This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/18/97f89e-82b5-442b-b672-5d192fbfcb0b/1/YPX4hTijPNtYr9QhjImFgFRXgKg.roa File: YPX4hTijPNtYr9QhjImFgFRXgKg.roa (raw, json) Hash identifier: Uysgi8w4knYDa70kMhClAKgRlCbLW7PT65F4/2d78Bg= Subject key identifier: 60:F5:F8:85:38:A3:3C:DB:58:AF:D4:21:8C:89:85:80:54:57:80:A8 Certificate issuer: /CN=fab796d980fa60fe2514fce62646f45d12c95165 Certificate serial: 019B7834AF043635728462C393D4C4A2D2BD Authority key identifier: FA:B7:96:D9:80:FA:60:FE:25:14:FC:E6:26:46:F4:5D:12:C9:51:65 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-reW2YD6YP4lFPzmJkb0XRLJUWU.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/18/97f89e-82b5-442b-b672-5d192fbfcb0b/1/YPX4hTijPNtYr9QhjImFgFRXgKg.roa Signing time: Thu 01 Jan 2026 06:17:57 +0000 ROA not before: Thu 01 Jan 2026 06:17:57 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 209435 IP address blocks: 5.253.172.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/18/97f89e-82b5-442b-b672-5d192fbfcb0b/1/1-reW2YD6YP4lFPzmJkb0XRLJUWU.crl rsync://rpki.ripe.net/repository/DEFAULT/18/97f89e-82b5-442b-b672-5d192fbfcb0b/1/1-reW2YD6YP4lFPzmJkb0XRLJUWU.mft rsync://rpki.ripe.net/repository/DEFAULT/1-reW2YD6YP4lFPzmJkb0XRLJUWU.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:78:34:af:04:36:35:72:84:62:c3:93:d4:c4:a2:d2:bd Signature Algorithm: sha256WithRSAEncryption Issuer: CN=fab796d980fa60fe2514fce62646f45d12c95165 Validity Not Before: Jan 1 06:17:57 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=60f5f88538a33cdb58afd4218c898580545780a8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e7:51:c4:4e:69:d8:65:6e:62:8c:e6:45:1b:a9: 1a:d4:dd:ca:14:25:e1:53:0c:0a:1a:0f:db:8f:b4: 89:80:17:30:d6:64:ea:d0:39:b2:2c:7d:40:4b:96: d8:56:c8:4d:b2:46:e6:f5:d1:48:57:5e:29:8f:e1: a9:9a:fd:08:ac:05:7c:50:27:f6:62:e0:72:b2:0e: 5c:7f:dd:6d:4e:f4:77:cd:93:a1:17:3a:8c:46:11: f4:52:9b:a3:a8:49:e2:4f:80:27:43:a8:05:f4:ed: 6e:4e:4c:e7:e0:f4:1c:c7:cd:44:45:88:27:89:0d: d7:d8:bf:07:d6:c2:01:8d:c9:e0:dd:67:1f:e4:5e: c8:39:4b:06:b8:02:db:a6:40:d5:dc:f3:6a:ab:fb: 51:aa:cf:6d:bb:40:bf:a1:2c:62:73:97:e8:32:94: 79:96:f1:fd:20:66:14:21:7b:31:d4:48:60:fc:c3: 5e:08:c9:55:da:f5:0b:98:33:a3:db:40:57:ce:eb: a0:04:6a:13:29:0b:ef:e1:8d:85:e9:63:01:04:09: 5b:d9:47:95:82:e0:f8:13:83:b0:d0:3c:4e:d1:54: 48:e0:13:d5:e1:20:5e:50:08:73:aa:c5:8b:b0:1b: 29:3d:6a:7b:56:21:a2:22:d0:b6:c7:96:4d:25:a6: a3:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 60:F5:F8:85:38:A3:3C:DB:58:AF:D4:21:8C:89:85:80:54:57:80:A8 X509v3 Authority Key Identifier: keyid:FA:B7:96:D9:80:FA:60:FE:25:14:FC:E6:26:46:F4:5D:12:C9:51:65 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-reW2YD6YP4lFPzmJkb0XRLJUWU.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/18/97f89e-82b5-442b-b672-5d192fbfcb0b/1/YPX4hTijPNtYr9QhjImFgFRXgKg.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/18/97f89e-82b5-442b-b672-5d192fbfcb0b/1/1-reW2YD6YP4lFPzmJkb0XRLJUWU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 5.253.172.0/22 Signature Algorithm: sha256WithRSAEncryption 50:bb:7e:00:f3:cf:6a:ab:57:1d:d7:d3:d1:51:ec:e9:de:c3: 86:a1:bd:8f:5e:f7:56:dd:bd:2d:8b:82:56:f6:f9:93:0f:d5: 96:01:94:25:59:38:16:7a:d8:47:b5:e7:4b:a7:ce:71:08:fd: fa:64:c0:0f:d8:68:36:f0:ca:8f:d7:94:90:4c:3d:0a:20:06: 24:96:4f:ea:14:be:44:94:7d:b3:59:62:ae:de:25:c1:95:6f: a0:f1:ac:ac:0a:45:94:95:45:f9:68:b5:99:26:8a:5c:cb:23: 68:30:f3:e3:6e:71:b4:f3:66:2a:cf:6c:7a:3e:14:83:9e:8b: c7:0d:4e:8e:10:a0:db:de:cc:d0:2c:2f:02:3d:f5:d9:7d:5f: 48:3a:cf:67:de:2f:98:ce:dd:9c:bc:49:fc:36:46:f8:53:20: 59:44:09:6b:64:70:9d:02:23:34:3c:26:d1:24:4c:3a:a2:a8: 89:c8:79:83:c0:2b:f1:79:d7:83:1c:6f:d0:c8:ad:4a:58:09: 32:69:57:27:fe:4e:8c:f0:40:7d:3a:aa:67:54:80:ab:51:d5: e8:1e:41:53:26:33:e4:f2:65:04:ce:87:f9:16:a2:e2:b7:8b: 49:e5:ba:b3:3b:02:27:d9:3b:4e:ec:0c:1a:70:ba:6f:d8:6c: 20:85:3e:59 -----BEGIN CERTIFICATE----- MIIE/zCCA+egAwIBAgISAZt4NK8ENjVyhGLDk9TEotK9MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGZhYjc5NmQ5ODBmYTYwZmUyNTE0ZmNlNjI2NDZmNDVkMTJj OTUxNjUwHhcNMjYwMTAxMDYxNzU3WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg2MGY1Zjg4NTM4YTMzY2RiNThhZmQ0MjE4Yzg5ODU4MDU0NTc4MGE4MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA51HETmnYZW5ijOZFG6ka1N3KFCXh UwwKGg/bj7SJgBcw1mTq0DmyLH1AS5bYVshNskbm9dFIV14pj+Gpmv0IrAV8UCf2 YuBysg5cf91tTvR3zZOhFzqMRhH0UpujqEniT4AnQ6gF9O1uTkzn4PQcx81ERYgn iQ3X2L8H1sIBjcng3Wcf5F7IOUsGuALbpkDV3PNqq/tRqs9tu0C/oSxic5foMpR5 lvH9IGYUIXsx1Ehg/MNeCMlV2vULmDOj20BXzuugBGoTKQvv4Y2F6WMBBAlb2UeV guD4E4Ow0DxO0VRI4BPV4SBeUAhzqsWLsBspPWp7ViGiItC2x5ZNJaajhQIDAQAB o4ICCzCCAgcwHQYDVR0OBBYEFGD1+IU4ozzbWK/UIYyJhYBUV4CoMB8GA1UdIwQY MBaAFPq3ltmA+mD+JRT85iZG9F0SyVFlMA4GA1UdDwEB/wQEAwIHgDBlBggrBgEF BQcBAQRZMFcwVQYIKwYBBQUHMAKGSXJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvMS1yZVcyWUQ2WVA0bEZQem1Ka2IwWFJMSlVXVS5jZXIw gY0GCCsGAQUFBwELBIGAMH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBl Lm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMTgvOTdmODllLTgyYjUtNDQyYi1iNjcy LTVkMTkyZmJmY2IwYi8xL1lQWDRoVGlqUE50WXI5UWhqSW1GZ0ZSWGdLZy5yb2Ew gYIGA1UdHwR7MHkwd6B1oHOGcXJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0 b3J5L0RFRkFVTFQvMTgvOTdmODllLTgyYjUtNDQyYi1iNjcyLTVkMTkyZmJmY2Iw Yi8xLzEtcmVXMllENllQNGxGUHptSmtiMFhSTEpVV1UuY3JsMBgGA1UdIAEB/wQO MAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAIF/aww DQYJKoZIhvcNAQELBQADggEBAFC7fgDzz2qrVx3X09FR7Onew4ahvY9e91bdvS2L glb2+ZMP1ZYBlCVZOBZ62Ee150unznEI/fpkwA/YaDbwyo/XlJBMPQogBiSWT+oU vkSUfbNZYq7eJcGVb6DxrKwKRZSVRflotZkmilzLI2gw8+NucbTzZirPbHo+FIOe i8cNTo4QoNvezNAsLwI99dl9X0g6z2feL5jO3Zy8Sfw2RvhTIFlECWtkcJ0CIzQ8 JtEkTDqiqInIeYPAK/F514Mcb9DIrUpYCTJpVyf+TozwQH06qmdUgKtR1egeQVMm M+TyZQTOh/kWouK3i0nlurM7AifZO07sDBpwum/YbCCFPlk= -----END CERTIFICATE-----Generated at Mon Feb 9 22:23:27 2026 by rpki-client