki-client