This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bf/b0668b-6ec2-4db4-a957-af7382395e00/1/yYuc2YO9JtZZoH5XkuKsidq7BX4.roa File: yYuc2YO9JtZZoH5XkuKsidq7BX4.roa (raw, json) Hash identifier: HNsng+bOFwiIt3gy2qY4s78ZjR+RCoMxwOTIMZ72g50= Subject key identifier: C9:8B:9C:D9:83:BD:26:D6:59:A0:7E:57:92:E2:AC:89:DA:BB:05:7E Certificate issuer: /CN=11d9d7975b8cda9232a4247cc9de9a6dfdbc6069 Certificate serial: 019B7AC91720BB95348A366B99929BBE43E9 Authority key identifier: 11:D9:D7:97:5B:8C:DA:92:32:A4:24:7C:C9:DE:9A:6D:FD:BC:60:69 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/EdnXl1uM2pIypCR8yd6abf28YGk.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bf/b0668b-6ec2-4db4-a957-af7382395e00/1/yYuc2YO9JtZZoH5XkuKsidq7BX4.roa Signing time: Thu 01 Jan 2026 18:19:17 +0000 ROA not before: Thu 01 Jan 2026 18:19:17 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 34241 IP address blocks: 188.190.116.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bf/b0668b-6ec2-4db4-a957-af7382395e00/1/EdnXl1uM2pIypCR8yd6abf28YGk.crl rsync://rpki.ripe.net/repository/DEFAULT/bf/b0668b-6ec2-4db4-a957-af7382395e00/1/EdnXl1uM2pIypCR8yd6abf28YGk.mft rsync://rpki.ripe.net/repository/DEFAULT/EdnXl1uM2pIypCR8yd6abf28YGk.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7a:c9:17:20:bb:95:34:8a:36:6b:99:92:9b:be:43:e9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=11d9d7975b8cda9232a4247cc9de9a6dfdbc6069 Validity Not Before: Jan 1 18:19:17 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=c98b9cd983bd26d659a07e5792e2ac89dabb057e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:5b:df:c8:54:3d:6a:fa:07:5c:f6:d4:c3:90: bf:df:06:1a:c8:25:7d:c8:bd:ac:e1:ef:1f:f4:88: 30:34:97:cd:35:b7:6e:a6:7d:35:c2:29:bc:3e:e0: ea:8a:a5:02:70:e5:9b:04:5d:a2:a9:ee:28:ea:54: c9:2d:a9:99:8c:02:43:c8:cb:a1:da:0a:b9:6a:4e: 5b:0d:25:1d:02:b7:f6:29:ba:67:a4:bf:43:24:1f: aa:d6:0d:ea:dd:61:3c:09:05:a2:3e:25:e8:ba:96: f3:0b:a7:45:d9:04:b3:40:81:01:3f:ab:90:a0:8a: c9:69:94:db:d8:50:03:8b:c3:dc:d2:b4:65:74:2d: 3d:b0:51:bd:a9:1b:44:9a:27:b3:5d:54:c0:a6:e2: 35:e0:9a:d4:8b:fe:38:56:d9:4b:35:7a:28:32:45: ae:cd:9c:28:03:69:7d:24:c5:9a:0a:41:2a:16:ef: ec:e5:30:65:fd:86:35:23:a6:be:58:08:79:1f:27: 65:c8:c3:b6:b5:a9:e6:01:ea:51:90:e1:4f:03:1e: ba:e6:a1:66:50:a5:c8:8d:36:41:01:4a:07:68:1b: 87:47:b6:2e:5d:04:ed:52:2f:63:e5:91:05:95:dd: 26:67:8b:ed:36:11:c2:32:c9:66:12:83:7b:45:72: 95:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C9:8B:9C:D9:83:BD:26:D6:59:A0:7E:57:92:E2:AC:89:DA:BB:05:7E X509v3 Authority Key Identifier: keyid:11:D9:D7:97:5B:8C:DA:92:32:A4:24:7C:C9:DE:9A:6D:FD:BC:60:69 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/EdnXl1uM2pIypCR8yd6abf28YGk.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/b0668b-6ec2-4db4-a957-af7382395e00/1/yYuc2YO9JtZZoH5XkuKsidq7BX4.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/b0668b-6ec2-4db4-a957-af7382395e00/1/EdnXl1uM2pIypCR8yd6abf28YGk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 188.190.116.0/22 Signature Algorithm: sha256WithRSAEncryption 8e:01:25:09:50:87:cf:12:13:0b:be:40:d9:86:d2:53:e7:ec: 7a:25:b9:19:5c:f8:bb:32:6d:94:ab:f3:42:e1:e0:57:70:5a: d3:e8:fc:3a:dc:6c:ff:25:a0:4c:43:3c:ed:2e:eb:df:ee:04: 0c:e3:46:9f:33:57:32:d7:f7:2a:73:0c:69:5a:32:44:c6:1b: eb:8a:d1:27:1a:35:f9:dc:be:d7:6a:8d:f1:8c:16:0e:3f:6d: d3:ad:83:16:2c:78:31:d4:39:ae:08:8e:c9:b5:22:d4:3b:aa: a1:9f:02:bc:b2:95:39:f4:bd:f6:75:2c:2a:9f:a9:58:d9:d2: 36:b0:32:0e:51:bf:4a:85:f2:06:36:f3:97:33:cf:0c:5f:58: e4:ce:07:fa:ea:99:6c:e4:ad:97:28:ff:9a:aa:01:cd:2a:fe: 7b:94:9a:fb:8a:7e:f4:74:bd:4b:b9:ab:df:c9:d9:9c:1b:fc: 47:18:2c:f8:30:80:9e:ee:4c:67:81:6d:92:54:8b:e5:03:8b: c9:21:eb:64:05:a9:8c:5d:0a:1c:27:12:29:79:b7:a5:c8:ac: e5:5c:f1:3d:d5:61:5c:7d:d5:8d:53:b5:b8:97:07:66:1c:42: cc:ba:a9:ef:34:a9:fd:c4:76:64:39:27:39:93:d3:2d:1b:31: 1d:c1:59:1d -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt6yRcgu5U0ijZrmZKbvkPpMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDExZDlkNzk3NWI4Y2RhOTIzMmE0MjQ3Y2M5ZGU5YTZkZmRi YzYwNjkwHhcNMjYwMTAxMTgxOTE3WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhjOThiOWNkOTgzYmQyNmQ2NTlhMDdlNTc5MmUyYWM4OWRhYmIwNTdlMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAv1vfyFQ9avoHXPbUw5C/3wYayCV9 yL2s4e8f9IgwNJfNNbdupn01wim8PuDqiqUCcOWbBF2iqe4o6lTJLamZjAJDyMuh 2gq5ak5bDSUdArf2KbpnpL9DJB+q1g3q3WE8CQWiPiXoupbzC6dF2QSzQIEBP6uQ oIrJaZTb2FADi8Pc0rRldC09sFG9qRtEmiezXVTApuI14JrUi/44VtlLNXooMkWu zZwoA2l9JMWaCkEqFu/s5TBl/YY1I6a+WAh5HydlyMO2tanmAepRkOFPAx665qFm UKXIjTZBAUoHaBuHR7YuXQTtUi9j5ZEFld0mZ4vtNhHCMslmEoN7RXKVXwIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFMmLnNmDvSbWWaB+V5LirInauwV+MB8GA1UdIwQY MBaAFBHZ15dbjNqSMqQkfMnemm39vGBpMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvRWRuWGwxdU0ycEl5cENSOHlkNmFiZjI4WUdrLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iZi9iMDY2OGItNmVjMi00ZGI0LWE5NTct YWY3MzgyMzk1ZTAwLzEveVl1YzJZTzlKdFpab0g1WGt1S3NpZHE3Qlg0LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iZi9iMDY2OGItNmVjMi00ZGI0LWE5NTctYWY3MzgyMzk1ZTAw LzEvRWRuWGwxdU0ycEl5cENSOHlkNmFiZjI4WUdrLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCvL50MA0G CSqGSIb3DQEBCwUAA4IBAQCOASUJUIfPEhMLvkDZhtJT5+x6JbkZXPi7Mm2Uq/NC 4eBXcFrT6Pw63Gz/JaBMQzztLuvf7gQM40afM1cy1/cqcwxpWjJExhvritEnGjX5 3L7Xao3xjBYOP23TrYMWLHgx1DmuCI7JtSLUO6qhnwK8spU59L32dSwqn6lY2dI2 sDIOUb9KhfIGNvOXM88MX1jkzgf66pls5K2XKP+aqgHNKv57lJr7in70dL1Luavf ydmcG/xHGCz4MICe7kxngW2SVIvlA4vJIetkBamMXQocJxIpebelyKzlXPE91WFc fdWNU7W4lwdmHELMuqnvNKn9xHZkOSc5k9MtGzEdwVkd -----END CERTIFICATE-----Generated at Tue Feb 10 00:09:29 2026 by rpki-client