This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9d/d612a3-4631-47de-940d-8be0d97682ab/1/yXUhi2vBjaa8ds8k-vv6CwFfTf0.roa File: yXUhi2vBjaa8ds8k-vv6CwFfTf0.roa (raw, json) Hash identifier: qLNfF2ctfPtKdPk/SFwkzQElr0ANhZieliEEgaCLo18= Subject key identifier: C9:75:21:8B:6B:C1:8D:A6:BC:76:CF:24:FA:FB:FA:0B:01:5F:4D:FD Certificate issuer: /CN=e0e3976d9ecb8309a8181fbd025ca52fef161999 Certificate serial: 019B7E3791F1656B647283AD04A81D77FEE3 Authority key identifier: E0:E3:97:6D:9E:CB:83:09:A8:18:1F:BD:02:5C:A5:2F:EF:16:19:99 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4OOXbZ7LgwmoGB-9AlylL-8WGZk.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9d/d612a3-4631-47de-940d-8be0d97682ab/1/yXUhi2vBjaa8ds8k-vv6CwFfTf0.roa Signing time: Fri 02 Jan 2026 10:18:49 +0000 ROA not before: Fri 02 Jan 2026 10:18:49 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 396982 IP address blocks: 195.210.50.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9d/d612a3-4631-47de-940d-8be0d97682ab/1/4OOXbZ7LgwmoGB-9AlylL-8WGZk.crl rsync://rpki.ripe.net/repository/DEFAULT/9d/d612a3-4631-47de-940d-8be0d97682ab/1/4OOXbZ7LgwmoGB-9AlylL-8WGZk.mft rsync://rpki.ripe.net/repository/DEFAULT/4OOXbZ7LgwmoGB-9AlylL-8WGZk.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 09 Jan 2026 21:02:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7e:37:91:f1:65:6b:64:72:83:ad:04:a8:1d:77:fe:e3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=e0e3976d9ecb8309a8181fbd025ca52fef161999 Validity Not Before: Jan 2 10:18:49 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=c975218b6bc18da6bc76cf24fafbfa0b015f4dfd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ea:42:84:4f:5d:f2:19:2f:9c:cf:05:b3:c8:01: 42:d2:ec:cd:00:78:6b:23:6a:05:2b:3c:86:9e:f9: 12:97:97:fe:b0:62:d4:52:eb:5f:71:0d:20:4a:30: 5f:cb:8a:b1:dd:fc:ac:19:f9:d5:4b:e9:92:97:ed: e3:6c:87:62:e4:4d:72:54:6a:7a:e5:d7:bf:6f:04: 20:13:ff:06:40:65:81:95:a0:9e:95:e4:9e:34:f3: ee:68:d4:a5:b1:1f:5e:bd:1e:18:db:93:6f:b1:60: e0:6a:8f:84:a9:40:67:54:ef:88:93:e9:e7:b2:66: 76:6e:50:ce:e3:0f:a2:03:43:1e:38:c0:31:a0:f5: fb:82:21:a9:0d:19:93:07:32:cb:56:fa:ec:c1:e7: 23:9c:5e:85:fb:e7:ad:54:cc:24:12:32:cc:d2:0f: b3:d6:6d:c4:7b:bd:90:fe:1c:10:f9:b4:d2:70:85: a9:cd:b8:ba:02:ad:4f:bb:cd:4e:69:d5:e2:65:12: b8:ea:5a:a7:9e:b0:81:3c:b9:79:44:f0:14:2b:a5: b8:f8:39:91:7f:fa:7c:3a:e6:79:d0:c7:a0:8d:c3: da:58:66:57:68:d3:2c:cf:9b:67:f1:03:61:22:1b: c6:5b:7e:c0:63:27:ae:ea:bd:45:75:64:e7:2c:9a: c4:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C9:75:21:8B:6B:C1:8D:A6:BC:76:CF:24:FA:FB:FA:0B:01:5F:4D:FD X509v3 Authority Key Identifier: keyid:E0:E3:97:6D:9E:CB:83:09:A8:18:1F:BD:02:5C:A5:2F:EF:16:19:99 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4OOXbZ7LgwmoGB-9AlylL-8WGZk.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9d/d612a3-4631-47de-940d-8be0d97682ab/1/yXUhi2vBjaa8ds8k-vv6CwFfTf0.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/9d/d612a3-4631-47de-940d-8be0d97682ab/1/4OOXbZ7LgwmoGB-9AlylL-8WGZk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 195.210.50.0/24 Signature Algorithm: sha256WithRSAEncryption 8b:3d:85:e6:7f:6e:ce:06:07:a9:11:3c:1d:af:1e:50:d5:fd: 89:26:44:32:cd:c7:b7:fb:d6:ca:51:1f:1f:ed:d7:52:91:ea: ee:c4:c5:0a:51:30:58:de:a4:aa:82:a3:34:c3:b8:6d:16:77: 0a:e2:f8:bd:83:fe:f1:40:41:c2:a0:68:c2:11:b6:c2:b7:e7: bb:82:9c:e2:86:4a:41:60:a1:50:f8:69:22:59:49:2e:80:5f: d2:69:c2:8d:cb:25:4d:c9:74:f7:1a:d4:5a:6a:33:e6:20:fc: aa:98:14:d4:d7:b7:c5:80:d8:91:55:e5:28:3e:67:57:db:b7: 89:15:d7:04:bf:1d:2d:8d:4c:73:44:ab:8c:71:d1:fe:27:09: 0e:6e:85:33:08:68:c5:2c:89:cb:d0:3a:78:0b:d4:c1:01:b0: d3:3c:a1:0f:68:15:0a:46:df:27:72:52:de:88:54:5d:d0:a0: 4d:ed:44:f7:83:0f:17:01:e2:ca:30:44:e4:f5:9a:c2:cf:45: 11:45:d8:7d:2c:62:4e:06:9e:ed:ed:95:93:cf:bc:61:90:7b: 9c:60:b5:a6:c4:a5:e9:c6:da:18:1e:b0:df:46:0b:3d:66:3e: cb:1c:b2:80:01:ad:d7:51:35:42:f4:70:0e:ac:f4:f4:a8:ef: af:f0:45:fd -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt+N5HxZWtkcoOtBKgdd/7jMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGUwZTM5NzZkOWVjYjgzMDlhODE4MWZiZDAyNWNhNTJmZWYx NjE5OTkwHhcNMjYwMTAyMTAxODQ5WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhjOTc1MjE4YjZiYzE4ZGE2YmM3NmNmMjRmYWZiZmEwYjAxNWY0ZGZkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA6kKET13yGS+czwWzyAFC0uzNAHhr I2oFKzyGnvkSl5f+sGLUUutfcQ0gSjBfy4qx3fysGfnVS+mSl+3jbIdi5E1yVGp6 5de/bwQgE/8GQGWBlaCeleSeNPPuaNSlsR9evR4Y25NvsWDgao+EqUBnVO+Ik+nn smZ2blDO4w+iA0MeOMAxoPX7giGpDRmTBzLLVvrswecjnF6F++etVMwkEjLM0g+z 1m3Ee72Q/hwQ+bTScIWpzbi6Aq1Pu81OadXiZRK46lqnnrCBPLl5RPAUK6W4+DmR f/p8OuZ50MegjcPaWGZXaNMsz5tn8QNhIhvGW37AYyeu6r1FdWTnLJrEpQIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFMl1IYtrwY2mvHbPJPr7+gsBX039MB8GA1UdIwQY MBaAFODjl22ey4MJqBgfvQJcpS/vFhmZMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvNE9PWGJaN0xnd21vR0ItOUFseWxMLThXR1prLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85ZC9kNjEyYTMtNDYzMS00N2RlLTk0MGQt OGJlMGQ5NzY4MmFiLzEveVhVaGkydkJqYWE4ZHM4ay12djZDd0ZmVGYwLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC85ZC9kNjEyYTMtNDYzMS00N2RlLTk0MGQtOGJlMGQ5NzY4MmFi LzEvNE9PWGJaN0xnd21vR0ItOUFseWxMLThXR1prLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAw9IyMA0G CSqGSIb3DQEBCwUAA4IBAQCLPYXmf27OBgepETwdrx5Q1f2JJkQyzce3+9bKUR8f 7ddSkeruxMUKUTBY3qSqgqM0w7htFncK4vi9g/7xQEHCoGjCEbbCt+e7gpzihkpB YKFQ+GkiWUkugF/SacKNyyVNyXT3GtRaajPmIPyqmBTU17fFgNiRVeUoPmdX27eJ FdcEvx0tjUxzRKuMcdH+JwkOboUzCGjFLInL0Dp4C9TBAbDTPKEPaBUKRt8nclLe iFRd0KBN7UT3gw8XAeLKMETk9ZrCz0URRdh9LGJOBp7t7ZWTz7xhkHucYLWmxKXp xtoYHrDfRgs9Zj7LHLKAAa3XUTVC9HAOrPT0qO+v8EX9 -----END CERTIFICATE-----Generated at Fri Jan 9 06:24:36 2026 by rpki-client