This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cd/6168d7-946c-4574-91ea-82ad14555eaa/1/YSXWV8q-EvD0M2DrmYNHbrzE3Q0.roa File: YSXWV8q-EvD0M2DrmYNHbrzE3Q0.roa (raw, json) Hash identifier: nbwxvgL2zn/AIlkMUp+RUvXzoHDBudCHof0xSUGlYMQ= Subject key identifier: 61:25:D6:57:CA:BE:12:F0:F4:33:60:EB:99:83:47:6E:BC:C4:DD:0D Certificate issuer: /CN=982cf809c0e3e8e5552f9d0dd2e27e0dd2d8dabe Certificate serial: 019B78A2CF00E2CD90714D18586CD71885D8 Authority key identifier: 98:2C:F8:09:C0:E3:E8:E5:55:2F:9D:0D:D2:E2:7E:0D:D2:D8:DA:BE Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mCz4CcDj6OVVL50N0uJ-DdLY2r4.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cd/6168d7-946c-4574-91ea-82ad14555eaa/1/YSXWV8q-EvD0M2DrmYNHbrzE3Q0.roa Signing time: Thu 01 Jan 2026 08:18:14 +0000 ROA not before: Thu 01 Jan 2026 08:18:14 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 212609 IP address blocks: 89.185.23.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/cd/6168d7-946c-4574-91ea-82ad14555eaa/1/mCz4CcDj6OVVL50N0uJ-DdLY2r4.crl rsync://rpki.ripe.net/repository/DEFAULT/cd/6168d7-946c-4574-91ea-82ad14555eaa/1/mCz4CcDj6OVVL50N0uJ-DdLY2r4.mft rsync://rpki.ripe.net/repository/DEFAULT/mCz4CcDj6OVVL50N0uJ-DdLY2r4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 20 Jan 2026 09:01:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:78:a2:cf:00:e2:cd:90:71:4d:18:58:6c:d7:18:85:d8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=982cf809c0e3e8e5552f9d0dd2e27e0dd2d8dabe Validity Not Before: Jan 1 08:18:14 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=6125d657cabe12f0f43360eb9983476ebcc4dd0d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:fc:fe:d0:8a:08:4a:4e:f4:29:11:d2:b9:bd: 06:2e:a5:75:35:66:fe:48:33:04:9c:18:c4:80:a2: fc:16:a4:40:59:99:39:2b:e8:2d:2e:fa:c1:85:f4: b7:0f:2c:60:37:82:f8:bd:be:c9:8c:68:96:ab:c4: a8:72:ae:35:5f:74:6c:5b:60:b0:63:0e:e7:9e:c6: cb:3a:64:0d:4c:84:25:ea:9a:88:2a:4d:d9:99:d7: 43:59:db:5a:00:07:55:ba:18:03:53:f9:dd:e4:dd: 4b:e8:e8:db:a2:01:cc:1f:16:d8:1a:17:56:58:f4: 9b:65:27:4d:4e:ba:ed:40:42:87:37:9d:92:5f:f0: 18:19:a2:d0:a0:ae:1c:35:32:e2:5d:ff:0a:be:14: 13:d0:ae:f9:58:ee:e2:c8:fb:f7:ad:37:d5:6b:c4: d0:15:f2:bb:71:64:de:1b:07:48:94:2b:38:fc:86: 5d:ac:d5:bd:4f:d9:58:c0:28:3a:21:98:e8:30:79: 26:ce:27:d0:7d:b2:25:aa:7f:aa:0b:3c:26:e4:3b: 12:a4:4a:61:7a:0d:4e:2b:20:ff:6b:21:d5:8b:e2: 55:b6:c9:55:f0:5b:31:5d:ac:dd:73:68:c5:71:61: 71:74:55:3c:d6:79:1c:b6:60:b2:21:e7:15:d8:41: cc:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 61:25:D6:57:CA:BE:12:F0:F4:33:60:EB:99:83:47:6E:BC:C4:DD:0D X509v3 Authority Key Identifier: keyid:98:2C:F8:09:C0:E3:E8:E5:55:2F:9D:0D:D2:E2:7E:0D:D2:D8:DA:BE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mCz4CcDj6OVVL50N0uJ-DdLY2r4.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/6168d7-946c-4574-91ea-82ad14555eaa/1/YSXWV8q-EvD0M2DrmYNHbrzE3Q0.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/6168d7-946c-4574-91ea-82ad14555eaa/1/mCz4CcDj6OVVL50N0uJ-DdLY2r4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 89.185.23.0/24 Signature Algorithm: sha256WithRSAEncryption 79:39:0d:f1:f9:04:25:e6:a8:f2:90:ce:88:68:7b:37:26:f3: 20:84:a6:07:7c:ff:50:4b:3f:a6:63:da:96:97:c0:82:99:68: bc:de:4e:36:73:c4:c9:4b:07:d3:7a:b9:e4:05:69:e1:54:a7: 0d:c3:dd:7f:48:d8:14:a7:67:f2:51:1c:86:c7:52:d7:47:3a: 97:e6:86:38:75:a6:7c:c5:cc:fa:bf:0e:96:68:28:39:36:05: cb:70:54:63:e5:a1:aa:a8:65:a8:db:53:7c:f8:6e:1c:30:83: f9:37:7f:73:5d:f8:1f:9d:8f:7b:0f:f6:19:9c:12:42:9f:b3: 41:00:f5:05:22:97:46:f6:1e:0c:fa:66:dd:20:c6:e8:8e:ac: e9:b8:e0:58:33:ce:df:3d:0a:4b:ec:49:b0:9a:20:fb:47:22: b9:bd:c1:52:38:d7:32:38:a2:44:b4:ae:7f:cb:b0:49:88:ca: 5a:2b:a5:9d:17:bf:b4:80:5f:dc:0c:64:3e:89:16:b2:ba:36: a3:ac:27:3d:18:85:df:39:b2:44:28:92:c5:ca:1c:04:e5:86: 67:40:a2:9b:92:74:3c:7f:ce:01:f6:9f:a3:ed:f7:c5:2d:30: 9d:77:e2:10:67:20:c6:cc:8c:14:8a:58:46:91:39:e3:07:a6: f4:5d:65:a2 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt4os8A4s2QcU0YWGzXGIXYMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDk4MmNmODA5YzBlM2U4ZTU1NTJmOWQwZGQyZTI3ZTBkZDJk OGRhYmUwHhcNMjYwMTAxMDgxODE0WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg2MTI1ZDY1N2NhYmUxMmYwZjQzMzYwZWI5OTgzNDc2ZWJjYzRkZDBkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAufz+0IoISk70KRHSub0GLqV1NWb+ SDMEnBjEgKL8FqRAWZk5K+gtLvrBhfS3DyxgN4L4vb7JjGiWq8Socq41X3RsW2Cw Yw7nnsbLOmQNTIQl6pqIKk3ZmddDWdtaAAdVuhgDU/nd5N1L6OjbogHMHxbYGhdW WPSbZSdNTrrtQEKHN52SX/AYGaLQoK4cNTLiXf8KvhQT0K75WO7iyPv3rTfVa8TQ FfK7cWTeGwdIlCs4/IZdrNW9T9lYwCg6IZjoMHkmzifQfbIlqn+qCzwm5DsSpEph eg1OKyD/ayHVi+JVtslV8FsxXazdc2jFcWFxdFU81nkctmCyIecV2EHMJwIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFGEl1lfKvhLw9DNg65mDR268xN0NMB8GA1UdIwQY MBaAFJgs+AnA4+jlVS+dDdLifg3S2Nq+MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvbUN6NENjRGo2T1ZWTDUwTjB1Si1EZExZMnI0LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jZC82MTY4ZDctOTQ2Yy00NTc0LTkxZWEt ODJhZDE0NTU1ZWFhLzEvWVNYV1Y4cS1FdkQwTTJEcm1ZTkhicnpFM1EwLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9jZC82MTY4ZDctOTQ2Yy00NTc0LTkxZWEtODJhZDE0NTU1ZWFh LzEvbUN6NENjRGo2T1ZWTDUwTjB1Si1EZExZMnI0LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAWbkXMA0G CSqGSIb3DQEBCwUAA4IBAQB5OQ3x+QQl5qjykM6IaHs3JvMghKYHfP9QSz+mY9qW l8CCmWi83k42c8TJSwfTernkBWnhVKcNw91/SNgUp2fyURyGx1LXRzqX5oY4daZ8 xcz6vw6WaCg5NgXLcFRj5aGqqGWo21N8+G4cMIP5N39zXfgfnY97D/YZnBJCn7NB APUFIpdG9h4M+mbdIMbojqzpuOBYM87fPQpL7EmwmiD7RyK5vcFSONcyOKJEtK5/ y7BJiMpaK6WdF7+0gF/cDGQ+iRayujajrCc9GIXfObJEKJLFyhwE5YZnQKKbknQ8 f84B9p+j7ffFLTCdd+IQZyDGzIwUilhGkTnjB6b0XWWi -----END CERTIFICATE-----Generated at Mon Jan 19 18:42:50 2026 by rpki-client