This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d9/680b78-96af-4a85-ac02-943d03321326/1/yIMEoIBOJUBXfJhYjhyQa7qWITs.roa File: yIMEoIBOJUBXfJhYjhyQa7qWITs.roa (raw, json) Hash identifier: IwnrbulOR1jCD4cOM8pJTRdNFB5dqO73dUvdfRYoIfA= Subject key identifier: C8:83:04:A0:80:4E:25:40:57:7C:98:58:8E:1C:90:6B:BA:96:21:3B Certificate issuer: /CN=2135c7f571eefeb67404ab6c45fd475551adaf1b Certificate serial: 019B78343D4C381CA4959F14521E6F10051C Authority key identifier: 21:35:C7:F5:71:EE:FE:B6:74:04:AB:6C:45:FD:47:55:51:AD:AF:1B Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ITXH9XHu_rZ0BKtsRf1HVVGtrxs.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d9/680b78-96af-4a85-ac02-943d03321326/1/yIMEoIBOJUBXfJhYjhyQa7qWITs.roa Signing time: Thu 01 Jan 2026 06:17:27 +0000 ROA not before: Thu 01 Jan 2026 06:17:27 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 1881 IP address blocks: 192.71.128.0/24 maxlen: 24 192.121.30.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d9/680b78-96af-4a85-ac02-943d03321326/1/ITXH9XHu_rZ0BKtsRf1HVVGtrxs.crl rsync://rpki.ripe.net/repository/DEFAULT/d9/680b78-96af-4a85-ac02-943d03321326/1/ITXH9XHu_rZ0BKtsRf1HVVGtrxs.mft rsync://rpki.ripe.net/repository/DEFAULT/ITXH9XHu_rZ0BKtsRf1HVVGtrxs.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 25 Jan 2026 23:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:78:34:3d:4c:38:1c:a4:95:9f:14:52:1e:6f:10:05:1c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2135c7f571eefeb67404ab6c45fd475551adaf1b Validity Not Before: Jan 1 06:17:27 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=c88304a0804e2540577c98588e1c906bba96213b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:8f:c8:3c:cd:dc:15:83:14:79:00:a8:22:e5: fa:a4:c4:94:be:16:20:73:d1:0e:5e:8f:7e:7a:4c: f6:3c:7f:00:0e:dc:6e:c3:2e:78:1d:b9:57:82:d0: ea:c5:1a:7f:06:62:95:d6:9f:6d:b1:03:dd:42:c3: 12:9b:b0:d8:f6:69:fb:37:8e:c1:71:11:02:70:25: b5:da:5d:cd:14:18:91:47:83:15:5d:9c:5b:72:4f: 45:ed:c2:9c:9e:1d:b1:f0:6a:8e:d0:78:8d:d8:7d: 40:39:9b:31:b5:0c:ac:6b:47:ba:5c:19:65:67:d5: 05:c4:e4:10:75:ea:2b:ea:65:7c:c7:57:5c:62:53: 6d:59:dc:23:b1:e7:02:aa:0c:14:35:e4:47:98:5d: dc:22:e7:b0:48:f5:fc:bd:69:f9:ef:1f:ca:e6:d6: af:6a:1b:47:85:ff:66:5a:37:b2:4e:bc:71:5e:f0: 5b:95:c0:42:ce:4b:97:b9:8b:4e:b0:a3:a5:24:a1: 56:2d:7b:65:34:ce:ec:1d:d2:5c:02:43:12:99:91: 36:a7:cd:f6:2a:41:b0:8f:62:ba:b3:31:d7:42:0c: ac:45:92:01:ed:f0:77:0c:f5:3f:f6:08:fd:19:02: 87:9d:04:3a:22:b3:df:cc:c7:3f:bd:72:c9:5d:95: 38:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C8:83:04:A0:80:4E:25:40:57:7C:98:58:8E:1C:90:6B:BA:96:21:3B X509v3 Authority Key Identifier: keyid:21:35:C7:F5:71:EE:FE:B6:74:04:AB:6C:45:FD:47:55:51:AD:AF:1B X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ITXH9XHu_rZ0BKtsRf1HVVGtrxs.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/680b78-96af-4a85-ac02-943d03321326/1/yIMEoIBOJUBXfJhYjhyQa7qWITs.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/680b78-96af-4a85-ac02-943d03321326/1/ITXH9XHu_rZ0BKtsRf1HVVGtrxs.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 192.71.128.0/24 192.121.30.0/24 Signature Algorithm: sha256WithRSAEncryption 74:28:92:12:7d:5f:fd:3e:01:43:d4:90:3c:71:64:08:10:92: a0:a2:69:51:2f:8a:1f:bb:1c:95:d0:8a:33:36:07:f6:2f:24: 91:02:ca:04:4a:ef:92:6e:51:a2:c6:4d:c9:88:f3:22:5c:33: 40:5e:ab:32:64:fc:0c:34:24:c9:df:18:cf:87:99:26:81:93: 34:6d:43:54:58:39:77:2b:a8:7a:55:39:4a:7f:61:09:ab:d7: d9:c5:4a:28:49:b1:82:dc:c6:f2:ea:67:a8:48:2b:90:63:31: 02:20:ff:22:8f:68:63:a1:c4:70:bb:73:32:12:85:19:1e:af: 70:3a:a9:b0:f1:80:ff:0c:b4:5e:cf:26:ca:8d:92:f4:10:6f: 52:25:9d:b2:fe:af:35:f8:d3:19:6f:de:6f:91:f4:17:28:ec: 39:dd:cb:7a:7d:f8:56:f2:94:42:31:92:b5:87:c6:e2:04:c5: da:1b:60:01:43:d4:5c:d8:85:70:47:c6:b5:a9:23:a7:de:55: d6:35:6b:7d:76:f7:3c:3d:ff:d6:20:7e:b5:57:6f:73:33:d0: 73:7f:0f:bc:94:36:93:f8:ad:d2:a7:e4:2c:cf:0f:6a:f0:1c: 0b:8d:3f:37:e5:3f:07:32:74:39:7b:84:a4:6a:e5:02:51:f0: 11:fb:f3:cf -----BEGIN CERTIFICATE----- MIIFAzCCA+ugAwIBAgISAZt4ND1MOByklZ8UUh5vEAUcMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDIxMzVjN2Y1NzFlZWZlYjY3NDA0YWI2YzQ1ZmQ0NzU1NTFh ZGFmMWIwHhcNMjYwMTAxMDYxNzI3WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhjODgzMDRhMDgwNGUyNTQwNTc3Yzk4NTg4ZTFjOTA2YmJhOTYyMTNiMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwY/IPM3cFYMUeQCoIuX6pMSUvhYg c9EOXo9+ekz2PH8ADtxuwy54HblXgtDqxRp/BmKV1p9tsQPdQsMSm7DY9mn7N47B cRECcCW12l3NFBiRR4MVXZxbck9F7cKcnh2x8GqO0HiN2H1AOZsxtQysa0e6XBll Z9UFxOQQdeor6mV8x1dcYlNtWdwjsecCqgwUNeRHmF3cIuewSPX8vWn57x/K5tav ahtHhf9mWjeyTrxxXvBblcBCzkuXuYtOsKOlJKFWLXtlNM7sHdJcAkMSmZE2p832 KkGwj2K6szHXQgysRZIB7fB3DPU/9gj9GQKHnQQ6IrPfzMc/vXLJXZU4cQIDAQAB o4ICDzCCAgswHQYDVR0OBBYEFMiDBKCATiVAV3yYWI4ckGu6liE7MB8GA1UdIwQY MBaAFCE1x/Vx7v62dASrbEX9R1VRra8bMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSVRYSDlYSHVfclowQkt0c1JmMUhWVkd0cnhzLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kOS82ODBiNzgtOTZhZi00YTg1LWFjMDIt OTQzZDAzMzIxMzI2LzEveUlNRW9JQk9KVUJYZkpoWWpoeVFhN3FXSVRzLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kOS82ODBiNzgtOTZhZi00YTg1LWFjMDItOTQzZDAzMzIxMzI2 LzEvSVRYSDlYSHVfclowQkt0c1JmMUhWVkd0cnhzLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQAwEeAAwQA wHkeMA0GCSqGSIb3DQEBCwUAA4IBAQB0KJISfV/9PgFD1JA8cWQIEJKgomlRL4of uxyV0IozNgf2LySRAsoESu+SblGixk3JiPMiXDNAXqsyZPwMNCTJ3xjPh5kmgZM0 bUNUWDl3K6h6VTlKf2EJq9fZxUooSbGC3Mby6meoSCuQYzECIP8ij2hjocRwu3My EoUZHq9wOqmw8YD/DLRezybKjZL0EG9SJZ2y/q81+NMZb95vkfQXKOw53ct6ffhW 8pRCMZK1h8biBMXaG2ABQ9Rc2IVwR8a1qSOn3lXWNWt9dvc8Pf/WIH61V29zM9Bz fw+8lDaT+K3Sp+Qszw9q8BwLjT835T8HMnQ5e4SkauUCUfAR+/PP -----END CERTIFICATE-----Generated at Sun Jan 25 09:41:15 2026 by rpki-client