This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ba/8f5fae-da90-4314-bffc-d4ee1d389e0d/1/YT2OSN4mh8hzEjQGOOr5s_Gpbwo.roa File: YT2OSN4mh8hzEjQGOOr5s_Gpbwo.roa (raw, json) Hash identifier: p+SYU8Cnkcj2R9BlYKM2O9bdNxRPhbI+yovw9WTjS6E= Subject key identifier: 61:3D:8E:48:DE:26:87:C8:73:12:34:06:38:EA:F9:B3:F1:A9:6F:0A Certificate issuer: /CN=e3be07cb1fd4f1e3c922303b670a881b82e61491 Certificate serial: 019B7AC8BF7A21E5AA5FC9971905CC542591 Authority key identifier: E3:BE:07:CB:1F:D4:F1:E3:C9:22:30:3B:67:0A:88:1B:82:E6:14:91 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/474Hyx_U8ePJIjA7ZwqIG4LmFJE.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ba/8f5fae-da90-4314-bffc-d4ee1d389e0d/1/YT2OSN4mh8hzEjQGOOr5s_Gpbwo.roa Signing time: Thu 01 Jan 2026 18:18:55 +0000 ROA not before: Thu 01 Jan 2026 18:18:55 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 21325 IP address blocks: 87.246.184.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ba/8f5fae-da90-4314-bffc-d4ee1d389e0d/1/474Hyx_U8ePJIjA7ZwqIG4LmFJE.crl rsync://rpki.ripe.net/repository/DEFAULT/ba/8f5fae-da90-4314-bffc-d4ee1d389e0d/1/474Hyx_U8ePJIjA7ZwqIG4LmFJE.mft rsync://rpki.ripe.net/repository/DEFAULT/474Hyx_U8ePJIjA7ZwqIG4LmFJE.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 20 Jan 2026 18:00:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7a:c8:bf:7a:21:e5:aa:5f:c9:97:19:05:cc:54:25:91 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=e3be07cb1fd4f1e3c922303b670a881b82e61491 Validity Not Before: Jan 1 18:18:55 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=613d8e48de2687c87312340638eaf9b3f1a96f0a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e4:bc:cd:e0:de:e5:c1:4a:6d:bb:ad:05:55:e6: 4f:6e:9e:c1:86:9e:fe:a9:ba:d8:87:35:c6:60:46: 07:ae:c0:c0:34:b3:5f:49:02:62:78:98:c2:72:85: b2:d3:56:66:5c:ad:14:db:0e:39:ba:bd:48:f8:3d: 0e:03:60:15:73:8c:49:01:8f:ef:c6:e2:ef:ef:eb: 46:9f:33:28:0a:96:5f:fc:f6:19:37:7c:d3:54:51: 6a:9c:51:3d:49:f2:9c:76:c5:9f:34:6a:55:00:a3: 54:93:94:06:95:b7:75:d0:ff:b1:56:60:3c:6d:98: 72:98:cb:d5:de:93:39:7c:cc:e6:47:4e:29:bd:d1: 36:fd:71:07:fb:3e:60:e0:66:16:8c:d7:7b:dd:6a: 90:88:ce:a8:ba:98:ac:37:f8:05:3b:df:d1:da:3d: f7:48:30:05:14:8f:f6:0e:2f:24:74:8b:ee:1f:54: a6:77:b3:4e:0e:bc:cc:d3:01:d5:1c:71:e6:be:b3: 05:3b:0d:2c:ed:78:5e:4b:29:25:a4:ec:f9:da:f4: 42:25:43:ba:66:ea:ca:86:d6:15:7a:8d:d5:ad:26: af:c8:d7:fe:cd:40:5a:d0:15:f0:98:df:64:20:3e: b5:16:09:3b:14:2b:18:3c:aa:45:88:f9:db:96:6b: d1:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 61:3D:8E:48:DE:26:87:C8:73:12:34:06:38:EA:F9:B3:F1:A9:6F:0A X509v3 Authority Key Identifier: keyid:E3:BE:07:CB:1F:D4:F1:E3:C9:22:30:3B:67:0A:88:1B:82:E6:14:91 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/474Hyx_U8ePJIjA7ZwqIG4LmFJE.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ba/8f5fae-da90-4314-bffc-d4ee1d389e0d/1/YT2OSN4mh8hzEjQGOOr5s_Gpbwo.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/ba/8f5fae-da90-4314-bffc-d4ee1d389e0d/1/474Hyx_U8ePJIjA7ZwqIG4LmFJE.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 87.246.184.0/23 Signature Algorithm: sha256WithRSAEncryption a7:aa:1b:ba:35:b4:8f:c4:89:f9:98:50:2f:11:74:1b:41:10: ec:8a:99:d5:d2:23:d0:51:26:ee:b0:3a:ae:a2:11:41:dc:13: cb:df:04:fe:70:4a:7e:5a:c1:44:8c:15:82:04:f1:c0:37:3d: 36:06:8c:9b:2b:6e:a0:2c:c0:d4:73:5f:5f:ee:7f:92:fc:4a: b5:10:51:b7:3d:a3:a1:4b:35:c1:ae:39:8a:b1:e4:67:88:4a: 5e:cc:aa:8b:33:af:12:fc:47:b1:27:eb:39:7c:a3:06:d0:2f: f0:f1:1f:78:23:35:9a:bd:1b:8b:7d:03:14:42:14:57:e7:77: 73:5d:fa:f4:69:bc:a8:f7:11:46:b5:35:0d:b1:25:a7:fb:e0: 42:75:a1:d6:83:69:f7:90:44:0b:05:b6:af:70:d0:e6:b6:b7: b7:5c:50:65:c1:24:f9:85:16:c2:4c:ab:a6:e5:aa:90:10:1f: 5e:ba:8a:bb:a5:42:de:ec:61:25:8f:ef:c3:db:6a:92:19:b4: 5c:17:b8:25:77:ee:0d:2a:03:1c:c6:0c:07:06:40:81:5e:a0: dc:19:31:09:82:5d:c4:cb:e8:b2:76:71:3b:b8:6d:ab:b7:25: e1:83:ce:d4:82:0e:81:b4:69:26:6b:74:af:d6:fa:33:74:3c: 2d:60:ca:25 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt6yL96IeWqX8mXGQXMVCWRMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGUzYmUwN2NiMWZkNGYxZTNjOTIyMzAzYjY3MGE4ODFiODJl NjE0OTEwHhcNMjYwMTAxMTgxODU1WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg2MTNkOGU0OGRlMjY4N2M4NzMxMjM0MDYzOGVhZjliM2YxYTk2ZjBhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA5LzN4N7lwUptu60FVeZPbp7Bhp7+ qbrYhzXGYEYHrsDANLNfSQJieJjCcoWy01ZmXK0U2w45ur1I+D0OA2AVc4xJAY/v xuLv7+tGnzMoCpZf/PYZN3zTVFFqnFE9SfKcdsWfNGpVAKNUk5QGlbd10P+xVmA8 bZhymMvV3pM5fMzmR04pvdE2/XEH+z5g4GYWjNd73WqQiM6oupisN/gFO9/R2j33 SDAFFI/2Di8kdIvuH1Smd7NODrzM0wHVHHHmvrMFOw0s7XheSyklpOz52vRCJUO6 ZurKhtYVeo3VrSavyNf+zUBa0BXwmN9kID61Fgk7FCsYPKpFiPnblmvRKwIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFGE9jkjeJofIcxI0Bjjq+bPxqW8KMB8GA1UdIwQY MBaAFOO+B8sf1PHjySIwO2cKiBuC5hSRMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvNDc0SHl4X1U4ZVBKSWpBN1p3cUlHNExtRkpFLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iYS84ZjVmYWUtZGE5MC00MzE0LWJmZmMt ZDRlZTFkMzg5ZTBkLzEvWVQyT1NONG1oOGh6RWpRR09PcjVzX0dwYndvLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iYS84ZjVmYWUtZGE5MC00MzE0LWJmZmMtZDRlZTFkMzg5ZTBk LzEvNDc0SHl4X1U4ZVBKSWpBN1p3cUlHNExtRkpFLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBV/a4MA0G CSqGSIb3DQEBCwUAA4IBAQCnqhu6NbSPxIn5mFAvEXQbQRDsipnV0iPQUSbusDqu ohFB3BPL3wT+cEp+WsFEjBWCBPHANz02BoybK26gLMDUc19f7n+S/Eq1EFG3PaOh SzXBrjmKseRniEpezKqLM68S/EexJ+s5fKMG0C/w8R94IzWavRuLfQMUQhRX53dz Xfr0abyo9xFGtTUNsSWn++BCdaHWg2n3kEQLBbavcNDmtre3XFBlwST5hRbCTKum 5aqQEB9euoq7pULe7GElj+/D22qSGbRcF7gld+4NKgMcxgwHBkCBXqDcGTEJgl3E y+iydnE7uG2rtyXhg87Ugg6BtGkma3Sv1vozdDwtYMol -----END CERTIFICATE-----Generated at Tue Jan 20 02:46:49 2026 by rpki-client