This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5e/1425a6-1863-42a0-8323-3c72967ff7c1/1/yt_W34qE1gacCIWkMgYeBjQGjjM.roa File: yt_W34qE1gacCIWkMgYeBjQGjjM.roa (raw, json) Hash identifier: uA38rCETd1LT3A08agddmLYBBE8doq+uuawTYwQT0bg= Subject key identifier: CA:DF:D6:DF:8A:84:D6:06:9C:08:85:A4:32:06:1E:06:34:06:8E:33 Certificate issuer: /CN=564ead38096303bc4b6a1f2b02e1b91be4849146 Certificate serial: 019B76EAE7AEB2C202AB5F7EB8097E6F9162 Authority key identifier: 56:4E:AD:38:09:63:03:BC:4B:6A:1F:2B:02:E1:B9:1B:E4:84:91:46 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Vk6tOAljA7xLah8rAuG5G-SEkUY.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5e/1425a6-1863-42a0-8323-3c72967ff7c1/1/yt_W34qE1gacCIWkMgYeBjQGjjM.roa Signing time: Thu 01 Jan 2026 00:17:44 +0000 ROA not before: Thu 01 Jan 2026 00:17:44 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 203416 IP address blocks: 91.244.192.0/22 maxlen: 22 185.131.8.0/24 maxlen: 24 185.131.9.0/24 maxlen: 24 185.131.10.0/23 maxlen: 23 2a06:dd40::/29 maxlen: 29 2a06:dd40::/48 maxlen: 48 2a06:dd40:1::/48 maxlen: 48 2a06:dd40:2::/48 maxlen: 48 2a06:dd40:3::/48 maxlen: 48 2a06:dd40:5600::/48 maxlen: 48 2a06:dd40:5601::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5e/1425a6-1863-42a0-8323-3c72967ff7c1/1/Vk6tOAljA7xLah8rAuG5G-SEkUY.crl rsync://rpki.ripe.net/repository/DEFAULT/5e/1425a6-1863-42a0-8323-3c72967ff7c1/1/Vk6tOAljA7xLah8rAuG5G-SEkUY.mft rsync://rpki.ripe.net/repository/DEFAULT/Vk6tOAljA7xLah8rAuG5G-SEkUY.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 02 Jan 2026 00:18:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:76:ea:e7:ae:b2:c2:02:ab:5f:7e:b8:09:7e:6f:91:62 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=564ead38096303bc4b6a1f2b02e1b91be4849146 Validity Not Before: Jan 1 00:17:44 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=cadfd6df8a84d6069c0885a432061e0634068e33 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:c1:62:45:00:03:24:82:03:ba:f8:8f:37:19: ef:3c:18:d3:e4:8a:46:8a:65:d9:49:f9:cc:56:72: 3f:ff:4b:f0:5d:4f:ec:70:63:0d:88:d0:f4:9e:d7: d5:92:75:95:9e:2b:09:be:d8:e3:7f:b0:13:3d:c5: 1d:a3:8e:91:87:55:5d:f6:96:fb:21:e9:5b:69:06: 2a:5a:78:40:6f:df:c8:72:80:6c:e6:81:34:29:b0: a0:85:7d:7f:25:09:5f:fa:76:59:e0:e7:ea:e6:cc: 6b:03:09:aa:27:a5:6d:f7:73:44:a0:70:59:36:8a: a7:e4:80:45:21:d0:d2:33:24:b4:e7:f8:ba:ff:c5: e2:43:f7:41:20:ee:6d:2c:4b:ef:cb:72:8a:59:56: 2e:0f:a6:7c:bb:39:b4:24:87:39:6b:e1:83:26:d8: 01:74:b5:70:b0:3b:40:23:c5:7b:7e:0a:6a:ef:44: f2:cd:80:43:58:d6:56:6e:ec:0d:ba:c8:e3:78:24: c0:f5:3e:7d:09:11:9a:56:27:69:ce:63:25:16:94: c3:5e:8e:de:77:27:9d:10:9e:07:00:34:4f:d3:9f: 2f:cb:f9:50:bf:e2:a7:21:79:53:6a:ff:f6:2b:6f: 67:9a:75:7c:f1:05:84:0a:94:b8:09:cc:bb:1b:8a: cd:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CA:DF:D6:DF:8A:84:D6:06:9C:08:85:A4:32:06:1E:06:34:06:8E:33 X509v3 Authority Key Identifier: keyid:56:4E:AD:38:09:63:03:BC:4B:6A:1F:2B:02:E1:B9:1B:E4:84:91:46 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Vk6tOAljA7xLah8rAuG5G-SEkUY.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/1425a6-1863-42a0-8323-3c72967ff7c1/1/yt_W34qE1gacCIWkMgYeBjQGjjM.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/1425a6-1863-42a0-8323-3c72967ff7c1/1/Vk6tOAljA7xLah8rAuG5G-SEkUY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 91.244.192.0/22 185.131.8.0/22 IPv6: 2a06:dd40::/29 Signature Algorithm: sha256WithRSAEncryption 2d:ab:bb:89:fb:36:06:b9:9f:24:3a:28:99:81:d8:8f:e0:a8: 5c:70:67:0f:99:eb:91:5e:2f:f5:8f:b1:0a:4a:38:c9:d6:7b: d9:db:77:69:35:fc:98:cb:f3:2c:a5:fd:9c:b8:55:d7:dc:5b: a6:6f:90:b9:3e:82:d9:3e:d9:3f:05:4a:38:82:59:f2:05:8f: 93:83:db:28:26:1d:49:4a:52:35:04:cc:a8:d4:7b:8d:72:d4: 45:01:47:3e:02:22:c7:e4:7f:a5:45:ca:e8:b3:5a:ca:86:2d: 0e:89:2c:c4:94:23:d5:cc:44:21:67:f7:52:8b:a1:e6:c2:db: 54:e6:67:aa:84:be:24:ed:ed:af:52:87:cd:d7:34:25:c6:1b: cf:59:db:d3:07:2d:11:55:be:18:11:2a:c2:e2:b0:b1:3b:93: 3d:c7:17:66:69:1b:cf:6f:e7:c1:99:97:c7:b4:59:9c:9c:72: 84:70:2d:69:fd:be:63:da:e9:a5:89:96:90:b8:e5:97:74:66: 12:e4:88:d6:4b:7a:a1:0d:64:99:96:76:b0:ac:05:db:c0:cb: 94:0a:29:c1:39:cc:d2:e8:98:9a:9b:5a:36:d3:62:6b:b1:f2: 71:3c:c9:7c:06:91:a5:3b:21:dc:db:0e:ce:5f:39:d5:98:63: a9:ec:2a:0c -----BEGIN CERTIFICATE----- MIIFEjCCA/qgAwIBAgISAZt26ueussICq19+uAl+b5FiMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDU2NGVhZDM4MDk2MzAzYmM0YjZhMWYyYjAyZTFiOTFiZTQ4 NDkxNDYwHhcNMjYwMTAxMDAxNzQ0WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhjYWRmZDZkZjhhODRkNjA2OWMwODg1YTQzMjA2MWUwNjM0MDY4ZTMzMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAw8FiRQADJIIDuviPNxnvPBjT5IpG imXZSfnMVnI//0vwXU/scGMNiND0ntfVknWVnisJvtjjf7ATPcUdo46Rh1Vd9pb7 IelbaQYqWnhAb9/IcoBs5oE0KbCghX1/JQlf+nZZ4Ofq5sxrAwmqJ6Vt93NEoHBZ Noqn5IBFIdDSMyS05/i6/8XiQ/dBIO5tLEvvy3KKWVYuD6Z8uzm0JIc5a+GDJtgB dLVwsDtAI8V7fgpq70TyzYBDWNZWbuwNusjjeCTA9T59CRGaVidpzmMlFpTDXo7e dyedEJ4HADRP058vy/lQv+KnIXlTav/2K29nmnV88QWECpS4Ccy7G4rNCwIDAQAB o4ICHjCCAhowHQYDVR0OBBYEFMrf1t+KhNYGnAiFpDIGHgY0Bo4zMB8GA1UdIwQY MBaAFFZOrTgJYwO8S2ofKwLhuRvkhJFGMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvVms2dE9BbGpBN3hMYWg4ckF1RzVHLVNFa1VZLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81ZS8xNDI1YTYtMTg2My00MmEwLTgzMjMt M2M3Mjk2N2ZmN2MxLzEveXRfVzM0cUUxZ2FjQ0lXa01nWWVCalFHampNLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81ZS8xNDI1YTYtMTg2My00MmEwLTgzMjMtM2M3Mjk2N2ZmN2Mx LzEvVms2dE9BbGpBN3hMYWg4ckF1RzVHLVNFa1VZLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMDQGCCsGAQUFBwEHAQH/BCUwIzASBAIAATAMAwQCW/TAAwQC uYMIMA0EAgACMAcDBQMqBt1AMA0GCSqGSIb3DQEBCwUAA4IBAQAtq7uJ+zYGuZ8k OiiZgdiP4KhccGcPmeuRXi/1j7EKSjjJ1nvZ23dpNfyYy/Mspf2cuFXX3Fumb5C5 PoLZPtk/BUo4glnyBY+Tg9soJh1JSlI1BMyo1HuNctRFAUc+AiLH5H+lRcros1rK hi0OiSzElCPVzEQhZ/dSi6HmwttU5meqhL4k7e2vUofN1zQlxhvPWdvTBy0RVb4Y ESrC4rCxO5M9xxdmaRvPb+fBmZfHtFmcnHKEcC1p/b5j2umliZaQuOWXdGYS5IjW S3qhDWSZlnawrAXbwMuUCinBOczS6Jiam1o202JrsfJxPMl8BpGlOyHc2w7OXznV mGOp7CoM -----END CERTIFICATE-----Generated at Thu Jan 1 09:05:19 2026 by rpki-client