This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d3/a91884-6f58-4ddd-8932-bba860b26c02/1/y1ma_1MpKFwpBA0ud8_GPTkN9fs.roa File: y1ma_1MpKFwpBA0ud8_GPTkN9fs.roa (raw, json) Hash identifier: wYvSLwWEiQxZIUgyNEOSCPvFdda8fgf6UgQ9JrolQ/s= Subject key identifier: CB:59:9A:FF:53:29:28:5C:29:04:0D:2E:77:CF:C6:3D:39:0D:F5:FB Certificate issuer: /CN=206f1c32bc0a9006081d552fede67d6842921ec3 Certificate serial: 019B7B365480A3D37A485C18D019F4E4AF4F Authority key identifier: 20:6F:1C:32:BC:0A:90:06:08:1D:55:2F:ED:E6:7D:68:42:92:1E:C3 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IG8cMrwKkAYIHVUv7eZ9aEKSHsM.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d3/a91884-6f58-4ddd-8932-bba860b26c02/1/y1ma_1MpKFwpBA0ud8_GPTkN9fs.roa Signing time: Thu 01 Jan 2026 20:18:36 +0000 ROA not before: Thu 01 Jan 2026 20:18:36 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 212806 IP address blocks: 185.175.90.0/24 maxlen: 24 2a10:4740:40::/42 maxlen: 42 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d3/a91884-6f58-4ddd-8932-bba860b26c02/1/IG8cMrwKkAYIHVUv7eZ9aEKSHsM.crl rsync://rpki.ripe.net/repository/DEFAULT/d3/a91884-6f58-4ddd-8932-bba860b26c02/1/IG8cMrwKkAYIHVUv7eZ9aEKSHsM.mft rsync://rpki.ripe.net/repository/DEFAULT/IG8cMrwKkAYIHVUv7eZ9aEKSHsM.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 20:00:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7b:36:54:80:a3:d3:7a:48:5c:18:d0:19:f4:e4:af:4f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=206f1c32bc0a9006081d552fede67d6842921ec3 Validity Not Before: Jan 1 20:18:36 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=cb599aff5329285c29040d2e77cfc63d390df5fb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:9d:e8:27:19:a7:e5:09:df:55:ef:ab:54:30: e8:75:a0:74:24:ed:9d:f2:23:db:d8:bf:46:a3:5e: 3a:8f:26:69:f4:9a:ca:5b:41:e0:c5:18:e6:19:b0: 97:1e:6d:64:1a:50:c5:c6:1d:eb:f9:1e:50:8b:bc: 93:20:55:83:e6:13:e3:71:d0:88:36:06:60:5f:ef: 98:b9:d3:84:96:ad:b4:b3:7a:54:d9:d6:42:74:a9: 68:02:40:3c:a8:98:00:8c:1f:da:b1:77:08:82:f9: 9d:e3:31:38:74:02:b8:80:3b:71:55:b4:f9:34:a6: ca:6f:02:40:59:97:ca:31:9a:a0:67:f1:eb:2f:74: 81:81:a3:69:19:f1:a4:19:b9:28:00:46:79:f0:13: 9a:51:06:6a:5f:44:40:99:4d:ab:18:e0:b1:c7:15: 40:7f:49:e6:85:c5:50:45:5a:1c:ac:ec:25:36:58: 9e:f5:a1:13:31:d5:31:8b:1c:47:e0:36:59:3c:27: d2:5f:c6:3b:b8:46:90:65:80:9b:ca:bf:a6:4e:30: f0:ee:78:02:43:9a:0b:39:33:51:67:52:8b:e7:68: e8:f4:1f:5e:f1:71:54:54:99:73:7e:65:c1:17:31: 58:dc:33:22:56:6d:65:50:39:a4:aa:d3:0c:23:e8: ad:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CB:59:9A:FF:53:29:28:5C:29:04:0D:2E:77:CF:C6:3D:39:0D:F5:FB X509v3 Authority Key Identifier: keyid:20:6F:1C:32:BC:0A:90:06:08:1D:55:2F:ED:E6:7D:68:42:92:1E:C3 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IG8cMrwKkAYIHVUv7eZ9aEKSHsM.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/a91884-6f58-4ddd-8932-bba860b26c02/1/y1ma_1MpKFwpBA0ud8_GPTkN9fs.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/a91884-6f58-4ddd-8932-bba860b26c02/1/IG8cMrwKkAYIHVUv7eZ9aEKSHsM.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.175.90.0/24 IPv6: 2a10:4740:40::/42 Signature Algorithm: sha256WithRSAEncryption 11:c1:fa:68:6a:cf:86:fc:9a:2f:16:da:59:aa:34:79:bf:b4: 2b:96:c3:49:c8:ee:82:d9:7b:1a:a0:58:c3:40:41:4b:82:29: a7:cb:71:4b:b8:09:7f:01:2d:26:eb:28:8c:f1:62:41:68:8d: 13:b2:84:56:3c:32:75:54:e3:aa:89:a1:7f:d7:d0:07:b7:8f: 16:e9:34:34:b2:29:38:72:dd:17:bb:26:2a:cb:70:16:81:49: eb:3e:20:2e:54:58:e9:c8:d4:51:69:84:56:78:d5:83:3b:15: 4a:54:54:3f:08:ca:87:f7:0f:54:13:89:04:86:d7:06:48:59: 09:48:05:2a:75:cb:a6:45:bd:0c:70:20:f7:eb:41:81:3a:0a: 93:c9:45:44:dc:c2:33:6b:34:a7:e0:b1:ec:1e:92:d2:e1:6f: 78:0d:16:2d:e1:1b:71:09:a7:12:43:79:4a:f2:f8:36:20:0f: 72:fb:19:5f:68:47:0d:7e:3f:e5:91:4b:8b:b5:3a:e2:71:c8: ae:9d:6e:53:d6:9a:ca:b0:81:08:12:34:77:43:98:86:69:3d: b3:fb:09:71:88:23:6b:55:0f:34:07:ab:58:92:c8:9c:23:52: ed:ec:73:f0:13:b8:f5:17:d8:88:ef:65:dc:7c:94:e4:07:68: 4f:73:ac:36 -----BEGIN CERTIFICATE----- MIIFDjCCA/agAwIBAgISAZt7NlSAo9N6SFwY0Bn05K9PMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDIwNmYxYzMyYmMwYTkwMDYwODFkNTUyZmVkZTY3ZDY4NDI5 MjFlYzMwHhcNMjYwMTAxMjAxODM2WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhjYjU5OWFmZjUzMjkyODVjMjkwNDBkMmU3N2NmYzYzZDM5MGRmNWZiMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuZ3oJxmn5QnfVe+rVDDodaB0JO2d 8iPb2L9Go146jyZp9JrKW0HgxRjmGbCXHm1kGlDFxh3r+R5Qi7yTIFWD5hPjcdCI NgZgX++YudOElq20s3pU2dZCdKloAkA8qJgAjB/asXcIgvmd4zE4dAK4gDtxVbT5 NKbKbwJAWZfKMZqgZ/HrL3SBgaNpGfGkGbkoAEZ58BOaUQZqX0RAmU2rGOCxxxVA f0nmhcVQRVocrOwlNlie9aETMdUxixxH4DZZPCfSX8Y7uEaQZYCbyr+mTjDw7ngC Q5oLOTNRZ1KL52jo9B9e8XFUVJlzfmXBFzFY3DMiVm1lUDmkqtMMI+ithQIDAQAB o4ICGjCCAhYwHQYDVR0OBBYEFMtZmv9TKShcKQQNLnfPxj05DfX7MB8GA1UdIwQY MBaAFCBvHDK8CpAGCB1VL+3mfWhCkh7DMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSUc4Y01yd0trQVlJSFZVdjdlWjlhRUtTSHNNLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kMy9hOTE4ODQtNmY1OC00ZGRkLTg5MzIt YmJhODYwYjI2YzAyLzEveTFtYV8xTXBLRndwQkEwdWQ4X0dQVGtOOWZzLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kMy9hOTE4ODQtNmY1OC00ZGRkLTg5MzItYmJhODYwYjI2YzAy LzEvSUc4Y01yd0trQVlJSFZVdjdlWjlhRUtTSHNNLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMDAGCCsGAQUFBwEHAQH/BCEwHzAMBAIAATAGAwQAua9aMA8E AgACMAkDBwYqEEdAAEAwDQYJKoZIhvcNAQELBQADggEBABHB+mhqz4b8mi8W2lmq NHm/tCuWw0nI7oLZexqgWMNAQUuCKafLcUu4CX8BLSbrKIzxYkFojROyhFY8MnVU 46qJoX/X0Ae3jxbpNDSyKThy3Re7JirLcBaBSes+IC5UWOnI1FFphFZ41YM7FUpU VD8Iyof3D1QTiQSG1wZIWQlIBSp1y6ZFvQxwIPfrQYE6CpPJRUTcwjNrNKfgsewe ktLhb3gNFi3hG3EJpxJDeUry+DYgD3L7GV9oRw1+P+WRS4u1OuJxyK6dblPWmsqw gQgSNHdDmIZpPbP7CXGII2tVDzQHq1iSyJwjUu3sc/ATuPUX2IjvZdx8lOQHaE9z rDY= -----END CERTIFICATE-----Generated at Mon Jan 26 03:05:49 2026 by rpki-client