This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/76/028b82-fe03-4025-9765-b8dd18e48e86/1/YvcDMestY9X7wmYPi3GUVazWTT8.roa File: YvcDMestY9X7wmYPi3GUVazWTT8.roa (raw, json) Hash identifier: XANK4dLT4WRniF1gFGKD3AM4xZkWl+FQBiK8+nHkS3E= Subject key identifier: 62:F7:03:31:EB:2D:63:D5:FB:C2:66:0F:8B:71:94:55:AC:D6:4D:3F Certificate issuer: /CN=865122c0e562e407976823d94e19e2a794f8cb62 Certificate serial: 019B76EAC8409C44B4C7D1BA1076E33E07B5 Authority key identifier: 86:51:22:C0:E5:62:E4:07:97:68:23:D9:4E:19:E2:A7:94:F8:CB:62 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hlEiwOVi5AeXaCPZThnip5T4y2I.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/76/028b82-fe03-4025-9765-b8dd18e48e86/1/YvcDMestY9X7wmYPi3GUVazWTT8.roa Signing time: Thu 01 Jan 2026 00:17:36 +0000 ROA not before: Thu 01 Jan 2026 00:17:36 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 205068 IP address blocks: 185.166.164.0/22 maxlen: 22 2a0d:3080::/29 maxlen: 29 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/76/028b82-fe03-4025-9765-b8dd18e48e86/1/hlEiwOVi5AeXaCPZThnip5T4y2I.crl rsync://rpki.ripe.net/repository/DEFAULT/76/028b82-fe03-4025-9765-b8dd18e48e86/1/hlEiwOVi5AeXaCPZThnip5T4y2I.mft rsync://rpki.ripe.net/repository/DEFAULT/hlEiwOVi5AeXaCPZThnip5T4y2I.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 18:00:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:76:ea:c8:40:9c:44:b4:c7:d1:ba:10:76:e3:3e:07:b5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=865122c0e562e407976823d94e19e2a794f8cb62 Validity Not Before: Jan 1 00:17:36 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=62f70331eb2d63d5fbc2660f8b719455acd64d3f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:9e:eb:76:e5:3c:4a:48:90:6c:29:50:c1:89: d4:39:ec:f1:ce:4c:d2:4a:8a:17:e5:b8:e6:d6:ea: a9:4f:63:e8:75:81:de:43:68:72:36:36:bf:f3:8b: 57:c6:c9:33:d7:68:f5:80:ba:b8:9b:3d:98:7d:90: f1:dc:96:be:77:a1:e4:9e:b5:78:d3:6b:32:1e:6e: 8b:19:b1:34:fa:1f:63:5a:3d:f5:7b:43:d9:4e:37: 5e:b4:d2:9d:9e:bd:e1:54:20:45:32:d1:83:75:c6: 01:ec:42:c5:1b:6c:55:5a:2a:0e:72:34:af:b7:ba: 6b:fb:27:c5:ea:ec:94:85:6b:fd:31:5d:2d:ae:c1: a0:2d:6d:a5:ed:51:34:09:d2:a9:06:f9:52:68:7d: 5c:a4:7d:00:bb:a7:ea:e2:86:97:80:4f:c8:54:a9: 80:aa:38:86:2c:da:0c:58:27:39:05:1a:b7:6b:59: 89:fa:41:04:76:84:7a:4b:7d:36:cd:c4:58:94:1c: b7:31:d7:38:33:bc:71:6e:f8:53:4b:48:46:3f:8c: 2b:e1:67:1d:86:7e:b3:e8:f3:98:89:1e:ff:f0:bf: eb:18:e7:bd:b1:de:83:ed:23:c4:ba:cc:03:22:24: 03:87:15:1a:fc:41:7a:c9:61:f4:e5:da:9d:5f:9f: 96:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 62:F7:03:31:EB:2D:63:D5:FB:C2:66:0F:8B:71:94:55:AC:D6:4D:3F X509v3 Authority Key Identifier: keyid:86:51:22:C0:E5:62:E4:07:97:68:23:D9:4E:19:E2:A7:94:F8:CB:62 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hlEiwOVi5AeXaCPZThnip5T4y2I.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/76/028b82-fe03-4025-9765-b8dd18e48e86/1/YvcDMestY9X7wmYPi3GUVazWTT8.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/76/028b82-fe03-4025-9765-b8dd18e48e86/1/hlEiwOVi5AeXaCPZThnip5T4y2I.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.166.164.0/22 IPv6: 2a0d:3080::/29 Signature Algorithm: sha256WithRSAEncryption 4c:af:12:a0:62:7e:0d:ea:a6:67:df:06:4c:31:b8:33:ff:3e: 85:2a:41:11:91:e3:56:20:5e:9b:49:f8:46:f2:c6:1e:bb:46: fc:7d:52:ec:de:1a:8f:8a:97:4a:83:c5:ad:4f:33:bd:fa:19: 20:76:a9:c6:3b:90:f6:92:3a:c1:1a:4b:92:be:72:fe:1d:6e: 3e:6f:aa:ca:f0:81:40:21:3b:f0:4d:3c:aa:de:46:d1:a4:bc: 35:6b:84:0a:d1:f9:3b:e0:63:86:00:19:ee:6f:02:7d:e9:27: 46:f9:82:e3:18:78:17:4d:94:c4:37:9d:06:10:bc:03:ff:95: 78:85:2b:29:ab:90:95:41:09:8c:5c:ca:3d:79:bf:c3:73:08: 3f:b8:e4:2a:1e:2d:fb:05:3c:b6:49:c3:ce:e2:6c:80:f3:51: 8d:f2:2a:85:85:54:6f:63:24:65:8e:12:ce:5c:9d:04:e5:b4: b0:eb:94:37:c3:a8:61:4b:20:be:b2:0b:1e:2e:5f:20:b3:ba: c7:bd:bc:eb:97:5c:30:27:2d:54:8f:35:e0:db:cb:52:c3:cf: 6f:a6:8e:b8:f6:5f:eb:ce:26:80:fd:d9:55:55:35:28:f6:60: 00:d3:63:cc:0c:29:11:34:5b:c6:d0:09:59:de:a2:82:4a:8c: fc:c4:bd:bd -----BEGIN CERTIFICATE----- MIIFDDCCA/SgAwIBAgISAZt26shAnES0x9G6EHbjPge1MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDg2NTEyMmMwZTU2MmU0MDc5NzY4MjNkOTRlMTllMmE3OTRm OGNiNjIwHhcNMjYwMTAxMDAxNzM2WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg2MmY3MDMzMWViMmQ2M2Q1ZmJjMjY2MGY4YjcxOTQ1NWFjZDY0ZDNmMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtp7rduU8SkiQbClQwYnUOezxzkzS SooX5bjm1uqpT2PodYHeQ2hyNja/84tXxskz12j1gLq4mz2YfZDx3Ja+d6HknrV4 02syHm6LGbE0+h9jWj31e0PZTjdetNKdnr3hVCBFMtGDdcYB7ELFG2xVWioOcjSv t7pr+yfF6uyUhWv9MV0trsGgLW2l7VE0CdKpBvlSaH1cpH0Au6fq4oaXgE/IVKmA qjiGLNoMWCc5BRq3a1mJ+kEEdoR6S302zcRYlBy3Mdc4M7xxbvhTS0hGP4wr4Wcd hn6z6POYiR7/8L/rGOe9sd6D7SPEuswDIiQDhxUa/EF6yWH05dqdX5+WgQIDAQAB o4ICGDCCAhQwHQYDVR0OBBYEFGL3AzHrLWPV+8JmD4txlFWs1k0/MB8GA1UdIwQY MBaAFIZRIsDlYuQHl2gj2U4Z4qeU+MtiMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvaGxFaXdPVmk1QWVYYUNQWlRobmlwNVQ0eTJJLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83Ni8wMjhiODItZmUwMy00MDI1LTk3NjUt YjhkZDE4ZTQ4ZTg2LzEvWXZjRE1lc3RZOVg3d21ZUGkzR1VWYXpXVFQ4LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC83Ni8wMjhiODItZmUwMy00MDI1LTk3NjUtYjhkZDE4ZTQ4ZTg2 LzEvaGxFaXdPVmk1QWVYYUNQWlRobmlwNVQ0eTJJLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMC4GCCsGAQUFBwEHAQH/BB8wHTAMBAIAATAGAwQCuaakMA0E AgACMAcDBQMqDTCAMA0GCSqGSIb3DQEBCwUAA4IBAQBMrxKgYn4N6qZn3wZMMbgz /z6FKkERkeNWIF6bSfhG8sYeu0b8fVLs3hqPipdKg8WtTzO9+hkgdqnGO5D2kjrB GkuSvnL+HW4+b6rK8IFAITvwTTyq3kbRpLw1a4QK0fk74GOGABnubwJ96SdG+YLj GHgXTZTEN50GELwD/5V4hSspq5CVQQmMXMo9eb/Dcwg/uOQqHi37BTy2ScPO4myA 81GN8iqFhVRvYyRljhLOXJ0E5bSw65Q3w6hhSyC+sgseLl8gs7rHvbzrl1wwJy1U jzXg28tSw89vpo649l/rziaA/dlVVTUo9mAA02PMDCkRNFvG0AlZ3qKCSoz8xL29 -----END CERTIFICATE-----Generated at Tue Feb 10 04:31:00 2026 by rpki-client