This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a6/4e3493-ce03-4d94-bdfd-ae8633c17b87/1/yb-12kSjdtmFiYKJ7b0iZYnL188.roa File: yb-12kSjdtmFiYKJ7b0iZYnL188.roa (raw, json) Hash identifier: d+vCdRtSTB6tb47VKY7kwlb2RuHWojh//M171AF/m/8= Subject key identifier: C9:BF:B5:DA:44:A3:76:D9:85:89:82:89:ED:BD:22:65:89:CB:D7:CF Certificate issuer: /CN=a953f1b8e2965fd0387810a2f62cf714816d1497 Certificate serial: 019B7834341E179AF61B2760305CEE4D11B8 Authority key identifier: A9:53:F1:B8:E2:96:5F:D0:38:78:10:A2:F6:2C:F7:14:81:6D:14:97 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qVPxuOKWX9A4eBCi9iz3FIFtFJc.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a6/4e3493-ce03-4d94-bdfd-ae8633c17b87/1/yb-12kSjdtmFiYKJ7b0iZYnL188.roa Signing time: Thu 01 Jan 2026 06:17:25 +0000 ROA not before: Thu 01 Jan 2026 06:17:25 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 44970 IP address blocks: 195.137.253.0/24 maxlen: 24 2a14:2c00::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a6/4e3493-ce03-4d94-bdfd-ae8633c17b87/1/qVPxuOKWX9A4eBCi9iz3FIFtFJc.crl rsync://rpki.ripe.net/repository/DEFAULT/a6/4e3493-ce03-4d94-bdfd-ae8633c17b87/1/qVPxuOKWX9A4eBCi9iz3FIFtFJc.mft rsync://rpki.ripe.net/repository/DEFAULT/qVPxuOKWX9A4eBCi9iz3FIFtFJc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:01:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:78:34:34:1e:17:9a:f6:1b:27:60:30:5c:ee:4d:11:b8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=a953f1b8e2965fd0387810a2f62cf714816d1497 Validity Not Before: Jan 1 06:17:25 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=c9bfb5da44a376d985898289edbd226589cbd7cf Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:dc:37:7e:90:06:78:a3:ef:fa:7f:71:a7:b9: f5:14:d2:24:e7:59:fe:6b:a6:de:e3:d7:74:e7:ea: 82:b1:88:e5:0a:a0:61:1e:b9:c0:c3:1f:c4:d1:a4: 09:54:b6:2a:48:85:be:e3:4e:67:16:76:b5:5e:4a: 1b:0b:61:e6:74:bb:9b:df:0e:c9:6e:20:c8:5c:99: 07:f0:f7:6f:7b:4c:94:af:50:73:6f:89:f1:9a:00: ae:76:c5:4d:70:e6:aa:fb:b0:4d:8d:c5:f2:51:ca: 0d:9e:7a:94:fa:2e:af:ab:19:3a:d2:de:14:ad:56: 3c:d5:90:59:fa:7c:63:37:0c:49:ba:cb:81:b6:9b: 80:9f:3f:b8:8f:fe:f0:3c:d5:ec:5c:69:7f:90:53: 60:7b:8c:a9:0a:b1:8b:41:f8:82:ea:37:84:22:ad: ff:c2:0f:dd:c2:a6:4a:57:96:7b:ea:30:05:06:29: d4:2a:1b:9a:2c:f1:66:61:0e:06:bf:6c:f3:95:09: 54:77:9c:e2:57:31:84:3c:91:f8:56:47:41:f7:c1: 30:21:75:3a:df:76:7d:f8:4d:86:e5:ec:13:35:d1: 27:70:cd:cb:8a:24:5c:d8:50:ed:f3:ad:84:1c:87: 77:4d:6b:c0:59:5c:2a:6c:07:ed:d0:21:cb:77:f8: c7:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C9:BF:B5:DA:44:A3:76:D9:85:89:82:89:ED:BD:22:65:89:CB:D7:CF X509v3 Authority Key Identifier: keyid:A9:53:F1:B8:E2:96:5F:D0:38:78:10:A2:F6:2C:F7:14:81:6D:14:97 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qVPxuOKWX9A4eBCi9iz3FIFtFJc.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a6/4e3493-ce03-4d94-bdfd-ae8633c17b87/1/yb-12kSjdtmFiYKJ7b0iZYnL188.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/a6/4e3493-ce03-4d94-bdfd-ae8633c17b87/1/qVPxuOKWX9A4eBCi9iz3FIFtFJc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 195.137.253.0/24 IPv6: 2a14:2c00::/32 Signature Algorithm: sha256WithRSAEncryption 9c:05:fc:19:78:72:b0:49:fa:78:10:3a:b9:d1:b4:a8:93:79: f6:4e:15:66:2c:5b:1e:f6:8c:93:0e:94:c6:89:71:82:dd:78: 28:b4:ae:6d:20:87:eb:e3:98:71:2f:9f:ca:42:d7:39:2c:e0: 58:6e:ee:e1:b5:e8:ba:39:53:79:7c:3d:8f:ed:52:d3:dc:e5: d3:26:6c:dc:f3:b8:29:6c:b5:d4:56:53:d0:95:31:17:c9:ba: 18:dc:86:5a:db:28:98:7c:5a:25:6e:33:2b:8c:dc:7e:da:77: 3c:f0:03:6c:65:b8:3e:7e:7f:ef:a5:f9:5a:25:71:9e:a3:ac: 30:e2:8a:c6:b7:89:03:7d:53:e7:14:da:fd:c4:5f:1f:68:0f: 08:5e:80:59:2c:8e:96:d6:7a:2d:ee:1a:51:35:12:0c:14:4e: cd:5e:6b:c5:ef:57:92:b4:72:9a:ce:92:95:74:f5:a9:76:2b: 2e:7b:ab:ba:8b:5d:60:25:8b:3a:0f:38:e7:ca:82:d1:6e:88: cf:a1:a8:ec:60:38:cd:36:54:fb:bb:f3:55:18:fa:16:6d:d3: 5d:a9:e7:15:ae:78:15:9c:c2:bf:2a:2c:65:66:d0:6d:17:37: a6:7b:4d:30:30:04:72:f3:98:96:af:4d:98:48:c7:f1:85:64: ea:6f:f8:4e -----BEGIN CERTIFICATE----- MIIFDDCCA/SgAwIBAgISAZt4NDQeF5r2GydgMFzuTRG4MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGE5NTNmMWI4ZTI5NjVmZDAzODc4MTBhMmY2MmNmNzE0ODE2 ZDE0OTcwHhcNMjYwMTAxMDYxNzI1WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhjOWJmYjVkYTQ0YTM3NmQ5ODU4OTgyODllZGJkMjI2NTg5Y2JkN2NmMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA49w3fpAGeKPv+n9xp7n1FNIk51n+ a6be49d05+qCsYjlCqBhHrnAwx/E0aQJVLYqSIW+405nFna1XkobC2HmdLub3w7J biDIXJkH8Pdve0yUr1Bzb4nxmgCudsVNcOaq+7BNjcXyUcoNnnqU+i6vqxk60t4U rVY81ZBZ+nxjNwxJusuBtpuAnz+4j/7wPNXsXGl/kFNge4ypCrGLQfiC6jeEIq3/ wg/dwqZKV5Z76jAFBinUKhuaLPFmYQ4Gv2zzlQlUd5ziVzGEPJH4VkdB98EwIXU6 33Z9+E2G5ewTNdEncM3LiiRc2FDt862EHId3TWvAWVwqbAft0CHLd/jHmQIDAQAB o4ICGDCCAhQwHQYDVR0OBBYEFMm/tdpEo3bZhYmCie29ImWJy9fPMB8GA1UdIwQY MBaAFKlT8bjill/QOHgQovYs9xSBbRSXMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvcVZQeHVPS1dYOUE0ZUJDaTlpejNGSUZ0RkpjLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hNi80ZTM0OTMtY2UwMy00ZDk0LWJkZmQt YWU4NjMzYzE3Yjg3LzEveWItMTJrU2pkdG1GaVlLSjdiMGlaWW5MMTg4LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9hNi80ZTM0OTMtY2UwMy00ZDk0LWJkZmQtYWU4NjMzYzE3Yjg3 LzEvcVZQeHVPS1dYOUE0ZUJDaTlpejNGSUZ0RkpjLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMC4GCCsGAQUFBwEHAQH/BB8wHTAMBAIAATAGAwQAw4n9MA0E AgACMAcDBQAqFCwAMA0GCSqGSIb3DQEBCwUAA4IBAQCcBfwZeHKwSfp4EDq50bSo k3n2ThVmLFse9oyTDpTGiXGC3XgotK5tIIfr45hxL5/KQtc5LOBYbu7htei6OVN5 fD2P7VLT3OXTJmzc87gpbLXUVlPQlTEXyboY3IZa2yiYfFolbjMrjNx+2nc88ANs Zbg+fn/vpflaJXGeo6ww4orGt4kDfVPnFNr9xF8faA8IXoBZLI6W1not7hpRNRIM FE7NXmvF71eStHKazpKVdPWpdisue6u6i11gJYs6DzjnyoLRbojPoajsYDjNNlT7 u/NVGPoWbdNdqecVrngVnMK/KixlZtBtFzeme00wMARy85iWr02YSMfxhWTqb/hO -----END CERTIFICATE-----Generated at Mon Feb 9 21:23:27 2026 by rpki-client