This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/71/4c15d9-79e6-452f-aa32-02db8b77d087/1/yxoyiq6u244VKW72oii9uUiHB5w.roa File: yxoyiq6u244VKW72oii9uUiHB5w.roa (raw, json) Hash identifier: jfOnDIC+Hn7PQuMw02CvW0H07qmgRK5GNbtZKtIIp2U= Subject key identifier: CB:1A:32:8A:AE:AE:DB:8E:15:29:6E:F6:A2:28:BD:B9:48:87:07:9C Certificate issuer: /CN=a8305c6e58294ad0ed5162fa8429da5165653930 Certificate serial: 019B77591F35827F706903A8387D354631B6 Authority key identifier: A8:30:5C:6E:58:29:4A:D0:ED:51:62:FA:84:29:DA:51:65:65:39:30 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qDBcblgpStDtUWL6hCnaUWVlOTA.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/71/4c15d9-79e6-452f-aa32-02db8b77d087/1/yxoyiq6u244VKW72oii9uUiHB5w.roa Signing time: Thu 01 Jan 2026 02:18:08 +0000 ROA not before: Thu 01 Jan 2026 02:18:08 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 34182 IP address blocks: 91.238.144.0/24 maxlen: 24 2001:67c:938::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/71/4c15d9-79e6-452f-aa32-02db8b77d087/1/qDBcblgpStDtUWL6hCnaUWVlOTA.crl rsync://rpki.ripe.net/repository/DEFAULT/71/4c15d9-79e6-452f-aa32-02db8b77d087/1/qDBcblgpStDtUWL6hCnaUWVlOTA.mft rsync://rpki.ripe.net/repository/DEFAULT/qDBcblgpStDtUWL6hCnaUWVlOTA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 28 Jan 2026 08:01:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:77:59:1f:35:82:7f:70:69:03:a8:38:7d:35:46:31:b6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=a8305c6e58294ad0ed5162fa8429da5165653930 Validity Not Before: Jan 1 02:18:08 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=cb1a328aaeaedb8e15296ef6a228bdb94887079c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:c7:20:44:98:ea:7f:fa:ae:8a:69:0b:fe:e3: a3:7d:7b:5a:75:ca:73:c5:7a:ac:d0:7f:1d:e3:65: 55:20:4c:e3:0d:bb:37:fe:53:45:8e:88:57:26:7a: ed:0e:d0:9b:b9:70:94:60:b1:2e:c2:c3:53:61:38: f8:90:bc:57:44:d4:03:64:99:2e:31:ef:4b:55:0b: 67:c3:d5:65:77:49:56:5d:31:e9:a5:a4:40:94:c1: 26:e5:8a:28:d6:5d:6c:cb:d7:c4:e7:93:aa:dd:a2: ce:e2:e6:19:1f:14:19:cc:e4:0f:ef:d4:0c:ae:91: 96:b6:b4:4a:9d:d2:1e:fc:9a:3e:20:73:ec:5a:09: 88:e2:f2:7b:c8:06:cd:0e:4c:f8:eb:db:96:7c:23: d9:71:7d:2a:03:44:0b:e3:13:c0:68:22:7d:1f:1f: c6:e8:34:52:97:05:76:c6:3a:b7:89:54:92:4f:ac: bf:21:a5:85:0c:fd:d6:91:8d:09:35:5c:d5:c0:f3: d9:15:2f:08:be:81:0d:63:7a:3c:78:9f:2d:03:90: e2:7c:c2:86:cc:0c:20:9d:2d:00:33:0c:99:17:ff: 57:46:6e:87:30:7c:f8:cd:64:2d:00:9e:cc:d7:72: 25:d2:26:ac:e4:48:d5:b9:12:3c:e9:30:dd:57:dc: e0:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CB:1A:32:8A:AE:AE:DB:8E:15:29:6E:F6:A2:28:BD:B9:48:87:07:9C X509v3 Authority Key Identifier: keyid:A8:30:5C:6E:58:29:4A:D0:ED:51:62:FA:84:29:DA:51:65:65:39:30 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qDBcblgpStDtUWL6hCnaUWVlOTA.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/71/4c15d9-79e6-452f-aa32-02db8b77d087/1/yxoyiq6u244VKW72oii9uUiHB5w.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/71/4c15d9-79e6-452f-aa32-02db8b77d087/1/qDBcblgpStDtUWL6hCnaUWVlOTA.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 91.238.144.0/24 IPv6: 2001:67c:938::/48 Signature Algorithm: sha256WithRSAEncryption 72:1e:b9:a8:07:cb:68:01:f4:18:7f:98:e3:a4:b3:56:6a:6d: 1c:26:ab:cd:4b:30:5c:6f:f8:23:fb:22:64:82:12:b2:b1:40: 57:4c:37:88:c5:72:28:54:fc:06:d4:20:59:be:80:dc:8f:04: 72:65:07:c2:28:96:6a:1c:b3:33:72:a0:12:40:95:d1:71:fc: 29:ba:db:60:43:9f:95:ad:d6:d3:9f:bc:6a:9c:56:d7:ed:38: e4:be:f9:d9:d7:97:40:60:6e:18:67:ec:33:f1:87:a6:ef:fd: 68:46:ef:92:54:aa:af:aa:d8:6e:c1:c6:c0:2c:32:8e:bd:7b: 7d:46:d5:73:31:6e:33:5a:64:7e:a3:88:ec:4d:03:80:8b:31: a3:f0:b4:ad:3c:4d:04:f5:f1:16:e9:63:4e:8a:75:06:22:7e: 16:6d:01:0b:01:47:51:3d:b8:30:e4:c0:88:74:22:88:72:ae: 5c:9a:71:e0:31:68:56:51:aa:fe:3f:bf:9e:ca:8d:28:ec:b1: 46:63:f3:49:d4:5f:a8:ca:96:c7:78:9c:1e:68:08:ec:e5:ee: 40:cd:11:4d:00:6d:93:4f:0a:41:0c:8c:0c:01:d6:87:c7:d9: 06:b2:8f:b6:c1:29:9c:9e:d7:be:63:7b:2f:ac:93:dc:ce:a4: 61:6b:dd:46 -----BEGIN CERTIFICATE----- MIIFDjCCA/agAwIBAgISAZt3WR81gn9waQOoOH01RjG2MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGE4MzA1YzZlNTgyOTRhZDBlZDUxNjJmYTg0MjlkYTUxNjU2 NTM5MzAwHhcNMjYwMTAxMDIxODA4WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhjYjFhMzI4YWFlYWVkYjhlMTUyOTZlZjZhMjI4YmRiOTQ4ODcwNzljMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA3McgRJjqf/quimkL/uOjfXtadcpz xXqs0H8d42VVIEzjDbs3/lNFjohXJnrtDtCbuXCUYLEuwsNTYTj4kLxXRNQDZJku Me9LVQtnw9Vld0lWXTHppaRAlMEm5Yoo1l1sy9fE55Oq3aLO4uYZHxQZzOQP79QM rpGWtrRKndIe/Jo+IHPsWgmI4vJ7yAbNDkz469uWfCPZcX0qA0QL4xPAaCJ9Hx/G 6DRSlwV2xjq3iVSST6y/IaWFDP3WkY0JNVzVwPPZFS8IvoENY3o8eJ8tA5DifMKG zAwgnS0AMwyZF/9XRm6HMHz4zWQtAJ7M13Il0ias5EjVuRI86TDdV9zg+wIDAQAB o4ICGjCCAhYwHQYDVR0OBBYEFMsaMoqurtuOFSlu9qIovblIhwecMB8GA1UdIwQY MBaAFKgwXG5YKUrQ7VFi+oQp2lFlZTkwMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvcURCY2JsZ3BTdER0VVdMNmhDbmFVV1ZsT1RBLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83MS80YzE1ZDktNzllNi00NTJmLWFhMzIt MDJkYjhiNzdkMDg3LzEveXhveWlxNnUyNDRWS1c3Mm9paTl1VWlIQjV3LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC83MS80YzE1ZDktNzllNi00NTJmLWFhMzItMDJkYjhiNzdkMDg3 LzEvcURCY2JsZ3BTdER0VVdMNmhDbmFVV1ZsT1RBLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMDAGCCsGAQUFBwEHAQH/BCEwHzAMBAIAATAGAwQAW+6QMA8E AgACMAkDBwAgAQZ8CTgwDQYJKoZIhvcNAQELBQADggEBAHIeuagHy2gB9Bh/mOOk s1ZqbRwmq81LMFxv+CP7ImSCErKxQFdMN4jFcihU/AbUIFm+gNyPBHJlB8Iolmoc szNyoBJAldFx/Cm622BDn5Wt1tOfvGqcVtftOOS++dnXl0Bgbhhn7DPxh6bv/WhG 75JUqq+q2G7BxsAsMo69e31G1XMxbjNaZH6jiOxNA4CLMaPwtK08TQT18RbpY06K dQYifhZtAQsBR1E9uDDkwIh0IohyrlyaceAxaFZRqv4/v57KjSjssUZj80nUX6jK lsd4nB5oCOzl7kDNEU0AbZNPCkEMjAwB1ofH2Qayj7bBKZye175jey+sk9zOpGFr 3UY= -----END CERTIFICATE-----Generated at Tue Jan 27 13:35:42 2026 by rpki-client