This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/YGZR7SQxIIHXPUC8fE9TeXEQF6E.roa File: YGZR7SQxIIHXPUC8fE9TeXEQF6E.roa (raw, json) Hash identifier: aLW623zB/H3/BOVjAZZxZrx8V/5ohcmCPpACsB0an+s= Subject key identifier: 60:66:51:ED:24:31:20:81:D7:3D:40:BC:7C:4F:53:79:71:10:17:A1 Certificate issuer: /CN=7da5d32d5b09c93c1b5e3fc5a2aa20d746fcfed1 Certificate serial: 019B797DE67CE7CF67F4F1B4AEB8975F5829 Authority key identifier: 7D:A5:D3:2D:5B:09:C9:3C:1B:5E:3F:C5:A2:AA:20:D7:46:FC:FE:D1 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/faXTLVsJyTwbXj_Foqog10b8_tE.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/YGZR7SQxIIHXPUC8fE9TeXEQF6E.roa Signing time: Thu 01 Jan 2026 12:17:32 +0000 ROA not before: Thu 01 Jan 2026 12:17:32 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 26832 IP address blocks: 86.107.168.0/24 maxlen: 24 185.141.216.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/faXTLVsJyTwbXj_Foqog10b8_tE.crl rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/faXTLVsJyTwbXj_Foqog10b8_tE.mft rsync://rpki.ripe.net/repository/DEFAULT/faXTLVsJyTwbXj_Foqog10b8_tE.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 20 Jan 2026 08:02:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:79:7d:e6:7c:e7:cf:67:f4:f1:b4:ae:b8:97:5f:58:29 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7da5d32d5b09c93c1b5e3fc5a2aa20d746fcfed1 Validity Not Before: Jan 1 12:17:32 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=606651ed24312081d73d40bc7c4f5379711017a1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:93:72:96:ab:c8:79:84:d9:a4:61:c2:b0:a5:42: a9:71:a0:ed:01:68:2a:72:03:9a:50:f0:e0:66:bc: 3e:b7:a2:68:04:3e:1e:18:a3:2f:e4:8e:4d:31:30: 73:14:05:45:64:8a:63:b7:6f:50:28:a9:f8:d3:fa: f2:7d:41:9f:56:bb:4a:56:09:db:a3:61:cd:fc:d0: 61:23:b8:58:c0:5f:96:6c:c8:c6:7d:e7:c3:49:87: dd:d4:08:96:e0:dc:0d:6c:fb:1b:0a:10:b3:54:b7: a5:67:4f:cc:4f:8f:fe:4d:8a:bf:8d:33:2f:ec:3c: 2d:a7:2d:f1:f3:3d:9e:e5:f5:c9:1c:9e:dd:0b:cd: 89:52:35:77:63:04:a4:eb:6f:6e:ac:0b:7d:e1:56: 1a:d8:e8:bb:ae:16:db:56:0f:38:35:25:c0:d2:c7: 09:86:2a:1e:d0:97:d6:ae:85:4f:ae:4b:da:9a:b7: 02:46:65:f7:cf:e2:bc:f3:d2:1a:a0:bc:67:d0:4b: 5a:3a:1c:66:18:06:08:a3:93:5a:ad:0f:fc:dc:01: 10:09:92:cf:8a:b1:00:c7:d5:d2:85:a1:77:8a:cc: 7d:65:24:53:ca:e7:ce:d9:3d:51:5c:cc:91:54:d1: 67:dd:14:14:3e:49:17:7d:47:c9:40:18:40:f9:a0: 6a:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 60:66:51:ED:24:31:20:81:D7:3D:40:BC:7C:4F:53:79:71:10:17:A1 X509v3 Authority Key Identifier: keyid:7D:A5:D3:2D:5B:09:C9:3C:1B:5E:3F:C5:A2:AA:20:D7:46:FC:FE:D1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/faXTLVsJyTwbXj_Foqog10b8_tE.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/YGZR7SQxIIHXPUC8fE9TeXEQF6E.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/faXTLVsJyTwbXj_Foqog10b8_tE.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 86.107.168.0/24 185.141.216.0/24 Signature Algorithm: sha256WithRSAEncryption 78:cb:3d:b3:d8:ab:62:25:20:dc:29:6c:b5:6b:5c:04:eb:22: a0:d3:60:df:76:5c:65:4f:b6:58:64:ab:46:04:07:b1:59:16: 2a:ec:04:08:72:a5:50:19:e1:2e:72:46:6f:4b:7e:a9:d7:e9: f6:3c:84:3b:ae:a7:49:18:3a:62:9b:87:02:1f:21:7d:49:69: 17:fa:1b:61:43:7e:b1:3e:04:85:e5:59:f4:86:22:5d:85:4d: 39:f5:6f:b2:ef:cd:f6:ad:b5:d9:84:d8:15:58:1c:9c:51:20: 21:48:bf:63:7b:ac:8c:a9:98:a1:2a:9a:49:8d:82:ad:85:0e: ad:38:0d:8a:af:f9:8c:ab:25:1d:fb:ff:9b:8f:7d:dd:9d:63: 7d:91:80:20:70:2f:8e:bd:8e:22:75:60:a5:53:96:21:83:82: 7d:b8:9f:99:2e:29:df:07:50:a5:d4:dd:2a:cf:c4:2d:78:57: 94:8f:e2:5d:d3:cf:15:c4:5c:0e:d2:70:91:2a:18:16:9c:3e: 4a:91:0a:5a:dd:a7:7e:2a:7f:78:91:06:9b:d2:37:71:3b:0b: c2:51:75:73:cc:7f:b6:99:89:7f:c4:8a:a6:9d:f9:0e:36:5b: fa:2c:15:80:4a:4e:94:68:57:cd:6f:4a:bd:c7:be:ad:71:ec: c1:93:95:4b -----BEGIN CERTIFICATE----- MIIFAzCCA+ugAwIBAgISAZt5feZ8589n9PG0rriXX1gpMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDdkYTVkMzJkNWIwOWM5M2MxYjVlM2ZjNWEyYWEyMGQ3NDZm Y2ZlZDEwHhcNMjYwMTAxMTIxNzMyWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg2MDY2NTFlZDI0MzEyMDgxZDczZDQwYmM3YzRmNTM3OTcxMTAxN2ExMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAk3KWq8h5hNmkYcKwpUKpcaDtAWgq cgOaUPDgZrw+t6JoBD4eGKMv5I5NMTBzFAVFZIpjt29QKKn40/ryfUGfVrtKVgnb o2HN/NBhI7hYwF+WbMjGfefDSYfd1AiW4NwNbPsbChCzVLelZ0/MT4/+TYq/jTMv 7Dwtpy3x8z2e5fXJHJ7dC82JUjV3YwSk629urAt94VYa2Oi7rhbbVg84NSXA0scJ hioe0JfWroVPrkvamrcCRmX3z+K889IaoLxn0EtaOhxmGAYIo5NarQ/83AEQCZLP irEAx9XShaF3isx9ZSRTyufO2T1RXMyRVNFn3RQUPkkXfUfJQBhA+aBqEQIDAQAB o4ICDzCCAgswHQYDVR0OBBYEFGBmUe0kMSCB1z1AvHxPU3lxEBehMB8GA1UdIwQY MBaAFH2l0y1bCck8G14/xaKqINdG/P7RMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvZmFYVExWc0p5VHdiWGpfRm9xb2cxMGI4X3RFLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82Ni80YjE4ZmItZDNlZC00YjI3LTliZDAt ZTU4MzlmNDNlNTgzLzEvWUdaUjdTUXhJSUhYUFVDOGZFOVRlWEVRRjZFLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC82Ni80YjE4ZmItZDNlZC00YjI3LTliZDAtZTU4MzlmNDNlNTgz LzEvZmFYVExWc0p5VHdiWGpfRm9xb2cxMGI4X3RFLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQAVmuoAwQA uY3YMA0GCSqGSIb3DQEBCwUAA4IBAQB4yz2z2KtiJSDcKWy1a1wE6yKg02Dfdlxl T7ZYZKtGBAexWRYq7AQIcqVQGeEuckZvS36p1+n2PIQ7rqdJGDpim4cCHyF9SWkX +hthQ36xPgSF5Vn0hiJdhU059W+y7832rbXZhNgVWBycUSAhSL9je6yMqZihKppJ jYKthQ6tOA2Kr/mMqyUd+/+bj33dnWN9kYAgcC+OvY4idWClU5Yhg4J9uJ+ZLinf B1Cl1N0qz8QteFeUj+Jd088VxFwO0nCRKhgWnD5KkQpa3ad+Kn94kQab0jdxOwvC UXVzzH+2mYl/xIqmnfkONlv6LBWASk6UaFfNb0q9x76tcezBk5VL -----END CERTIFICATE-----Generated at Mon Jan 19 14:37:25 2026 by rpki-client