This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/06/e01a29-c597-4974-86e1-092e7a16b74e/1/y-HjtwR4wSx0DUihdNST7R_S2o8.roa File: y-HjtwR4wSx0DUihdNST7R_S2o8.roa (raw, json) Hash identifier: VEt+M0A57FyhjxmDHZ0yKL7ASQDN3BrLmNEFa7RXahE= Subject key identifier: CB:E1:E3:B7:04:78:C1:2C:74:0D:48:A1:74:D4:93:ED:1F:D2:DA:8F Certificate issuer: /CN=076851104a9218eff173f434f55bdd2420aaae2e Certificate serial: 019B7BA4BA52E8774114B4607D33C168B13F Authority key identifier: 07:68:51:10:4A:92:18:EF:F1:73:F4:34:F5:5B:DD:24:20:AA:AE:2E Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/B2hREEqSGO_xc_Q09VvdJCCqri4.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/06/e01a29-c597-4974-86e1-092e7a16b74e/1/y-HjtwR4wSx0DUihdNST7R_S2o8.roa Signing time: Thu 01 Jan 2026 22:19:11 +0000 ROA not before: Thu 01 Jan 2026 22:19:11 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 39686 IP address blocks: 195.130.199.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/06/e01a29-c597-4974-86e1-092e7a16b74e/1/B2hREEqSGO_xc_Q09VvdJCCqri4.crl rsync://rpki.ripe.net/repository/DEFAULT/06/e01a29-c597-4974-86e1-092e7a16b74e/1/B2hREEqSGO_xc_Q09VvdJCCqri4.mft rsync://rpki.ripe.net/repository/DEFAULT/B2hREEqSGO_xc_Q09VvdJCCqri4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 07:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7b:a4:ba:52:e8:77:41:14:b4:60:7d:33:c1:68:b1:3f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=076851104a9218eff173f434f55bdd2420aaae2e Validity Not Before: Jan 1 22:19:11 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=cbe1e3b70478c12c740d48a174d493ed1fd2da8f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:06:68:56:23:5c:e8:69:13:52:b1:7d:84:d0: f3:79:d5:7c:d3:1a:86:fb:28:15:44:aa:7c:43:c6: d3:24:79:cc:32:33:69:56:47:20:ce:25:c1:7a:74: 94:d6:f8:cd:c4:9d:98:9b:9e:12:4e:fa:d7:01:88: 9a:66:d8:9b:19:8b:42:36:34:2c:db:e5:3e:9d:bc: 8c:b8:eb:9a:74:34:84:1e:da:b5:e1:09:39:43:a0: a7:86:97:d6:a9:a1:3d:38:d3:68:08:d6:1d:05:74: e7:bd:e9:70:31:77:f5:32:ee:20:8b:a6:c7:59:20: 03:bb:db:b1:30:36:22:78:d6:47:63:2f:c0:97:a9: e3:e8:35:80:07:81:61:6c:fe:44:39:12:c5:b2:44: 67:fe:98:2e:fa:2d:b4:96:19:73:bb:54:2e:51:e4: 64:e6:e3:64:82:14:52:b4:42:ff:45:4c:2f:f1:37: 45:e3:95:d2:28:d4:9d:5a:3f:23:15:c2:9e:1e:ec: d2:92:91:18:5f:dd:65:09:4a:98:11:fc:c5:41:c3: 1e:3d:da:fc:70:4f:7d:08:5e:87:c7:e3:1c:60:52: ef:68:ed:60:1f:e7:ba:c5:03:fb:a1:f2:a3:42:27: 9b:6a:a7:17:86:86:81:45:f2:5e:24:db:53:05:91: 98:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CB:E1:E3:B7:04:78:C1:2C:74:0D:48:A1:74:D4:93:ED:1F:D2:DA:8F X509v3 Authority Key Identifier: keyid:07:68:51:10:4A:92:18:EF:F1:73:F4:34:F5:5B:DD:24:20:AA:AE:2E X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/B2hREEqSGO_xc_Q09VvdJCCqri4.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/06/e01a29-c597-4974-86e1-092e7a16b74e/1/y-HjtwR4wSx0DUihdNST7R_S2o8.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/06/e01a29-c597-4974-86e1-092e7a16b74e/1/B2hREEqSGO_xc_Q09VvdJCCqri4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 195.130.199.0/24 Signature Algorithm: sha256WithRSAEncryption 11:43:c5:9e:0c:fc:e0:07:84:ee:5d:c0:26:66:69:84:4f:9c: d8:b8:c5:45:6e:52:98:56:4b:7b:a2:d9:88:5e:cc:eb:e4:f8: ef:22:61:1a:65:f1:d2:7c:7f:d2:28:78:88:0f:c3:8b:7b:82: 08:45:dc:6c:7c:40:5d:85:af:f0:57:86:a9:0d:9a:08:91:92: c6:f4:b0:1c:3e:42:c1:bb:ef:30:a6:52:8c:c3:df:a1:c9:b2: 82:77:61:f6:69:49:d0:b1:7e:3c:82:e0:77:a6:ff:65:6e:0f: c3:1c:99:8c:8a:0c:05:c4:09:8f:1d:c0:25:68:77:7e:4f:f2: 6d:49:65:76:68:45:30:11:fa:86:08:fa:02:13:61:4f:b6:86: 1a:95:dd:ca:60:a7:c5:97:a5:10:51:dd:f7:f3:d6:1e:4c:e9: 07:a3:2f:bd:34:a2:c9:3c:03:d5:03:b0:4c:f0:fc:6e:12:7b: 9d:8d:c4:de:c6:dd:ab:04:49:d3:48:c9:4f:60:52:f6:f0:ec: 0b:af:44:83:9e:3e:c4:e6:10:a8:09:46:95:93:66:75:01:4e: c9:38:99:3f:fc:24:1c:74:4a:87:05:4d:a6:c3:0f:89:b2:6c: bb:0f:9e:e7:14:05:74:54:d5:3b:3c:71:fc:f4:3a:ed:8d:5a: dc:8f:bf:de -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt7pLpS6HdBFLRgfTPBaLE/MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDA3Njg1MTEwNGE5MjE4ZWZmMTczZjQzNGY1NWJkZDI0MjBh YWFlMmUwHhcNMjYwMTAxMjIxOTExWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhjYmUxZTNiNzA0NzhjMTJjNzQwZDQ4YTE3NGQ0OTNlZDFmZDJkYThmMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApgZoViNc6GkTUrF9hNDzedV80xqG +ygVRKp8Q8bTJHnMMjNpVkcgziXBenSU1vjNxJ2Ym54STvrXAYiaZtibGYtCNjQs 2+U+nbyMuOuadDSEHtq14Qk5Q6CnhpfWqaE9ONNoCNYdBXTnvelwMXf1Mu4gi6bH WSADu9uxMDYieNZHYy/Al6nj6DWAB4FhbP5EORLFskRn/pgu+i20lhlzu1QuUeRk 5uNkghRStEL/RUwv8TdF45XSKNSdWj8jFcKeHuzSkpEYX91lCUqYEfzFQcMePdr8 cE99CF6Hx+McYFLvaO1gH+e6xQP7ofKjQiebaqcXhoaBRfJeJNtTBZGYGQIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFMvh47cEeMEsdA1IoXTUk+0f0tqPMB8GA1UdIwQY MBaAFAdoURBKkhjv8XP0NPVb3SQgqq4uMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvQjJoUkVFcVNHT194Y19RMDlWdmRKQ0Nxcmk0LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wNi9lMDFhMjktYzU5Ny00OTc0LTg2ZTEt MDkyZTdhMTZiNzRlLzEveS1IanR3UjR3U3gwRFVpaGROU1Q3Ul9TMm84LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wNi9lMDFhMjktYzU5Ny00OTc0LTg2ZTEtMDkyZTdhMTZiNzRl LzEvQjJoUkVFcVNHT194Y19RMDlWdmRKQ0Nxcmk0LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAw4LHMA0G CSqGSIb3DQEBCwUAA4IBAQARQ8WeDPzgB4TuXcAmZmmET5zYuMVFblKYVkt7otmI Xszr5PjvImEaZfHSfH/SKHiID8OLe4IIRdxsfEBdha/wV4apDZoIkZLG9LAcPkLB u+8wplKMw9+hybKCd2H2aUnQsX48guB3pv9lbg/DHJmMigwFxAmPHcAlaHd+T/Jt SWV2aEUwEfqGCPoCE2FPtoYald3KYKfFl6UQUd3389YeTOkHoy+9NKLJPAPVA7BM 8PxuEnudjcText2rBEnTSMlPYFL28OwLr0SDnj7E5hCoCUaVk2Z1AU7JOJk//CQc dEqHBU2mww+Jsmy7D57nFAV0VNU7PHH89DrtjVrcj7/e -----END CERTIFICATE-----Generated at Sun Jan 25 17:22:23 2026 by rpki-client