This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0e/b4d9d7-6703-4b06-b3ee-07510381420a/1/YM3wQTi2x2EudGBPrzItpE43E2c.roa File: YM3wQTi2x2EudGBPrzItpE43E2c.roa (raw, json) Hash identifier: Sd7kskZmFtQJRKtp/YHI0+nJKqtHTzL5Y9EeusM164Y= Subject key identifier: 60:CD:F0:41:38:B6:C7:61:2E:74:60:4F:AF:32:2D:A4:4E:37:13:67 Certificate issuer: /CN=f651dc9875e35ec580c571fd0416f4d5f5d4158a Certificate serial: 019B7B36F8CDC30255FB88F883D02CCF7E6F Authority key identifier: F6:51:DC:98:75:E3:5E:C5:80:C5:71:FD:04:16:F4:D5:F5:D4:15:8A Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/9lHcmHXjXsWAxXH9BBb01fXUFYo.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0e/b4d9d7-6703-4b06-b3ee-07510381420a/1/YM3wQTi2x2EudGBPrzItpE43E2c.roa Signing time: Thu 01 Jan 2026 20:19:18 +0000 ROA not before: Thu 01 Jan 2026 20:19:18 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 211373 IP address blocks: 193.30.103.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0e/b4d9d7-6703-4b06-b3ee-07510381420a/1/9lHcmHXjXsWAxXH9BBb01fXUFYo.crl rsync://rpki.ripe.net/repository/DEFAULT/0e/b4d9d7-6703-4b06-b3ee-07510381420a/1/9lHcmHXjXsWAxXH9BBb01fXUFYo.mft rsync://rpki.ripe.net/repository/DEFAULT/9lHcmHXjXsWAxXH9BBb01fXUFYo.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 02:00:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7b:36:f8:cd:c3:02:55:fb:88:f8:83:d0:2c:cf:7e:6f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=f651dc9875e35ec580c571fd0416f4d5f5d4158a Validity Not Before: Jan 1 20:19:18 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=60cdf04138b6c7612e74604faf322da44e371367 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:99:3b:aa:28:04:56:98:a3:1b:b4:56:6c:62: 98:5c:28:60:d8:aa:7b:11:28:5a:86:3d:74:ee:c3: fa:78:93:fa:06:a4:43:e0:44:8a:08:e5:03:37:e7: 59:7a:a8:2d:d2:3f:3e:b8:f8:c3:ea:55:37:0c:89: 65:4e:b7:fb:fb:9e:54:23:76:18:38:fc:52:c7:fd: b2:f9:61:e0:d8:5b:87:0a:25:e0:e2:71:e2:cb:ae: 96:8d:1a:76:f5:97:0c:c1:b8:14:c7:5a:86:83:30: 6b:08:d3:3b:20:45:f5:2b:bc:4b:c5:bd:88:53:dd: d1:01:17:89:b7:c4:b2:6c:12:35:35:7f:56:8c:0e: 65:2d:64:27:bf:2c:70:99:37:f3:7b:1c:c4:73:7d: 11:39:82:b7:bb:bc:ae:74:62:c7:d7:64:2d:b8:00: cb:ac:98:d7:59:4c:3e:4b:4c:3a:02:21:a8:a0:59: cb:6f:e9:67:4d:59:7a:08:c4:ea:26:4d:10:4e:da: 83:c9:94:36:2e:86:8f:ae:8c:f4:1c:5f:ab:1a:fd: ca:39:a3:cf:d2:f4:8a:c7:a0:67:46:4d:1d:f5:53: a8:c3:c4:0c:5f:70:02:c3:77:86:33:f3:3f:6f:73: b5:c6:56:d7:e2:d3:b7:e1:a5:e6:d8:e0:8d:c6:1a: 1b:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 60:CD:F0:41:38:B6:C7:61:2E:74:60:4F:AF:32:2D:A4:4E:37:13:67 X509v3 Authority Key Identifier: keyid:F6:51:DC:98:75:E3:5E:C5:80:C5:71:FD:04:16:F4:D5:F5:D4:15:8A X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/9lHcmHXjXsWAxXH9BBb01fXUFYo.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0e/b4d9d7-6703-4b06-b3ee-07510381420a/1/YM3wQTi2x2EudGBPrzItpE43E2c.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/0e/b4d9d7-6703-4b06-b3ee-07510381420a/1/9lHcmHXjXsWAxXH9BBb01fXUFYo.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 193.30.103.0/24 Signature Algorithm: sha256WithRSAEncryption 47:ad:22:4f:58:e6:1c:b7:a3:e0:fb:d9:03:e1:d0:2e:95:0a: 55:19:82:cd:8d:50:3c:d2:b6:1d:c0:5c:ef:52:23:f0:89:44: 05:b8:5c:83:b7:e4:93:2c:b0:14:0f:72:af:71:15:89:f2:32: 39:9c:59:90:17:ec:c0:3d:a6:25:3f:ee:4c:09:98:c1:fa:4a: 4f:c7:5d:e9:03:b0:0a:fa:0d:88:1e:9b:f4:75:80:9a:e6:17: 3d:03:ba:6b:42:4f:90:63:9c:02:61:c5:39:79:70:f2:bb:db: 50:e1:22:7f:b9:ee:e0:39:f5:5b:29:17:59:d5:a0:a0:51:41: 9b:48:be:e7:0b:09:f9:36:e8:ef:99:e1:e1:66:45:6e:af:08: 3c:90:a4:3f:a7:68:4e:ff:90:55:b6:4a:d5:d2:f4:b3:19:3a: 0d:1a:71:8e:fb:ab:d7:b7:32:66:47:15:a5:2f:39:95:ab:9e: 16:71:7a:b9:d8:38:e1:e2:de:83:ca:07:ad:1b:92:1d:d7:ee: 78:92:23:63:51:d3:80:14:83:b3:06:2f:f1:91:6c:6d:8f:d5: fc:1a:6d:6e:07:83:d2:ac:fb:52:00:90:d5:48:b7:f3:11:91: 30:d1:ec:23:10:3f:dc:1e:89:d0:0b:b4:0f:e8:cf:3d:f4:1b: 40:80:f4:46 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt7NvjNwwJV+4j4g9Asz35vMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGY2NTFkYzk4NzVlMzVlYzU4MGM1NzFmZDA0MTZmNGQ1ZjVk NDE1OGEwHhcNMjYwMTAxMjAxOTE4WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg2MGNkZjA0MTM4YjZjNzYxMmU3NDYwNGZhZjMyMmRhNDRlMzcxMzY3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAv5k7qigEVpijG7RWbGKYXChg2Kp7 EShahj107sP6eJP6BqRD4ESKCOUDN+dZeqgt0j8+uPjD6lU3DIllTrf7+55UI3YY OPxSx/2y+WHg2FuHCiXg4nHiy66WjRp29ZcMwbgUx1qGgzBrCNM7IEX1K7xLxb2I U93RAReJt8SybBI1NX9WjA5lLWQnvyxwmTfzexzEc30ROYK3u7yudGLH12QtuADL rJjXWUw+S0w6AiGooFnLb+lnTVl6CMTqJk0QTtqDyZQ2LoaProz0HF+rGv3KOaPP 0vSKx6BnRk0d9VOow8QMX3ACw3eGM/M/b3O1xlbX4tO34aXm2OCNxhobVwIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFGDN8EE4tsdhLnRgT68yLaRONxNnMB8GA1UdIwQY MBaAFPZR3Jh1417FgMVx/QQW9NX11BWKMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvOWxIY21IWGpYc1dBeFhIOUJCYjAxZlhVRllvLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wZS9iNGQ5ZDctNjcwMy00YjA2LWIzZWUt MDc1MTAzODE0MjBhLzEvWU0zd1FUaTJ4MkV1ZEdCUHJ6SXRwRTQzRTJjLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wZS9iNGQ5ZDctNjcwMy00YjA2LWIzZWUtMDc1MTAzODE0MjBh LzEvOWxIY21IWGpYc1dBeFhIOUJCYjAxZlhVRllvLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAwR5nMA0G CSqGSIb3DQEBCwUAA4IBAQBHrSJPWOYct6Pg+9kD4dAulQpVGYLNjVA80rYdwFzv UiPwiUQFuFyDt+STLLAUD3KvcRWJ8jI5nFmQF+zAPaYlP+5MCZjB+kpPx13pA7AK +g2IHpv0dYCa5hc9A7prQk+QY5wCYcU5eXDyu9tQ4SJ/ue7gOfVbKRdZ1aCgUUGb SL7nCwn5NujvmeHhZkVurwg8kKQ/p2hO/5BVtkrV0vSzGToNGnGO+6vXtzJmRxWl LzmVq54WcXq52Djh4t6DygetG5Id1+54kiNjUdOAFIOzBi/xkWxtj9X8Gm1uB4PS rPtSAJDVSLfzEZEw0ewjED/cHonQC7QP6M899BtAgPRG -----END CERTIFICATE-----Generated at Sun Jan 25 12:17:28 2026 by rpki-client