This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cb/0797d4-8b2c-40ac-9cab-667db1dc1b86/1/YgLAaePPCvDZh9ZzJBrsmZywRkU.roa File: YgLAaePPCvDZh9ZzJBrsmZywRkU.roa (raw, json) Hash identifier: 10ewXw/vVeO2nVxiawAtU8/pk3cVQJEH1/dY2293hpE= Subject key identifier: 62:02:C0:69:E3:CF:0A:F0:D9:87:D6:73:24:1A:EC:99:9C:B0:46:45 Certificate issuer: /CN=cb36180ab4542d6eee66d9f99030df71236ce264 Certificate serial: 019B7910D808BD128FFC1B7E894BBD73870F Authority key identifier: CB:36:18:0A:B4:54:2D:6E:EE:66:D9:F9:90:30:DF:71:23:6C:E2:64 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/yzYYCrRULW7uZtn5kDDfcSNs4mQ.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cb/0797d4-8b2c-40ac-9cab-667db1dc1b86/1/YgLAaePPCvDZh9ZzJBrsmZywRkU.roa Signing time: Thu 01 Jan 2026 10:18:25 +0000 ROA not before: Thu 01 Jan 2026 10:18:25 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 199995 IP address blocks: 185.76.68.0/22 maxlen: 22 185.109.52.0/24 maxlen: 24 185.109.53.0/24 maxlen: 24 185.109.54.0/23 maxlen: 23 185.151.84.0/24 maxlen: 24 185.151.85.0/24 maxlen: 24 185.151.86.0/24 maxlen: 24 185.151.87.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/cb/0797d4-8b2c-40ac-9cab-667db1dc1b86/1/yzYYCrRULW7uZtn5kDDfcSNs4mQ.crl rsync://rpki.ripe.net/repository/DEFAULT/cb/0797d4-8b2c-40ac-9cab-667db1dc1b86/1/yzYYCrRULW7uZtn5kDDfcSNs4mQ.mft rsync://rpki.ripe.net/repository/DEFAULT/yzYYCrRULW7uZtn5kDDfcSNs4mQ.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:79:10:d8:08:bd:12:8f:fc:1b:7e:89:4b:bd:73:87:0f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=cb36180ab4542d6eee66d9f99030df71236ce264 Validity Not Before: Jan 1 10:18:25 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=6202c069e3cf0af0d987d673241aec999cb04645 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:73:ab:32:f6:96:fa:27:2e:98:61:20:6f:a2: d7:f1:a9:44:a7:40:d8:98:48:0d:1f:cb:f4:95:86: b7:67:49:a4:c0:e5:d2:d6:ce:4f:c9:18:28:1a:24: 22:b4:e3:1b:90:aa:71:8a:f3:f3:c5:c1:6a:c8:8d: 44:03:b8:ee:e0:37:df:5f:91:cf:ff:52:67:77:d0: db:d8:f9:7d:4e:ed:55:9d:2f:21:50:d7:91:40:9a: 75:03:42:f1:34:86:4a:e4:ef:fd:5b:2f:3d:96:f4: 85:ab:7c:1f:db:e6:c3:3a:d0:f1:94:bf:10:47:ae: 74:bb:26:9a:ec:fc:ed:a1:50:44:a8:28:06:69:a5: c1:54:5d:4d:31:ee:16:f4:31:58:92:43:78:a7:9a: b9:12:3a:07:6b:bd:99:2c:16:a7:95:8c:7d:3e:d9: 4e:6c:7b:fd:3e:0a:79:ae:0d:15:f4:d5:7a:3e:0c: 8b:90:08:d1:8c:a0:4d:fb:40:74:94:66:1f:19:4f: cb:a9:f9:a5:30:02:f1:01:19:43:74:a8:a0:16:8d: 62:f9:55:16:ea:bb:7e:a8:a1:57:a7:b7:c3:27:d5: 1f:3d:6a:e7:0d:99:28:f9:e5:d4:48:b7:97:dd:1a: 59:ac:80:78:4d:50:5a:0e:bb:97:90:55:72:f2:43: c7:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 62:02:C0:69:E3:CF:0A:F0:D9:87:D6:73:24:1A:EC:99:9C:B0:46:45 X509v3 Authority Key Identifier: keyid:CB:36:18:0A:B4:54:2D:6E:EE:66:D9:F9:90:30:DF:71:23:6C:E2:64 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yzYYCrRULW7uZtn5kDDfcSNs4mQ.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cb/0797d4-8b2c-40ac-9cab-667db1dc1b86/1/YgLAaePPCvDZh9ZzJBrsmZywRkU.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/cb/0797d4-8b2c-40ac-9cab-667db1dc1b86/1/yzYYCrRULW7uZtn5kDDfcSNs4mQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.76.68.0/22 185.109.52.0/22 185.151.84.0/22 Signature Algorithm: sha256WithRSAEncryption 17:64:06:ab:cf:2a:26:0b:36:5f:55:b4:39:24:0f:f7:9b:3d: 45:18:01:f0:b3:42:b9:f3:74:93:7e:b8:a5:6e:5a:d1:f0:4b: e5:f1:6d:62:70:34:6a:83:c1:18:f8:42:e2:cf:2c:87:b8:25: 04:5b:44:b0:bf:ed:a5:24:3a:9a:c6:0b:82:20:b0:6c:2e:f9: 5b:b6:0c:1c:10:5e:ea:c6:bf:80:65:2a:d2:96:91:3e:ac:06: 02:30:cf:3b:bf:5c:9b:73:c8:6e:51:21:60:e0:8f:ed:fd:4c: 57:43:36:79:64:c0:6e:69:2b:2e:5f:4d:35:f2:db:99:b7:bb: 69:c9:a6:6f:62:c1:b4:34:66:89:75:9a:ba:0d:0e:01:a1:e1: 55:87:69:75:c9:20:d1:8e:68:66:a4:5c:e6:f9:3e:ad:ce:93: a3:8c:d3:ef:e9:23:cd:b4:29:80:3b:94:a9:5d:15:a2:f2:86: 54:c6:ad:f7:93:cb:45:40:cb:8d:f6:f1:fc:3c:3a:2c:9e:45: c8:4f:90:a3:1e:06:b4:dc:95:7a:f2:c2:16:07:6f:c6:c0:c9: fc:e4:cc:91:5e:cf:85:f4:dc:77:49:34:4b:38:15:f2:6f:ed: 09:5d:b7:91:d2:ed:ee:c2:44:2c:b1:0b:38:86:c0:76:25:1b: 98:53:01:f5 -----BEGIN CERTIFICATE----- MIIFCTCCA/GgAwIBAgISAZt5ENgIvRKP/Bt+iUu9c4cPMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGNiMzYxODBhYjQ1NDJkNmVlZTY2ZDlmOTkwMzBkZjcxMjM2 Y2UyNjQwHhcNMjYwMTAxMTAxODI1WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg2MjAyYzA2OWUzY2YwYWYwZDk4N2Q2NzMyNDFhZWM5OTljYjA0NjQ1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyXOrMvaW+icumGEgb6LX8alEp0DY mEgNH8v0lYa3Z0mkwOXS1s5PyRgoGiQitOMbkKpxivPzxcFqyI1EA7ju4DffX5HP /1Jnd9Db2Pl9Tu1VnS8hUNeRQJp1A0LxNIZK5O/9Wy89lvSFq3wf2+bDOtDxlL8Q R650uyaa7PztoVBEqCgGaaXBVF1NMe4W9DFYkkN4p5q5EjoHa72ZLBanlYx9PtlO bHv9Pgp5rg0V9NV6PgyLkAjRjKBN+0B0lGYfGU/LqfmlMALxARlDdKigFo1i+VUW 6rt+qKFXp7fDJ9UfPWrnDZko+eXUSLeX3RpZrIB4TVBaDruXkFVy8kPH1wIDAQAB o4ICFTCCAhEwHQYDVR0OBBYEFGICwGnjzwrw2YfWcyQa7JmcsEZFMB8GA1UdIwQY MBaAFMs2GAq0VC1u7mbZ+ZAw33EjbOJkMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQveXpZWUNyUlVMVzd1WnRuNWtERGZjU05zNG1RLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jYi8wNzk3ZDQtOGIyYy00MGFjLTljYWIt NjY3ZGIxZGMxYjg2LzEvWWdMQWFlUFBDdkRaaDlaekpCcnNtWnl3UmtVLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9jYi8wNzk3ZDQtOGIyYy00MGFjLTljYWItNjY3ZGIxZGMxYjg2 LzEveXpZWUNyUlVMVzd1WnRuNWtERGZjU05zNG1RLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCsGCCsGAQUFBwEHAQH/BBwwGjAYBAIAATASAwQCuUxEAwQC uW00AwQCuZdUMA0GCSqGSIb3DQEBCwUAA4IBAQAXZAarzyomCzZfVbQ5JA/3mz1F GAHws0K583STfrilblrR8Evl8W1icDRqg8EY+ELizyyHuCUEW0Swv+2lJDqaxguC ILBsLvlbtgwcEF7qxr+AZSrSlpE+rAYCMM87v1ybc8huUSFg4I/t/UxXQzZ5ZMBu aSsuX0018tuZt7tpyaZvYsG0NGaJdZq6DQ4BoeFVh2l1ySDRjmhmpFzm+T6tzpOj jNPv6SPNtCmAO5SpXRWi8oZUxq33k8tFQMuN9vH8PDosnkXIT5CjHga03JV68sIW B2/GwMn85MyRXs+F9Nx3STRLOBXyb+0JXbeR0u3uwkQssQs4hsB2JRuYUwH1 -----END CERTIFICATE-----Generated at Mon Feb 9 22:15:04 2026 by rpki-client