This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e2/f92cd7-646c-441b-ae46-9b282c643256/1/ywfKrP4cRTy2QlVvbLFd6cmyt18.roa File: ywfKrP4cRTy2QlVvbLFd6cmyt18.roa (raw, json) Hash identifier: Gmr+SV2YTd76CuhRcbMnXPX7jhYpfpofEYm1FZomnvI= Subject key identifier: CB:07:CA:AC:FE:1C:45:3C:B6:42:55:6F:6C:B1:5D:E9:C9:B2:B7:5F Certificate issuer: /CN=7e1167886da81524431bbf2efb0572914b686ebc Certificate serial: 019B7DCAD3736062CB451E742019CA79BA2D Authority key identifier: 7E:11:67:88:6D:A8:15:24:43:1B:BF:2E:FB:05:72:91:4B:68:6E:BC Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fhFniG2oFSRDG78u-wVykUtobrw.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e2/f92cd7-646c-441b-ae46-9b282c643256/1/ywfKrP4cRTy2QlVvbLFd6cmyt18.roa Signing time: Fri 02 Jan 2026 08:20:03 +0000 ROA not before: Fri 02 Jan 2026 08:20:03 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 3356 IP address blocks: 195.160.148.0/24 maxlen: 24 195.160.149.0/24 maxlen: 24 212.39.229.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e2/f92cd7-646c-441b-ae46-9b282c643256/1/fhFniG2oFSRDG78u-wVykUtobrw.crl rsync://rpki.ripe.net/repository/DEFAULT/e2/f92cd7-646c-441b-ae46-9b282c643256/1/fhFniG2oFSRDG78u-wVykUtobrw.mft rsync://rpki.ripe.net/repository/DEFAULT/fhFniG2oFSRDG78u-wVykUtobrw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 24 Jan 2026 08:01:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7d:ca:d3:73:60:62:cb:45:1e:74:20:19:ca:79:ba:2d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7e1167886da81524431bbf2efb0572914b686ebc Validity Not Before: Jan 2 08:20:03 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=cb07caacfe1c453cb642556f6cb15de9c9b2b75f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:58:71:e2:83:e8:b6:01:c6:52:9a:75:df:1d: d5:4a:15:e6:98:08:c6:a3:18:b1:08:0e:30:8b:f4: 66:88:87:7e:f6:01:ef:ad:b9:58:97:c0:49:e2:cc: d9:c3:64:3c:8c:60:a3:bd:c9:f5:7b:fb:2e:53:7f: d6:7f:e1:30:f7:55:fc:74:53:ba:a9:4f:fa:00:af: 66:48:f6:57:f0:d2:ab:98:0b:4f:a9:87:a2:90:e7: aa:f7:b8:b1:1d:59:78:40:45:ab:96:18:a5:bb:d9: 7d:61:0d:41:b5:be:17:75:28:5b:d5:84:20:06:1f: 9a:a0:c1:7b:c6:f9:87:27:ec:3e:5f:99:11:84:e0: c2:30:f5:12:38:ef:23:18:54:37:62:a3:9e:1e:7f: bf:6a:1d:c9:84:01:51:66:bd:7e:e8:ef:81:f6:56: 23:4f:ae:cd:11:85:a2:15:82:3b:de:c8:91:ef:ba: ae:49:e5:79:9c:de:26:12:03:a4:cf:69:1f:c7:08: d3:a8:c1:af:3f:7a:f8:5b:c7:56:0d:5b:36:51:13: 29:1c:9b:ee:55:35:d8:1d:ab:57:81:80:71:23:b1: 4a:6d:e6:69:f3:d7:82:3b:f9:81:aa:46:ae:de:b4: 94:30:93:30:21:d7:01:3e:cf:4c:d5:b8:20:5c:54: a6:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CB:07:CA:AC:FE:1C:45:3C:B6:42:55:6F:6C:B1:5D:E9:C9:B2:B7:5F X509v3 Authority Key Identifier: keyid:7E:11:67:88:6D:A8:15:24:43:1B:BF:2E:FB:05:72:91:4B:68:6E:BC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fhFniG2oFSRDG78u-wVykUtobrw.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e2/f92cd7-646c-441b-ae46-9b282c643256/1/ywfKrP4cRTy2QlVvbLFd6cmyt18.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/e2/f92cd7-646c-441b-ae46-9b282c643256/1/fhFniG2oFSRDG78u-wVykUtobrw.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 195.160.148.0/23 212.39.229.0/24 Signature Algorithm: sha256WithRSAEncryption 20:38:78:b8:50:d7:95:63:9f:10:8b:86:fa:fc:ca:8a:cc:21: 1c:2f:4b:d4:96:17:5f:f2:20:41:f8:e3:d8:06:a4:f8:3c:9a: e2:d5:e0:79:16:89:54:93:cf:b2:0e:7d:3b:71:f4:01:73:0b: 63:71:06:94:29:02:cd:11:2c:e7:61:62:de:3f:d0:30:1e:10: 72:d8:a7:7e:49:19:e8:ee:92:2c:2e:00:c3:14:08:1f:18:87: 4c:64:b4:6a:32:d0:9b:b9:1f:b5:ea:88:d1:a2:d6:86:75:39: 5d:f6:d8:89:da:ce:e6:0f:8e:5c:91:55:fa:7c:42:41:e4:6d: 92:d2:10:ec:ed:9d:84:c5:11:0e:99:93:dc:17:63:cf:70:e2: 22:35:a2:79:6c:3d:60:eb:e0:61:49:eb:18:ea:cb:3c:6b:3a: 7d:38:6a:7e:73:35:61:f7:3e:69:21:09:34:7f:9c:19:de:ab: 19:e3:57:f1:8e:26:93:29:b9:84:a9:f2:84:54:db:94:0e:8d: a4:08:03:7f:24:c9:e7:f8:b5:16:41:5d:f2:f5:fe:a2:ed:7e: 41:71:27:a9:29:af:c4:a6:16:63:82:8f:7d:78:8b:5c:db:08: d5:10:81:bf:29:61:cc:3f:92:13:76:9c:7b:ad:c9:89:a4:23: f8:af:07:60 -----BEGIN CERTIFICATE----- MIIFAzCCA+ugAwIBAgISAZt9ytNzYGLLRR50IBnKebotMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDdlMTE2Nzg4NmRhODE1MjQ0MzFiYmYyZWZiMDU3MjkxNGI2 ODZlYmMwHhcNMjYwMTAyMDgyMDAzWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhjYjA3Y2FhY2ZlMWM0NTNjYjY0MjU1NmY2Y2IxNWRlOWM5YjJiNzVmMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAr1hx4oPotgHGUpp13x3VShXmmAjG oxixCA4wi/RmiId+9gHvrblYl8BJ4szZw2Q8jGCjvcn1e/suU3/Wf+Ew91X8dFO6 qU/6AK9mSPZX8NKrmAtPqYeikOeq97ixHVl4QEWrlhilu9l9YQ1Btb4XdShb1YQg Bh+aoMF7xvmHJ+w+X5kRhODCMPUSOO8jGFQ3YqOeHn+/ah3JhAFRZr1+6O+B9lYj T67NEYWiFYI73siR77quSeV5nN4mEgOkz2kfxwjTqMGvP3r4W8dWDVs2URMpHJvu VTXYHatXgYBxI7FKbeZp89eCO/mBqkau3rSUMJMwIdcBPs9M1bggXFSmGwIDAQAB o4ICDzCCAgswHQYDVR0OBBYEFMsHyqz+HEU8tkJVb2yxXenJsrdfMB8GA1UdIwQY MBaAFH4RZ4htqBUkQxu/LvsFcpFLaG68MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvZmhGbmlHMm9GU1JERzc4dS13VnlrVXRvYnJ3LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lMi9mOTJjZDctNjQ2Yy00NDFiLWFlNDYt OWIyODJjNjQzMjU2LzEveXdmS3JQNGNSVHkyUWxWdmJMRmQ2Y215dDE4LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9lMi9mOTJjZDctNjQ2Yy00NDFiLWFlNDYtOWIyODJjNjQzMjU2 LzEvZmhGbmlHMm9GU1JERzc4dS13VnlrVXRvYnJ3LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQBw6CUAwQA 1CflMA0GCSqGSIb3DQEBCwUAA4IBAQAgOHi4UNeVY58Qi4b6/MqKzCEcL0vUlhdf 8iBB+OPYBqT4PJri1eB5FolUk8+yDn07cfQBcwtjcQaUKQLNESznYWLeP9AwHhBy 2Kd+SRno7pIsLgDDFAgfGIdMZLRqMtCbuR+16ojRotaGdTld9tiJ2s7mD45ckVX6 fEJB5G2S0hDs7Z2ExREOmZPcF2PPcOIiNaJ5bD1g6+BhSesY6ss8azp9OGp+czVh 9z5pIQk0f5wZ3qsZ41fxjiaTKbmEqfKEVNuUDo2kCAN/JMnn+LUWQV3y9f6i7X5B cSepKa/EphZjgo99eItc2wjVEIG/KWHMP5ITdpx7rcmJpCP4rwdg -----END CERTIFICATE-----Generated at Fri Jan 23 16:02:17 2026 by rpki-client