This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4b/b6af9d-47ba-4b92-b41a-838a4505735a/1/sYc6H234_lhFJLVnD1s8r-M0x7Q.roa File: sYc6H234_lhFJLVnD1s8r-M0x7Q.roa (raw, json) Hash identifier: mwfgYtpAqD/0PLlomhnZdEd3pDLweTePVgRAfbIpDGg= Subject key identifier: B1:87:3A:1F:6D:F8:FE:58:45:24:B5:67:0F:5B:3C:AF:E3:34:C7:B4 Certificate issuer: /CN=69737c6e0602be3804e277580bab7e21e6e33474 Certificate serial: 019B76EB35EBC198DB817DC3A803010824D0 Authority key identifier: 69:73:7C:6E:06:02:BE:38:04:E2:77:58:0B:AB:7E:21:E6:E3:34:74 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aXN8bgYCvjgE4ndYC6t-IebjNHQ.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4b/b6af9d-47ba-4b92-b41a-838a4505735a/1/sYc6H234_lhFJLVnD1s8r-M0x7Q.roa Signing time: Thu 01 Jan 2026 00:18:04 +0000 ROA not before: Thu 01 Jan 2026 00:18:04 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 20473 IP address blocks: 176.97.215.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4b/b6af9d-47ba-4b92-b41a-838a4505735a/1/aXN8bgYCvjgE4ndYC6t-IebjNHQ.crl rsync://rpki.ripe.net/repository/DEFAULT/4b/b6af9d-47ba-4b92-b41a-838a4505735a/1/aXN8bgYCvjgE4ndYC6t-IebjNHQ.mft rsync://rpki.ripe.net/repository/DEFAULT/aXN8bgYCvjgE4ndYC6t-IebjNHQ.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 27 Jan 2026 20:39:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:76:eb:35:eb:c1:98:db:81:7d:c3:a8:03:01:08:24:d0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=69737c6e0602be3804e277580bab7e21e6e33474 Validity Not Before: Jan 1 00:18:04 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=b1873a1f6df8fe584524b5670f5b3cafe334c7b4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:17:5c:79:43:39:e5:71:63:c9:a1:05:49:d1: 61:85:11:54:34:af:4d:41:c2:c4:b0:13:2c:0f:6c: d6:6c:0a:ed:bc:8f:0b:c0:6a:8e:ce:95:8f:ed:51: 24:0b:46:5b:cc:c0:2d:86:3e:5b:f8:d5:ad:3a:97: 6e:05:43:f8:f9:96:f7:cb:55:44:59:15:6f:31:aa: cb:cd:9c:9b:5c:3c:75:64:a6:56:e3:e7:2a:fc:ba: 97:c4:05:72:a0:68:d0:c0:fe:72:d6:ce:f9:b9:3d: 69:a0:b5:c2:76:d3:88:19:a3:b5:bc:9d:23:fa:24: fd:cf:50:05:af:d6:d3:e2:0f:1d:d5:40:83:9d:a3: cf:35:7f:cf:fc:ee:07:20:97:b7:86:3f:16:69:16: 97:88:62:1c:6f:a2:40:15:f2:bd:99:29:b6:8a:36: 00:4b:ba:28:3d:47:27:00:4d:8a:2f:cf:3c:51:cb: 87:6f:76:70:72:bc:af:ec:e6:34:f4:1a:b5:bf:ac: 06:d5:fa:30:b8:34:bc:20:d1:d0:8b:72:95:9d:02: 04:40:d3:78:15:7d:48:2f:ae:7f:87:74:88:30:c1: 97:12:63:6d:df:d9:d6:84:a2:6a:83:de:53:2b:47: 22:d8:e9:73:79:c9:dd:e8:00:d0:e9:66:a2:8d:d6: f8:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B1:87:3A:1F:6D:F8:FE:58:45:24:B5:67:0F:5B:3C:AF:E3:34:C7:B4 X509v3 Authority Key Identifier: keyid:69:73:7C:6E:06:02:BE:38:04:E2:77:58:0B:AB:7E:21:E6:E3:34:74 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aXN8bgYCvjgE4ndYC6t-IebjNHQ.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/b6af9d-47ba-4b92-b41a-838a4505735a/1/sYc6H234_lhFJLVnD1s8r-M0x7Q.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/b6af9d-47ba-4b92-b41a-838a4505735a/1/aXN8bgYCvjgE4ndYC6t-IebjNHQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 176.97.215.0/24 Signature Algorithm: sha256WithRSAEncryption 0f:0a:b6:c3:fb:ff:9d:7e:53:f2:81:c6:70:54:de:c4:a7:81: a3:c9:a2:0f:83:2d:ca:6c:bd:a7:2a:89:f6:0b:b1:20:21:46: 97:02:20:91:5c:20:c8:2e:31:e8:10:2d:50:e5:e3:e7:98:0b: 42:8a:19:44:f4:c2:75:6a:66:a1:53:8c:74:18:d7:e3:db:04: 70:c2:87:78:f7:5f:9d:ca:3e:80:c3:18:2f:dc:3a:26:1c:24: a1:0d:14:5a:40:9d:1a:55:11:d0:a5:30:58:45:fc:64:7e:da: 1e:3a:1a:fd:d6:8e:01:d3:f2:67:7a:ac:50:14:ff:86:35:d3: 39:a8:eb:e0:ef:b8:7d:15:b0:79:85:01:01:a8:2d:91:8d:47: 8a:82:74:2f:7d:82:b7:e2:94:c7:6d:fe:d0:aa:17:9d:f0:56: 51:63:24:99:40:09:34:0a:06:68:68:bb:b6:b0:35:70:46:f9: c4:47:f0:34:d4:6b:d6:de:2f:37:0a:7f:bf:00:b7:87:23:1c: 8d:df:ae:3d:eb:8c:46:d5:af:e1:b9:e6:e7:3b:97:62:a7:21: 1b:a5:44:f9:7c:ac:c0:80:4a:d2:31:d6:e1:c3:ab:e7:6e:dd: e0:b6:03:1f:8e:be:be:47:e1:c3:13:9a:7c:5e:ea:53:21:a8: f6:37:49:74 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt26zXrwZjbgX3DqAMBCCTQMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDY5NzM3YzZlMDYwMmJlMzgwNGUyNzc1ODBiYWI3ZTIxZTZl MzM0NzQwHhcNMjYwMTAxMDAxODA0WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhiMTg3M2ExZjZkZjhmZTU4NDUyNGI1NjcwZjViM2NhZmUzMzRjN2I0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA3RdceUM55XFjyaEFSdFhhRFUNK9N QcLEsBMsD2zWbArtvI8LwGqOzpWP7VEkC0ZbzMAthj5b+NWtOpduBUP4+Zb3y1VE WRVvMarLzZybXDx1ZKZW4+cq/LqXxAVyoGjQwP5y1s75uT1poLXCdtOIGaO1vJ0j +iT9z1AFr9bT4g8d1UCDnaPPNX/P/O4HIJe3hj8WaRaXiGIcb6JAFfK9mSm2ijYA S7ooPUcnAE2KL888UcuHb3Zwcryv7OY09Bq1v6wG1fowuDS8INHQi3KVnQIEQNN4 FX1IL65/h3SIMMGXEmNt39nWhKJqg95TK0ci2Olzecnd6ADQ6Waijdb42QIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFLGHOh9t+P5YRSS1Zw9bPK/jNMe0MB8GA1UdIwQY MBaAFGlzfG4GAr44BOJ3WAurfiHm4zR0MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvYVhOOGJnWUN2amdFNG5kWUM2dC1JZWJqTkhRLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80Yi9iNmFmOWQtNDdiYS00YjkyLWI0MWEt ODM4YTQ1MDU3MzVhLzEvc1ljNkgyMzRfbGhGSkxWbkQxczhyLU0weDdRLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC80Yi9iNmFmOWQtNDdiYS00YjkyLWI0MWEtODM4YTQ1MDU3MzVh LzEvYVhOOGJnWUN2amdFNG5kWUM2dC1JZWJqTkhRLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAsGHXMA0G CSqGSIb3DQEBCwUAA4IBAQAPCrbD+/+dflPygcZwVN7Ep4GjyaIPgy3KbL2nKon2 C7EgIUaXAiCRXCDILjHoEC1Q5ePnmAtCihlE9MJ1amahU4x0GNfj2wRwwod491+d yj6Awxgv3DomHCShDRRaQJ0aVRHQpTBYRfxkftoeOhr91o4B0/JneqxQFP+GNdM5 qOvg77h9FbB5hQEBqC2RjUeKgnQvfYK34pTHbf7Qqhed8FZRYySZQAk0CgZoaLu2 sDVwRvnER/A01GvW3i83Cn+/ALeHIxyN364964xG1a/huebnO5dipyEbpUT5fKzA gErSMdbhw6vnbt3gtgMfjr6+R+HDE5p8XupTIaj2N0l0 -----END CERTIFICATE-----Generated at Tue Jan 27 02:51:33 2026 by rpki-client