This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ef/092570-512a-44fa-a4fe-dbca8c31ebc8/1/YFcnRl_M05t459VMCerZuYb9XrE.roa File: YFcnRl_M05t459VMCerZuYb9XrE.roa (raw, json) Hash identifier: 5ScuBPIRAl8lb3NflfakLxZuKrrPxH5eDtW2uHK/6TE= Subject key identifier: 60:57:27:46:5F:CC:D3:9B:78:E7:D5:4C:09:EA:D9:B9:86:FD:5E:B1 Certificate issuer: /CN=bfd09a87743817c56f8088007a5746eb69ff2e30 Certificate serial: 019B7AC93B294821B602E86581E47D762C2F Authority key identifier: BF:D0:9A:87:74:38:17:C5:6F:80:88:00:7A:57:46:EB:69:FF:2E:30 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/v9Cah3Q4F8VvgIgAeldG62n_LjA.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ef/092570-512a-44fa-a4fe-dbca8c31ebc8/1/YFcnRl_M05t459VMCerZuYb9XrE.roa Signing time: Thu 01 Jan 2026 18:19:26 +0000 ROA not before: Thu 01 Jan 2026 18:19:26 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 5602 IP address blocks: 185.82.224.0/22 maxlen: 22 2a05:9540::/29 maxlen: 29 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ef/092570-512a-44fa-a4fe-dbca8c31ebc8/1/v9Cah3Q4F8VvgIgAeldG62n_LjA.crl rsync://rpki.ripe.net/repository/DEFAULT/ef/092570-512a-44fa-a4fe-dbca8c31ebc8/1/v9Cah3Q4F8VvgIgAeldG62n_LjA.mft rsync://rpki.ripe.net/repository/DEFAULT/v9Cah3Q4F8VvgIgAeldG62n_LjA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 13:21:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7a:c9:3b:29:48:21:b6:02:e8:65:81:e4:7d:76:2c:2f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=bfd09a87743817c56f8088007a5746eb69ff2e30 Validity Not Before: Jan 1 18:19:26 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=605727465fccd39b78e7d54c09ead9b986fd5eb1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:95:1c:6d:d7:67:4f:49:32:76:60:64:fd:97: 7c:7c:51:d3:45:ec:f5:38:25:1e:37:ff:38:31:f5: bf:d4:9d:f8:96:d2:5f:c4:34:5f:83:e7:61:ae:1c: 1d:e1:0f:79:7d:2b:eb:f1:63:0f:c2:5c:b6:99:64: e3:e1:ea:26:d4:7c:7a:8d:28:43:17:3d:76:a3:96: 90:10:06:3b:38:c2:f6:5e:2c:a5:58:bb:de:37:f5: 7e:36:7e:06:c6:45:30:08:07:fe:46:bb:48:71:04: d3:34:49:61:81:eb:4c:29:b9:27:e0:22:e7:94:85: ff:d6:9f:f4:05:37:2f:aa:b0:2e:96:0c:18:01:e8: 5b:2c:4d:25:8e:a4:13:3f:bf:51:7f:44:57:3d:e0: 59:b7:da:f8:8b:a1:34:98:d8:38:c7:fe:12:57:0f: 3f:e1:35:6a:38:ec:8e:e3:72:89:ee:4d:d4:e8:44: 61:c1:7f:d1:3c:a7:99:6c:e3:31:42:4d:1c:86:d1: 69:95:d3:c4:54:af:75:b9:fb:9c:d1:f8:49:5e:e8: b4:10:fd:77:c1:ea:dc:6e:eb:40:c8:96:f6:31:17: 66:2e:23:d8:d8:f3:40:48:b5:79:34:17:99:dd:01: 58:8c:65:13:aa:70:77:12:b8:6d:a9:42:9b:19:e5: 27:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 60:57:27:46:5F:CC:D3:9B:78:E7:D5:4C:09:EA:D9:B9:86:FD:5E:B1 X509v3 Authority Key Identifier: keyid:BF:D0:9A:87:74:38:17:C5:6F:80:88:00:7A:57:46:EB:69:FF:2E:30 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/v9Cah3Q4F8VvgIgAeldG62n_LjA.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ef/092570-512a-44fa-a4fe-dbca8c31ebc8/1/YFcnRl_M05t459VMCerZuYb9XrE.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/ef/092570-512a-44fa-a4fe-dbca8c31ebc8/1/v9Cah3Q4F8VvgIgAeldG62n_LjA.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.82.224.0/22 IPv6: 2a05:9540::/29 Signature Algorithm: sha256WithRSAEncryption 94:1c:92:1a:c4:7f:01:81:45:90:eb:e3:2b:0c:0f:02:0d:6a: e1:20:83:14:fb:14:c2:69:5c:1f:fd:b1:be:93:fa:63:91:3a: 05:b9:b9:b5:0d:4a:cb:14:79:fc:01:62:f3:84:52:c0:f2:95: 1f:bb:70:50:6a:0f:18:7d:62:ea:46:fb:c9:d4:1e:86:18:37: c8:63:0b:de:16:ee:c4:89:25:05:2c:cb:41:07:cd:47:62:9e: 0b:d9:41:78:32:4a:bd:06:c5:d7:44:7b:3d:b9:94:e2:18:8b: e5:30:e1:6b:12:73:0b:57:81:82:02:df:18:50:f6:cd:6e:b3: e6:1d:99:c5:ef:8e:62:64:65:11:cf:b4:23:90:38:3d:78:f5: 0a:93:15:63:13:8f:35:5d:42:b6:79:10:e5:46:db:9d:b9:64: 40:2c:ec:cd:ad:7e:fa:63:f3:13:af:00:50:94:eb:01:72:48: 36:34:33:79:2c:e5:c5:8d:c0:24:bb:19:c8:71:7c:43:7f:b2: c6:b6:8d:0f:af:0a:5f:d0:6a:b1:76:41:88:ad:95:7d:16:aa: 5a:1b:28:ab:fc:0b:b9:f4:97:09:9c:64:32:40:1c:eb:64:ee: bb:e0:d7:8d:c5:e8:ee:6a:78:fd:52:d9:e8:bf:62:99:75:24: 27:ae:af:97 -----BEGIN CERTIFICATE----- MIIFDDCCA/SgAwIBAgISAZt6yTspSCG2AuhlgeR9diwvMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGJmZDA5YTg3NzQzODE3YzU2ZjgwODgwMDdhNTc0NmViNjlm ZjJlMzAwHhcNMjYwMTAxMTgxOTI2WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg2MDU3Mjc0NjVmY2NkMzliNzhlN2Q1NGMwOWVhZDliOTg2ZmQ1ZWIxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvJUcbddnT0kydmBk/Zd8fFHTRez1 OCUeN/84MfW/1J34ltJfxDRfg+dhrhwd4Q95fSvr8WMPwly2mWTj4eom1Hx6jShD Fz12o5aQEAY7OML2XiylWLveN/V+Nn4GxkUwCAf+RrtIcQTTNElhgetMKbkn4CLn lIX/1p/0BTcvqrAulgwYAehbLE0ljqQTP79Rf0RXPeBZt9r4i6E0mNg4x/4SVw8/ 4TVqOOyO43KJ7k3U6ERhwX/RPKeZbOMxQk0chtFpldPEVK91ufuc0fhJXui0EP13 wercbutAyJb2MRdmLiPY2PNASLV5NBeZ3QFYjGUTqnB3ErhtqUKbGeUntwIDAQAB o4ICGDCCAhQwHQYDVR0OBBYEFGBXJ0ZfzNObeOfVTAnq2bmG/V6xMB8GA1UdIwQY MBaAFL/Qmod0OBfFb4CIAHpXRutp/y4wMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvdjlDYWgzUTRGOFZ2Z0lnQWVsZEc2Mm5fTGpBLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lZi8wOTI1NzAtNTEyYS00NGZhLWE0ZmUt ZGJjYThjMzFlYmM4LzEvWUZjblJsX00wNXQ0NTlWTUNlclp1WWI5WHJFLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9lZi8wOTI1NzAtNTEyYS00NGZhLWE0ZmUtZGJjYThjMzFlYmM4 LzEvdjlDYWgzUTRGOFZ2Z0lnQWVsZEc2Mm5fTGpBLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMC4GCCsGAQUFBwEHAQH/BB8wHTAMBAIAATAGAwQCuVLgMA0E AgACMAcDBQMqBZVAMA0GCSqGSIb3DQEBCwUAA4IBAQCUHJIaxH8BgUWQ6+MrDA8C DWrhIIMU+xTCaVwf/bG+k/pjkToFubm1DUrLFHn8AWLzhFLA8pUfu3BQag8YfWLq RvvJ1B6GGDfIYwveFu7EiSUFLMtBB81HYp4L2UF4Mkq9BsXXRHs9uZTiGIvlMOFr EnMLV4GCAt8YUPbNbrPmHZnF745iZGURz7QjkDg9ePUKkxVjE481XUK2eRDlRtud uWRALOzNrX76Y/MTrwBQlOsBckg2NDN5LOXFjcAkuxnIcXxDf7LGto0Prwpf0Gqx dkGIrZV9FqpaGyir/Au59JcJnGQyQBzrZO674NeNxejuanj9Utnov2KZdSQnrq+X -----END CERTIFICATE-----Generated at Sun Jan 25 21:03:10 2026 by rpki-client