This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/87/6d45c9-b2ca-40b7-80fe-a633125b7e23/1/yfnlg-tNJYqqOyWJj67EGZSv6yo.roa File: yfnlg-tNJYqqOyWJj67EGZSv6yo.roa (raw, json) Hash identifier: KnHV4wZ2GDmYibIqluVpP6AfHpgamKHbICtl13z8MtE= Subject key identifier: C9:F9:E5:83:EB:4D:25:8A:AA:3B:25:89:8F:AE:C4:19:94:AF:EB:2A Certificate issuer: /CN=0bf3bcfa0ba82d93d14f85587027a7e773511a61 Certificate serial: 019B7834B605D7EA6D6DB92A7F4F35CFB4EF Authority key identifier: 0B:F3:BC:FA:0B:A8:2D:93:D1:4F:85:58:70:27:A7:E7:73:51:1A:61 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/C_O8-guoLZPRT4VYcCen53NRGmE.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/87/6d45c9-b2ca-40b7-80fe-a633125b7e23/1/yfnlg-tNJYqqOyWJj67EGZSv6yo.roa Signing time: Thu 01 Jan 2026 06:17:58 +0000 ROA not before: Thu 01 Jan 2026 06:17:58 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 15395 IP address blocks: 193.142.244.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/87/6d45c9-b2ca-40b7-80fe-a633125b7e23/1/C_O8-guoLZPRT4VYcCen53NRGmE.crl rsync://rpki.ripe.net/repository/DEFAULT/87/6d45c9-b2ca-40b7-80fe-a633125b7e23/1/C_O8-guoLZPRT4VYcCen53NRGmE.mft rsync://rpki.ripe.net/repository/DEFAULT/C_O8-guoLZPRT4VYcCen53NRGmE.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 21:05:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:78:34:b6:05:d7:ea:6d:6d:b9:2a:7f:4f:35:cf:b4:ef Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0bf3bcfa0ba82d93d14f85587027a7e773511a61 Validity Not Before: Jan 1 06:17:58 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=c9f9e583eb4d258aaa3b25898faec41994afeb2a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:ba:bd:c3:4a:10:74:88:5d:01:4f:40:cb:fa: df:ea:bd:90:33:35:f6:ec:39:90:cc:d6:11:af:5f: fb:39:f9:0a:10:cb:ff:54:5a:14:70:d7:ab:90:f5: ba:af:9d:29:a7:13:e7:aa:68:dc:a9:69:20:02:fc: 0a:3c:6f:c7:2a:84:bf:52:d0:fc:7c:25:82:d9:a8: c9:3b:f6:c7:b8:09:87:b5:9d:56:56:8f:7e:43:e3: 2c:71:67:e8:6d:b7:67:ec:98:b3:08:1c:46:2d:4d: 0a:42:83:f5:d7:f4:57:c2:a0:2d:b0:60:7c:97:c3: 29:88:5e:d4:87:1a:01:27:4d:6d:0e:44:18:bb:da: f0:21:bf:e4:32:51:e0:e9:0c:d0:c3:af:f7:e7:c2: 55:a5:6c:d5:3c:76:b2:b3:6d:ad:13:78:24:45:be: 3d:0a:88:26:49:bf:ef:65:34:d0:74:36:73:f4:68: c3:53:2d:57:23:37:05:df:84:78:36:37:9b:73:c7: 4e:cf:82:88:f2:62:46:9e:19:15:52:b7:c3:84:c2: 70:24:18:e6:fb:3b:30:e3:f1:c1:a8:5c:51:1c:0d: 0c:9e:01:91:47:ca:2a:4a:c8:f1:cc:f7:1c:42:86: 67:ff:be:92:56:81:ea:c8:2d:b0:78:86:29:68:79: a6:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C9:F9:E5:83:EB:4D:25:8A:AA:3B:25:89:8F:AE:C4:19:94:AF:EB:2A X509v3 Authority Key Identifier: keyid:0B:F3:BC:FA:0B:A8:2D:93:D1:4F:85:58:70:27:A7:E7:73:51:1A:61 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/C_O8-guoLZPRT4VYcCen53NRGmE.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/87/6d45c9-b2ca-40b7-80fe-a633125b7e23/1/yfnlg-tNJYqqOyWJj67EGZSv6yo.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/87/6d45c9-b2ca-40b7-80fe-a633125b7e23/1/C_O8-guoLZPRT4VYcCen53NRGmE.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 193.142.244.0/24 Signature Algorithm: sha256WithRSAEncryption 4f:cb:59:ea:57:3d:34:02:c9:79:16:fb:2d:57:be:80:8d:59: ad:15:6b:25:19:d7:a6:eb:1d:e6:4f:2d:b9:16:16:78:12:d8: 63:c7:37:82:43:55:c1:7a:2a:84:57:8a:f9:6c:36:d2:f7:65: 4f:ec:cb:22:a3:be:65:6c:6f:9e:ac:8a:ed:00:f5:42:10:3e: 41:6a:c7:7b:78:df:47:3a:9c:7e:b9:d3:86:c5:61:75:da:92: 71:28:c7:e0:95:7a:e9:1b:f5:d0:fe:13:88:96:8f:15:77:9a: 87:11:75:d8:26:4f:aa:b9:ed:cf:0d:0e:05:ec:ae:34:f4:3d: ea:2c:1b:61:41:65:20:e5:d8:32:77:dd:41:c0:c3:99:ca:cd: c6:05:63:47:6d:ee:00:50:39:f2:1c:f2:05:c7:88:8b:81:56: 03:d1:0f:b0:ef:5e:89:2c:2d:2c:44:d5:24:7c:93:43:88:cf: 37:01:5b:4f:77:03:3f:71:b1:f3:0f:f9:45:42:83:24:b7:36: 3b:3d:4f:78:24:60:e6:b2:43:40:fc:26:4f:7e:7e:b6:27:4f: bd:9d:f7:59:66:71:d8:e1:5d:7b:72:51:5c:e1:2b:93:3d:e0: 84:76:d2:b1:84:9e:4c:84:c1:04:0e:8c:6a:59:27:c4:5f:fe: c4:46:52:fd -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt4NLYF1+ptbbkqf081z7TvMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDBiZjNiY2ZhMGJhODJkOTNkMTRmODU1ODcwMjdhN2U3NzM1 MTFhNjEwHhcNMjYwMTAxMDYxNzU4WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhjOWY5ZTU4M2ViNGQyNThhYWEzYjI1ODk4ZmFlYzQxOTk0YWZlYjJhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArLq9w0oQdIhdAU9Ay/rf6r2QMzX2 7DmQzNYRr1/7OfkKEMv/VFoUcNerkPW6r50ppxPnqmjcqWkgAvwKPG/HKoS/UtD8 fCWC2ajJO/bHuAmHtZ1WVo9+Q+MscWfobbdn7JizCBxGLU0KQoP11/RXwqAtsGB8 l8MpiF7UhxoBJ01tDkQYu9rwIb/kMlHg6QzQw6/358JVpWzVPHays22tE3gkRb49 CogmSb/vZTTQdDZz9GjDUy1XIzcF34R4Njebc8dOz4KI8mJGnhkVUrfDhMJwJBjm +zsw4/HBqFxRHA0MngGRR8oqSsjxzPccQoZn/76SVoHqyC2weIYpaHmmOQIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFMn55YPrTSWKqjsliY+uxBmUr+sqMB8GA1UdIwQY MBaAFAvzvPoLqC2T0U+FWHAnp+dzURphMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvQ19POC1ndW9MWlBSVDRWWWNDZW41M05SR21FLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84Ny82ZDQ1YzktYjJjYS00MGI3LTgwZmUt YTYzMzEyNWI3ZTIzLzEveWZubGctdE5KWXFxT3lXSmo2N0VHWlN2NnlvLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC84Ny82ZDQ1YzktYjJjYS00MGI3LTgwZmUtYTYzMzEyNWI3ZTIz LzEvQ19POC1ndW9MWlBSVDRWWWNDZW41M05SR21FLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAwY70MA0G CSqGSIb3DQEBCwUAA4IBAQBPy1nqVz00Asl5FvstV76AjVmtFWslGdem6x3mTy25 FhZ4EthjxzeCQ1XBeiqEV4r5bDbS92VP7Msio75lbG+erIrtAPVCED5Basd7eN9H Opx+udOGxWF12pJxKMfglXrpG/XQ/hOIlo8Vd5qHEXXYJk+que3PDQ4F7K409D3q LBthQWUg5dgyd91BwMOZys3GBWNHbe4AUDnyHPIFx4iLgVYD0Q+w716JLC0sRNUk fJNDiM83AVtPdwM/cbHzD/lFQoMktzY7PU94JGDmskNA/CZPfn62J0+9nfdZZnHY 4V17clFc4SuTPeCEdtKxhJ5MhMEEDoxqWSfEX/7ERlL9 -----END CERTIFICATE-----Generated at Tue Feb 10 01:23:37 2026 by rpki-client