This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9c/9c9f28-4f41-472d-a63e-a10a3a4963fb/1/YVo8LjxK7TZOHy2e0UtRMc12yMo.roa File: YVo8LjxK7TZOHy2e0UtRMc12yMo.roa (raw, json) Hash identifier: y1sW6xShCe5Zkqn/itmgk+RBNdntx91KOyuie9DOHaM= Subject key identifier: 61:5A:3C:2E:3C:4A:ED:36:4E:1F:2D:9E:D1:4B:51:31:CD:76:C8:CA Certificate issuer: /CN=40d5591a75bd693e9d3b766834bf074f7b1eee3a Certificate serial: 019B7C8099EE80D9857C94AD39E18ACA4B83 Authority key identifier: 40:D5:59:1A:75:BD:69:3E:9D:3B:76:68:34:BF:07:4F:7B:1E:EE:3A Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QNVZGnW9aT6dO3ZoNL8HT3se7jo.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9c/9c9f28-4f41-472d-a63e-a10a3a4963fb/1/YVo8LjxK7TZOHy2e0UtRMc12yMo.roa Signing time: Fri 02 Jan 2026 02:19:21 +0000 ROA not before: Fri 02 Jan 2026 02:19:21 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 13195 IP address blocks: 193.201.107.0/24 maxlen: 24 2001:678:c28::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9c/9c9f28-4f41-472d-a63e-a10a3a4963fb/1/QNVZGnW9aT6dO3ZoNL8HT3se7jo.crl rsync://rpki.ripe.net/repository/DEFAULT/9c/9c9f28-4f41-472d-a63e-a10a3a4963fb/1/QNVZGnW9aT6dO3ZoNL8HT3se7jo.mft rsync://rpki.ripe.net/repository/DEFAULT/QNVZGnW9aT6dO3ZoNL8HT3se7jo.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 27 Jan 2026 10:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7c:80:99:ee:80:d9:85:7c:94:ad:39:e1:8a:ca:4b:83 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=40d5591a75bd693e9d3b766834bf074f7b1eee3a Validity Not Before: Jan 2 02:19:21 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=615a3c2e3c4aed364e1f2d9ed14b5131cd76c8ca Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:d9:31:c7:10:19:72:b4:fb:bf:ec:de:f4:66: 86:64:5d:57:3f:71:97:5e:aa:81:b7:bf:77:3b:e1: 8c:5d:3d:96:df:56:69:f8:a3:63:61:4f:ff:bc:4a: 60:ce:4c:e4:1a:ec:bf:bc:22:da:c6:ab:14:f5:ec: 44:1b:19:4f:ce:c2:fa:92:ac:69:6d:74:19:f7:0d: 16:6e:48:5e:ae:37:89:8d:6b:6d:e2:8b:14:78:7c: 13:68:89:7b:33:8b:93:9b:20:6a:91:c3:69:08:2d: a0:ac:5b:3f:5c:06:45:59:83:fa:a9:b8:70:bd:07: e8:c4:82:4f:11:b1:73:e1:e3:0c:f3:59:9f:60:d6: 50:09:ba:6f:83:c0:18:c6:d2:c3:24:2d:b9:54:8d: ee:69:2c:44:97:5d:6f:56:12:77:46:fc:e7:9e:a0: 33:fb:1f:de:b1:c3:49:61:90:39:85:c1:c3:4d:dc: 7b:14:2e:66:d0:ce:2b:d1:45:a9:17:26:ae:ec:5f: 09:ab:93:a8:da:be:ca:e2:65:fb:5f:ab:4a:04:b2: 79:a6:75:37:ed:d4:ab:15:7a:08:f5:b0:ef:c1:9b: 87:46:b1:f2:e2:19:51:54:04:e7:78:6c:46:ac:08: 78:78:e0:e4:2d:40:fe:51:b9:a7:b7:4c:bb:25:e1: a2:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 61:5A:3C:2E:3C:4A:ED:36:4E:1F:2D:9E:D1:4B:51:31:CD:76:C8:CA X509v3 Authority Key Identifier: keyid:40:D5:59:1A:75:BD:69:3E:9D:3B:76:68:34:BF:07:4F:7B:1E:EE:3A X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QNVZGnW9aT6dO3ZoNL8HT3se7jo.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9c/9c9f28-4f41-472d-a63e-a10a3a4963fb/1/YVo8LjxK7TZOHy2e0UtRMc12yMo.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/9c/9c9f28-4f41-472d-a63e-a10a3a4963fb/1/QNVZGnW9aT6dO3ZoNL8HT3se7jo.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 193.201.107.0/24 IPv6: 2001:678:c28::/48 Signature Algorithm: sha256WithRSAEncryption 4c:61:94:ae:a7:33:30:8d:3f:d5:b1:d8:e1:f0:06:50:ca:19: 64:a8:46:7e:3c:4b:c0:ab:3b:41:2f:3e:c1:14:47:39:8e:35: fd:a9:c3:48:7a:c5:25:8f:a4:3e:79:0c:6e:35:ad:02:fa:79: 12:b4:e9:c5:75:46:ae:96:c7:4c:f7:cc:27:39:c2:1e:e8:8b: 2d:b5:a5:0c:4c:9b:41:00:69:63:4e:a7:73:61:5c:36:00:b1: 02:9b:77:16:d7:44:0f:e1:9e:28:0c:8a:54:d4:a8:a4:f1:a1: 20:f6:26:94:83:7c:64:39:58:e5:5a:77:5a:89:6c:cc:b2:28: 3d:4f:e9:88:b9:6a:c0:22:64:a5:48:b3:dd:8c:f3:53:44:18: 05:79:dd:9a:4e:b3:a7:2f:55:80:d0:54:0e:b0:48:88:77:d4: c9:1f:f0:9f:a2:3e:da:e0:10:07:3b:47:32:01:30:12:b6:f1: 5a:3f:ce:c2:9f:5c:a3:4f:07:41:4b:ef:4a:e9:4e:c0:87:2c: 9b:00:2c:a9:34:e1:df:2e:1e:ea:d1:b7:b7:8b:41:74:91:b1: 72:02:91:14:29:ff:7d:1a:2c:e9:fe:26:cc:bd:0e:a8:2d:cc: bb:6d:08:0a:91:c5:cc:21:71:27:03:a4:c4:d2:76:04:b0:74: aa:d1:81:ac -----BEGIN CERTIFICATE----- MIIFDjCCA/agAwIBAgISAZt8gJnugNmFfJStOeGKykuDMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDQwZDU1OTFhNzViZDY5M2U5ZDNiNzY2ODM0YmYwNzRmN2Ix ZWVlM2EwHhcNMjYwMTAyMDIxOTIxWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg2MTVhM2MyZTNjNGFlZDM2NGUxZjJkOWVkMTRiNTEzMWNkNzZjOGNhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqtkxxxAZcrT7v+ze9GaGZF1XP3GX XqqBt793O+GMXT2W31Zp+KNjYU//vEpgzkzkGuy/vCLaxqsU9exEGxlPzsL6kqxp bXQZ9w0WbkherjeJjWtt4osUeHwTaIl7M4uTmyBqkcNpCC2grFs/XAZFWYP6qbhw vQfoxIJPEbFz4eMM81mfYNZQCbpvg8AYxtLDJC25VI3uaSxEl11vVhJ3RvznnqAz +x/escNJYZA5hcHDTdx7FC5m0M4r0UWpFyau7F8Jq5Oo2r7K4mX7X6tKBLJ5pnU3 7dSrFXoI9bDvwZuHRrHy4hlRVATneGxGrAh4eODkLUD+Ubmnt0y7JeGi3QIDAQAB o4ICGjCCAhYwHQYDVR0OBBYEFGFaPC48Su02Th8tntFLUTHNdsjKMB8GA1UdIwQY MBaAFEDVWRp1vWk+nTt2aDS/B097Hu46MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvUU5WWkduVzlhVDZkTzNab05MOEhUM3NlN2pvLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85Yy85YzlmMjgtNGY0MS00NzJkLWE2M2Ut YTEwYTNhNDk2M2ZiLzEvWVZvOExqeEs3VFpPSHkyZTBVdFJNYzEyeU1vLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC85Yy85YzlmMjgtNGY0MS00NzJkLWE2M2UtYTEwYTNhNDk2M2Zi LzEvUU5WWkduVzlhVDZkTzNab05MOEhUM3NlN2pvLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMDAGCCsGAQUFBwEHAQH/BCEwHzAMBAIAATAGAwQAwclrMA8E AgACMAkDBwAgAQZ4DCgwDQYJKoZIhvcNAQELBQADggEBAExhlK6nMzCNP9Wx2OHw BlDKGWSoRn48S8CrO0EvPsEURzmONf2pw0h6xSWPpD55DG41rQL6eRK06cV1Rq6W x0z3zCc5wh7oiy21pQxMm0EAaWNOp3NhXDYAsQKbdxbXRA/hnigMilTUqKTxoSD2 JpSDfGQ5WOVad1qJbMyyKD1P6Yi5asAiZKVIs92M81NEGAV53ZpOs6cvVYDQVA6w SIh31Mkf8J+iPtrgEAc7RzIBMBK28Vo/zsKfXKNPB0FL70rpTsCHLJsALKk04d8u HurRt7eLQXSRsXICkRQp/30aLOn+Jsy9DqgtzLttCAqRxcwhcScDpMTSdgSwdKrR gaw= -----END CERTIFICATE-----Generated at Mon Jan 26 12:56:53 2026 by rpki-client