This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f0/bf73f5-f414-4a13-b716-9cb7fc154425/1/ylZo-PtqvCZYS10GqApM9m6Ug-o.roa File: ylZo-PtqvCZYS10GqApM9m6Ug-o.roa (raw, json) Hash identifier: 4edYiQzvX2wZ9mo10QzR6c1dv5Szd3EKKnlZ558MCYs= Subject key identifier: CA:56:68:F8:FB:6A:BC:26:58:4B:5D:06:A8:0A:4C:F6:6E:94:83:EA Certificate issuer: /CN=5a21f185b4b3866755dba0010bcf10b94a8aa66c Certificate serial: 019B7E38E7405788F6A97755C211178B0960 Authority key identifier: 5A:21:F1:85:B4:B3:86:67:55:DB:A0:01:0B:CF:10:B9:4A:8A:A6:6C Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/WiHxhbSzhmdV26ABC88QuUqKpmw.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f0/bf73f5-f414-4a13-b716-9cb7fc154425/1/ylZo-PtqvCZYS10GqApM9m6Ug-o.roa Signing time: Fri 02 Jan 2026 10:20:17 +0000 ROA not before: Fri 02 Jan 2026 10:20:17 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 205805 IP address blocks: 185.246.224.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f0/bf73f5-f414-4a13-b716-9cb7fc154425/1/WiHxhbSzhmdV26ABC88QuUqKpmw.crl rsync://rpki.ripe.net/repository/DEFAULT/f0/bf73f5-f414-4a13-b716-9cb7fc154425/1/WiHxhbSzhmdV26ABC88QuUqKpmw.mft rsync://rpki.ripe.net/repository/DEFAULT/WiHxhbSzhmdV26ABC88QuUqKpmw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7e:38:e7:40:57:88:f6:a9:77:55:c2:11:17:8b:09:60 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5a21f185b4b3866755dba0010bcf10b94a8aa66c Validity Not Before: Jan 2 10:20:17 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=ca5668f8fb6abc26584b5d06a80a4cf66e9483ea Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:5d:b2:4b:3b:44:50:d8:ac:6a:2b:ad:33:4f: 46:77:f3:fa:73:31:cb:77:91:b5:72:a3:93:12:28: d0:20:58:3c:0f:8b:77:73:4a:d7:d2:2f:ff:76:e7: ed:e7:f1:1c:73:53:3f:02:0e:82:dd:af:7e:81:80: 4f:34:e8:c9:82:aa:cd:9f:68:29:d6:92:d4:1d:ae: 0e:a7:dc:27:96:29:ef:77:ff:91:92:60:87:49:21: d1:41:3c:51:7e:1e:ac:9a:2c:1d:c7:52:dc:93:eb: 28:a4:42:f0:6d:1c:e9:aa:4e:73:90:7c:e1:fb:9f: c3:e7:90:fc:15:18:b5:d7:9b:dd:7e:6b:56:5b:43: b6:57:cf:46:d9:8f:68:f1:1e:63:9f:c0:35:05:76: f3:9d:09:84:53:0e:26:c2:74:7e:c9:fa:22:df:f7: 92:5e:c4:92:73:96:44:d1:2b:aa:88:34:5c:68:56: 16:d7:a0:9b:08:24:ed:a8:d2:c8:91:b4:45:97:2c: 0c:72:bc:41:91:f6:a6:7b:ca:72:ae:85:01:50:89: f6:07:31:cc:00:67:5f:61:d0:53:d0:fe:ec:85:a9: f5:70:91:d2:8b:5a:1e:0c:5a:de:c1:04:61:e1:ed: b3:bc:50:df:c7:27:e1:0d:08:8f:ad:9d:2a:b3:34: ad:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CA:56:68:F8:FB:6A:BC:26:58:4B:5D:06:A8:0A:4C:F6:6E:94:83:EA X509v3 Authority Key Identifier: keyid:5A:21:F1:85:B4:B3:86:67:55:DB:A0:01:0B:CF:10:B9:4A:8A:A6:6C X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/WiHxhbSzhmdV26ABC88QuUqKpmw.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f0/bf73f5-f414-4a13-b716-9cb7fc154425/1/ylZo-PtqvCZYS10GqApM9m6Ug-o.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/f0/bf73f5-f414-4a13-b716-9cb7fc154425/1/WiHxhbSzhmdV26ABC88QuUqKpmw.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.246.224.0/22 Signature Algorithm: sha256WithRSAEncryption 44:71:38:34:6a:8b:c4:ce:e5:3c:bf:e1:ca:c6:04:c6:6f:2b: 91:a5:c7:ca:1c:af:fa:2d:be:34:88:d5:20:4d:1c:e9:4e:7b: a6:1d:90:e6:99:e8:81:e2:4a:04:2a:29:e1:ef:ad:33:66:61: 82:b8:e7:ee:eb:20:d5:8a:c4:31:74:12:bf:1e:29:b6:85:ba: 03:3c:27:7d:d9:e9:a6:39:57:c3:64:13:82:2d:8e:7b:94:8f: 88:41:3f:57:22:73:0c:9d:3c:bf:77:0a:a3:8f:c3:f7:eb:5c: 78:21:53:c6:d6:aa:e9:03:7e:8a:60:ad:23:a5:21:c8:85:17: b6:83:65:de:57:a1:87:38:89:f5:1b:21:dd:41:be:8a:4b:c8: 84:81:3f:72:9f:5c:67:19:ef:c9:40:44:a6:aa:02:c8:e4:34: 58:ee:2b:3e:19:9c:10:11:6c:90:d2:91:51:99:5b:e0:a2:c6: 62:cc:c3:76:d3:28:8c:d5:7f:fd:53:ce:aa:ce:c5:21:08:88: 18:48:b9:f9:67:ef:b6:01:5b:fd:1a:3b:c0:11:e9:99:01:07: d2:77:92:02:9d:bc:5b:01:d5:eb:33:05:56:b5:8d:0f:8b:bc: 48:a4:72:7a:0c:da:4a:d9:62:34:78:1f:bc:cb:51:89:dc:d0: 4f:59:09:93 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt+OOdAV4j2qXdVwhEXiwlgMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDVhMjFmMTg1YjRiMzg2Njc1NWRiYTAwMTBiY2YxMGI5NGE4 YWE2NmMwHhcNMjYwMTAyMTAyMDE3WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhjYTU2NjhmOGZiNmFiYzI2NTg0YjVkMDZhODBhNGNmNjZlOTQ4M2VhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsl2ySztEUNisaiutM09Gd/P6czHL d5G1cqOTEijQIFg8D4t3c0rX0i//duft5/Ecc1M/Ag6C3a9+gYBPNOjJgqrNn2gp 1pLUHa4Op9wnlinvd/+RkmCHSSHRQTxRfh6smiwdx1Lck+sopELwbRzpqk5zkHzh +5/D55D8FRi115vdfmtWW0O2V89G2Y9o8R5jn8A1BXbznQmEUw4mwnR+yfoi3/eS XsSSc5ZE0SuqiDRcaFYW16CbCCTtqNLIkbRFlywMcrxBkfame8pyroUBUIn2BzHM AGdfYdBT0P7shan1cJHSi1oeDFrewQRh4e2zvFDfxyfhDQiPrZ0qszSt8wIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFMpWaPj7arwmWEtdBqgKTPZulIPqMB8GA1UdIwQY MBaAFFoh8YW0s4ZnVdugAQvPELlKiqZsMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvV2lIeGhiU3pobWRWMjZBQkM4OFF1VXFLcG13LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mMC9iZjczZjUtZjQxNC00YTEzLWI3MTYt OWNiN2ZjMTU0NDI1LzEveWxaby1QdHF2Q1pZUzEwR3FBcE05bTZVZy1vLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9mMC9iZjczZjUtZjQxNC00YTEzLWI3MTYtOWNiN2ZjMTU0NDI1 LzEvV2lIeGhiU3pobWRWMjZBQkM4OFF1VXFLcG13LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCufbgMA0G CSqGSIb3DQEBCwUAA4IBAQBEcTg0aovEzuU8v+HKxgTGbyuRpcfKHK/6Lb40iNUg TRzpTnumHZDmmeiB4koEKinh760zZmGCuOfu6yDVisQxdBK/Him2hboDPCd92emm OVfDZBOCLY57lI+IQT9XInMMnTy/dwqjj8P361x4IVPG1qrpA36KYK0jpSHIhRe2 g2XeV6GHOIn1GyHdQb6KS8iEgT9yn1xnGe/JQESmqgLI5DRY7is+GZwQEWyQ0pFR mVvgosZizMN20yiM1X/9U86qzsUhCIgYSLn5Z++2AVv9GjvAEemZAQfSd5ICnbxb AdXrMwVWtY0Pi7xIpHJ6DNpK2WI0eB+8y1GJ3NBPWQmT -----END CERTIFICATE-----Generated at Mon Feb 9 23:51:43 2026 by rpki-client