This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/94/b06942-afc8-4336-97ee-aee696f83903/1/YPDieqd7uprhg0mt2VMKKGKhE84.roa File: YPDieqd7uprhg0mt2VMKKGKhE84.roa (raw, json) Hash identifier: POXauAFc4bLGuqw0rVwSSwjNmzs6KXUe2cK744fFvLA= Subject key identifier: 60:F0:E2:7A:A7:7B:BA:9A:E1:83:49:AD:D9:53:0A:28:62:A1:13:CE Certificate issuer: /CN=39805a05b8d9f0dfc43834c664d624715439f0d5 Certificate serial: 019B7910FCE90FC79A7EF0EF96A4A2561E8A Authority key identifier: 39:80:5A:05:B8:D9:F0:DF:C4:38:34:C6:64:D6:24:71:54:39:F0:D5 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OYBaBbjZ8N_EODTGZNYkcVQ58NU.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/94/b06942-afc8-4336-97ee-aee696f83903/1/YPDieqd7uprhg0mt2VMKKGKhE84.roa Signing time: Thu 01 Jan 2026 10:18:34 +0000 ROA not before: Thu 01 Jan 2026 10:18:34 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 201370 IP address blocks: 185.68.252.0/22 maxlen: 22 2001:16f7::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/94/b06942-afc8-4336-97ee-aee696f83903/1/OYBaBbjZ8N_EODTGZNYkcVQ58NU.crl rsync://rpki.ripe.net/repository/DEFAULT/94/b06942-afc8-4336-97ee-aee696f83903/1/OYBaBbjZ8N_EODTGZNYkcVQ58NU.mft rsync://rpki.ripe.net/repository/DEFAULT/OYBaBbjZ8N_EODTGZNYkcVQ58NU.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 10:00:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:79:10:fc:e9:0f:c7:9a:7e:f0:ef:96:a4:a2:56:1e:8a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=39805a05b8d9f0dfc43834c664d624715439f0d5 Validity Not Before: Jan 1 10:18:34 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=60f0e27aa77bba9ae18349add9530a2862a113ce Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e8:2b:ee:3a:66:78:32:af:e5:14:e5:91:f2:d6: 6c:e1:8f:00:54:f3:db:44:88:25:7e:e9:da:fb:8c: ec:4d:a3:cc:c2:2a:a6:31:a5:90:ae:9b:c0:ee:7d: c3:2b:54:f0:57:9a:e2:4b:e8:98:79:24:c6:56:b0: 52:03:f9:4e:4d:0a:8d:75:83:65:01:a3:d2:11:52: 77:8c:dd:42:70:d4:e2:65:78:3e:10:ec:92:66:f9: 08:48:3a:1c:fa:fb:79:ed:c0:81:56:e3:67:eb:60: fc:54:a9:71:f1:40:7a:75:04:29:af:ee:a8:3c:46: 02:52:17:61:eb:f8:c8:4a:51:02:09:92:64:95:b8: 2d:c5:00:27:63:88:e8:03:2d:82:27:c4:42:f9:dc: 93:35:05:f3:87:1c:89:1b:f7:e8:68:be:0a:2b:b3: 2d:ca:3b:c6:00:e2:7b:5a:5d:7e:a9:ad:4e:cf:d3: 24:ed:76:a0:e5:3b:14:46:d4:79:4b:9a:32:eb:22: ac:12:08:41:7a:41:51:3b:16:31:28:1b:12:79:3a: bc:ec:65:de:7a:cc:81:5c:be:f7:84:e8:73:9e:3c: 0e:d9:ba:47:5f:ae:c3:e5:34:92:9b:06:16:a3:13: 54:f6:b6:78:ce:73:f7:ce:4e:8a:c0:39:d9:da:5c: ba:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 60:F0:E2:7A:A7:7B:BA:9A:E1:83:49:AD:D9:53:0A:28:62:A1:13:CE X509v3 Authority Key Identifier: keyid:39:80:5A:05:B8:D9:F0:DF:C4:38:34:C6:64:D6:24:71:54:39:F0:D5 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OYBaBbjZ8N_EODTGZNYkcVQ58NU.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/94/b06942-afc8-4336-97ee-aee696f83903/1/YPDieqd7uprhg0mt2VMKKGKhE84.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/94/b06942-afc8-4336-97ee-aee696f83903/1/OYBaBbjZ8N_EODTGZNYkcVQ58NU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.68.252.0/22 IPv6: 2001:16f7::/32 Signature Algorithm: sha256WithRSAEncryption 4f:00:11:3c:00:88:63:ff:64:5b:e3:28:3d:b1:7e:83:66:e3: 0b:f2:9c:db:1e:48:4b:30:a6:ff:e9:6c:ad:f9:d5:a2:da:61: b3:21:f7:18:0e:93:b4:74:89:14:5e:2e:11:cf:5e:d6:38:6e: 2d:4c:c2:37:40:c4:be:42:a3:f2:44:a5:1c:1b:2f:bf:2c:6c: 91:f6:00:11:fe:f7:93:f3:1a:b7:d9:40:ed:93:db:47:3d:8a: af:dd:76:02:d1:5b:4f:c9:14:42:b5:18:84:63:7d:8b:82:01: f3:db:29:8e:38:57:24:13:b7:fb:4e:9f:9a:8c:c9:df:06:da: 10:9d:c2:68:ac:11:cf:fd:32:44:39:67:b7:ce:bc:eb:4b:68: 69:2e:1d:2c:af:6a:cc:85:a2:90:20:9c:b5:18:7b:d5:24:f9: f4:11:5d:51:44:e0:a1:1b:cd:c6:fb:56:ec:0c:ed:29:00:ad: 85:94:96:99:60:99:77:c4:a8:9e:5c:1d:30:e7:2a:d4:60:37: 66:2b:30:ed:ef:cd:78:af:03:9f:59:fc:45:05:cf:3a:bb:cb: dc:c9:49:8e:7a:67:72:13:c1:c5:50:e2:7e:d5:84:c6:95:6a: 73:61:17:81:9f:cf:e5:f4:0d:90:b6:80:43:b3:95:a4:1d:1e: 48:43:a9:6a -----BEGIN CERTIFICATE----- MIIFDDCCA/SgAwIBAgISAZt5EPzpD8eafvDvlqSiVh6KMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDM5ODA1YTA1YjhkOWYwZGZjNDM4MzRjNjY0ZDYyNDcxNTQz OWYwZDUwHhcNMjYwMTAxMTAxODM0WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg2MGYwZTI3YWE3N2JiYTlhZTE4MzQ5YWRkOTUzMGEyODYyYTExM2NlMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA6CvuOmZ4Mq/lFOWR8tZs4Y8AVPPb RIglfuna+4zsTaPMwiqmMaWQrpvA7n3DK1TwV5riS+iYeSTGVrBSA/lOTQqNdYNl AaPSEVJ3jN1CcNTiZXg+EOySZvkISDoc+vt57cCBVuNn62D8VKlx8UB6dQQpr+6o PEYCUhdh6/jISlECCZJklbgtxQAnY4joAy2CJ8RC+dyTNQXzhxyJG/foaL4KK7Mt yjvGAOJ7Wl1+qa1Oz9Mk7Xag5TsURtR5S5oy6yKsEghBekFROxYxKBsSeTq87GXe esyBXL73hOhznjwO2bpHX67D5TSSmwYWoxNU9rZ4znP3zk6KwDnZ2ly6iQIDAQAB o4ICGDCCAhQwHQYDVR0OBBYEFGDw4nqne7qa4YNJrdlTCihioRPOMB8GA1UdIwQY MBaAFDmAWgW42fDfxDg0xmTWJHFUOfDVMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvT1lCYUJialo4Tl9FT0RUR1pOWWtjVlE1OE5VLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85NC9iMDY5NDItYWZjOC00MzM2LTk3ZWUt YWVlNjk2ZjgzOTAzLzEvWVBEaWVxZDd1cHJoZzBtdDJWTUtLR0toRTg0LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC85NC9iMDY5NDItYWZjOC00MzM2LTk3ZWUtYWVlNjk2ZjgzOTAz LzEvT1lCYUJialo4Tl9FT0RUR1pOWWtjVlE1OE5VLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMC4GCCsGAQUFBwEHAQH/BB8wHTAMBAIAATAGAwQCuUT8MA0E AgACMAcDBQAgARb3MA0GCSqGSIb3DQEBCwUAA4IBAQBPABE8AIhj/2Rb4yg9sX6D ZuML8pzbHkhLMKb/6Wyt+dWi2mGzIfcYDpO0dIkUXi4Rz17WOG4tTMI3QMS+QqPy RKUcGy+/LGyR9gAR/veT8xq32UDtk9tHPYqv3XYC0VtPyRRCtRiEY32LggHz2ymO OFckE7f7Tp+ajMnfBtoQncJorBHP/TJEOWe3zrzrS2hpLh0sr2rMhaKQIJy1GHvV JPn0EV1RROChG83G+1bsDO0pAK2FlJaZYJl3xKieXB0w5yrUYDdmKzDt7814rwOf WfxFBc86u8vcyUmOemdyE8HFUOJ+1YTGlWpzYReBn8/l9A2QtoBDs5WkHR5IQ6lq -----END CERTIFICATE-----Generated at Mon Feb 9 20:10:23 2026 by rpki-client