This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/24/735e42-c608-46b6-8f70-f23f66f8d242/1/Y8T6MQ3N6EL6A9u7REeJi88lYjc.roa File: Y8T6MQ3N6EL6A9u7REeJi88lYjc.roa (raw, json) Hash identifier: yyEUvZCmaFWTlHBddTvd35XB4O+cqU+todAuZd+/9Mk= Subject key identifier: 63:C4:FA:31:0D:CD:E8:42:FA:03:DB:BB:44:47:89:8B:CF:25:62:37 Certificate issuer: /CN=844582ca704717eb0c94be4d89413f4bc2d8b8e5 Certificate serial: 019B7E38149FBE772905E944B81460731EA8 Authority key identifier: 84:45:82:CA:70:47:17:EB:0C:94:BE:4D:89:41:3F:4B:C2:D8:B8:E5 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hEWCynBHF-sMlL5NiUE_S8LYuOU.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/24/735e42-c608-46b6-8f70-f23f66f8d242/1/Y8T6MQ3N6EL6A9u7REeJi88lYjc.roa Signing time: Fri 02 Jan 2026 10:19:23 +0000 ROA not before: Fri 02 Jan 2026 10:19:23 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 14616 IP address blocks: 147.78.6.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/24/735e42-c608-46b6-8f70-f23f66f8d242/1/hEWCynBHF-sMlL5NiUE_S8LYuOU.crl rsync://rpki.ripe.net/repository/DEFAULT/24/735e42-c608-46b6-8f70-f23f66f8d242/1/hEWCynBHF-sMlL5NiUE_S8LYuOU.mft rsync://rpki.ripe.net/repository/DEFAULT/hEWCynBHF-sMlL5NiUE_S8LYuOU.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 07:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7e:38:14:9f:be:77:29:05:e9:44:b8:14:60:73:1e:a8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=844582ca704717eb0c94be4d89413f4bc2d8b8e5 Validity Not Before: Jan 2 10:19:23 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=63c4fa310dcde842fa03dbbb4447898bcf256237 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:e3:60:7e:50:1c:c4:26:09:34:e9:8c:45:13: de:86:0d:7a:18:dd:c2:e8:e9:ae:16:b6:86:3f:71: 31:9c:7e:66:8b:26:b5:17:49:80:41:95:08:6e:05: d9:bd:67:ba:3a:12:2e:13:da:19:a3:fb:6e:0d:ab: 46:70:04:ed:ee:51:3b:73:6e:77:23:c5:06:4f:30: af:60:d1:e0:96:fe:2d:16:f3:6f:7b:c7:49:0a:db: f2:59:16:20:3b:78:08:26:40:a2:f0:a8:f6:3f:65: 8f:68:06:8a:6c:5f:d8:9c:fc:ba:df:cd:c4:50:c8: 23:ab:41:36:25:f8:f1:fa:4c:6c:28:b5:5f:ae:3f: 93:e4:b5:96:31:54:ee:e2:ec:2f:7b:7f:22:41:21: d4:1d:b7:48:75:cd:df:4e:a6:4d:46:73:e0:e7:2e: b0:c6:4a:ac:82:9f:80:66:1f:59:6e:a9:d5:18:e4: ec:1a:2b:64:9f:13:95:77:82:eb:a5:ae:aa:6a:f9: cd:d7:af:02:11:c3:c2:6d:61:63:b2:76:37:ce:e6: df:6a:f5:bf:98:91:d0:e0:a4:dd:7e:95:77:d2:2d: 23:af:19:73:34:4f:a9:a1:a2:d4:d4:41:c7:63:70: e9:4b:bf:ba:72:a5:7f:59:ac:72:a1:b1:05:15:7a: ee:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 63:C4:FA:31:0D:CD:E8:42:FA:03:DB:BB:44:47:89:8B:CF:25:62:37 X509v3 Authority Key Identifier: keyid:84:45:82:CA:70:47:17:EB:0C:94:BE:4D:89:41:3F:4B:C2:D8:B8:E5 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hEWCynBHF-sMlL5NiUE_S8LYuOU.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/24/735e42-c608-46b6-8f70-f23f66f8d242/1/Y8T6MQ3N6EL6A9u7REeJi88lYjc.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/24/735e42-c608-46b6-8f70-f23f66f8d242/1/hEWCynBHF-sMlL5NiUE_S8LYuOU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 147.78.6.0/24 Signature Algorithm: sha256WithRSAEncryption a6:7b:e7:10:08:6e:95:54:d6:07:c6:0b:26:a8:81:c0:4c:52: 22:12:27:da:dd:bc:e0:ec:b6:74:36:18:e8:0d:73:c0:67:69: 65:73:ce:1d:40:6d:50:86:9d:68:18:92:de:be:47:8a:56:74: 6b:19:49:e5:be:5f:a1:b9:4f:a2:18:41:45:65:cb:26:28:73: a5:a2:4c:c5:23:de:e3:24:ff:ad:aa:bb:c4:2e:4f:0b:c6:c3: 2a:79:10:d0:1e:94:aa:c7:74:3d:17:6a:77:30:d8:f3:19:22: 66:d2:b2:41:fa:7f:00:b6:fb:7a:c4:c7:cf:17:6c:ce:39:51: 84:aa:68:46:8d:04:40:26:2f:16:13:e9:97:76:00:0b:b9:07: 34:21:bd:1b:53:b7:bc:b0:4f:50:24:5c:19:84:eb:0b:e7:d6: 03:30:2b:ff:1e:4c:36:66:38:52:b5:2e:63:3e:7e:8f:6e:d4: 41:89:04:f0:0a:11:99:40:49:9f:ff:85:3f:50:55:46:e7:4b: 6f:2b:5f:83:4c:71:ac:79:3c:76:4b:a5:12:31:12:5d:6c:60: 66:8a:a2:9a:33:05:c1:80:28:c5:63:c4:38:94:5c:f0:97:ef: b3:06:a2:d0:e2:4b:df:57:0f:6e:c0:01:39:11:69:68:3e:7b: 1f:c3:13:5c -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt+OBSfvncpBelEuBRgcx6oMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDg0NDU4MmNhNzA0NzE3ZWIwYzk0YmU0ZDg5NDEzZjRiYzJk OGI4ZTUwHhcNMjYwMTAyMTAxOTIzWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg2M2M0ZmEzMTBkY2RlODQyZmEwM2RiYmI0NDQ3ODk4YmNmMjU2MjM3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsuNgflAcxCYJNOmMRRPehg16GN3C 6OmuFraGP3ExnH5miya1F0mAQZUIbgXZvWe6OhIuE9oZo/tuDatGcATt7lE7c253 I8UGTzCvYNHglv4tFvNve8dJCtvyWRYgO3gIJkCi8Kj2P2WPaAaKbF/YnPy6383E UMgjq0E2Jfjx+kxsKLVfrj+T5LWWMVTu4uwve38iQSHUHbdIdc3fTqZNRnPg5y6w xkqsgp+AZh9ZbqnVGOTsGitknxOVd4Lrpa6qavnN168CEcPCbWFjsnY3zubfavW/ mJHQ4KTdfpV30i0jrxlzNE+poaLU1EHHY3DpS7+6cqV/WaxyobEFFXruawIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFGPE+jENzehC+gPbu0RHiYvPJWI3MB8GA1UdIwQY MBaAFIRFgspwRxfrDJS+TYlBP0vC2LjlMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvaEVXQ3luQkhGLXNNbEw1TmlVRV9TOExZdU9VLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yNC83MzVlNDItYzYwOC00NmI2LThmNzAt ZjIzZjY2ZjhkMjQyLzEvWThUNk1RM042RUw2QTl1N1JFZUppODhsWWpjLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yNC83MzVlNDItYzYwOC00NmI2LThmNzAtZjIzZjY2ZjhkMjQy LzEvaEVXQ3luQkhGLXNNbEw1TmlVRV9TOExZdU9VLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAk04GMA0G CSqGSIb3DQEBCwUAA4IBAQCme+cQCG6VVNYHxgsmqIHATFIiEifa3bzg7LZ0Nhjo DXPAZ2llc84dQG1Qhp1oGJLevkeKVnRrGUnlvl+huU+iGEFFZcsmKHOlokzFI97j JP+tqrvELk8LxsMqeRDQHpSqx3Q9F2p3MNjzGSJm0rJB+n8Atvt6xMfPF2zOOVGE qmhGjQRAJi8WE+mXdgALuQc0Ib0bU7e8sE9QJFwZhOsL59YDMCv/Hkw2ZjhStS5j Pn6PbtRBiQTwChGZQEmf/4U/UFVG50tvK1+DTHGseTx2S6USMRJdbGBmiqKaMwXB gCjFY8Q4lFzwl++zBqLQ4kvfVw9uwAE5EWloPnsfwxNc -----END CERTIFICATE-----Generated at Sun Jan 25 11:47:15 2026 by rpki-client