This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/58/92e95f-e5d2-49ca-b9c4-f7a77c441f1c/1/ytMTe1i-Zu4pTW79lT5TRfVwPSI.roa File: ytMTe1i-Zu4pTW79lT5TRfVwPSI.roa (raw, json) Hash identifier: t6h4ViXM4qx0dmLb5H+6fMPRAHTWlfkzeWfqOFIQypQ= Subject key identifier: CA:D3:13:7B:58:BE:66:EE:29:4D:6E:FD:95:3E:53:45:F5:70:3D:22 Certificate issuer: /CN=dfb86d5e74c1234f36f219b05d743bb3a2e2afda Certificate serial: 019BE9E613D003E74D71B280ECA5A220C5B4 Authority key identifier: DF:B8:6D:5E:74:C1:23:4F:36:F2:19:B0:5D:74:3B:B3:A2:E2:AF:DA Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/37htXnTBI0828hmwXXQ7s6Lir9o.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/58/92e95f-e5d2-49ca-b9c4-f7a77c441f1c/1/ytMTe1i-Zu4pTW79lT5TRfVwPSI.roa Signing time: Fri 23 Jan 2026 08:08:48 +0000 ROA not before: Fri 23 Jan 2026 08:08:48 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 209372 IP address blocks: 176.121.232.0/21 maxlen: 21 176.121.240.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/58/92e95f-e5d2-49ca-b9c4-f7a77c441f1c/1/37htXnTBI0828hmwXXQ7s6Lir9o.crl rsync://rpki.ripe.net/repository/DEFAULT/58/92e95f-e5d2-49ca-b9c4-f7a77c441f1c/1/37htXnTBI0828hmwXXQ7s6Lir9o.mft rsync://rpki.ripe.net/repository/DEFAULT/37htXnTBI0828hmwXXQ7s6Lir9o.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 16:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:e9:e6:13:d0:03:e7:4d:71:b2:80:ec:a5:a2:20:c5:b4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=dfb86d5e74c1234f36f219b05d743bb3a2e2afda Validity Not Before: Jan 23 08:08:48 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=cad3137b58be66ee294d6efd953e5345f5703d22 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:c6:12:72:06:bc:d9:87:34:08:3d:d0:2c:49: c6:b2:97:70:8a:14:14:cc:f3:31:da:7c:5e:bd:2f: c1:c2:76:95:fa:c4:4d:8c:ff:87:5e:3f:e0:34:bf: 64:b9:59:26:cc:c6:63:20:d3:10:18:a8:95:d4:54: bf:8c:11:8e:a1:82:81:f4:c7:87:6b:e1:32:1a:c2: c8:8d:90:31:17:13:1d:72:2e:e6:33:e9:84:7a:99: 4b:5d:28:84:69:00:c5:04:fd:42:19:1b:5a:03:67: b7:3b:6f:6f:25:7b:48:1f:17:3a:fb:29:18:08:fc: 2c:c9:20:2c:cc:e1:c3:fc:bb:a4:1b:c1:d8:de:47: 9d:3e:fa:d6:ce:32:8d:ce:75:1b:f8:1f:fe:69:6f: e6:30:6e:c7:8c:07:59:80:8b:19:b7:9d:1e:f7:be: 79:ad:8d:20:ee:c1:6f:13:c6:42:0b:a3:64:cb:ca: 14:d3:ef:42:f1:b4:16:c9:e4:78:3b:13:c1:40:85: 81:68:f8:39:52:78:bb:07:0a:74:4f:14:be:7c:1d: 15:e5:92:8c:43:49:51:95:9c:b5:be:7c:24:6f:67: fa:5a:67:37:e0:1b:f9:4f:8a:7d:7d:df:1f:93:a2: 34:8d:21:c2:6b:dc:c6:0c:ce:81:7a:d6:39:d7:2a: 88:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CA:D3:13:7B:58:BE:66:EE:29:4D:6E:FD:95:3E:53:45:F5:70:3D:22 X509v3 Authority Key Identifier: keyid:DF:B8:6D:5E:74:C1:23:4F:36:F2:19:B0:5D:74:3B:B3:A2:E2:AF:DA X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/37htXnTBI0828hmwXXQ7s6Lir9o.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/58/92e95f-e5d2-49ca-b9c4-f7a77c441f1c/1/ytMTe1i-Zu4pTW79lT5TRfVwPSI.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/58/92e95f-e5d2-49ca-b9c4-f7a77c441f1c/1/37htXnTBI0828hmwXXQ7s6Lir9o.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 176.121.232.0-176.121.247.255 Signature Algorithm: sha256WithRSAEncryption 44:30:54:27:2e:29:fe:45:30:38:da:95:70:b8:7c:43:af:64: e5:2c:7c:dc:eb:79:32:3b:cd:c3:2a:1c:16:50:4f:c8:7f:07: 7a:71:e4:f3:6f:22:02:dc:e0:fe:5a:2d:85:44:71:63:d7:0b: bc:19:d8:34:4f:f2:85:6d:24:2a:ba:8d:11:d9:17:ce:71:ed: 7c:52:73:01:86:2a:5a:b0:aa:84:12:77:2d:40:b7:54:35:5a: a2:43:ea:81:d7:2f:b1:67:cb:3d:bf:65:d8:2d:e3:3f:05:75: 44:f6:21:9b:cd:b3:ee:47:69:6a:a9:05:a5:c6:71:ff:1f:33: d3:26:9f:6d:3b:1f:9b:15:41:39:33:38:e6:c5:53:43:82:13: d3:6e:bb:82:b9:4e:83:f6:bf:47:a0:ac:09:35:80:a3:8e:d7: e9:9f:20:af:1b:54:31:d0:1d:a8:61:37:57:47:03:09:17:f2: c8:91:38:e0:bb:e3:86:3e:49:fb:17:d6:f0:d4:83:96:5a:79: 47:f3:bf:ba:d7:50:af:f9:c2:88:46:ef:b7:49:a2:26:2d:0c: e3:61:d1:ad:0f:91:a7:4d:60:b6:59:75:5e:b0:2d:9b:04:2a: a4:75:c2:95:1c:bc:4d:19:78:64:80:12:6d:6f:68:b5:96:73: 6e:6d:2b:2c -----BEGIN CERTIFICATE----- MIIFBTCCA+2gAwIBAgISAZvp5hPQA+dNcbKA7KWiIMW0MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGRmYjg2ZDVlNzRjMTIzNGYzNmYyMTliMDVkNzQzYmIzYTJl MmFmZGEwHhcNMjYwMTIzMDgwODQ4WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhjYWQzMTM3YjU4YmU2NmVlMjk0ZDZlZmQ5NTNlNTM0NWY1NzAzZDIyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAusYScga82Yc0CD3QLEnGspdwihQU zPMx2nxevS/BwnaV+sRNjP+HXj/gNL9kuVkmzMZjINMQGKiV1FS/jBGOoYKB9MeH a+EyGsLIjZAxFxMdci7mM+mEeplLXSiEaQDFBP1CGRtaA2e3O29vJXtIHxc6+ykY CPwsySAszOHD/LukG8HY3kedPvrWzjKNznUb+B/+aW/mMG7HjAdZgIsZt50e9755 rY0g7sFvE8ZCC6Nky8oU0+9C8bQWyeR4OxPBQIWBaPg5Uni7Bwp0TxS+fB0V5ZKM Q0lRlZy1vnwkb2f6Wmc34Bv5T4p9fd8fk6I0jSHCa9zGDM6BetY51yqIvwIDAQAB o4ICETCCAg0wHQYDVR0OBBYEFMrTE3tYvmbuKU1u/ZU+U0X1cD0iMB8GA1UdIwQY MBaAFN+4bV50wSNPNvIZsF10O7Oi4q/aMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvMzdodFhuVEJJMDgyOGhtd1hYUTdzNkxpcjlvLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81OC85MmU5NWYtZTVkMi00OWNhLWI5YzQt ZjdhNzdjNDQxZjFjLzEveXRNVGUxaS1adTRwVFc3OWxUNVRSZlZ3UFNJLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81OC85MmU5NWYtZTVkMi00OWNhLWI5YzQtZjdhNzdjNDQxZjFj LzEvMzdodFhuVEJJMDgyOGhtd1hYUTdzNkxpcjlvLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCcGCCsGAQUFBwEHAQH/BBgwFjAUBAIAATAOMAwDBAOweegD BAOwefAwDQYJKoZIhvcNAQELBQADggEBAEQwVCcuKf5FMDjalXC4fEOvZOUsfNzr eTI7zcMqHBZQT8h/B3px5PNvIgLc4P5aLYVEcWPXC7wZ2DRP8oVtJCq6jRHZF85x 7XxScwGGKlqwqoQSdy1At1Q1WqJD6oHXL7Fnyz2/Zdgt4z8FdUT2IZvNs+5HaWqp BaXGcf8fM9Mmn207H5sVQTkzOObFU0OCE9Nuu4K5ToP2v0egrAk1gKOO1+mfIK8b VDHQHahhN1dHAwkX8siROOC744Y+SfsX1vDUg5ZaeUfzv7rXUK/5wohG77dJoiYt DONh0a0PkadNYLZZdV6wLZsEKqR1wpUcvE0ZeGSAEm1vaLWWc25tKyw= -----END CERTIFICATE-----Generated at Mon Jan 26 02:22:40 2026 by rpki-client