This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/92/b7be64-86d4-443b-9686-f66317977968/1/ybwCxgYuP6yL02aaO7mZuOTMAE8.roa File: ybwCxgYuP6yL02aaO7mZuOTMAE8.roa (raw, json) Hash identifier: TVTGU5or9DtUlyZroM126ho51dpCPSF51pljBNSRFfg= Subject key identifier: C9:BC:02:C6:06:2E:3F:AC:8B:D3:66:9A:3B:B9:99:B8:E4:CC:00:4F Certificate issuer: /CN=84bfc451fc4f2411addd00a9fbb17346ad6e8996 Certificate serial: 019B7EA693669CA85102032F7CC08D9B3C3B Authority key identifier: 84:BF:C4:51:FC:4F:24:11:AD:DD:00:A9:FB:B1:73:46:AD:6E:89:96 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hL_EUfxPJBGt3QCp-7FzRq1uiZY.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/92/b7be64-86d4-443b-9686-f66317977968/1/ybwCxgYuP6yL02aaO7mZuOTMAE8.roa Signing time: Fri 02 Jan 2026 12:20:04 +0000 ROA not before: Fri 02 Jan 2026 12:20:04 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 206238 IP address blocks: 31.14.180.0/23 maxlen: 23 91.132.40.0/22 maxlen: 22 178.239.16.0/22 maxlen: 24 188.212.112.0/22 maxlen: 22 188.213.88.0/21 maxlen: 24 194.145.194.0/23 maxlen: 23 217.148.134.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/92/b7be64-86d4-443b-9686-f66317977968/1/hL_EUfxPJBGt3QCp-7FzRq1uiZY.crl rsync://rpki.ripe.net/repository/DEFAULT/92/b7be64-86d4-443b-9686-f66317977968/1/hL_EUfxPJBGt3QCp-7FzRq1uiZY.mft rsync://rpki.ripe.net/repository/DEFAULT/hL_EUfxPJBGt3QCp-7FzRq1uiZY.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 14 Jan 2026 01:00:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7e:a6:93:66:9c:a8:51:02:03:2f:7c:c0:8d:9b:3c:3b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=84bfc451fc4f2411addd00a9fbb17346ad6e8996 Validity Not Before: Jan 2 12:20:04 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=c9bc02c6062e3fac8bd3669a3bb999b8e4cc004f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:40:95:fb:b5:92:a3:5a:06:a8:0d:65:81:63: 66:f1:cf:6f:5a:f8:05:d7:83:30:c8:4d:3d:af:98: c0:83:7f:e6:df:14:6c:b0:14:66:fb:d9:fb:53:54: 54:c4:e0:b0:98:fa:38:7d:13:fd:fd:c3:98:54:3a: 53:c3:26:40:ea:74:cc:f8:ca:62:a6:2f:b6:d3:40: d7:bc:81:e4:e4:9e:40:be:4c:fa:0c:cc:c2:0e:25: b2:23:4a:7e:c7:d7:24:30:db:fc:82:68:2f:49:9a: fd:41:3a:b6:28:0c:bb:03:f7:2d:01:ee:f1:42:1e: 43:f9:9e:00:d9:d6:0c:10:3c:c6:d2:8f:f3:13:be: 4c:8b:25:1d:c4:19:81:78:8e:57:6f:f3:29:b9:82: e4:91:b5:2b:cd:19:8d:06:58:43:4a:90:5f:1d:30: c3:f4:03:48:a8:d9:21:9e:f7:7b:cf:2c:a3:e1:de: aa:7f:f8:a7:3d:58:0d:ff:55:e7:6d:a4:b0:5b:25: fe:4c:23:a4:df:9e:62:93:2d:4d:59:87:a6:9a:4a: ff:4b:39:92:f4:0a:37:e6:5c:65:a4:0e:3c:26:24: 5a:a0:0d:fc:ac:a3:b9:3a:33:e0:26:8c:c7:9e:d0: b6:5e:c1:c6:20:6e:73:34:4d:43:e9:08:e4:7e:32: 54:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C9:BC:02:C6:06:2E:3F:AC:8B:D3:66:9A:3B:B9:99:B8:E4:CC:00:4F X509v3 Authority Key Identifier: keyid:84:BF:C4:51:FC:4F:24:11:AD:DD:00:A9:FB:B1:73:46:AD:6E:89:96 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hL_EUfxPJBGt3QCp-7FzRq1uiZY.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/92/b7be64-86d4-443b-9686-f66317977968/1/ybwCxgYuP6yL02aaO7mZuOTMAE8.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/92/b7be64-86d4-443b-9686-f66317977968/1/hL_EUfxPJBGt3QCp-7FzRq1uiZY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 31.14.180.0/23 91.132.40.0/22 178.239.16.0/22 188.212.112.0/22 188.213.88.0/21 194.145.194.0/23 217.148.134.0/23 Signature Algorithm: sha256WithRSAEncryption 61:5d:a0:8b:03:09:6b:ef:6d:9e:9a:a4:b5:d5:bb:97:32:76: c3:cd:12:f7:cf:62:9a:e3:c4:1f:09:81:8b:4f:06:dd:91:c6: c5:08:1e:98:01:a7:cb:fa:8b:93:a0:9e:d4:8d:17:3c:e0:89: 17:2b:7c:14:e9:21:ef:1d:9e:86:b1:98:6c:a2:5d:b7:bb:eb: 85:0a:ad:01:cc:e1:30:79:af:35:ce:c9:72:70:51:ef:ce:31: 27:8c:25:65:37:03:42:a1:5e:49:dc:2d:e6:b9:bc:44:69:4d: a7:1c:d2:90:87:63:fa:ae:c4:86:45:9e:4f:4a:c6:94:cc:b2: 85:79:7b:f6:95:c3:d1:ae:96:16:00:58:96:7e:71:59:c2:b2: fb:f4:97:f9:fa:e1:3f:02:30:5a:9d:62:f3:3e:6d:ed:f0:bf: a5:a8:d6:c4:3c:aa:2f:12:5f:e0:20:42:de:a7:98:ca:4f:28: 86:61:2d:64:b7:9a:4a:1a:ed:df:0d:dc:2f:16:25:ee:fc:9e: d3:87:6f:4f:b8:a7:bc:40:45:0f:29:db:c7:ae:92:c5:14:89: 7e:49:cf:2d:ff:9d:1d:55:eb:89:20:19:df:29:d3:13:9f:e2: 16:4f:b9:58:b5:fc:25:9b:83:a0:8e:ef:45:d2:c8:46:b3:37: 31:45:47:22 -----BEGIN CERTIFICATE----- MIIFITCCBAmgAwIBAgISAZt+ppNmnKhRAgMvfMCNmzw7MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDg0YmZjNDUxZmM0ZjI0MTFhZGRkMDBhOWZiYjE3MzQ2YWQ2 ZTg5OTYwHhcNMjYwMTAyMTIyMDA0WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhjOWJjMDJjNjA2MmUzZmFjOGJkMzY2OWEzYmI5OTliOGU0Y2MwMDRmMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAw0CV+7WSo1oGqA1lgWNm8c9vWvgF 14MwyE09r5jAg3/m3xRssBRm+9n7U1RUxOCwmPo4fRP9/cOYVDpTwyZA6nTM+Mpi pi+200DXvIHk5J5Avkz6DMzCDiWyI0p+x9ckMNv8gmgvSZr9QTq2KAy7A/ctAe7x Qh5D+Z4A2dYMEDzG0o/zE75MiyUdxBmBeI5Xb/MpuYLkkbUrzRmNBlhDSpBfHTDD 9ANIqNkhnvd7zyyj4d6qf/inPVgN/1XnbaSwWyX+TCOk355iky1NWYemmkr/SzmS 9Ao35lxlpA48JiRaoA38rKO5OjPgJozHntC2XsHGIG5zNE1D6QjkfjJUvQIDAQAB o4ICLTCCAikwHQYDVR0OBBYEFMm8AsYGLj+si9Nmmju5mbjkzABPMB8GA1UdIwQY MBaAFIS/xFH8TyQRrd0Aqfuxc0atbomWMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvaExfRVVmeFBKQkd0M1FDcC03RnpScTF1aVpZLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85Mi9iN2JlNjQtODZkNC00NDNiLTk2ODYt ZjY2MzE3OTc3OTY4LzEveWJ3Q3hnWXVQNnlMMDJhYU83bVp1T1RNQUU4LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC85Mi9iN2JlNjQtODZkNC00NDNiLTk2ODYtZjY2MzE3OTc3OTY4 LzEvaExfRVVmeFBKQkd0M1FDcC03RnpScTF1aVpZLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMEMGCCsGAQUFBwEHAQH/BDQwMjAwBAIAATAqAwQBHw60AwQC W4QoAwQCsu8QAwQCvNRwAwQDvNVYAwQBwpHCAwQB2ZSGMA0GCSqGSIb3DQEBCwUA A4IBAQBhXaCLAwlr722emqS11buXMnbDzRL3z2Ka48QfCYGLTwbdkcbFCB6YAafL +ouToJ7UjRc84IkXK3wU6SHvHZ6GsZhsol23u+uFCq0BzOEwea81zslycFHvzjEn jCVlNwNCoV5J3C3mubxEaU2nHNKQh2P6rsSGRZ5PSsaUzLKFeXv2lcPRrpYWAFiW fnFZwrL79Jf5+uE/AjBanWLzPm3t8L+lqNbEPKovEl/gIELep5jKTyiGYS1kt5pK Gu3fDdwvFiXu/J7Th29PuKe8QEUPKdvHrpLFFIl+Sc8t/50dVeuJIBnfKdMTn+IW T7lYtfwlm4Ogju9F0shGszcxRUci -----END CERTIFICATE-----Generated at Tue Jan 13 11:19:16 2026 by rpki-client