This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6f/7ef3e3-242d-4cb3-a524-c44c6beef382/1/YMTUEYkJa3jKyeDu_i_6QStTA5g.roa File: YMTUEYkJa3jKyeDu_i_6QStTA5g.roa (raw, json) Hash identifier: g07b6yHn7k+FhYN9YzkYgz6rNbHWKmMeHrpfp3BJpAQ= Subject key identifier: 60:C4:D4:11:89:09:6B:78:CA:C9:E0:EE:FE:2F:FA:41:2B:53:03:98 Certificate issuer: /CN=28927775b44db879e9f39c2977bdaed62a4ff24d Certificate serial: 019B7E382DE1CE101F252EC9B766BA148A3F Authority key identifier: 28:92:77:75:B4:4D:B8:79:E9:F3:9C:29:77:BD:AE:D6:2A:4F:F2:4D Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KJJ3dbRNuHnp85wpd72u1ipP8k0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6f/7ef3e3-242d-4cb3-a524-c44c6beef382/1/YMTUEYkJa3jKyeDu_i_6QStTA5g.roa Signing time: Fri 02 Jan 2026 10:19:29 +0000 ROA not before: Fri 02 Jan 2026 10:19:29 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 12446 IP address blocks: 194.102.101.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/6f/7ef3e3-242d-4cb3-a524-c44c6beef382/1/KJJ3dbRNuHnp85wpd72u1ipP8k0.crl rsync://rpki.ripe.net/repository/DEFAULT/6f/7ef3e3-242d-4cb3-a524-c44c6beef382/1/KJJ3dbRNuHnp85wpd72u1ipP8k0.mft rsync://rpki.ripe.net/repository/DEFAULT/KJJ3dbRNuHnp85wpd72u1ipP8k0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 21:05:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7e:38:2d:e1:ce:10:1f:25:2e:c9:b7:66:ba:14:8a:3f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=28927775b44db879e9f39c2977bdaed62a4ff24d Validity Not Before: Jan 2 10:19:29 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=60c4d41189096b78cac9e0eefe2ffa412b530398 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:93:c5:45:5f:68:1c:f5:00:94:bc:6b:17:1e: 66:cd:71:b5:92:ae:96:18:7b:b6:52:54:57:90:74: a5:03:e6:0b:89:25:65:e5:a6:f3:db:cb:60:c4:02: 06:2e:c9:12:1c:7d:75:e7:de:7b:bc:b2:64:4e:eb: 9f:e7:44:41:8d:56:57:c1:50:fd:56:94:80:a5:80: bc:19:63:e1:86:cc:d3:10:f0:71:01:2e:05:f5:12: bb:31:31:52:1c:17:cd:28:45:ac:1c:1f:c2:7b:e8: ce:cc:c9:2e:76:d7:98:e9:b6:3d:ef:8e:e2:71:a3: 00:24:3e:08:23:f2:13:40:5a:05:e3:e8:db:72:61: e7:e1:02:3a:07:3f:9d:96:f8:d7:85:e3:ed:3d:c2: 4f:f5:0e:46:ec:d2:55:ac:b1:2e:10:13:a0:c9:ba: 89:f2:40:d3:99:d4:06:6b:44:43:52:0c:66:3d:79: 20:8a:40:36:75:bc:0d:8e:ed:84:a5:57:f3:0e:2b: f8:f2:66:81:5a:b8:eb:54:96:2d:dd:d2:92:b0:f1: d7:2b:2c:ae:a2:e5:39:b9:32:2c:ec:05:53:86:5a: 0d:0e:25:3a:d3:04:6c:81:cc:66:87:ab:b5:96:dc: bb:28:07:7b:12:8d:95:ca:61:2e:46:0c:89:13:ad: 25:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 60:C4:D4:11:89:09:6B:78:CA:C9:E0:EE:FE:2F:FA:41:2B:53:03:98 X509v3 Authority Key Identifier: keyid:28:92:77:75:B4:4D:B8:79:E9:F3:9C:29:77:BD:AE:D6:2A:4F:F2:4D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KJJ3dbRNuHnp85wpd72u1ipP8k0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6f/7ef3e3-242d-4cb3-a524-c44c6beef382/1/YMTUEYkJa3jKyeDu_i_6QStTA5g.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/6f/7ef3e3-242d-4cb3-a524-c44c6beef382/1/KJJ3dbRNuHnp85wpd72u1ipP8k0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 194.102.101.0/24 Signature Algorithm: sha256WithRSAEncryption 09:ef:dc:5b:60:dd:14:f6:0c:9d:34:54:ad:73:49:1c:05:d7: 55:4c:cc:b2:4a:3c:12:66:fd:44:2b:f2:e2:cd:68:ec:59:d3: 33:54:46:42:02:e0:43:c2:13:7a:a6:0f:01:64:77:dc:28:b7: 5d:6d:df:6c:0b:cc:f1:89:ce:d8:50:06:80:c9:6a:fb:44:0c: fd:20:a9:e2:7f:47:12:15:c5:c3:f9:45:27:6d:77:9f:15:d5: 42:c5:9f:56:24:0c:a7:ed:16:3a:3f:dc:01:9e:8d:b3:1a:9f: b6:e8:00:60:17:b5:10:bf:88:bd:58:ab:81:c3:b8:a6:53:fa: 0e:05:a6:ba:79:d0:9c:85:77:fb:d6:43:63:cb:b7:0e:95:34: 7a:b7:e5:df:87:e7:41:c2:fe:73:e9:57:3f:ca:a7:99:f7:c4: ea:48:12:53:31:d7:c9:91:c0:78:2f:d5:21:c3:e3:e8:20:37: 3e:8b:22:c6:6e:89:38:f5:e0:2b:a7:17:98:55:01:41:87:f4: 60:8d:3e:69:e8:31:9e:ed:d9:3f:e0:fb:57:c4:ca:50:c5:38: 75:ba:70:38:f9:ee:27:02:a3:86:6f:2a:7b:44:da:0c:c8:c2: 39:26:50:15:11:a4:e8:e5:5a:d7:b6:a7:df:1d:a6:d3:23:06: 6b:64:1a:aa -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt+OC3hzhAfJS7Jt2a6FIo/MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDI4OTI3Nzc1YjQ0ZGI4NzllOWYzOWMyOTc3YmRhZWQ2MmE0 ZmYyNGQwHhcNMjYwMTAyMTAxOTI5WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg2MGM0ZDQxMTg5MDk2Yjc4Y2FjOWUwZWVmZTJmZmE0MTJiNTMwMzk4MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAo5PFRV9oHPUAlLxrFx5mzXG1kq6W GHu2UlRXkHSlA+YLiSVl5abz28tgxAIGLskSHH115957vLJkTuuf50RBjVZXwVD9 VpSApYC8GWPhhszTEPBxAS4F9RK7MTFSHBfNKEWsHB/Ce+jOzMkudteY6bY9747i caMAJD4II/ITQFoF4+jbcmHn4QI6Bz+dlvjXhePtPcJP9Q5G7NJVrLEuEBOgybqJ 8kDTmdQGa0RDUgxmPXkgikA2dbwNju2EpVfzDiv48maBWrjrVJYt3dKSsPHXKyyu ouU5uTIs7AVThloNDiU60wRsgcxmh6u1lty7KAd7Eo2VymEuRgyJE60luQIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFGDE1BGJCWt4ysng7v4v+kErUwOYMB8GA1UdIwQY MBaAFCiSd3W0Tbh56fOcKXe9rtYqT/JNMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvS0pKM2RiUk51SG5wODV3cGQ3MnUxaXBQOGswLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82Zi83ZWYzZTMtMjQyZC00Y2IzLWE1MjQt YzQ0YzZiZWVmMzgyLzEvWU1UVUVZa0phM2pLeWVEdV9pXzZRU3RUQTVnLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC82Zi83ZWYzZTMtMjQyZC00Y2IzLWE1MjQtYzQ0YzZiZWVmMzgy LzEvS0pKM2RiUk51SG5wODV3cGQ3MnUxaXBQOGswLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAwmZlMA0G CSqGSIb3DQEBCwUAA4IBAQAJ79xbYN0U9gydNFStc0kcBddVTMyySjwSZv1EK/Li zWjsWdMzVEZCAuBDwhN6pg8BZHfcKLddbd9sC8zxic7YUAaAyWr7RAz9IKnif0cS FcXD+UUnbXefFdVCxZ9WJAyn7RY6P9wBno2zGp+26ABgF7UQv4i9WKuBw7imU/oO Baa6edCchXf71kNjy7cOlTR6t+Xfh+dBwv5z6Vc/yqeZ98TqSBJTMdfJkcB4L9Uh w+PoIDc+iyLGbok49eArpxeYVQFBh/RgjT5p6DGe7dk/4PtXxMpQxTh1unA4+e4n AqOGbyp7RNoMyMI5JlAVEaTo5VrXtqffHabTIwZrZBqq -----END CERTIFICATE-----Generated at Tue Feb 10 02:46:15 2026 by rpki-client