This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7a/26c049-47ee-4886-9844-4ab9e8aa3262/1/ysSXMlo-1nRW2meE14vfwPdghOE.roa File: ysSXMlo-1nRW2meE14vfwPdghOE.roa (raw, json) Hash identifier: lDVlK+KmKAl1OA3HDnxc2d40bpEh/cFulqZX0NZMKCY= Subject key identifier: CA:C4:97:32:5A:3E:D6:74:56:DA:67:84:D7:8B:DF:C0:F7:60:84:E1 Certificate issuer: /CN=51b49ba0dd8615128618d50159cb0f3b5e9ee626 Certificate serial: 019B7BA3D50461AD5B11998868BBFB70A582 Authority key identifier: 51:B4:9B:A0:DD:86:15:12:86:18:D5:01:59:CB:0F:3B:5E:9E:E6:26 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UbSboN2GFRKGGNUBWcsPO16e5iY.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7a/26c049-47ee-4886-9844-4ab9e8aa3262/1/ysSXMlo-1nRW2meE14vfwPdghOE.roa Signing time: Thu 01 Jan 2026 22:18:13 +0000 ROA not before: Thu 01 Jan 2026 22:18:13 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 137517 IP address blocks: 212.100.175.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/7a/26c049-47ee-4886-9844-4ab9e8aa3262/1/UbSboN2GFRKGGNUBWcsPO16e5iY.crl rsync://rpki.ripe.net/repository/DEFAULT/7a/26c049-47ee-4886-9844-4ab9e8aa3262/1/UbSboN2GFRKGGNUBWcsPO16e5iY.mft rsync://rpki.ripe.net/repository/DEFAULT/UbSboN2GFRKGGNUBWcsPO16e5iY.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 20 Jan 2026 20:29:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7b:a3:d5:04:61:ad:5b:11:99:88:68:bb:fb:70:a5:82 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=51b49ba0dd8615128618d50159cb0f3b5e9ee626 Validity Not Before: Jan 1 22:18:13 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=cac497325a3ed67456da6784d78bdfc0f76084e1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:f1:a2:28:1e:8b:5c:c5:5d:55:5c:e7:46:49: ee:04:65:f4:43:da:e7:a7:32:4b:be:3f:f5:d9:d2: 05:08:ed:3f:91:06:85:71:7d:ab:8c:45:0d:8c:d8: 01:5c:4e:31:06:75:ea:64:77:4e:b9:a7:27:32:2b: a1:be:ed:cb:44:64:b2:ef:2b:05:31:fc:74:13:aa: 95:87:3e:7e:fc:12:28:84:7d:3b:37:c7:4e:fc:70: 73:29:40:22:06:48:79:c6:68:c3:1a:1e:11:af:1f: 28:9f:3c:11:aa:bf:a3:c8:2d:b8:b7:f1:57:b0:d8: c0:bd:4e:e4:3c:76:b5:4e:3b:36:8c:b8:ad:10:6b: 3e:08:26:b0:7c:18:ab:85:9c:30:88:59:f9:df:6d: c0:0d:dc:ca:24:90:72:4f:91:05:cd:fd:f2:66:c6: f7:b6:1a:61:01:38:69:39:05:1b:23:d8:fd:2b:43: 09:62:88:26:b8:2c:03:6a:4a:50:f7:cd:fa:b7:2a: d6:8a:e8:5d:24:35:16:dd:7c:7b:04:d1:61:c5:ee: 30:1b:0c:5d:3d:c9:ee:16:de:d0:d5:34:a3:2e:de: df:79:c8:02:36:58:d8:f2:ac:49:2d:cb:bb:65:72: 13:7c:47:5f:8f:84:a5:44:75:03:90:c8:22:39:7a: 26:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CA:C4:97:32:5A:3E:D6:74:56:DA:67:84:D7:8B:DF:C0:F7:60:84:E1 X509v3 Authority Key Identifier: keyid:51:B4:9B:A0:DD:86:15:12:86:18:D5:01:59:CB:0F:3B:5E:9E:E6:26 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UbSboN2GFRKGGNUBWcsPO16e5iY.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7a/26c049-47ee-4886-9844-4ab9e8aa3262/1/ysSXMlo-1nRW2meE14vfwPdghOE.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/7a/26c049-47ee-4886-9844-4ab9e8aa3262/1/UbSboN2GFRKGGNUBWcsPO16e5iY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 212.100.175.0/24 Signature Algorithm: sha256WithRSAEncryption 07:cb:9a:8f:04:b9:9b:c0:aa:e7:6b:b5:38:76:e6:66:80:a9: 8e:80:61:36:18:c3:8c:46:2c:70:33:8c:2e:9f:02:09:1d:f1: b4:54:5d:4d:90:6d:5a:3b:0d:fe:df:53:f1:d9:d8:27:62:0a: 99:78:09:09:17:e3:cd:5f:69:e1:28:91:ee:5b:aa:01:28:ba: a8:b0:a3:13:49:f4:5a:8a:99:a7:48:30:aa:6f:08:21:b6:dc: 95:40:43:91:fa:b2:8d:7e:5f:ef:80:7a:fe:f5:2f:16:a9:e6: f5:79:52:7e:3f:2e:aa:a1:4b:a8:66:41:06:77:b7:df:14:49: 42:3d:a2:98:dd:89:1d:96:2a:7b:c2:b4:26:08:2a:a2:3a:d3: af:1d:87:3d:2b:72:ce:17:88:4d:34:c9:c2:94:32:e4:d1:83: 5e:1d:e3:91:21:7e:a9:48:b4:67:c5:2a:ca:79:73:3e:97:58: 30:34:ca:5a:5f:c7:ad:7c:7d:82:83:7e:ed:37:8c:5d:27:04: 52:99:90:f3:5b:82:0a:8d:aa:69:e1:9b:ab:f8:82:cc:59:ba: 10:32:9d:aa:98:9f:90:30:60:4b:12:20:71:46:35:aa:5c:0f: ea:88:18:9c:9f:72:3a:ca:64:ae:56:3e:5b:07:94:3d:13:47: 4e:3d:9e:c0 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt7o9UEYa1bEZmIaLv7cKWCMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDUxYjQ5YmEwZGQ4NjE1MTI4NjE4ZDUwMTU5Y2IwZjNiNWU5 ZWU2MjYwHhcNMjYwMTAxMjIxODEzWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhjYWM0OTczMjVhM2VkNjc0NTZkYTY3ODRkNzhiZGZjMGY3NjA4NGUxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqPGiKB6LXMVdVVznRknuBGX0Q9rn pzJLvj/12dIFCO0/kQaFcX2rjEUNjNgBXE4xBnXqZHdOuacnMiuhvu3LRGSy7ysF Mfx0E6qVhz5+/BIohH07N8dO/HBzKUAiBkh5xmjDGh4Rrx8onzwRqr+jyC24t/FX sNjAvU7kPHa1Tjs2jLitEGs+CCawfBirhZwwiFn5323ADdzKJJByT5EFzf3yZsb3 thphAThpOQUbI9j9K0MJYogmuCwDakpQ9836tyrWiuhdJDUW3Xx7BNFhxe4wGwxd PcnuFt7Q1TSjLt7fecgCNljY8qxJLcu7ZXITfEdfj4SlRHUDkMgiOXom5wIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFMrElzJaPtZ0VtpnhNeL38D3YIThMB8GA1UdIwQY MBaAFFG0m6DdhhUShhjVAVnLDztenuYmMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvVWJTYm9OMkdGUktHR05VQldjc1BPMTZlNWlZLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83YS8yNmMwNDktNDdlZS00ODg2LTk4NDQt NGFiOWU4YWEzMjYyLzEveXNTWE1sby0xblJXMm1lRTE0dmZ3UGRnaE9FLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC83YS8yNmMwNDktNDdlZS00ODg2LTk4NDQtNGFiOWU4YWEzMjYy LzEvVWJTYm9OMkdGUktHR05VQldjc1BPMTZlNWlZLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQA1GSvMA0G CSqGSIb3DQEBCwUAA4IBAQAHy5qPBLmbwKrna7U4duZmgKmOgGE2GMOMRixwM4wu nwIJHfG0VF1NkG1aOw3+31Px2dgnYgqZeAkJF+PNX2nhKJHuW6oBKLqosKMTSfRa ipmnSDCqbwghttyVQEOR+rKNfl/vgHr+9S8Wqeb1eVJ+Py6qoUuoZkEGd7ffFElC PaKY3Ykdlip7wrQmCCqiOtOvHYc9K3LOF4hNNMnClDLk0YNeHeORIX6pSLRnxSrK eXM+l1gwNMpaX8etfH2Cg37tN4xdJwRSmZDzW4IKjapp4Zur+ILMWboQMp2qmJ+Q MGBLEiBxRjWqXA/qiBicn3I6ymSuVj5bB5Q9E0dOPZ7A -----END CERTIFICATE-----Generated at Tue Jan 20 06:04:29 2026 by rpki-client