This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/88/2925a3-871b-4676-ae10-688d333ed9d5/1/YPjsb2BZZVlwkheQ4-BXMyYUx8A.roa File: YPjsb2BZZVlwkheQ4-BXMyYUx8A.roa (raw, json) Hash identifier: BuSmPU+cmorFIW2mrVOPHrLfL0dn0EfxJIzzSyE9HX4= Subject key identifier: 60:F8:EC:6F:60:59:65:59:70:92:17:90:E3:E0:57:33:26:14:C7:C0 Certificate issuer: /CN=ef1c665b038692b93bdf5d1d8f3cea3e98697a03 Certificate serial: 019B7B36B177BB5B2F417A6CB1EC67CCC71E Authority key identifier: EF:1C:66:5B:03:86:92:B9:3B:DF:5D:1D:8F:3C:EA:3E:98:69:7A:03 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/7xxmWwOGkrk7310djzzqPphpegM.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/88/2925a3-871b-4676-ae10-688d333ed9d5/1/YPjsb2BZZVlwkheQ4-BXMyYUx8A.roa Signing time: Thu 01 Jan 2026 20:19:00 +0000 ROA not before: Thu 01 Jan 2026 20:19:00 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 62261 IP address blocks: 194.85.28.0/23 maxlen: 23 194.85.28.0/24 maxlen: 24 194.85.29.0/24 maxlen: 24 212.192.230.0/23 maxlen: 23 212.192.230.0/24 maxlen: 24 212.192.231.0/24 maxlen: 24 212.192.232.0/23 maxlen: 23 212.192.232.0/24 maxlen: 24 212.192.233.0/24 maxlen: 24 212.192.234.0/23 maxlen: 23 212.192.234.0/24 maxlen: 24 212.192.235.0/24 maxlen: 24 212.192.236.0/23 maxlen: 23 212.192.236.0/24 maxlen: 24 212.192.237.0/24 maxlen: 24 2a09:bd00:10::/44 maxlen: 44 2a09:bd00:10::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/88/2925a3-871b-4676-ae10-688d333ed9d5/1/7xxmWwOGkrk7310djzzqPphpegM.crl rsync://rpki.ripe.net/repository/DEFAULT/88/2925a3-871b-4676-ae10-688d333ed9d5/1/7xxmWwOGkrk7310djzzqPphpegM.mft rsync://rpki.ripe.net/repository/DEFAULT/7xxmWwOGkrk7310djzzqPphpegM.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 22:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7b:36:b1:77:bb:5b:2f:41:7a:6c:b1:ec:67:cc:c7:1e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ef1c665b038692b93bdf5d1d8f3cea3e98697a03 Validity Not Before: Jan 1 20:19:00 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=60f8ec6f6059655970921790e3e057332614c7c0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:c3:57:07:57:ad:ce:38:8a:45:fa:27:1f:ed: 15:25:c6:06:e5:eb:80:f5:e0:83:b0:6c:a2:48:26: 2b:b0:78:22:5c:36:78:ad:9f:71:8d:de:4d:10:3b: 35:02:df:fe:5d:a3:1e:88:54:df:02:f6:99:ed:76: 53:fb:1c:92:f0:7c:0d:4a:8f:78:e5:a8:ca:e5:a7: e6:62:71:63:c6:d3:22:a3:9f:62:96:e1:35:1d:8d: 5d:42:0f:8b:6b:51:00:59:f6:04:3b:ba:94:83:a7: 94:de:9f:0a:42:38:96:e0:9a:1b:df:6b:28:05:1f: 5f:08:22:e3:9c:53:4e:35:b6:37:b9:26:e8:54:94: cc:f3:a5:1e:6e:44:36:6c:21:bd:98:c4:e7:f6:55: 03:74:5a:6d:1c:d4:72:bf:b5:31:04:60:b2:d7:92: 4f:34:65:9b:33:98:ff:f5:2c:2e:1d:65:3b:65:21: 78:9e:49:c7:ec:06:31:ab:30:cb:7e:b4:42:56:fc: 5c:cc:eb:c0:da:64:0f:92:04:ed:e0:65:d5:d3:81: 8d:27:5a:3a:0d:41:3d:f8:28:84:68:57:6a:fe:01: 97:e8:f5:c8:27:ec:5d:6b:0d:8a:06:38:af:da:d3: d7:49:5f:bd:85:26:4a:09:79:da:fc:9e:5e:df:12: 93:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 60:F8:EC:6F:60:59:65:59:70:92:17:90:E3:E0:57:33:26:14:C7:C0 X509v3 Authority Key Identifier: keyid:EF:1C:66:5B:03:86:92:B9:3B:DF:5D:1D:8F:3C:EA:3E:98:69:7A:03 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/7xxmWwOGkrk7310djzzqPphpegM.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/88/2925a3-871b-4676-ae10-688d333ed9d5/1/YPjsb2BZZVlwkheQ4-BXMyYUx8A.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/88/2925a3-871b-4676-ae10-688d333ed9d5/1/7xxmWwOGkrk7310djzzqPphpegM.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 194.85.28.0/23 212.192.230.0-212.192.237.255 IPv6: 2a09:bd00:10::/44 Signature Algorithm: sha256WithRSAEncryption 36:aa:f1:3f:2e:af:53:09:0d:3f:2d:ff:1d:96:c3:f4:25:6a: 8a:d6:ae:96:fa:74:a4:0b:d2:01:f2:4b:98:97:57:a0:12:3f: ea:5c:0d:93:4d:0a:58:55:98:55:73:3a:35:34:f4:eb:ec:00: 88:31:dc:64:88:75:b3:5f:2a:45:f6:69:56:7b:07:12:ca:06: ba:f5:8d:b7:72:fa:50:f4:a7:14:dd:10:5f:76:5c:54:cd:95: 35:8c:86:42:6f:84:25:e1:f6:4e:0e:98:a0:ec:dc:92:2a:da: 25:de:16:b1:e2:7e:13:9f:9a:df:83:9b:e9:74:ba:13:08:5b: 39:03:dd:17:27:89:84:70:40:93:d3:18:5d:5b:bb:a8:6d:9a: 48:a1:84:da:79:15:fd:64:28:32:8b:ed:9c:5f:f5:d7:ff:35: 82:d6:fb:9a:a5:79:c4:b5:fb:a4:89:7c:f1:9a:2c:f2:c8:bc: d4:0e:45:b2:c7:9b:90:c5:c7:4f:6f:ad:5c:05:34:dc:8b:fe: 30:19:21:ac:59:7a:7c:72:f5:01:af:76:54:d9:40:03:1f:18: 49:c0:b0:f2:27:6a:dc:41:34:36:1d:af:60:bd:ad:48:c0:18: 9a:0c:59:9e:74:b2:e1:ab:1a:e4:59:2a:87:34:79:c4:a7:de: e2:83:74:ff -----BEGIN CERTIFICATE----- MIIFHDCCBASgAwIBAgISAZt7NrF3u1svQXpssexnzMceMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGVmMWM2NjViMDM4NjkyYjkzYmRmNWQxZDhmM2NlYTNlOTg2 OTdhMDMwHhcNMjYwMTAxMjAxOTAwWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg2MGY4ZWM2ZjYwNTk2NTU5NzA5MjE3OTBlM2UwNTczMzI2MTRjN2MwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAoMNXB1etzjiKRfonH+0VJcYG5euA 9eCDsGyiSCYrsHgiXDZ4rZ9xjd5NEDs1At/+XaMeiFTfAvaZ7XZT+xyS8HwNSo94 5ajK5afmYnFjxtMio59iluE1HY1dQg+La1EAWfYEO7qUg6eU3p8KQjiW4Job32so BR9fCCLjnFNONbY3uSboVJTM86UebkQ2bCG9mMTn9lUDdFptHNRyv7UxBGCy15JP NGWbM5j/9SwuHWU7ZSF4nknH7AYxqzDLfrRCVvxczOvA2mQPkgTt4GXV04GNJ1o6 DUE9+CiEaFdq/gGX6PXIJ+xdaw2KBjiv2tPXSV+9hSZKCXna/J5e3xKTgQIDAQAB o4ICKDCCAiQwHQYDVR0OBBYEFGD47G9gWWVZcJIXkOPgVzMmFMfAMB8GA1UdIwQY MBaAFO8cZlsDhpK5O99dHY886j6YaXoDMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvN3h4bVd3T0drcms3MzEwZGp6enFQcGhwZWdNLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84OC8yOTI1YTMtODcxYi00Njc2LWFlMTAt Njg4ZDMzM2VkOWQ1LzEvWVBqc2IyQlpaVmx3a2hlUTQtQlhNeVlVeDhBLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC84OC8yOTI1YTMtODcxYi00Njc2LWFlMTAtNjg4ZDMzM2VkOWQ1 LzEvN3h4bVd3T0drcms3MzEwZGp6enFQcGhwZWdNLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMD4GCCsGAQUFBwEHAQH/BC8wLTAaBAIAATAUAwQBwlUcMAwD BAHUwOYDBAHUwOwwDwQCAAIwCQMHBCoJvQAAEDANBgkqhkiG9w0BAQsFAAOCAQEA NqrxPy6vUwkNPy3/HZbD9CVqitaulvp0pAvSAfJLmJdXoBI/6lwNk00KWFWYVXM6 NTT06+wAiDHcZIh1s18qRfZpVnsHEsoGuvWNt3L6UPSnFN0QX3ZcVM2VNYyGQm+E JeH2Tg6YoOzckiraJd4WseJ+E5+a34Ob6XS6EwhbOQPdFyeJhHBAk9MYXVu7qG2a SKGE2nkV/WQoMovtnF/11/81gtb7mqV5xLX7pIl88Zos8si81A5FssebkMXHT2+t XAU03Iv+MBkhrFl6fHL1Aa92VNlAAx8YScCw8idq3EE0Nh2vYL2tSMAYmgxZnnSy 4asa5FkqhzR5xKfe4oN0/w== -----END CERTIFICATE-----Generated at Mon Jan 26 04:22:30 2026 by rpki-client