This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0e/8c0473-e7d0-4e43-a7f9-797f4cc4b500/1/yfDJRZg2skhYgI5YRIWudM4uRkA.roa File: yfDJRZg2skhYgI5YRIWudM4uRkA.roa (raw, json) Hash identifier: kEPU+5FdgdE3UdwWy8pB51bGvVfcgF37Ajrzi1JqLzc= Subject key identifier: C9:F0:C9:45:98:36:B2:48:58:80:8E:58:44:85:AE:74:CE:2E:46:40 Certificate issuer: /CN=6c1bec3f9358668a87d1a16c4722f41e3c2381e2 Certificate serial: 019B7AC81B4CFD6AF6602ED1FF67107CEEF2 Authority key identifier: 6C:1B:EC:3F:93:58:66:8A:87:D1:A1:6C:47:22:F4:1E:3C:23:81:E2 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bBvsP5NYZoqH0aFsRyL0HjwjgeI.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0e/8c0473-e7d0-4e43-a7f9-797f4cc4b500/1/yfDJRZg2skhYgI5YRIWudM4uRkA.roa Signing time: Thu 01 Jan 2026 18:18:13 +0000 ROA not before: Thu 01 Jan 2026 18:18:13 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 34306 IP address blocks: 185.161.9.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0e/8c0473-e7d0-4e43-a7f9-797f4cc4b500/1/bBvsP5NYZoqH0aFsRyL0HjwjgeI.crl rsync://rpki.ripe.net/repository/DEFAULT/0e/8c0473-e7d0-4e43-a7f9-797f4cc4b500/1/bBvsP5NYZoqH0aFsRyL0HjwjgeI.mft rsync://rpki.ripe.net/repository/DEFAULT/bBvsP5NYZoqH0aFsRyL0HjwjgeI.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 16:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7a:c8:1b:4c:fd:6a:f6:60:2e:d1:ff:67:10:7c:ee:f2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6c1bec3f9358668a87d1a16c4722f41e3c2381e2 Validity Not Before: Jan 1 18:18:13 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=c9f0c9459836b24858808e584485ae74ce2e4640 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9a:08:71:18:9d:2a:18:a1:8c:b4:c3:2c:b3:b4: 7a:51:60:1a:26:0f:96:bb:b5:60:34:c6:28:67:9a: c5:f0:a3:a1:f9:d5:11:36:bf:28:8e:59:b7:08:84: 47:45:b8:2c:1b:12:7f:08:fa:22:bf:f3:07:2b:b6: 93:66:97:06:26:67:65:68:c3:4f:53:8f:1c:55:7f: 1b:c3:c8:51:cd:b1:35:43:27:9b:5a:2b:f1:1d:48: 7c:a4:03:e4:78:e6:0e:d3:7f:e7:91:51:61:29:02: 3c:9b:aa:a4:47:37:9d:37:8c:55:7d:92:db:ff:50: 12:d6:d4:80:e4:90:03:f8:1c:80:a7:07:1f:cf:b6: 73:ae:28:4c:7e:39:ac:50:46:5b:6a:01:5c:8a:2b: de:cd:6a:26:a1:84:01:14:27:58:40:be:f1:23:50: c1:3b:49:5e:06:6e:bf:5d:57:4f:31:74:7d:02:f5: 97:3c:50:be:5e:0e:e5:45:8f:70:43:5c:d8:04:1d: 7c:82:b0:4d:eb:50:09:b6:53:99:e0:4d:6d:16:0b: de:8d:d5:97:37:57:3f:11:21:02:20:e6:45:78:65: 74:64:51:60:ab:02:a5:1b:fb:bb:6d:d1:bb:17:4b: 7a:c6:2c:79:fd:9f:21:9e:79:d4:ac:3d:28:89:e3: 9d:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C9:F0:C9:45:98:36:B2:48:58:80:8E:58:44:85:AE:74:CE:2E:46:40 X509v3 Authority Key Identifier: keyid:6C:1B:EC:3F:93:58:66:8A:87:D1:A1:6C:47:22:F4:1E:3C:23:81:E2 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bBvsP5NYZoqH0aFsRyL0HjwjgeI.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0e/8c0473-e7d0-4e43-a7f9-797f4cc4b500/1/yfDJRZg2skhYgI5YRIWudM4uRkA.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/0e/8c0473-e7d0-4e43-a7f9-797f4cc4b500/1/bBvsP5NYZoqH0aFsRyL0HjwjgeI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.161.9.0/24 Signature Algorithm: sha256WithRSAEncryption 7b:fe:ca:8d:81:67:04:1a:c4:2a:9d:65:89:45:6f:8a:ac:c6: f1:d5:83:20:c8:1b:98:f2:60:bc:e0:af:39:63:f7:f4:97:76: d9:4e:8d:12:9e:8b:f5:39:7a:de:24:05:20:40:30:82:3d:e5: 53:ef:28:13:48:67:2a:cd:be:41:48:a6:e0:dd:10:fd:73:d0: cb:00:ff:d0:8b:68:cb:d3:5c:d7:3a:0e:02:ed:38:eb:cb:ee: 7a:d3:d2:35:b5:e9:87:a8:e3:60:3a:8a:98:09:05:95:53:39: a0:71:86:d0:28:6d:90:96:f8:f5:10:ba:03:09:e7:79:aa:ef: 3e:a7:a1:48:56:e6:b4:4f:80:a4:1f:fb:c6:14:35:f6:39:6d: 03:9b:81:5d:47:4e:b2:da:a0:2e:83:a4:be:fc:76:29:b3:bc: d3:5c:f2:00:72:62:9a:3f:d2:aa:2b:25:97:a8:9b:ec:e4:60: ff:4e:26:ec:c8:9b:fc:cc:a1:80:28:d1:8a:61:f6:cd:53:53: b4:ba:89:13:09:f4:b6:a5:8d:62:f3:11:c2:28:e5:21:a6:1b: b7:13:61:f9:89:2f:2e:36:f0:b2:08:b3:6c:0f:2a:ad:45:6f: 45:6a:05:ae:0f:f0:2e:ab:f3:3a:4b:84:45:3f:04:a7:50:ba: 6f:0a:e5:ed -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt6yBtM/Wr2YC7R/2cQfO7yMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDZjMWJlYzNmOTM1ODY2OGE4N2QxYTE2YzQ3MjJmNDFlM2My MzgxZTIwHhcNMjYwMTAxMTgxODEzWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhjOWYwYzk0NTk4MzZiMjQ4NTg4MDhlNTg0NDg1YWU3NGNlMmU0NjQwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmghxGJ0qGKGMtMMss7R6UWAaJg+W u7VgNMYoZ5rF8KOh+dURNr8ojlm3CIRHRbgsGxJ/CPoiv/MHK7aTZpcGJmdlaMNP U48cVX8bw8hRzbE1QyebWivxHUh8pAPkeOYO03/nkVFhKQI8m6qkRzedN4xVfZLb /1AS1tSA5JAD+ByApwcfz7ZzrihMfjmsUEZbagFciivezWomoYQBFCdYQL7xI1DB O0leBm6/XVdPMXR9AvWXPFC+Xg7lRY9wQ1zYBB18grBN61AJtlOZ4E1tFgvejdWX N1c/ESECIOZFeGV0ZFFgqwKlG/u7bdG7F0t6xix5/Z8hnnnUrD0oieOd5wIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFMnwyUWYNrJIWICOWESFrnTOLkZAMB8GA1UdIwQY MBaAFGwb7D+TWGaKh9GhbEci9B48I4HiMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvYkJ2c1A1Tllab3FIMGFGc1J5TDBIandqZ2VJLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wZS84YzA0NzMtZTdkMC00ZTQzLWE3Zjkt Nzk3ZjRjYzRiNTAwLzEveWZESlJaZzJza2hZZ0k1WVJJV3VkTTR1UmtBLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wZS84YzA0NzMtZTdkMC00ZTQzLWE3ZjktNzk3ZjRjYzRiNTAw LzEvYkJ2c1A1Tllab3FIMGFGc1J5TDBIandqZ2VJLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAuaEJMA0G CSqGSIb3DQEBCwUAA4IBAQB7/sqNgWcEGsQqnWWJRW+KrMbx1YMgyBuY8mC84K85 Y/f0l3bZTo0Snov1OXreJAUgQDCCPeVT7ygTSGcqzb5BSKbg3RD9c9DLAP/Qi2jL 01zXOg4C7Tjry+5609I1temHqONgOoqYCQWVUzmgcYbQKG2Qlvj1ELoDCed5qu8+ p6FIVua0T4CkH/vGFDX2OW0Dm4FdR06y2qAug6S+/HYps7zTXPIAcmKaP9KqKyWX qJvs5GD/TibsyJv8zKGAKNGKYfbNU1O0uokTCfS2pY1i8xHCKOUhphu3E2H5iS8u NvCyCLNsDyqtRW9FagWuD/Auq/M6S4RFPwSnULpvCuXt -----END CERTIFICATE-----Generated at Mon Jan 26 01:52:42 2026 by rpki-client