This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/35/aa58c3-e706-4a49-a7c5-0ae2e922a292/1/yfOWaWQMRst2xNQtvy2Y_lNwdUA.roa File: yfOWaWQMRst2xNQtvy2Y_lNwdUA.roa (raw, json) Hash identifier: 8ibNwF/5VTzCu9MBNCfFWDY8eww+HMMEV12ydh8npoo= Subject key identifier: C9:F3:96:69:64:0C:46:CB:76:C4:D4:2D:BF:2D:98:FE:53:70:75:40 Certificate issuer: /CN=368bfb8a5eee49082ea628df25a4a5d50f3aa9b3 Certificate serial: 019B7B36C124EECDC11754DD4D00017AFED7 Authority key identifier: 36:8B:FB:8A:5E:EE:49:08:2E:A6:28:DF:25:A4:A5:D5:0F:3A:A9:B3 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Nov7il7uSQgupijfJaSl1Q86qbM.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/35/aa58c3-e706-4a49-a7c5-0ae2e922a292/1/yfOWaWQMRst2xNQtvy2Y_lNwdUA.roa Signing time: Thu 01 Jan 2026 20:19:04 +0000 ROA not before: Thu 01 Jan 2026 20:19:04 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 200017 IP address blocks: 79.98.247.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/35/aa58c3-e706-4a49-a7c5-0ae2e922a292/1/Nov7il7uSQgupijfJaSl1Q86qbM.crl rsync://rpki.ripe.net/repository/DEFAULT/35/aa58c3-e706-4a49-a7c5-0ae2e922a292/1/Nov7il7uSQgupijfJaSl1Q86qbM.mft rsync://rpki.ripe.net/repository/DEFAULT/Nov7il7uSQgupijfJaSl1Q86qbM.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 07:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7b:36:c1:24:ee:cd:c1:17:54:dd:4d:00:01:7a:fe:d7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=368bfb8a5eee49082ea628df25a4a5d50f3aa9b3 Validity Not Before: Jan 1 20:19:04 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=c9f39669640c46cb76c4d42dbf2d98fe53707540 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:e0:71:fa:93:48:95:8a:7f:b5:71:95:f9:a4: 4b:71:e7:8a:fd:24:3b:6c:09:f2:27:7d:bb:62:c9: 06:ed:eb:75:e4:68:47:a1:04:42:7f:c1:84:7a:cf: 7a:cb:21:f3:d7:e7:57:60:29:37:2e:1c:0a:a6:6c: 8a:75:4f:29:5f:f5:52:4a:35:81:bc:18:11:0e:4a: 76:97:9e:dd:94:61:fb:43:c4:60:49:b9:86:fe:d4: 2e:9c:de:da:11:73:dd:fd:20:1f:37:10:0f:d7:3b: 0a:80:b6:e3:1d:51:df:82:6a:22:5b:d3:67:37:d4: ec:9d:a5:81:26:d1:bb:65:4d:e5:2a:c5:37:72:26: f9:9f:fa:76:be:66:0e:5f:f7:c1:b0:bd:80:ea:9c: 3d:ab:e8:82:27:de:05:96:fe:1c:be:37:a2:ba:7d: eb:10:80:1b:92:c8:bd:df:fb:38:22:41:29:68:f9: e8:21:83:5e:1f:f4:7b:22:df:86:92:04:68:8c:ab: 77:ac:49:1d:c9:97:e1:2d:0c:81:51:d2:32:58:81: ec:53:83:93:73:c7:b9:05:ec:de:02:ed:55:b4:b3: 13:13:d6:41:94:ed:1d:b2:4f:59:8c:a5:27:49:17: c2:b4:39:b4:c0:11:80:45:ea:8d:7b:8c:81:67:bf: ce:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C9:F3:96:69:64:0C:46:CB:76:C4:D4:2D:BF:2D:98:FE:53:70:75:40 X509v3 Authority Key Identifier: keyid:36:8B:FB:8A:5E:EE:49:08:2E:A6:28:DF:25:A4:A5:D5:0F:3A:A9:B3 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Nov7il7uSQgupijfJaSl1Q86qbM.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/35/aa58c3-e706-4a49-a7c5-0ae2e922a292/1/yfOWaWQMRst2xNQtvy2Y_lNwdUA.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/35/aa58c3-e706-4a49-a7c5-0ae2e922a292/1/Nov7il7uSQgupijfJaSl1Q86qbM.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 79.98.247.0/24 Signature Algorithm: sha256WithRSAEncryption af:e9:e4:19:53:ef:03:91:c0:6b:bf:91:14:a6:c1:1d:fc:fc: f9:d6:d0:50:66:5c:7d:9b:d1:07:01:0f:28:28:87:4d:7c:57: a4:7a:52:54:81:d8:3c:d3:6c:a7:8b:6c:8a:72:3c:e8:85:10: 35:40:08:ff:6f:77:41:d4:23:e4:2f:66:3a:3a:7b:e6:d1:f6: 65:eb:34:f2:a9:19:08:f2:93:06:a8:71:4b:72:96:56:87:a1: 99:bf:35:37:4b:15:c0:e9:91:2c:92:a4:4b:4d:5a:3d:b4:fa: 88:f8:49:81:70:e0:35:8f:3c:8c:c5:93:44:2a:76:da:2e:58: 10:a8:b7:c4:f4:2d:62:40:51:ad:f4:e8:a4:54:58:dc:21:02: 19:7c:3f:da:7e:e5:2b:7a:26:56:12:b5:09:35:9c:0c:21:64: 79:aa:3a:ee:56:db:b9:4c:5c:29:c8:a5:f7:d6:2a:33:f6:25: bb:de:58:26:bd:dc:b2:65:a5:39:bd:49:b7:62:60:16:42:75: d9:c4:c8:ef:7e:aa:cf:bf:f1:13:14:55:6f:cf:c0:3e:9b:1c: 4d:03:a9:4b:fb:7f:c6:d0:4d:05:22:ee:2f:aa:59:2f:76:0c: 5f:bd:df:f5:ef:0e:40:9e:70:c9:2b:04:14:cc:ee:bd:20:97: e2:49:58:6c -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt7NsEk7s3BF1TdTQABev7XMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDM2OGJmYjhhNWVlZTQ5MDgyZWE2MjhkZjI1YTRhNWQ1MGYz YWE5YjMwHhcNMjYwMTAxMjAxOTA0WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhjOWYzOTY2OTY0MGM0NmNiNzZjNGQ0MmRiZjJkOThmZTUzNzA3NTQwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqeBx+pNIlYp/tXGV+aRLceeK/SQ7 bAnyJ327YskG7et15GhHoQRCf8GEes96yyHz1+dXYCk3LhwKpmyKdU8pX/VSSjWB vBgRDkp2l57dlGH7Q8RgSbmG/tQunN7aEXPd/SAfNxAP1zsKgLbjHVHfgmoiW9Nn N9TsnaWBJtG7ZU3lKsU3cib5n/p2vmYOX/fBsL2A6pw9q+iCJ94Flv4cvjeiun3r EIAbksi93/s4IkEpaPnoIYNeH/R7It+GkgRojKt3rEkdyZfhLQyBUdIyWIHsU4OT c8e5BezeAu1VtLMTE9ZBlO0dsk9ZjKUnSRfCtDm0wBGAReqNe4yBZ7/ONQIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFMnzlmlkDEbLdsTULb8tmP5TcHVAMB8GA1UdIwQY MBaAFDaL+4pe7kkILqYo3yWkpdUPOqmzMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvTm92N2lsN3VTUWd1cGlqZkphU2wxUTg2cWJNLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zNS9hYTU4YzMtZTcwNi00YTQ5LWE3YzUt MGFlMmU5MjJhMjkyLzEveWZPV2FXUU1Sc3QyeE5RdHZ5MllfbE53ZFVBLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zNS9hYTU4YzMtZTcwNi00YTQ5LWE3YzUtMGFlMmU5MjJhMjky LzEvTm92N2lsN3VTUWd1cGlqZkphU2wxUTg2cWJNLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAT2L3MA0G CSqGSIb3DQEBCwUAA4IBAQCv6eQZU+8DkcBrv5EUpsEd/Pz51tBQZlx9m9EHAQ8o KIdNfFekelJUgdg802yni2yKcjzohRA1QAj/b3dB1CPkL2Y6Onvm0fZl6zTyqRkI 8pMGqHFLcpZWh6GZvzU3SxXA6ZEskqRLTVo9tPqI+EmBcOA1jzyMxZNEKnbaLlgQ qLfE9C1iQFGt9OikVFjcIQIZfD/afuUreiZWErUJNZwMIWR5qjruVtu5TFwpyKX3 1ioz9iW73lgmvdyyZaU5vUm3YmAWQnXZxMjvfqrPv/ETFFVvz8A+mxxNA6lL+3/G 0E0FIu4vqlkvdgxfvd/17w5AnnDJKwQUzO69IJfiSVhs -----END CERTIFICATE-----Generated at Sun Jan 25 17:35:58 2026 by rpki-client