This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/42/b8f50e-475f-4b47-85c0-5f123555cfb1/1/YrHkJUDzzHYV4NSM8kuc3mWA3No.roa File: YrHkJUDzzHYV4NSM8kuc3mWA3No.roa (raw, json) Hash identifier: XN+H9pEw3/RHdNbn4FFCp9WEa3ViQ6Ir6r897iLElR0= Subject key identifier: 62:B1:E4:25:40:F3:CC:76:15:E0:D4:8C:F2:4B:9C:DE:65:80:DC:DA Certificate issuer: /CN=4feb9457ec519e8237867710bcc82fa30eae67c0 Certificate serial: 019B7834C6651ED118D3858E1944CC16E3D0 Authority key identifier: 4F:EB:94:57:EC:51:9E:82:37:86:77:10:BC:C8:2F:A3:0E:AE:67:C0 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/T-uUV-xRnoI3hncQvMgvow6uZ8A.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/42/b8f50e-475f-4b47-85c0-5f123555cfb1/1/YrHkJUDzzHYV4NSM8kuc3mWA3No.roa Signing time: Thu 01 Jan 2026 06:18:03 +0000 ROA not before: Thu 01 Jan 2026 06:18:03 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 210567 IP address blocks: 185.163.247.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/42/b8f50e-475f-4b47-85c0-5f123555cfb1/1/T-uUV-xRnoI3hncQvMgvow6uZ8A.crl rsync://rpki.ripe.net/repository/DEFAULT/42/b8f50e-475f-4b47-85c0-5f123555cfb1/1/T-uUV-xRnoI3hncQvMgvow6uZ8A.mft rsync://rpki.ripe.net/repository/DEFAULT/T-uUV-xRnoI3hncQvMgvow6uZ8A.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 22:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:78:34:c6:65:1e:d1:18:d3:85:8e:19:44:cc:16:e3:d0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4feb9457ec519e8237867710bcc82fa30eae67c0 Validity Not Before: Jan 1 06:18:03 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=62b1e42540f3cc7615e0d48cf24b9cde6580dcda Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:93:dd:e2:2a:1b:a0:a1:ab:c2:88:e9:3f:86: 85:7b:56:94:8e:a3:fb:7d:59:45:0d:78:be:3e:97: 30:4c:8e:f6:03:39:61:32:f3:4d:4b:6a:79:16:35: 49:9c:0a:ff:fb:70:42:d0:a8:82:fa:0e:b8:62:9a: 56:24:8a:20:a5:47:f5:5f:16:76:3e:2b:1a:df:ad: f7:10:2e:ad:31:ea:ef:32:7f:f0:1f:9f:8a:82:da: e7:10:8e:bc:da:19:d3:ad:4c:cf:06:12:6b:1e:22: 90:72:f9:ae:1d:22:71:a0:cd:d4:e7:a7:b5:42:3b: 34:14:db:9b:a5:a8:cb:65:2b:b1:6f:88:fb:48:76: 6a:4a:ee:1e:6c:99:40:31:f5:b5:f9:5c:4c:a2:82: c1:f9:da:4c:e2:09:5e:aa:c2:c7:56:73:b9:bc:6e: 05:b8:a6:ca:96:6e:a9:1f:3f:fd:c3:f2:f0:a8:93: 96:54:72:ff:8d:e2:1c:cf:f0:4d:36:84:62:59:ce: 5b:8f:64:91:1e:9a:4e:a7:ad:78:ec:60:94:ee:05: ee:5b:bd:a8:a2:07:12:be:3a:70:75:ff:d8:36:41: 3d:70:ef:e5:3a:7f:c2:1d:d5:de:a8:0d:64:5c:e7: bb:df:c1:42:ec:bf:75:0a:dd:e2:8a:39:e2:62:f4: 13:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 62:B1:E4:25:40:F3:CC:76:15:E0:D4:8C:F2:4B:9C:DE:65:80:DC:DA X509v3 Authority Key Identifier: keyid:4F:EB:94:57:EC:51:9E:82:37:86:77:10:BC:C8:2F:A3:0E:AE:67:C0 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/T-uUV-xRnoI3hncQvMgvow6uZ8A.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/42/b8f50e-475f-4b47-85c0-5f123555cfb1/1/YrHkJUDzzHYV4NSM8kuc3mWA3No.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/42/b8f50e-475f-4b47-85c0-5f123555cfb1/1/T-uUV-xRnoI3hncQvMgvow6uZ8A.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.163.247.0/24 Signature Algorithm: sha256WithRSAEncryption 9b:dd:36:b2:f0:2a:d1:68:f6:43:e8:1b:38:a4:96:1f:72:e1: a4:fe:04:bd:66:34:95:69:54:19:af:df:3b:18:70:5a:f5:6b: 38:24:3d:ae:a2:17:b5:8a:9a:31:32:c4:0e:bf:c7:e5:82:2f: 22:b1:74:0b:12:60:24:aa:ba:f8:94:b2:91:7b:99:b6:d3:9f: 72:b2:b7:eb:05:d8:2b:96:b4:dd:c5:fd:17:a0:6e:fe:5c:5e: 76:7b:a8:33:5f:4d:bd:67:c8:1b:24:29:fc:39:09:e0:b8:5c: 55:e3:72:b9:ce:f9:38:07:bc:a8:6f:9a:31:d4:65:75:1e:e5: b8:6d:61:53:45:e3:5d:1d:25:b7:ed:3f:30:5d:3c:f6:25:92: 7a:e0:ae:d1:5a:1a:c2:dc:cf:54:e1:aa:4d:de:1d:09:ee:6e: 7e:33:fc:63:c4:a4:4b:ae:23:0d:1d:21:67:10:fa:fa:66:2c: a3:42:b3:46:02:fe:5c:d5:06:39:e7:5a:f1:9b:cd:73:3f:c5: 08:78:9d:b0:54:4d:a7:4e:e9:a1:46:96:3f:46:5e:95:9a:c9: 30:2b:7c:18:29:c8:8d:1b:4e:eb:f3:e6:0d:24:c5:71:2c:d9: 8e:0c:cf:c9:67:c6:b2:0c:4e:b5:03:cb:20:14:b5:1f:e5:61: 05:a5:94:a9 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt4NMZlHtEY04WOGUTMFuPQMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDRmZWI5NDU3ZWM1MTllODIzNzg2NzcxMGJjYzgyZmEzMGVh ZTY3YzAwHhcNMjYwMTAxMDYxODAzWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg2MmIxZTQyNTQwZjNjYzc2MTVlMGQ0OGNmMjRiOWNkZTY1ODBkY2RhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtZPd4ioboKGrwojpP4aFe1aUjqP7 fVlFDXi+PpcwTI72AzlhMvNNS2p5FjVJnAr/+3BC0KiC+g64YppWJIogpUf1XxZ2 Pisa3633EC6tMervMn/wH5+KgtrnEI682hnTrUzPBhJrHiKQcvmuHSJxoM3U56e1 Qjs0FNubpajLZSuxb4j7SHZqSu4ebJlAMfW1+VxMooLB+dpM4gleqsLHVnO5vG4F uKbKlm6pHz/9w/LwqJOWVHL/jeIcz/BNNoRiWc5bj2SRHppOp6147GCU7gXuW72o ogcSvjpwdf/YNkE9cO/lOn/CHdXeqA1kXOe738FC7L91Ct3iijniYvQTmQIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFGKx5CVA88x2FeDUjPJLnN5lgNzaMB8GA1UdIwQY MBaAFE/rlFfsUZ6CN4Z3ELzIL6MOrmfAMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvVC11VVYteFJub0kzaG5jUXZNZ3ZvdzZ1WjhBLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80Mi9iOGY1MGUtNDc1Zi00YjQ3LTg1YzAt NWYxMjM1NTVjZmIxLzEvWXJIa0pVRHp6SFlWNE5TTThrdWMzbVdBM05vLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC80Mi9iOGY1MGUtNDc1Zi00YjQ3LTg1YzAtNWYxMjM1NTVjZmIx LzEvVC11VVYteFJub0kzaG5jUXZNZ3ZvdzZ1WjhBLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAuaP3MA0G CSqGSIb3DQEBCwUAA4IBAQCb3Tay8CrRaPZD6Bs4pJYfcuGk/gS9ZjSVaVQZr987 GHBa9Ws4JD2uohe1ipoxMsQOv8flgi8isXQLEmAkqrr4lLKRe5m2059ysrfrBdgr lrTdxf0XoG7+XF52e6gzX029Z8gbJCn8OQnguFxV43K5zvk4B7yob5ox1GV1HuW4 bWFTReNdHSW37T8wXTz2JZJ64K7RWhrC3M9U4apN3h0J7m5+M/xjxKRLriMNHSFn EPr6ZiyjQrNGAv5c1QY551rxm81zP8UIeJ2wVE2nTumhRpY/Rl6VmskwK3wYKciN G07r8+YNJMVxLNmODM/JZ8ayDE61A8sgFLUf5WEFpZSp -----END CERTIFICATE-----Generated at Mon Jan 26 05:39:19 2026 by rpki-client