This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/29/f14079-4114-4bec-879c-8b06ec564a1b/1/cYnE7FavrDSt3SrEYya63HS7_dI.roa File: cYnE7FavrDSt3SrEYya63HS7_dI.roa (raw, json) Hash identifier: KGEvNenXcCeg3TCO3nqemstjyExiwPsWFQTV1a5VNaA= Subject key identifier: 71:89:C4:EC:56:AF:AC:34:AD:DD:2A:C4:63:26:BA:DC:74:BB:FD:D2 Certificate issuer: /CN=4b68e1fba7b44a7b666236b21253d7d6362d0d83 Certificate serial: 019B7834366B56B74283787C1E33D3B544DB Authority key identifier: 4B:68:E1:FB:A7:B4:4A:7B:66:62:36:B2:12:53:D7:D6:36:2D:0D:83 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/S2jh-6e0SntmYjayElPX1jYtDYM.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/29/f14079-4114-4bec-879c-8b06ec564a1b/1/cYnE7FavrDSt3SrEYya63HS7_dI.roa Signing time: Thu 01 Jan 2026 06:17:26 +0000 ROA not before: Thu 01 Jan 2026 06:17:26 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 25220 IP address blocks: 193.17.197.0/24 maxlen: 24 194.145.114.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/29/f14079-4114-4bec-879c-8b06ec564a1b/1/S2jh-6e0SntmYjayElPX1jYtDYM.crl rsync://rpki.ripe.net/repository/DEFAULT/29/f14079-4114-4bec-879c-8b06ec564a1b/1/S2jh-6e0SntmYjayElPX1jYtDYM.mft rsync://rpki.ripe.net/repository/DEFAULT/S2jh-6e0SntmYjayElPX1jYtDYM.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:00:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:78:34:36:6b:56:b7:42:83:78:7c:1e:33:d3:b5:44:db Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4b68e1fba7b44a7b666236b21253d7d6362d0d83 Validity Not Before: Jan 1 06:17:26 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=7189c4ec56afac34addd2ac46326badc74bbfdd2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:65:67:13:da:39:c2:d6:75:af:92:f3:5e:4e: 32:60:d1:d6:42:85:18:3f:17:e0:af:06:ae:2f:6d: 90:38:71:ee:a5:aa:88:44:2e:c8:9d:b0:c2:20:42: 05:b1:18:cb:87:28:23:f8:83:00:7b:e1:ac:97:e0: 57:28:11:6b:d0:14:64:f8:b1:6d:13:c5:9c:8f:b9: b3:47:69:bf:63:1b:bf:ca:29:bb:b7:05:e6:b5:cc: 40:c0:2e:c3:99:20:66:ff:81:b9:b0:df:01:14:d4: c4:b5:9e:e4:46:ae:f7:45:61:45:5c:a6:09:ad:87: a6:41:27:6a:da:7f:04:c1:aa:4e:0c:b3:bd:3a:87: d3:41:cd:34:c2:ae:cf:87:3c:9e:61:0f:b5:16:db: 03:98:91:8a:d5:7c:27:48:b0:a5:15:0f:51:49:67: a1:9d:50:93:6e:c3:a5:1a:c1:ac:82:65:54:bb:61: 0a:c5:16:f7:97:4c:ac:59:65:41:54:43:9d:3e:50: 61:d9:c7:d7:01:f8:67:42:52:0c:c3:f9:d2:a2:e1: 98:a7:82:32:0a:14:2f:43:63:64:8e:a8:97:0d:e5: b4:a6:bb:3e:49:9a:b6:1c:3c:73:1b:2c:18:74:9d: 01:65:3d:3a:88:ba:95:38:c3:6d:1d:d2:98:e8:35: 82:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 71:89:C4:EC:56:AF:AC:34:AD:DD:2A:C4:63:26:BA:DC:74:BB:FD:D2 X509v3 Authority Key Identifier: keyid:4B:68:E1:FB:A7:B4:4A:7B:66:62:36:B2:12:53:D7:D6:36:2D:0D:83 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/S2jh-6e0SntmYjayElPX1jYtDYM.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/29/f14079-4114-4bec-879c-8b06ec564a1b/1/cYnE7FavrDSt3SrEYya63HS7_dI.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/29/f14079-4114-4bec-879c-8b06ec564a1b/1/S2jh-6e0SntmYjayElPX1jYtDYM.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 193.17.197.0/24 194.145.114.0/24 Signature Algorithm: sha256WithRSAEncryption 25:1e:6d:3a:3d:61:9b:76:24:e2:4e:72:1d:27:71:4f:c1:02: ee:ad:c4:7a:a4:9d:bd:06:da:52:99:64:6a:6e:d2:3f:fc:4a: 4e:e6:66:51:f6:a2:14:d0:68:87:2d:b0:0f:4d:38:d8:fb:20: 2f:ef:c9:1e:13:4c:33:82:8f:67:ee:a4:8f:50:85:59:f4:24: 68:50:07:1a:af:26:43:61:91:c5:7f:c0:af:fe:c7:f4:a7:d6: be:a6:1e:88:72:cb:61:14:2a:83:36:68:c2:2a:ef:ca:72:a0: 22:f8:24:03:b7:46:a3:14:ff:a5:58:a3:91:0b:62:27:0e:8e: 0c:f1:d5:4e:d9:db:bc:68:91:cc:ce:d6:36:a0:25:5c:eb:0a: 8e:96:19:0f:47:92:74:4a:69:0f:03:36:df:e3:f3:71:96:93: d8:00:d1:e0:07:7f:5c:ea:f7:95:22:ea:8d:5d:40:ca:c8:ef: a2:ab:01:40:cc:7f:b5:46:c2:ae:88:77:8e:09:3e:ac:4d:bd: c2:62:33:a2:1c:d7:3e:de:18:9e:39:40:a1:03:f2:5e:ec:d4: 6c:a6:50:c2:c3:36:e3:d7:67:16:d9:0f:c3:ac:bf:10:9d:24: 20:33:79:26:a7:90:3b:29:90:9b:0e:88:28:c1:db:ea:05:25: be:64:14:82 -----BEGIN CERTIFICATE----- MIIFAzCCA+ugAwIBAgISAZt4NDZrVrdCg3h8HjPTtUTbMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDRiNjhlMWZiYTdiNDRhN2I2NjYyMzZiMjEyNTNkN2Q2MzYy ZDBkODMwHhcNMjYwMTAxMDYxNzI2WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg3MTg5YzRlYzU2YWZhYzM0YWRkZDJhYzQ2MzI2YmFkYzc0YmJmZGQyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxGVnE9o5wtZ1r5LzXk4yYNHWQoUY PxfgrwauL22QOHHupaqIRC7InbDCIEIFsRjLhygj+IMAe+Gsl+BXKBFr0BRk+LFt E8Wcj7mzR2m/Yxu/yim7twXmtcxAwC7DmSBm/4G5sN8BFNTEtZ7kRq73RWFFXKYJ rYemQSdq2n8EwapODLO9OofTQc00wq7PhzyeYQ+1FtsDmJGK1XwnSLClFQ9RSWeh nVCTbsOlGsGsgmVUu2EKxRb3l0ysWWVBVEOdPlBh2cfXAfhnQlIMw/nSouGYp4Iy ChQvQ2NkjqiXDeW0prs+SZq2HDxzGywYdJ0BZT06iLqVOMNtHdKY6DWCgwIDAQAB o4ICDzCCAgswHQYDVR0OBBYEFHGJxOxWr6w0rd0qxGMmutx0u/3SMB8GA1UdIwQY MBaAFEto4funtEp7ZmI2shJT19Y2LQ2DMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvUzJqaC02ZTBTbnRtWWpheUVsUFgxall0RFlNLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yOS9mMTQwNzktNDExNC00YmVjLTg3OWMt OGIwNmVjNTY0YTFiLzEvY1luRTdGYXZyRFN0M1NyRVl5YTYzSFM3X2RJLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yOS9mMTQwNzktNDExNC00YmVjLTg3OWMtOGIwNmVjNTY0YTFi LzEvUzJqaC02ZTBTbnRtWWpheUVsUFgxall0RFlNLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQAwRHFAwQA wpFyMA0GCSqGSIb3DQEBCwUAA4IBAQAlHm06PWGbdiTiTnIdJ3FPwQLurcR6pJ29 BtpSmWRqbtI//EpO5mZR9qIU0GiHLbAPTTjY+yAv78keE0wzgo9n7qSPUIVZ9CRo UAcaryZDYZHFf8Cv/sf0p9a+ph6IcsthFCqDNmjCKu/KcqAi+CQDt0ajFP+lWKOR C2InDo4M8dVO2du8aJHMztY2oCVc6wqOlhkPR5J0SmkPAzbf4/NxlpPYANHgB39c 6veVIuqNXUDKyO+iqwFAzH+1RsKuiHeOCT6sTb3CYjOiHNc+3hieOUChA/Je7NRs plDCwzbj12cW2Q/DrL8QnSQgM3kmp5A7KZCbDogowdvqBSW+ZBSC -----END CERTIFICATE-----Generated at Tue Feb 10 00:29:16 2026 by rpki-client