This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/45/06c734-09a1-4da3-8992-bd4d54445a95/1/yp1QiuQFu1MnPsRpux_NkDw_OQI.roa File: yp1QiuQFu1MnPsRpux_NkDw_OQI.roa (raw, json) Hash identifier: AibLjoYRKCsrgl0Ll9Ay5fHIEbwsEqpeYhv/Tn1t8Lg= Subject key identifier: CA:9D:50:8A:E4:05:BB:53:27:3E:C4:69:BB:1F:CD:90:3C:3F:39:02 Certificate issuer: /CN=d703ceac906d07f74ca94c446303d954666b583a Certificate serial: 019C24BFB8AB1DF99251A6B3A63D6BEBF4AA Authority key identifier: D7:03:CE:AC:90:6D:07:F7:4C:A9:4C:44:63:03:D9:54:66:6B:58:3A Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1wPOrJBtB_dMqUxEYwPZVGZrWDo.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/45/06c734-09a1-4da3-8992-bd4d54445a95/1/yp1QiuQFu1MnPsRpux_NkDw_OQI.roa Signing time: Tue 03 Feb 2026 18:24:30 +0000 ROA not before: Tue 03 Feb 2026 18:24:30 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 14960 IP address blocks: 131.125.203.0/24 maxlen: 24 131.125.204.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/45/06c734-09a1-4da3-8992-bd4d54445a95/1/1wPOrJBtB_dMqUxEYwPZVGZrWDo.crl rsync://rpki.ripe.net/repository/DEFAULT/45/06c734-09a1-4da3-8992-bd4d54445a95/1/1wPOrJBtB_dMqUxEYwPZVGZrWDo.mft rsync://rpki.ripe.net/repository/DEFAULT/1wPOrJBtB_dMqUxEYwPZVGZrWDo.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 09:00:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:24:bf:b8:ab:1d:f9:92:51:a6:b3:a6:3d:6b:eb:f4:aa Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d703ceac906d07f74ca94c446303d954666b583a Validity Not Before: Feb 3 18:24:30 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=ca9d508ae405bb53273ec469bb1fcd903c3f3902 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:08:88:04:0a:d7:c9:de:dc:ae:db:42:15:ef: b4:a8:3f:4a:c3:4c:2d:6e:7a:ef:f2:fc:37:74:c5: a7:fe:10:70:81:ab:2d:4d:bb:32:66:94:ce:c7:a7: fd:89:e6:f5:cf:75:98:e2:b9:be:33:c8:48:bf:21: ea:69:17:49:32:19:4e:c3:7e:cd:52:fe:3e:18:11: 6d:ce:76:50:91:86:bb:44:09:fb:e8:51:d8:d0:4b: 53:e3:d8:5a:2f:87:6a:61:86:00:51:1a:30:8a:0a: 19:46:bb:76:29:3a:69:63:63:0a:77:49:fd:37:58: 86:10:6c:e0:37:0b:3c:97:de:8d:d3:b9:4a:74:b2: 42:54:a1:58:eb:23:57:66:41:3c:b3:9a:76:a2:9f: 9a:9e:a8:63:29:02:f6:61:50:e0:9f:9e:ea:af:19: 4c:80:3b:e8:af:f4:ec:83:bf:d5:02:7e:17:30:94: 33:01:95:98:2a:fa:2c:60:b2:af:cc:26:ee:13:81: 06:67:97:40:9b:7a:0e:b2:ad:49:12:90:d6:95:c1: 0e:c0:99:d6:d5:1a:25:e1:4e:86:6f:6d:be:86:cb: 07:1c:73:0e:02:fc:de:18:be:e2:85:b3:2e:92:8a: 9b:85:cc:5e:1d:51:a7:b7:0f:45:e4:21:b4:12:0f: 43:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CA:9D:50:8A:E4:05:BB:53:27:3E:C4:69:BB:1F:CD:90:3C:3F:39:02 X509v3 Authority Key Identifier: keyid:D7:03:CE:AC:90:6D:07:F7:4C:A9:4C:44:63:03:D9:54:66:6B:58:3A X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1wPOrJBtB_dMqUxEYwPZVGZrWDo.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/45/06c734-09a1-4da3-8992-bd4d54445a95/1/yp1QiuQFu1MnPsRpux_NkDw_OQI.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/45/06c734-09a1-4da3-8992-bd4d54445a95/1/1wPOrJBtB_dMqUxEYwPZVGZrWDo.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 131.125.203.0-131.125.204.255 Signature Algorithm: sha256WithRSAEncryption 94:b4:65:be:d2:d5:7e:b0:04:89:f1:11:75:ba:cb:c6:b0:4a: 93:4f:c6:2a:9f:26:1b:dd:68:dd:34:51:f5:61:ba:7d:f1:52: d4:b3:17:54:40:16:d6:bb:ad:e6:c2:4d:dc:85:5b:a2:b6:23: f7:d8:2b:c4:67:6d:c5:9f:0a:02:6f:d1:c4:db:3f:ea:e5:39: 14:15:ae:1c:63:f1:a6:0a:12:3e:18:ff:4f:dc:ca:9f:ce:ad: 07:65:de:af:c3:06:68:24:93:38:d5:13:2a:41:44:8f:ab:40: bb:c4:a5:f2:1e:28:7f:0a:55:0f:1f:7b:5c:d6:09:fa:9b:84: 60:fc:13:e3:d0:63:4e:78:70:72:3e:9f:d4:d2:b7:22:b3:ca: 71:3c:ca:d0:8e:b8:0f:f2:99:59:26:31:22:e0:71:4e:e8:5b: 2a:88:f3:73:73:e7:64:13:06:d4:74:89:e8:41:e3:f2:12:9b: 27:54:23:a0:1b:89:c0:10:42:d7:6c:10:d1:7a:c0:02:21:89: 52:df:61:dd:45:cd:0e:d0:13:40:5e:c1:c0:a2:f1:1e:95:a5: 64:11:95:cc:aa:2c:56:3f:92:bb:ff:3d:d3:2a:63:8f:88:1f: ee:9f:b2:16:2d:1f:43:c5:0c:ea:0e:76:4d:a6:9f:f0:b2:21: e1:1c:6b:fa -----BEGIN CERTIFICATE----- MIIFBTCCA+2gAwIBAgISAZwkv7irHfmSUaazpj1r6/SqMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGQ3MDNjZWFjOTA2ZDA3Zjc0Y2E5NGM0NDYzMDNkOTU0NjY2 YjU4M2EwHhcNMjYwMjAzMTgyNDMwWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhjYTlkNTA4YWU0MDViYjUzMjczZWM0NjliYjFmY2Q5MDNjM2YzOTAyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAngiIBArXyd7crttCFe+0qD9Kw0wt bnrv8vw3dMWn/hBwgastTbsyZpTOx6f9ieb1z3WY4rm+M8hIvyHqaRdJMhlOw37N Uv4+GBFtznZQkYa7RAn76FHY0EtT49haL4dqYYYAURowigoZRrt2KTppY2MKd0n9 N1iGEGzgNws8l96N07lKdLJCVKFY6yNXZkE8s5p2op+anqhjKQL2YVDgn57qrxlM gDvor/Tsg7/VAn4XMJQzAZWYKvosYLKvzCbuE4EGZ5dAm3oOsq1JEpDWlcEOwJnW 1Rol4U6Gb22+hssHHHMOAvzeGL7ihbMukoqbhcxeHVGntw9F5CG0Eg9DEwIDAQAB o4ICETCCAg0wHQYDVR0OBBYEFMqdUIrkBbtTJz7EabsfzZA8PzkCMB8GA1UdIwQY MBaAFNcDzqyQbQf3TKlMRGMD2VRma1g6MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvMXdQT3JKQnRCX2RNcVV4RVl3UFpWR1pyV0RvLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80NS8wNmM3MzQtMDlhMS00ZGEzLTg5OTIt YmQ0ZDU0NDQ1YTk1LzEveXAxUWl1UUZ1MU1uUHNScHV4X05rRHdfT1FJLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC80NS8wNmM3MzQtMDlhMS00ZGEzLTg5OTItYmQ0ZDU0NDQ1YTk1 LzEvMXdQT3JKQnRCX2RNcVV4RVl3UFpWR1pyV0RvLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCcGCCsGAQUFBwEHAQH/BBgwFjAUBAIAATAOMAwDBACDfcsD BACDfcwwDQYJKoZIhvcNAQELBQADggEBAJS0Zb7S1X6wBInxEXW6y8awSpNPxiqf JhvdaN00UfVhun3xUtSzF1RAFta7rebCTdyFW6K2I/fYK8RnbcWfCgJv0cTbP+rl ORQVrhxj8aYKEj4Y/0/cyp/OrQdl3q/DBmgkkzjVEypBRI+rQLvEpfIeKH8KVQ8f e1zWCfqbhGD8E+PQY054cHI+n9TStyKzynE8ytCOuA/ymVkmMSLgcU7oWyqI83Nz 52QTBtR0iehB4/ISmydUI6AbicAQQtdsENF6wAIhiVLfYd1FzQ7QE0BewcCi8R6V pWQRlcyqLFY/krv/PdMqY4+IH+6fshYtH0PFDOoOdk2mn/CyIeEca/o= -----END CERTIFICATE-----Generated at Mon Feb 9 18:23:35 2026 by rpki-client