This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/69/e61caa-2500-4388-a9fa-7324913975d5/1/ycbxLoTJEDsv40EPKCzklrp5vCU.roa File: ycbxLoTJEDsv40EPKCzklrp5vCU.roa (raw, json) Hash identifier: ik9FtWC2uSrCFeO2vECTjX7gm9PiFa3XhpXGDwO8G94= Subject key identifier: C9:C6:F1:2E:84:C9:10:3B:2F:E3:41:0F:28:2C:E4:96:BA:79:BC:25 Certificate issuer: /CN=3ee6cecffd9b8bba18d474e7b3993e0a1d14dbb3 Certificate serial: 019B7BA40163AA621488E8D46BDC8CB977A6 Authority key identifier: 3E:E6:CE:CF:FD:9B:8B:BA:18:D4:74:E7:B3:99:3E:0A:1D:14:DB:B3 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PubOz_2bi7oY1HTns5k-Ch0U27M.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/69/e61caa-2500-4388-a9fa-7324913975d5/1/ycbxLoTJEDsv40EPKCzklrp5vCU.roa Signing time: Thu 01 Jan 2026 22:18:24 +0000 ROA not before: Thu 01 Jan 2026 22:18:24 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 59453 IP address blocks: 194.246.0.0/22 maxlen: 22 194.246.21.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/69/e61caa-2500-4388-a9fa-7324913975d5/1/PubOz_2bi7oY1HTns5k-Ch0U27M.crl rsync://rpki.ripe.net/repository/DEFAULT/69/e61caa-2500-4388-a9fa-7324913975d5/1/PubOz_2bi7oY1HTns5k-Ch0U27M.mft rsync://rpki.ripe.net/repository/DEFAULT/PubOz_2bi7oY1HTns5k-Ch0U27M.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 27 Jan 2026 15:35:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7b:a4:01:63:aa:62:14:88:e8:d4:6b:dc:8c:b9:77:a6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3ee6cecffd9b8bba18d474e7b3993e0a1d14dbb3 Validity Not Before: Jan 1 22:18:24 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=c9c6f12e84c9103b2fe3410f282ce496ba79bc25 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:25:6f:a3:bd:38:d0:07:cd:68:f2:3b:6b:31: e9:2e:1e:1b:79:d1:26:2e:2c:df:d8:6b:58:52:9c: 4f:91:01:8a:32:60:97:25:0d:5a:10:30:28:1b:0b: 0c:a7:ab:68:a9:4d:95:d0:3a:8e:70:37:8e:1f:5b: 99:10:4f:f9:96:5d:08:8d:9c:96:64:44:77:24:b5: 33:23:65:80:90:e9:21:11:9b:91:c7:e1:91:ec:f6: 43:de:dd:b9:8b:52:9d:4e:ee:e3:2d:ae:45:aa:e1: 36:eb:3c:71:e6:58:3b:17:5c:0f:e8:f4:51:d2:9d: 88:9e:f6:08:14:bf:84:2a:21:9e:be:ec:96:e1:ac: cd:fa:5a:bb:9f:a6:94:07:fd:e8:41:fa:28:39:40: 87:02:96:f6:d6:8b:9d:40:6a:45:37:3d:2c:6c:ec: c9:73:6f:e6:1d:56:84:8c:f1:d1:8b:6d:cc:dd:83: 12:f1:d7:63:d6:10:e3:ac:62:ae:5d:a8:ad:25:61: 47:d1:5b:66:2d:ef:cc:86:27:b3:e8:17:31:a3:0f: 62:d8:22:2b:03:84:f4:16:77:9c:21:b2:37:c4:db: d1:ff:52:ac:a6:32:3d:b1:f8:c0:83:98:5d:28:ce: a7:76:34:83:69:53:4f:b7:bb:34:4b:5b:84:10:90: 0b:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C9:C6:F1:2E:84:C9:10:3B:2F:E3:41:0F:28:2C:E4:96:BA:79:BC:25 X509v3 Authority Key Identifier: keyid:3E:E6:CE:CF:FD:9B:8B:BA:18:D4:74:E7:B3:99:3E:0A:1D:14:DB:B3 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PubOz_2bi7oY1HTns5k-Ch0U27M.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/69/e61caa-2500-4388-a9fa-7324913975d5/1/ycbxLoTJEDsv40EPKCzklrp5vCU.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/69/e61caa-2500-4388-a9fa-7324913975d5/1/PubOz_2bi7oY1HTns5k-Ch0U27M.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 194.246.0.0/22 194.246.21.0/24 Signature Algorithm: sha256WithRSAEncryption d1:b9:ee:14:03:d8:42:41:5c:e6:90:9b:62:43:aa:04:e4:65: fe:75:87:a0:1b:99:5c:99:23:9f:e3:1b:cd:5e:0d:7b:2f:a9: 89:fe:25:52:d1:b8:12:c9:0d:aa:8e:b0:00:0b:6f:4e:be:01: 02:54:ed:e4:21:aa:e6:60:4f:25:84:aa:e8:af:8f:91:03:8e: a5:86:39:72:73:63:4d:bb:6a:62:80:ee:20:36:53:44:3c:b3: db:c9:74:86:63:f4:90:2d:79:8a:99:28:57:df:1f:b3:c3:f9: 82:f9:9c:0d:d7:4c:59:11:aa:a0:be:7c:00:a9:29:ea:e6:16: 91:92:ed:36:c5:06:0a:e6:9b:69:47:18:87:d7:44:34:32:47: b3:46:af:b3:e1:e5:0c:d6:8f:ee:40:14:f5:78:1f:66:5f:cc: 1e:cd:4b:e9:75:24:11:5f:94:7c:1f:d8:71:2a:4f:e1:c5:bc: 12:a0:74:05:ac:06:d3:20:2f:c4:4b:1c:1e:68:73:79:3e:20: 28:90:bd:9d:c5:d5:e2:5c:f6:55:4e:ba:a2:c3:da:4e:c1:c2: 9d:1c:b2:df:03:78:5f:e5:40:95:2a:5c:e5:f6:28:c2:a3:83: 12:5d:3c:76:b1:a0:d4:59:3e:b1:3d:fd:a9:b8:ca:f6:8e:0a: 22:20:7b:75 -----BEGIN CERTIFICATE----- MIIFAzCCA+ugAwIBAgISAZt7pAFjqmIUiOjUa9yMuXemMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDNlZTZjZWNmZmQ5YjhiYmExOGQ0NzRlN2IzOTkzZTBhMWQx NGRiYjMwHhcNMjYwMTAxMjIxODI0WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhjOWM2ZjEyZTg0YzkxMDNiMmZlMzQxMGYyODJjZTQ5NmJhNzliYzI1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAoiVvo7040AfNaPI7azHpLh4bedEm Lizf2GtYUpxPkQGKMmCXJQ1aEDAoGwsMp6toqU2V0DqOcDeOH1uZEE/5ll0IjZyW ZER3JLUzI2WAkOkhEZuRx+GR7PZD3t25i1KdTu7jLa5FquE26zxx5lg7F1wP6PRR 0p2InvYIFL+EKiGevuyW4azN+lq7n6aUB/3oQfooOUCHApb21oudQGpFNz0sbOzJ c2/mHVaEjPHRi23M3YMS8ddj1hDjrGKuXaitJWFH0VtmLe/Mhiez6Bcxow9i2CIr A4T0FnecIbI3xNvR/1KspjI9sfjAg5hdKM6ndjSDaVNPt7s0S1uEEJALUwIDAQAB o4ICDzCCAgswHQYDVR0OBBYEFMnG8S6EyRA7L+NBDygs5Ja6ebwlMB8GA1UdIwQY MBaAFD7mzs/9m4u6GNR057OZPgodFNuzMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvUHViT3pfMmJpN29ZMUhUbnM1ay1DaDBVMjdNLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82OS9lNjFjYWEtMjUwMC00Mzg4LWE5ZmEt NzMyNDkxMzk3NWQ1LzEveWNieExvVEpFRHN2NDBFUEtDemtscnA1dkNVLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC82OS9lNjFjYWEtMjUwMC00Mzg4LWE5ZmEtNzMyNDkxMzk3NWQ1 LzEvUHViT3pfMmJpN29ZMUhUbnM1ay1DaDBVMjdNLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQCwvYAAwQA wvYVMA0GCSqGSIb3DQEBCwUAA4IBAQDRue4UA9hCQVzmkJtiQ6oE5GX+dYegG5lc mSOf4xvNXg17L6mJ/iVS0bgSyQ2qjrAAC29OvgECVO3kIarmYE8lhKror4+RA46l hjlyc2NNu2pigO4gNlNEPLPbyXSGY/SQLXmKmShX3x+zw/mC+ZwN10xZEaqgvnwA qSnq5haRku02xQYK5ptpRxiH10Q0MkezRq+z4eUM1o/uQBT1eB9mX8wezUvpdSQR X5R8H9hxKk/hxbwSoHQFrAbTIC/ESxweaHN5PiAokL2dxdXiXPZVTrqiw9pOwcKd HLLfA3hf5UCVKlzl9ijCo4MSXTx2saDUWT6xPf2puMr2jgoiIHt1 -----END CERTIFICATE-----Generated at Tue Jan 27 00:31:15 2026 by rpki-client