This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/80/efa4d7-99a7-4c18-80fd-d29f45f793c7/1/YGNT5pqPZu181hM9KnN1W6l6JfA.roa File: YGNT5pqPZu181hM9KnN1W6l6JfA.roa (raw, json) Hash identifier: /u8IipOD0TJq7/K9Iib+hkESBCEfhRJpznMeAkMobZQ= Subject key identifier: 60:63:53:E6:9A:8F:66:ED:7C:D6:13:3D:2A:73:75:5B:A9:7A:25:F0 Certificate issuer: /CN=72c3a9a3ad320a8fc61b5f8789f525d07e5be251 Certificate serial: 019B76EB903C5C878AE981C712340F4B386F Authority key identifier: 72:C3:A9:A3:AD:32:0A:8F:C6:1B:5F:87:89:F5:25:D0:7E:5B:E2:51 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/csOpo60yCo_GG1-HifUl0H5b4lE.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/80/efa4d7-99a7-4c18-80fd-d29f45f793c7/1/YGNT5pqPZu181hM9KnN1W6l6JfA.roa Signing time: Thu 01 Jan 2026 00:18:27 +0000 ROA not before: Thu 01 Jan 2026 00:18:27 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 48409 IP address blocks: 91.207.238.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/80/efa4d7-99a7-4c18-80fd-d29f45f793c7/1/csOpo60yCo_GG1-HifUl0H5b4lE.crl rsync://rpki.ripe.net/repository/DEFAULT/80/efa4d7-99a7-4c18-80fd-d29f45f793c7/1/csOpo60yCo_GG1-HifUl0H5b4lE.mft rsync://rpki.ripe.net/repository/DEFAULT/csOpo60yCo_GG1-HifUl0H5b4lE.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:76:eb:90:3c:5c:87:8a:e9:81:c7:12:34:0f:4b:38:6f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=72c3a9a3ad320a8fc61b5f8789f525d07e5be251 Validity Not Before: Jan 1 00:18:27 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=606353e69a8f66ed7cd6133d2a73755ba97a25f0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:72:29:de:91:37:ce:41:05:c8:5e:3a:44:08: ca:ec:96:4e:52:80:f3:9c:d3:c9:79:f8:c7:bb:2d: 25:1d:c4:40:27:d1:88:26:eb:50:d0:08:ab:e4:5c: 34:cb:3a:67:00:f9:38:53:64:4f:70:30:12:ec:c6: 3b:67:ed:00:3d:77:c5:88:c7:52:49:8f:58:57:78: 32:f4:af:ea:64:c8:65:5d:40:f6:33:a6:3d:f6:91: bc:d8:5d:09:9e:90:75:ec:57:30:af:52:06:dc:ac: 99:77:62:8b:c3:33:d8:eb:10:a1:4d:4f:83:5f:41: 4a:6c:5a:3f:2a:e0:fe:a8:84:41:f4:2f:78:91:4e: f6:c3:ca:5f:a8:21:8f:b0:63:ed:0a:c9:3d:eb:12: 78:8f:c1:cf:2f:c4:4e:d5:97:d9:c3:29:fa:06:f9: 8f:3d:fc:82:cd:e4:3a:60:24:82:4e:17:02:5e:9e: d8:e2:56:fa:83:d5:ff:fb:f6:db:f2:4b:14:a5:2c: a8:e5:3d:57:b2:24:e7:41:44:ce:ef:d2:96:a5:cc: 71:8a:57:8d:f0:51:d9:a3:3f:e5:5b:ec:10:5b:b6: cc:0e:1d:ff:91:d0:6b:15:09:2e:dc:08:ca:2d:31: 7b:ef:4b:6f:89:db:ac:01:84:a7:16:22:d8:37:dd: 09:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 60:63:53:E6:9A:8F:66:ED:7C:D6:13:3D:2A:73:75:5B:A9:7A:25:F0 X509v3 Authority Key Identifier: keyid:72:C3:A9:A3:AD:32:0A:8F:C6:1B:5F:87:89:F5:25:D0:7E:5B:E2:51 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/csOpo60yCo_GG1-HifUl0H5b4lE.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/80/efa4d7-99a7-4c18-80fd-d29f45f793c7/1/YGNT5pqPZu181hM9KnN1W6l6JfA.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/80/efa4d7-99a7-4c18-80fd-d29f45f793c7/1/csOpo60yCo_GG1-HifUl0H5b4lE.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 91.207.238.0/23 Signature Algorithm: sha256WithRSAEncryption bf:b0:9c:c3:73:bb:45:ee:13:ab:9b:65:a3:da:43:85:74:d9: 57:d4:22:a6:5b:7f:b3:2f:d3:6b:db:74:ca:3c:99:c1:d5:75: e0:4c:cc:a0:82:3f:55:0a:aa:33:98:41:c8:1e:dc:36:58:9f: 22:95:09:41:32:f6:18:55:b1:0c:82:b8:21:7a:b8:52:df:ad: f8:54:41:14:4b:59:f6:e3:b7:ca:e3:9a:7d:c2:24:de:18:ea: d9:ac:70:7f:f7:6d:08:97:8e:c9:0c:f0:9a:8a:32:f4:f0:36: 2c:e6:48:71:42:be:22:d4:14:47:85:ef:ad:fd:80:26:f7:ef: fd:17:ec:45:b9:7b:2f:10:36:83:f6:ef:69:4b:27:c3:04:3b: 7b:03:c4:69:7f:35:e4:d0:f2:53:f0:66:64:e5:dd:58:44:8d: 34:32:69:c3:fe:40:19:02:57:1d:95:36:89:65:2d:01:55:d1: b1:43:d0:b0:09:63:83:52:bd:22:65:74:a9:fe:06:cb:9f:b6: c4:e4:d1:94:34:a4:26:04:f7:c6:d1:c3:af:d9:cb:0c:55:93: 0c:9b:81:de:6d:da:0a:c3:8d:93:a3:a7:38:ff:9f:e1:d0:94: 19:7e:d1:64:ba:d7:46:29:f6:84:a7:8c:16:e6:a6:22:c4:06: e5:93:9a:45 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt265A8XIeK6YHHEjQPSzhvMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDcyYzNhOWEzYWQzMjBhOGZjNjFiNWY4Nzg5ZjUyNWQwN2U1 YmUyNTEwHhcNMjYwMTAxMDAxODI3WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg2MDYzNTNlNjlhOGY2NmVkN2NkNjEzM2QyYTczNzU1YmE5N2EyNWYwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwXIp3pE3zkEFyF46RAjK7JZOUoDz nNPJefjHuy0lHcRAJ9GIJutQ0Air5Fw0yzpnAPk4U2RPcDAS7MY7Z+0APXfFiMdS SY9YV3gy9K/qZMhlXUD2M6Y99pG82F0JnpB17Fcwr1IG3KyZd2KLwzPY6xChTU+D X0FKbFo/KuD+qIRB9C94kU72w8pfqCGPsGPtCsk96xJ4j8HPL8RO1ZfZwyn6BvmP PfyCzeQ6YCSCThcCXp7Y4lb6g9X/+/bb8ksUpSyo5T1XsiTnQUTO79KWpcxxileN 8FHZoz/lW+wQW7bMDh3/kdBrFQku3AjKLTF770tvidusAYSnFiLYN90JPwIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFGBjU+aaj2btfNYTPSpzdVupeiXwMB8GA1UdIwQY MBaAFHLDqaOtMgqPxhtfh4n1JdB+W+JRMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvY3NPcG82MHlDb19HRzEtSGlmVWwwSDViNGxFLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84MC9lZmE0ZDctOTlhNy00YzE4LTgwZmQt ZDI5ZjQ1Zjc5M2M3LzEvWUdOVDVwcVBadTE4MWhNOUtuTjFXNmw2SmZBLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC84MC9lZmE0ZDctOTlhNy00YzE4LTgwZmQtZDI5ZjQ1Zjc5M2M3 LzEvY3NPcG82MHlDb19HRzEtSGlmVWwwSDViNGxFLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBW8/uMA0G CSqGSIb3DQEBCwUAA4IBAQC/sJzDc7tF7hOrm2Wj2kOFdNlX1CKmW3+zL9Nr23TK PJnB1XXgTMyggj9VCqozmEHIHtw2WJ8ilQlBMvYYVbEMgrgherhS3634VEEUS1n2 47fK45p9wiTeGOrZrHB/920Il47JDPCaijL08DYs5khxQr4i1BRHhe+t/YAm9+/9 F+xFuXsvEDaD9u9pSyfDBDt7A8RpfzXk0PJT8GZk5d1YRI00MmnD/kAZAlcdlTaJ ZS0BVdGxQ9CwCWODUr0iZXSp/gbLn7bE5NGUNKQmBPfG0cOv2csMVZMMm4HebdoK w42To6c4/5/h0JQZftFkutdGKfaEp4wW5qYixAblk5pF -----END CERTIFICATE-----Generated at Mon Feb 9 21:00:40 2026 by rpki-client