This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5f/7142b1-7091-4d3a-bd6d-9fe7ee9c0368/1/yyn2geOIU_--UUnG8pkuvnJsDpQ.roa File: yyn2geOIU_--UUnG8pkuvnJsDpQ.roa (raw, json) Hash identifier: bxmnlrGKd567WF+3ZEEy2gfmdqW2wGXYEodGeY8tXEU= Subject key identifier: CB:29:F6:81:E3:88:53:FF:BE:51:49:C6:F2:99:2E:BE:72:6C:0E:94 Certificate issuer: /CN=84db747b289717a0684cd6ac82307aa67bb2d7bb Certificate serial: 019B76EAAF0B40A97EBE018A97379481478C Authority key identifier: 84:DB:74:7B:28:97:17:A0:68:4C:D6:AC:82:30:7A:A6:7B:B2:D7:BB Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hNt0eyiXF6BoTNasgjB6pnuy17s.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5f/7142b1-7091-4d3a-bd6d-9fe7ee9c0368/1/yyn2geOIU_--UUnG8pkuvnJsDpQ.roa Signing time: Thu 01 Jan 2026 00:17:30 +0000 ROA not before: Thu 01 Jan 2026 00:17:30 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 39729 IP address blocks: 195.110.100.0/23 maxlen: 24 195.110.102.0/23 maxlen: 24 195.110.104.0/23 maxlen: 24 195.110.107.0/24 maxlen: 24 195.110.108.0/22 maxlen: 24 195.110.112.0/24 maxlen: 24 195.110.118.0/23 maxlen: 24 195.110.120.0/23 maxlen: 24 195.110.122.0/23 maxlen: 24 195.110.124.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5f/7142b1-7091-4d3a-bd6d-9fe7ee9c0368/1/hNt0eyiXF6BoTNasgjB6pnuy17s.crl rsync://rpki.ripe.net/repository/DEFAULT/5f/7142b1-7091-4d3a-bd6d-9fe7ee9c0368/1/hNt0eyiXF6BoTNasgjB6pnuy17s.mft rsync://rpki.ripe.net/repository/DEFAULT/hNt0eyiXF6BoTNasgjB6pnuy17s.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 28 Jan 2026 09:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:76:ea:af:0b:40:a9:7e:be:01:8a:97:37:94:81:47:8c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=84db747b289717a0684cd6ac82307aa67bb2d7bb Validity Not Before: Jan 1 00:17:30 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=cb29f681e38853ffbe5149c6f2992ebe726c0e94 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:63:8e:cf:27:87:99:cf:23:d4:7c:8d:dc:d6: d9:5a:dc:c8:c0:ba:8f:74:74:9f:8c:19:a5:98:78: f4:8d:f9:d8:4f:ce:93:b1:84:41:da:e9:44:c8:ca: 28:93:45:7a:11:ac:c0:a3:59:64:4e:49:78:dc:0b: 3d:b0:0a:05:c6:83:cc:93:55:e7:52:03:2f:f9:a1: 81:38:e7:4d:1d:dc:32:bf:7f:60:71:17:97:64:e8: a3:79:cb:e9:7a:65:6d:c0:24:a2:a9:e3:d1:39:67: b9:c4:32:bd:c1:d1:30:ee:9f:68:ad:83:6d:f2:85: 57:49:7b:64:4b:46:4f:ff:ec:7f:ef:5e:d2:b9:45: 94:ec:68:7b:0a:2e:e0:1c:4a:6a:40:e7:4b:e5:65: 77:70:32:34:e2:28:47:b6:3c:b2:37:78:2f:e7:0b: a2:f9:f5:1a:4b:f3:b9:1f:35:47:9e:f5:3b:28:c7: 9d:7f:da:18:e3:9e:e0:6d:5f:a1:04:e4:60:f6:95: 39:19:9b:f0:b5:cb:27:f4:68:a9:0c:79:5d:4b:0e: c7:94:61:62:67:3c:f9:1f:b8:07:a2:71:8b:f5:c2: 70:a3:00:b4:d0:8d:0b:6b:22:04:08:aa:04:ff:e9: 36:63:dd:28:18:ff:68:76:bb:ba:bf:58:97:5b:ac: da:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CB:29:F6:81:E3:88:53:FF:BE:51:49:C6:F2:99:2E:BE:72:6C:0E:94 X509v3 Authority Key Identifier: keyid:84:DB:74:7B:28:97:17:A0:68:4C:D6:AC:82:30:7A:A6:7B:B2:D7:BB X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hNt0eyiXF6BoTNasgjB6pnuy17s.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/7142b1-7091-4d3a-bd6d-9fe7ee9c0368/1/yyn2geOIU_--UUnG8pkuvnJsDpQ.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/7142b1-7091-4d3a-bd6d-9fe7ee9c0368/1/hNt0eyiXF6BoTNasgjB6pnuy17s.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 195.110.100.0-195.110.105.255 195.110.107.0-195.110.112.255 195.110.118.0-195.110.127.255 Signature Algorithm: sha256WithRSAEncryption 3b:58:5b:8e:2e:6d:0c:c8:6d:a2:db:46:14:73:cb:07:bb:d5: 5e:6a:d7:9d:5a:47:03:de:e4:8d:46:7e:43:3c:9b:bd:4e:de: 68:bf:27:14:3a:21:d0:cb:f0:07:48:a3:e3:84:ee:c6:03:da: 1a:1d:fd:5b:46:5c:0f:c7:3d:40:30:e3:f2:fc:76:71:b0:67: 47:02:b5:b1:79:ec:14:00:29:3e:e5:e9:c0:6a:44:92:3d:cd: 6e:55:8f:1e:c8:3c:d2:44:9d:ba:0d:ae:8a:20:ca:55:f0:af: 79:44:ab:d7:91:49:3a:70:00:86:b9:02:53:4f:ef:92:3a:d2: c9:c9:bd:d2:57:ed:29:d1:a9:a3:49:30:78:6a:a9:90:2f:1f: 24:7b:ab:19:99:62:f5:04:bd:1e:c1:bd:1e:e2:a0:96:91:71: 43:4e:7e:60:0a:e4:f1:7d:61:f5:a5:96:27:0b:ae:b3:6e:41: 58:eb:be:27:3c:5a:cb:6c:9f:23:c7:86:56:7d:2e:1c:49:f2: 8d:79:76:c7:63:2d:b6:7c:53:53:a7:73:f7:a0:aa:be:18:f9: 18:c4:07:77:f8:a1:53:88:3d:d8:53:0f:54:9e:d0:17:97:c2: d6:82:31:aa:dd:96:48:a4:49:53:8b:37:c8:2b:58:1d:f2:e3: 1c:d6:bb:68 -----BEGIN CERTIFICATE----- MIIFITCCBAmgAwIBAgISAZt26q8LQKl+vgGKlzeUgUeMMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDg0ZGI3NDdiMjg5NzE3YTA2ODRjZDZhYzgyMzA3YWE2N2Ji MmQ3YmIwHhcNMjYwMTAxMDAxNzMwWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhjYjI5ZjY4MWUzODg1M2ZmYmU1MTQ5YzZmMjk5MmViZTcyNmMwZTk0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqWOOzyeHmc8j1HyN3NbZWtzIwLqP dHSfjBmlmHj0jfnYT86TsYRB2ulEyMook0V6EazAo1lkTkl43As9sAoFxoPMk1Xn UgMv+aGBOOdNHdwyv39gcReXZOijecvpemVtwCSiqePROWe5xDK9wdEw7p9orYNt 8oVXSXtkS0ZP/+x/717SuUWU7Gh7Ci7gHEpqQOdL5WV3cDI04ihHtjyyN3gv5wui +fUaS/O5HzVHnvU7KMedf9oY457gbV+hBORg9pU5GZvwtcsn9GipDHldSw7HlGFi Zzz5H7gHonGL9cJwowC00I0LayIECKoE/+k2Y90oGP9odru6v1iXW6za2wIDAQAB o4ICLTCCAikwHQYDVR0OBBYEFMsp9oHjiFP/vlFJxvKZLr5ybA6UMB8GA1UdIwQY MBaAFITbdHsolxegaEzWrIIweqZ7ste7MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvaE50MGV5aVhGNkJvVE5hc2dqQjZwbnV5MTdzLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81Zi83MTQyYjEtNzA5MS00ZDNhLWJkNmQt OWZlN2VlOWMwMzY4LzEveXluMmdlT0lVXy0tVVVuRzhwa3V2bkpzRHBRLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81Zi83MTQyYjEtNzA5MS00ZDNhLWJkNmQtOWZlN2VlOWMwMzY4 LzEvaE50MGV5aVhGNkJvVE5hc2dqQjZwbnV5MTdzLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMEMGCCsGAQUFBwEHAQH/BDQwMjAwBAIAATAqMAwDBALDbmQD BAHDbmgwDAMEAMNuawMEAMNucDAMAwQBw252AwQHw24AMA0GCSqGSIb3DQEBCwUA A4IBAQA7WFuOLm0MyG2i20YUc8sHu9VeatedWkcD3uSNRn5DPJu9Tt5ovycUOiHQ y/AHSKPjhO7GA9oaHf1bRlwPxz1AMOPy/HZxsGdHArWxeewUACk+5enAakSSPc1u VY8eyDzSRJ26Da6KIMpV8K95RKvXkUk6cACGuQJTT++SOtLJyb3SV+0p0amjSTB4 aqmQLx8ke6sZmWL1BL0ewb0e4qCWkXFDTn5gCuTxfWH1pZYnC66zbkFY674nPFrL bJ8jx4ZWfS4cSfKNeXbHYy22fFNTp3P3oKq+GPkYxAd3+KFTiD3YUw9UntAXl8LW gjGq3ZZIpElTizfIK1gd8uMc1rto -----END CERTIFICATE-----Generated at Tue Jan 27 17:53:24 2026 by rpki-client