This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/39/3e4899-aacc-4efd-93df-a61a98359c4a/1/pY7lepz5HDLGPMLul3xF8ZoLGb4.roa File: pY7lepz5HDLGPMLul3xF8ZoLGb4.roa (raw, json) Hash identifier: xUY7XApdCCskYdTx86cHtQLmN8N5m7zUQqjbzI7nUzA= Subject key identifier: A5:8E:E5:7A:9C:F9:1C:32:C6:3C:C2:EE:97:7C:45:F1:9A:0B:19:BE Certificate issuer: /CN=0533048d6ff424bf19215771cf257bc15b67ee15 Certificate serial: 019B7EA67C3FD011523206CA24F61101015E Authority key identifier: 05:33:04:8D:6F:F4:24:BF:19:21:57:71:CF:25:7B:C1:5B:67:EE:15 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BTMEjW_0JL8ZIVdxzyV7wVtn7hU.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/39/3e4899-aacc-4efd-93df-a61a98359c4a/1/pY7lepz5HDLGPMLul3xF8ZoLGb4.roa Signing time: Fri 02 Jan 2026 12:19:58 +0000 ROA not before: Fri 02 Jan 2026 12:19:58 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 12611 IP address blocks: 194.169.251.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/39/3e4899-aacc-4efd-93df-a61a98359c4a/1/BTMEjW_0JL8ZIVdxzyV7wVtn7hU.crl rsync://rpki.ripe.net/repository/DEFAULT/39/3e4899-aacc-4efd-93df-a61a98359c4a/1/BTMEjW_0JL8ZIVdxzyV7wVtn7hU.mft rsync://rpki.ripe.net/repository/DEFAULT/BTMEjW_0JL8ZIVdxzyV7wVtn7hU.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7e:a6:7c:3f:d0:11:52:32:06:ca:24:f6:11:01:01:5e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0533048d6ff424bf19215771cf257bc15b67ee15 Validity Not Before: Jan 2 12:19:58 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=a58ee57a9cf91c32c63cc2ee977c45f19a0b19be Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:96:c5:5a:d8:eb:c0:ef:c2:01:8b:18:a6:6e:e5: d4:b4:2f:78:00:c3:d6:48:33:26:fa:6a:9a:ae:0e: 64:49:f2:e1:c4:94:26:c3:86:5b:30:eb:00:9a:24: 7d:42:85:29:12:3a:6a:d8:58:94:d2:61:d0:82:72: 4b:5e:0c:52:66:db:2c:a1:6b:35:c6:b3:7f:a8:5c: 42:d9:fb:73:37:4d:05:d9:a6:d2:22:fb:1d:0a:bf: 66:2c:12:6b:e2:c3:a4:f4:7f:56:53:14:49:5b:14: 72:f8:74:e8:0c:6a:7a:2f:4f:b5:cd:71:6e:f8:64: 00:f0:73:41:e7:44:d7:65:51:01:5e:c8:cd:eb:0b: 5e:ad:7e:16:0f:c2:a5:d9:ce:98:69:f9:af:68:e0: 38:67:a0:ff:47:72:39:40:51:65:96:bf:6f:d0:b4: 97:4f:9f:0a:c0:90:28:74:fd:13:55:db:04:06:a8: 42:8a:08:e7:3c:6f:a5:32:eb:fd:b3:00:0e:ea:4f: 4e:d8:31:98:57:8f:f3:91:c6:63:35:be:3e:0a:69: 0d:58:f6:8a:f0:53:fa:21:91:2b:9b:7c:17:5d:7a: d3:3b:b0:6f:8f:01:55:b8:2a:22:0a:c5:c0:f1:69: 62:6b:65:58:c0:3b:75:a6:16:37:3e:13:c1:56:bf: 02:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A5:8E:E5:7A:9C:F9:1C:32:C6:3C:C2:EE:97:7C:45:F1:9A:0B:19:BE X509v3 Authority Key Identifier: keyid:05:33:04:8D:6F:F4:24:BF:19:21:57:71:CF:25:7B:C1:5B:67:EE:15 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BTMEjW_0JL8ZIVdxzyV7wVtn7hU.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/39/3e4899-aacc-4efd-93df-a61a98359c4a/1/pY7lepz5HDLGPMLul3xF8ZoLGb4.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/39/3e4899-aacc-4efd-93df-a61a98359c4a/1/BTMEjW_0JL8ZIVdxzyV7wVtn7hU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 194.169.251.0/24 Signature Algorithm: sha256WithRSAEncryption 90:8d:02:78:ab:18:d1:40:d8:07:be:0d:34:98:b9:a7:82:32: 92:2a:39:65:cc:7f:63:af:8a:40:de:6a:6f:30:45:50:c2:6c: ff:85:bf:0a:b6:cf:32:2f:c2:e1:df:3a:2b:19:c3:9c:f3:f9: c0:98:b1:93:ce:ba:3a:af:a6:c2:e1:f6:ac:14:58:02:e7:30: bf:0c:90:54:52:15:a1:33:dc:e4:89:9e:f3:9e:4c:07:e3:75: 04:c4:04:75:5d:d4:c3:28:c8:56:64:37:89:6a:5f:2a:63:e8: c4:ca:e2:3e:26:23:cc:29:46:48:01:15:c8:64:b6:07:8d:82: 6e:9d:55:4e:ce:47:09:f9:44:9b:f4:17:76:da:0e:b9:fb:41: 8a:4d:51:ce:b8:6c:89:d2:23:b4:2a:76:c6:e8:75:84:02:ae: 62:d2:6d:e7:4b:53:14:2e:53:4d:90:4d:c0:85:33:41:24:3e: dd:78:6a:29:e8:2d:22:37:80:37:0b:d3:49:53:66:dc:1b:14: a7:56:5a:90:ac:73:77:51:60:93:bb:e9:97:8e:b1:1e:fc:83: 79:07:4c:74:a7:65:3d:4d:67:e4:75:50:a8:bc:44:6b:31:20: 59:34:a7:15:37:59:63:73:87:cc:0f:c2:59:25:cf:6d:33:a6: 82:fb:3e:4c -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt+pnw/0BFSMgbKJPYRAQFeMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDA1MzMwNDhkNmZmNDI0YmYxOTIxNTc3MWNmMjU3YmMxNWI2 N2VlMTUwHhcNMjYwMTAyMTIxOTU4WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhhNThlZTU3YTljZjkxYzMyYzYzY2MyZWU5NzdjNDVmMTlhMGIxOWJlMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAlsVa2OvA78IBiximbuXUtC94AMPW SDMm+mqarg5kSfLhxJQmw4ZbMOsAmiR9QoUpEjpq2FiU0mHQgnJLXgxSZtssoWs1 xrN/qFxC2ftzN00F2abSIvsdCr9mLBJr4sOk9H9WUxRJWxRy+HToDGp6L0+1zXFu +GQA8HNB50TXZVEBXsjN6wterX4WD8Kl2c6YafmvaOA4Z6D/R3I5QFFllr9v0LSX T58KwJAodP0TVdsEBqhCigjnPG+lMuv9swAO6k9O2DGYV4/zkcZjNb4+CmkNWPaK 8FP6IZErm3wXXXrTO7BvjwFVuCoiCsXA8Wlia2VYwDt1phY3PhPBVr8CHwIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFKWO5Xqc+RwyxjzC7pd8RfGaCxm+MB8GA1UdIwQY MBaAFAUzBI1v9CS/GSFXcc8le8FbZ+4VMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvQlRNRWpXXzBKTDhaSVZkeHp5Vjd3VnRuN2hVLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zOS8zZTQ4OTktYWFjYy00ZWZkLTkzZGYt YTYxYTk4MzU5YzRhLzEvcFk3bGVwejVIRExHUE1MdWwzeEY4Wm9MR2I0LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zOS8zZTQ4OTktYWFjYy00ZWZkLTkzZGYtYTYxYTk4MzU5YzRh LzEvQlRNRWpXXzBKTDhaSVZkeHp5Vjd3VnRuN2hVLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAwqn7MA0G CSqGSIb3DQEBCwUAA4IBAQCQjQJ4qxjRQNgHvg00mLmngjKSKjllzH9jr4pA3mpv MEVQwmz/hb8Kts8yL8Lh3zorGcOc8/nAmLGTzro6r6bC4fasFFgC5zC/DJBUUhWh M9zkiZ7znkwH43UExAR1XdTDKMhWZDeJal8qY+jEyuI+JiPMKUZIARXIZLYHjYJu nVVOzkcJ+USb9Bd22g65+0GKTVHOuGyJ0iO0KnbG6HWEAq5i0m3nS1MULlNNkE3A hTNBJD7deGop6C0iN4A3C9NJU2bcGxSnVlqQrHN3UWCTu+mXjrEe/IN5B0x0p2U9 TWfkdVCovERrMSBZNKcVN1ljc4fMD8JZJc9tM6aC+z5M -----END CERTIFICATE-----Generated at Mon Feb 9 21:18:50 2026 by rpki-client