This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/59/652eb4-321c-48c0-9272-3ae711af034b/1/YTLyjD8Zm08JN9ilWwpHNjSNOgM.roa File: YTLyjD8Zm08JN9ilWwpHNjSNOgM.roa (raw, json) Hash identifier: ctWafbXvuy+Ew0x5ejjfVIYon0eWDnM21tPyQNTYZdQ= Subject key identifier: 61:32:F2:8C:3F:19:9B:4F:09:37:D8:A5:5B:0A:47:36:34:8D:3A:03 Certificate issuer: /CN=8f2824c61357dc344bbdf35b83577459b9d3fc44 Certificate serial: 019B7FF18261980F6DA633679F4CE32CE39F Authority key identifier: 8F:28:24:C6:13:57:DC:34:4B:BD:F3:5B:83:57:74:59:B9:D3:FC:44 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jygkxhNX3DRLvfNbg1d0WbnT_EQ.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/59/652eb4-321c-48c0-9272-3ae711af034b/1/YTLyjD8Zm08JN9ilWwpHNjSNOgM.roa Signing time: Fri 02 Jan 2026 18:21:32 +0000 ROA not before: Fri 02 Jan 2026 18:21:32 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 48263 IP address blocks: 185.95.65.0/24 maxlen: 24 2a00:4bc0:600::/40 maxlen: 40 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/59/652eb4-321c-48c0-9272-3ae711af034b/1/jygkxhNX3DRLvfNbg1d0WbnT_EQ.crl rsync://rpki.ripe.net/repository/DEFAULT/59/652eb4-321c-48c0-9272-3ae711af034b/1/jygkxhNX3DRLvfNbg1d0WbnT_EQ.mft rsync://rpki.ripe.net/repository/DEFAULT/jygkxhNX3DRLvfNbg1d0WbnT_EQ.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 06:00:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7f:f1:82:61:98:0f:6d:a6:33:67:9f:4c:e3:2c:e3:9f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8f2824c61357dc344bbdf35b83577459b9d3fc44 Validity Not Before: Jan 2 18:21:32 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=6132f28c3f199b4f0937d8a55b0a4736348d3a03 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:e6:d3:e4:bf:56:67:de:6b:da:70:76:0d:9e: 75:cf:3d:31:b5:f2:cf:fd:a8:fe:1b:fc:4b:97:e5: 25:e1:72:e1:a7:48:6e:26:9d:0b:6d:81:0f:47:87: a4:2d:70:9d:43:25:0c:4c:47:92:dc:73:1e:58:0b: f2:fe:fe:d9:eb:bf:2a:34:de:22:9c:a8:4d:3c:f1: f6:f9:3a:95:b2:95:e3:8a:81:40:f1:9a:16:61:14: f8:5b:4f:2f:d4:28:45:ff:7d:81:e5:fa:a1:90:60: 9b:10:9f:8b:7d:46:a0:9c:ba:42:f7:52:0e:83:93: 42:ab:ba:98:df:79:44:c7:53:c8:18:46:4a:48:27: 2b:69:cb:a6:0c:06:c2:45:23:51:ed:3b:14:af:10: 20:ef:0b:bc:39:49:61:dc:f4:df:ad:36:19:74:2c: 63:91:38:74:f6:ef:cd:7b:ed:7b:9a:19:24:ce:f8: b0:da:36:c4:05:1d:54:a9:5a:7d:ff:2b:ec:0a:f0: 04:52:56:ae:58:56:22:2d:0d:e6:6a:66:dc:d8:e3: 9e:9c:18:0e:22:42:10:08:77:ad:01:a2:31:dc:f6: fd:0c:ad:8f:92:64:58:88:41:49:37:08:67:c8:64: ef:b2:89:9c:8e:0f:07:70:89:9e:ce:54:ac:41:87: 86:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 61:32:F2:8C:3F:19:9B:4F:09:37:D8:A5:5B:0A:47:36:34:8D:3A:03 X509v3 Authority Key Identifier: keyid:8F:28:24:C6:13:57:DC:34:4B:BD:F3:5B:83:57:74:59:B9:D3:FC:44 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jygkxhNX3DRLvfNbg1d0WbnT_EQ.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/59/652eb4-321c-48c0-9272-3ae711af034b/1/YTLyjD8Zm08JN9ilWwpHNjSNOgM.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/59/652eb4-321c-48c0-9272-3ae711af034b/1/jygkxhNX3DRLvfNbg1d0WbnT_EQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.95.65.0/24 IPv6: 2a00:4bc0:600::/40 Signature Algorithm: sha256WithRSAEncryption 28:b3:b3:6f:af:66:ef:46:b3:44:52:a9:c9:0c:73:aa:74:65: 59:2a:08:2a:b9:b2:42:97:81:62:3d:26:79:b8:98:10:62:5f: 7d:11:d7:23:9a:a6:c7:7c:b2:f2:26:8a:1b:b8:6c:b8:98:2f: 43:64:71:01:24:4c:09:dd:bd:9e:04:e6:cb:dd:2b:58:96:cc: fc:2b:d3:08:54:1f:c2:cf:8d:6c:2a:8d:8c:e1:9b:2a:cb:0b: ff:c4:05:ee:d6:3c:72:8a:34:c5:d5:08:21:bc:56:59:a4:b4: f9:48:ab:b2:52:6f:f3:b1:17:92:92:f4:f9:e9:59:a0:5d:c6: 44:14:19:32:ac:09:96:ea:44:d1:b4:1d:14:5f:f2:d3:79:2b: 6f:9b:a4:7d:8a:ba:4b:d7:a4:38:23:26:d7:8e:7e:34:cd:13: 7a:3c:06:62:73:a3:d8:9e:60:d5:41:b2:e5:40:e9:60:10:7b: 6d:88:60:fe:0c:40:c8:c7:c6:db:d9:ba:1a:94:f7:c3:2f:d9: 5b:70:b3:23:fb:59:9a:08:ca:86:7a:f7:81:35:64:39:cc:dd: ac:3b:b0:de:0d:20:0e:04:f7:0c:bf:e9:6d:bf:18:53:bd:99: 1e:cc:9d:47:f6:0e:cf:94:13:af:58:55:f1:c0:ba:83:a4:a4: d1:a3:32:0b -----BEGIN CERTIFICATE----- MIIFDTCCA/WgAwIBAgISAZt/8YJhmA9tpjNnn0zjLOOfMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDhmMjgyNGM2MTM1N2RjMzQ0YmJkZjM1YjgzNTc3NDU5Yjlk M2ZjNDQwHhcNMjYwMTAyMTgyMTMyWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg2MTMyZjI4YzNmMTk5YjRmMDkzN2Q4YTU1YjBhNDczNjM0OGQzYTAzMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAw+bT5L9WZ95r2nB2DZ51zz0xtfLP /aj+G/xLl+Ul4XLhp0huJp0LbYEPR4ekLXCdQyUMTEeS3HMeWAvy/v7Z678qNN4i nKhNPPH2+TqVspXjioFA8ZoWYRT4W08v1ChF/32B5fqhkGCbEJ+LfUagnLpC91IO g5NCq7qY33lEx1PIGEZKSCcracumDAbCRSNR7TsUrxAg7wu8OUlh3PTfrTYZdCxj kTh09u/Ne+17mhkkzviw2jbEBR1UqVp9/yvsCvAEUlauWFYiLQ3mambc2OOenBgO IkIQCHetAaIx3Pb9DK2PkmRYiEFJNwhnyGTvsomcjg8HcImezlSsQYeGAwIDAQAB o4ICGTCCAhUwHQYDVR0OBBYEFGEy8ow/GZtPCTfYpVsKRzY0jToDMB8GA1UdIwQY MBaAFI8oJMYTV9w0S73zW4NXdFm50/xEMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvanlna3hoTlgzRFJMdmZOYmcxZDBXYm5UX0VRLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81OS82NTJlYjQtMzIxYy00OGMwLTkyNzIt M2FlNzExYWYwMzRiLzEvWVRMeWpEOFptMDhKTjlpbFd3cEhOalNOT2dNLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81OS82NTJlYjQtMzIxYy00OGMwLTkyNzItM2FlNzExYWYwMzRi LzEvanlna3hoTlgzRFJMdmZOYmcxZDBXYm5UX0VRLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMC8GCCsGAQUFBwEHAQH/BCAwHjAMBAIAATAGAwQAuV9BMA4E AgACMAgDBgAqAEvABjANBgkqhkiG9w0BAQsFAAOCAQEAKLOzb69m70azRFKpyQxz qnRlWSoIKrmyQpeBYj0mebiYEGJffRHXI5qmx3yy8iaKG7hsuJgvQ2RxASRMCd29 ngTmy90rWJbM/CvTCFQfws+NbCqNjOGbKssL/8QF7tY8coo0xdUIIbxWWaS0+Uir slJv87EXkpL0+elZoF3GRBQZMqwJlupE0bQdFF/y03krb5ukfYq6S9ekOCMm145+ NM0TejwGYnOj2J5g1UGy5UDpYBB7bYhg/gxAyMfG29m6GpT3wy/ZW3CzI/tZmgjK hnr3gTVkOczdrDuw3g0gDgT3DL/pbb8YU72ZHsydR/YOz5QTr1hV8cC6g6Sk0aMy Cw== -----END CERTIFICATE-----Generated at Sun Jan 25 12:06:08 2026 by rpki-client