This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/36/038560-26d6-455d-a8f4-9bfdf2251267/1/y1xvK7lHBhE4mJfORtJta3k7QLw.roa File: y1xvK7lHBhE4mJfORtJta3k7QLw.roa (raw, json) Hash identifier: ifW/r0S+8T3HM1pq3eDXlZA/lxPnTJhYCS5bj7w7VBs= Subject key identifier: CB:5C:6F:2B:B9:47:06:11:38:98:97:CE:46:D2:6D:6B:79:3B:40:BC Certificate issuer: /CN=a823fe6dad8ad4fdaee6dd6983c1e55cde8482a2 Certificate serial: 019B7CECD356DCE6190B1A999A24EADBA2B7 Authority key identifier: A8:23:FE:6D:AD:8A:D4:FD:AE:E6:DD:69:83:C1:E5:5C:DE:84:82:A2 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qCP-ba2K1P2u5t1pg8HlXN6EgqI.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/36/038560-26d6-455d-a8f4-9bfdf2251267/1/y1xvK7lHBhE4mJfORtJta3k7QLw.roa Signing time: Fri 02 Jan 2026 04:17:33 +0000 ROA not before: Fri 02 Jan 2026 04:17:33 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 21032 IP address blocks: 193.58.88.0/22 maxlen: 24 2a0c:94c0::/29 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/36/038560-26d6-455d-a8f4-9bfdf2251267/1/qCP-ba2K1P2u5t1pg8HlXN6EgqI.crl rsync://rpki.ripe.net/repository/DEFAULT/36/038560-26d6-455d-a8f4-9bfdf2251267/1/qCP-ba2K1P2u5t1pg8HlXN6EgqI.mft rsync://rpki.ripe.net/repository/DEFAULT/qCP-ba2K1P2u5t1pg8HlXN6EgqI.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 19:00:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7c:ec:d3:56:dc:e6:19:0b:1a:99:9a:24:ea:db:a2:b7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=a823fe6dad8ad4fdaee6dd6983c1e55cde8482a2 Validity Not Before: Jan 2 04:17:33 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=cb5c6f2bb9470611389897ce46d26d6b793b40bc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e6:01:53:32:c0:54:61:e9:d6:11:54:58:da:88: ed:87:eb:08:19:3d:64:7f:1c:f5:b6:c9:c6:e3:2f: 69:9d:68:00:27:5e:ac:48:e2:2a:79:21:4b:58:5b: 5c:d7:33:3b:61:82:fc:13:75:24:ef:62:6a:af:43: 2b:5c:cc:56:76:fd:dd:e0:69:18:52:98:3e:7f:65: dc:4c:19:fb:25:d8:9d:8d:3a:32:0c:7a:ba:4e:dc: 6c:c8:38:2d:fd:ec:f1:06:27:6e:06:c9:3b:84:f6: 39:ff:48:fa:28:ea:0b:79:e9:e2:5f:cf:53:de:3c: 3e:d7:1b:c3:a2:c0:a0:e0:6b:ba:ec:d5:f0:af:fd: 2b:03:bb:c3:9c:94:27:c6:cb:b1:3a:79:3f:dd:2e: 01:dc:0a:30:13:cf:e3:da:da:13:4c:24:88:fc:42: 7b:37:9a:c7:08:93:fc:c1:28:ba:87:6c:d3:55:97: 06:ec:b2:8d:db:58:c0:b1:5d:23:75:fc:ad:86:64: 0b:74:61:dc:a7:8c:a7:ab:e4:e9:de:35:6f:db:16: 6b:9c:04:ed:0f:d9:2d:ff:a7:0a:5a:62:ac:9e:15: 40:dc:cc:90:65:69:39:94:db:e0:a8:30:10:a3:dd: d7:9d:d9:6b:a2:10:de:72:b0:32:34:da:90:3b:ed: 86:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CB:5C:6F:2B:B9:47:06:11:38:98:97:CE:46:D2:6D:6B:79:3B:40:BC X509v3 Authority Key Identifier: keyid:A8:23:FE:6D:AD:8A:D4:FD:AE:E6:DD:69:83:C1:E5:5C:DE:84:82:A2 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qCP-ba2K1P2u5t1pg8HlXN6EgqI.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/36/038560-26d6-455d-a8f4-9bfdf2251267/1/y1xvK7lHBhE4mJfORtJta3k7QLw.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/36/038560-26d6-455d-a8f4-9bfdf2251267/1/qCP-ba2K1P2u5t1pg8HlXN6EgqI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 193.58.88.0/22 IPv6: 2a0c:94c0::/29 Signature Algorithm: sha256WithRSAEncryption 2c:29:5a:d4:06:61:53:3f:61:04:ed:a6:f1:17:09:7d:de:5e: f8:4b:d1:63:0c:dd:11:96:76:30:a6:42:72:c2:79:a5:36:b4: 4c:03:74:ee:9b:17:9d:26:d0:eb:06:94:fd:1d:ec:cb:5a:92: 93:33:4c:05:75:30:1e:7a:98:5a:d9:55:92:a5:27:c2:0f:32: 79:0e:30:09:dd:27:d5:9a:33:c4:bf:bc:01:52:e9:68:e6:c2: bf:3b:e0:45:c1:a4:d9:08:00:b5:66:70:35:cd:76:74:14:5c: 1e:0f:7d:64:a0:4c:d3:39:c9:97:bd:30:10:71:7e:1e:09:27: 56:a5:d3:db:89:e4:d4:76:a1:f1:c9:3c:ba:e7:23:0f:11:cd: 97:6a:ed:14:b7:5e:82:85:d4:9f:de:9b:0a:29:cf:a7:1d:88: 0f:ec:22:63:9e:0f:06:15:a3:68:db:29:5d:33:77:0c:e2:b7: ea:69:0d:a7:8b:61:13:06:17:d5:d5:10:58:bb:5f:a7:11:49: c7:2f:eb:e4:16:a7:1f:76:c7:0f:c3:e2:fa:9e:f5:d4:7a:57: 85:6e:41:91:f2:32:38:eb:27:30:6f:2e:c2:42:32:b3:36:e3: 37:a3:81:e8:c5:20:0c:a7:d5:88:3d:3f:2c:ef:46:8d:a3:be: 38:f9:a9:9b -----BEGIN CERTIFICATE----- MIIFDDCCA/SgAwIBAgISAZt87NNW3OYZCxqZmiTq26K3MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGE4MjNmZTZkYWQ4YWQ0ZmRhZWU2ZGQ2OTgzYzFlNTVjZGU4 NDgyYTIwHhcNMjYwMTAyMDQxNzMzWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhjYjVjNmYyYmI5NDcwNjExMzg5ODk3Y2U0NmQyNmQ2Yjc5M2I0MGJjMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA5gFTMsBUYenWEVRY2ojth+sIGT1k fxz1tsnG4y9pnWgAJ16sSOIqeSFLWFtc1zM7YYL8E3Uk72Jqr0MrXMxWdv3d4GkY Upg+f2XcTBn7JdidjToyDHq6TtxsyDgt/ezxBiduBsk7hPY5/0j6KOoLeeniX89T 3jw+1xvDosCg4Gu67NXwr/0rA7vDnJQnxsuxOnk/3S4B3AowE8/j2toTTCSI/EJ7 N5rHCJP8wSi6h2zTVZcG7LKN21jAsV0jdfythmQLdGHcp4ynq+Tp3jVv2xZrnATt D9kt/6cKWmKsnhVA3MyQZWk5lNvgqDAQo93XndlrohDecrAyNNqQO+2GiwIDAQAB o4ICGDCCAhQwHQYDVR0OBBYEFMtcbyu5RwYROJiXzkbSbWt5O0C8MB8GA1UdIwQY MBaAFKgj/m2titT9rubdaYPB5VzehIKiMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvcUNQLWJhMksxUDJ1NXQxcGc4SGxYTjZFZ3FJLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zNi8wMzg1NjAtMjZkNi00NTVkLWE4ZjQt OWJmZGYyMjUxMjY3LzEveTF4dks3bEhCaEU0bUpmT1J0SnRhM2s3UUx3LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zNi8wMzg1NjAtMjZkNi00NTVkLWE4ZjQtOWJmZGYyMjUxMjY3 LzEvcUNQLWJhMksxUDJ1NXQxcGc4SGxYTjZFZ3FJLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMC4GCCsGAQUFBwEHAQH/BB8wHTAMBAIAATAGAwQCwTpYMA0E AgACMAcDBQMqDJTAMA0GCSqGSIb3DQEBCwUAA4IBAQAsKVrUBmFTP2EE7abxFwl9 3l74S9FjDN0RlnYwpkJywnmlNrRMA3TumxedJtDrBpT9HezLWpKTM0wFdTAeepha 2VWSpSfCDzJ5DjAJ3SfVmjPEv7wBUulo5sK/O+BFwaTZCAC1ZnA1zXZ0FFweD31k oEzTOcmXvTAQcX4eCSdWpdPbieTUdqHxyTy65yMPEc2Xau0Ut16ChdSf3psKKc+n HYgP7CJjng8GFaNo2yldM3cM4rfqaQ2ni2ETBhfV1RBYu1+nEUnHL+vkFqcfdscP w+L6nvXUeleFbkGR8jI46ycwby7CQjKzNuM3o4HoxSAMp9WIPT8s70aNo744+amb -----END CERTIFICATE-----Generated at Tue Feb 10 04:31:23 2026 by rpki-client