This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b6/241c18-78da-4b3d-a440-0802d4c7d96d/1/ygqVEItGIAPq201_EaX3RPM0SYE.roa File: ygqVEItGIAPq201_EaX3RPM0SYE.roa (raw, json) Hash identifier: nK2V1OaTjiUIms74l37fVU9XwfhRb41uIhN10QlUnmk= Subject key identifier: CA:0A:95:10:8B:46:20:03:EA:DB:4D:7F:11:A5:F7:44:F3:34:49:81 Certificate issuer: /CN=11774f8a998e0f2af18f75279e32654813694488 Certificate serial: 019B7DCB553D5737ABD4CCC473C33DF1E842 Authority key identifier: 11:77:4F:8A:99:8E:0F:2A:F1:8F:75:27:9E:32:65:48:13:69:44:88 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/EXdPipmODyrxj3UnnjJlSBNpRIg.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b6/241c18-78da-4b3d-a440-0802d4c7d96d/1/ygqVEItGIAPq201_EaX3RPM0SYE.roa Signing time: Fri 02 Jan 2026 08:20:36 +0000 ROA not before: Fri 02 Jan 2026 08:20:36 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 198709 IP address blocks: 176.114.232.0/21 maxlen: 21 185.237.140.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b6/241c18-78da-4b3d-a440-0802d4c7d96d/1/EXdPipmODyrxj3UnnjJlSBNpRIg.crl rsync://rpki.ripe.net/repository/DEFAULT/b6/241c18-78da-4b3d-a440-0802d4c7d96d/1/EXdPipmODyrxj3UnnjJlSBNpRIg.mft rsync://rpki.ripe.net/repository/DEFAULT/EXdPipmODyrxj3UnnjJlSBNpRIg.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 21:05:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7d:cb:55:3d:57:37:ab:d4:cc:c4:73:c3:3d:f1:e8:42 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=11774f8a998e0f2af18f75279e32654813694488 Validity Not Before: Jan 2 08:20:36 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=ca0a95108b462003eadb4d7f11a5f744f3344981 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:83:f6:94:6d:96:e4:2a:93:d4:e3:ff:f0:91: 4c:b0:67:4d:27:7b:f0:48:bd:fc:45:ac:ab:81:3a: 50:f7:22:e7:9e:75:68:cf:32:ab:70:73:d9:d3:27: 47:02:fc:b5:27:51:ef:85:56:bb:ab:f1:1c:ee:42: 56:13:a4:20:02:d4:a9:58:8b:55:6b:f4:58:de:7d: 4e:73:49:ef:58:4a:53:1a:19:05:dc:51:02:c5:82: 1a:b3:73:b9:4c:15:f2:98:cd:c3:69:b9:39:f0:31: 57:41:d7:21:a9:f3:56:03:1a:bc:e3:4e:90:21:3b: 7f:db:07:c7:b0:51:d8:2c:46:04:84:df:4c:a9:d0: 33:a6:33:a0:3e:27:8b:3d:f9:97:16:b9:08:c7:44: a8:ca:6b:11:32:fb:87:73:b2:fd:cd:36:12:36:1b: 56:f9:da:88:60:93:cc:e6:d1:77:4f:41:0e:7c:56: eb:39:f9:bf:ba:04:d0:87:7f:41:e5:bb:db:08:71: 9b:03:bc:b1:27:a2:37:59:68:64:8c:f8:8b:25:8a: 2e:75:35:d4:86:a2:3a:2b:ea:7f:c7:77:af:6a:39: 52:34:52:b3:f2:0f:33:f1:c6:42:86:e3:d6:a4:32: b7:93:ab:b6:e6:47:c8:63:69:03:13:27:3c:d4:a5: 08:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CA:0A:95:10:8B:46:20:03:EA:DB:4D:7F:11:A5:F7:44:F3:34:49:81 X509v3 Authority Key Identifier: keyid:11:77:4F:8A:99:8E:0F:2A:F1:8F:75:27:9E:32:65:48:13:69:44:88 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/EXdPipmODyrxj3UnnjJlSBNpRIg.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b6/241c18-78da-4b3d-a440-0802d4c7d96d/1/ygqVEItGIAPq201_EaX3RPM0SYE.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/b6/241c18-78da-4b3d-a440-0802d4c7d96d/1/EXdPipmODyrxj3UnnjJlSBNpRIg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 176.114.232.0/21 185.237.140.0/22 Signature Algorithm: sha256WithRSAEncryption 0f:4a:b0:84:f1:76:84:7b:24:dc:b8:44:f3:41:f7:dd:64:1f: 7c:8b:62:cb:4d:b1:fd:c2:0f:db:1d:c5:fd:1b:00:57:33:10: 9c:f1:72:60:b4:08:aa:97:02:ff:05:5c:1b:ae:db:b3:6b:b4: 39:8a:fd:fc:eb:e1:bd:f6:61:4c:ad:d8:71:30:90:c5:43:ee: 8d:24:ec:da:d8:c6:92:3d:3f:7e:56:b7:91:6b:de:83:9c:e3: df:3a:1b:8c:2b:ab:d6:8f:4b:4a:29:55:12:55:dd:2d:08:f5: bf:90:18:1c:5a:62:d9:d7:53:8b:ca:2f:c2:29:b0:ca:4d:97: db:cc:a3:da:93:07:a3:a7:49:61:09:72:a7:8e:a0:75:65:cb: 47:1d:52:85:03:cd:fe:7e:53:78:46:d9:0d:74:b7:7d:7a:be: b3:27:78:cd:ae:58:fd:b2:b4:e1:d4:71:96:af:cf:58:58:83: 47:44:94:c0:10:7d:d2:f9:65:84:64:be:19:30:66:b6:a8:8c: ef:81:89:75:ab:9e:ed:ae:cf:32:85:34:69:20:fd:56:9d:f4: e9:66:99:0e:9d:e5:16:bf:1e:ac:a8:32:d9:99:ea:30:d3:d3: 05:44:ff:ab:ea:22:71:f4:5d:96:58:c2:a9:a8:2e:bc:d4:66: 74:e7:88:46 -----BEGIN CERTIFICATE----- MIIFAzCCA+ugAwIBAgISAZt9y1U9Vzer1MzEc8M98ehCMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDExNzc0ZjhhOTk4ZTBmMmFmMThmNzUyNzllMzI2NTQ4MTM2 OTQ0ODgwHhcNMjYwMTAyMDgyMDM2WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhjYTBhOTUxMDhiNDYyMDAzZWFkYjRkN2YxMWE1Zjc0NGYzMzQ0OTgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA44P2lG2W5CqT1OP/8JFMsGdNJ3vw SL38RayrgTpQ9yLnnnVozzKrcHPZ0ydHAvy1J1HvhVa7q/Ec7kJWE6QgAtSpWItV a/RY3n1Oc0nvWEpTGhkF3FECxYIas3O5TBXymM3Dabk58DFXQdchqfNWAxq8406Q ITt/2wfHsFHYLEYEhN9MqdAzpjOgPieLPfmXFrkIx0SoymsRMvuHc7L9zTYSNhtW +dqIYJPM5tF3T0EOfFbrOfm/ugTQh39B5bvbCHGbA7yxJ6I3WWhkjPiLJYoudTXU hqI6K+p/x3evajlSNFKz8g8z8cZChuPWpDK3k6u25kfIY2kDEyc81KUIFQIDAQAB o4ICDzCCAgswHQYDVR0OBBYEFMoKlRCLRiAD6ttNfxGl90TzNEmBMB8GA1UdIwQY MBaAFBF3T4qZjg8q8Y91J54yZUgTaUSIMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvRVhkUGlwbU9EeXJ4ajNVbm5qSmxTQk5wUklnLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iNi8yNDFjMTgtNzhkYS00YjNkLWE0NDAt MDgwMmQ0YzdkOTZkLzEveWdxVkVJdEdJQVBxMjAxX0VhWDNSUE0wU1lFLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iNi8yNDFjMTgtNzhkYS00YjNkLWE0NDAtMDgwMmQ0YzdkOTZk LzEvRVhkUGlwbU9EeXJ4ajNVbm5qSmxTQk5wUklnLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQDsHLoAwQC ue2MMA0GCSqGSIb3DQEBCwUAA4IBAQAPSrCE8XaEeyTcuETzQffdZB98i2LLTbH9 wg/bHcX9GwBXMxCc8XJgtAiqlwL/BVwbrtuza7Q5iv386+G99mFMrdhxMJDFQ+6N JOza2MaSPT9+VreRa96DnOPfOhuMK6vWj0tKKVUSVd0tCPW/kBgcWmLZ11OLyi/C KbDKTZfbzKPakwejp0lhCXKnjqB1ZctHHVKFA83+flN4RtkNdLd9er6zJ3jNrlj9 srTh1HGWr89YWINHRJTAEH3S+WWEZL4ZMGa2qIzvgYl1q57trs8yhTRpIP1WnfTp ZpkOneUWvx6sqDLZmeow09MFRP+r6iJx9F2WWMKpqC681GZ054hG -----END CERTIFICATE-----Generated at Tue Feb 10 04:32:06 2026 by rpki-client