This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e2/e74595-d657-4ab4-8309-0d57c9410127/1/yqvsB5X_-DAuVHS9sST4aCAyA_U.roa File: yqvsB5X_-DAuVHS9sST4aCAyA_U.roa (raw, json) Hash identifier: 20FY2GatI2xBOw2RMd7efcRJ7wV9DVAWy1XKsIhcS1Q= Subject key identifier: CA:AB:EC:07:95:FF:F8:30:2E:54:74:BD:B1:24:F8:68:20:32:03:F5 Certificate issuer: /CN=3a48c2701735cd5d2317d10ac63d7f2ec6618ce0 Certificate serial: 019B7758EF7DBDC5AA6FD67B4781879A6035 Authority key identifier: 3A:48:C2:70:17:35:CD:5D:23:17:D1:0A:C6:3D:7F:2E:C6:61:8C:E0 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OkjCcBc1zV0jF9EKxj1_LsZhjOA.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e2/e74595-d657-4ab4-8309-0d57c9410127/1/yqvsB5X_-DAuVHS9sST4aCAyA_U.roa Signing time: Thu 01 Jan 2026 02:17:55 +0000 ROA not before: Thu 01 Jan 2026 02:17:55 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 41107 IP address blocks: 91.199.181.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e2/e74595-d657-4ab4-8309-0d57c9410127/1/OkjCcBc1zV0jF9EKxj1_LsZhjOA.crl rsync://rpki.ripe.net/repository/DEFAULT/e2/e74595-d657-4ab4-8309-0d57c9410127/1/OkjCcBc1zV0jF9EKxj1_LsZhjOA.mft rsync://rpki.ripe.net/repository/DEFAULT/OkjCcBc1zV0jF9EKxj1_LsZhjOA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 20:01:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:77:58:ef:7d:bd:c5:aa:6f:d6:7b:47:81:87:9a:60:35 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3a48c2701735cd5d2317d10ac63d7f2ec6618ce0 Validity Not Before: Jan 1 02:17:55 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=caabec0795fff8302e5474bdb124f868203203f5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:3f:13:5f:ef:54:43:61:02:aa:38:c3:24:ee: f6:25:d9:e8:0b:be:7b:9d:8b:05:66:01:cd:46:47: 1b:81:1e:3a:a3:b0:70:8c:b2:6a:00:15:18:7c:36: 49:61:0b:e5:fc:40:e2:77:8f:63:3e:8d:82:e0:aa: 3e:98:67:1f:c4:e0:ad:d0:a2:91:f0:37:42:aa:0c: e9:da:85:67:c5:de:ab:5f:08:a2:45:89:4b:95:ff: 7d:1c:10:35:78:86:d1:54:c2:f7:f2:4a:a1:14:58: 62:86:ce:22:e2:82:d1:1e:6d:c9:ec:b6:ac:1f:cc: 37:e4:62:91:31:90:a7:28:80:14:8a:2c:d7:2a:bc: e5:58:a1:f9:36:a4:65:37:a3:b1:62:ae:d0:a3:15: 9f:e6:0e:3a:0c:16:16:5c:0c:04:65:0f:cf:07:35: 4e:35:35:d4:18:b1:db:9c:04:12:e4:8c:2f:ea:4d: 0c:d6:b7:83:63:4b:af:9d:7d:bb:24:5d:a0:e4:52: 8a:30:6c:d1:6a:40:a0:eb:81:cb:e5:e6:90:4f:18: db:fb:61:43:de:1a:db:f7:0b:f4:10:e3:2f:61:e3: da:21:4e:80:6c:57:94:92:73:14:dd:56:02:7a:04: ad:de:3b:78:e2:0f:bc:66:2f:05:03:32:a1:47:ca: d1:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CA:AB:EC:07:95:FF:F8:30:2E:54:74:BD:B1:24:F8:68:20:32:03:F5 X509v3 Authority Key Identifier: keyid:3A:48:C2:70:17:35:CD:5D:23:17:D1:0A:C6:3D:7F:2E:C6:61:8C:E0 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OkjCcBc1zV0jF9EKxj1_LsZhjOA.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e2/e74595-d657-4ab4-8309-0d57c9410127/1/yqvsB5X_-DAuVHS9sST4aCAyA_U.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/e2/e74595-d657-4ab4-8309-0d57c9410127/1/OkjCcBc1zV0jF9EKxj1_LsZhjOA.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 91.199.181.0/24 Signature Algorithm: sha256WithRSAEncryption 56:6b:53:45:38:53:c4:e2:d6:78:cb:4e:c2:2f:10:ee:55:bd: 23:cd:a1:b1:88:ba:14:f3:e2:b8:23:11:64:25:0a:c0:8b:4a: f2:c1:6a:95:72:fc:52:a0:b5:21:1c:f6:e4:61:a8:05:7e:4e: a6:f7:4c:db:be:05:0c:d3:95:e3:22:21:c8:da:ed:bf:26:e4: 01:31:f9:73:f7:8b:3f:a7:d0:05:32:f5:14:11:a3:e8:1d:de: 68:82:e0:b6:1b:de:92:33:f4:5c:e1:49:8d:f1:a8:4a:9f:dd: 50:cd:e0:79:bf:15:95:2e:b7:ac:24:49:d9:2f:cb:34:ed:41: 0f:62:ee:3e:ef:24:1a:ad:ed:c6:0a:d3:09:a5:e8:00:a8:69: 51:63:62:5d:48:e6:48:fa:fa:89:d6:31:a7:56:1b:34:3d:4b: b4:26:7d:c6:4e:24:24:75:56:09:39:66:23:71:1d:a8:54:c5: 71:ed:ff:8f:b9:d8:e0:66:1e:a8:d0:e8:70:21:23:13:48:2a: b1:8a:fe:1e:b8:88:03:dd:36:b3:5f:db:3d:51:f1:b4:6d:7c: da:58:fa:91:fd:83:62:a5:06:00:c3:82:82:e7:59:a8:53:39: d7:d6:00:2c:cf:df:82:fe:e9:8f:57:6d:0f:d0:0e:9f:82:d0: 3c:bf:bb:4b -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt3WO99vcWqb9Z7R4GHmmA1MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDNhNDhjMjcwMTczNWNkNWQyMzE3ZDEwYWM2M2Q3ZjJlYzY2 MThjZTAwHhcNMjYwMTAxMDIxNzU1WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhjYWFiZWMwNzk1ZmZmODMwMmU1NDc0YmRiMTI0Zjg2ODIwMzIwM2Y1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnj8TX+9UQ2ECqjjDJO72JdnoC757 nYsFZgHNRkcbgR46o7BwjLJqABUYfDZJYQvl/EDid49jPo2C4Ko+mGcfxOCt0KKR 8DdCqgzp2oVnxd6rXwiiRYlLlf99HBA1eIbRVML38kqhFFhihs4i4oLRHm3J7Las H8w35GKRMZCnKIAUiizXKrzlWKH5NqRlN6OxYq7QoxWf5g46DBYWXAwEZQ/PBzVO NTXUGLHbnAQS5Iwv6k0M1reDY0uvnX27JF2g5FKKMGzRakCg64HL5eaQTxjb+2FD 3hrb9wv0EOMvYePaIU6AbFeUknMU3VYCegSt3jt44g+8Zi8FAzKhR8rR6QIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFMqr7AeV//gwLlR0vbEk+GggMgP1MB8GA1UdIwQY MBaAFDpIwnAXNc1dIxfRCsY9fy7GYYzgMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvT2tqQ2NCYzF6VjBqRjlFS3hqMV9Mc1poak9BLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lMi9lNzQ1OTUtZDY1Ny00YWI0LTgzMDkt MGQ1N2M5NDEwMTI3LzEveXF2c0I1WF8tREF1VkhTOXNTVDRhQ0F5QV9VLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9lMi9lNzQ1OTUtZDY1Ny00YWI0LTgzMDktMGQ1N2M5NDEwMTI3 LzEvT2tqQ2NCYzF6VjBqRjlFS3hqMV9Mc1poak9BLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAW8e1MA0G CSqGSIb3DQEBCwUAA4IBAQBWa1NFOFPE4tZ4y07CLxDuVb0jzaGxiLoU8+K4IxFk JQrAi0rywWqVcvxSoLUhHPbkYagFfk6m90zbvgUM05XjIiHI2u2/JuQBMflz94s/ p9AFMvUUEaPoHd5oguC2G96SM/Rc4UmN8ahKn91QzeB5vxWVLresJEnZL8s07UEP Yu4+7yQare3GCtMJpegAqGlRY2JdSOZI+vqJ1jGnVhs0PUu0Jn3GTiQkdVYJOWYj cR2oVMVx7f+PudjgZh6o0OhwISMTSCqxiv4euIgD3TazX9s9UfG0bXzaWPqR/YNi pQYAw4KC51moUznX1gAsz9+C/umPV20P0A6fgtA8v7tL -----END CERTIFICATE-----Generated at Mon Jan 26 03:07:49 2026 by rpki-client