This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/17/75216d-684b-47cc-a95e-db4d39dc4ec7/1/Ye2GEDhazaeP2-cVb6Ll0YyHos0.roa File: Ye2GEDhazaeP2-cVb6Ll0YyHos0.roa (raw, json) Hash identifier: D4xycm19E4MZpyyHq3gT/6x9Pb6wa/VQKyOsseee/GY= Subject key identifier: 61:ED:86:10:38:5A:CD:A7:8F:DB:E7:15:6F:A2:E5:D1:8C:87:A2:CD Certificate issuer: /CN=d44de659759b0274124a7b481d0976840b7ade06 Certificate serial: 019B7BA32F4467F3257AADEB70ECDEAC161B Authority key identifier: D4:4D:E6:59:75:9B:02:74:12:4A:7B:48:1D:09:76:84:0B:7A:DE:06 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1E3mWXWbAnQSSntIHQl2hAt63gY.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/17/75216d-684b-47cc-a95e-db4d39dc4ec7/1/Ye2GEDhazaeP2-cVb6Ll0YyHos0.roa Signing time: Thu 01 Jan 2026 22:17:30 +0000 ROA not before: Thu 01 Jan 2026 22:17:30 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 34714 IP address blocks: 37.143.168.0/24 maxlen: 24 37.143.175.0/24 maxlen: 24 91.201.76.0/22 maxlen: 22 91.213.34.0/24 maxlen: 24 185.238.56.0/22 maxlen: 22 193.32.140.0/24 maxlen: 24 193.238.56.0/22 maxlen: 22 2a03:8f80::/32 maxlen: 32 2a03:8f81::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/17/75216d-684b-47cc-a95e-db4d39dc4ec7/1/1E3mWXWbAnQSSntIHQl2hAt63gY.crl rsync://rpki.ripe.net/repository/DEFAULT/17/75216d-684b-47cc-a95e-db4d39dc4ec7/1/1E3mWXWbAnQSSntIHQl2hAt63gY.mft rsync://rpki.ripe.net/repository/DEFAULT/1E3mWXWbAnQSSntIHQl2hAt63gY.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 13:01:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7b:a3:2f:44:67:f3:25:7a:ad:eb:70:ec:de:ac:16:1b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d44de659759b0274124a7b481d0976840b7ade06 Validity Not Before: Jan 1 22:17:30 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=61ed8610385acda78fdbe7156fa2e5d18c87a2cd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:25:7c:b6:b9:0f:ba:3e:c8:d4:19:39:10:c6: 29:a6:22:3f:7e:91:02:1d:17:5e:06:66:0f:9d:91: 7a:04:72:16:d7:94:d6:9d:9d:91:e7:f7:15:f1:1b: d6:5b:2d:44:86:20:1f:40:3f:39:66:21:c8:69:ab: cd:51:fe:e6:88:37:6d:71:66:35:7c:2c:09:a9:fc: 23:5f:27:99:49:f7:18:ea:ef:bc:58:63:b0:a2:97: da:d0:d2:92:24:c5:70:85:15:d0:3f:d4:cf:9d:db: b6:54:cb:b9:32:dc:aa:45:5b:d2:05:65:ae:cd:a9: b3:81:12:2e:84:f4:34:2b:f4:bb:6d:22:ec:49:29: 6c:ce:28:89:70:e5:57:b9:27:52:4a:6a:f7:69:20: 04:6f:9c:40:a9:8a:cc:2c:ef:ee:6c:74:35:1d:fc: bd:f6:21:15:7d:40:e3:c3:21:e1:ac:aa:4f:e7:4d: d8:2d:b6:36:b9:cd:39:1e:94:7a:83:be:fc:9c:68: 29:f1:17:5d:80:d7:f7:b3:59:84:84:f5:f0:95:90: 01:16:4a:02:ba:9d:5f:7b:d1:c4:f5:1f:73:69:42: 8e:37:b5:ec:8a:31:c8:bd:06:56:2d:4c:f0:f5:4b: 98:06:52:e1:5f:4f:ec:4d:19:17:73:a6:93:3f:2a: c3:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 61:ED:86:10:38:5A:CD:A7:8F:DB:E7:15:6F:A2:E5:D1:8C:87:A2:CD X509v3 Authority Key Identifier: keyid:D4:4D:E6:59:75:9B:02:74:12:4A:7B:48:1D:09:76:84:0B:7A:DE:06 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1E3mWXWbAnQSSntIHQl2hAt63gY.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/17/75216d-684b-47cc-a95e-db4d39dc4ec7/1/Ye2GEDhazaeP2-cVb6Ll0YyHos0.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/17/75216d-684b-47cc-a95e-db4d39dc4ec7/1/1E3mWXWbAnQSSntIHQl2hAt63gY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 37.143.168.0/24 37.143.175.0/24 91.201.76.0/22 91.213.34.0/24 185.238.56.0/22 193.32.140.0/24 193.238.56.0/22 IPv6: 2a03:8f80::/31 Signature Algorithm: sha256WithRSAEncryption 18:8a:45:69:36:26:95:ce:23:b0:88:f8:bc:4f:9b:43:c2:be: 85:41:47:9e:d9:f4:4f:11:70:3a:b8:b8:80:4f:cc:59:47:a7: 54:42:7c:ed:55:d4:0c:19:94:c9:4f:82:84:be:87:e3:09:4d: e1:d6:be:9d:60:1b:41:b0:49:8f:27:99:46:1b:f5:d0:10:b7: 34:32:1a:bc:c4:cf:96:10:a0:d4:9a:4b:bb:fd:c3:0b:b2:b3: 34:fc:0d:aa:49:46:8e:93:e6:91:a2:dc:25:f1:f7:73:40:fc: e9:67:e8:4f:57:73:e6:cd:35:bc:79:4a:a5:dd:df:90:f5:37: ca:62:78:e9:a0:66:22:97:33:36:08:fa:a2:bf:93:ea:a6:1e: e6:f1:8a:7a:73:7c:5a:e6:a0:a2:08:2b:3f:f3:bf:6a:70:e3: 32:78:af:1d:54:43:f7:bc:ad:a7:9f:b2:2e:35:cd:9f:26:22: 37:2e:b8:9b:14:84:88:a2:01:0b:3d:ed:dc:9a:16:b1:6f:a7: b5:6f:1f:45:2c:ea:5b:79:c4:fd:cd:95:f1:c2:8d:2b:a3:78: a9:a1:4e:e4:a3:2f:75:53:57:53:a4:87:e7:50:dc:20:0f:cb: 25:0c:e9:6d:5e:2d:36:fa:af:79:67:4a:7f:7b:00:61:0e:3d: 5c:43:45:f8 -----BEGIN CERTIFICATE----- MIIFMDCCBBigAwIBAgISAZt7oy9EZ/Mleq3rcOzerBYbMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGQ0NGRlNjU5NzU5YjAyNzQxMjRhN2I0ODFkMDk3Njg0MGI3 YWRlMDYwHhcNMjYwMTAxMjIxNzMwWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg2MWVkODYxMDM4NWFjZGE3OGZkYmU3MTU2ZmEyZTVkMThjODdhMmNkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArSV8trkPuj7I1Bk5EMYppiI/fpEC HRdeBmYPnZF6BHIW15TWnZ2R5/cV8RvWWy1EhiAfQD85ZiHIaavNUf7miDdtcWY1 fCwJqfwjXyeZSfcY6u+8WGOwopfa0NKSJMVwhRXQP9TPndu2VMu5MtyqRVvSBWWu zamzgRIuhPQ0K/S7bSLsSSlsziiJcOVXuSdSSmr3aSAEb5xAqYrMLO/ubHQ1Hfy9 9iEVfUDjwyHhrKpP503YLbY2uc05HpR6g778nGgp8RddgNf3s1mEhPXwlZABFkoC up1fe9HE9R9zaUKON7XsijHIvQZWLUzw9UuYBlLhX0/sTRkXc6aTPyrD2wIDAQAB o4ICPDCCAjgwHQYDVR0OBBYEFGHthhA4Ws2nj9vnFW+i5dGMh6LNMB8GA1UdIwQY MBaAFNRN5ll1mwJ0Ekp7SB0JdoQLet4GMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvMUUzbVdYV2JBblFTU250SUhRbDJoQXQ2M2dZLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xNy83NTIxNmQtNjg0Yi00N2NjLWE5NWUt ZGI0ZDM5ZGM0ZWM3LzEvWWUyR0VEaGF6YWVQMi1jVmI2TGwwWXlIb3MwLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xNy83NTIxNmQtNjg0Yi00N2NjLWE5NWUtZGI0ZDM5ZGM0ZWM3 LzEvMUUzbVdYV2JBblFTU250SUhRbDJoQXQ2M2dZLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMFIGCCsGAQUFBwEHAQH/BEMwQTAwBAIAATAqAwQAJY+oAwQA JY+vAwQCW8lMAwQAW9UiAwQCue44AwQAwSCMAwQCwe44MA0EAgACMAcDBQEqA4+A MA0GCSqGSIb3DQEBCwUAA4IBAQAYikVpNiaVziOwiPi8T5tDwr6FQUee2fRPEXA6 uLiAT8xZR6dUQnztVdQMGZTJT4KEvofjCU3h1r6dYBtBsEmPJ5lGG/XQELc0Mhq8 xM+WEKDUmku7/cMLsrM0/A2qSUaOk+aRotwl8fdzQPzpZ+hPV3PmzTW8eUql3d+Q 9TfKYnjpoGYilzM2CPqiv5Pqph7m8Yp6c3xa5qCiCCs/879qcOMyeK8dVEP3vK2n n7IuNc2fJiI3LribFISIogELPe3cmhaxb6e1bx9FLOpbecT9zZXxwo0ro3ipoU7k oy91U1dTpIfnUNwgD8slDOltXi02+q95Z0p/ewBhDj1cQ0X4 -----END CERTIFICATE-----Generated at Sun Jan 25 22:13:35 2026 by rpki-client