This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9f/d61f73-ac0b-45bc-a5a4-1a8301b7e6de/1/YY31Gx9OeO_-r0CoMnhr80yRfsg.roa File: YY31Gx9OeO_-r0CoMnhr80yRfsg.roa (raw, json) Hash identifier: jKbUUsk+kRRQP2A9rjJCw+n6agNn6MIWpqgM0oDWAoE= Subject key identifier: 61:8D:F5:1B:1F:4E:78:EF:FE:AF:40:A8:32:78:6B:F3:4C:91:7E:C8 Certificate issuer: /CN=75905949e963d3577be076326ca0b91ff32f9684 Certificate serial: 019B7BA3D2BE606E471413EF05EAFA715D1A Authority key identifier: 75:90:59:49:E9:63:D3:57:7B:E0:76:32:6C:A0:B9:1F:F3:2F:96:84 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dZBZSelj01d74HYybKC5H_MvloQ.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9f/d61f73-ac0b-45bc-a5a4-1a8301b7e6de/1/YY31Gx9OeO_-r0CoMnhr80yRfsg.roa Signing time: Thu 01 Jan 2026 22:18:12 +0000 ROA not before: Thu 01 Jan 2026 22:18:12 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 14618 IP address blocks: 185.229.146.0/24 maxlen: 24 185.229.147.0/24 maxlen: 24 2a0d:d600::/32 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9f/d61f73-ac0b-45bc-a5a4-1a8301b7e6de/1/dZBZSelj01d74HYybKC5H_MvloQ.crl rsync://rpki.ripe.net/repository/DEFAULT/9f/d61f73-ac0b-45bc-a5a4-1a8301b7e6de/1/dZBZSelj01d74HYybKC5H_MvloQ.mft rsync://rpki.ripe.net/repository/DEFAULT/dZBZSelj01d74HYybKC5H_MvloQ.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 08 Jan 2026 15:30:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7b:a3:d2:be:60:6e:47:14:13:ef:05:ea:fa:71:5d:1a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=75905949e963d3577be076326ca0b91ff32f9684 Validity Not Before: Jan 1 22:18:12 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=618df51b1f4e78effeaf40a832786bf34c917ec8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:0b:1b:ec:4c:e4:35:2a:ce:59:34:8e:ed:d0: 5a:09:2f:0e:72:56:96:a7:10:46:f6:04:d3:4a:7a: ef:fc:d2:c6:61:ce:26:93:68:19:22:0c:f5:98:91: 97:0b:5f:f7:6f:61:c7:b5:d6:2b:da:ea:c8:58:e0: 0b:60:dd:ec:2e:81:8c:7b:0f:50:de:ab:bc:ca:0c: 39:8d:25:2f:22:0b:a0:4d:f5:61:2f:72:9a:ef:7c: 77:fa:64:04:41:95:72:bf:5a:5f:be:94:2d:0a:bc: 0b:e4:02:96:83:a5:cb:19:e9:ce:3f:cc:11:fe:f1: 3c:41:1d:a9:c9:69:8c:cb:08:d4:4a:7b:93:1c:5b: ce:92:b2:a3:77:d3:ab:bf:08:43:4e:c4:3f:f8:e9: b0:60:c2:76:8f:db:33:b6:49:69:48:f5:fc:1f:63: 69:b0:cd:6f:9c:ec:ce:03:2b:49:14:c2:d9:9a:40: 1c:60:43:87:5e:8f:dc:57:7f:c9:09:8b:d7:bb:f0: c0:e7:5a:ed:94:54:7b:44:f2:db:d2:27:e3:07:42: 56:09:25:86:50:07:71:f7:27:00:18:ef:88:58:6b: 0b:73:7e:75:f1:57:08:6d:8e:7f:22:63:c8:bf:f9: 97:62:82:13:51:90:85:8d:25:24:ba:f5:53:42:75: ce:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 61:8D:F5:1B:1F:4E:78:EF:FE:AF:40:A8:32:78:6B:F3:4C:91:7E:C8 X509v3 Authority Key Identifier: keyid:75:90:59:49:E9:63:D3:57:7B:E0:76:32:6C:A0:B9:1F:F3:2F:96:84 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dZBZSelj01d74HYybKC5H_MvloQ.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9f/d61f73-ac0b-45bc-a5a4-1a8301b7e6de/1/YY31Gx9OeO_-r0CoMnhr80yRfsg.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/9f/d61f73-ac0b-45bc-a5a4-1a8301b7e6de/1/dZBZSelj01d74HYybKC5H_MvloQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.229.146.0/23 IPv6: 2a0d:d600::/32 Signature Algorithm: sha256WithRSAEncryption 01:06:58:99:b7:23:80:b8:60:6b:36:f8:cb:fe:1b:3c:6e:45: 11:81:f5:e1:5b:c9:f7:ae:48:62:97:03:27:78:24:31:9c:a6: 18:cf:31:8b:15:9c:8e:be:26:82:06:d7:c2:24:e7:55:64:c4: a9:9e:57:16:f1:8e:3c:d7:dd:43:b5:99:c5:e5:e9:77:40:6f: eb:7b:91:b0:4d:95:ad:0a:14:89:6a:e3:7b:84:d7:10:39:07: d7:0c:80:f7:55:23:ad:8b:ae:5b:82:a3:13:cf:48:77:25:99: c3:23:cd:f0:f2:45:ec:eb:a1:af:ea:d4:a8:85:1e:9c:97:6c: 28:59:01:bb:5f:9e:9d:9e:5a:c5:60:1e:0c:bd:d9:43:35:75: 92:76:25:39:a4:aa:89:e4:57:fb:e6:3e:28:bb:a8:a4:e3:f3: ce:de:81:2e:6a:82:e4:f1:07:3c:5e:0f:52:e5:9f:db:cc:d7: 31:dc:c7:ab:54:f0:92:d5:8f:5f:ad:5e:71:85:28:51:56:0b: af:30:c0:72:ec:6d:a3:ba:12:bb:f1:93:b1:0c:b6:3e:8a:83: b3:f5:ec:7b:e8:0f:ab:b0:eb:bd:f1:b0:cb:d9:51:66:01:7d: 16:00:17:c6:6f:9f:d3:46:c5:7c:7a:f2:d4:10:b9:11:df:a8: 3f:f6:3f:74 -----BEGIN CERTIFICATE----- MIIFDDCCA/SgAwIBAgISAZt7o9K+YG5HFBPvBer6cV0aMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDc1OTA1OTQ5ZTk2M2QzNTc3YmUwNzYzMjZjYTBiOTFmZjMy Zjk2ODQwHhcNMjYwMTAxMjIxODEyWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg2MThkZjUxYjFmNGU3OGVmZmVhZjQwYTgzMjc4NmJmMzRjOTE3ZWM4MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqgsb7EzkNSrOWTSO7dBaCS8OclaW pxBG9gTTSnrv/NLGYc4mk2gZIgz1mJGXC1/3b2HHtdYr2urIWOALYN3sLoGMew9Q 3qu8ygw5jSUvIgugTfVhL3Ka73x3+mQEQZVyv1pfvpQtCrwL5AKWg6XLGenOP8wR /vE8QR2pyWmMywjUSnuTHFvOkrKjd9OrvwhDTsQ/+OmwYMJ2j9sztklpSPX8H2Np sM1vnOzOAytJFMLZmkAcYEOHXo/cV3/JCYvXu/DA51rtlFR7RPLb0ifjB0JWCSWG UAdx9ycAGO+IWGsLc3518VcIbY5/ImPIv/mXYoITUZCFjSUkuvVTQnXOGwIDAQAB o4ICGDCCAhQwHQYDVR0OBBYEFGGN9RsfTnjv/q9AqDJ4a/NMkX7IMB8GA1UdIwQY MBaAFHWQWUnpY9NXe+B2MmyguR/zL5aEMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvZFpCWlNlbGowMWQ3NEhZeWJLQzVIX012bG9RLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85Zi9kNjFmNzMtYWMwYi00NWJjLWE1YTQt MWE4MzAxYjdlNmRlLzEvWVkzMUd4OU9lT18tcjBDb01uaHI4MHlSZnNnLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC85Zi9kNjFmNzMtYWMwYi00NWJjLWE1YTQtMWE4MzAxYjdlNmRl LzEvZFpCWlNlbGowMWQ3NEhZeWJLQzVIX012bG9RLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMC4GCCsGAQUFBwEHAQH/BB8wHTAMBAIAATAGAwQBueWSMA0E AgACMAcDBQAqDdYAMA0GCSqGSIb3DQEBCwUAA4IBAQABBliZtyOAuGBrNvjL/hs8 bkURgfXhW8n3rkhilwMneCQxnKYYzzGLFZyOviaCBtfCJOdVZMSpnlcW8Y48191D tZnF5el3QG/re5GwTZWtChSJauN7hNcQOQfXDID3VSOti65bgqMTz0h3JZnDI83w 8kXs66Gv6tSohR6cl2woWQG7X56dnlrFYB4MvdlDNXWSdiU5pKqJ5Ff75j4ou6ik 4/PO3oEuaoLk8Qc8Xg9S5Z/bzNcx3MerVPCS1Y9frV5xhShRVguvMMBy7G2juhK7 8ZOxDLY+ioOz9ex76A+rsOu98bDL2VFmAX0WABfGb5/TRsV8evLUELkR36g/9j90 -----END CERTIFICATE-----Generated at Wed Jan 7 23:47:55 2026 by rpki-client