This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d2/7dce73-c4df-4333-8e81-1d703b496634/1/Ys4PogIAyq6Z-1e6V87HwtKW-Jw.roa File: Ys4PogIAyq6Z-1e6V87HwtKW-Jw.roa (raw, json) Hash identifier: 9OEorLPT8PEnhbBuzCTUI3Vb5lQD/nIA0b2dhSxkYk4= Subject key identifier: 62:CE:0F:A2:02:00:CA:AE:99:FB:57:BA:57:CE:C7:C2:D2:96:F8:9C Certificate issuer: /CN=38a8550659bb68e770d8b0126b7261fb87d8240b Certificate serial: 019B775914809BFA9D2E22F325D58D65DFBB Authority key identifier: 38:A8:55:06:59:BB:68:E7:70:D8:B0:12:6B:72:61:FB:87:D8:24:0B Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OKhVBlm7aOdw2LASa3Jh-4fYJAs.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d2/7dce73-c4df-4333-8e81-1d703b496634/1/Ys4PogIAyq6Z-1e6V87HwtKW-Jw.roa Signing time: Thu 01 Jan 2026 02:18:05 +0000 ROA not before: Thu 01 Jan 2026 02:18:05 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 44277 IP address blocks: 86.107.180.0/24 maxlen: 24 188.213.51.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d2/7dce73-c4df-4333-8e81-1d703b496634/1/OKhVBlm7aOdw2LASa3Jh-4fYJAs.crl rsync://rpki.ripe.net/repository/DEFAULT/d2/7dce73-c4df-4333-8e81-1d703b496634/1/OKhVBlm7aOdw2LASa3Jh-4fYJAs.mft rsync://rpki.ripe.net/repository/DEFAULT/OKhVBlm7aOdw2LASa3Jh-4fYJAs.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 16:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:77:59:14:80:9b:fa:9d:2e:22:f3:25:d5:8d:65:df:bb Signature Algorithm: sha256WithRSAEncryption Issuer: CN=38a8550659bb68e770d8b0126b7261fb87d8240b Validity Not Before: Jan 1 02:18:05 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=62ce0fa20200caae99fb57ba57cec7c2d296f89c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:89:72:46:70:5e:d2:91:ab:46:37:74:66:b3:05: 35:42:7d:f3:b9:fb:be:bd:8c:62:ac:48:ca:a1:ff: 8a:79:3c:5d:2c:03:32:a0:96:d6:b6:5c:3e:51:e1: 77:8b:ac:9f:bc:e5:80:c3:dd:5b:d5:52:45:ff:00: 38:e3:65:fe:14:6e:c8:76:55:ed:79:11:7b:b4:91: 44:1d:ed:57:6a:67:a9:5e:43:38:ce:3f:4f:e3:4a: f7:2f:94:0f:d8:77:ac:ed:b3:25:3a:04:76:e8:66: 63:b9:44:70:d3:3f:fe:de:0a:e3:e5:16:0b:1d:99: 21:c7:a9:e3:d0:dc:6d:2c:ea:ee:58:9b:97:09:ab: d2:af:a3:e4:ef:9e:4a:ba:d4:43:db:d8:e3:20:2e: 65:be:39:69:31:99:7f:fc:3b:cc:58:12:b4:9f:f1: f1:de:52:e1:12:c8:f7:d2:5f:cf:78:0d:5d:89:cb: 6a:34:76:71:13:db:fe:36:f0:68:e7:59:fc:78:37: 0f:8a:76:94:03:ed:68:a4:f6:00:95:9e:67:dc:41: 53:c6:f1:92:f6:3e:70:4a:c1:99:9e:20:fd:f7:75: bb:62:98:8f:a9:09:61:fd:69:35:02:3a:9d:18:f8: 3f:2a:b3:be:59:02:80:92:7d:f8:cc:c4:25:97:62: 34:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 62:CE:0F:A2:02:00:CA:AE:99:FB:57:BA:57:CE:C7:C2:D2:96:F8:9C X509v3 Authority Key Identifier: keyid:38:A8:55:06:59:BB:68:E7:70:D8:B0:12:6B:72:61:FB:87:D8:24:0B X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OKhVBlm7aOdw2LASa3Jh-4fYJAs.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d2/7dce73-c4df-4333-8e81-1d703b496634/1/Ys4PogIAyq6Z-1e6V87HwtKW-Jw.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/d2/7dce73-c4df-4333-8e81-1d703b496634/1/OKhVBlm7aOdw2LASa3Jh-4fYJAs.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 86.107.180.0/24 188.213.51.0/24 Signature Algorithm: sha256WithRSAEncryption 5c:17:63:bf:42:c4:da:6f:96:9e:a3:ec:3c:2c:30:69:39:e9: f2:6f:62:77:e8:b1:f8:b9:84:ec:e6:79:ac:3d:fa:1a:d8:8c: 5c:f5:26:4e:3e:96:af:1a:af:dd:22:34:d0:b4:a5:4d:ae:94: fc:01:23:96:e6:59:c8:89:10:5a:a8:fd:74:af:21:01:7e:3a: 1f:68:fd:91:3d:3a:5f:5b:64:d1:1e:f0:fd:40:56:95:d6:13: 78:b1:f6:cb:73:1a:bf:9e:42:31:1d:bd:64:0c:8c:6f:c9:48: a8:67:ac:a5:2d:51:68:91:ed:b1:21:13:98:d8:26:ee:41:67: 7c:9b:6d:84:3b:15:fd:5d:f7:d0:37:37:32:c0:a8:dc:4b:16: 96:fa:71:a9:a4:db:ac:c8:0a:14:74:49:a4:b5:49:6e:bb:2f: fe:6d:7e:80:2a:f1:5b:23:5f:bc:61:f1:0d:38:46:d3:96:90: aa:4a:82:6d:55:47:21:d2:cb:00:09:95:2a:2b:ce:18:45:c5: f6:39:52:d3:3a:57:13:a4:66:d1:4e:c2:7a:58:0f:c2:88:fe: 4d:dc:ea:25:e7:4c:97:59:32:bd:ac:b1:9f:3a:d9:f6:d8:82: 77:f0:17:c4:19:b0:76:cd:a2:16:28:1d:f0:20:14:68:9d:c8: f4:e5:03:1a -----BEGIN CERTIFICATE----- MIIFAzCCA+ugAwIBAgISAZt3WRSAm/qdLiLzJdWNZd+7MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDM4YTg1NTA2NTliYjY4ZTc3MGQ4YjAxMjZiNzI2MWZiODdk ODI0MGIwHhcNMjYwMTAxMDIxODA1WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg2MmNlMGZhMjAyMDBjYWFlOTlmYjU3YmE1N2NlYzdjMmQyOTZmODljMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAiXJGcF7SkatGN3RmswU1Qn3zufu+ vYxirEjKof+KeTxdLAMyoJbWtlw+UeF3i6yfvOWAw91b1VJF/wA442X+FG7IdlXt eRF7tJFEHe1XamepXkM4zj9P40r3L5QP2Hes7bMlOgR26GZjuURw0z/+3grj5RYL HZkhx6nj0NxtLOruWJuXCavSr6Pk755KutRD29jjIC5lvjlpMZl//DvMWBK0n/Hx 3lLhEsj30l/PeA1dictqNHZxE9v+NvBo51n8eDcPinaUA+1opPYAlZ5n3EFTxvGS 9j5wSsGZniD993W7YpiPqQlh/Wk1AjqdGPg/KrO+WQKAkn34zMQll2I0NQIDAQAB o4ICDzCCAgswHQYDVR0OBBYEFGLOD6ICAMqumftXulfOx8LSlvicMB8GA1UdIwQY MBaAFDioVQZZu2jncNiwEmtyYfuH2CQLMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvT0toVkJsbTdhT2R3MkxBU2EzSmgtNGZZSkFzLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kMi83ZGNlNzMtYzRkZi00MzMzLThlODEt MWQ3MDNiNDk2NjM0LzEvWXM0UG9nSUF5cTZaLTFlNlY4N0h3dEtXLUp3LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kMi83ZGNlNzMtYzRkZi00MzMzLThlODEtMWQ3MDNiNDk2NjM0 LzEvT0toVkJsbTdhT2R3MkxBU2EzSmgtNGZZSkFzLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQAVmu0AwQA vNUzMA0GCSqGSIb3DQEBCwUAA4IBAQBcF2O/QsTab5aeo+w8LDBpOenyb2J36LH4 uYTs5nmsPfoa2Ixc9SZOPpavGq/dIjTQtKVNrpT8ASOW5lnIiRBaqP10ryEBfjof aP2RPTpfW2TRHvD9QFaV1hN4sfbLcxq/nkIxHb1kDIxvyUioZ6ylLVFoke2xIROY 2CbuQWd8m22EOxX9XffQNzcywKjcSxaW+nGppNusyAoUdEmktUluuy/+bX6AKvFb I1+8YfENOEbTlpCqSoJtVUch0ssACZUqK84YRcX2OVLTOlcTpGbRTsJ6WA/CiP5N 3Ool50yXWTK9rLGfOtn22IJ38BfEGbB2zaIWKB3wIBRoncj05QMa -----END CERTIFICATE-----Generated at Mon Jan 26 00:39:06 2026 by rpki-client