This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/81/1bb4dd-e9c4-4d3d-9a3b-1159dbfbed54/1/ygT4_ge1ohdgPGNfdC3uMhbevTo.roa File: ygT4_ge1ohdgPGNfdC3uMhbevTo.roa (raw, json) Hash identifier: QzMQwc/7YDt82Fn8x4yXez6Z6w0QENNYIpCBlAJaBv8= Subject key identifier: CA:04:F8:FE:07:B5:A2:17:60:3C:63:5F:74:2D:EE:32:16:DE:BD:3A Certificate issuer: /CN=ee31367df6d1861071c92bae726523326f45ba2a Certificate serial: 019B78A25FEA8571437275C0994823CFEDA3 Authority key identifier: EE:31:36:7D:F6:D1:86:10:71:C9:2B:AE:72:65:23:32:6F:45:BA:2A Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/7jE2ffbRhhBxySuucmUjMm9Fuio.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/81/1bb4dd-e9c4-4d3d-9a3b-1159dbfbed54/1/ygT4_ge1ohdgPGNfdC3uMhbevTo.roa Signing time: Thu 01 Jan 2026 08:17:45 +0000 ROA not before: Thu 01 Jan 2026 08:17:45 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 200639 IP address blocks: 45.92.42.0/24 maxlen: 24 2a0e:1cc0:11::/48 maxlen: 48 2a0e:1cc0:12::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/81/1bb4dd-e9c4-4d3d-9a3b-1159dbfbed54/1/7jE2ffbRhhBxySuucmUjMm9Fuio.crl rsync://rpki.ripe.net/repository/DEFAULT/81/1bb4dd-e9c4-4d3d-9a3b-1159dbfbed54/1/7jE2ffbRhhBxySuucmUjMm9Fuio.mft rsync://rpki.ripe.net/repository/DEFAULT/7jE2ffbRhhBxySuucmUjMm9Fuio.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 25 Jan 2026 23:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:78:a2:5f:ea:85:71:43:72:75:c0:99:48:23:cf:ed:a3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ee31367df6d1861071c92bae726523326f45ba2a Validity Not Before: Jan 1 08:17:45 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=ca04f8fe07b5a217603c635f742dee3216debd3a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:4c:94:dd:a5:13:48:b0:77:df:b4:e7:cf:1c: 38:df:53:6d:34:98:4e:06:22:4e:a9:d3:b4:b0:8b: 92:7a:38:cd:58:56:de:1f:73:0a:81:d8:f0:5b:d7: 70:27:ae:88:ff:65:38:67:ec:6b:99:71:b3:36:04: 37:02:37:87:30:6f:6a:5a:65:ba:bf:71:8d:fe:3f: 48:41:4b:6c:f6:21:a8:41:e1:21:58:6b:b9:bf:84: 02:6e:f0:76:55:1f:2c:a2:3d:14:73:6f:3f:f1:e8: e4:21:32:2b:5d:fd:2b:26:29:8c:03:b4:b0:bf:68: 89:be:ac:86:ab:1f:c4:65:13:61:91:f2:af:95:05: e4:93:76:14:bb:dc:f4:ef:1b:40:9f:5a:94:99:28: 53:75:7b:2c:d4:ca:bb:c0:64:ec:6f:d4:ee:ce:bb: e2:c1:c7:e1:2f:76:48:57:1e:80:9a:c4:e3:32:88: aa:87:b5:0b:70:87:95:46:35:c2:0c:71:ae:40:f0: bb:17:c2:f7:6f:20:dd:d1:a0:80:1d:e2:b4:4c:f0: 27:ff:d3:12:cd:1c:ab:f2:73:68:74:e5:49:de:79: 29:22:9e:40:3a:90:1e:91:9f:4b:82:ff:bd:1b:b7: 03:0e:39:e8:a6:7c:b3:06:78:c9:34:91:88:63:9c: 94:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CA:04:F8:FE:07:B5:A2:17:60:3C:63:5F:74:2D:EE:32:16:DE:BD:3A X509v3 Authority Key Identifier: keyid:EE:31:36:7D:F6:D1:86:10:71:C9:2B:AE:72:65:23:32:6F:45:BA:2A X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/7jE2ffbRhhBxySuucmUjMm9Fuio.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/81/1bb4dd-e9c4-4d3d-9a3b-1159dbfbed54/1/ygT4_ge1ohdgPGNfdC3uMhbevTo.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/81/1bb4dd-e9c4-4d3d-9a3b-1159dbfbed54/1/7jE2ffbRhhBxySuucmUjMm9Fuio.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 45.92.42.0/24 IPv6: 2a0e:1cc0:11::-2a0e:1cc0:12:ffff:ffff:ffff:ffff:ffff Signature Algorithm: sha256WithRSAEncryption 41:a1:86:92:03:47:c0:0d:3c:7b:b2:18:2a:bf:4a:b9:53:fb: be:3a:fa:11:b2:56:82:a6:b1:cc:67:c3:83:dd:a1:fd:bb:39: ff:f9:9f:bb:8c:90:fd:62:e0:0b:86:93:a1:f9:cd:e7:3c:3a: bd:61:0f:70:c8:b6:74:07:32:57:a3:68:18:1c:e6:7e:3e:f5: cf:ab:9d:d5:93:f1:0d:48:82:a0:c4:33:c8:08:42:eb:1b:4b: 3c:d2:50:52:c5:7f:eb:f5:ad:04:b9:1e:52:be:44:9d:f6:11: 5a:74:02:72:93:fe:97:04:a6:e8:4b:92:78:40:1f:12:9d:e9: 28:67:84:c8:7b:84:c7:33:06:9e:ae:f7:12:91:4f:f9:2d:9a: f4:8b:f6:a5:66:0e:49:18:92:3b:54:e1:b9:4a:af:24:0c:40: 88:02:8e:f2:74:31:f3:86:f8:dc:b8:93:00:5c:c4:2a:b2:4e: 65:ed:7f:8b:7e:de:0e:d0:a1:c9:15:15:b4:e5:d3:0f:ae:f1: 1e:68:af:c7:6e:6b:39:24:02:17:80:d8:76:eb:2b:04:cb:19: 5b:3c:ac:52:08:c9:9a:b8:c4:3c:d1:83:3f:de:44:ab:c9:8c: 5e:a1:4b:e2:d1:e8:90:8c:0c:b8:dd:43:22:90:6f:63:ec:5a: c0:cc:f3:15 -----BEGIN CERTIFICATE----- MIIFGTCCBAGgAwIBAgISAZt4ol/qhXFDcnXAmUgjz+2jMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGVlMzEzNjdkZjZkMTg2MTA3MWM5MmJhZTcyNjUyMzMyNmY0 NWJhMmEwHhcNMjYwMTAxMDgxNzQ1WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhjYTA0ZjhmZTA3YjVhMjE3NjAzYzYzNWY3NDJkZWUzMjE2ZGViZDNhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwEyU3aUTSLB337Tnzxw431NtNJhO BiJOqdO0sIuSejjNWFbeH3MKgdjwW9dwJ66I/2U4Z+xrmXGzNgQ3AjeHMG9qWmW6 v3GN/j9IQUts9iGoQeEhWGu5v4QCbvB2VR8soj0Uc28/8ejkITIrXf0rJimMA7Sw v2iJvqyGqx/EZRNhkfKvlQXkk3YUu9z07xtAn1qUmShTdXss1Mq7wGTsb9Tuzrvi wcfhL3ZIVx6AmsTjMoiqh7ULcIeVRjXCDHGuQPC7F8L3byDd0aCAHeK0TPAn/9MS zRyr8nNodOVJ3nkpIp5AOpAekZ9Lgv+9G7cDDjnopnyzBnjJNJGIY5yUvwIDAQAB o4ICJTCCAiEwHQYDVR0OBBYEFMoE+P4HtaIXYDxjX3Qt7jIW3r06MB8GA1UdIwQY MBaAFO4xNn320YYQcckrrnJlIzJvRboqMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvN2pFMmZmYlJoaEJ4eVN1dWNtVWpNbTlGdWlvLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84MS8xYmI0ZGQtZTljNC00ZDNkLTlhM2It MTE1OWRiZmJlZDU0LzEveWdUNF9nZTFvaGRnUEdOZmRDM3VNaGJldlRvLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC84MS8xYmI0ZGQtZTljNC00ZDNkLTlhM2ItMTE1OWRiZmJlZDU0 LzEvN2pFMmZmYlJoaEJ4eVN1dWNtVWpNbTlGdWlvLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMDsGCCsGAQUFBwEHAQH/BCwwKjAMBAIAATAGAwQALVwqMBoE AgACMBQwEgMHACoOHMAAEQMHACoOHMAAEjANBgkqhkiG9w0BAQsFAAOCAQEAQaGG kgNHwA08e7IYKr9KuVP7vjr6EbJWgqaxzGfDg92h/bs5//mfu4yQ/WLgC4aTofnN 5zw6vWEPcMi2dAcyV6NoGBzmfj71z6ud1ZPxDUiCoMQzyAhC6xtLPNJQUsV/6/Wt BLkeUr5EnfYRWnQCcpP+lwSm6EuSeEAfEp3pKGeEyHuExzMGnq73EpFP+S2a9Iv2 pWYOSRiSO1ThuUqvJAxAiAKO8nQx84b43LiTAFzEKrJOZe1/i37eDtChyRUVtOXT D67xHmivx25rOSQCF4DYdusrBMsZWzysUgjJmrjEPNGDP95Eq8mMXqFL4tHokIwM uN1DIpBvY+xawMzzFQ== -----END CERTIFICATE-----Generated at Sun Jan 25 10:38:19 2026 by rpki-client