This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fd/726bb4-5d87-402d-91ce-5712d95ae638/1/Y_FLWnuNhEx2wO3ILnJnHpE8S50.roa File: Y_FLWnuNhEx2wO3ILnJnHpE8S50.roa (raw, json) Hash identifier: 4sjgJfec1CI7poYdj8/LooNLid4ueqSY+AsJdUDwJp0= Subject key identifier: 63:F1:4B:5A:7B:8D:84:4C:76:C0:ED:C8:2E:72:67:1E:91:3C:4B:9D Certificate issuer: /CN=d434f1686102876c6216bcea28a5e502ec0d7b6b Certificate serial: 019B7C115E1CD0E40DCF8350BF8FE37CE0A4 Authority key identifier: D4:34:F1:68:61:02:87:6C:62:16:BC:EA:28:A5:E5:02:EC:0D:7B:6B Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1DTxaGECh2xiFrzqKKXlAuwNe2s.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fd/726bb4-5d87-402d-91ce-5712d95ae638/1/Y_FLWnuNhEx2wO3ILnJnHpE8S50.roa Signing time: Fri 02 Jan 2026 00:17:51 +0000 ROA not before: Fri 02 Jan 2026 00:17:51 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 210097 IP address blocks: 5.40.136.0/24 maxlen: 24 62.82.51.0/24 maxlen: 24 82.159.153.0/24 maxlen: 24 84.124.62.0/24 maxlen: 24 95.39.61.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fd/726bb4-5d87-402d-91ce-5712d95ae638/1/1DTxaGECh2xiFrzqKKXlAuwNe2s.crl rsync://rpki.ripe.net/repository/DEFAULT/fd/726bb4-5d87-402d-91ce-5712d95ae638/1/1DTxaGECh2xiFrzqKKXlAuwNe2s.mft rsync://rpki.ripe.net/repository/DEFAULT/1DTxaGECh2xiFrzqKKXlAuwNe2s.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 06:01:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7c:11:5e:1c:d0:e4:0d:cf:83:50:bf:8f:e3:7c:e0:a4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d434f1686102876c6216bcea28a5e502ec0d7b6b Validity Not Before: Jan 2 00:17:51 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=63f14b5a7b8d844c76c0edc82e72671e913c4b9d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:99:93:66:e3:13:b4:bf:62:7e:ef:fd:8d:11:6b: 74:f4:35:a8:0b:ea:f5:26:a2:57:94:b7:3a:28:0b: 1f:90:30:a5:f0:54:23:fe:49:d2:4c:fc:1a:ae:3d: 69:04:85:56:54:4d:09:cc:a4:55:3e:e6:0a:01:5f: 36:e7:05:cd:52:89:fd:af:ba:b7:1a:d7:ba:e0:42: 93:89:45:c4:a7:29:7e:d2:4a:75:a2:56:54:c5:d5: 1e:79:3f:79:11:12:e9:9a:98:95:41:9d:aa:42:24: be:d8:c0:d8:fe:98:d6:71:bf:b5:39:7b:c9:d4:97: a2:97:31:37:82:94:b2:91:58:04:a1:86:c8:6c:00: a6:5b:4e:5b:fb:e3:ae:3a:db:81:7f:39:31:87:a5: 31:ff:33:6f:98:4a:ea:bb:4e:04:f3:68:ef:b5:b1: e3:e7:0b:77:1b:1f:46:64:0f:7d:4b:2b:4c:16:c7: d8:8b:27:59:f1:ed:50:2f:68:cd:5c:32:01:b7:22: c9:8c:5a:4b:b6:56:c1:a6:18:6e:d3:d7:04:da:ce: 96:c9:9a:04:72:27:08:ce:42:b4:01:18:6c:f1:28: 07:a5:91:95:79:d9:ca:20:93:11:c6:b9:95:9a:d7: 20:57:7a:55:bc:42:96:a9:78:44:76:bd:0a:45:89: c8:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 63:F1:4B:5A:7B:8D:84:4C:76:C0:ED:C8:2E:72:67:1E:91:3C:4B:9D X509v3 Authority Key Identifier: keyid:D4:34:F1:68:61:02:87:6C:62:16:BC:EA:28:A5:E5:02:EC:0D:7B:6B X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1DTxaGECh2xiFrzqKKXlAuwNe2s.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/726bb4-5d87-402d-91ce-5712d95ae638/1/Y_FLWnuNhEx2wO3ILnJnHpE8S50.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/726bb4-5d87-402d-91ce-5712d95ae638/1/1DTxaGECh2xiFrzqKKXlAuwNe2s.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 5.40.136.0/24 62.82.51.0/24 82.159.153.0/24 84.124.62.0/24 95.39.61.0/24 Signature Algorithm: sha256WithRSAEncryption 2c:e4:c0:cd:ca:9c:8e:a4:65:e7:09:6c:09:a7:ab:bb:78:80: d9:ff:95:23:15:1f:14:bd:15:03:04:56:29:b7:26:da:b4:be: 81:c0:5d:92:ee:45:21:6b:1c:a5:01:f4:59:59:35:37:7b:ce: 69:96:ed:78:a3:3e:38:96:9a:25:80:26:be:6f:37:a1:93:54: e9:a1:de:ea:41:dc:09:19:5d:91:f0:b1:b1:26:78:6c:77:97: 7a:03:58:24:5f:3b:25:14:30:b1:be:45:e5:fe:fa:2b:47:3a: 03:4f:7f:9c:53:9b:de:94:42:8f:6b:a1:a5:da:87:38:a4:a4: 4c:e2:5a:7b:d9:3c:cf:f0:82:44:33:e8:56:54:32:c0:6b:16: 17:b9:0b:cf:b1:e7:44:de:cc:b2:71:d0:d5:ec:49:b3:53:f0: 3f:d4:15:d4:a1:81:8d:22:43:09:a9:85:e0:27:7d:75:c7:24: 1c:13:aa:95:a5:a6:59:11:f0:46:3a:e9:7c:8b:77:a4:ef:27: 16:bd:65:dc:89:1b:48:7f:15:f1:94:cd:91:76:e1:9d:a2:46: 72:83:c8:43:dd:09:ef:ee:48:fa:9f:1a:b4:07:ac:71:43:e9: cf:16:a4:cd:38:60:70:e1:b7:a2:d1:3e:72:67:6d:37:d1:a2: 6c:f5:e9:bf -----BEGIN CERTIFICATE----- MIIFFTCCA/2gAwIBAgISAZt8EV4c0OQNz4NQv4/jfOCkMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGQ0MzRmMTY4NjEwMjg3NmM2MjE2YmNlYTI4YTVlNTAyZWMw ZDdiNmIwHhcNMjYwMTAyMDAxNzUxWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg2M2YxNGI1YTdiOGQ4NDRjNzZjMGVkYzgyZTcyNjcxZTkxM2M0YjlkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmZNm4xO0v2J+7/2NEWt09DWoC+r1 JqJXlLc6KAsfkDCl8FQj/knSTPwarj1pBIVWVE0JzKRVPuYKAV825wXNUon9r7q3 Gte64EKTiUXEpyl+0kp1olZUxdUeeT95ERLpmpiVQZ2qQiS+2MDY/pjWcb+1OXvJ 1JeilzE3gpSykVgEoYbIbACmW05b++OuOtuBfzkxh6Ux/zNvmErqu04E82jvtbHj 5wt3Gx9GZA99SytMFsfYiydZ8e1QL2jNXDIBtyLJjFpLtlbBphhu09cE2s6WyZoE cicIzkK0ARhs8SgHpZGVednKIJMRxrmVmtcgV3pVvEKWqXhEdr0KRYnIewIDAQAB o4ICITCCAh0wHQYDVR0OBBYEFGPxS1p7jYRMdsDtyC5yZx6RPEudMB8GA1UdIwQY MBaAFNQ08WhhAodsYha86iil5QLsDXtrMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvMURUeGFHRUNoMnhpRnJ6cUtLWGxBdXdOZTJzLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mZC83MjZiYjQtNWQ4Ny00MDJkLTkxY2Ut NTcxMmQ5NWFlNjM4LzEvWV9GTFdudU5oRXgyd08zSUxuSm5IcEU4UzUwLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9mZC83MjZiYjQtNWQ4Ny00MDJkLTkxY2UtNTcxMmQ5NWFlNjM4 LzEvMURUeGFHRUNoMnhpRnJ6cUtLWGxBdXdOZTJzLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMDcGCCsGAQUFBwEHAQH/BCgwJjAkBAIAATAeAwQABSiIAwQA PlIzAwQAUp+ZAwQAVHw+AwQAXyc9MA0GCSqGSIb3DQEBCwUAA4IBAQAs5MDNypyO pGXnCWwJp6u7eIDZ/5UjFR8UvRUDBFYptybatL6BwF2S7kUhaxylAfRZWTU3e85p lu14oz44lpolgCa+bzehk1Tpod7qQdwJGV2R8LGxJnhsd5d6A1gkXzslFDCxvkXl /vorRzoDT3+cU5velEKPa6Gl2oc4pKRM4lp72TzP8IJEM+hWVDLAaxYXuQvPsedE 3syycdDV7EmzU/A/1BXUoYGNIkMJqYXgJ311xyQcE6qVpaZZEfBGOul8i3ek7ycW vWXciRtIfxXxlM2RduGdokZyg8hD3Qnv7kj6nxq0B6xxQ+nPFqTNOGBw4bei0T5y Z2030aJs9em/ -----END CERTIFICATE-----Generated at Sun Jan 25 17:47:17 2026 by rpki-client