This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7c/1168fa-fbf6-4e07-9ec7-919eefba48b5/1/NYFzGtm8BIz6b2XOW1Sb4PG6mXY.roa File: NYFzGtm8BIz6b2XOW1Sb4PG6mXY.roa (raw, json) Hash identifier: MnwVKtKeam24p8pGTsLZgxlqqHL4bg/4LSoL94hQTRA= Subject key identifier: 35:81:73:1A:D9:BC:04:8C:FA:6F:65:CE:5B:54:9B:E0:F1:BA:99:76 Certificate issuer: /CN=cf40185f552cd975276c03464f50c7a5d351564c Certificate serial: 019B7A5A8C4F6DBF2FC2DA8E20BC4EC20BB0 Authority key identifier: CF:40:18:5F:55:2C:D9:75:27:6C:03:46:4F:50:C7:A5:D3:51:56:4C Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/z0AYX1Us2XUnbANGT1DHpdNRVkw.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7c/1168fa-fbf6-4e07-9ec7-919eefba48b5/1/NYFzGtm8BIz6b2XOW1Sb4PG6mXY.roa Signing time: Thu 01 Jan 2026 16:18:33 +0000 ROA not before: Thu 01 Jan 2026 16:18:33 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 200564 IP address blocks: 193.222.61.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/7c/1168fa-fbf6-4e07-9ec7-919eefba48b5/1/z0AYX1Us2XUnbANGT1DHpdNRVkw.crl rsync://rpki.ripe.net/repository/DEFAULT/7c/1168fa-fbf6-4e07-9ec7-919eefba48b5/1/z0AYX1Us2XUnbANGT1DHpdNRVkw.mft rsync://rpki.ripe.net/repository/DEFAULT/z0AYX1Us2XUnbANGT1DHpdNRVkw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 03 Jan 2026 10:00:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7a:5a:8c:4f:6d:bf:2f:c2:da:8e:20:bc:4e:c2:0b:b0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=cf40185f552cd975276c03464f50c7a5d351564c Validity Not Before: Jan 1 16:18:33 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=3581731ad9bc048cfa6f65ce5b549be0f1ba9976 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:e0:71:ac:b4:4f:65:37:82:dc:0f:22:33:1b: f0:31:62:45:72:69:b7:90:06:90:82:14:f7:f3:51: 56:e7:4b:34:0e:bd:e2:1d:77:ee:27:1a:5a:be:35: ea:63:5d:1d:c6:17:10:bb:67:bf:82:71:50:59:0c: 26:47:c2:e2:e7:ce:01:07:2c:b8:4f:19:8c:0c:62: 98:29:16:eb:d1:e9:1c:2a:4c:d3:23:22:db:1a:59: 3e:a7:11:de:75:5e:41:e0:c4:99:fb:f7:94:b8:2b: 7e:f7:f7:a4:7f:fa:e0:00:96:21:5b:54:95:ce:96: 72:10:1f:ab:fc:fc:a7:f2:25:0b:51:61:08:58:cb: 06:75:7f:86:ec:3e:78:e8:7f:f4:e2:d9:29:a9:85: 46:0d:cd:44:09:d6:e4:b9:48:b4:bf:1c:7d:cc:68: 2a:10:f9:3b:51:61:aa:9b:e0:ab:68:aa:ab:16:46: 5f:54:dc:b3:37:0b:b5:b1:aa:48:8e:04:e2:a8:ee: e7:75:a1:72:5e:ca:9b:19:bf:23:29:de:36:61:b4: ec:fa:b7:3c:c2:97:2f:c1:16:b9:b1:8f:5f:d3:8e: 7f:18:17:3f:1c:f8:a8:01:10:1d:4a:f1:e1:a8:82: ef:95:d0:53:8e:04:c0:a2:7d:ee:f9:24:27:79:cc: 85:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 35:81:73:1A:D9:BC:04:8C:FA:6F:65:CE:5B:54:9B:E0:F1:BA:99:76 X509v3 Authority Key Identifier: keyid:CF:40:18:5F:55:2C:D9:75:27:6C:03:46:4F:50:C7:A5:D3:51:56:4C X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/z0AYX1Us2XUnbANGT1DHpdNRVkw.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7c/1168fa-fbf6-4e07-9ec7-919eefba48b5/1/NYFzGtm8BIz6b2XOW1Sb4PG6mXY.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/7c/1168fa-fbf6-4e07-9ec7-919eefba48b5/1/z0AYX1Us2XUnbANGT1DHpdNRVkw.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 193.222.61.0/24 Signature Algorithm: sha256WithRSAEncryption 7f:54:84:bc:55:c4:8b:e9:fe:f0:08:df:c9:96:61:0b:e0:67: f2:34:53:36:ae:39:0d:bd:04:52:46:f5:17:c6:72:95:48:c3: 5f:08:da:89:14:5f:34:6b:b3:37:49:71:11:12:3b:8b:70:c3: 49:49:42:b6:ba:44:88:8e:09:02:99:05:ff:3e:ab:fb:58:8f: aa:7d:ae:9c:f9:cf:a3:eb:98:5f:9e:7e:61:49:d3:07:d2:a8: 23:cf:cc:6c:49:79:6a:d6:be:18:b5:bd:76:7c:e8:e9:84:c0: 30:a6:e5:b0:47:3a:ad:fc:aa:81:28:c2:46:7a:b2:0d:25:a0: 9b:5f:98:58:d3:ab:23:5a:bd:a1:60:38:bb:50:03:f3:dd:75: ed:da:11:2b:85:c7:b2:a7:78:76:e8:f8:d9:db:cb:79:dc:74: bb:9e:b6:a4:52:2c:7d:ad:4f:b9:cd:f5:72:31:37:b1:3c:0d: b4:e9:4f:d7:a8:71:db:76:d4:0e:c0:92:ba:7e:99:a7:2b:76: c4:ac:b1:d6:77:d4:8a:d9:cf:87:27:0e:b2:59:61:a0:72:4f: 08:4c:26:dc:ff:f6:7f:8c:94:78:3f:94:8e:07:eb:16:e2:3a: ae:06:af:41:c1:46:fb:91:18:79:a6:fe:e9:af:e6:e8:50:3a: 55:2e:c3:c3 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt6WoxPbb8vwtqOILxOwguwMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGNmNDAxODVmNTUyY2Q5NzUyNzZjMDM0NjRmNTBjN2E1ZDM1 MTU2NGMwHhcNMjYwMTAxMTYxODMzWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygzNTgxNzMxYWQ5YmMwNDhjZmE2ZjY1Y2U1YjU0OWJlMGYxYmE5OTc2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAv+BxrLRPZTeC3A8iMxvwMWJFcmm3 kAaQghT381FW50s0Dr3iHXfuJxpavjXqY10dxhcQu2e/gnFQWQwmR8Li584BByy4 TxmMDGKYKRbr0ekcKkzTIyLbGlk+pxHedV5B4MSZ+/eUuCt+9/ekf/rgAJYhW1SV zpZyEB+r/Pyn8iULUWEIWMsGdX+G7D546H/04tkpqYVGDc1ECdbkuUi0vxx9zGgq EPk7UWGqm+CraKqrFkZfVNyzNwu1sapIjgTiqO7ndaFyXsqbGb8jKd42YbTs+rc8 wpcvwRa5sY9f045/GBc/HPioARAdSvHhqILvldBTjgTAon3u+SQnecyF2QIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFDWBcxrZvASM+m9lzltUm+Dxupl2MB8GA1UdIwQY MBaAFM9AGF9VLNl1J2wDRk9Qx6XTUVZMMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvejBBWVgxVXMyWFVuYkFOR1QxREhwZE5SVmt3LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83Yy8xMTY4ZmEtZmJmNi00ZTA3LTllYzct OTE5ZWVmYmE0OGI1LzEvTllGekd0bThCSXo2YjJYT1cxU2I0UEc2bVhZLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC83Yy8xMTY4ZmEtZmJmNi00ZTA3LTllYzctOTE5ZWVmYmE0OGI1 LzEvejBBWVgxVXMyWFVuYkFOR1QxREhwZE5SVmt3LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAwd49MA0G CSqGSIb3DQEBCwUAA4IBAQB/VIS8VcSL6f7wCN/JlmEL4GfyNFM2rjkNvQRSRvUX xnKVSMNfCNqJFF80a7M3SXEREjuLcMNJSUK2ukSIjgkCmQX/Pqv7WI+qfa6c+c+j 65hfnn5hSdMH0qgjz8xsSXlq1r4Ytb12fOjphMAwpuWwRzqt/KqBKMJGerINJaCb X5hY06sjWr2hYDi7UAPz3XXt2hErhceyp3h26PjZ28t53HS7nrakUix9rU+5zfVy MTexPA206U/XqHHbdtQOwJK6fpmnK3bErLHWd9SK2c+HJw6yWWGgck8ITCbc//Z/ jJR4P5SOB+sW4jquBq9BwUb7kRh5pv7pr+boUDpVLsPD -----END CERTIFICATE-----Generated at Fri Jan 2 16:06:46 2026 by rpki-client