This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/11/1a15fa-ace6-464d-8969-e4928180033c/1/YVsXJWPnPlqWMFeltxgBZhUCs4Q.roa File: YVsXJWPnPlqWMFeltxgBZhUCs4Q.roa (raw, json) Hash identifier: q9sjXMHf5vLLJ+Iss0xTQC2tfqQnUkneeNz0HcAGC9Q= Subject key identifier: 61:5B:17:25:63:E7:3E:5A:96:30:57:A5:B7:18:01:66:15:02:B3:84 Certificate issuer: /CN=4c1740cef9749dc2b0f5f88cdf1034da81d606dc Certificate serial: 019B7BA3B59337368EB8FF2B4CB742759C5F Authority key identifier: 4C:17:40:CE:F9:74:9D:C2:B0:F5:F8:8C:DF:10:34:DA:81:D6:06:DC Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TBdAzvl0ncKw9fiM3xA02oHWBtw.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/11/1a15fa-ace6-464d-8969-e4928180033c/1/YVsXJWPnPlqWMFeltxgBZhUCs4Q.roa Signing time: Thu 01 Jan 2026 22:18:05 +0000 ROA not before: Thu 01 Jan 2026 22:18:05 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 2877 IP address blocks: 194.50.105.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/11/1a15fa-ace6-464d-8969-e4928180033c/1/TBdAzvl0ncKw9fiM3xA02oHWBtw.crl rsync://rpki.ripe.net/repository/DEFAULT/11/1a15fa-ace6-464d-8969-e4928180033c/1/TBdAzvl0ncKw9fiM3xA02oHWBtw.mft rsync://rpki.ripe.net/repository/DEFAULT/TBdAzvl0ncKw9fiM3xA02oHWBtw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 03 Jan 2026 07:01:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7b:a3:b5:93:37:36:8e:b8:ff:2b:4c:b7:42:75:9c:5f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4c1740cef9749dc2b0f5f88cdf1034da81d606dc Validity Not Before: Jan 1 22:18:05 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=615b172563e73e5a963057a5b71801661502b384 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:d7:26:b2:6c:36:1c:26:76:73:52:d7:ba:8d: ce:85:ca:05:f4:be:55:ec:1e:ce:d7:21:b6:5c:11: 33:c2:ec:62:4a:25:cd:0a:df:57:91:41:49:7d:ad: 1f:f6:9e:c6:b3:9b:02:ff:29:24:97:06:4f:8c:e8: 81:24:8c:57:40:ff:cb:bc:9f:1d:e5:38:a3:fc:52: b0:d6:28:0e:ed:e1:f8:0c:e9:6d:9e:2b:b3:e5:80: b2:41:ef:fa:42:b4:8a:56:7a:65:45:f5:5c:52:16: c5:3e:03:83:bd:27:82:f6:02:75:56:35:10:66:97: 72:e7:7c:15:04:73:3a:de:4a:c4:ab:06:ac:c9:7a: 5d:00:bc:3d:de:d5:58:ad:3e:49:06:72:06:7b:07: f8:7b:c0:01:6c:16:34:05:43:33:4a:1f:62:61:07: 05:5e:6f:fc:bd:53:21:94:cc:36:ec:e0:57:f8:a1: a5:63:a6:94:93:f8:23:94:3f:d0:21:40:fa:4a:57: ef:06:6c:7b:f6:9c:c9:e9:a8:bc:fa:48:69:62:70: 48:f2:d4:ca:da:7b:3c:b0:d7:86:76:ed:fa:9a:f5: 0e:d6:a6:f5:47:7e:62:fd:ad:74:67:40:98:19:87: 2c:3a:09:31:e2:a9:b7:d1:23:40:c3:b8:b0:4a:7f: 55:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 61:5B:17:25:63:E7:3E:5A:96:30:57:A5:B7:18:01:66:15:02:B3:84 X509v3 Authority Key Identifier: keyid:4C:17:40:CE:F9:74:9D:C2:B0:F5:F8:8C:DF:10:34:DA:81:D6:06:DC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TBdAzvl0ncKw9fiM3xA02oHWBtw.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/11/1a15fa-ace6-464d-8969-e4928180033c/1/YVsXJWPnPlqWMFeltxgBZhUCs4Q.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/11/1a15fa-ace6-464d-8969-e4928180033c/1/TBdAzvl0ncKw9fiM3xA02oHWBtw.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 194.50.105.0/24 Signature Algorithm: sha256WithRSAEncryption 0c:8e:14:ed:d1:aa:30:ce:00:bb:e1:e0:50:1b:d3:e6:1e:40: fe:71:84:31:e3:7a:46:ff:0c:09:31:b3:5d:39:ea:0e:78:d4: 68:48:f4:2d:85:ff:91:ba:67:35:38:4b:9d:11:65:3c:47:3a: 66:47:40:2c:8b:e3:f3:81:aa:53:61:ed:eb:71:65:64:ce:7d: d3:0d:4c:0e:4a:7f:49:b4:16:c2:f6:43:d2:f1:b5:2e:50:0c: cb:ec:cc:1d:a1:72:70:f7:6a:ab:8d:36:a2:f7:4c:fa:5b:fa: e8:3b:c0:5f:e8:12:4e:13:5b:fe:5c:55:93:6b:fc:f3:6f:7b: 3d:90:0e:52:0b:a0:89:32:9a:2a:9e:56:96:40:66:91:ab:0f: ac:93:4b:94:9f:4f:88:80:23:1e:2a:63:d4:89:90:a1:b1:df: 18:66:bd:90:b3:20:78:9e:cd:35:55:e7:d9:ca:9f:8a:08:33: 9d:e3:e3:fc:53:89:0f:ec:73:c5:c2:45:23:c9:78:da:1e:b7: c2:40:59:b8:f9:42:6d:67:e6:c3:94:e3:14:f2:54:46:38:16: 30:b0:4e:f8:5a:a4:86:e0:5f:3d:33:24:68:84:56:17:a9:54: 22:3a:70:cc:41:6b:0d:7d:91:6c:94:0b:30:81:21:83:b4:ed: 19:54:59:89 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt7o7WTNzaOuP8rTLdCdZxfMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDRjMTc0MGNlZjk3NDlkYzJiMGY1Zjg4Y2RmMTAzNGRhODFk NjA2ZGMwHhcNMjYwMTAxMjIxODA1WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg2MTViMTcyNTYzZTczZTVhOTYzMDU3YTViNzE4MDE2NjE1MDJiMzg0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAztcmsmw2HCZ2c1LXuo3OhcoF9L5V 7B7O1yG2XBEzwuxiSiXNCt9XkUFJfa0f9p7Gs5sC/ykklwZPjOiBJIxXQP/LvJ8d 5Tij/FKw1igO7eH4DOltniuz5YCyQe/6QrSKVnplRfVcUhbFPgODvSeC9gJ1VjUQ Zpdy53wVBHM63krEqwasyXpdALw93tVYrT5JBnIGewf4e8ABbBY0BUMzSh9iYQcF Xm/8vVMhlMw27OBX+KGlY6aUk/gjlD/QIUD6SlfvBmx79pzJ6ai8+khpYnBI8tTK 2ns8sNeGdu36mvUO1qb1R35i/a10Z0CYGYcsOgkx4qm30SNAw7iwSn9VOQIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFGFbFyVj5z5aljBXpbcYAWYVArOEMB8GA1UdIwQY MBaAFEwXQM75dJ3CsPX4jN8QNNqB1gbcMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvVEJkQXp2bDBuY0t3OWZpTTN4QTAyb0hXQnR3LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xMS8xYTE1ZmEtYWNlNi00NjRkLTg5Njkt ZTQ5MjgxODAwMzNjLzEvWVZzWEpXUG5QbHFXTUZlbHR4Z0JaaFVDczRRLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xMS8xYTE1ZmEtYWNlNi00NjRkLTg5NjktZTQ5MjgxODAwMzNj LzEvVEJkQXp2bDBuY0t3OWZpTTN4QTAyb0hXQnR3LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAwjJpMA0G CSqGSIb3DQEBCwUAA4IBAQAMjhTt0aowzgC74eBQG9PmHkD+cYQx43pG/wwJMbNd OeoOeNRoSPQthf+Rumc1OEudEWU8RzpmR0Asi+PzgapTYe3rcWVkzn3TDUwOSn9J tBbC9kPS8bUuUAzL7MwdoXJw92qrjTai90z6W/roO8Bf6BJOE1v+XFWTa/zzb3s9 kA5SC6CJMpoqnlaWQGaRqw+sk0uUn0+IgCMeKmPUiZChsd8YZr2QsyB4ns01VefZ yp+KCDOd4+P8U4kP7HPFwkUjyXjaHrfCQFm4+UJtZ+bDlOMU8lRGOBYwsE74WqSG 4F89MyRohFYXqVQiOnDMQWsNfZFslAswgSGDtO0ZVFmJ -----END CERTIFICATE-----Generated at Fri Jan 2 15:04:09 2026 by rpki-client