This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fe/4b544e-6535-4af8-bbdb-58d2ee982879/1/YyyjEfctC9QB0P54qeYYg9JpeIE.roa File: YyyjEfctC9QB0P54qeYYg9JpeIE.roa (raw, json) Hash identifier: 537NB66eU8bZ7ssJHTKme6abtCTvoFCwgHr4CBOrOww= Subject key identifier: 63:2C:A3:11:F7:2D:0B:D4:01:D0:FE:78:A9:E6:18:83:D2:69:78:81 Certificate issuer: /CN=d826ca5d53c1b5308e2c9c791c630a0f22337943 Certificate serial: 019B7C7F2E6229FAC971A3947B72C28F0692 Authority key identifier: D8:26:CA:5D:53:C1:B5:30:8E:2C:9C:79:1C:63:0A:0F:22:33:79:43 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2CbKXVPBtTCOLJx5HGMKDyIzeUM.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fe/4b544e-6535-4af8-bbdb-58d2ee982879/1/YyyjEfctC9QB0P54qeYYg9JpeIE.roa Signing time: Fri 02 Jan 2026 02:17:48 +0000 ROA not before: Fri 02 Jan 2026 02:17:48 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 25577 IP address blocks: 109.68.64.0/23 maxlen: 23 109.68.68.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fe/4b544e-6535-4af8-bbdb-58d2ee982879/1/2CbKXVPBtTCOLJx5HGMKDyIzeUM.crl rsync://rpki.ripe.net/repository/DEFAULT/fe/4b544e-6535-4af8-bbdb-58d2ee982879/1/2CbKXVPBtTCOLJx5HGMKDyIzeUM.mft rsync://rpki.ripe.net/repository/DEFAULT/2CbKXVPBtTCOLJx5HGMKDyIzeUM.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 11 Jan 2026 13:16:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7c:7f:2e:62:29:fa:c9:71:a3:94:7b:72:c2:8f:06:92 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d826ca5d53c1b5308e2c9c791c630a0f22337943 Validity Not Before: Jan 2 02:17:48 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=632ca311f72d0bd401d0fe78a9e61883d2697881 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:a4:92:5f:6e:58:f5:60:08:81:05:13:cd:ce: fb:e6:95:f2:f1:13:b0:5c:d5:53:9a:e1:03:bc:bb: 7f:f9:4a:ee:66:93:80:c8:ac:d4:ce:68:70:d8:d5: 03:4c:26:cf:e0:65:f4:e0:e2:cc:b6:57:31:07:88: 7e:8b:45:ee:2a:8d:69:61:e3:c5:d2:0b:88:81:79: c0:d3:9b:65:44:1e:47:4d:2d:c5:02:3f:f1:9e:55: ff:b0:dc:4a:7e:58:f4:cf:f0:10:b5:d8:db:29:76: 49:ac:c4:5b:f1:74:79:ac:ba:82:25:4b:b5:b5:f0: eb:d9:2f:c8:7e:81:dd:f2:46:43:37:88:f3:9f:05: 03:b6:79:5d:f5:5f:b7:49:87:be:df:d1:b6:54:48: 32:9a:4d:26:7d:02:ec:ec:34:15:e6:ea:98:a9:f7: b3:6f:4d:e6:04:85:1e:7a:d3:14:cf:ee:c6:bb:f0: 16:4c:41:42:fa:5a:64:4f:85:62:05:91:f9:44:fd: 9f:e1:0c:f6:ec:79:57:71:1c:04:ab:49:b4:3e:c0: 8f:a9:74:77:d8:79:38:d1:9a:23:e4:d4:15:c7:48: 46:d2:29:c9:b2:64:70:fe:40:0d:2a:01:9d:da:05: 2c:49:18:6e:a3:59:7e:ed:1d:2c:4b:fc:ab:bd:60: b5:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 63:2C:A3:11:F7:2D:0B:D4:01:D0:FE:78:A9:E6:18:83:D2:69:78:81 X509v3 Authority Key Identifier: keyid:D8:26:CA:5D:53:C1:B5:30:8E:2C:9C:79:1C:63:0A:0F:22:33:79:43 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2CbKXVPBtTCOLJx5HGMKDyIzeUM.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/4b544e-6535-4af8-bbdb-58d2ee982879/1/YyyjEfctC9QB0P54qeYYg9JpeIE.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/4b544e-6535-4af8-bbdb-58d2ee982879/1/2CbKXVPBtTCOLJx5HGMKDyIzeUM.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 109.68.64.0/23 109.68.68.0/23 Signature Algorithm: sha256WithRSAEncryption 30:f7:87:53:f9:44:ea:61:be:1c:26:1c:69:41:b5:c9:17:10: 66:34:6c:12:e7:75:ba:79:f0:e2:0c:1e:a6:db:6a:cc:5a:71: de:fa:73:05:46:71:4d:96:8d:e0:28:ba:2f:d4:e6:ae:52:26: 13:11:bb:f2:16:fa:d9:be:05:2e:f4:2a:7e:8f:3a:6f:01:8a: ef:c5:1d:64:d5:77:24:51:ea:9a:f0:bc:c6:7b:38:7a:9c:40: 02:81:6c:7e:e5:5d:32:4b:d2:a1:08:40:8d:f7:1b:d3:c7:76: 20:e2:c2:60:a5:9e:9c:7b:4f:dd:48:a7:06:e4:59:6f:4c:f0: 78:e9:47:6a:b8:2f:bf:ce:99:e0:2b:ce:1e:cd:a4:42:d8:38: 45:83:82:76:f2:82:68:51:ae:6a:2f:b7:ca:67:60:7c:13:6c: ce:65:25:ca:c3:31:85:1c:05:6d:82:5c:a7:b8:15:9d:4c:1f: e7:19:aa:75:9c:2a:df:e8:e2:10:d2:31:e6:cf:4e:0f:a1:d8: 0e:cb:16:1d:31:42:6b:60:66:8b:27:aa:33:23:26:16:b6:91: 06:d6:c0:b6:09:5c:cf:fe:b3:33:7a:d5:b0:3e:a8:1f:01:42: 1e:45:2f:1c:7f:0c:7e:e0:df:d6:ac:e7:06:fa:e9:76:b4:9b: 8c:eb:bb:c5 -----BEGIN CERTIFICATE----- MIIFAzCCA+ugAwIBAgISAZt8fy5iKfrJcaOUe3LCjwaSMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGQ4MjZjYTVkNTNjMWI1MzA4ZTJjOWM3OTFjNjMwYTBmMjIz Mzc5NDMwHhcNMjYwMTAyMDIxNzQ4WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg2MzJjYTMxMWY3MmQwYmQ0MDFkMGZlNzhhOWU2MTg4M2QyNjk3ODgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvqSSX25Y9WAIgQUTzc775pXy8ROw XNVTmuEDvLt/+UruZpOAyKzUzmhw2NUDTCbP4GX04OLMtlcxB4h+i0XuKo1pYePF 0guIgXnA05tlRB5HTS3FAj/xnlX/sNxKflj0z/AQtdjbKXZJrMRb8XR5rLqCJUu1 tfDr2S/IfoHd8kZDN4jznwUDtnld9V+3SYe+39G2VEgymk0mfQLs7DQV5uqYqfez b03mBIUeetMUz+7Gu/AWTEFC+lpkT4ViBZH5RP2f4Qz27HlXcRwEq0m0PsCPqXR3 2Hk40Zoj5NQVx0hG0inJsmRw/kANKgGd2gUsSRhuo1l+7R0sS/yrvWC18QIDAQAB o4ICDzCCAgswHQYDVR0OBBYEFGMsoxH3LQvUAdD+eKnmGIPSaXiBMB8GA1UdIwQY MBaAFNgmyl1TwbUwjiyceRxjCg8iM3lDMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvMkNiS1hWUEJ0VENPTEp4NUhHTUtEeUl6ZVVNLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mZS80YjU0NGUtNjUzNS00YWY4LWJiZGIt NThkMmVlOTgyODc5LzEvWXl5akVmY3RDOVFCMFA1NHFlWVlnOUpwZUlFLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9mZS80YjU0NGUtNjUzNS00YWY4LWJiZGItNThkMmVlOTgyODc5 LzEvMkNiS1hWUEJ0VENPTEp4NUhHTUtEeUl6ZVVNLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQBbURAAwQB bUREMA0GCSqGSIb3DQEBCwUAA4IBAQAw94dT+UTqYb4cJhxpQbXJFxBmNGwS53W6 efDiDB6m22rMWnHe+nMFRnFNlo3gKLov1OauUiYTEbvyFvrZvgUu9Cp+jzpvAYrv xR1k1XckUeqa8LzGezh6nEACgWx+5V0yS9KhCECN9xvTx3Yg4sJgpZ6ce0/dSKcG 5FlvTPB46UdquC+/zpngK84ezaRC2DhFg4J28oJoUa5qL7fKZ2B8E2zOZSXKwzGF HAVtglynuBWdTB/nGap1nCrf6OIQ0jHmz04PodgOyxYdMUJrYGaLJ6ozIyYWtpEG 1sC2CVzP/rMzetWwPqgfAUIeRS8cfwx+4N/WrOcG+ul2tJuM67vF -----END CERTIFICATE-----Generated at Sat Jan 10 20:49:53 2026 by rpki-client