This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5e/617715-9484-40f9-896c-724b1a0212d4/1/YFwbXAYbEeUxLStNYafLIFJsS38.roa File: YFwbXAYbEeUxLStNYafLIFJsS38.roa (raw, json) Hash identifier: sUmz+cW6Scb+RnqNk0SFjxB6/xFoGdQ3f2Qyme1WsKw= Subject key identifier: 60:5C:1B:5C:06:1B:11:E5:31:2D:2B:4D:61:A7:CB:20:52:6C:4B:7F Certificate issuer: /CN=ea1c951d61b87da19439784d23667a89cb3290a4 Certificate serial: 019B78A2C354CCFED32A97CF64A1F45D9F86 Authority key identifier: EA:1C:95:1D:61:B8:7D:A1:94:39:78:4D:23:66:7A:89:CB:32:90:A4 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6hyVHWG4faGUOXhNI2Z6icsykKQ.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5e/617715-9484-40f9-896c-724b1a0212d4/1/YFwbXAYbEeUxLStNYafLIFJsS38.roa Signing time: Thu 01 Jan 2026 08:18:11 +0000 ROA not before: Thu 01 Jan 2026 08:18:11 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 200845 IP address blocks: 185.113.239.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5e/617715-9484-40f9-896c-724b1a0212d4/1/6hyVHWG4faGUOXhNI2Z6icsykKQ.crl rsync://rpki.ripe.net/repository/DEFAULT/5e/617715-9484-40f9-896c-724b1a0212d4/1/6hyVHWG4faGUOXhNI2Z6icsykKQ.mft rsync://rpki.ripe.net/repository/DEFAULT/6hyVHWG4faGUOXhNI2Z6icsykKQ.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 07:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:78:a2:c3:54:cc:fe:d3:2a:97:cf:64:a1:f4:5d:9f:86 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ea1c951d61b87da19439784d23667a89cb3290a4 Validity Not Before: Jan 1 08:18:11 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=605c1b5c061b11e5312d2b4d61a7cb20526c4b7f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f2:81:0f:0b:0d:1d:3e:9f:7e:2f:44:1e:63:df: ac:2b:71:9f:01:5c:64:1c:1c:d4:e3:23:80:f9:cf: 2f:2a:a8:0d:3c:99:29:a4:49:8b:32:51:ee:85:f1: 5d:35:50:36:0c:14:4d:b9:3d:93:bc:99:8f:e3:b3: dd:92:2b:1b:21:3e:71:67:d7:5f:d9:43:c4:2a:7d: 7b:12:e6:ef:4f:e1:5c:66:46:30:1b:10:ba:08:4c: 4f:59:79:59:05:a6:da:74:95:7b:df:b0:9c:9d:fd: 67:66:64:b2:a6:91:2b:c8:53:da:52:06:fa:56:8c: 7e:a4:93:99:57:48:7e:2e:57:e5:2e:eb:29:87:98: f6:7d:5c:0d:61:ed:fd:b7:bd:4a:64:4c:c4:50:02: 47:f7:ef:a5:fb:42:67:0f:34:8a:a3:98:bf:a9:7b: 36:a0:10:1b:0a:93:c7:b3:0e:f6:fd:e2:4a:7c:8c: d7:e4:04:12:a7:a4:25:9f:c8:7c:9c:27:d6:24:bb: 05:12:8d:30:e9:87:73:50:c9:aa:98:54:03:b9:47: 7f:5c:d1:da:20:f6:6f:7e:dc:33:d4:58:64:8e:9a: 98:96:ca:d2:b2:7f:63:46:80:5a:da:a6:45:23:9f: ce:9c:ff:eb:4b:84:da:93:d4:b0:3e:b0:0c:db:4b: 51:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 60:5C:1B:5C:06:1B:11:E5:31:2D:2B:4D:61:A7:CB:20:52:6C:4B:7F X509v3 Authority Key Identifier: keyid:EA:1C:95:1D:61:B8:7D:A1:94:39:78:4D:23:66:7A:89:CB:32:90:A4 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6hyVHWG4faGUOXhNI2Z6icsykKQ.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/617715-9484-40f9-896c-724b1a0212d4/1/YFwbXAYbEeUxLStNYafLIFJsS38.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/617715-9484-40f9-896c-724b1a0212d4/1/6hyVHWG4faGUOXhNI2Z6icsykKQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.113.239.0/24 Signature Algorithm: sha256WithRSAEncryption 96:80:c1:62:4b:50:08:b9:32:e6:82:11:e7:50:09:dd:0c:e3: 16:69:9d:4c:9b:e2:44:b0:f1:b3:9c:c2:be:c6:b4:49:63:67: 42:8b:e8:76:10:8e:e2:88:1f:1f:8e:1d:2a:32:b8:07:59:44: ad:aa:53:76:ed:0a:42:7b:ad:5e:c3:0d:1f:f5:c7:f7:c1:f3: c5:41:ac:be:a8:63:f0:91:5e:b0:a4:cd:90:4a:6f:a0:75:c5: f0:db:0a:8d:55:e0:0f:8d:c7:cf:91:eb:d0:96:f4:8a:a3:a3: 6e:48:b6:6b:12:6b:6a:ac:27:28:63:94:41:2d:0c:0d:75:99: 4f:49:5c:4c:69:9b:d4:96:77:d3:03:8b:e7:4f:56:0c:3f:18: 46:88:b4:0b:84:2d:c0:d2:d3:33:f8:f7:57:5c:ae:c2:29:4a: 51:6b:63:02:6b:22:fa:d1:d2:a3:2f:f0:eb:8e:5d:44:75:f1: aa:05:f9:c2:60:48:eb:5b:9b:45:d6:bd:91:85:f4:6f:7a:1c: 99:07:9b:11:53:4d:1c:c2:f5:e1:60:d1:4c:3e:24:3c:14:12: 65:8d:60:0d:33:30:69:6b:98:58:d4:0e:2a:30:b1:bb:4c:67: 6f:22:b6:f3:d0:7d:3c:87:68:c8:84:dc:bf:ff:ee:12:55:38: ec:50:ba:8c -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt4osNUzP7TKpfPZKH0XZ+GMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGVhMWM5NTFkNjFiODdkYTE5NDM5Nzg0ZDIzNjY3YTg5Y2Iz MjkwYTQwHhcNMjYwMTAxMDgxODExWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg2MDVjMWI1YzA2MWIxMWU1MzEyZDJiNGQ2MWE3Y2IyMDUyNmM0YjdmMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA8oEPCw0dPp9+L0QeY9+sK3GfAVxk HBzU4yOA+c8vKqgNPJkppEmLMlHuhfFdNVA2DBRNuT2TvJmP47PdkisbIT5xZ9df 2UPEKn17EubvT+FcZkYwGxC6CExPWXlZBabadJV737Ccnf1nZmSyppEryFPaUgb6 Vox+pJOZV0h+LlflLusph5j2fVwNYe39t71KZEzEUAJH9++l+0JnDzSKo5i/qXs2 oBAbCpPHsw72/eJKfIzX5AQSp6Qln8h8nCfWJLsFEo0w6YdzUMmqmFQDuUd/XNHa IPZvftwz1FhkjpqYlsrSsn9jRoBa2qZFI5/OnP/rS4Tak9SwPrAM20tRYwIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFGBcG1wGGxHlMS0rTWGnyyBSbEt/MB8GA1UdIwQY MBaAFOoclR1huH2hlDl4TSNmeonLMpCkMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvNmh5VkhXRzRmYUdVT1hoTkkyWjZpY3N5a0tRLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81ZS82MTc3MTUtOTQ4NC00MGY5LTg5NmMt NzI0YjFhMDIxMmQ0LzEvWUZ3YlhBWWJFZVV4TFN0TllhZkxJRkpzUzM4LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81ZS82MTc3MTUtOTQ4NC00MGY5LTg5NmMtNzI0YjFhMDIxMmQ0 LzEvNmh5VkhXRzRmYUdVT1hoTkkyWjZpY3N5a0tRLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAuXHvMA0G CSqGSIb3DQEBCwUAA4IBAQCWgMFiS1AIuTLmghHnUAndDOMWaZ1Mm+JEsPGznMK+ xrRJY2dCi+h2EI7iiB8fjh0qMrgHWUStqlN27QpCe61eww0f9cf3wfPFQay+qGPw kV6wpM2QSm+gdcXw2wqNVeAPjcfPkevQlvSKo6NuSLZrEmtqrCcoY5RBLQwNdZlP SVxMaZvUlnfTA4vnT1YMPxhGiLQLhC3A0tMz+PdXXK7CKUpRa2MCayL60dKjL/Dr jl1EdfGqBfnCYEjrW5tF1r2RhfRvehyZB5sRU00cwvXhYNFMPiQ8FBJljWANMzBp a5hY1A4qMLG7TGdvIrbz0H08h2jIhNy//+4SVTjsULqM -----END CERTIFICATE-----Generated at Sun Jan 25 11:41:09 2026 by rpki-client