This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6b/33d5d1-c450-413b-afe4-45935f506a12/1/YNCY28lNYjHvkl_yDwUEIuULR7k.roa File: YNCY28lNYjHvkl_yDwUEIuULR7k.roa (raw, json) Hash identifier: 0Z4JJ6Va7VSftDM6XANJxNgpDE0KFbRLLCKFouORFro= Subject key identifier: 60:D0:98:DB:C9:4D:62:31:EF:92:5F:F2:0F:05:04:22:E5:0B:47:B9 Certificate issuer: /CN=3af09ba33b5ae581b0d29323249314f76aa10511 Certificate serial: 019B7C8003ADE3F4AA034F53EC9896D5BF0D Authority key identifier: 3A:F0:9B:A3:3B:5A:E5:81:B0:D2:93:23:24:93:14:F7:6A:A1:05:11 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OvCbozta5YGw0pMjJJMU92qhBRE.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6b/33d5d1-c450-413b-afe4-45935f506a12/1/YNCY28lNYjHvkl_yDwUEIuULR7k.roa Signing time: Fri 02 Jan 2026 02:18:42 +0000 ROA not before: Fri 02 Jan 2026 02:18:42 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 6453 IP address blocks: 81.255.178.0/24 maxlen: 24 90.115.208.0/24 maxlen: 24 90.115.209.0/24 maxlen: 24 194.2.56.0/24 maxlen: 24 194.2.57.0/24 maxlen: 24 194.2.86.0/24 maxlen: 24 194.3.4.0/24 maxlen: 24 194.250.98.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/6b/33d5d1-c450-413b-afe4-45935f506a12/1/OvCbozta5YGw0pMjJJMU92qhBRE.crl rsync://rpki.ripe.net/repository/DEFAULT/6b/33d5d1-c450-413b-afe4-45935f506a12/1/OvCbozta5YGw0pMjJJMU92qhBRE.mft rsync://rpki.ripe.net/repository/DEFAULT/OvCbozta5YGw0pMjJJMU92qhBRE.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 22 Jan 2026 06:01:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7c:80:03:ad:e3:f4:aa:03:4f:53:ec:98:96:d5:bf:0d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3af09ba33b5ae581b0d29323249314f76aa10511 Validity Not Before: Jan 2 02:18:42 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=60d098dbc94d6231ef925ff20f050422e50b47b9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:2c:38:6b:ef:52:83:93:7f:e4:d5:c9:1c:03: 1f:ed:24:ef:c0:3c:9d:02:67:c8:4e:43:a7:0e:05: f2:6e:2f:5c:bc:fb:84:0b:fc:bb:f9:30:c8:dd:04: bf:75:0c:2a:3e:c0:5b:15:41:e2:7b:50:e8:21:48: 60:68:05:77:53:fc:09:0e:9f:fe:be:76:e6:9e:2f: 76:24:44:5b:eb:80:c6:f2:70:cf:1f:b7:b8:86:bf: 3f:18:e8:31:ae:dc:46:14:19:36:6c:ae:af:82:fb: 5f:ad:78:cf:f0:29:9c:f8:3c:b4:7a:45:74:e9:90: 3d:8f:ff:d5:59:eb:46:64:19:56:3e:29:ee:2b:83: 83:45:e3:3b:d7:0d:75:53:87:bc:5d:6b:79:2f:5d: 6c:53:88:93:cf:c8:dc:53:48:32:6c:7b:49:c0:4b: 23:b3:e6:bb:ca:9b:99:d2:b5:84:55:e4:6e:8a:0d: 7d:c1:95:fe:ca:98:74:0d:63:09:d2:55:19:cf:b7: 6a:bb:47:07:e9:f3:60:09:00:fc:c0:57:ba:35:48: 03:95:e7:f3:31:e0:3b:b6:ea:00:1a:1c:78:b9:a0: e1:fc:43:48:35:bd:24:87:a3:12:f6:a0:53:41:a2: 17:df:55:98:be:9b:ac:fb:c0:57:55:a7:45:79:5f: 73:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 60:D0:98:DB:C9:4D:62:31:EF:92:5F:F2:0F:05:04:22:E5:0B:47:B9 X509v3 Authority Key Identifier: keyid:3A:F0:9B:A3:3B:5A:E5:81:B0:D2:93:23:24:93:14:F7:6A:A1:05:11 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OvCbozta5YGw0pMjJJMU92qhBRE.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6b/33d5d1-c450-413b-afe4-45935f506a12/1/YNCY28lNYjHvkl_yDwUEIuULR7k.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/6b/33d5d1-c450-413b-afe4-45935f506a12/1/OvCbozta5YGw0pMjJJMU92qhBRE.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 81.255.178.0/24 90.115.208.0/23 194.2.56.0/23 194.2.86.0/24 194.3.4.0/24 194.250.98.0/24 Signature Algorithm: sha256WithRSAEncryption 8a:01:1b:71:be:2f:af:a8:d8:f3:92:31:02:b8:ee:a0:63:40: d9:c9:23:df:af:d1:20:19:ec:dd:10:28:33:1c:65:e9:4e:41: bb:b6:38:a5:2a:61:63:07:52:6e:52:12:1d:f9:67:a9:3e:6d: 39:5d:93:f0:3c:7b:f1:79:1f:24:5d:2b:bb:c8:42:a2:d3:3c: f8:cc:a4:65:86:16:d7:3a:a6:69:26:b4:43:d7:f2:f3:e3:ad: 77:8a:d5:4a:48:92:a9:8b:5d:46:14:be:eb:d5:64:77:81:57: cd:18:e5:ac:a5:ff:4a:ff:d5:e2:17:90:82:5a:b8:1a:b5:22: c6:bb:e3:6f:cb:53:a5:de:41:b7:cd:3c:0e:b0:5b:98:6a:d0: 06:c0:43:75:ca:89:16:c1:6b:fd:9e:4c:b2:0c:9d:f8:0a:9d: aa:02:95:d0:5d:80:38:2c:7c:dd:42:ec:74:6a:f3:d8:c0:f1: 78:69:03:67:61:6d:8c:70:47:28:41:7d:2b:06:77:66:d8:0d: cd:23:1e:3d:7f:34:cf:08:15:9b:ad:93:5e:8c:5e:b1:9c:e7: 72:64:11:73:f6:74:47:6a:d9:30:ed:b2:8a:ec:3b:dd:32:bf: d6:8b:96:03:0a:8b:a7:28:37:f8:85:d8:b3:96:4a:22:b0:7c: 13:90:f6:d4 -----BEGIN CERTIFICATE----- MIIFGzCCBAOgAwIBAgISAZt8gAOt4/SqA09T7JiW1b8NMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDNhZjA5YmEzM2I1YWU1ODFiMGQyOTMyMzI0OTMxNGY3NmFh MTA1MTEwHhcNMjYwMTAyMDIxODQyWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg2MGQwOThkYmM5NGQ2MjMxZWY5MjVmZjIwZjA1MDQyMmU1MGI0N2I5MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuSw4a+9Sg5N/5NXJHAMf7STvwDyd AmfITkOnDgXybi9cvPuEC/y7+TDI3QS/dQwqPsBbFUHie1DoIUhgaAV3U/wJDp/+ vnbmni92JERb64DG8nDPH7e4hr8/GOgxrtxGFBk2bK6vgvtfrXjP8Cmc+Dy0ekV0 6ZA9j//VWetGZBlWPinuK4ODReM71w11U4e8XWt5L11sU4iTz8jcU0gybHtJwEsj s+a7ypuZ0rWEVeRuig19wZX+yph0DWMJ0lUZz7dqu0cH6fNgCQD8wFe6NUgDlefz MeA7tuoAGhx4uaDh/ENINb0kh6MS9qBTQaIX31WYvpus+8BXVadFeV9z5wIDAQAB o4ICJzCCAiMwHQYDVR0OBBYEFGDQmNvJTWIx75Jf8g8FBCLlC0e5MB8GA1UdIwQY MBaAFDrwm6M7WuWBsNKTIySTFPdqoQURMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvT3ZDYm96dGE1WUd3MHBNakpKTVU5MnFoQlJFLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82Yi8zM2Q1ZDEtYzQ1MC00MTNiLWFmZTQt NDU5MzVmNTA2YTEyLzEvWU5DWTI4bE5Zakh2a2xfeUR3VUVJdVVMUjdrLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC82Yi8zM2Q1ZDEtYzQ1MC00MTNiLWFmZTQtNDU5MzVmNTA2YTEy LzEvT3ZDYm96dGE1WUd3MHBNakpKTVU5MnFoQlJFLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMD0GCCsGAQUFBwEHAQH/BC4wLDAqBAIAATAkAwQAUf+yAwQB WnPQAwQBwgI4AwQAwgJWAwQAwgMEAwQAwvpiMA0GCSqGSIb3DQEBCwUAA4IBAQCK ARtxvi+vqNjzkjECuO6gY0DZySPfr9EgGezdECgzHGXpTkG7tjilKmFjB1JuUhId +WepPm05XZPwPHvxeR8kXSu7yEKi0zz4zKRlhhbXOqZpJrRD1/Lz4613itVKSJKp i11GFL7r1WR3gVfNGOWspf9K/9XiF5CCWrgatSLGu+Nvy1Ol3kG3zTwOsFuYatAG wEN1yokWwWv9nkyyDJ34Cp2qApXQXYA4LHzdQux0avPYwPF4aQNnYW2McEcoQX0r Bndm2A3NIx49fzTPCBWbrZNejF6xnOdyZBFz9nRHatkw7bKK7DvdMr/Wi5YDCoun KDf4hdizlkoisHwTkPbU -----END CERTIFICATE-----Generated at Wed Jan 21 13:19:28 2026 by rpki-client