This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5f/b744b8-f39d-495b-b217-35508041652d/1/YnEzVxxydocNJgTIMFRXPna0zB4.roa File: YnEzVxxydocNJgTIMFRXPna0zB4.roa (raw, json) Hash identifier: ZgavJWzGoXn3e/0BfVR/irboVRcmVNTc0rTuF6DBaG8= Subject key identifier: 62:71:33:57:1C:72:76:87:0D:26:04:C8:30:54:57:3E:76:B4:CC:1E Certificate issuer: /CN=67499595a65aab0b53768def08091e31061e9e65 Certificate serial: 019B7EA6983B7E387044AB9BB3B330433AD8 Authority key identifier: 67:49:95:95:A6:5A:AB:0B:53:76:8D:EF:08:09:1E:31:06:1E:9E:65 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Z0mVlaZaqwtTdo3vCAkeMQYenmU.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5f/b744b8-f39d-495b-b217-35508041652d/1/YnEzVxxydocNJgTIMFRXPna0zB4.roa Signing time: Fri 02 Jan 2026 12:20:05 +0000 ROA not before: Fri 02 Jan 2026 12:20:05 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 59989 IP address blocks: 185.100.171.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5f/b744b8-f39d-495b-b217-35508041652d/1/Z0mVlaZaqwtTdo3vCAkeMQYenmU.crl rsync://rpki.ripe.net/repository/DEFAULT/5f/b744b8-f39d-495b-b217-35508041652d/1/Z0mVlaZaqwtTdo3vCAkeMQYenmU.mft rsync://rpki.ripe.net/repository/DEFAULT/Z0mVlaZaqwtTdo3vCAkeMQYenmU.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 22 Jan 2026 07:01:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7e:a6:98:3b:7e:38:70:44:ab:9b:b3:b3:30:43:3a:d8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=67499595a65aab0b53768def08091e31061e9e65 Validity Not Before: Jan 2 12:20:05 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=627133571c7276870d2604c83054573e76b4cc1e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:6c:ca:5e:38:17:04:d8:c3:68:56:23:fa:d6: da:7e:4c:2d:c9:13:3b:25:a5:37:68:37:7b:d0:1f: 62:58:80:28:9c:74:50:ca:07:e6:dc:d0:48:12:2e: 94:15:ed:63:3e:a6:3a:fb:75:14:bc:57:a6:cb:da: 96:36:82:8a:dc:17:3c:e2:ff:74:b4:9a:c3:44:27: 85:34:60:62:b5:e1:11:3b:6f:f1:22:3a:33:97:1e: 2d:4d:3c:d0:50:4f:88:1f:e7:eb:6a:57:70:77:a4: f4:76:ac:dc:5c:d0:cf:3d:44:22:5a:1d:8a:3e:67: 1c:5c:ce:a9:b7:01:4a:d7:1b:e9:d2:4c:3a:3a:f3: e1:77:25:ea:de:7d:dc:28:14:43:d4:4a:8c:1c:9f: c4:3b:db:ff:b9:a5:33:2c:9f:c3:0e:74:d1:44:60: 69:49:dd:6e:13:4d:6c:65:75:3e:c8:92:85:28:60: f2:68:fe:7b:c4:f6:0d:f4:f6:cb:82:5a:49:21:1f: 45:07:8f:96:3b:ef:ca:02:0d:6e:58:f4:d7:30:a4: 26:71:44:b1:0c:16:85:3e:90:23:20:38:41:2e:1e: 8a:30:20:e7:f2:2a:ee:68:a1:5a:d7:69:38:0b:e9: f2:29:67:4c:a8:96:7a:a6:20:0d:3b:88:28:3f:0e: ca:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 62:71:33:57:1C:72:76:87:0D:26:04:C8:30:54:57:3E:76:B4:CC:1E X509v3 Authority Key Identifier: keyid:67:49:95:95:A6:5A:AB:0B:53:76:8D:EF:08:09:1E:31:06:1E:9E:65 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Z0mVlaZaqwtTdo3vCAkeMQYenmU.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/b744b8-f39d-495b-b217-35508041652d/1/YnEzVxxydocNJgTIMFRXPna0zB4.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/b744b8-f39d-495b-b217-35508041652d/1/Z0mVlaZaqwtTdo3vCAkeMQYenmU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.100.171.0/24 Signature Algorithm: sha256WithRSAEncryption 4b:1d:6b:f9:e2:69:fa:a6:4d:cb:ee:4a:09:11:19:e9:94:96: 84:4e:64:85:74:75:61:23:22:c7:e8:36:35:4e:2f:6e:34:d8: bc:91:77:b4:29:3b:b0:1c:ba:33:17:88:e1:98:b0:8b:a3:4a: bf:6d:ce:41:d1:19:11:1f:17:0a:ba:ff:4f:78:eb:b9:42:b1: e2:bf:ec:a7:62:f8:0e:ee:66:85:cc:87:34:46:62:65:14:c6: 6d:e5:42:3a:7b:c0:09:a5:95:22:a2:29:69:7d:91:2b:3a:81: e4:d6:24:15:76:32:cd:11:0f:b7:fc:ae:64:47:c8:f9:1b:bf: 18:ba:c5:7b:f9:11:07:c3:df:c1:97:45:84:68:3e:0e:43:5f: f3:23:0e:17:ce:ae:d3:06:ab:c1:76:ab:b0:a1:c5:ee:1a:5b: 5f:e8:50:d4:fa:8f:49:4f:be:78:97:18:2f:1c:2d:1b:29:01: 52:a2:01:cc:65:6b:4e:f3:67:17:3d:ac:b0:dc:e5:3c:2d:a0: 03:e9:9f:49:63:e8:98:8c:2d:db:97:78:b8:65:1d:01:3f:f3: 81:3a:5a:04:c5:fb:c1:a9:02:95:2c:26:5e:f4:4f:89:39:6e: c8:36:de:91:a2:99:ce:73:7f:4e:9c:ff:68:a7:11:2d:aa:ef: 60:8a:ce:f3 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt+ppg7fjhwRKubs7MwQzrYMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDY3NDk5NTk1YTY1YWFiMGI1Mzc2OGRlZjA4MDkxZTMxMDYx ZTllNjUwHhcNMjYwMTAyMTIyMDA1WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg2MjcxMzM1NzFjNzI3Njg3MGQyNjA0YzgzMDU0NTczZTc2YjRjYzFlMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtWzKXjgXBNjDaFYj+tbafkwtyRM7 JaU3aDd70B9iWIAonHRQygfm3NBIEi6UFe1jPqY6+3UUvFemy9qWNoKK3Bc84v90 tJrDRCeFNGBiteERO2/xIjozlx4tTTzQUE+IH+fraldwd6T0dqzcXNDPPUQiWh2K PmccXM6ptwFK1xvp0kw6OvPhdyXq3n3cKBRD1EqMHJ/EO9v/uaUzLJ/DDnTRRGBp Sd1uE01sZXU+yJKFKGDyaP57xPYN9PbLglpJIR9FB4+WO+/KAg1uWPTXMKQmcUSx DBaFPpAjIDhBLh6KMCDn8iruaKFa12k4C+nyKWdMqJZ6piANO4goPw7KJQIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFGJxM1cccnaHDSYEyDBUVz52tMweMB8GA1UdIwQY MBaAFGdJlZWmWqsLU3aN7wgJHjEGHp5lMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvWjBtVmxhWmFxd3RUZG8zdkNBa2VNUVllbm1VLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81Zi9iNzQ0YjgtZjM5ZC00OTViLWIyMTct MzU1MDgwNDE2NTJkLzEvWW5FelZ4eHlkb2NOSmdUSU1GUlhQbmEwekI0LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81Zi9iNzQ0YjgtZjM5ZC00OTViLWIyMTctMzU1MDgwNDE2NTJk LzEvWjBtVmxhWmFxd3RUZG8zdkNBa2VNUVllbm1VLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAuWSrMA0G CSqGSIb3DQEBCwUAA4IBAQBLHWv54mn6pk3L7koJERnplJaETmSFdHVhIyLH6DY1 Ti9uNNi8kXe0KTuwHLozF4jhmLCLo0q/bc5B0RkRHxcKuv9PeOu5QrHiv+ynYvgO 7maFzIc0RmJlFMZt5UI6e8AJpZUioilpfZErOoHk1iQVdjLNEQ+3/K5kR8j5G78Y usV7+REHw9/Bl0WEaD4OQ1/zIw4Xzq7TBqvBdquwocXuGltf6FDU+o9JT754lxgv HC0bKQFSogHMZWtO82cXPayw3OU8LaAD6Z9JY+iYjC3bl3i4ZR0BP/OBOloExfvB qQKVLCZe9E+JOW7INt6RopnOc39OnP9opxEtqu9gis7z -----END CERTIFICATE-----Generated at Wed Jan 21 14:14:49 2026 by rpki-client