This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/95/fb39a8-623b-4435-94fe-cec92b578006/1/yAmajTNIGB30RaNnDKHZKbNV084.roa File: yAmajTNIGB30RaNnDKHZKbNV084.roa (raw, json) Hash identifier: AvmPyTEQGMbZs2CFL6VyUeUgqUB6djXcQ6A/Qc+SDAE= Subject key identifier: C8:09:9A:8D:33:48:18:1D:F4:45:A3:67:0C:A1:D9:29:B3:55:D3:CE Certificate issuer: /CN=535be45376d58987452bd0646b9a74cf9eb6cb2d Certificate serial: 019B7AC916176B7F95A66BCFC25725B8A270 Authority key identifier: 53:5B:E4:53:76:D5:89:87:45:2B:D0:64:6B:9A:74:CF:9E:B6:CB:2D Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/U1vkU3bViYdFK9Bka5p0z562yy0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/95/fb39a8-623b-4435-94fe-cec92b578006/1/yAmajTNIGB30RaNnDKHZKbNV084.roa Signing time: Thu 01 Jan 2026 18:19:17 +0000 ROA not before: Thu 01 Jan 2026 18:19:17 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 200069 IP address blocks: 45.14.148.0/22 maxlen: 24 87.253.232.0/21 maxlen: 24 87.253.232.0/24 maxlen: 24 185.189.236.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/95/fb39a8-623b-4435-94fe-cec92b578006/1/U1vkU3bViYdFK9Bka5p0z562yy0.crl rsync://rpki.ripe.net/repository/DEFAULT/95/fb39a8-623b-4435-94fe-cec92b578006/1/U1vkU3bViYdFK9Bka5p0z562yy0.mft rsync://rpki.ripe.net/repository/DEFAULT/U1vkU3bViYdFK9Bka5p0z562yy0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 13:21:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7a:c9:16:17:6b:7f:95:a6:6b:cf:c2:57:25:b8:a2:70 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=535be45376d58987452bd0646b9a74cf9eb6cb2d Validity Not Before: Jan 1 18:19:17 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=c8099a8d3348181df445a3670ca1d929b355d3ce Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:45:da:73:be:f2:8e:fb:95:89:30:2e:8d:5c: 45:59:b5:cf:86:ab:74:9b:95:b1:b7:92:c4:db:3c: 0a:1c:5c:fe:6d:70:49:5b:6c:c5:4a:e3:8d:97:b7: bd:6f:c5:fd:07:aa:3a:6d:59:55:e7:6d:b1:ca:29: fb:04:40:30:27:11:6c:2b:e2:cb:0c:07:07:f7:a1: 4a:f3:f3:e8:94:02:7d:bc:e7:70:06:da:b2:fd:0a: 62:c7:07:1d:c7:4c:de:c5:02:78:3f:8a:c9:09:f0: 56:6c:75:94:b0:a4:00:63:e4:cb:7e:6a:c1:e7:9b: d1:14:dd:70:30:d5:2b:52:a3:f2:1a:df:4c:3c:08: 1a:b8:56:7f:b2:95:d1:96:01:b4:f5:d4:93:0f:3a: 42:6b:e2:51:d1:b2:c6:a3:ec:8a:14:da:74:60:3b: b7:93:2c:3d:62:8e:81:36:d2:b0:98:cf:ed:fd:62: d1:39:4b:86:ff:6d:a0:4c:f7:57:13:93:49:48:cf: c5:04:f3:20:f8:41:11:22:21:2d:7f:3a:39:fd:56: 05:4a:6a:b3:ed:f2:e1:69:32:c5:98:a2:ca:48:a6: 24:4a:1f:16:52:ba:48:92:29:3c:fc:e6:a1:a7:6b: d5:26:76:54:e0:5b:49:cc:9a:e3:0a:3f:96:d6:ed: de:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C8:09:9A:8D:33:48:18:1D:F4:45:A3:67:0C:A1:D9:29:B3:55:D3:CE X509v3 Authority Key Identifier: keyid:53:5B:E4:53:76:D5:89:87:45:2B:D0:64:6B:9A:74:CF:9E:B6:CB:2D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/U1vkU3bViYdFK9Bka5p0z562yy0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/95/fb39a8-623b-4435-94fe-cec92b578006/1/yAmajTNIGB30RaNnDKHZKbNV084.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/95/fb39a8-623b-4435-94fe-cec92b578006/1/U1vkU3bViYdFK9Bka5p0z562yy0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 45.14.148.0/22 87.253.232.0/21 185.189.236.0/22 Signature Algorithm: sha256WithRSAEncryption b5:da:e5:db:a8:f4:a7:9d:d4:61:e1:f9:46:55:8b:5a:b4:14: e4:c2:31:a6:0e:a8:53:10:96:6d:a8:45:ba:24:c8:01:63:f3: 3d:38:91:82:0f:f2:38:d2:8f:50:2b:63:85:c7:6c:2e:48:8b: 6a:42:b8:9e:fa:b6:5a:8d:b3:1e:eb:d9:82:9d:22:b4:86:d2: 3c:ab:00:4e:50:80:61:4d:db:07:d2:78:51:8d:76:74:c7:c6: 4d:9f:7a:1b:5f:51:f1:d2:2d:c1:ea:5d:aa:e1:4a:d4:93:dd: b7:37:4c:b1:19:4f:85:b1:82:7b:8e:5c:97:f9:7a:f0:3d:a5: cf:d8:4a:77:4e:97:47:4e:df:cc:47:a0:9c:ba:ac:0a:94:e2: a0:fd:76:42:b8:8a:fd:3a:92:d8:cf:66:d3:5e:a3:b6:b8:e1: cb:13:4b:be:9f:d5:59:98:8a:f0:ee:e5:bd:88:ea:14:fb:45: 93:9e:35:3c:34:59:0e:5e:d4:9c:82:21:06:5b:fe:5b:f7:de: 12:d9:54:9e:a7:e5:8b:64:9e:e1:3e:5f:f1:af:93:12:b6:ee: 31:f1:4b:7e:9f:d4:37:87:4b:50:a9:2c:14:05:af:09:6b:ac: 22:da:23:76:bb:68:dc:83:72:4f:70:d7:6c:b8:4c:20:3b:e6: 5a:fe:7b:4c -----BEGIN CERTIFICATE----- MIIFCTCCA/GgAwIBAgISAZt6yRYXa3+VpmvPwlcluKJwMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDUzNWJlNDUzNzZkNTg5ODc0NTJiZDA2NDZiOWE3NGNmOWVi NmNiMmQwHhcNMjYwMTAxMTgxOTE3WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhjODA5OWE4ZDMzNDgxODFkZjQ0NWEzNjcwY2ExZDkyOWIzNTVkM2NlMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAq0Xac77yjvuViTAujVxFWbXPhqt0 m5Wxt5LE2zwKHFz+bXBJW2zFSuONl7e9b8X9B6o6bVlV522xyin7BEAwJxFsK+LL DAcH96FK8/PolAJ9vOdwBtqy/Qpixwcdx0zexQJ4P4rJCfBWbHWUsKQAY+TLfmrB 55vRFN1wMNUrUqPyGt9MPAgauFZ/spXRlgG09dSTDzpCa+JR0bLGo+yKFNp0YDu3 kyw9Yo6BNtKwmM/t/WLROUuG/22gTPdXE5NJSM/FBPMg+EERIiEtfzo5/VYFSmqz 7fLhaTLFmKLKSKYkSh8WUrpIkik8/Oahp2vVJnZU4FtJzJrjCj+W1u3eAQIDAQAB o4ICFTCCAhEwHQYDVR0OBBYEFMgJmo0zSBgd9EWjZwyh2SmzVdPOMB8GA1UdIwQY MBaAFFNb5FN21YmHRSvQZGuadM+etsstMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvVTF2a1UzYlZpWWRGSzlCa2E1cDB6NTYyeXkwLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85NS9mYjM5YTgtNjIzYi00NDM1LTk0ZmUt Y2VjOTJiNTc4MDA2LzEveUFtYWpUTklHQjMwUmFObkRLSFpLYk5WMDg0LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC85NS9mYjM5YTgtNjIzYi00NDM1LTk0ZmUtY2VjOTJiNTc4MDA2 LzEvVTF2a1UzYlZpWWRGSzlCa2E1cDB6NTYyeXkwLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCsGCCsGAQUFBwEHAQH/BBwwGjAYBAIAATASAwQCLQ6UAwQD V/3oAwQCub3sMA0GCSqGSIb3DQEBCwUAA4IBAQC12uXbqPSnndRh4flGVYtatBTk wjGmDqhTEJZtqEW6JMgBY/M9OJGCD/I40o9QK2OFx2wuSItqQrie+rZajbMe69mC nSK0htI8qwBOUIBhTdsH0nhRjXZ0x8ZNn3obX1Hx0i3B6l2q4UrUk923N0yxGU+F sYJ7jlyX+XrwPaXP2Ep3TpdHTt/MR6CcuqwKlOKg/XZCuIr9OpLYz2bTXqO2uOHL E0u+n9VZmIrw7uW9iOoU+0WTnjU8NFkOXtScgiEGW/5b994S2VSep+WLZJ7hPl/x r5MStu4x8Ut+n9Q3h0tQqSwUBa8Ja6wi2iN2u2jcg3JPcNdsuEwgO+Za/ntM -----END CERTIFICATE-----Generated at Sun Jan 25 21:58:31 2026 by rpki-client