This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/y4jQGABpcP9Cuv9qhXx4655QGtU.roa File: y4jQGABpcP9Cuv9qhXx4655QGtU.roa (raw, json) Hash identifier: ey0SF57gmDpZm6uuf2Cy8Pl6J4ZcrRbyzLO5TQTSD7s= Subject key identifier: CB:88:D0:18:00:69:70:FF:42:BA:FF:6A:85:7C:78:EB:9E:50:1A:D5 Certificate issuer: /CN=606784c105085b9d6ad5f73a03b20d9a5c114caf Certificate serial: 019B7C13A75ECAFA2533C06320461E21AF4B Authority key identifier: 60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/y4jQGABpcP9Cuv9qhXx4655QGtU.roa Signing time: Fri 02 Jan 2026 00:20:21 +0000 ROA not before: Fri 02 Jan 2026 00:20:21 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 397423 IP address blocks: 185.234.21.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/YGeEwQUIW51q1fc6A7INmlwRTK8.crl rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/YGeEwQUIW51q1fc6A7INmlwRTK8.mft rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 03 Jan 2026 19:40:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7c:13:a7:5e:ca:fa:25:33:c0:63:20:46:1e:21:af:4b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=606784c105085b9d6ad5f73a03b20d9a5c114caf Validity Not Before: Jan 2 00:20:21 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=cb88d018006970ff42baff6a857c78eb9e501ad5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:84:e1:92:a6:45:8c:a9:30:d6:88:86:d1:55:7f: 22:d6:37:66:27:96:66:8c:29:34:69:94:7e:51:ed: e7:7c:da:48:f5:8f:33:3b:dd:44:9b:38:5f:8c:1d: 69:5d:5c:cf:d1:50:ce:db:1b:9a:a6:7e:23:6a:54: 92:e7:3c:9c:62:72:79:12:25:a7:a9:0b:32:3b:32: b1:e3:56:8a:d7:f8:55:97:2c:87:a8:7a:3e:f3:39: b3:02:af:74:39:56:04:66:d1:5a:db:6b:ad:5e:28: 99:a4:73:e6:74:39:58:8e:d1:82:f7:4a:91:43:89: 18:86:1f:c4:2e:9c:08:14:d5:2b:ac:b7:f9:d9:6b: 08:02:b7:a0:02:2a:c6:55:48:ae:72:d2:81:5e:9d: 83:2e:d5:46:76:ef:a6:58:7d:f9:c9:85:26:2b:1f: a8:20:17:eb:55:cc:8d:50:d1:49:d7:54:a8:01:66: 81:70:5c:0a:11:95:44:03:ca:a2:cd:3d:04:1e:21: de:53:2e:01:a3:7e:06:ef:eb:be:f6:ce:a9:f2:e4: fd:03:8e:e0:24:05:41:c0:33:62:4d:f2:3a:06:34: ee:e6:ac:9b:ef:2c:7c:54:6f:f7:f3:89:50:68:f7: 98:ad:16:d8:9d:e0:3c:9b:e6:b3:fd:a4:e7:55:0b: 07:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CB:88:D0:18:00:69:70:FF:42:BA:FF:6A:85:7C:78:EB:9E:50:1A:D5 X509v3 Authority Key Identifier: keyid:60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/y4jQGABpcP9Cuv9qhXx4655QGtU.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/YGeEwQUIW51q1fc6A7INmlwRTK8.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.234.21.0/24 Signature Algorithm: sha256WithRSAEncryption 6c:2f:2f:90:e1:e7:ef:ad:24:cc:0f:51:12:c9:93:7a:06:8b: ec:48:3b:59:6e:a3:bb:05:ea:ac:c2:fa:d0:b4:ac:03:2d:3e: 97:25:42:32:b6:f1:2e:43:0b:fc:9c:3d:a9:a3:d2:19:6f:c9: 12:a2:6f:c0:6e:d8:86:a6:30:79:79:f2:16:d9:33:47:9c:06: 01:31:50:33:18:8e:83:34:f3:77:08:f3:30:3f:81:d0:87:c9: c8:a9:58:c5:ad:55:18:ee:6b:02:be:18:59:02:51:48:87:0b: 8f:b1:2d:e7:7f:7d:b3:50:6a:45:fa:4a:df:92:1c:59:03:42: 0c:21:6c:33:b8:0f:c7:98:c5:c6:8e:f6:cc:78:27:4c:63:46: a2:d5:ff:42:81:dd:9a:72:ee:07:dd:aa:77:39:ea:ad:15:75: b2:9f:99:6a:43:53:80:84:68:1f:a7:a1:2f:7a:4a:db:2a:38: 0f:30:ed:f8:e9:ae:b3:3f:e0:fb:ac:58:26:d9:80:5b:54:62: d9:0c:31:3a:b9:54:10:6d:3a:e3:c5:10:90:2e:a5:cd:7f:cc: ca:94:b4:b5:04:60:80:d2:51:6a:e8:cb:7b:ec:73:7a:21:46: 39:2a:ef:66:b7:1f:d3:89:66:fb:fe:b2:43:cc:ea:87:92:c9: e1:bb:1c:bd -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt8E6deyvolM8BjIEYeIa9LMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDYwNjc4NGMxMDUwODViOWQ2YWQ1ZjczYTAzYjIwZDlhNWMx MTRjYWYwHhcNMjYwMTAyMDAyMDIxWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhjYjg4ZDAxODAwNjk3MGZmNDJiYWZmNmE4NTdjNzhlYjllNTAxYWQ1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAhOGSpkWMqTDWiIbRVX8i1jdmJ5Zm jCk0aZR+Ue3nfNpI9Y8zO91EmzhfjB1pXVzP0VDO2xuapn4jalSS5zycYnJ5EiWn qQsyOzKx41aK1/hVlyyHqHo+8zmzAq90OVYEZtFa22utXiiZpHPmdDlYjtGC90qR Q4kYhh/ELpwIFNUrrLf52WsIAregAirGVUiuctKBXp2DLtVGdu+mWH35yYUmKx+o IBfrVcyNUNFJ11SoAWaBcFwKEZVEA8qizT0EHiHeUy4Bo34G7+u+9s6p8uT9A47g JAVBwDNiTfI6BjTu5qyb7yx8VG/384lQaPeYrRbYneA8m+az/aTnVQsHYQIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFMuI0BgAaXD/Qrr/aoV8eOueUBrVMB8GA1UdIwQY MBaAFGBnhMEFCFudatX3OgOyDZpcEUyvMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvWUdlRXdRVUlXNTFxMWZjNkE3SU5tbHdSVEs4LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kMC8yYjgzNGUtYmFkMi00OWZmLWJhMzgt YjQzNDJiYTkxYWJjLzEveTRqUUdBQnBjUDlDdXY5cWhYeDQ2NTVRR3RVLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kMC8yYjgzNGUtYmFkMi00OWZmLWJhMzgtYjQzNDJiYTkxYWJj LzEvWUdlRXdRVUlXNTFxMWZjNkE3SU5tbHdSVEs4LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAueoVMA0G CSqGSIb3DQEBCwUAA4IBAQBsLy+Q4efvrSTMD1ESyZN6BovsSDtZbqO7BeqswvrQ tKwDLT6XJUIytvEuQwv8nD2po9IZb8kSom/AbtiGpjB5efIW2TNHnAYBMVAzGI6D NPN3CPMwP4HQh8nIqVjFrVUY7msCvhhZAlFIhwuPsS3nf32zUGpF+krfkhxZA0IM IWwzuA/HmMXGjvbMeCdMY0ai1f9Cgd2acu4H3ap3OeqtFXWyn5lqQ1OAhGgfp6Ev ekrbKjgPMO346a6zP+D7rFgm2YBbVGLZDDE6uVQQbTrjxRCQLqXNf8zKlLS1BGCA 0lFq6Mt77HN6IUY5Ku9mtx/TiWb7/rJDzOqHksnhuxy9 -----END CERTIFICATE-----Generated at Fri Jan 2 23:48:14 2026 by rpki-client