This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8a/118413-b7aa-459c-99fa-4de1b520a594/1/y-G3OrD2kALtXwb7pySuVjpgNR0.roa File: y-G3OrD2kALtXwb7pySuVjpgNR0.roa (raw, json) Hash identifier: 06asegLBB4yirxCTpyjUKg3V9v5ZpUPrBpVjVtVSxmg= Subject key identifier: CB:E1:B7:3A:B0:F6:90:02:ED:5F:06:FB:A7:24:AE:56:3A:60:35:1D Certificate issuer: /CN=279669579b3ce61ee8ee7d6af7e314b0f726361f Certificate serial: 019B7FF0705917550324C80F01FC5226982A Authority key identifier: 27:96:69:57:9B:3C:E6:1E:E8:EE:7D:6A:F7:E3:14:B0:F7:26:36:1F Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/J5ZpV5s85h7o7n1q9-MUsPcmNh8.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8a/118413-b7aa-459c-99fa-4de1b520a594/1/y-G3OrD2kALtXwb7pySuVjpgNR0.roa Signing time: Fri 02 Jan 2026 18:20:22 +0000 ROA not before: Fri 02 Jan 2026 18:20:22 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 396362 IP address blocks: 185.129.123.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8a/118413-b7aa-459c-99fa-4de1b520a594/1/J5ZpV5s85h7o7n1q9-MUsPcmNh8.crl rsync://rpki.ripe.net/repository/DEFAULT/8a/118413-b7aa-459c-99fa-4de1b520a594/1/J5ZpV5s85h7o7n1q9-MUsPcmNh8.mft rsync://rpki.ripe.net/repository/DEFAULT/J5ZpV5s85h7o7n1q9-MUsPcmNh8.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 06:01:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7f:f0:70:59:17:55:03:24:c8:0f:01:fc:52:26:98:2a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=279669579b3ce61ee8ee7d6af7e314b0f726361f Validity Not Before: Jan 2 18:20:22 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=cbe1b73ab0f69002ed5f06fba724ae563a60351d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:17:8f:1a:78:88:73:65:0b:1b:d8:80:ed:4d: 8b:27:38:c8:9e:8a:88:d6:e6:05:55:b1:11:13:5e: 31:ec:5c:03:1f:76:52:ac:6a:7e:53:fa:d5:3f:b3: 38:b3:e4:68:4e:fd:f8:b3:35:11:ac:48:60:97:ac: be:6c:4b:c6:b6:b6:c6:43:de:62:3d:11:52:a2:1c: f2:31:fb:c0:c6:53:76:f8:f1:a6:0c:b8:fd:80:6e: fa:08:a0:20:fa:c5:d9:a0:80:e3:ae:e6:df:e7:75: de:2c:78:06:d1:97:f5:21:e6:71:f1:76:04:29:31: 48:7d:f8:9b:14:b1:b4:5b:56:c4:e4:25:1a:92:a4: 94:11:ff:b0:dc:18:40:3a:2c:a2:a9:42:57:1d:02: 28:b3:2e:72:26:b8:d8:88:bf:e2:93:67:83:82:9c: c6:f1:d2:bd:f5:89:22:13:d5:85:e8:ec:05:54:75: 1d:fe:11:b3:90:26:e7:24:f7:dd:97:dc:49:a3:2e: d3:e7:0e:14:1f:e8:fd:f9:ba:49:8f:8d:86:08:4e: 53:ab:c0:7d:8b:e9:7e:6e:27:d7:37:f9:ea:af:cb: 3d:36:3f:da:a3:60:9a:af:c8:9f:99:2c:9c:cf:07: 5d:0a:b9:27:f7:ef:f3:8c:ea:59:6c:04:71:9e:e5: 9f:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CB:E1:B7:3A:B0:F6:90:02:ED:5F:06:FB:A7:24:AE:56:3A:60:35:1D X509v3 Authority Key Identifier: keyid:27:96:69:57:9B:3C:E6:1E:E8:EE:7D:6A:F7:E3:14:B0:F7:26:36:1F X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/J5ZpV5s85h7o7n1q9-MUsPcmNh8.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/118413-b7aa-459c-99fa-4de1b520a594/1/y-G3OrD2kALtXwb7pySuVjpgNR0.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/118413-b7aa-459c-99fa-4de1b520a594/1/J5ZpV5s85h7o7n1q9-MUsPcmNh8.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.129.123.0/24 Signature Algorithm: sha256WithRSAEncryption aa:e8:1f:14:8a:f8:87:53:f8:bd:36:0e:9a:15:5e:1d:d3:91: 0c:c0:d7:d0:01:1c:b8:0f:9b:e3:b8:be:14:be:d0:58:5b:7b: 40:3e:d3:96:c1:3b:9e:4f:ac:23:11:a5:74:ef:6e:bb:e8:f6: c7:80:ec:a9:e1:d9:56:80:72:6d:50:aa:96:aa:d1:71:cd:78: 46:cc:17:55:cc:79:7f:d7:33:0e:6a:c5:6e:c0:bf:7d:bc:c2: 50:b5:4e:17:1f:c5:ed:84:70:b5:2a:97:ab:2d:28:a5:27:ac: d1:dc:a4:9b:7b:c4:ed:71:67:8c:a5:d3:4e:41:b2:b5:7a:67: d3:f5:ce:e7:a6:c9:f0:fb:5f:5b:53:d0:08:84:e4:57:c6:61: ba:5b:f3:ab:b5:15:ee:8f:d9:46:13:dd:4f:2e:aa:36:6d:f0: e3:c8:b3:d5:a3:5c:92:47:19:22:b3:15:66:5d:2a:3f:ac:24: 86:5d:c5:7f:23:54:42:88:3b:56:1e:ff:81:d4:25:3d:6f:52: 10:12:79:81:7f:0e:82:6c:52:97:62:87:e1:bc:f8:e3:e4:bc: 0a:3a:aa:15:93:9a:0a:66:25:59:a0:bc:01:5c:cd:06:48:5e: bb:e5:3a:67:43:84:18:5f:da:d8:ba:65:79:2a:80:5a:d5:65: 44:01:c3:dd -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt/8HBZF1UDJMgPAfxSJpgqMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDI3OTY2OTU3OWIzY2U2MWVlOGVlN2Q2YWY3ZTMxNGIwZjcy NjM2MWYwHhcNMjYwMTAyMTgyMDIyWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhjYmUxYjczYWIwZjY5MDAyZWQ1ZjA2ZmJhNzI0YWU1NjNhNjAzNTFkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnRePGniIc2ULG9iA7U2LJzjInoqI 1uYFVbERE14x7FwDH3ZSrGp+U/rVP7M4s+RoTv34szURrEhgl6y+bEvGtrbGQ95i PRFSohzyMfvAxlN2+PGmDLj9gG76CKAg+sXZoIDjrubf53XeLHgG0Zf1IeZx8XYE KTFIffibFLG0W1bE5CUakqSUEf+w3BhAOiyiqUJXHQIosy5yJrjYiL/ik2eDgpzG 8dK99YkiE9WF6OwFVHUd/hGzkCbnJPfdl9xJoy7T5w4UH+j9+bpJj42GCE5Tq8B9 i+l+bifXN/nqr8s9Nj/ao2Car8ifmSyczwddCrkn9+/zjOpZbARxnuWf7QIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFMvhtzqw9pAC7V8G+6ckrlY6YDUdMB8GA1UdIwQY MBaAFCeWaVebPOYe6O59avfjFLD3JjYfMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSjVacFY1czg1aDdvN24xcTktTVVzUGNtTmg4LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84YS8xMTg0MTMtYjdhYS00NTljLTk5ZmEt NGRlMWI1MjBhNTk0LzEveS1HM09yRDJrQUx0WHdiN3B5U3VWanBnTlIwLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC84YS8xMTg0MTMtYjdhYS00NTljLTk5ZmEtNGRlMWI1MjBhNTk0 LzEvSjVacFY1czg1aDdvN24xcTktTVVzUGNtTmg4LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAuYF7MA0G CSqGSIb3DQEBCwUAA4IBAQCq6B8UiviHU/i9Ng6aFV4d05EMwNfQARy4D5vjuL4U vtBYW3tAPtOWwTueT6wjEaV072676PbHgOyp4dlWgHJtUKqWqtFxzXhGzBdVzHl/ 1zMOasVuwL99vMJQtU4XH8XthHC1KperLSilJ6zR3KSbe8TtcWeMpdNOQbK1emfT 9c7npsnw+19bU9AIhORXxmG6W/OrtRXuj9lGE91PLqo2bfDjyLPVo1ySRxkisxVm XSo/rCSGXcV/I1RCiDtWHv+B1CU9b1IQEnmBfw6CbFKXYofhvPjj5LwKOqoVk5oK ZiVZoLwBXM0GSF675TpnQ4QYX9rYumV5KoBa1WVEAcPd -----END CERTIFICATE-----Generated at Sun Jan 25 14:21:13 2026 by rpki-client