This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5d/9cf9d4-2ce9-424b-9cf0-8aa6f6c170ff/1/ygqyotocEDdtoHHhWJzx1G-yxq8.roa File: ygqyotocEDdtoHHhWJzx1G-yxq8.roa (raw, json) Hash identifier: HyJom2GJVsUQou508bUlOx3xP/oj3d9zeLR3dffhdIs= Subject key identifier: CA:0A:B2:A2:DA:1C:10:37:6D:A0:71:E1:58:9C:F1:D4:6F:B2:C6:AF Certificate issuer: /CN=12085c540c114fc8957a0250bb49f484b74357b9 Certificate serial: 019B7DC8AF027AE3655842ABC373FEE90218 Authority key identifier: 12:08:5C:54:0C:11:4F:C8:95:7A:02:50:BB:49:F4:84:B7:43:57:B9 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/EghcVAwRT8iVegJQu0n0hLdDV7k.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5d/9cf9d4-2ce9-424b-9cf0-8aa6f6c170ff/1/ygqyotocEDdtoHHhWJzx1G-yxq8.roa Signing time: Fri 02 Jan 2026 08:17:42 +0000 ROA not before: Fri 02 Jan 2026 08:17:42 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 197984 IP address blocks: 194.107.115.0/24 maxlen: 24 2a13:9fc0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5d/9cf9d4-2ce9-424b-9cf0-8aa6f6c170ff/1/EghcVAwRT8iVegJQu0n0hLdDV7k.crl rsync://rpki.ripe.net/repository/DEFAULT/5d/9cf9d4-2ce9-424b-9cf0-8aa6f6c170ff/1/EghcVAwRT8iVegJQu0n0hLdDV7k.mft rsync://rpki.ripe.net/repository/DEFAULT/EghcVAwRT8iVegJQu0n0hLdDV7k.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 14:00:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7d:c8:af:02:7a:e3:65:58:42:ab:c3:73:fe:e9:02:18 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=12085c540c114fc8957a0250bb49f484b74357b9 Validity Not Before: Jan 2 08:17:42 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=ca0ab2a2da1c10376da071e1589cf1d46fb2c6af Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:04:dd:80:ed:e6:c3:40:07:4a:92:7b:1b:5a: 01:9d:c8:c3:22:e5:63:29:af:1b:2c:67:89:bc:59: 33:72:98:d7:c4:98:54:a2:59:2e:57:65:18:7b:64: b0:d9:1d:31:55:71:77:98:a4:37:06:3a:c7:ed:62: 4f:1c:77:c4:c0:b1:5f:cf:42:fc:6d:a6:07:55:ac: 3e:fb:85:94:d9:69:fd:40:67:24:41:d0:77:78:e6: f1:3b:ef:f1:e7:e1:67:77:0b:4b:4f:75:4b:c4:4b: ba:cf:d5:d2:f1:0b:ed:8f:10:16:95:9e:c3:c4:32: 50:ac:cb:29:b8:5e:0c:50:af:a1:27:a2:44:16:84: 0f:2b:f5:90:2c:24:80:41:95:af:7f:72:e1:f9:04: 87:a7:e1:66:12:f6:72:7d:6f:d1:97:3d:cf:bb:fb: e1:dc:77:71:75:7e:3e:6a:fa:24:d0:54:3b:eb:65: e3:16:fb:df:92:fa:f6:87:67:c8:e4:9b:87:3d:48: bf:1b:4f:db:e0:09:70:0d:8c:34:b6:b5:61:63:1b: a2:c7:8f:2f:47:60:11:ef:e5:ea:a4:ac:0b:32:97: c0:8a:3a:49:7d:41:7f:41:79:5e:a3:db:80:07:a0: bb:a7:4b:6d:40:b2:13:ac:cf:dd:40:7e:7e:65:db: ec:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CA:0A:B2:A2:DA:1C:10:37:6D:A0:71:E1:58:9C:F1:D4:6F:B2:C6:AF X509v3 Authority Key Identifier: keyid:12:08:5C:54:0C:11:4F:C8:95:7A:02:50:BB:49:F4:84:B7:43:57:B9 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/EghcVAwRT8iVegJQu0n0hLdDV7k.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/9cf9d4-2ce9-424b-9cf0-8aa6f6c170ff/1/ygqyotocEDdtoHHhWJzx1G-yxq8.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/9cf9d4-2ce9-424b-9cf0-8aa6f6c170ff/1/EghcVAwRT8iVegJQu0n0hLdDV7k.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 194.107.115.0/24 IPv6: 2a13:9fc0::/48 Signature Algorithm: sha256WithRSAEncryption 25:17:0e:e6:c4:c0:42:b8:07:1b:8c:f5:3a:58:88:40:61:39: b2:ba:05:d8:58:45:6e:40:d9:cf:54:3d:4d:00:ca:d6:d3:9f: 53:7c:55:df:3d:00:7f:1a:91:e6:71:32:27:95:da:b8:ce:78: 8c:ed:55:35:e2:5c:ef:a9:f1:b8:b3:c6:43:4e:7b:81:2d:de: e2:d1:29:33:3c:3c:fa:bc:2e:49:5e:66:6b:ca:4b:dd:24:15: a0:7f:06:71:11:38:91:b1:23:0b:c5:1b:a8:76:e8:2a:a8:e4: 81:62:35:6d:9b:23:e5:68:06:cc:17:7c:ac:a2:53:a9:89:a9: 1f:fc:66:cc:b6:41:18:c7:9c:76:74:54:bd:d6:e8:0a:a2:5e: 14:d8:82:7f:01:af:98:22:70:09:ce:f1:41:6d:c4:77:6c:b9: b5:15:e9:f3:4f:33:97:7a:bc:e8:2f:a3:b0:e1:1d:3e:b1:f3: a4:d0:58:62:13:35:9c:9e:e1:ea:ba:c7:0c:66:bf:e0:ca:da: ca:e2:aa:3d:59:0c:86:b3:57:82:4d:8d:c5:e3:6a:dd:c1:4e: c7:77:b2:7c:89:79:56:7e:71:83:f9:9f:05:be:9a:16:98:50: 9a:29:83:cd:b2:f8:4a:89:00:d7:f4:df:0b:ed:5c:04:0b:3a: f1:b9:da:af -----BEGIN CERTIFICATE----- MIIFDjCCA/agAwIBAgISAZt9yK8CeuNlWEKrw3P+6QIYMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDEyMDg1YzU0MGMxMTRmYzg5NTdhMDI1MGJiNDlmNDg0Yjc0 MzU3YjkwHhcNMjYwMTAyMDgxNzQyWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhjYTBhYjJhMmRhMWMxMDM3NmRhMDcxZTE1ODljZjFkNDZmYjJjNmFmMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAswTdgO3mw0AHSpJ7G1oBncjDIuVj Ka8bLGeJvFkzcpjXxJhUolkuV2UYe2Sw2R0xVXF3mKQ3BjrH7WJPHHfEwLFfz0L8 baYHVaw++4WU2Wn9QGckQdB3eObxO+/x5+FndwtLT3VLxEu6z9XS8QvtjxAWlZ7D xDJQrMspuF4MUK+hJ6JEFoQPK/WQLCSAQZWvf3Lh+QSHp+FmEvZyfW/Rlz3Pu/vh 3HdxdX4+avok0FQ762XjFvvfkvr2h2fI5JuHPUi/G0/b4AlwDYw0trVhYxuix48v R2AR7+XqpKwLMpfAijpJfUF/QXleo9uAB6C7p0ttQLITrM/dQH5+ZdvseQIDAQAB o4ICGjCCAhYwHQYDVR0OBBYEFMoKsqLaHBA3baBx4Vic8dRvssavMB8GA1UdIwQY MBaAFBIIXFQMEU/IlXoCULtJ9IS3Q1e5MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvRWdoY1ZBd1JUOGlWZWdKUXUwbjBoTGREVjdrLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81ZC85Y2Y5ZDQtMmNlOS00MjRiLTljZjAt OGFhNmY2YzE3MGZmLzEveWdxeW90b2NFRGR0b0hIaFdKengxRy15eHE4LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81ZC85Y2Y5ZDQtMmNlOS00MjRiLTljZjAtOGFhNmY2YzE3MGZm LzEvRWdoY1ZBd1JUOGlWZWdKUXUwbjBoTGREVjdrLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMDAGCCsGAQUFBwEHAQH/BCEwHzAMBAIAATAGAwQAwmtzMA8E AgACMAkDBwAqE5/AAAAwDQYJKoZIhvcNAQELBQADggEBACUXDubEwEK4BxuM9TpY iEBhObK6BdhYRW5A2c9UPU0AytbTn1N8Vd89AH8akeZxMieV2rjOeIztVTXiXO+p 8bizxkNOe4Et3uLRKTM8PPq8LkleZmvKS90kFaB/BnEROJGxIwvFG6h26Cqo5IFi NW2bI+VoBswXfKyiU6mJqR/8Zsy2QRjHnHZ0VL3W6AqiXhTYgn8Br5gicAnO8UFt xHdsubUV6fNPM5d6vOgvo7DhHT6x86TQWGITNZye4eq6xwxmv+DK2sriqj1ZDIaz V4JNjcXjat3BTsd3snyJeVZ+cYP5nwW+mhaYUJopg82y+EqJANf03wvtXAQLOvG5 2q8= -----END CERTIFICATE-----Generated at Mon Feb 9 22:27:42 2026 by rpki-client