This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/00/8abeed-f53b-4776-a8e2-36e9a79bd950/1/YbqOfaiEzhYbZf1v7kxnJ5oWDdI.roa File: YbqOfaiEzhYbZf1v7kxnJ5oWDdI.roa (raw, json) Hash identifier: K1/J1u+fYdGovmZqt2ux5U8mWlfYB0TiDE6Xjf+a840= Subject key identifier: 61:BA:8E:7D:A8:84:CE:16:1B:65:FD:6F:EE:4C:67:27:9A:16:0D:D2 Certificate issuer: /CN=297c508d23b38315bbf45b726d22050a46127b8c Certificate serial: 019B797EEF43AD61E576D2EE06F77C5F5201 Authority key identifier: 29:7C:50:8D:23:B3:83:15:BB:F4:5B:72:6D:22:05:0A:46:12:7B:8C Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KXxQjSOzgxW79FtybSIFCkYSe4w.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/00/8abeed-f53b-4776-a8e2-36e9a79bd950/1/YbqOfaiEzhYbZf1v7kxnJ5oWDdI.roa Signing time: Thu 01 Jan 2026 12:18:40 +0000 ROA not before: Thu 01 Jan 2026 12:18:40 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 44494 IP address blocks: 80.245.16.0/20 maxlen: 20 185.81.52.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/00/8abeed-f53b-4776-a8e2-36e9a79bd950/1/KXxQjSOzgxW79FtybSIFCkYSe4w.crl rsync://rpki.ripe.net/repository/DEFAULT/00/8abeed-f53b-4776-a8e2-36e9a79bd950/1/KXxQjSOzgxW79FtybSIFCkYSe4w.mft rsync://rpki.ripe.net/repository/DEFAULT/KXxQjSOzgxW79FtybSIFCkYSe4w.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 27 Jan 2026 06:00:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:79:7e:ef:43:ad:61:e5:76:d2:ee:06:f7:7c:5f:52:01 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=297c508d23b38315bbf45b726d22050a46127b8c Validity Not Before: Jan 1 12:18:40 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=61ba8e7da884ce161b65fd6fee4c67279a160dd2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:3a:38:dc:1d:dd:81:c8:43:f5:67:26:8d:8d: ad:e4:e5:ba:b4:37:98:a1:56:29:0f:71:76:c4:b0: 68:73:47:01:d7:be:66:17:8e:89:e4:b5:02:fe:a1: c8:d6:96:c5:b5:c2:a5:fb:34:2a:a8:a3:b4:2b:7c: 52:23:82:7d:30:77:23:8c:88:f6:43:ec:a6:a1:3d: ec:54:4b:a3:ea:8d:48:bf:ec:59:51:b2:1d:d4:eb: 40:af:8a:ad:27:3f:dc:f2:d4:09:a0:7f:dc:b0:86: c6:4e:26:84:c1:7a:84:9f:78:a5:81:e5:b2:6f:e8: ce:60:f7:f7:29:a8:5e:44:84:e6:eb:3d:18:2e:9e: ec:63:e4:ae:69:8c:b4:47:ae:a1:1e:60:14:04:a9: e0:28:a3:de:6a:ff:b8:02:06:86:b0:bf:df:c6:41: d5:57:08:6d:12:ab:f3:78:42:5c:cd:16:5e:3d:af: 99:34:61:58:74:98:a0:e6:c5:dc:45:b7:4a:0f:85: 06:7c:b3:b8:a9:81:f8:7b:df:34:05:e8:46:e4:9e: fe:10:5f:0f:36:1a:39:c3:23:9a:c6:8d:99:4f:b9: 93:34:96:41:31:98:b9:ce:40:3f:fe:68:2e:78:cf: fb:6d:cb:cf:11:26:86:dc:c2:d3:73:75:c6:8f:36: 9a:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 61:BA:8E:7D:A8:84:CE:16:1B:65:FD:6F:EE:4C:67:27:9A:16:0D:D2 X509v3 Authority Key Identifier: keyid:29:7C:50:8D:23:B3:83:15:BB:F4:5B:72:6D:22:05:0A:46:12:7B:8C X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KXxQjSOzgxW79FtybSIFCkYSe4w.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/00/8abeed-f53b-4776-a8e2-36e9a79bd950/1/YbqOfaiEzhYbZf1v7kxnJ5oWDdI.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/00/8abeed-f53b-4776-a8e2-36e9a79bd950/1/KXxQjSOzgxW79FtybSIFCkYSe4w.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 80.245.16.0/20 185.81.52.0/22 Signature Algorithm: sha256WithRSAEncryption 31:20:57:59:ae:c6:80:fe:e0:34:01:69:80:2c:07:90:b5:29: 12:f7:02:4c:dc:d4:11:3b:ac:6d:82:d7:63:6d:d2:e0:05:0b: 99:f1:08:64:ec:a7:df:e3:63:00:f1:aa:78:f7:53:55:ee:dd: 8b:c7:0a:6f:95:7a:8c:95:2e:8a:aa:46:eb:50:38:eb:d3:3b: 3b:d9:a7:4d:9a:11:52:ee:2a:a7:b8:19:b6:9f:cc:1a:3f:76: dd:d7:34:93:83:4d:d9:38:48:f6:cd:8c:6a:10:84:bb:6b:4b: 04:9e:2d:27:91:36:e5:62:67:f3:5e:1c:5d:a8:68:36:b4:9a: c3:9f:47:33:94:52:ff:7a:81:04:fd:68:b3:20:06:0c:d3:6c: d7:2a:75:fd:b5:b0:ad:a1:51:9e:30:f2:13:38:72:d4:04:3c: 05:07:5f:50:ed:2b:00:b4:8e:f4:32:a7:82:1b:e8:8e:01:48: 9f:42:e4:25:e3:a8:9e:a0:78:59:08:10:46:73:0c:60:6d:f7: 5a:4a:a6:a6:1a:90:9c:f8:90:30:1c:b3:07:26:e1:8c:da:b1: 93:ff:a8:ba:a0:46:07:6f:1a:ff:e5:a6:c8:10:2c:12:4e:0c: 6f:7c:91:bc:53:a9:e5:69:f7:8f:4a:78:f5:f7:22:6b:19:b1: 21:72:e3:60 -----BEGIN CERTIFICATE----- MIIFAzCCA+ugAwIBAgISAZt5fu9DrWHldtLuBvd8X1IBMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDI5N2M1MDhkMjNiMzgzMTViYmY0NWI3MjZkMjIwNTBhNDYx MjdiOGMwHhcNMjYwMTAxMTIxODQwWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg2MWJhOGU3ZGE4ODRjZTE2MWI2NWZkNmZlZTRjNjcyNzlhMTYwZGQyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApDo43B3dgchD9WcmjY2t5OW6tDeY oVYpD3F2xLBoc0cB175mF46J5LUC/qHI1pbFtcKl+zQqqKO0K3xSI4J9MHcjjIj2 Q+ymoT3sVEuj6o1Iv+xZUbId1OtAr4qtJz/c8tQJoH/csIbGTiaEwXqEn3ilgeWy b+jOYPf3KaheRITm6z0YLp7sY+SuaYy0R66hHmAUBKngKKPeav+4AgaGsL/fxkHV VwhtEqvzeEJczRZePa+ZNGFYdJig5sXcRbdKD4UGfLO4qYH4e980BehG5J7+EF8P Nho5wyOaxo2ZT7mTNJZBMZi5zkA//mgueM/7bcvPESaG3MLTc3XGjzaaKwIDAQAB o4ICDzCCAgswHQYDVR0OBBYEFGG6jn2ohM4WG2X9b+5MZyeaFg3SMB8GA1UdIwQY MBaAFCl8UI0js4MVu/Rbcm0iBQpGEnuMMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvS1h4UWpTT3pneFc3OUZ0eWJTSUZDa1lTZTR3LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wMC84YWJlZWQtZjUzYi00Nzc2LWE4ZTIt MzZlOWE3OWJkOTUwLzEvWWJxT2ZhaUV6aFliWmYxdjdreG5KNW9XRGRJLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wMC84YWJlZWQtZjUzYi00Nzc2LWE4ZTItMzZlOWE3OWJkOTUw LzEvS1h4UWpTT3pneFc3OUZ0eWJTSUZDa1lTZTR3LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQEUPUQAwQC uVE0MA0GCSqGSIb3DQEBCwUAA4IBAQAxIFdZrsaA/uA0AWmALAeQtSkS9wJM3NQR O6xtgtdjbdLgBQuZ8Qhk7Kff42MA8ap491NV7t2LxwpvlXqMlS6KqkbrUDjr0zs7 2adNmhFS7iqnuBm2n8waP3bd1zSTg03ZOEj2zYxqEIS7a0sEni0nkTblYmfzXhxd qGg2tJrDn0czlFL/eoEE/WizIAYM02zXKnX9tbCtoVGeMPITOHLUBDwFB19Q7SsA tI70MqeCG+iOAUifQuQl46ieoHhZCBBGcwxgbfdaSqamGpCc+JAwHLMHJuGM2rGT /6i6oEYHbxr/5abIECwSTgxvfJG8U6nlafePSnj19yJrGbEhcuNg -----END CERTIFICATE-----Generated at Mon Jan 26 15:01:51 2026 by rpki-client