This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/78/da3398-6698-45f2-baae-92e25fe16331/1/ydE71I-QPsKyTT4T88QL1LhfyuM.roa File: ydE71I-QPsKyTT4T88QL1LhfyuM.roa (raw, json) Hash identifier: 7Lr68b4Fe4kyD8ui/imnupY5dHioH8nhsQEW4Om+XHE= Subject key identifier: C9:D1:3B:D4:8F:90:3E:C2:B2:4D:3E:13:F3:C4:0B:D4:B8:5F:CA:E3 Certificate issuer: /CN=f8e62634e1bd5133a9de4512ae98cad1b2219b59 Certificate serial: 019B775940B59F8B696309898355315F68C2 Authority key identifier: F8:E6:26:34:E1:BD:51:33:A9:DE:45:12:AE:98:CA:D1:B2:21:9B:59 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-OYmNOG9UTOp3kUSrpjK0bIhm1k.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/78/da3398-6698-45f2-baae-92e25fe16331/1/ydE71I-QPsKyTT4T88QL1LhfyuM.roa Signing time: Thu 01 Jan 2026 02:18:16 +0000 ROA not before: Thu 01 Jan 2026 02:18:16 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 25097 IP address blocks: 188.210.238.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/78/da3398-6698-45f2-baae-92e25fe16331/1/1-OYmNOG9UTOp3kUSrpjK0bIhm1k.crl rsync://rpki.ripe.net/repository/DEFAULT/78/da3398-6698-45f2-baae-92e25fe16331/1/1-OYmNOG9UTOp3kUSrpjK0bIhm1k.mft rsync://rpki.ripe.net/repository/DEFAULT/1-OYmNOG9UTOp3kUSrpjK0bIhm1k.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 07:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:77:59:40:b5:9f:8b:69:63:09:89:83:55:31:5f:68:c2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=f8e62634e1bd5133a9de4512ae98cad1b2219b59 Validity Not Before: Jan 1 02:18:16 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=c9d13bd48f903ec2b24d3e13f3c40bd4b85fcae3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:83:d9:90:f3:09:75:ff:6d:21:f8:91:51:0e: d9:6e:88:c2:8e:2b:b1:da:d4:2f:a5:17:ca:86:3e: 35:05:a8:28:64:dc:8e:48:87:96:7a:30:bd:55:6d: 2c:2c:75:e1:6a:c9:f3:f8:d4:fe:d2:86:ba:97:77: 7a:a6:9a:cc:22:24:fe:05:a8:54:4b:9d:75:7e:b9: 59:ed:77:09:78:da:dd:03:a7:e2:03:3c:9f:e7:13: 72:fd:db:74:f9:12:bc:39:73:46:bb:6e:67:13:29: 7a:6e:2c:65:d0:f7:12:50:18:22:ba:88:1a:55:af: 96:f3:c8:1e:f3:32:05:bc:d6:3a:57:5f:39:77:c1: 0f:c4:2b:a2:40:40:bb:82:08:cd:77:e3:35:bd:38: 1e:a6:7c:47:40:3d:8c:e8:03:a1:0b:b6:1f:66:41: 58:19:a7:99:01:94:32:26:ca:52:37:b2:cc:c1:a3: 4b:c6:28:28:11:dc:c4:6a:d6:70:74:21:8b:97:69: c3:e6:4a:74:91:5d:5c:ea:d0:19:71:cc:36:06:02: ca:15:27:df:14:3d:96:48:e4:c4:06:a8:dd:d9:e5: 01:65:4a:64:be:f8:9e:64:6d:a3:b5:57:43:f9:36: 39:b2:3c:f3:c0:55:3e:07:02:c5:ed:9c:d9:76:2b: 66:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C9:D1:3B:D4:8F:90:3E:C2:B2:4D:3E:13:F3:C4:0B:D4:B8:5F:CA:E3 X509v3 Authority Key Identifier: keyid:F8:E6:26:34:E1:BD:51:33:A9:DE:45:12:AE:98:CA:D1:B2:21:9B:59 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-OYmNOG9UTOp3kUSrpjK0bIhm1k.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/78/da3398-6698-45f2-baae-92e25fe16331/1/ydE71I-QPsKyTT4T88QL1LhfyuM.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/78/da3398-6698-45f2-baae-92e25fe16331/1/1-OYmNOG9UTOp3kUSrpjK0bIhm1k.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 188.210.238.0/24 Signature Algorithm: sha256WithRSAEncryption d2:3f:ae:a2:de:da:76:d6:55:f5:c0:e6:c7:ce:38:c1:83:7f: 39:93:90:e9:12:d9:f8:be:b2:c0:b9:14:7c:f9:2e:5d:63:53: ac:e5:e9:11:ee:87:cd:66:37:3c:31:e1:41:40:7a:ef:20:62: 1b:25:2e:f0:89:1e:b4:05:45:a0:a8:6a:5e:09:a7:94:54:25: 64:dc:08:15:50:68:d9:65:c4:06:52:b1:a7:63:01:55:b7:db: 1d:8f:59:4b:c0:be:db:86:d6:30:a9:c9:f0:40:6c:e8:48:12: 38:6f:90:6f:d4:ae:e9:53:93:9a:07:24:34:e7:c0:13:f3:bb: 4a:fd:e8:90:14:c8:1b:b9:5a:e8:57:35:0d:b6:93:68:aa:92: dd:ba:f3:b9:69:9f:ea:8b:3f:03:f4:48:6d:60:28:c1:4f:b8: 38:bc:07:b1:ae:51:57:fd:64:28:86:b4:5c:e7:ce:d0:17:26: 93:51:1c:1a:39:22:a0:69:2c:c2:5f:ab:6f:5a:b2:5e:16:6d: db:5b:44:0e:1a:d6:9c:76:25:40:7d:3f:57:35:03:45:d9:d9: c4:fa:04:14:bf:dc:17:29:19:de:d3:9a:bc:86:0b:8a:ae:ca: 6b:48:f9:c0:c9:65:fd:05:3b:09:4b:9f:65:56:a4:5d:66:58: 1b:61:a1:0c -----BEGIN CERTIFICATE----- MIIE/zCCA+egAwIBAgISAZt3WUC1n4tpYwmJg1UxX2jCMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGY4ZTYyNjM0ZTFiZDUxMzNhOWRlNDUxMmFlOThjYWQxYjIy MTliNTkwHhcNMjYwMTAxMDIxODE2WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhjOWQxM2JkNDhmOTAzZWMyYjI0ZDNlMTNmM2M0MGJkNGI4NWZjYWUzMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA14PZkPMJdf9tIfiRUQ7ZbojCjiux 2tQvpRfKhj41BagoZNyOSIeWejC9VW0sLHXhasnz+NT+0oa6l3d6pprMIiT+BahU S511frlZ7XcJeNrdA6fiAzyf5xNy/dt0+RK8OXNGu25nEyl6bixl0PcSUBgiuoga Va+W88ge8zIFvNY6V185d8EPxCuiQEC7ggjNd+M1vTgepnxHQD2M6AOhC7YfZkFY GaeZAZQyJspSN7LMwaNLxigoEdzEatZwdCGLl2nD5kp0kV1c6tAZccw2BgLKFSff FD2WSOTEBqjd2eUBZUpkvvieZG2jtVdD+TY5sjzzwFU+BwLF7ZzZditmpQIDAQAB o4ICCzCCAgcwHQYDVR0OBBYEFMnRO9SPkD7Csk0+E/PEC9S4X8rjMB8GA1UdIwQY MBaAFPjmJjThvVEzqd5FEq6YytGyIZtZMA4GA1UdDwEB/wQEAwIHgDBlBggrBgEF BQcBAQRZMFcwVQYIKwYBBQUHMAKGSXJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvMS1PWW1OT0c5VVRPcDNrVVNycGpLMGJJaG0xay5jZXIw gY0GCCsGAQUFBwELBIGAMH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBl Lm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNzgvZGEzMzk4LTY2OTgtNDVmMi1iYWFl LTkyZTI1ZmUxNjMzMS8xL3lkRTcxSS1RUHNLeVRUNFQ4OFFMMUxoZnl1TS5yb2Ew gYIGA1UdHwR7MHkwd6B1oHOGcXJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0 b3J5L0RFRkFVTFQvNzgvZGEzMzk4LTY2OTgtNDVmMi1iYWFlLTkyZTI1ZmUxNjMz MS8xLzEtT1ltTk9HOVVUT3Aza1VTcnBqSzBiSWhtMWsuY3JsMBgGA1UdIAEB/wQO MAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAC80u4w DQYJKoZIhvcNAQELBQADggEBANI/rqLe2nbWVfXA5sfOOMGDfzmTkOkS2fi+ssC5 FHz5Ll1jU6zl6RHuh81mNzwx4UFAeu8gYhslLvCJHrQFRaCoal4Jp5RUJWTcCBVQ aNllxAZSsadjAVW32x2PWUvAvtuG1jCpyfBAbOhIEjhvkG/UrulTk5oHJDTnwBPz u0r96JAUyBu5WuhXNQ22k2iqkt2687lpn+qLPwP0SG1gKMFPuDi8B7GuUVf9ZCiG tFznztAXJpNRHBo5IqBpLMJfq29asl4WbdtbRA4a1px2JUB9P1c1A0XZ2cT6BBS/ 3BcpGd7TmryGC4quymtI+cDJZf0FOwlLn2VWpF1mWBthoQw= -----END CERTIFICATE-----Generated at Sun Jan 25 16:11:24 2026 by rpki-client