This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/24/7a87a0-8014-4605-9fb5-9e71dc24a683/1/YJQ93n5t7zQFymNQxLoR_JxUzGg.roa File: YJQ93n5t7zQFymNQxLoR_JxUzGg.roa (raw, json) Hash identifier: mZ/zXdDuAPbF9AuNtuIKJQ/+wfxB0ATUNZJ5nR8SYUE= Subject key identifier: 60:94:3D:DE:7E:6D:EF:34:05:CA:63:50:C4:BA:11:FC:9C:54:CC:68 Certificate issuer: /CN=2f93d3ba197f5ce3098bfa7700b43854eaa80e9e Certificate serial: 019B7910095B9E1638D955EB7D5EF117BF96 Authority key identifier: 2F:93:D3:BA:19:7F:5C:E3:09:8B:FA:77:00:B4:38:54:EA:A8:0E:9E Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/L5PTuhl_XOMJi_p3ALQ4VOqoDp4.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/24/7a87a0-8014-4605-9fb5-9e71dc24a683/1/YJQ93n5t7zQFymNQxLoR_JxUzGg.roa Signing time: Thu 01 Jan 2026 10:17:32 +0000 ROA not before: Thu 01 Jan 2026 10:17:32 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 212828 IP address blocks: 185.184.255.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/24/7a87a0-8014-4605-9fb5-9e71dc24a683/1/L5PTuhl_XOMJi_p3ALQ4VOqoDp4.crl rsync://rpki.ripe.net/repository/DEFAULT/24/7a87a0-8014-4605-9fb5-9e71dc24a683/1/L5PTuhl_XOMJi_p3ALQ4VOqoDp4.mft rsync://rpki.ripe.net/repository/DEFAULT/L5PTuhl_XOMJi_p3ALQ4VOqoDp4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 07:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:79:10:09:5b:9e:16:38:d9:55:eb:7d:5e:f1:17:bf:96 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2f93d3ba197f5ce3098bfa7700b43854eaa80e9e Validity Not Before: Jan 1 10:17:32 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=60943dde7e6def3405ca6350c4ba11fc9c54cc68 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:c0:28:9b:28:f5:77:00:d3:85:13:88:58:7f: 1f:d7:58:6a:fa:1c:dc:ee:08:59:72:c3:d0:07:90: f6:3d:c6:98:69:8e:54:c5:8d:e1:8f:55:77:b4:d1: cc:80:a9:48:16:8a:a4:55:fe:a3:00:ba:54:26:a4: 9f:6c:90:cc:57:ce:a4:12:b7:34:ab:fc:e5:98:e1: 79:65:0c:c0:b3:f9:11:c1:83:f1:e3:7f:48:97:46: b9:1b:73:89:1d:f3:dc:c3:9d:ef:93:71:73:51:c6: 97:8d:d1:2f:5b:84:79:32:d2:a3:c7:e7:a6:38:82: 25:cb:e2:a6:3d:9b:c2:cd:c3:72:1d:b9:1e:d5:8d: a8:aa:45:92:af:5c:18:5b:9e:5d:83:af:f3:54:92: 36:8b:61:3d:39:22:05:70:8b:44:59:4b:b1:a7:c6: 82:d2:57:f5:ce:ae:30:47:d3:97:d8:9c:e3:06:87: 33:6c:fc:ef:6b:b9:b5:3c:a2:7d:9f:99:b5:54:03: fe:0c:b1:b3:ab:24:16:a0:ee:d5:7a:9d:81:87:ac: d1:cf:f7:2b:08:54:38:8a:47:5e:73:0a:f8:99:86: 1d:e0:df:6d:76:0a:30:f6:7b:e4:e7:f7:ee:23:51: c2:f9:34:f4:ed:e2:e0:5f:be:3b:b1:eb:30:50:20: d0:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 60:94:3D:DE:7E:6D:EF:34:05:CA:63:50:C4:BA:11:FC:9C:54:CC:68 X509v3 Authority Key Identifier: keyid:2F:93:D3:BA:19:7F:5C:E3:09:8B:FA:77:00:B4:38:54:EA:A8:0E:9E X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/L5PTuhl_XOMJi_p3ALQ4VOqoDp4.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/24/7a87a0-8014-4605-9fb5-9e71dc24a683/1/YJQ93n5t7zQFymNQxLoR_JxUzGg.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/24/7a87a0-8014-4605-9fb5-9e71dc24a683/1/L5PTuhl_XOMJi_p3ALQ4VOqoDp4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.184.255.0/24 Signature Algorithm: sha256WithRSAEncryption 88:57:42:38:25:2c:20:96:ad:ec:48:27:2d:b7:70:f4:6d:98: b6:96:af:03:52:a1:c9:67:68:e6:22:8b:4c:87:97:a8:13:5a: a1:27:6f:43:f1:1f:a9:51:eb:48:d9:be:45:94:23:4e:1c:95: 50:0b:9c:2c:90:44:5e:cc:90:20:5d:b3:d7:9d:7a:1c:e0:80: 14:f4:3c:2e:6c:23:b6:c2:94:a8:e7:d5:94:6e:01:07:40:0a: fd:4e:85:4f:04:73:f8:63:cf:6c:59:24:91:9e:ab:e0:53:d1: 3b:be:5b:22:a4:7d:0c:eb:07:e8:b7:ba:ea:ab:27:60:9b:f6: 09:c1:a0:d6:af:ae:37:fb:dc:9f:84:f4:13:58:3d:50:6f:5e: be:73:08:d6:51:3b:65:c3:f4:70:e6:ee:3b:03:89:54:01:75: 4c:89:1f:18:d1:98:56:98:5a:2a:93:e4:48:8d:c9:fd:d8:4f: 57:b9:19:8d:97:6c:3b:79:ed:44:97:24:9b:54:a7:e3:51:83: c8:0e:a6:37:34:89:25:7b:29:9a:bc:23:41:9c:9b:45:25:ab: e8:f3:eb:02:46:d1:2a:50:49:7c:d5:1d:51:d6:45:ce:a5:44: a5:3b:d6:4c:3d:20:04:16:2b:cd:b0:c7:bc:0d:05:25:fe:c2: 72:82:8f:96 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt5EAlbnhY42VXrfV7xF7+WMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJmOTNkM2JhMTk3ZjVjZTMwOThiZmE3NzAwYjQzODU0ZWFh ODBlOWUwHhcNMjYwMTAxMTAxNzMyWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg2MDk0M2RkZTdlNmRlZjM0MDVjYTYzNTBjNGJhMTFmYzljNTRjYzY4MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAp8Aomyj1dwDThROIWH8f11hq+hzc 7ghZcsPQB5D2PcaYaY5UxY3hj1V3tNHMgKlIFoqkVf6jALpUJqSfbJDMV86kErc0 q/zlmOF5ZQzAs/kRwYPx439Il0a5G3OJHfPcw53vk3FzUcaXjdEvW4R5MtKjx+em OIIly+KmPZvCzcNyHbke1Y2oqkWSr1wYW55dg6/zVJI2i2E9OSIFcItEWUuxp8aC 0lf1zq4wR9OX2JzjBoczbPzva7m1PKJ9n5m1VAP+DLGzqyQWoO7Vep2Bh6zRz/cr CFQ4ikdecwr4mYYd4N9tdgow9nvk5/fuI1HC+TT07eLgX747seswUCDQnQIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFGCUPd5+be80BcpjUMS6EfycVMxoMB8GA1UdIwQY MBaAFC+T07oZf1zjCYv6dwC0OFTqqA6eMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvTDVQVHVobF9YT01KaV9wM0FMUTRWT3FvRHA0LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yNC83YTg3YTAtODAxNC00NjA1LTlmYjUt OWU3MWRjMjRhNjgzLzEvWUpROTNuNXQ3elFGeW1OUXhMb1JfSnhVekdnLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yNC83YTg3YTAtODAxNC00NjA1LTlmYjUtOWU3MWRjMjRhNjgz LzEvTDVQVHVobF9YT01KaV9wM0FMUTRWT3FvRHA0LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAubj/MA0G CSqGSIb3DQEBCwUAA4IBAQCIV0I4JSwglq3sSCctt3D0bZi2lq8DUqHJZ2jmIotM h5eoE1qhJ29D8R+pUetI2b5FlCNOHJVQC5wskERezJAgXbPXnXoc4IAU9DwubCO2 wpSo59WUbgEHQAr9ToVPBHP4Y89sWSSRnqvgU9E7vlsipH0M6wfot7rqqydgm/YJ waDWr643+9yfhPQTWD1Qb16+cwjWUTtlw/Rw5u47A4lUAXVMiR8Y0ZhWmFoqk+RI jcn92E9XuRmNl2w7ee1ElySbVKfjUYPIDqY3NIkleymavCNBnJtFJavo8+sCRtEq UEl81R1R1kXOpUSlO9ZMPSAEFivNsMe8DQUl/sJygo+W -----END CERTIFICATE-----Generated at Sun Jan 25 13:34:29 2026 by rpki-client