This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/94/bf7a28-bf1e-4835-beed-b3d86aa43bc5/1/yDVUQqdjVn-Gy8jXRHre7qqmO2w.roa File: yDVUQqdjVn-Gy8jXRHre7qqmO2w.roa (raw, json) Hash identifier: G6iS6MKZGANp8S6J6RugxQ+QOiCCsXNcGfScixS1Z8s= Subject key identifier: C8:35:54:42:A7:63:56:7F:86:CB:C8:D7:44:7A:DE:EE:AA:A6:3B:6C Certificate issuer: /CN=cb20606de730456edd7335cc882cbdf4396f3460 Certificate serial: 019B783553519A680EC7203B768A1D154089 Authority key identifier: CB:20:60:6D:E7:30:45:6E:DD:73:35:CC:88:2C:BD:F4:39:6F:34:60 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/yyBgbecwRW7dczXMiCy99DlvNGA.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/94/bf7a28-bf1e-4835-beed-b3d86aa43bc5/1/yDVUQqdjVn-Gy8jXRHre7qqmO2w.roa Signing time: Thu 01 Jan 2026 06:18:39 +0000 ROA not before: Thu 01 Jan 2026 06:18:39 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 43679 IP address blocks: 78.28.0.0/24 maxlen: 24 93.94.16.0/21 maxlen: 21 93.94.16.0/22 maxlen: 22 93.94.17.0/24 maxlen: 24 93.94.20.0/23 maxlen: 23 93.94.22.0/24 maxlen: 24 93.94.23.0/24 maxlen: 24 2a02:e88::/32 maxlen: 32 2a02:e88::/33 maxlen: 33 2a02:e88::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/94/bf7a28-bf1e-4835-beed-b3d86aa43bc5/1/yyBgbecwRW7dczXMiCy99DlvNGA.crl rsync://rpki.ripe.net/repository/DEFAULT/94/bf7a28-bf1e-4835-beed-b3d86aa43bc5/1/yyBgbecwRW7dczXMiCy99DlvNGA.mft rsync://rpki.ripe.net/repository/DEFAULT/yyBgbecwRW7dczXMiCy99DlvNGA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 21:05:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:78:35:53:51:9a:68:0e:c7:20:3b:76:8a:1d:15:40:89 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=cb20606de730456edd7335cc882cbdf4396f3460 Validity Not Before: Jan 1 06:18:39 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=c8355442a763567f86cbc8d7447adeeeaaa63b6c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:32:32:b4:cf:c4:7f:31:4f:c1:af:a2:2b:34: fd:12:05:ea:c6:50:05:f5:39:9e:59:7f:65:d9:3a: d0:b0:ba:2c:db:b6:16:c6:a3:c6:e1:99:8a:9a:d3: ed:8b:99:30:09:af:c4:32:a1:6a:75:81:9c:8b:a5: 34:fd:27:64:ca:67:67:39:77:d6:f8:f9:9b:ad:a5: 12:62:d1:9a:80:5b:73:6c:7d:fc:0a:b0:cf:00:25: 3c:17:c0:1c:19:ca:4e:7e:45:85:c0:49:96:0a:c3: e9:6a:d1:54:5d:33:6a:fb:ad:1a:f8:4d:5b:64:1e: 8f:2c:8a:74:2f:5a:df:e3:b2:71:e8:63:9f:77:c5: 6c:dd:0d:48:b9:ea:6f:e2:14:e7:31:f2:13:ed:ec: e5:b6:28:3d:9f:3e:d2:da:65:79:8f:94:34:86:5f: c8:82:ca:7c:05:72:67:fb:f6:2b:4b:b7:14:96:93: 28:f0:d6:d5:6a:25:2d:1a:df:7c:fe:1c:82:47:14: 4c:b5:18:18:ce:93:d2:8b:78:d2:8a:88:47:cd:e1: 38:53:ed:e6:eb:60:66:04:e6:2b:11:82:7c:60:04: 7b:e0:6e:7c:80:47:69:73:1e:0d:6b:ee:74:6d:32: bb:78:42:3d:0b:8c:cc:b7:23:fb:be:4b:be:a5:e9: ad:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C8:35:54:42:A7:63:56:7F:86:CB:C8:D7:44:7A:DE:EE:AA:A6:3B:6C X509v3 Authority Key Identifier: keyid:CB:20:60:6D:E7:30:45:6E:DD:73:35:CC:88:2C:BD:F4:39:6F:34:60 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yyBgbecwRW7dczXMiCy99DlvNGA.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/94/bf7a28-bf1e-4835-beed-b3d86aa43bc5/1/yDVUQqdjVn-Gy8jXRHre7qqmO2w.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/94/bf7a28-bf1e-4835-beed-b3d86aa43bc5/1/yyBgbecwRW7dczXMiCy99DlvNGA.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 78.28.0.0/24 93.94.16.0/21 IPv6: 2a02:e88::/32 Signature Algorithm: sha256WithRSAEncryption 0d:6b:56:e3:37:b6:ed:e3:14:5e:1f:1e:69:cf:2a:3e:a6:26: 61:0c:77:15:be:c2:be:77:be:16:d0:71:0d:08:fd:b4:46:bf: 9a:7c:3e:ee:d5:e9:1e:83:53:70:ea:3b:18:5b:9a:1f:48:72: 42:35:d9:7a:10:3e:6b:0f:39:bb:bd:8d:d8:5b:23:c3:bc:a4: b5:b7:e1:4e:77:8f:0f:bf:e4:51:b8:ff:85:ba:e1:de:de:27: a0:60:a6:48:68:2c:68:da:d9:12:35:3c:8c:8d:8e:34:61:d7: 77:99:99:6c:2e:3f:9c:fb:5c:59:61:c6:7b:ae:cf:a2:96:89: 72:84:f0:7b:54:3a:81:1d:f7:91:5c:b0:72:fc:82:93:34:eb: 48:d2:38:a9:66:7b:e2:b1:01:aa:ef:fc:f1:81:2d:b7:90:09: 67:6a:61:e3:a4:35:a0:7a:4b:c5:fe:16:81:83:8b:2d:92:d6: 73:73:c7:75:26:67:22:e8:8c:7a:a9:42:2e:91:db:71:a4:b4: 28:b3:fb:2c:80:96:55:1c:37:cf:20:db:d5:dc:6a:ec:b6:32: f4:19:57:69:1c:3a:81:6f:31:d7:7b:0f:48:50:f9:2a:9f:56: 80:b2:58:a5:7c:2e:6c:08:6a:1b:a8:f1:ed:38:47:d6:50:b3: 8f:9d:2a:6b -----BEGIN CERTIFICATE----- MIIFEjCCA/qgAwIBAgISAZt4NVNRmmgOxyA7doodFUCJMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGNiMjA2MDZkZTczMDQ1NmVkZDczMzVjYzg4MmNiZGY0Mzk2 ZjM0NjAwHhcNMjYwMTAxMDYxODM5WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhjODM1NTQ0MmE3NjM1NjdmODZjYmM4ZDc0NDdhZGVlZWFhYTYzYjZjMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsjIytM/EfzFPwa+iKzT9EgXqxlAF 9TmeWX9l2TrQsLos27YWxqPG4ZmKmtPti5kwCa/EMqFqdYGci6U0/SdkymdnOXfW +PmbraUSYtGagFtzbH38CrDPACU8F8AcGcpOfkWFwEmWCsPpatFUXTNq+60a+E1b ZB6PLIp0L1rf47Jx6GOfd8Vs3Q1Iuepv4hTnMfIT7ezltig9nz7S2mV5j5Q0hl/I gsp8BXJn+/YrS7cUlpMo8NbVaiUtGt98/hyCRxRMtRgYzpPSi3jSiohHzeE4U+3m 62BmBOYrEYJ8YAR74G58gEdpcx4Na+50bTK7eEI9C4zMtyP7vku+pemtpwIDAQAB o4ICHjCCAhowHQYDVR0OBBYEFMg1VEKnY1Z/hsvI10R63u6qpjtsMB8GA1UdIwQY MBaAFMsgYG3nMEVu3XM1zIgsvfQ5bzRgMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQveXlCZ2JlY3dSVzdkY3pYTWlDeTk5RGx2TkdBLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85NC9iZjdhMjgtYmYxZS00ODM1LWJlZWQt YjNkODZhYTQzYmM1LzEveURWVVFxZGpWbi1HeThqWFJIcmU3cXFtTzJ3LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC85NC9iZjdhMjgtYmYxZS00ODM1LWJlZWQtYjNkODZhYTQzYmM1 LzEveXlCZ2JlY3dSVzdkY3pYTWlDeTk5RGx2TkdBLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMDQGCCsGAQUFBwEHAQH/BCUwIzASBAIAATAMAwQAThwAAwQD XV4QMA0EAgACMAcDBQAqAg6IMA0GCSqGSIb3DQEBCwUAA4IBAQANa1bjN7bt4xRe Hx5pzyo+piZhDHcVvsK+d74W0HENCP20Rr+afD7u1ekeg1Nw6jsYW5ofSHJCNdl6 ED5rDzm7vY3YWyPDvKS1t+FOd48Pv+RRuP+FuuHe3iegYKZIaCxo2tkSNTyMjY40 Ydd3mZlsLj+c+1xZYcZ7rs+ilolyhPB7VDqBHfeRXLBy/IKTNOtI0jipZnvisQGq 7/zxgS23kAlnamHjpDWgekvF/haBg4stktZzc8d1Jmci6Ix6qUIukdtxpLQos/ss gJZVHDfPINvV3GrstjL0GVdpHDqBbzHXew9IUPkqn1aAslilfC5sCGobqPHtOEfW ULOPnSpr -----END CERTIFICATE-----Generated at Tue Feb 10 03:09:38 2026 by rpki-client