This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6c/400b4f-3688-497c-9785-234cbafac86a/1/y7ivSLyg2N2CeccNLL23EoYUSS4.roa File: y7ivSLyg2N2CeccNLL23EoYUSS4.roa (raw, json) Hash identifier: 31YSDBFlU1cRDWfJMLbiXOEeuRnq/hgQLZYoBqQPGv0= Subject key identifier: CB:B8:AF:48:BC:A0:D8:DD:82:79:C7:0D:2C:BD:B7:12:86:14:49:2E Certificate issuer: /CN=de3d3687fe7df48c3be8398aad7bd20106545382 Certificate serial: 019B7EA542420D4387126F859CDDCAEDC85C Authority key identifier: DE:3D:36:87:FE:7D:F4:8C:3B:E8:39:8A:AD:7B:D2:01:06:54:53:82 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3j02h_599Iw76DmKrXvSAQZUU4I.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6c/400b4f-3688-497c-9785-234cbafac86a/1/y7ivSLyg2N2CeccNLL23EoYUSS4.roa Signing time: Fri 02 Jan 2026 12:18:38 +0000 ROA not before: Fri 02 Jan 2026 12:18:38 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 60662 IP address blocks: 185.27.168.0/22 maxlen: 22 185.106.180.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/6c/400b4f-3688-497c-9785-234cbafac86a/1/3j02h_599Iw76DmKrXvSAQZUU4I.crl rsync://rpki.ripe.net/repository/DEFAULT/6c/400b4f-3688-497c-9785-234cbafac86a/1/3j02h_599Iw76DmKrXvSAQZUU4I.mft rsync://rpki.ripe.net/repository/DEFAULT/3j02h_599Iw76DmKrXvSAQZUU4I.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 18:00:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7e:a5:42:42:0d:43:87:12:6f:85:9c:dd:ca:ed:c8:5c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=de3d3687fe7df48c3be8398aad7bd20106545382 Validity Not Before: Jan 2 12:18:38 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=cbb8af48bca0d8dd8279c70d2cbdb7128614492e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:cb:bb:a4:75:4b:17:ea:1a:c5:25:6f:86:75: aa:2d:c0:b2:37:05:36:e9:4d:d2:90:1f:1f:dc:38: 2c:d5:83:85:aa:96:8c:7f:0a:5c:61:48:49:8e:13: c4:84:29:2d:50:1f:a2:48:d0:1e:a5:64:14:0a:4a: 97:57:aa:5e:ca:92:04:51:e1:9e:5a:43:2d:4e:1f: 00:71:91:d2:73:3a:cc:95:64:da:b7:6d:81:b0:fa: 55:55:da:6b:10:04:c1:bc:23:06:bf:41:82:fe:33: 69:dc:01:cf:c6:dd:ee:bd:cf:5b:db:da:c6:6b:ee: 24:35:1f:0c:75:4a:f0:1e:b6:56:55:51:7d:0f:8c: 79:9b:53:74:ce:d7:57:0b:71:e0:81:d4:5e:ae:6c: 3e:af:01:42:f1:20:e6:2f:7c:be:a7:4b:aa:7b:d8: 5e:90:c4:a5:18:38:ca:61:be:18:06:b5:eb:dc:48: 7d:45:da:7b:82:c9:f7:a9:2b:17:4d:42:be:7e:44: e2:d9:c1:80:a7:64:b3:e7:58:5a:34:ce:24:f3:83: ed:ea:96:e6:0a:e7:71:24:d4:93:8c:e1:4e:c5:17: ab:43:db:da:c7:f1:b7:58:1a:a7:1c:01:ae:95:21: 34:ed:76:52:dc:f3:70:1a:b8:12:1f:d3:38:25:6c: af:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CB:B8:AF:48:BC:A0:D8:DD:82:79:C7:0D:2C:BD:B7:12:86:14:49:2E X509v3 Authority Key Identifier: keyid:DE:3D:36:87:FE:7D:F4:8C:3B:E8:39:8A:AD:7B:D2:01:06:54:53:82 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3j02h_599Iw76DmKrXvSAQZUU4I.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6c/400b4f-3688-497c-9785-234cbafac86a/1/y7ivSLyg2N2CeccNLL23EoYUSS4.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/6c/400b4f-3688-497c-9785-234cbafac86a/1/3j02h_599Iw76DmKrXvSAQZUU4I.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.27.168.0/22 185.106.180.0/22 Signature Algorithm: sha256WithRSAEncryption a4:4f:60:8b:1c:13:6c:85:2d:8e:e9:f9:8b:81:2a:79:06:6d: 6c:f3:9a:91:5f:d4:28:48:0c:bd:7d:14:59:b0:d4:7c:83:fe: 9d:0f:bb:da:10:84:20:37:d9:92:f3:64:6f:72:7c:2e:49:06: 4e:19:46:3d:9b:b0:fa:1b:8d:45:21:c7:92:30:3c:5e:2a:ca: 72:a1:c2:71:b8:11:16:14:37:c5:00:bc:82:f0:9d:b2:16:5e: f9:21:87:39:97:b9:57:5c:2a:0b:20:17:eb:1a:a3:d4:89:9b: d3:74:4d:d3:7b:16:13:37:aa:ec:73:f3:9d:48:95:c5:0c:0e: 79:71:a8:c0:7a:af:dd:cf:23:76:30:55:2f:37:30:8c:f5:f8: ff:19:b6:33:ba:00:a4:c3:d7:85:57:a3:80:34:20:53:95:b5: e9:59:7d:9d:f4:77:3c:0a:c8:3b:85:7d:ca:44:5e:8e:a8:63: e4:45:c7:bc:04:51:f9:20:c2:89:56:38:14:63:be:62:10:11: a1:8f:20:83:01:83:83:9d:ce:92:09:47:30:1f:4b:2e:d8:c7: 49:6e:b4:ac:f7:aa:69:ca:67:81:c6:63:1f:b3:07:3f:90:58: b6:13:a5:6a:e1:62:62:41:98:0b:10:c7:2a:e0:8e:ab:18:ca: 3e:52:56:b3 -----BEGIN CERTIFICATE----- MIIFAzCCA+ugAwIBAgISAZt+pUJCDUOHEm+FnN3K7chcMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGRlM2QzNjg3ZmU3ZGY0OGMzYmU4Mzk4YWFkN2JkMjAxMDY1 NDUzODIwHhcNMjYwMTAyMTIxODM4WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhjYmI4YWY0OGJjYTBkOGRkODI3OWM3MGQyY2JkYjcxMjg2MTQ0OTJlMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAysu7pHVLF+oaxSVvhnWqLcCyNwU2 6U3SkB8f3Dgs1YOFqpaMfwpcYUhJjhPEhCktUB+iSNAepWQUCkqXV6peypIEUeGe WkMtTh8AcZHSczrMlWTat22BsPpVVdprEATBvCMGv0GC/jNp3AHPxt3uvc9b29rG a+4kNR8MdUrwHrZWVVF9D4x5m1N0ztdXC3HggdRermw+rwFC8SDmL3y+p0uqe9he kMSlGDjKYb4YBrXr3Eh9Rdp7gsn3qSsXTUK+fkTi2cGAp2Sz51haNM4k84Pt6pbm CudxJNSTjOFOxRerQ9vax/G3WBqnHAGulSE07XZS3PNwGrgSH9M4JWyvbQIDAQAB o4ICDzCCAgswHQYDVR0OBBYEFMu4r0i8oNjdgnnHDSy9txKGFEkuMB8GA1UdIwQY MBaAFN49Nof+ffSMO+g5iq170gEGVFOCMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvM2owMmhfNTk5SXc3NkRtS3JYdlNBUVpVVTRJLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82Yy80MDBiNGYtMzY4OC00OTdjLTk3ODUt MjM0Y2JhZmFjODZhLzEveTdpdlNMeWcyTjJDZWNjTkxMMjNFb1lVU1M0LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC82Yy80MDBiNGYtMzY4OC00OTdjLTk3ODUtMjM0Y2JhZmFjODZh LzEvM2owMmhfNTk5SXc3NkRtS3JYdlNBUVpVVTRJLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQCuRuoAwQC uWq0MA0GCSqGSIb3DQEBCwUAA4IBAQCkT2CLHBNshS2O6fmLgSp5Bm1s85qRX9Qo SAy9fRRZsNR8g/6dD7vaEIQgN9mS82RvcnwuSQZOGUY9m7D6G41FIceSMDxeKspy ocJxuBEWFDfFALyC8J2yFl75IYc5l7lXXCoLIBfrGqPUiZvTdE3TexYTN6rsc/Od SJXFDA55cajAeq/dzyN2MFUvNzCM9fj/GbYzugCkw9eFV6OANCBTlbXpWX2d9Hc8 Csg7hX3KRF6OqGPkRce8BFH5IMKJVjgUY75iEBGhjyCDAYODnc6SCUcwH0su2MdJ brSs96ppymeBxmMfswc/kFi2E6Vq4WJiQZgLEMcq4I6rGMo+Ulaz -----END CERTIFICATE-----Generated at Tue Feb 10 02:46:26 2026 by rpki-client