This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d9/445228-b442-4e16-ad69-8ffddb5e3c26/1/YDyC5kBhNI8thKV1LynCzapFE7Q.roa File: YDyC5kBhNI8thKV1LynCzapFE7Q.roa (raw, json) Hash identifier: QeALQ6HX+21WYDZockRGHmyT4aXfggw6UzIeai2uvuw= Subject key identifier: 60:3C:82:E6:40:61:34:8F:2D:84:A5:75:2F:29:C2:CD:AA:45:13:B4 Certificate issuer: /CN=6417b1e13d32ed3a64a7c3522751623eefabe5f3 Certificate serial: 019B7CEE5442BF6CF82D21D9757FB5DB8C3E Authority key identifier: 64:17:B1:E1:3D:32:ED:3A:64:A7:C3:52:27:51:62:3E:EF:AB:E5:F3 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ZBex4T0y7Tpkp8NSJ1FiPu-r5fM.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d9/445228-b442-4e16-ad69-8ffddb5e3c26/1/YDyC5kBhNI8thKV1LynCzapFE7Q.roa Signing time: Fri 02 Jan 2026 04:19:12 +0000 ROA not before: Fri 02 Jan 2026 04:19:12 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 198774 IP address blocks: 195.69.158.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d9/445228-b442-4e16-ad69-8ffddb5e3c26/1/ZBex4T0y7Tpkp8NSJ1FiPu-r5fM.crl rsync://rpki.ripe.net/repository/DEFAULT/d9/445228-b442-4e16-ad69-8ffddb5e3c26/1/ZBex4T0y7Tpkp8NSJ1FiPu-r5fM.mft rsync://rpki.ripe.net/repository/DEFAULT/ZBex4T0y7Tpkp8NSJ1FiPu-r5fM.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 22:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7c:ee:54:42:bf:6c:f8:2d:21:d9:75:7f:b5:db:8c:3e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6417b1e13d32ed3a64a7c3522751623eefabe5f3 Validity Not Before: Jan 2 04:19:12 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=603c82e64061348f2d84a5752f29c2cdaa4513b4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:84:0f:85:a3:97:e1:59:a8:13:ad:1e:bf:c8: f0:9c:65:17:69:b8:0b:b6:e6:ce:66:72:cd:2b:e3: 84:22:64:33:e6:94:af:06:88:a8:7c:9e:bf:65:ce: 11:c2:60:0a:b8:38:24:22:86:8e:eb:06:ec:6b:d3: a6:3b:7f:4a:40:c1:81:0b:e3:ac:21:6c:de:ae:6e: 96:0e:a5:68:99:ec:05:06:b8:a6:e6:8d:e2:5c:72: 21:c4:a9:d1:fa:70:9c:12:c8:27:9d:4c:bd:39:0a: ba:e0:7f:20:7f:e4:be:c9:04:89:37:81:8f:dc:cd: 38:f1:f0:da:c6:6a:f9:58:9d:98:54:25:73:8f:03: 69:82:0a:05:97:20:3c:12:f9:30:39:8f:d5:07:f6: 42:3b:dd:d5:42:ad:60:1a:4a:90:2c:ab:1f:a0:4a: 71:25:83:fd:2d:9e:28:87:63:a3:98:d5:50:7c:4f: 17:d0:fb:78:cf:3c:87:76:f5:05:8a:12:dd:55:01: 27:32:f8:db:92:75:d5:16:2a:a8:a8:1c:bc:08:38: 02:08:20:a8:87:e2:c9:94:fc:b0:2f:75:05:86:fd: 54:f0:77:23:0b:df:60:19:31:11:85:e6:ad:d0:5c: 01:b6:e2:76:f8:43:19:05:27:fe:f8:b7:b6:9b:08: 4e:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 60:3C:82:E6:40:61:34:8F:2D:84:A5:75:2F:29:C2:CD:AA:45:13:B4 X509v3 Authority Key Identifier: keyid:64:17:B1:E1:3D:32:ED:3A:64:A7:C3:52:27:51:62:3E:EF:AB:E5:F3 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZBex4T0y7Tpkp8NSJ1FiPu-r5fM.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/445228-b442-4e16-ad69-8ffddb5e3c26/1/YDyC5kBhNI8thKV1LynCzapFE7Q.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/445228-b442-4e16-ad69-8ffddb5e3c26/1/ZBex4T0y7Tpkp8NSJ1FiPu-r5fM.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 195.69.158.0/24 Signature Algorithm: sha256WithRSAEncryption 81:03:ca:50:20:63:08:82:de:f4:2e:79:03:42:fa:12:4b:89: fe:97:33:02:e0:09:a9:b8:c6:8a:bd:e2:44:c9:95:79:79:e7: 8c:1d:07:4b:05:84:bd:63:96:41:f7:18:f4:47:b8:69:87:a3: 30:f8:61:f5:c3:37:65:52:32:1a:cc:f0:4e:48:f6:61:aa:cf: 8e:ef:9a:3e:c7:f5:f4:8a:8f:f9:29:91:d4:bb:29:83:5d:6b: 3f:7f:6b:1b:f4:bd:91:60:4d:a4:4b:ff:db:21:50:44:91:3b: 1f:ee:cd:06:5f:ca:ac:96:23:0d:0f:78:c2:81:52:e1:b9:c3: dd:37:97:82:3c:01:8b:a3:4e:b0:16:fd:1e:a6:82:21:58:67: 63:74:68:ca:f7:f2:d6:f8:83:3d:17:75:22:13:06:d6:73:b0: dd:58:70:c5:c7:44:23:ca:8b:44:86:a1:29:85:2e:ca:67:d5: 89:0a:ee:66:e1:b6:a6:37:60:2b:6f:58:58:b9:bb:c5:03:4a: 9d:aa:33:8c:27:e9:03:2c:bd:da:06:be:c9:ee:86:3c:5c:8c: d9:bf:ae:d8:54:f2:ea:91:e2:70:f9:48:c4:d5:02:53:a5:3a: ee:d7:50:70:b1:d7:4b:2e:20:9a:aa:0e:46:d9:69:14:65:21: 92:76:e2:2f -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt87lRCv2z4LSHZdX+124w+MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDY0MTdiMWUxM2QzMmVkM2E2NGE3YzM1MjI3NTE2MjNlZWZh YmU1ZjMwHhcNMjYwMTAyMDQxOTEyWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg2MDNjODJlNjQwNjEzNDhmMmQ4NGE1NzUyZjI5YzJjZGFhNDUxM2I0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvIQPhaOX4VmoE60ev8jwnGUXabgL tubOZnLNK+OEImQz5pSvBoiofJ6/Zc4RwmAKuDgkIoaO6wbsa9OmO39KQMGBC+Os IWzerm6WDqVomewFBrim5o3iXHIhxKnR+nCcEsgnnUy9OQq64H8gf+S+yQSJN4GP 3M048fDaxmr5WJ2YVCVzjwNpggoFlyA8EvkwOY/VB/ZCO93VQq1gGkqQLKsfoEpx JYP9LZ4oh2OjmNVQfE8X0Pt4zzyHdvUFihLdVQEnMvjbknXVFiqoqBy8CDgCCCCo h+LJlPywL3UFhv1U8HcjC99gGTERheat0FwBtuJ2+EMZBSf++Le2mwhOmQIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFGA8guZAYTSPLYSldS8pws2qRRO0MB8GA1UdIwQY MBaAFGQXseE9Mu06ZKfDUidRYj7vq+XzMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvWkJleDRUMHk3VHBrcDhOU0oxRmlQdS1yNWZNLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kOS80NDUyMjgtYjQ0Mi00ZTE2LWFkNjkt OGZmZGRiNWUzYzI2LzEvWUR5QzVrQmhOSTh0aEtWMUx5bkN6YXBGRTdRLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kOS80NDUyMjgtYjQ0Mi00ZTE2LWFkNjktOGZmZGRiNWUzYzI2 LzEvWkJleDRUMHk3VHBrcDhOU0oxRmlQdS1yNWZNLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAw0WeMA0G CSqGSIb3DQEBCwUAA4IBAQCBA8pQIGMIgt70LnkDQvoSS4n+lzMC4AmpuMaKveJE yZV5eeeMHQdLBYS9Y5ZB9xj0R7hph6Mw+GH1wzdlUjIazPBOSPZhqs+O75o+x/X0 io/5KZHUuymDXWs/f2sb9L2RYE2kS//bIVBEkTsf7s0GX8qsliMND3jCgVLhucPd N5eCPAGLo06wFv0epoIhWGdjdGjK9/LW+IM9F3UiEwbWc7DdWHDFx0QjyotEhqEp hS7KZ9WJCu5m4bamN2Arb1hYubvFA0qdqjOMJ+kDLL3aBr7J7oY8XIzZv67YVPLq keJw+UjE1QJTpTru11BwsddLLiCaqg5G2WkUZSGSduIv -----END CERTIFICATE-----Generated at Mon Jan 26 07:08:23 2026 by rpki-client