This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/YPPqjeclDwD4NF-xtQo_JRKubBM.roa File: YPPqjeclDwD4NF-xtQo_JRKubBM.roa (raw, json) Hash identifier: lXnu+N+iS0LNMaLyAvwbVgtRqtp6IEFsJrqZaKApBmo= Subject key identifier: 60:F3:EA:8D:E7:25:0F:00:F8:34:5F:B1:B5:0A:3F:25:12:AE:6C:13 Certificate issuer: /CN=606784c105085b9d6ad5f73a03b20d9a5c114caf Certificate serial: 019B7C13911DFD0C1112A4A0B8CF13183745 Authority key identifier: 60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/YPPqjeclDwD4NF-xtQo_JRKubBM.roa Signing time: Fri 02 Jan 2026 00:20:15 +0000 ROA not before: Fri 02 Jan 2026 00:20:15 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 211266 IP address blocks: 45.8.22.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/YGeEwQUIW51q1fc6A7INmlwRTK8.crl rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/YGeEwQUIW51q1fc6A7INmlwRTK8.mft rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 03 Jan 2026 19:40:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7c:13:91:1d:fd:0c:11:12:a4:a0:b8:cf:13:18:37:45 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=606784c105085b9d6ad5f73a03b20d9a5c114caf Validity Not Before: Jan 2 00:20:15 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=60f3ea8de7250f00f8345fb1b50a3f2512ae6c13 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:fc:88:e9:49:86:db:00:db:2f:42:4c:53:84: 3f:f5:04:88:6a:3d:23:94:a8:51:4c:51:0b:de:77: 60:34:3c:09:8f:c6:47:0c:00:82:0f:28:9d:fa:e9: 7b:8b:2d:48:ea:30:1c:a1:f1:41:a4:cb:1b:5c:b7: e5:6c:7b:1a:d9:7c:f3:96:43:4c:12:f5:a6:ac:b3: 02:45:ba:9e:1c:13:a1:0e:e9:c2:d4:dd:22:a9:7b: 42:db:39:56:ff:a6:e1:6b:60:77:14:e5:7d:f9:8f: 7d:88:11:b2:c1:f7:28:b4:de:96:13:55:e7:28:1f: 6a:15:79:58:d9:0b:02:5d:d2:60:03:33:de:85:7a: fb:45:1f:55:c4:2f:a3:99:22:3e:18:2a:bf:ac:39: 4b:48:45:c9:fa:cf:5e:c9:57:a9:cd:92:25:08:3d: 16:fb:9c:9d:aa:b9:68:70:02:b9:c1:4b:5c:3d:b5: a4:8f:db:46:ff:73:f3:fd:29:af:c7:cd:7f:5e:38: cf:55:1a:f2:a1:fd:7a:05:b9:b8:d6:2c:de:29:fc: 33:53:03:af:b8:27:b3:20:7f:e5:9c:77:38:b4:7b: 54:d8:49:32:ce:c5:f2:a4:f9:7a:9d:28:7e:a2:c9: 98:63:f9:f6:d1:5f:88:52:c6:bd:a4:ed:4d:65:e0: 93:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 60:F3:EA:8D:E7:25:0F:00:F8:34:5F:B1:B5:0A:3F:25:12:AE:6C:13 X509v3 Authority Key Identifier: keyid:60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/YPPqjeclDwD4NF-xtQo_JRKubBM.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/YGeEwQUIW51q1fc6A7INmlwRTK8.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 45.8.22.0/24 Signature Algorithm: sha256WithRSAEncryption 0f:f0:41:92:b3:ff:64:e4:4f:cb:4c:b7:c1:55:d3:60:fb:28: 70:68:5f:52:ae:28:10:29:f8:ae:80:1c:58:9c:50:df:06:80: 1c:70:47:49:ec:70:cb:9b:7b:78:31:2f:a6:df:bd:bf:69:e7: 24:43:7d:72:b8:08:20:1a:0c:a9:30:be:3a:ee:04:07:ce:8d: 88:87:ea:38:b4:75:7d:81:91:c6:20:fa:fd:4f:b0:1b:93:6d: 23:1c:ec:d4:e4:ec:19:f7:79:d6:a9:6e:78:5f:f4:71:94:2e: 6c:66:a9:07:45:1f:70:d5:0e:7d:c9:7d:cf:39:b7:0a:3a:91: 03:66:7b:4c:a5:9c:7a:21:17:a0:db:c3:38:1e:ae:79:30:b7: 8a:57:7f:f8:55:54:c4:31:75:1b:44:bf:8d:9d:44:52:65:97: f0:6b:e8:8d:60:5f:b6:a9:81:ad:b8:ba:b0:cf:57:d2:7c:0c: a1:2f:81:14:3c:c4:bd:d0:26:b9:b0:04:26:15:1a:59:fb:d9: c3:6a:fb:c3:5a:ad:b5:6f:58:7f:5a:5b:09:d0:b1:5a:27:7f: 4f:6d:0c:cb:6f:f5:64:f9:ad:44:3c:bb:de:3a:f1:b2:f4:c2: 35:61:ed:62:f4:b0:60:f6:15:8f:2e:f3:c9:12:2d:c4:54:7d: 1a:f4:29:f7 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt8E5Ed/QwREqSguM8TGDdFMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDYwNjc4NGMxMDUwODViOWQ2YWQ1ZjczYTAzYjIwZDlhNWMx MTRjYWYwHhcNMjYwMTAyMDAyMDE1WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg2MGYzZWE4ZGU3MjUwZjAwZjgzNDVmYjFiNTBhM2YyNTEyYWU2YzEzMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArvyI6UmG2wDbL0JMU4Q/9QSIaj0j lKhRTFEL3ndgNDwJj8ZHDACCDyid+ul7iy1I6jAcofFBpMsbXLflbHsa2XzzlkNM EvWmrLMCRbqeHBOhDunC1N0iqXtC2zlW/6bha2B3FOV9+Y99iBGywfcotN6WE1Xn KB9qFXlY2QsCXdJgAzPehXr7RR9VxC+jmSI+GCq/rDlLSEXJ+s9eyVepzZIlCD0W +5ydqrlocAK5wUtcPbWkj9tG/3Pz/Smvx81/XjjPVRryof16Bbm41izeKfwzUwOv uCezIH/lnHc4tHtU2EkyzsXypPl6nSh+osmYY/n20V+IUsa9pO1NZeCT9QIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFGDz6o3nJQ8A+DRfsbUKPyUSrmwTMB8GA1UdIwQY MBaAFGBnhMEFCFudatX3OgOyDZpcEUyvMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvWUdlRXdRVUlXNTFxMWZjNkE3SU5tbHdSVEs4LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kMC8yYjgzNGUtYmFkMi00OWZmLWJhMzgt YjQzNDJiYTkxYWJjLzEvWVBQcWplY2xEd0Q0TkYteHRRb19KUkt1YkJNLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kMC8yYjgzNGUtYmFkMi00OWZmLWJhMzgtYjQzNDJiYTkxYWJj LzEvWUdlRXdRVUlXNTFxMWZjNkE3SU5tbHdSVEs4LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQALQgWMA0G CSqGSIb3DQEBCwUAA4IBAQAP8EGSs/9k5E/LTLfBVdNg+yhwaF9SrigQKfiugBxY nFDfBoAccEdJ7HDLm3t4MS+m372/aeckQ31yuAggGgypML467gQHzo2Ih+o4tHV9 gZHGIPr9T7Abk20jHOzU5OwZ93nWqW54X/RxlC5sZqkHRR9w1Q59yX3PObcKOpED ZntMpZx6IReg28M4Hq55MLeKV3/4VVTEMXUbRL+NnURSZZfwa+iNYF+2qYGtuLqw z1fSfAyhL4EUPMS90Ca5sAQmFRpZ+9nDavvDWq21b1h/WlsJ0LFaJ39PbQzLb/Vk +a1EPLveOvGy9MI1Ye1i9LBg9hWPLvPJEi3EVH0a9Cn3 -----END CERTIFICATE-----Generated at Fri Jan 2 23:48:18 2026 by rpki-client