This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/eb/1ff44f-51d6-4545-ad36-b4b8db20b1fb/1/ybsYcOgOZv1ABEonD0PzDCghMj8.roa File: ybsYcOgOZv1ABEonD0PzDCghMj8.roa (raw, json) Hash identifier: LixwMxENe+K1wuphhA4rj5cTn6Oj+8DwO9HYLQrFUCI= Subject key identifier: C9:BB:18:70:E8:0E:66:FD:40:04:4A:27:0F:43:F3:0C:28:21:32:3F Certificate issuer: /CN=ee1c3472c25acd347364b7d6312618aa3530cb63 Certificate serial: 019B7AC8562370A5F05FF5169367F1B856D0 Authority key identifier: EE:1C:34:72:C2:5A:CD:34:73:64:B7:D6:31:26:18:AA:35:30:CB:63 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/7hw0csJazTRzZLfWMSYYqjUwy2M.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/eb/1ff44f-51d6-4545-ad36-b4b8db20b1fb/1/ybsYcOgOZv1ABEonD0PzDCghMj8.roa Signing time: Thu 01 Jan 2026 18:18:28 +0000 ROA not before: Thu 01 Jan 2026 18:18:28 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 45014 IP address blocks: 103.84.214.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/eb/1ff44f-51d6-4545-ad36-b4b8db20b1fb/1/7hw0csJazTRzZLfWMSYYqjUwy2M.crl rsync://rpki.ripe.net/repository/DEFAULT/eb/1ff44f-51d6-4545-ad36-b4b8db20b1fb/1/7hw0csJazTRzZLfWMSYYqjUwy2M.mft rsync://rpki.ripe.net/repository/DEFAULT/7hw0csJazTRzZLfWMSYYqjUwy2M.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 07:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7a:c8:56:23:70:a5:f0:5f:f5:16:93:67:f1:b8:56:d0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ee1c3472c25acd347364b7d6312618aa3530cb63 Validity Not Before: Jan 1 18:18:28 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=c9bb1870e80e66fd40044a270f43f30c2821323f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9a:4d:ef:c0:91:3f:f4:fc:5a:af:0e:88:2c:53: 24:1c:db:5d:2b:9c:14:e1:4b:9b:65:79:e3:fc:ec: 46:89:a8:42:00:43:0b:58:42:db:54:98:5e:ff:06: 45:8f:f3:4c:af:81:be:8a:ab:78:a5:ad:7a:14:b8: 4b:63:83:56:37:9b:ee:a4:fd:53:11:08:a6:dd:c0: cc:91:d4:49:8c:a8:97:76:3e:d7:b3:89:d1:18:35: 59:63:3f:4a:c7:66:2b:87:75:b4:46:6b:12:7f:0a: 77:9a:7f:86:fc:f2:3d:6b:ef:02:85:cb:a3:23:36: c3:89:08:4c:7f:0a:cf:41:19:7d:82:27:7d:5b:35: 6f:0d:9d:f2:64:dd:5a:33:d4:e6:98:b3:0a:59:5b: 8a:c7:40:75:19:35:7d:ae:4b:55:30:26:18:5a:1a: 6e:1a:6e:c6:71:d1:55:7c:06:9f:7a:85:34:14:83: d1:3f:b7:fa:81:2c:52:b3:a9:ee:24:3c:97:96:78: 73:6a:7e:73:65:2a:03:40:f0:d6:69:d0:29:02:db: 54:ee:00:eb:77:16:38:fe:5e:b5:6c:59:77:7d:99: 7c:2f:2f:42:d2:39:03:c6:9a:ce:7f:49:45:69:14: ff:54:74:12:75:db:40:8d:e4:2f:36:99:04:8d:3a: 77:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C9:BB:18:70:E8:0E:66:FD:40:04:4A:27:0F:43:F3:0C:28:21:32:3F X509v3 Authority Key Identifier: keyid:EE:1C:34:72:C2:5A:CD:34:73:64:B7:D6:31:26:18:AA:35:30:CB:63 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/7hw0csJazTRzZLfWMSYYqjUwy2M.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/eb/1ff44f-51d6-4545-ad36-b4b8db20b1fb/1/ybsYcOgOZv1ABEonD0PzDCghMj8.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/eb/1ff44f-51d6-4545-ad36-b4b8db20b1fb/1/7hw0csJazTRzZLfWMSYYqjUwy2M.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.84.214.0/24 Signature Algorithm: sha256WithRSAEncryption 8f:5e:db:03:d1:5a:65:f4:8d:e9:dc:5f:e9:b2:b3:6c:58:8b: 94:2b:34:ef:23:90:49:c7:a0:a8:5e:f1:65:e2:fc:61:ff:09: dd:a2:91:78:ba:81:29:08:b3:56:60:a0:90:f4:93:ff:d0:fc: 90:30:cf:5a:40:37:c7:a3:99:5e:dd:db:40:1f:2f:d9:25:10: b2:c9:3c:f9:a7:80:74:67:14:d9:4f:4e:33:f5:60:e2:dc:58: 56:c1:14:0c:45:5e:3d:a9:42:dd:3b:c4:12:61:aa:8e:3a:9d: 8a:2e:7a:ec:8f:65:8a:b3:f6:b9:2d:31:ea:17:14:8f:d0:83: 36:8b:01:88:2f:5f:22:55:45:0c:e4:df:bc:44:1b:cd:fe:77: 12:31:01:25:29:50:ec:e5:04:3b:8d:f6:3d:6a:4b:51:f5:ad: 37:56:95:48:06:37:eb:8b:32:86:8d:b4:30:f7:44:7d:ef:35: 9a:5f:d9:6a:85:57:48:09:e8:f2:17:6d:50:aa:13:90:e2:6d: df:1b:5e:ec:59:7a:5f:a1:17:52:f0:42:d4:8d:09:4c:88:e8: a6:93:c5:bc:f2:1c:24:25:c0:17:ba:f0:7e:d8:e7:fc:6f:6f: ce:6f:77:07:bb:16:99:7a:44:a9:1b:ad:1c:f1:06:8a:46:30: 78:59:e2:32 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt6yFYjcKXwX/UWk2fxuFbQMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGVlMWMzNDcyYzI1YWNkMzQ3MzY0YjdkNjMxMjYxOGFhMzUz MGNiNjMwHhcNMjYwMTAxMTgxODI4WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhjOWJiMTg3MGU4MGU2NmZkNDAwNDRhMjcwZjQzZjMwYzI4MjEzMjNmMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmk3vwJE/9Pxarw6ILFMkHNtdK5wU 4UubZXnj/OxGiahCAEMLWELbVJhe/wZFj/NMr4G+iqt4pa16FLhLY4NWN5vupP1T EQim3cDMkdRJjKiXdj7Xs4nRGDVZYz9Kx2Yrh3W0RmsSfwp3mn+G/PI9a+8Chcuj IzbDiQhMfwrPQRl9gid9WzVvDZ3yZN1aM9TmmLMKWVuKx0B1GTV9rktVMCYYWhpu Gm7GcdFVfAafeoU0FIPRP7f6gSxSs6nuJDyXlnhzan5zZSoDQPDWadApAttU7gDr dxY4/l61bFl3fZl8Ly9C0jkDxprOf0lFaRT/VHQSddtAjeQvNpkEjTp3awIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFMm7GHDoDmb9QARKJw9D8wwoITI/MB8GA1UdIwQY MBaAFO4cNHLCWs00c2S31jEmGKo1MMtjMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvN2h3MGNzSmF6VFJ6WkxmV01TWVlxalV3eTJNLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lYi8xZmY0NGYtNTFkNi00NTQ1LWFkMzYt YjRiOGRiMjBiMWZiLzEveWJzWWNPZ09adjFBQkVvbkQwUHpEQ2doTWo4LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9lYi8xZmY0NGYtNTFkNi00NTQ1LWFkMzYtYjRiOGRiMjBiMWZi LzEvN2h3MGNzSmF6VFJ6WkxmV01TWVlxalV3eTJNLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ1TWMA0G CSqGSIb3DQEBCwUAA4IBAQCPXtsD0Vpl9I3p3F/psrNsWIuUKzTvI5BJx6CoXvFl 4vxh/wndopF4uoEpCLNWYKCQ9JP/0PyQMM9aQDfHo5le3dtAHy/ZJRCyyTz5p4B0 ZxTZT04z9WDi3FhWwRQMRV49qULdO8QSYaqOOp2KLnrsj2WKs/a5LTHqFxSP0IM2 iwGIL18iVUUM5N+8RBvN/ncSMQElKVDs5QQ7jfY9aktR9a03VpVIBjfrizKGjbQw 90R97zWaX9lqhVdICejyF21QqhOQ4m3fG17sWXpfoRdS8ELUjQlMiOimk8W88hwk JcAXuvB+2Of8b2/Ob3cHuxaZekSpG60c8QaKRjB4WeIy -----END CERTIFICATE-----Generated at Sun Jan 25 12:18:06 2026 by rpki-client