This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9c/8d2d0a-2f70-4859-bb44-5b5078625dea/1/yBDJ-pAMP7frPncua7RF2hKXfCY.roa File: yBDJ-pAMP7frPncua7RF2hKXfCY.roa (raw, json) Hash identifier: mFraCdKMiItFoo5vBUABj/Wg3IFn64JvQY/DrrUSa88= Subject key identifier: C8:10:C9:FA:90:0C:3F:B7:EB:3E:77:2E:6B:B4:45:DA:12:97:7C:26 Certificate issuer: /CN=4f8de72e5006af6db55115e1b70932023ceecba4 Certificate serial: 019B77C75C8BB57B0DF3B9F2C91CEAF2FE3F Authority key identifier: 4F:8D:E7:2E:50:06:AF:6D:B5:51:15:E1:B7:09:32:02:3C:EE:CB:A4 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/T43nLlAGr221URXhtwkyAjzuy6Q.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9c/8d2d0a-2f70-4859-bb44-5b5078625dea/1/yBDJ-pAMP7frPncua7RF2hKXfCY.roa Signing time: Thu 01 Jan 2026 04:18:32 +0000 ROA not before: Thu 01 Jan 2026 04:18:32 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 52026 IP address blocks: 109.206.96.0/19 maxlen: 24 109.207.32.0/20 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9c/8d2d0a-2f70-4859-bb44-5b5078625dea/1/T43nLlAGr221URXhtwkyAjzuy6Q.crl rsync://rpki.ripe.net/repository/DEFAULT/9c/8d2d0a-2f70-4859-bb44-5b5078625dea/1/T43nLlAGr221URXhtwkyAjzuy6Q.mft rsync://rpki.ripe.net/repository/DEFAULT/T43nLlAGr221URXhtwkyAjzuy6Q.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 13:00:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:77:c7:5c:8b:b5:7b:0d:f3:b9:f2:c9:1c:ea:f2:fe:3f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4f8de72e5006af6db55115e1b70932023ceecba4 Validity Not Before: Jan 1 04:18:32 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=c810c9fa900c3fb7eb3e772e6bb445da12977c26 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:95:ba:98:02:83:10:44:a2:49:2b:02:c3:f9:89: f3:f9:a7:59:2f:40:56:19:34:ce:2c:04:40:68:04: 50:94:ba:86:16:62:d6:48:c8:c6:c7:df:4d:c0:5d: 9a:c5:77:8f:89:56:26:66:c5:4b:70:4f:38:03:d9: 75:28:b5:10:15:cf:d8:07:fc:37:8c:ad:e0:85:50: e2:02:8f:43:fa:23:8a:8d:59:83:49:b5:fa:53:27: 68:4c:86:99:f1:88:a9:bd:b7:4e:e3:d7:cf:91:55: e2:5a:aa:f9:bf:e5:af:d3:8b:3a:fd:39:df:44:c4: 6d:e5:0e:4c:05:fa:ab:87:68:04:89:5c:b2:7b:66: 1d:24:e9:7c:7b:c3:ea:7d:b1:57:2a:7d:0a:87:33: 92:6e:c9:18:b3:54:3f:90:8b:55:1c:57:80:6e:f7: e7:fd:7b:46:9e:c0:9c:ae:fd:52:46:10:51:b2:12: 00:de:81:0b:ac:c2:50:29:42:85:38:19:96:52:07: c4:53:04:35:27:b3:f2:56:97:5a:af:5e:27:57:10: 5f:e9:7d:2a:fb:b7:ac:fd:78:05:51:e9:4f:b3:10: 47:36:f0:c5:49:f5:14:79:45:f7:d7:e1:43:a8:32: 63:61:75:ed:1c:1f:ae:f9:ce:a7:b1:2f:1c:24:d6: 4e:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C8:10:C9:FA:90:0C:3F:B7:EB:3E:77:2E:6B:B4:45:DA:12:97:7C:26 X509v3 Authority Key Identifier: keyid:4F:8D:E7:2E:50:06:AF:6D:B5:51:15:E1:B7:09:32:02:3C:EE:CB:A4 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/T43nLlAGr221URXhtwkyAjzuy6Q.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9c/8d2d0a-2f70-4859-bb44-5b5078625dea/1/yBDJ-pAMP7frPncua7RF2hKXfCY.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/9c/8d2d0a-2f70-4859-bb44-5b5078625dea/1/T43nLlAGr221URXhtwkyAjzuy6Q.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 109.206.96.0/19 109.207.32.0/20 Signature Algorithm: sha256WithRSAEncryption bd:09:0e:92:c3:8e:4a:62:33:d0:ac:b4:d7:c2:09:0b:fd:8e: be:df:c6:8e:5f:02:9f:c4:02:09:56:78:c8:2c:ff:96:3b:f7: 28:27:9e:c7:8d:08:d5:b6:9e:37:c6:f6:a7:9a:cf:67:17:e4: 31:6c:ac:4d:15:3a:c7:21:d4:ac:c1:12:71:f8:cc:99:aa:f4: 14:c1:1f:0e:f5:6a:43:88:42:22:7d:b4:7e:36:3f:a0:b6:72: ba:04:42:01:ba:2b:2e:f4:a4:cc:36:f9:c0:8c:0f:19:7b:04: 8d:14:9d:0f:fb:72:8d:d7:c9:a8:6c:92:a6:74:73:00:7e:a7: c8:13:52:cb:50:f0:f8:e7:f0:ee:37:05:58:71:83:b1:d9:37: 3a:63:3f:f3:5d:ea:39:f8:09:33:e6:b8:77:e7:fd:52:fc:a9: 1a:d3:bc:45:f7:70:22:93:dd:cf:82:1e:d5:80:a0:41:5e:ed: 51:3c:2a:5a:cb:57:39:3b:18:00:ee:7e:7b:cc:ce:20:dd:df: 94:b8:37:e8:8e:52:91:27:c0:fe:82:54:1c:9a:d2:d7:6c:3e: e3:ba:a1:95:8c:51:7c:c5:ba:ae:ba:30:c3:03:02:d7:ed:8b: 60:5e:2e:64:18:4a:db:a6:3a:6e:15:cf:3c:7f:ef:e0:1a:70: 8a:64:be:71 -----BEGIN CERTIFICATE----- MIIFAzCCA+ugAwIBAgISAZt3x1yLtXsN87nyyRzq8v4/MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDRmOGRlNzJlNTAwNmFmNmRiNTUxMTVlMWI3MDkzMjAyM2Nl ZWNiYTQwHhcNMjYwMTAxMDQxODMyWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhjODEwYzlmYTkwMGMzZmI3ZWIzZTc3MmU2YmI0NDVkYTEyOTc3YzI2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAlbqYAoMQRKJJKwLD+Ynz+adZL0BW GTTOLARAaARQlLqGFmLWSMjGx99NwF2axXePiVYmZsVLcE84A9l1KLUQFc/YB/w3 jK3ghVDiAo9D+iOKjVmDSbX6UydoTIaZ8YipvbdO49fPkVXiWqr5v+Wv04s6/Tnf RMRt5Q5MBfqrh2gEiVyye2YdJOl8e8PqfbFXKn0KhzOSbskYs1Q/kItVHFeAbvfn /XtGnsCcrv1SRhBRshIA3oELrMJQKUKFOBmWUgfEUwQ1J7PyVpdar14nVxBf6X0q +7es/XgFUelPsxBHNvDFSfUUeUX31+FDqDJjYXXtHB+u+c6nsS8cJNZOuwIDAQAB o4ICDzCCAgswHQYDVR0OBBYEFMgQyfqQDD+36z53Lmu0RdoSl3wmMB8GA1UdIwQY MBaAFE+N5y5QBq9ttVEV4bcJMgI87sukMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvVDQzbkxsQUdyMjIxVVJYaHR3a3lBanp1eTZRLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85Yy84ZDJkMGEtMmY3MC00ODU5LWJiNDQt NWI1MDc4NjI1ZGVhLzEveUJESi1wQU1QN2ZyUG5jdWE3UkYyaEtYZkNZLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC85Yy84ZDJkMGEtMmY3MC00ODU5LWJiNDQtNWI1MDc4NjI1ZGVh LzEvVDQzbkxsQUdyMjIxVVJYaHR3a3lBanp1eTZRLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQFbc5gAwQE bc8gMA0GCSqGSIb3DQEBCwUAA4IBAQC9CQ6Sw45KYjPQrLTXwgkL/Y6+38aOXwKf xAIJVnjILP+WO/coJ57HjQjVtp43xvanms9nF+QxbKxNFTrHIdSswRJx+MyZqvQU wR8O9WpDiEIifbR+Nj+gtnK6BEIBuisu9KTMNvnAjA8ZewSNFJ0P+3KN18mobJKm dHMAfqfIE1LLUPD45/DuNwVYcYOx2Tc6Yz/zXeo5+Akz5rh35/1S/Kka07xF93Ai k93Pgh7VgKBBXu1RPCpay1c5OxgA7n57zM4g3d+UuDfojlKRJ8D+glQcmtLXbD7j uqGVjFF8xbquujDDAwLX7YtgXi5kGErbpjpuFc88f+/gGnCKZL5x -----END CERTIFICATE-----Generated at Mon Feb 9 23:55:00 2026 by rpki-client