This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/68/12dd2c-4d0c-420a-98a5-02e6422c4181/1/yHQ1YLiN5hY_gbv8gILFuVBIS7Q.roa File: yHQ1YLiN5hY_gbv8gILFuVBIS7Q.roa (raw, json) Hash identifier: gmCFySCBwmCnbmTNmPpd7gcPgHDTKx/9z23Y4aCqihk= Subject key identifier: C8:74:35:60:B8:8D:E6:16:3F:81:BB:FC:80:82:C5:B9:50:48:4B:B4 Certificate issuer: /CN=c032495b89dce81b0c7f886ddfc3604bde06d8a6 Certificate serial: 019B7C7F41BFE01557471A8E7AAFAE18E0EA Authority key identifier: C0:32:49:5B:89:DC:E8:1B:0C:7F:88:6D:DF:C3:60:4B:DE:06:D8:A6 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/wDJJW4nc6BsMf4ht38NgS94G2KY.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/68/12dd2c-4d0c-420a-98a5-02e6422c4181/1/yHQ1YLiN5hY_gbv8gILFuVBIS7Q.roa Signing time: Fri 02 Jan 2026 02:17:53 +0000 ROA not before: Fri 02 Jan 2026 02:17:53 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 41785 IP address blocks: 193.161.140.0/24 maxlen: 24 2a0c:9f40::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/68/12dd2c-4d0c-420a-98a5-02e6422c4181/1/wDJJW4nc6BsMf4ht38NgS94G2KY.crl rsync://rpki.ripe.net/repository/DEFAULT/68/12dd2c-4d0c-420a-98a5-02e6422c4181/1/wDJJW4nc6BsMf4ht38NgS94G2KY.mft rsync://rpki.ripe.net/repository/DEFAULT/wDJJW4nc6BsMf4ht38NgS94G2KY.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7c:7f:41:bf:e0:15:57:47:1a:8e:7a:af:ae:18:e0:ea Signature Algorithm: sha256WithRSAEncryption Issuer: CN=c032495b89dce81b0c7f886ddfc3604bde06d8a6 Validity Not Before: Jan 2 02:17:53 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=c8743560b88de6163f81bbfc8082c5b950484bb4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:7b:bc:ae:20:37:da:e1:c1:6f:06:70:16:3e: 05:16:e5:2e:58:89:83:ca:e4:ec:31:1e:4f:29:00: 6d:06:88:e8:65:bf:b8:a7:a0:24:3c:25:85:b5:59: 3e:d7:21:ff:42:8a:71:8e:89:e8:a2:7a:f6:d0:3c: 11:1d:ac:8f:a0:46:72:0e:fd:f5:5d:59:b7:58:83: 61:0e:54:f5:26:ee:17:d0:03:1d:7f:c9:e7:4a:7e: 9e:48:a2:04:0f:2f:15:15:c7:07:49:7c:41:38:5e: 1a:c6:7b:e2:0e:29:f9:3b:b7:49:77:58:16:0d:9c: 02:62:cc:d0:e5:fc:bc:85:85:d3:cf:a9:8b:c1:b2: 48:fe:7d:6f:9e:32:9b:2f:49:81:d6:ae:38:fb:a3: 2c:47:5d:99:f8:1a:cd:39:b5:d8:60:a3:53:b3:c6: 04:dc:72:63:cf:0d:00:f1:f4:88:63:1d:6c:67:78: 83:9c:37:6f:69:c7:e5:4a:6f:9d:9e:bc:aa:d6:7f: f0:20:d4:31:6b:cf:c0:b4:16:0c:3b:8b:b4:08:41: 6c:79:09:1e:2c:5b:af:08:12:79:8e:e9:f2:c3:df: e0:85:c4:dd:32:e0:1d:13:bb:36:42:0d:8b:96:15: 73:66:01:22:11:8e:43:c5:03:db:86:38:a3:4c:dd: b2:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C8:74:35:60:B8:8D:E6:16:3F:81:BB:FC:80:82:C5:B9:50:48:4B:B4 X509v3 Authority Key Identifier: keyid:C0:32:49:5B:89:DC:E8:1B:0C:7F:88:6D:DF:C3:60:4B:DE:06:D8:A6 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/wDJJW4nc6BsMf4ht38NgS94G2KY.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/68/12dd2c-4d0c-420a-98a5-02e6422c4181/1/yHQ1YLiN5hY_gbv8gILFuVBIS7Q.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/68/12dd2c-4d0c-420a-98a5-02e6422c4181/1/wDJJW4nc6BsMf4ht38NgS94G2KY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 193.161.140.0/24 IPv6: 2a0c:9f40::/32 Signature Algorithm: sha256WithRSAEncryption 29:c9:93:c9:b1:9d:57:d0:63:5a:e9:73:28:ba:51:ba:dd:99: 9d:35:56:a5:6a:14:3f:45:7e:59:68:bb:e8:75:a3:e3:b3:6b: 31:70:3e:11:81:a3:9f:38:89:3f:d4:89:57:bd:c8:d9:7e:12: 24:a5:57:64:6c:74:7f:25:ea:d8:87:23:9c:ad:39:40:85:62: 87:d5:98:e3:5c:27:9f:9a:c2:85:11:45:25:c1:d0:a0:07:f5: 69:b0:72:b0:d0:43:c8:d0:e1:2e:96:c2:e7:0f:af:fc:9f:1f: db:8a:ff:87:ce:27:c0:86:0d:1a:7f:e4:c9:42:06:4b:70:7f: 8c:7f:fa:bc:e9:c3:59:9b:62:6f:ef:09:10:91:c6:6f:71:02: 62:ae:90:23:c6:4d:e3:6f:0e:3b:ea:60:d0:ba:4b:49:3a:68: a3:8d:7c:59:32:31:e8:ad:c9:30:a6:e7:ed:8d:01:4c:f1:eb: 6b:d0:a9:27:f5:2c:25:de:52:5d:47:f4:2b:8f:8a:c8:49:f8: 27:97:ba:99:e6:c3:25:2b:78:6d:94:bd:a7:c4:10:15:e0:7d: 96:23:05:a4:27:e5:af:6c:36:97:e6:a7:1d:a2:a8:c1:9c:0c: 13:22:0d:fd:e7:8e:58:54:8a:95:42:cb:bc:04:e1:01:6a:07: cc:19:e4:98 -----BEGIN CERTIFICATE----- MIIFDDCCA/SgAwIBAgISAZt8f0G/4BVXRxqOeq+uGODqMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGMwMzI0OTViODlkY2U4MWIwYzdmODg2ZGRmYzM2MDRiZGUw NmQ4YTYwHhcNMjYwMTAyMDIxNzUzWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhjODc0MzU2MGI4OGRlNjE2M2Y4MWJiZmM4MDgyYzViOTUwNDg0YmI0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAv3u8riA32uHBbwZwFj4FFuUuWImD yuTsMR5PKQBtBojoZb+4p6AkPCWFtVk+1yH/Qopxjonoonr20DwRHayPoEZyDv31 XVm3WINhDlT1Ju4X0AMdf8nnSn6eSKIEDy8VFccHSXxBOF4axnviDin5O7dJd1gW DZwCYszQ5fy8hYXTz6mLwbJI/n1vnjKbL0mB1q44+6MsR12Z+BrNObXYYKNTs8YE 3HJjzw0A8fSIYx1sZ3iDnDdvacflSm+dnryq1n/wINQxa8/AtBYMO4u0CEFseQke LFuvCBJ5junyw9/ghcTdMuAdE7s2Qg2LlhVzZgEiEY5DxQPbhjijTN2yZwIDAQAB o4ICGDCCAhQwHQYDVR0OBBYEFMh0NWC4jeYWP4G7/ICCxblQSEu0MB8GA1UdIwQY MBaAFMAySVuJ3OgbDH+Ibd/DYEveBtimMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvd0RKSlc0bmM2QnNNZjRodDM4TmdTOTRHMktZLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82OC8xMmRkMmMtNGQwYy00MjBhLTk4YTUt MDJlNjQyMmM0MTgxLzEveUhRMVlMaU41aFlfZ2J2OGdJTEZ1VkJJUzdRLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC82OC8xMmRkMmMtNGQwYy00MjBhLTk4YTUtMDJlNjQyMmM0MTgx LzEvd0RKSlc0bmM2QnNNZjRodDM4TmdTOTRHMktZLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMC4GCCsGAQUFBwEHAQH/BB8wHTAMBAIAATAGAwQAwaGMMA0E AgACMAcDBQAqDJ9AMA0GCSqGSIb3DQEBCwUAA4IBAQApyZPJsZ1X0GNa6XMoulG6 3ZmdNValahQ/RX5ZaLvodaPjs2sxcD4RgaOfOIk/1IlXvcjZfhIkpVdkbHR/JerY hyOcrTlAhWKH1ZjjXCefmsKFEUUlwdCgB/VpsHKw0EPI0OEulsLnD6/8nx/biv+H zifAhg0af+TJQgZLcH+Mf/q86cNZm2Jv7wkQkcZvcQJirpAjxk3jbw476mDQuktJ OmijjXxZMjHorckwpuftjQFM8etr0Kkn9Swl3lJdR/Qrj4rISfgnl7qZ5sMlK3ht lL2nxBAV4H2WIwWkJ+WvbDaX5qcdoqjBnAwTIg39545YVIqVQsu8BOEBagfMGeSY -----END CERTIFICATE-----Generated at Mon Feb 9 22:37:06 2026 by rpki-client