This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/88/d56693-2254-4a3b-acbb-efaaff0a982f/1/YFarakxWfFYCLAQp5ljHgqOhWAE.roa File: YFarakxWfFYCLAQp5ljHgqOhWAE.roa (raw, json) Hash identifier: RE/+b+N1gEHRcglkBMv26yH60CrY4s//QKu/NgO0inU= Subject key identifier: 60:56:AB:6A:4C:56:7C:56:02:2C:04:29:E6:58:C7:82:A3:A1:58:01 Certificate issuer: /CN=47d064fb3e541f23563065e48f300f2cfdfe009a Certificate serial: 019B7F1555FB45985F93AB6603F2F2581D52 Authority key identifier: 47:D0:64:FB:3E:54:1F:23:56:30:65:E4:8F:30:0F:2C:FD:FE:00:9A Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/R9Bk-z5UHyNWMGXkjzAPLP3-AJo.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/88/d56693-2254-4a3b-acbb-efaaff0a982f/1/YFarakxWfFYCLAQp5ljHgqOhWAE.roa Signing time: Fri 02 Jan 2026 14:21:03 +0000 ROA not before: Fri 02 Jan 2026 14:21:03 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 14618 IP address blocks: 195.244.28.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/88/d56693-2254-4a3b-acbb-efaaff0a982f/1/R9Bk-z5UHyNWMGXkjzAPLP3-AJo.crl rsync://rpki.ripe.net/repository/DEFAULT/88/d56693-2254-4a3b-acbb-efaaff0a982f/1/R9Bk-z5UHyNWMGXkjzAPLP3-AJo.mft rsync://rpki.ripe.net/repository/DEFAULT/R9Bk-z5UHyNWMGXkjzAPLP3-AJo.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 08 Jan 2026 15:30:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7f:15:55:fb:45:98:5f:93:ab:66:03:f2:f2:58:1d:52 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=47d064fb3e541f23563065e48f300f2cfdfe009a Validity Not Before: Jan 2 14:21:03 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=6056ab6a4c567c56022c0429e658c782a3a15801 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:4f:7b:a8:02:42:5d:34:1e:6c:ca:63:e8:1b: 41:3c:08:4d:b9:6f:4d:a4:59:c7:87:1c:74:6d:ff: a5:86:76:3b:8a:a6:95:43:12:03:f0:4e:52:c6:6d: 0e:f7:44:65:bb:28:ef:2b:c5:e7:2b:52:31:8c:f0: 88:6c:b6:85:2a:d3:fc:7e:b9:85:6a:3e:a8:07:6f: ff:d2:14:3a:d0:e0:15:fe:cc:6e:f6:93:53:7b:7e: 47:8a:16:c0:fa:d3:da:5d:c9:e9:96:26:45:70:49: 60:48:ba:82:75:dd:05:b7:a3:31:7b:9e:d2:84:62: 0b:42:bf:a1:26:07:db:ff:69:a4:54:f9:d5:15:d1: 19:b5:e1:40:2a:e4:09:4d:6e:45:fc:73:eb:94:e1: bc:07:3c:84:c2:bf:0b:64:21:61:c1:f2:81:46:54: a2:25:82:49:14:cb:ce:50:cb:07:e4:c9:3a:1d:9d: 39:3a:cd:b1:98:46:65:4a:bd:25:4b:65:d1:5e:68: f6:2d:d3:b0:22:91:77:1f:47:9b:69:09:78:a5:be: 7f:0e:c6:cc:71:3e:fb:3d:7e:04:ce:05:ee:ba:1b: 37:f9:c4:b3:dc:aa:db:c7:54:0b:10:a1:75:ea:9b: 5d:57:32:e9:14:e9:2b:d2:e4:59:7f:b2:df:78:bd: fa:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 60:56:AB:6A:4C:56:7C:56:02:2C:04:29:E6:58:C7:82:A3:A1:58:01 X509v3 Authority Key Identifier: keyid:47:D0:64:FB:3E:54:1F:23:56:30:65:E4:8F:30:0F:2C:FD:FE:00:9A X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/R9Bk-z5UHyNWMGXkjzAPLP3-AJo.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/88/d56693-2254-4a3b-acbb-efaaff0a982f/1/YFarakxWfFYCLAQp5ljHgqOhWAE.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/88/d56693-2254-4a3b-acbb-efaaff0a982f/1/R9Bk-z5UHyNWMGXkjzAPLP3-AJo.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 195.244.28.0/23 Signature Algorithm: sha256WithRSAEncryption 17:48:e7:d7:00:52:7f:a2:bf:fb:40:20:7b:66:87:22:d0:b6: fc:e5:2b:48:6a:2f:c7:ce:e2:ba:35:e9:54:10:ec:27:57:b7: 2a:d9:dc:ec:7f:47:62:e9:e2:3e:37:26:2b:44:45:11:6d:76: d4:30:54:3d:1d:3b:91:f6:a3:9b:63:d1:33:a5:1b:df:c1:e8: 9d:f2:33:76:7f:48:33:2a:1a:ee:2d:bb:55:54:df:2d:ca:8c: 0d:09:38:c3:f5:af:9f:7d:88:4b:f5:2f:1c:97:04:c1:98:84: 92:93:6f:78:e0:e9:89:07:fe:af:27:77:0e:9a:cc:04:74:33: d2:be:77:44:11:8e:0e:1e:14:0c:db:8a:1c:dc:50:bd:2a:50: fb:de:56:5b:54:e8:26:9d:a6:81:3b:77:fa:af:62:d7:7d:f5: 3a:de:74:33:86:ba:07:8e:83:e2:57:d3:bb:d1:e4:65:6d:9e: 36:82:86:73:c7:d7:ed:93:f9:8b:58:04:c5:2f:4c:cc:80:7d: fe:7f:e6:99:3a:2d:12:bf:51:ff:4a:02:99:00:93:fb:9a:c7: b1:51:fe:89:89:d2:48:e4:82:12:60:0a:31:c0:7b:fb:6d:36: 8e:65:4e:47:a4:3f:6b:f2:5e:12:36:79:36:8e:71:45:2c:28: 8a:99:56:ce -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt/FVX7RZhfk6tmA/LyWB1SMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDQ3ZDA2NGZiM2U1NDFmMjM1NjMwNjVlNDhmMzAwZjJjZmRm ZTAwOWEwHhcNMjYwMTAyMTQyMTAzWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg2MDU2YWI2YTRjNTY3YzU2MDIyYzA0MjllNjU4Yzc4MmEzYTE1ODAxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA2E97qAJCXTQebMpj6BtBPAhNuW9N pFnHhxx0bf+lhnY7iqaVQxID8E5Sxm0O90RluyjvK8XnK1IxjPCIbLaFKtP8frmF aj6oB2//0hQ60OAV/sxu9pNTe35HihbA+tPaXcnpliZFcElgSLqCdd0Ft6Mxe57S hGILQr+hJgfb/2mkVPnVFdEZteFAKuQJTW5F/HPrlOG8BzyEwr8LZCFhwfKBRlSi JYJJFMvOUMsH5Mk6HZ05Os2xmEZlSr0lS2XRXmj2LdOwIpF3H0ebaQl4pb5/DsbM cT77PX4EzgXuuhs3+cSz3Krbx1QLEKF16ptdVzLpFOkr0uRZf7LfeL36qwIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFGBWq2pMVnxWAiwEKeZYx4KjoVgBMB8GA1UdIwQY MBaAFEfQZPs+VB8jVjBl5I8wDyz9/gCaMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvUjlCay16NVVIeU5XTUdYa2p6QVBMUDMtQUpvLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84OC9kNTY2OTMtMjI1NC00YTNiLWFjYmIt ZWZhYWZmMGE5ODJmLzEvWUZhcmFreFdmRllDTEFRcDVsakhncU9oV0FFLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC84OC9kNTY2OTMtMjI1NC00YTNiLWFjYmItZWZhYWZmMGE5ODJm LzEvUjlCay16NVVIeU5XTUdYa2p6QVBMUDMtQUpvLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBw/QcMA0G CSqGSIb3DQEBCwUAA4IBAQAXSOfXAFJ/or/7QCB7Zoci0Lb85StIai/HzuK6NelU EOwnV7cq2dzsf0di6eI+NyYrREURbXbUMFQ9HTuR9qObY9EzpRvfweid8jN2f0gz KhruLbtVVN8tyowNCTjD9a+ffYhL9S8clwTBmISSk2944OmJB/6vJ3cOmswEdDPS vndEEY4OHhQM24oc3FC9KlD73lZbVOgmnaaBO3f6r2LXffU63nQzhroHjoPiV9O7 0eRlbZ42goZzx9ftk/mLWATFL0zMgH3+f+aZOi0Sv1H/SgKZAJP7msexUf6JidJI 5IISYAoxwHv7bTaOZU5HpD9r8l4SNnk2jnFFLCiKmVbO -----END CERTIFICATE-----Generated at Wed Jan 7 23:51:46 2026 by rpki-client