This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/35/3daf7f-301d-423e-946e-43df47d5a1e7/1/yhRIOnTpPbWhti1RrtqQMliwotE.roa File: yhRIOnTpPbWhti1RrtqQMliwotE.roa (raw, json) Hash identifier: sPDOjagJPBV8blENyQcTrbddZKQCM0gJadLIMm2Nmh0= Subject key identifier: CA:14:48:3A:74:E9:3D:B5:A1:B6:2D:51:AE:DA:90:32:58:B0:A2:D1 Certificate issuer: /CN=1b12120c351c14eec22109f603249fcdac1d3321 Certificate serial: 019BE090471D22848F4D156726DF9678F1B1 Authority key identifier: 1B:12:12:0C:35:1C:14:EE:C2:21:09:F6:03:24:9F:CD:AC:1D:33:21 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GxISDDUcFO7CIQn2AySfzawdMyE.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/35/3daf7f-301d-423e-946e-43df47d5a1e7/1/yhRIOnTpPbWhti1RrtqQMliwotE.roa Signing time: Wed 21 Jan 2026 12:38:30 +0000 ROA not before: Wed 21 Jan 2026 12:38:30 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 202412 IP address blocks: 91.92.240.0/24 maxlen: 24 91.92.241.0/24 maxlen: 24 91.92.242.0/24 maxlen: 24 91.92.243.0/24 maxlen: 24 158.94.208.0/24 maxlen: 24 158.94.209.0/24 maxlen: 24 158.94.210.0/24 maxlen: 24 158.94.211.0/24 maxlen: 24 178.16.52.0/24 maxlen: 24 178.16.53.0/24 maxlen: 24 178.16.54.0/24 maxlen: 24 178.16.55.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/35/3daf7f-301d-423e-946e-43df47d5a1e7/1/GxISDDUcFO7CIQn2AySfzawdMyE.crl rsync://rpki.ripe.net/repository/DEFAULT/35/3daf7f-301d-423e-946e-43df47d5a1e7/1/GxISDDUcFO7CIQn2AySfzawdMyE.mft rsync://rpki.ripe.net/repository/DEFAULT/GxISDDUcFO7CIQn2AySfzawdMyE.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 13:00:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:e0:90:47:1d:22:84:8f:4d:15:67:26:df:96:78:f1:b1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1b12120c351c14eec22109f603249fcdac1d3321 Validity Not Before: Jan 21 12:38:30 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=ca14483a74e93db5a1b62d51aeda903258b0a2d1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:73:91:f6:63:e9:1e:4e:8a:28:63:cd:f7:c2: db:18:a7:89:6b:b5:28:16:91:5b:a8:b7:2f:f4:58: ac:e4:76:6a:3b:35:8b:a0:a8:6e:91:5d:14:fe:50: c4:cb:d6:04:c5:e7:20:02:b9:33:a4:92:42:98:7e: ba:4b:35:d6:35:3b:bb:5e:18:bf:3a:da:f9:81:4a: 9d:2f:84:8a:01:7f:ea:b2:34:3b:9a:ed:c5:ef:10: d2:7e:8e:b2:6a:f8:63:67:13:4a:f8:c3:14:6c:97: 9b:96:7e:b1:dd:e9:f6:7e:c5:d4:91:25:48:0f:15: 3e:3a:4b:9e:44:60:40:6e:c7:d1:62:23:8d:f8:5a: 99:7a:cd:a0:80:9c:65:10:9c:88:c9:7f:22:ba:27: 50:94:da:ac:01:0d:66:77:ee:22:4c:1d:37:7c:b8: 3b:c2:07:a4:44:b0:34:03:84:2a:02:02:68:44:08: ab:0f:22:4c:1f:71:f2:3f:7f:a6:fa:9a:0e:37:64: 30:93:29:11:ff:2e:55:7d:43:70:13:82:9a:bc:a9: c5:9e:eb:88:5c:16:ab:0f:55:49:dd:c8:98:f5:b6: b9:7c:fd:cb:fe:c1:a9:58:5a:5a:bb:3c:a6:6a:74: d7:0d:77:28:57:4a:62:94:19:30:20:67:0a:e7:12: 1d:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CA:14:48:3A:74:E9:3D:B5:A1:B6:2D:51:AE:DA:90:32:58:B0:A2:D1 X509v3 Authority Key Identifier: keyid:1B:12:12:0C:35:1C:14:EE:C2:21:09:F6:03:24:9F:CD:AC:1D:33:21 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GxISDDUcFO7CIQn2AySfzawdMyE.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/35/3daf7f-301d-423e-946e-43df47d5a1e7/1/yhRIOnTpPbWhti1RrtqQMliwotE.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/35/3daf7f-301d-423e-946e-43df47d5a1e7/1/GxISDDUcFO7CIQn2AySfzawdMyE.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 91.92.240.0/22 158.94.208.0/22 178.16.52.0/22 Signature Algorithm: sha256WithRSAEncryption 2d:8c:30:84:81:22:82:0b:d5:28:78:07:1f:c6:a0:ee:b0:4f: e1:55:6d:aa:35:92:51:af:ad:c8:7d:7a:6d:cb:c7:e1:57:de: 40:da:c9:7f:6c:cc:c6:42:90:56:68:37:42:61:bb:f0:d5:6c: 3f:0d:65:b4:7e:88:34:71:91:72:74:68:da:f0:11:f4:e9:6c: f9:8f:36:cd:dc:d9:a2:57:07:d5:cb:f0:f5:fb:cd:bc:23:16: 4c:96:c4:12:a5:d2:4f:49:16:e2:95:b5:d1:07:5c:8b:ad:3d: 60:96:67:ae:e1:76:90:65:1b:62:3c:0a:88:e1:c5:a2:29:83: 01:7d:81:99:f9:0e:9d:f6:bf:5c:5b:95:95:d6:8e:81:a9:a1: c8:00:84:55:e4:04:0b:1e:3b:b7:e3:84:37:ac:e3:87:be:7d: 6c:f4:76:2f:39:2c:d8:9b:a9:96:e8:3e:ee:25:63:e8:0e:d5: 7f:8a:82:51:2f:e2:99:91:39:1f:5c:5d:6d:05:97:11:08:78: c9:8f:24:2c:69:37:64:92:db:88:e5:20:15:c9:2a:4e:6b:86: 16:ce:35:e3:c9:56:4c:26:6d:7e:ad:23:e5:d4:4b:4a:c2:16: be:a5:dd:72:7d:9b:19:3c:31:b4:0c:84:b9:1d:7e:76:a2:d1: 7b:71:b3:92 -----BEGIN CERTIFICATE----- MIIFCTCCA/GgAwIBAgISAZvgkEcdIoSPTRVnJt+WePGxMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDFiMTIxMjBjMzUxYzE0ZWVjMjIxMDlmNjAzMjQ5ZmNkYWMx ZDMzMjEwHhcNMjYwMTIxMTIzODMwWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhjYTE0NDgzYTc0ZTkzZGI1YTFiNjJkNTFhZWRhOTAzMjU4YjBhMmQxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtXOR9mPpHk6KKGPN98LbGKeJa7Uo FpFbqLcv9Fis5HZqOzWLoKhukV0U/lDEy9YExecgArkzpJJCmH66SzXWNTu7Xhi/ Otr5gUqdL4SKAX/qsjQ7mu3F7xDSfo6yavhjZxNK+MMUbJebln6x3en2fsXUkSVI DxU+OkueRGBAbsfRYiON+FqZes2ggJxlEJyIyX8iuidQlNqsAQ1md+4iTB03fLg7 wgekRLA0A4QqAgJoRAirDyJMH3HyP3+m+poON2QwkykR/y5VfUNwE4KavKnFnuuI XBarD1VJ3ciY9ba5fP3L/sGpWFpauzymanTXDXcoV0pilBkwIGcK5xId3QIDAQAB o4ICFTCCAhEwHQYDVR0OBBYEFMoUSDp06T21obYtUa7akDJYsKLRMB8GA1UdIwQY MBaAFBsSEgw1HBTuwiEJ9gMkn82sHTMhMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvR3hJU0REVWNGTzdDSVFuMkF5U2Z6YXdkTXlFLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zNS8zZGFmN2YtMzAxZC00MjNlLTk0NmUt NDNkZjQ3ZDVhMWU3LzEveWhSSU9uVHBQYldodGkxUnJ0cVFNbGl3b3RFLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zNS8zZGFmN2YtMzAxZC00MjNlLTk0NmUtNDNkZjQ3ZDVhMWU3 LzEvR3hJU0REVWNGTzdDSVFuMkF5U2Z6YXdkTXlFLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCsGCCsGAQUFBwEHAQH/BBwwGjAYBAIAATASAwQCW1zwAwQC nl7QAwQCshA0MA0GCSqGSIb3DQEBCwUAA4IBAQAtjDCEgSKCC9UoeAcfxqDusE/h VW2qNZJRr63IfXpty8fhV95A2sl/bMzGQpBWaDdCYbvw1Ww/DWW0fog0cZFydGja 8BH06Wz5jzbN3NmiVwfVy/D1+828IxZMlsQSpdJPSRbilbXRB1yLrT1glmeu4XaQ ZRtiPAqI4cWiKYMBfYGZ+Q6d9r9cW5WV1o6BqaHIAIRV5AQLHju344Q3rOOHvn1s 9HYvOSzYm6mW6D7uJWPoDtV/ioJRL+KZkTkfXF1tBZcRCHjJjyQsaTdkktuI5SAV ySpOa4YWzjXjyVZMJm1+rSPl1EtKwha+pd1yfZsZPDG0DIS5HX52otF7cbOS -----END CERTIFICATE-----Generated at Sun Jan 25 20:01:35 2026 by rpki-client