This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bd/9daff4-f158-480f-b41f-d48b42ef159b/1/YorSmVSKuGvPWA7DA6m1cRcL1FY.roa File: YorSmVSKuGvPWA7DA6m1cRcL1FY.roa (raw, json) Hash identifier: qU63ylCGxnEyiZbz76RKuCXngXRAm2RLSoEhfEzs9Wk= Subject key identifier: 62:8A:D2:99:54:8A:B8:6B:CF:58:0E:C3:03:A9:B5:71:17:0B:D4:56 Certificate issuer: /CN=dc7821e1bcbf6e074ea4814aaa5c63e3ba813c5f Certificate serial: 019B7B365A1F366F2AD66DEC96B4F0A03B49 Authority key identifier: DC:78:21:E1:BC:BF:6E:07:4E:A4:81:4A:AA:5C:63:E3:BA:81:3C:5F Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3Hgh4by_bgdOpIFKqlxj47qBPF8.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bd/9daff4-f158-480f-b41f-d48b42ef159b/1/YorSmVSKuGvPWA7DA6m1cRcL1FY.roa Signing time: Thu 01 Jan 2026 20:18:38 +0000 ROA not before: Thu 01 Jan 2026 20:18:38 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 35577 IP address blocks: 193.33.33.0/24 maxlen: 24 194.117.234.0/24 maxlen: 24 194.117.235.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bd/9daff4-f158-480f-b41f-d48b42ef159b/1/3Hgh4by_bgdOpIFKqlxj47qBPF8.crl rsync://rpki.ripe.net/repository/DEFAULT/bd/9daff4-f158-480f-b41f-d48b42ef159b/1/3Hgh4by_bgdOpIFKqlxj47qBPF8.mft rsync://rpki.ripe.net/repository/DEFAULT/3Hgh4by_bgdOpIFKqlxj47qBPF8.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 13:21:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7b:36:5a:1f:36:6f:2a:d6:6d:ec:96:b4:f0:a0:3b:49 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=dc7821e1bcbf6e074ea4814aaa5c63e3ba813c5f Validity Not Before: Jan 1 20:18:38 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=628ad299548ab86bcf580ec303a9b571170bd456 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:11:8f:66:38:e0:6e:bc:97:f5:90:87:ad:77: 3c:ba:e8:72:7b:58:e3:1b:1d:5b:0b:6c:93:9b:0f: b5:48:23:aa:52:b2:c0:df:a8:d1:2d:81:ad:dd:40: bb:24:03:b9:9c:a8:68:49:58:88:e9:4c:d7:c2:ec: 7b:8d:80:c1:0a:35:7c:d0:bb:b4:a4:8d:61:0f:d6: b5:b3:e5:16:ad:80:04:65:c5:1a:fd:c5:df:37:ae: e1:cd:c9:ee:47:d6:bc:da:d7:9a:87:72:97:47:73: ea:be:45:e6:b5:e7:6f:24:b3:e9:59:9b:e5:d1:1c: e5:2d:43:45:9d:05:e0:7b:4f:7f:e0:31:0e:2e:53: 32:d9:10:37:32:fe:85:1e:c1:de:51:ec:91:a2:df: a2:06:65:80:fa:bf:55:4d:89:79:83:e3:a0:1f:d6: 99:11:63:c2:e0:69:ee:77:05:87:c0:6d:8e:72:67: d5:c1:eb:40:93:d4:bf:89:1b:de:01:42:01:24:10: ce:d7:a1:34:17:13:75:aa:01:94:fe:5a:64:af:12: 05:32:8a:7c:1c:ec:d2:b3:41:4c:e4:98:90:37:b7: 65:96:f7:5c:01:95:99:bb:80:f1:a6:f7:d7:69:88: f6:4f:5d:6e:c3:83:70:c5:98:a4:6c:dc:45:a1:1f: 5b:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 62:8A:D2:99:54:8A:B8:6B:CF:58:0E:C3:03:A9:B5:71:17:0B:D4:56 X509v3 Authority Key Identifier: keyid:DC:78:21:E1:BC:BF:6E:07:4E:A4:81:4A:AA:5C:63:E3:BA:81:3C:5F X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3Hgh4by_bgdOpIFKqlxj47qBPF8.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/9daff4-f158-480f-b41f-d48b42ef159b/1/YorSmVSKuGvPWA7DA6m1cRcL1FY.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/9daff4-f158-480f-b41f-d48b42ef159b/1/3Hgh4by_bgdOpIFKqlxj47qBPF8.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 193.33.33.0/24 194.117.234.0/23 Signature Algorithm: sha256WithRSAEncryption 01:61:f6:74:88:a9:7c:1f:89:de:5b:8d:54:97:02:7f:9c:d8: db:12:1d:f8:4c:9d:46:3c:6e:2b:e4:54:26:5a:bf:37:7a:af: 9c:4a:58:0b:a7:97:ec:3a:ef:7e:47:2b:8f:45:63:17:d8:f6: cf:9a:20:7d:05:28:47:06:e8:b5:c8:44:f6:06:ba:52:e6:46: f8:bd:85:0a:bf:14:d5:3e:82:ae:3e:a0:ee:d7:ad:d5:88:3d: e6:52:22:90:87:51:1b:51:4e:67:83:bf:f8:44:4e:e7:34:92: bf:aa:2d:dd:af:e8:67:5d:cf:47:03:67:59:ca:2d:f4:b4:1c: 24:5f:59:a9:78:98:4a:37:4c:41:b6:e5:77:ce:7b:06:64:ba: 6d:fa:2a:d8:c4:a6:ab:4d:08:01:e9:83:73:d9:eb:76:17:91: 75:8e:86:b4:4f:74:42:e7:8a:f3:0c:4c:2e:a7:94:4e:92:65: 22:85:20:fc:c4:8f:2a:b5:41:ca:7e:1f:e0:fa:b7:05:fe:e5: 3d:9d:21:fa:67:f7:02:6d:87:67:ab:be:8e:23:92:d3:e6:89: 8c:9f:9b:26:6f:83:37:e7:bb:75:ae:e7:fb:5b:1b:ae:bc:4d: d5:4b:93:ca:22:8f:16:69:80:f9:b8:42:7b:65:67:a5:58:cc: 18:06:3b:fb -----BEGIN CERTIFICATE----- MIIFAzCCA+ugAwIBAgISAZt7NlofNm8q1m3slrTwoDtJMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGRjNzgyMWUxYmNiZjZlMDc0ZWE0ODE0YWFhNWM2M2UzYmE4 MTNjNWYwHhcNMjYwMTAxMjAxODM4WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg2MjhhZDI5OTU0OGFiODZiY2Y1ODBlYzMwM2E5YjU3MTE3MGJkNDU2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzxGPZjjgbryX9ZCHrXc8uuhye1jj Gx1bC2yTmw+1SCOqUrLA36jRLYGt3UC7JAO5nKhoSViI6UzXwux7jYDBCjV80Lu0 pI1hD9a1s+UWrYAEZcUa/cXfN67hzcnuR9a82teah3KXR3PqvkXmtedvJLPpWZvl 0RzlLUNFnQXge09/4DEOLlMy2RA3Mv6FHsHeUeyRot+iBmWA+r9VTYl5g+OgH9aZ EWPC4GnudwWHwG2OcmfVwetAk9S/iRveAUIBJBDO16E0FxN1qgGU/lpkrxIFMop8 HOzSs0FM5JiQN7dllvdcAZWZu4DxpvfXaYj2T11uw4NwxZikbNxFoR9bowIDAQAB o4ICDzCCAgswHQYDVR0OBBYEFGKK0plUirhrz1gOwwOptXEXC9RWMB8GA1UdIwQY MBaAFNx4IeG8v24HTqSBSqpcY+O6gTxfMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvM0hnaDRieV9iZ2RPcElGS3FseGo0N3FCUEY4LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iZC85ZGFmZjQtZjE1OC00ODBmLWI0MWYt ZDQ4YjQyZWYxNTliLzEvWW9yU21WU0t1R3ZQV0E3REE2bTFjUmNMMUZZLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iZC85ZGFmZjQtZjE1OC00ODBmLWI0MWYtZDQ4YjQyZWYxNTli LzEvM0hnaDRieV9iZ2RPcElGS3FseGo0N3FCUEY4LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQAwSEhAwQB wnXqMA0GCSqGSIb3DQEBCwUAA4IBAQABYfZ0iKl8H4neW41UlwJ/nNjbEh34TJ1G PG4r5FQmWr83eq+cSlgLp5fsOu9+RyuPRWMX2PbPmiB9BShHBui1yET2BrpS5kb4 vYUKvxTVPoKuPqDu163ViD3mUiKQh1EbUU5ng7/4RE7nNJK/qi3dr+hnXc9HA2dZ yi30tBwkX1mpeJhKN0xBtuV3znsGZLpt+irYxKarTQgB6YNz2et2F5F1joa0T3RC 54rzDEwup5ROkmUihSD8xI8qtUHKfh/g+rcF/uU9nSH6Z/cCbYdnq76OI5LT5omM n5smb4M357t1ruf7WxuuvE3VS5PKIo8WaYD5uEJ7ZWelWMwYBjv7 -----END CERTIFICATE-----Generated at Sun Jan 25 22:42:21 2026 by rpki-client