This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/aY7vo__c_egMXZTsJTTaVJtSn0c.roa File: aY7vo__c_egMXZTsJTTaVJtSn0c.roa (raw, json) Hash identifier: dwahXZt/M7v49078ThCtdL+FMZiSx039oJOj4ydm+PE= Subject key identifier: 69:8E:EF:A3:FF:DC:FD:E8:0C:5D:94:EC:25:34:DA:54:9B:52:9F:47 Certificate issuer: /CN=606784c105085b9d6ad5f73a03b20d9a5c114caf Certificate serial: 019B7C13620FE6CC1C93936D6B7137E50042 Authority key identifier: 60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/aY7vo__c_egMXZTsJTTaVJtSn0c.roa Signing time: Fri 02 Jan 2026 00:20:03 +0000 ROA not before: Fri 02 Jan 2026 00:20:03 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 9009 IP address blocks: 45.131.134.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/YGeEwQUIW51q1fc6A7INmlwRTK8.crl rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/YGeEwQUIW51q1fc6A7INmlwRTK8.mft rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 03 Jan 2026 19:40:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7c:13:62:0f:e6:cc:1c:93:93:6d:6b:71:37:e5:00:42 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=606784c105085b9d6ad5f73a03b20d9a5c114caf Validity Not Before: Jan 2 00:20:03 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=698eefa3ffdcfde80c5d94ec2534da549b529f47 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:ac:1f:66:86:23:02:b2:a8:af:c8:52:b3:5d: a4:06:a6:35:7d:ec:f3:3a:a7:3e:a0:8b:36:d8:e9: 57:d6:0a:39:c8:e5:74:f9:6c:10:59:0d:23:ff:68: 6d:07:37:61:25:8c:36:3a:15:c1:e1:20:d6:1d:e9: ae:84:02:a5:e0:c0:a9:1a:5d:14:95:0e:42:44:10: 5d:c6:db:ab:e7:ad:7c:b9:ab:f7:3c:d3:88:90:75: fc:10:05:14:0a:1c:c3:e0:83:36:18:d7:87:f6:b6: 4a:78:5d:66:71:06:07:0c:06:00:83:64:24:e1:d9: 80:3f:f8:0f:67:21:15:56:e6:95:73:5c:b7:c8:0a: e5:ce:95:e0:6b:c8:d2:2e:17:e8:f0:71:42:c0:ec: 53:51:72:b3:1f:77:07:cb:c8:20:20:db:49:27:4c: 5f:c6:03:d2:c3:33:fb:79:c2:52:ee:9d:bb:c1:8f: 31:ce:65:00:0e:7b:6f:5e:66:f1:33:21:67:8e:3e: 50:37:24:85:a1:27:af:bd:d8:11:eb:cf:37:a4:49: 94:34:c2:05:41:28:58:97:25:fe:ae:a3:f8:27:2e: 88:06:cc:2a:4f:ef:1f:57:da:52:70:b5:19:9c:e0: 97:17:b9:e6:6d:af:c0:be:47:06:fb:b8:87:0e:13: 21:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 69:8E:EF:A3:FF:DC:FD:E8:0C:5D:94:EC:25:34:DA:54:9B:52:9F:47 X509v3 Authority Key Identifier: keyid:60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/aY7vo__c_egMXZTsJTTaVJtSn0c.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/YGeEwQUIW51q1fc6A7INmlwRTK8.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 45.131.134.0/24 Signature Algorithm: sha256WithRSAEncryption 87:f6:bc:c6:97:b4:7f:ac:ae:c1:1d:68:ed:dd:f7:cb:01:b9: 5c:f7:24:a3:ed:5d:0d:96:43:01:7e:6c:c6:42:96:65:0c:9b: 70:ed:f8:1c:0e:e9:a7:a7:17:6f:d1:32:e2:21:f6:25:22:b5: ac:09:56:24:75:0e:f8:97:06:ea:b7:40:c3:10:96:0d:05:81: 2e:b7:38:da:cc:a3:17:59:6f:37:7d:6a:82:0c:b2:31:e0:8a: 69:94:6e:77:ca:2b:8e:dd:ef:7e:26:2e:26:7d:71:58:ee:8d: 3a:28:70:08:d1:9d:a7:49:9f:06:5d:c8:10:2f:e9:79:e1:3d: 15:af:68:f3:6d:cd:2b:0f:fe:d6:a5:0a:86:fd:dc:2c:11:ca: 5b:75:c3:71:05:24:4d:40:c7:45:e1:bf:d6:98:ca:bd:00:cd: 55:0d:9b:39:35:1a:3d:b3:59:54:20:59:d1:66:16:96:a6:97: bf:52:23:19:31:b5:74:ba:1f:d2:73:e9:14:94:67:aa:59:a5: cf:23:ce:da:3b:2e:f2:2a:4d:75:32:3d:8b:88:d0:7a:10:ec: 5a:79:c9:5b:33:75:cb:4c:cc:51:3c:e6:2c:f1:96:87:d1:28: be:1d:03:bc:eb:9f:43:bb:c1:b0:8d:d6:3c:1c:89:6a:76:0f: 11:21:23:f2 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt8E2IP5swck5Nta3E35QBCMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDYwNjc4NGMxMDUwODViOWQ2YWQ1ZjczYTAzYjIwZDlhNWMx MTRjYWYwHhcNMjYwMTAyMDAyMDAzWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg2OThlZWZhM2ZmZGNmZGU4MGM1ZDk0ZWMyNTM0ZGE1NDliNTI5ZjQ3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzqwfZoYjArKor8hSs12kBqY1fezz Oqc+oIs22OlX1go5yOV0+WwQWQ0j/2htBzdhJYw2OhXB4SDWHemuhAKl4MCpGl0U lQ5CRBBdxtur5618uav3PNOIkHX8EAUUChzD4IM2GNeH9rZKeF1mcQYHDAYAg2Qk 4dmAP/gPZyEVVuaVc1y3yArlzpXga8jSLhfo8HFCwOxTUXKzH3cHy8ggINtJJ0xf xgPSwzP7ecJS7p27wY8xzmUADntvXmbxMyFnjj5QNySFoSevvdgR6883pEmUNMIF QShYlyX+rqP4Jy6IBswqT+8fV9pScLUZnOCXF7nmba/AvkcG+7iHDhMhhQIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFGmO76P/3P3oDF2U7CU02lSbUp9HMB8GA1UdIwQY MBaAFGBnhMEFCFudatX3OgOyDZpcEUyvMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvWUdlRXdRVUlXNTFxMWZjNkE3SU5tbHdSVEs4LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kMC8yYjgzNGUtYmFkMi00OWZmLWJhMzgt YjQzNDJiYTkxYWJjLzEvYVk3dm9fX2NfZWdNWFpUc0pUVGFWSnRTbjBjLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kMC8yYjgzNGUtYmFkMi00OWZmLWJhMzgtYjQzNDJiYTkxYWJj LzEvWUdlRXdRVUlXNTFxMWZjNkE3SU5tbHdSVEs4LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQALYOGMA0G CSqGSIb3DQEBCwUAA4IBAQCH9rzGl7R/rK7BHWjt3ffLAblc9ySj7V0NlkMBfmzG QpZlDJtw7fgcDumnpxdv0TLiIfYlIrWsCVYkdQ74lwbqt0DDEJYNBYEutzjazKMX WW83fWqCDLIx4IpplG53yiuO3e9+Ji4mfXFY7o06KHAI0Z2nSZ8GXcgQL+l54T0V r2jzbc0rD/7WpQqG/dwsEcpbdcNxBSRNQMdF4b/WmMq9AM1VDZs5NRo9s1lUIFnR ZhaWppe/UiMZMbV0uh/Sc+kUlGeqWaXPI87aOy7yKk11Mj2LiNB6EOxaeclbM3XL TMxRPOYs8ZaH0Si+HQO8659Du8GwjdY8HIlqdg8RISPy -----END CERTIFICATE-----Generated at Fri Jan 2 23:48:19 2026 by rpki-client