This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a9/0244e4-73e3-449d-a06a-1f689935b90f/1/YpGTo60NWnpgdlG7w4tgcECBdPE.roa File: YpGTo60NWnpgdlG7w4tgcECBdPE.roa (raw, json) Hash identifier: LBHrRnZ9fBq8b4XBwaEXwXJ7Lftr/08mjC4QqEFM79U= Subject key identifier: 62:91:93:A3:AD:0D:5A:7A:60:76:51:BB:C3:8B:60:70:40:81:74:F1 Certificate issuer: /CN=6810aa89239242dacc9d03e3af22d4e87a783414 Certificate serial: 019B7BA5174970B0D47F0DF04AA6A4C33C8B Authority key identifier: 68:10:AA:89:23:92:42:DA:CC:9D:03:E3:AF:22:D4:E8:7A:78:34:14 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aBCqiSOSQtrMnQPjryLU6Hp4NBQ.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a9/0244e4-73e3-449d-a06a-1f689935b90f/1/YpGTo60NWnpgdlG7w4tgcECBdPE.roa Signing time: Thu 01 Jan 2026 22:19:35 +0000 ROA not before: Thu 01 Jan 2026 22:19:35 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 51093 IP address blocks: 185.108.16.0/24 maxlen: 24 212.48.224.0/21 maxlen: 24 212.48.224.0/22 maxlen: 24 212.48.228.0/22 maxlen: 24 212.48.232.0/24 maxlen: 24 2a06:300::/29 maxlen: 29 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a9/0244e4-73e3-449d-a06a-1f689935b90f/1/aBCqiSOSQtrMnQPjryLU6Hp4NBQ.crl rsync://rpki.ripe.net/repository/DEFAULT/a9/0244e4-73e3-449d-a06a-1f689935b90f/1/aBCqiSOSQtrMnQPjryLU6Hp4NBQ.mft rsync://rpki.ripe.net/repository/DEFAULT/aBCqiSOSQtrMnQPjryLU6Hp4NBQ.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 27 Jan 2026 07:01:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7b:a5:17:49:70:b0:d4:7f:0d:f0:4a:a6:a4:c3:3c:8b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6810aa89239242dacc9d03e3af22d4e87a783414 Validity Not Before: Jan 1 22:19:35 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=629193a3ad0d5a7a607651bbc38b6070408174f1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:3c:7a:84:e4:49:56:21:97:24:72:d1:25:07: e8:e4:aa:45:07:d3:db:61:0a:1f:b4:13:b5:94:6c: ca:3d:d0:c7:9c:f2:5e:53:0e:f3:53:ed:45:fa:9c: 04:80:da:46:bc:8e:13:94:a9:19:b7:63:aa:42:29: 40:14:1a:45:8e:5d:87:8f:00:ad:b0:77:ad:9f:a9: 84:f2:21:7e:19:fd:f0:eb:51:a1:ef:29:78:74:33: cb:b2:af:0c:40:b2:bf:c1:55:ff:f4:54:a1:94:5f: f1:67:e6:3f:bc:25:c5:a4:32:d8:90:88:0c:b9:3e: 2c:1f:09:ce:42:84:0d:eb:c7:60:d8:47:f7:3d:be: 66:5f:a3:35:cf:05:74:fb:f4:7b:b8:ac:fd:d8:e3: a7:12:36:d3:4c:b9:98:6e:26:a2:4d:cd:9b:4c:a2: 73:01:18:96:06:87:73:8d:58:ac:39:d3:9a:ce:ef: 92:86:42:88:72:2d:dc:ab:f3:3a:72:6a:31:e1:e9: 74:e4:e0:44:9d:7a:73:fc:39:a6:a0:07:ca:49:68: 25:31:64:e3:12:fe:8d:5a:46:87:ba:d3:01:cb:61: db:2d:e5:71:a8:25:88:bb:d2:de:f0:38:cd:14:83: 93:7d:59:aa:18:d8:d2:4f:ce:ff:40:e5:fc:b3:1e: f7:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 62:91:93:A3:AD:0D:5A:7A:60:76:51:BB:C3:8B:60:70:40:81:74:F1 X509v3 Authority Key Identifier: keyid:68:10:AA:89:23:92:42:DA:CC:9D:03:E3:AF:22:D4:E8:7A:78:34:14 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aBCqiSOSQtrMnQPjryLU6Hp4NBQ.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a9/0244e4-73e3-449d-a06a-1f689935b90f/1/YpGTo60NWnpgdlG7w4tgcECBdPE.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/a9/0244e4-73e3-449d-a06a-1f689935b90f/1/aBCqiSOSQtrMnQPjryLU6Hp4NBQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.108.16.0/24 212.48.224.0-212.48.232.255 IPv6: 2a06:300::/29 Signature Algorithm: sha256WithRSAEncryption 57:e1:74:79:b9:49:d3:96:a8:cc:c7:03:3c:19:a9:9f:a3:81: 6f:19:3e:bc:0a:42:25:08:b4:78:2d:a0:20:08:fb:c2:b1:7e: 09:40:f8:c1:47:76:20:1d:43:4a:4f:9b:fc:21:03:32:14:1c: c3:9e:05:6e:3e:30:44:d0:45:43:34:20:75:b5:4e:66:f4:22: a3:06:ab:41:2d:0d:23:1a:30:f0:73:5e:6a:37:58:a1:a5:92: fc:d5:cc:2a:23:44:60:ef:c7:8b:30:ee:6e:f6:9c:74:d9:d4: b6:a4:46:ef:53:5b:1d:b6:5b:f2:0b:dc:6e:ab:42:a2:1f:3b: 7c:e9:ea:0d:cf:47:09:94:16:ad:d9:87:9e:18:bc:80:78:07: ea:bc:68:e2:8a:18:3a:36:ad:04:09:c1:81:5e:85:7c:56:67: ae:5d:52:f0:a6:ee:94:87:86:6d:40:e2:50:bc:53:58:90:da: 15:4f:da:ce:88:ee:9e:0d:70:c6:54:2f:f6:20:6b:4a:15:83: b5:ae:47:f5:8d:79:a7:59:97:36:a9:f3:7e:4b:aa:1d:e1:d8: 3b:f7:26:48:8c:01:29:78:e9:c4:aa:74:52:62:35:9d:e9:f8: 08:16:d4:91:60:1b:4c:37:57:fe:6a:19:9e:07:97:04:9f:96: 8e:df:ba:32 -----BEGIN CERTIFICATE----- MIIFGjCCBAKgAwIBAgISAZt7pRdJcLDUfw3wSqakwzyLMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDY4MTBhYTg5MjM5MjQyZGFjYzlkMDNlM2FmMjJkNGU4N2E3 ODM0MTQwHhcNMjYwMTAxMjIxOTM1WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg2MjkxOTNhM2FkMGQ1YTdhNjA3NjUxYmJjMzhiNjA3MDQwODE3NGYxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAojx6hORJViGXJHLRJQfo5KpFB9Pb YQoftBO1lGzKPdDHnPJeUw7zU+1F+pwEgNpGvI4TlKkZt2OqQilAFBpFjl2HjwCt sHetn6mE8iF+Gf3w61Gh7yl4dDPLsq8MQLK/wVX/9FShlF/xZ+Y/vCXFpDLYkIgM uT4sHwnOQoQN68dg2Ef3Pb5mX6M1zwV0+/R7uKz92OOnEjbTTLmYbiaiTc2bTKJz ARiWBodzjVisOdOazu+ShkKIci3cq/M6cmox4el05OBEnXpz/DmmoAfKSWglMWTj Ev6NWkaHutMBy2HbLeVxqCWIu9Le8DjNFIOTfVmqGNjST87/QOX8sx73cQIDAQAB o4ICJjCCAiIwHQYDVR0OBBYEFGKRk6OtDVp6YHZRu8OLYHBAgXTxMB8GA1UdIwQY MBaAFGgQqokjkkLazJ0D468i1Oh6eDQUMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvYUJDcWlTT1NRdHJNblFQanJ5TFU2SHA0TkJRLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hOS8wMjQ0ZTQtNzNlMy00NDlkLWEwNmEt MWY2ODk5MzViOTBmLzEvWXBHVG82ME5XbnBnZGxHN3c0dGdjRUNCZFBFLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9hOS8wMjQ0ZTQtNzNlMy00NDlkLWEwNmEtMWY2ODk5MzViOTBm LzEvYUJDcWlTT1NRdHJNblFQanJ5TFU2SHA0TkJRLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMDwGCCsGAQUFBwEHAQH/BC0wKzAaBAIAATAUAwQAuWwQMAwD BAXUMOADBADUMOgwDQQCAAIwBwMFAyoGAwAwDQYJKoZIhvcNAQELBQADggEBAFfh dHm5SdOWqMzHAzwZqZ+jgW8ZPrwKQiUItHgtoCAI+8KxfglA+MFHdiAdQ0pPm/wh AzIUHMOeBW4+METQRUM0IHW1Tmb0IqMGq0EtDSMaMPBzXmo3WKGlkvzVzCojRGDv x4sw7m72nHTZ1LakRu9TWx22W/IL3G6rQqIfO3zp6g3PRwmUFq3Zh54YvIB4B+q8 aOKKGDo2rQQJwYFehXxWZ65dUvCm7pSHhm1A4lC8U1iQ2hVP2s6I7p4NcMZUL/Yg a0oVg7WuR/WNeadZlzap835Lqh3h2Dv3JkiMASl46cSqdFJiNZ3p+AgW1JFgG0w3 V/5qGZ4HlwSflo7fujI= -----END CERTIFICATE-----Generated at Mon Jan 26 12:37:17 2026 by rpki-client