This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/35/aa58c3-e706-4a49-a7c5-0ae2e922a292/1/yahooYiiSKT8dlBscEstH-nI9OI.roa File: yahooYiiSKT8dlBscEstH-nI9OI.roa (raw, json) Hash identifier: RcEtlFbNKbbd1b6Xpa9kAha5hDxT8dHcRWCjbQbLdrA= Subject key identifier: C9:A8:68:A1:88:A2:48:A4:FC:76:50:6C:70:4B:2D:1F:E9:C8:F4:E2 Certificate issuer: /CN=368bfb8a5eee49082ea628df25a4a5d50f3aa9b3 Certificate serial: 019B7B36BEF1FC731D14DDA3B82F265A9D27 Authority key identifier: 36:8B:FB:8A:5E:EE:49:08:2E:A6:28:DF:25:A4:A5:D5:0F:3A:A9:B3 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Nov7il7uSQgupijfJaSl1Q86qbM.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/35/aa58c3-e706-4a49-a7c5-0ae2e922a292/1/yahooYiiSKT8dlBscEstH-nI9OI.roa Signing time: Thu 01 Jan 2026 20:19:03 +0000 ROA not before: Thu 01 Jan 2026 20:19:03 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 61317 IP address blocks: 62.233.54.0/24 maxlen: 24 185.226.183.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/35/aa58c3-e706-4a49-a7c5-0ae2e922a292/1/Nov7il7uSQgupijfJaSl1Q86qbM.crl rsync://rpki.ripe.net/repository/DEFAULT/35/aa58c3-e706-4a49-a7c5-0ae2e922a292/1/Nov7il7uSQgupijfJaSl1Q86qbM.mft rsync://rpki.ripe.net/repository/DEFAULT/Nov7il7uSQgupijfJaSl1Q86qbM.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 07:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7b:36:be:f1:fc:73:1d:14:dd:a3:b8:2f:26:5a:9d:27 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=368bfb8a5eee49082ea628df25a4a5d50f3aa9b3 Validity Not Before: Jan 1 20:19:03 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=c9a868a188a248a4fc76506c704b2d1fe9c8f4e2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e2:21:6b:d9:df:ae:ac:7e:9b:fc:e4:b7:ff:39: 21:72:2a:d3:d8:09:9e:da:82:ca:f4:22:36:0a:c3: 31:8b:9d:c3:a6:b0:9b:50:c5:21:7c:2a:c3:87:90: cf:94:a2:84:ae:4e:35:e0:49:4f:ae:4a:8f:a8:79: ad:3f:be:5d:38:62:56:07:2a:9b:82:4f:5c:56:2c: 17:12:98:58:0c:58:60:2d:95:b6:f4:32:80:22:b4: fd:f6:83:6c:23:6d:a6:1e:a4:7e:3c:12:60:1f:12: 0a:8c:1b:3e:34:04:8c:20:20:e7:61:58:ac:11:b3: d4:50:22:36:a4:cf:e9:00:29:5a:c7:63:f2:7f:01: b5:57:f7:6b:7d:c8:0c:20:b8:b2:0d:f0:9d:bd:df: ec:49:68:34:81:c2:51:9d:7b:ee:a9:b0:31:f3:0f: 8e:ad:72:79:cd:3e:50:6f:43:1f:a7:02:82:f9:88: c9:15:65:64:f6:23:9c:0e:64:23:41:f0:59:65:15: d2:e8:a2:13:b6:d1:f2:df:5a:97:2b:7b:30:47:77: a0:02:a1:1d:10:5b:41:aa:7a:1f:30:63:3b:06:d1: 1d:21:fd:b0:9c:86:97:22:45:41:5c:a5:c9:02:45: b6:76:91:fb:e9:7c:0b:63:12:b3:29:4a:92:f5:b8: f2:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C9:A8:68:A1:88:A2:48:A4:FC:76:50:6C:70:4B:2D:1F:E9:C8:F4:E2 X509v3 Authority Key Identifier: keyid:36:8B:FB:8A:5E:EE:49:08:2E:A6:28:DF:25:A4:A5:D5:0F:3A:A9:B3 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Nov7il7uSQgupijfJaSl1Q86qbM.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/35/aa58c3-e706-4a49-a7c5-0ae2e922a292/1/yahooYiiSKT8dlBscEstH-nI9OI.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/35/aa58c3-e706-4a49-a7c5-0ae2e922a292/1/Nov7il7uSQgupijfJaSl1Q86qbM.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 62.233.54.0/24 185.226.183.0/24 Signature Algorithm: sha256WithRSAEncryption 12:e5:38:d7:68:7a:9f:89:7d:96:d7:f0:13:59:4d:72:cf:69: 94:ab:6e:b9:6f:4b:d9:a3:2d:86:a6:c8:bc:30:24:d9:1e:b7: f2:aa:94:46:99:d8:2b:97:35:1b:ff:2a:59:52:22:2b:95:a0: bb:a5:f8:60:fc:31:da:9a:6a:98:b7:be:9f:d5:d3:44:cc:fa: ff:7f:53:b9:5e:71:34:3f:52:02:f3:65:30:82:f7:e8:2c:92: be:06:48:db:f4:55:99:3d:b4:ad:43:ee:a6:6c:15:c8:48:71: 82:d4:31:df:75:11:36:bf:44:24:cb:5b:65:a2:bf:3a:8e:34: d3:88:6f:7a:ce:c8:ef:74:9c:1b:dc:82:f1:ea:8e:3c:a6:f5: 96:7c:fc:c0:1f:68:16:c7:ec:37:64:1d:f1:fc:b3:a4:0a:87: 25:0d:f2:f0:c1:01:7b:c9:13:35:db:9b:3e:e3:90:c4:88:38: 5f:5f:97:01:04:b4:c9:3b:c0:d5:01:70:62:1a:84:84:e8:97: c0:30:50:67:79:fb:0c:87:44:ba:c2:3c:2f:ec:1f:b8:b9:22: 0b:cb:e4:2e:28:40:e6:f9:8c:a3:e6:a9:47:ca:b9:87:60:23: 92:6c:5b:29:36:a6:60:3a:58:ea:14:7d:bd:c0:6d:50:b6:2e: aa:d4:d3:42 -----BEGIN CERTIFICATE----- MIIFAzCCA+ugAwIBAgISAZt7Nr7x/HMdFN2juC8mWp0nMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDM2OGJmYjhhNWVlZTQ5MDgyZWE2MjhkZjI1YTRhNWQ1MGYz YWE5YjMwHhcNMjYwMTAxMjAxOTAzWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhjOWE4NjhhMTg4YTI0OGE0ZmM3NjUwNmM3MDRiMmQxZmU5YzhmNGUyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA4iFr2d+urH6b/OS3/zkhcirT2Ame 2oLK9CI2CsMxi53DprCbUMUhfCrDh5DPlKKErk414ElPrkqPqHmtP75dOGJWByqb gk9cViwXEphYDFhgLZW29DKAIrT99oNsI22mHqR+PBJgHxIKjBs+NASMICDnYVis EbPUUCI2pM/pAClax2PyfwG1V/drfcgMILiyDfCdvd/sSWg0gcJRnXvuqbAx8w+O rXJ5zT5Qb0MfpwKC+YjJFWVk9iOcDmQjQfBZZRXS6KITttHy31qXK3swR3egAqEd EFtBqnofMGM7BtEdIf2wnIaXIkVBXKXJAkW2dpH76XwLYxKzKUqS9bjyxQIDAQAB o4ICDzCCAgswHQYDVR0OBBYEFMmoaKGIokik/HZQbHBLLR/pyPTiMB8GA1UdIwQY MBaAFDaL+4pe7kkILqYo3yWkpdUPOqmzMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvTm92N2lsN3VTUWd1cGlqZkphU2wxUTg2cWJNLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zNS9hYTU4YzMtZTcwNi00YTQ5LWE3YzUt MGFlMmU5MjJhMjkyLzEveWFob29ZaWlTS1Q4ZGxCc2NFc3RILW5JOU9JLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zNS9hYTU4YzMtZTcwNi00YTQ5LWE3YzUtMGFlMmU5MjJhMjky LzEvTm92N2lsN3VTUWd1cGlqZkphU2wxUTg2cWJNLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQAPuk2AwQA ueK3MA0GCSqGSIb3DQEBCwUAA4IBAQAS5TjXaHqfiX2W1/ATWU1yz2mUq265b0vZ oy2Gpsi8MCTZHrfyqpRGmdgrlzUb/ypZUiIrlaC7pfhg/DHammqYt76f1dNEzPr/ f1O5XnE0P1IC82UwgvfoLJK+Bkjb9FWZPbStQ+6mbBXISHGC1DHfdRE2v0Qky1tl or86jjTTiG96zsjvdJwb3ILx6o48pvWWfPzAH2gWx+w3ZB3x/LOkCoclDfLwwQF7 yRM125s+45DEiDhfX5cBBLTJO8DVAXBiGoSE6JfAMFBnefsMh0S6wjwv7B+4uSIL y+QuKEDm+Yyj5qlHyrmHYCOSbFspNqZgOljqFH29wG1Qti6q1NNC -----END CERTIFICATE-----Generated at Sun Jan 25 11:41:21 2026 by rpki-client