This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/59/9c70e9-3df3-4bc7-82e6-006e9bb8ed59/1/ywS_DWFhfGT_5zoyX1YZLjOr-0I.roa File: ywS_DWFhfGT_5zoyX1YZLjOr-0I.roa (raw, json) Hash identifier: NiPKJPuTp/RkYFR2X2m2JVeorjDmkEEV8OJgWiusFQ4= Subject key identifier: CB:04:BF:0D:61:61:7C:64:FF:E7:3A:32:5F:56:19:2E:33:AB:FB:42 Certificate issuer: /CN=71c1690ef57afcffae73bdb9934309f8b70ebb61 Certificate serial: 019B7CEE473808EA52071918E13A8A1620D1 Authority key identifier: 71:C1:69:0E:F5:7A:FC:FF:AE:73:BD:B9:93:43:09:F8:B7:0E:BB:61 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ccFpDvV6_P-uc725k0MJ-LcOu2E.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/59/9c70e9-3df3-4bc7-82e6-006e9bb8ed59/1/ywS_DWFhfGT_5zoyX1YZLjOr-0I.roa Signing time: Fri 02 Jan 2026 04:19:09 +0000 ROA not before: Fri 02 Jan 2026 04:19:09 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 42154 IP address blocks: 77.87.76.0/24 maxlen: 24 77.87.79.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/59/9c70e9-3df3-4bc7-82e6-006e9bb8ed59/1/ccFpDvV6_P-uc725k0MJ-LcOu2E.crl rsync://rpki.ripe.net/repository/DEFAULT/59/9c70e9-3df3-4bc7-82e6-006e9bb8ed59/1/ccFpDvV6_P-uc725k0MJ-LcOu2E.mft rsync://rpki.ripe.net/repository/DEFAULT/ccFpDvV6_P-uc725k0MJ-LcOu2E.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 22:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7c:ee:47:38:08:ea:52:07:19:18:e1:3a:8a:16:20:d1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=71c1690ef57afcffae73bdb9934309f8b70ebb61 Validity Not Before: Jan 2 04:19:09 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=cb04bf0d61617c64ffe73a325f56192e33abfb42 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:f2:03:26:13:68:ed:c9:3a:36:f3:70:be:f2: a6:fc:96:fe:4b:0e:7f:38:60:2c:fa:04:b4:87:6d: 1c:24:49:ae:43:e6:20:ac:3d:ab:b9:ec:79:9f:93: f2:47:10:7b:38:60:b1:8d:10:cc:9d:a7:94:97:a7: c4:e0:3a:11:fd:d1:30:64:d9:3a:52:27:ef:ef:67: d5:69:8f:90:91:2e:2d:f5:6d:36:e3:22:bd:b6:ea: cd:82:40:be:a2:07:63:be:a6:35:c8:64:a1:63:86: 2e:ba:99:33:6c:ce:7a:b9:5b:f8:34:04:0d:33:c0: 85:30:ee:03:b7:27:fe:04:31:04:86:93:e6:05:8b: c1:90:c9:61:8f:e5:bc:e6:d7:1c:58:a3:4a:f7:d3: b9:f7:39:ff:41:be:6a:27:01:bf:3f:ca:64:80:e2: 0a:f2:8d:e2:f3:71:6b:f8:82:df:26:86:86:b0:de: f4:e9:23:1a:c6:f0:31:6f:e6:cb:60:36:a7:bf:99: 58:6e:e8:cb:60:3a:fe:b2:7a:6c:09:f8:06:aa:02: 3e:a2:04:c8:75:2c:72:39:45:c6:c1:b1:e9:96:51: 01:ab:c7:05:28:c2:bc:3a:6e:4a:b3:8e:09:18:a7: b1:04:8a:14:33:57:67:fc:66:23:75:a8:16:36:67: 61:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CB:04:BF:0D:61:61:7C:64:FF:E7:3A:32:5F:56:19:2E:33:AB:FB:42 X509v3 Authority Key Identifier: keyid:71:C1:69:0E:F5:7A:FC:FF:AE:73:BD:B9:93:43:09:F8:B7:0E:BB:61 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ccFpDvV6_P-uc725k0MJ-LcOu2E.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/59/9c70e9-3df3-4bc7-82e6-006e9bb8ed59/1/ywS_DWFhfGT_5zoyX1YZLjOr-0I.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/59/9c70e9-3df3-4bc7-82e6-006e9bb8ed59/1/ccFpDvV6_P-uc725k0MJ-LcOu2E.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 77.87.76.0/24 77.87.79.0/24 Signature Algorithm: sha256WithRSAEncryption 40:84:d9:d1:56:f3:db:de:01:c4:1d:fe:06:b1:cf:8f:cb:ed: a4:13:5d:7b:25:92:c4:08:03:c8:19:0a:86:b5:27:88:1b:d7: 23:c8:b2:0e:c3:12:24:73:fc:42:e8:48:e1:db:28:20:ae:b9: bb:06:8d:59:90:00:50:40:07:e1:fc:bd:8a:fe:8e:46:24:8b: 1d:f1:66:53:75:19:47:1a:92:b0:85:8b:d4:32:ca:96:3e:da: 3b:cb:65:c1:9c:95:fc:c3:d7:e7:ae:ed:2f:94:8c:4b:c7:47: 93:ca:b6:3b:87:b6:c0:1b:ac:66:31:89:af:4a:e9:2b:d3:3c: ee:b1:d1:a7:b4:17:2b:ca:13:ed:1f:9f:1c:38:76:f4:ec:c1: 32:0a:f9:0a:c7:6a:b1:b4:05:0e:c1:ee:03:fa:64:db:25:89: 43:29:ca:c3:6d:7f:b6:da:a3:51:cc:c5:7c:a5:f8:5d:d0:0c: b5:a2:f5:88:65:c1:2e:dd:e0:bd:70:2f:fe:c1:38:ae:ae:34: 21:3a:c9:0a:08:89:58:2e:3e:38:bf:1b:5f:01:ce:57:61:17: 0c:05:b2:85:70:30:16:08:77:98:c3:d8:eb:14:9d:62:e5:a9: 5a:9d:da:cf:7e:cc:29:d3:60:70:d7:a3:2a:f6:ab:33:2b:93: 8f:c5:69:55 -----BEGIN CERTIFICATE----- MIIFAzCCA+ugAwIBAgISAZt87kc4COpSBxkY4TqKFiDRMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDcxYzE2OTBlZjU3YWZjZmZhZTczYmRiOTkzNDMwOWY4Yjcw ZWJiNjEwHhcNMjYwMTAyMDQxOTA5WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhjYjA0YmYwZDYxNjE3YzY0ZmZlNzNhMzI1ZjU2MTkyZTMzYWJmYjQyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnvIDJhNo7ck6NvNwvvKm/Jb+Sw5/ OGAs+gS0h20cJEmuQ+YgrD2ruex5n5PyRxB7OGCxjRDMnaeUl6fE4DoR/dEwZNk6 Uifv72fVaY+QkS4t9W024yK9turNgkC+ogdjvqY1yGShY4YuupkzbM56uVv4NAQN M8CFMO4Dtyf+BDEEhpPmBYvBkMlhj+W85tccWKNK99O59zn/Qb5qJwG/P8pkgOIK 8o3i83Fr+ILfJoaGsN706SMaxvAxb+bLYDanv5lYbujLYDr+snpsCfgGqgI+ogTI dSxyOUXGwbHpllEBq8cFKMK8Om5Ks44JGKexBIoUM1dn/GYjdagWNmdhDwIDAQAB o4ICDzCCAgswHQYDVR0OBBYEFMsEvw1hYXxk/+c6Ml9WGS4zq/tCMB8GA1UdIwQY MBaAFHHBaQ71evz/rnO9uZNDCfi3DrthMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvY2NGcER2VjZfUC11YzcyNWswTUotTGNPdTJFLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81OS85YzcwZTktM2RmMy00YmM3LTgyZTYt MDA2ZTliYjhlZDU5LzEveXdTX0RXRmhmR1RfNXpveVgxWVpMak9yLTBJLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81OS85YzcwZTktM2RmMy00YmM3LTgyZTYtMDA2ZTliYjhlZDU5 LzEvY2NGcER2VjZfUC11YzcyNWswTUotTGNPdTJFLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQATVdMAwQA TVdPMA0GCSqGSIb3DQEBCwUAA4IBAQBAhNnRVvPb3gHEHf4Gsc+Py+2kE117JZLE CAPIGQqGtSeIG9cjyLIOwxIkc/xC6Ejh2yggrrm7Bo1ZkABQQAfh/L2K/o5GJIsd 8WZTdRlHGpKwhYvUMsqWPto7y2XBnJX8w9fnru0vlIxLx0eTyrY7h7bAG6xmMYmv Sukr0zzusdGntBcryhPtH58cOHb07MEyCvkKx2qxtAUOwe4D+mTbJYlDKcrDbX+2 2qNRzMV8pfhd0Ay1ovWIZcEu3eC9cC/+wTiurjQhOskKCIlYLj44vxtfAc5XYRcM BbKFcDAWCHeYw9jrFJ1i5alandrPfswp02Bw16Mq9qszK5OPxWlV -----END CERTIFICATE-----Generated at Mon Jan 26 07:23:35 2026 by rpki-client