This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d9/68ce36-74e4-443b-aef1-3bb8b075d69f/1/yb5tB73Np2D1lNGtzmycYpeEJ3M.roa File: yb5tB73Np2D1lNGtzmycYpeEJ3M.roa (raw, json) Hash identifier: R8cB18o3wipqodyDiw0A9Cbd4ddNmYwVxpX/xGXqoV8= Subject key identifier: C9:BE:6D:07:BD:CD:A7:60:F5:94:D1:AD:CE:6C:9C:62:97:84:27:73 Certificate issuer: /CN=521f0cba10daa302e3b167cee5395f742f530b09 Certificate serial: 019B79112FB1AD6C34316460964FC2AF48B5 Authority key identifier: 52:1F:0C:BA:10:DA:A3:02:E3:B1:67:CE:E5:39:5F:74:2F:53:0B:09 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Uh8MuhDaowLjsWfO5TlfdC9TCwk.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d9/68ce36-74e4-443b-aef1-3bb8b075d69f/1/yb5tB73Np2D1lNGtzmycYpeEJ3M.roa Signing time: Thu 01 Jan 2026 10:18:48 +0000 ROA not before: Thu 01 Jan 2026 10:18:48 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 9205 IP address blocks: 87.76.128.0/17 maxlen: 17 87.76.254.0/23 maxlen: 23 193.110.112.0/22 maxlen: 22 193.110.115.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d9/68ce36-74e4-443b-aef1-3bb8b075d69f/1/Uh8MuhDaowLjsWfO5TlfdC9TCwk.crl rsync://rpki.ripe.net/repository/DEFAULT/d9/68ce36-74e4-443b-aef1-3bb8b075d69f/1/Uh8MuhDaowLjsWfO5TlfdC9TCwk.mft rsync://rpki.ripe.net/repository/DEFAULT/Uh8MuhDaowLjsWfO5TlfdC9TCwk.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 27 Jan 2026 01:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:79:11:2f:b1:ad:6c:34:31:64:60:96:4f:c2:af:48:b5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=521f0cba10daa302e3b167cee5395f742f530b09 Validity Not Before: Jan 1 10:18:48 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=c9be6d07bdcda760f594d1adce6c9c6297842773 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:9c:b2:98:a4:cb:19:ec:e3:a0:6c:ec:27:0a: d7:90:ab:e4:56:43:49:55:a0:85:b3:e4:60:c0:e7: 65:2e:34:c6:07:a0:64:32:ff:48:d0:b1:19:0c:3b: 70:b7:c3:27:ac:31:86:54:ab:7e:1e:c0:1a:a7:06: 4f:fa:2b:2d:8a:d4:fc:d6:a5:be:2c:10:58:13:31: 15:bf:52:2b:f4:7e:61:f5:48:2c:ed:1d:39:24:17: ca:b8:29:cb:5b:ed:9d:e9:5b:31:a4:17:9c:0f:e4: f3:56:74:1a:a4:00:1e:b3:e0:ef:8b:bd:d5:50:ae: 69:ed:4f:cb:03:3f:4c:df:e2:86:a8:71:a5:0d:a3: 77:3a:bb:a0:36:1b:c8:4e:27:53:d0:f9:7b:57:52: 08:2f:57:8d:ba:bf:0d:2a:df:e6:92:ad:63:d8:90: eb:7b:ec:3b:bd:1b:56:31:af:1c:1e:e9:07:ad:f5: 14:de:60:98:cd:eb:63:2a:80:db:8b:5a:f5:01:bb: 27:fc:22:b8:28:2e:01:d6:8e:45:56:51:0f:7b:d7: e8:ee:61:c0:78:c1:af:c6:cd:a3:01:82:1d:5f:12: 7d:9f:84:6f:2e:2c:46:43:7a:8d:2a:8c:8e:e6:52: d9:45:f6:56:db:c8:57:22:04:a4:2c:28:67:8f:69: 2e:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C9:BE:6D:07:BD:CD:A7:60:F5:94:D1:AD:CE:6C:9C:62:97:84:27:73 X509v3 Authority Key Identifier: keyid:52:1F:0C:BA:10:DA:A3:02:E3:B1:67:CE:E5:39:5F:74:2F:53:0B:09 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Uh8MuhDaowLjsWfO5TlfdC9TCwk.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/68ce36-74e4-443b-aef1-3bb8b075d69f/1/yb5tB73Np2D1lNGtzmycYpeEJ3M.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/68ce36-74e4-443b-aef1-3bb8b075d69f/1/Uh8MuhDaowLjsWfO5TlfdC9TCwk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 87.76.128.0/17 193.110.112.0/22 Signature Algorithm: sha256WithRSAEncryption 15:ed:88:e1:73:6e:c8:28:e9:fb:30:97:85:eb:63:5a:49:52: 16:84:89:c8:6f:da:6e:c4:45:9a:3f:4e:66:80:5e:6f:62:57: 38:9a:13:3d:9e:73:b7:71:dc:72:3f:47:e4:a0:8f:a7:69:bb: 38:ea:18:ee:62:58:14:6e:28:79:fb:71:a4:64:6e:a4:28:2b: 8a:26:36:22:0b:2f:b7:36:97:b6:2a:5f:7c:32:ba:10:3f:a6: 03:37:f4:3d:1d:d1:7a:a0:60:e3:a5:ee:eb:1a:96:d9:96:ad: 25:29:fd:f6:b0:c9:1f:88:13:49:22:5c:8f:32:33:dc:05:ae: 6f:0d:86:65:5f:aa:03:05:b1:ef:ef:39:93:14:a0:bf:a7:a6: b1:fe:53:64:c9:4e:e3:c2:c6:f1:a6:a3:ce:4f:36:54:e8:59: e5:a9:c8:b6:6c:ad:2f:fd:a9:d3:1e:dd:b8:f4:17:ea:3c:e5: 1b:b6:2b:54:81:7c:41:29:26:0e:c4:bd:35:bc:21:fe:10:f3: 5e:ba:9b:13:fc:b0:d6:d9:6c:69:8b:15:2d:f7:6d:d9:93:27: 83:a0:e6:38:0a:db:54:fc:06:2b:ea:61:0d:4e:ba:e4:59:aa: c8:ae:bc:ca:c4:c9:cc:59:bb:06:fb:73:7b:34:31:50:8e:19: d9:84:22:ec -----BEGIN CERTIFICATE----- MIIFAzCCA+ugAwIBAgISAZt5ES+xrWw0MWRglk/Cr0i1MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDUyMWYwY2JhMTBkYWEzMDJlM2IxNjdjZWU1Mzk1Zjc0MmY1 MzBiMDkwHhcNMjYwMTAxMTAxODQ4WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhjOWJlNmQwN2JkY2RhNzYwZjU5NGQxYWRjZTZjOWM2Mjk3ODQyNzczMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAopyymKTLGezjoGzsJwrXkKvkVkNJ VaCFs+RgwOdlLjTGB6BkMv9I0LEZDDtwt8MnrDGGVKt+HsAapwZP+istitT81qW+ LBBYEzEVv1Ir9H5h9Ugs7R05JBfKuCnLW+2d6VsxpBecD+TzVnQapAAes+Dvi73V UK5p7U/LAz9M3+KGqHGlDaN3OrugNhvITidT0Pl7V1IIL1eNur8NKt/mkq1j2JDr e+w7vRtWMa8cHukHrfUU3mCYzetjKoDbi1r1Absn/CK4KC4B1o5FVlEPe9fo7mHA eMGvxs2jAYIdXxJ9n4RvLixGQ3qNKoyO5lLZRfZW28hXIgSkLChnj2kufwIDAQAB o4ICDzCCAgswHQYDVR0OBBYEFMm+bQe9zadg9ZTRrc5snGKXhCdzMB8GA1UdIwQY MBaAFFIfDLoQ2qMC47FnzuU5X3QvUwsJMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvVWg4TXVoRGFvd0xqc1dmTzVUbGZkQzlUQ3drLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kOS82OGNlMzYtNzRlNC00NDNiLWFlZjEt M2JiOGIwNzVkNjlmLzEveWI1dEI3M05wMkQxbE5HdHpteWNZcGVFSjNNLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kOS82OGNlMzYtNzRlNC00NDNiLWFlZjEtM2JiOGIwNzVkNjlm LzEvVWg4TXVoRGFvd0xqc1dmTzVUbGZkQzlUQ3drLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQHV0yAAwQC wW5wMA0GCSqGSIb3DQEBCwUAA4IBAQAV7Yjhc27IKOn7MJeF62NaSVIWhInIb9pu xEWaP05mgF5vYlc4mhM9nnO3cdxyP0fkoI+nabs46hjuYlgUbih5+3GkZG6kKCuK JjYiCy+3Npe2Kl98MroQP6YDN/Q9HdF6oGDjpe7rGpbZlq0lKf32sMkfiBNJIlyP MjPcBa5vDYZlX6oDBbHv7zmTFKC/p6ax/lNkyU7jwsbxpqPOTzZU6Fnlqci2bK0v /anTHt249BfqPOUbtitUgXxBKSYOxL01vCH+EPNeupsT/LDW2WxpixUt923ZkyeD oOY4CttU/AYr6mENTrrkWarIrrzKxMnMWbsG+3N7NDFQjhnZhCLs -----END CERTIFICATE-----Generated at Mon Jan 26 08:58:41 2026 by rpki-client