This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/20/9488c7-849c-4ff1-ab4c-ae9283e7964e/1/ySNwW6swWEy9g206lS3TF8Hot7Y.roa File: ySNwW6swWEy9g206lS3TF8Hot7Y.roa (raw, json) Hash identifier: 2G2m7gXWJPeDJ1CaSCcPPIj5TE8F3VNFo+mX4zQe6WU= Subject key identifier: C9:23:70:5B:AB:30:58:4C:BD:83:6D:3A:95:2D:D3:17:C1:E8:B7:B6 Certificate issuer: /CN=4a6d2817491dd2cd0678068e35a9efc68667df02 Certificate serial: 019B7EA561879D9795E452CFF847D68689D0 Authority key identifier: 4A:6D:28:17:49:1D:D2:CD:06:78:06:8E:35:A9:EF:C6:86:67:DF:02 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Sm0oF0kd0s0GeAaONanvxoZn3wI.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/20/9488c7-849c-4ff1-ab4c-ae9283e7964e/1/ySNwW6swWEy9g206lS3TF8Hot7Y.roa Signing time: Fri 02 Jan 2026 12:18:46 +0000 ROA not before: Fri 02 Jan 2026 12:18:46 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 212815 IP address blocks: 91.209.71.0/24 maxlen: 24 185.171.202.0/24 maxlen: 24 2a10:4640::/32 maxlen: 32 2a10:4645::/32 maxlen: 32 2a10:4646:50::/44 maxlen: 44 2a10:4646:170::/44 maxlen: 44 2a10:4646:240::/44 maxlen: 44 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/20/9488c7-849c-4ff1-ab4c-ae9283e7964e/1/Sm0oF0kd0s0GeAaONanvxoZn3wI.crl rsync://rpki.ripe.net/repository/DEFAULT/20/9488c7-849c-4ff1-ab4c-ae9283e7964e/1/Sm0oF0kd0s0GeAaONanvxoZn3wI.mft rsync://rpki.ripe.net/repository/DEFAULT/Sm0oF0kd0s0GeAaONanvxoZn3wI.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 07:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7e:a5:61:87:9d:97:95:e4:52:cf:f8:47:d6:86:89:d0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4a6d2817491dd2cd0678068e35a9efc68667df02 Validity Not Before: Jan 2 12:18:46 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=c923705bab30584cbd836d3a952dd317c1e8b7b6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:b4:dc:6a:d7:d5:09:e7:1b:b9:9b:aa:5b:c1: 26:68:81:5f:e8:32:68:d7:8c:80:f9:44:20:97:8a: 75:ed:eb:f2:86:ee:ac:97:65:d9:10:27:e9:d6:8a: 64:60:26:d3:48:a6:41:db:4c:2a:5c:99:a7:42:53: 62:70:c0:79:13:41:f5:bd:a0:f1:0d:7b:ee:e8:aa: 7c:52:66:56:1f:a6:e9:dc:51:0c:bd:3a:c0:6d:d4: ec:83:6a:6b:e9:bf:0c:d4:30:df:1a:a5:06:f2:df: 0f:6e:91:4e:9b:5b:91:fe:74:67:83:e6:3d:f1:92: 2b:6c:b2:4c:8e:05:9b:76:dd:04:43:1f:93:da:ec: 58:7b:d3:63:c4:aa:6c:eb:fe:52:7e:8c:5f:e9:cd: bf:33:61:71:d2:25:7f:b2:de:82:8f:1b:c2:20:ff: a2:6b:da:b2:75:b8:03:eb:fe:4e:ea:f2:2f:d3:37: 3d:dc:57:94:09:bb:c6:99:2b:3b:2a:be:6c:66:b6: 5d:be:e6:93:91:da:bf:48:32:ed:c8:40:6e:d9:91: b9:64:04:97:cd:09:7f:4c:32:8a:08:e3:34:e3:65: b7:d2:93:f2:86:56:4a:be:c4:c2:67:e5:47:0d:62: 0f:c5:24:bf:0a:84:d4:60:4f:77:fa:4e:4d:1e:03: 63:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C9:23:70:5B:AB:30:58:4C:BD:83:6D:3A:95:2D:D3:17:C1:E8:B7:B6 X509v3 Authority Key Identifier: keyid:4A:6D:28:17:49:1D:D2:CD:06:78:06:8E:35:A9:EF:C6:86:67:DF:02 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Sm0oF0kd0s0GeAaONanvxoZn3wI.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/20/9488c7-849c-4ff1-ab4c-ae9283e7964e/1/ySNwW6swWEy9g206lS3TF8Hot7Y.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/20/9488c7-849c-4ff1-ab4c-ae9283e7964e/1/Sm0oF0kd0s0GeAaONanvxoZn3wI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 91.209.71.0/24 185.171.202.0/24 IPv6: 2a10:4640::/32 2a10:4645::/32 2a10:4646:50::/44 2a10:4646:170::/44 2a10:4646:240::/44 Signature Algorithm: sha256WithRSAEncryption db:9c:88:c8:d5:a7:04:8a:e3:63:2e:bf:b8:2e:d4:41:05:fb: 63:e8:e3:fa:c0:87:b5:c1:c4:10:f3:7a:5d:a8:b6:75:43:1f: 9e:09:09:11:ad:0b:f4:55:e2:39:4f:a0:bc:67:d0:41:1a:78: 72:46:9a:5a:8b:c9:a0:e4:76:63:2d:72:f6:a2:62:f0:e4:cd: b2:f1:f1:e5:9d:b6:83:bf:29:40:1d:46:20:20:90:63:9d:8a: f9:a4:c1:f1:94:ab:95:d6:f0:fc:b0:7d:57:9a:be:f2:82:03: e3:aa:52:b8:92:1d:b8:4c:a8:79:73:fd:8a:5d:01:41:6e:e2: 06:3c:27:f2:56:80:ca:30:c1:b3:39:4e:85:f4:99:ff:e5:fb: b1:01:42:63:60:41:ec:82:9e:3b:7f:18:97:4b:5a:d2:2e:4a: ea:d0:27:d9:a7:e2:57:b0:d5:88:0a:a5:84:aa:28:5c:c3:0d: d7:1b:05:87:49:1a:78:6a:28:55:ee:1b:b3:20:48:c6:23:53: b8:c1:1f:76:3a:ee:ae:e2:3e:e2:e5:50:a1:f9:61:d0:67:b2: af:03:e8:ef:be:1c:98:08:c4:cd:fa:cb:e4:6e:cd:a7:f0:d1: 35:a2:93:cd:56:f8:91:47:78:c4:c5:61:09:0a:29:93:ab:fb: 8f:9f:fd:29 -----BEGIN CERTIFICATE----- MIIFNDCCBBygAwIBAgISAZt+pWGHnZeV5FLP+EfWhonQMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDRhNmQyODE3NDkxZGQyY2QwNjc4MDY4ZTM1YTllZmM2ODY2 N2RmMDIwHhcNMjYwMTAyMTIxODQ2WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhjOTIzNzA1YmFiMzA1ODRjYmQ4MzZkM2E5NTJkZDMxN2MxZThiN2I2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAq7TcatfVCecbuZuqW8EmaIFf6DJo 14yA+UQgl4p17evyhu6sl2XZECfp1opkYCbTSKZB20wqXJmnQlNicMB5E0H1vaDx DXvu6Kp8UmZWH6bp3FEMvTrAbdTsg2pr6b8M1DDfGqUG8t8PbpFOm1uR/nRng+Y9 8ZIrbLJMjgWbdt0EQx+T2uxYe9NjxKps6/5Sfoxf6c2/M2Fx0iV/st6CjxvCIP+i a9qydbgD6/5O6vIv0zc93FeUCbvGmSs7Kr5sZrZdvuaTkdq/SDLtyEBu2ZG5ZASX zQl/TDKKCOM042W30pPyhlZKvsTCZ+VHDWIPxSS/CoTUYE93+k5NHgNjlQIDAQAB o4ICQDCCAjwwHQYDVR0OBBYEFMkjcFurMFhMvYNtOpUt0xfB6Le2MB8GA1UdIwQY MBaAFEptKBdJHdLNBngGjjWp78aGZ98CMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvU20wb0Ywa2QwczBHZUFhT05hbnZ4b1puM3dJLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yMC85NDg4YzctODQ5Yy00ZmYxLWFiNGMt YWU5MjgzZTc5NjRlLzEveVNOd1c2c3dXRXk5ZzIwNmxTM1RGOEhvdDdZLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yMC85NDg4YzctODQ5Yy00ZmYxLWFiNGMtYWU5MjgzZTc5NjRl LzEvU20wb0Ywa2QwczBHZUFhT05hbnZ4b1puM3dJLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMFYGCCsGAQUFBwEHAQH/BEcwRTASBAIAATAMAwQAW9FHAwQA uavKMC8EAgACMCkDBQAqEEZAAwUAKhBGRQMHBCoQRkYAUAMHBCoQRkYBcAMHBCoQ RkYCQDANBgkqhkiG9w0BAQsFAAOCAQEA25yIyNWnBIrjYy6/uC7UQQX7Y+jj+sCH tcHEEPN6Xai2dUMfngkJEa0L9FXiOU+gvGfQQRp4ckaaWovJoOR2Yy1y9qJi8OTN svHx5Z22g78pQB1GICCQY52K+aTB8ZSrldbw/LB9V5q+8oID46pSuJIduEyoeXP9 il0BQW7iBjwn8laAyjDBszlOhfSZ/+X7sQFCY2BB7IKeO38Yl0ta0i5K6tAn2afi V7DViAqlhKooXMMN1xsFh0kaeGooVe4bsyBIxiNTuMEfdjruruI+4uVQoflh0Gey rwPo774cmAjEzfrL5G7Np/DRNaKTzVb4kUd4xMVhCQopk6v7j5/9KQ== -----END CERTIFICATE-----Generated at Sun Jan 25 16:15:01 2026 by rpki-client