This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/be/1f6458-dc75-4add-ae72-91e3184bb0ab/1/ypfoqyQ6MVOm9gf4IkYc0sZzQIg.roa File: ypfoqyQ6MVOm9gf4IkYc0sZzQIg.roa (raw, json) Hash identifier: FT/m6DC8TKrUtX5et2py7Wv8QLWxnA/o9r7a55GLtYU= Subject key identifier: CA:97:E8:AB:24:3A:31:53:A6:F6:07:F8:22:46:1C:D2:C6:73:40:88 Certificate issuer: /CN=1aca63df248b7adf3ddd07e8c2d3eedd02cef933 Certificate serial: 019B7D5D06230D470936D313333488996F36 Authority key identifier: 1A:CA:63:DF:24:8B:7A:DF:3D:DD:07:E8:C2:D3:EE:DD:02:CE:F9:33 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Gspj3ySLet893QfowtPu3QLO-TM.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/be/1f6458-dc75-4add-ae72-91e3184bb0ab/1/ypfoqyQ6MVOm9gf4IkYc0sZzQIg.roa Signing time: Fri 02 Jan 2026 06:20:07 +0000 ROA not before: Fri 02 Jan 2026 06:20:07 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 198289 IP address blocks: 78.133.196.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/be/1f6458-dc75-4add-ae72-91e3184bb0ab/1/Gspj3ySLet893QfowtPu3QLO-TM.crl rsync://rpki.ripe.net/repository/DEFAULT/be/1f6458-dc75-4add-ae72-91e3184bb0ab/1/Gspj3ySLet893QfowtPu3QLO-TM.mft rsync://rpki.ripe.net/repository/DEFAULT/Gspj3ySLet893QfowtPu3QLO-TM.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 07:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7d:5d:06:23:0d:47:09:36:d3:13:33:34:88:99:6f:36 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1aca63df248b7adf3ddd07e8c2d3eedd02cef933 Validity Not Before: Jan 2 06:20:07 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=ca97e8ab243a3153a6f607f822461cd2c6734088 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:55:c8:83:31:5b:1b:a1:aa:8b:59:93:09:b2: 37:19:26:23:ae:1d:13:7d:e9:4e:35:a2:03:27:00: 30:3e:d3:0a:1e:eb:dd:9e:cb:89:cc:ba:e1:d4:a8: f2:35:00:09:21:5b:b0:ce:c6:e5:78:ea:e1:0b:43: 95:e5:34:a0:46:f1:ef:2c:5c:ce:20:5f:6a:e3:91: 5c:7d:d7:8b:40:d1:34:aa:01:78:5f:90:08:14:ab: 56:e0:74:1a:33:4c:e9:4a:b4:8b:a5:9f:b4:5f:b8: c9:8f:13:18:3d:ee:7d:96:bd:36:29:7f:39:3c:d6: c7:a5:81:0d:5d:f2:26:21:6c:e6:e3:2a:05:2e:a1: a3:db:eb:b5:ea:c2:80:4e:e5:9b:57:d9:2e:ad:a6: 34:2e:47:86:a4:e5:6a:b3:d2:91:f1:16:5c:4d:2f: c9:81:68:71:88:7e:a0:6d:a2:90:21:86:82:47:6a: 6b:45:bb:66:6b:65:af:5f:1b:28:28:b3:a2:e8:70: 00:d3:4a:7a:c7:d6:09:66:07:05:00:a6:a1:e3:7c: 81:49:5a:4c:ab:07:bf:c4:af:69:d6:a8:9f:e7:8c: a4:10:30:b7:27:a2:ca:34:38:91:35:3c:a7:17:e0: 2f:f2:a0:cc:ba:c2:3a:2f:1e:c7:65:28:05:c7:8e: 60:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CA:97:E8:AB:24:3A:31:53:A6:F6:07:F8:22:46:1C:D2:C6:73:40:88 X509v3 Authority Key Identifier: keyid:1A:CA:63:DF:24:8B:7A:DF:3D:DD:07:E8:C2:D3:EE:DD:02:CE:F9:33 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Gspj3ySLet893QfowtPu3QLO-TM.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/be/1f6458-dc75-4add-ae72-91e3184bb0ab/1/ypfoqyQ6MVOm9gf4IkYc0sZzQIg.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/be/1f6458-dc75-4add-ae72-91e3184bb0ab/1/Gspj3ySLet893QfowtPu3QLO-TM.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 78.133.196.0/24 Signature Algorithm: sha256WithRSAEncryption 90:3e:ce:ab:25:d1:74:93:66:7a:21:cf:8c:9a:0b:74:70:ae: 79:ff:fe:94:bc:e1:a1:5d:98:de:c9:d4:cb:8c:fd:45:29:d3: 3c:28:0c:c4:c3:67:25:ab:b7:65:d1:4c:31:e0:10:6a:1a:41: 7e:62:4f:54:53:f9:10:f0:c8:21:d7:69:c7:64:b5:5f:e9:02: 99:9b:1a:50:89:17:a1:13:09:99:d3:67:40:a0:d8:76:b5:b8: 0a:6b:7e:24:ba:d8:8b:53:74:3c:d6:2d:d6:fb:9d:f5:c2:5e: 31:31:a1:62:a2:a9:b6:c8:9d:2f:e5:a0:7c:43:dd:84:27:53: 06:60:d5:46:6d:e5:fc:8d:f9:41:ab:b6:45:04:6a:c1:0c:c6: d5:fe:46:de:db:6f:40:32:ee:b0:a1:68:e5:0b:d5:c0:9d:87: 24:ab:67:c9:82:ff:a2:b5:10:96:af:d0:81:d6:18:7d:ba:fb: e0:50:5c:8e:07:09:73:98:2a:d1:98:19:e9:a4:58:88:d4:e6: 18:eb:ad:df:af:6f:a8:04:e8:e4:44:43:4d:75:c3:b3:5c:29: 58:b0:1f:a7:6c:c0:1c:23:12:d7:c7:b2:59:ef:e7:b0:70:46: 60:26:41:70:8a:0a:a1:ab:1b:2c:72:68:03:57:2c:27:2c:7f: 42:ec:48:ec -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt9XQYjDUcJNtMTMzSImW82MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDFhY2E2M2RmMjQ4YjdhZGYzZGRkMDdlOGMyZDNlZWRkMDJj ZWY5MzMwHhcNMjYwMTAyMDYyMDA3WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhjYTk3ZThhYjI0M2EzMTUzYTZmNjA3ZjgyMjQ2MWNkMmM2NzM0MDg4MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwFXIgzFbG6Gqi1mTCbI3GSYjrh0T felONaIDJwAwPtMKHuvdnsuJzLrh1KjyNQAJIVuwzsbleOrhC0OV5TSgRvHvLFzO IF9q45FcfdeLQNE0qgF4X5AIFKtW4HQaM0zpSrSLpZ+0X7jJjxMYPe59lr02KX85 PNbHpYENXfImIWzm4yoFLqGj2+u16sKATuWbV9kuraY0LkeGpOVqs9KR8RZcTS/J gWhxiH6gbaKQIYaCR2prRbtma2WvXxsoKLOi6HAA00p6x9YJZgcFAKah43yBSVpM qwe/xK9p1qif54ykEDC3J6LKNDiRNTynF+Av8qDMusI6Lx7HZSgFx45gmwIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFMqX6KskOjFTpvYH+CJGHNLGc0CIMB8GA1UdIwQY MBaAFBrKY98ki3rfPd0H6MLT7t0CzvkzMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvR3NwajN5U0xldDg5M1Fmb3d0UHUzUUxPLVRNLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iZS8xZjY0NTgtZGM3NS00YWRkLWFlNzIt OTFlMzE4NGJiMGFiLzEveXBmb3F5UTZNVk9tOWdmNElrWWMwc1p6UUlnLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iZS8xZjY0NTgtZGM3NS00YWRkLWFlNzItOTFlMzE4NGJiMGFi LzEvR3NwajN5U0xldDg5M1Fmb3d0UHUzUUxPLVRNLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAToXEMA0G CSqGSIb3DQEBCwUAA4IBAQCQPs6rJdF0k2Z6Ic+Mmgt0cK55//6UvOGhXZjeydTL jP1FKdM8KAzEw2clq7dl0Uwx4BBqGkF+Yk9UU/kQ8Mgh12nHZLVf6QKZmxpQiReh EwmZ02dAoNh2tbgKa34kutiLU3Q81i3W+531wl4xMaFioqm2yJ0v5aB8Q92EJ1MG YNVGbeX8jflBq7ZFBGrBDMbV/kbe229AMu6woWjlC9XAnYckq2fJgv+itRCWr9CB 1hh9uvvgUFyOBwlzmCrRmBnppFiI1OYY663fr2+oBOjkRENNdcOzXClYsB+nbMAc IxLXx7JZ7+ewcEZgJkFwigqhqxsscmgDVywnLH9C7Ejs -----END CERTIFICATE-----Generated at Sun Jan 25 17:45:57 2026 by rpki-client