This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8f/863093-5ed6-43b2-bbda-14c6c5055f88/1/YC9W-iVv9dOJhfbZw9HftS1KxPY.roa File: YC9W-iVv9dOJhfbZw9HftS1KxPY.roa (raw, json) Hash identifier: XcqcrEVWbFX4rVC3SqcfN+w6BqsgeWQjFifYF0iAu7k= Subject key identifier: 60:2F:56:FA:25:6F:F5:D3:89:85:F6:D9:C3:D1:DF:B5:2D:4A:C4:F6 Certificate issuer: /CN=b262bf21de51385859416c4c608001e2025a5d25 Certificate serial: 019B7C8053B931F1345B14065019BA1EEA54 Authority key identifier: B2:62:BF:21:DE:51:38:58:59:41:6C:4C:60:80:01:E2:02:5A:5D:25 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/smK_Id5ROFhZQWxMYIAB4gJaXSU.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8f/863093-5ed6-43b2-bbda-14c6c5055f88/1/YC9W-iVv9dOJhfbZw9HftS1KxPY.roa Signing time: Fri 02 Jan 2026 02:19:03 +0000 ROA not before: Fri 02 Jan 2026 02:19:03 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 57793 IP address blocks: 130.193.78.0/24 maxlen: 24 185.19.150.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8f/863093-5ed6-43b2-bbda-14c6c5055f88/1/smK_Id5ROFhZQWxMYIAB4gJaXSU.crl rsync://rpki.ripe.net/repository/DEFAULT/8f/863093-5ed6-43b2-bbda-14c6c5055f88/1/smK_Id5ROFhZQWxMYIAB4gJaXSU.mft rsync://rpki.ripe.net/repository/DEFAULT/smK_Id5ROFhZQWxMYIAB4gJaXSU.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 25 Jan 2026 22:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7c:80:53:b9:31:f1:34:5b:14:06:50:19:ba:1e:ea:54 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b262bf21de51385859416c4c608001e2025a5d25 Validity Not Before: Jan 2 02:19:03 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=602f56fa256ff5d38985f6d9c3d1dfb52d4ac4f6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:21:d6:79:14:9a:9c:04:3c:f4:f9:e4:c1:da: e0:1d:b9:9d:85:77:63:49:46:ae:1e:89:0e:da:dc: 7a:b7:34:d0:bf:b6:e8:b1:24:98:c3:5e:6a:7d:45: 4a:1f:d9:ce:13:23:54:c0:89:af:74:1e:0d:62:01: d9:8e:32:f5:d6:4b:23:3c:32:53:0f:29:c4:2d:de: 00:a1:09:91:cb:d8:70:46:b7:be:59:27:c3:7d:a4: 27:82:fa:87:50:3f:0a:47:4f:9a:7d:93:94:4a:58: 02:c3:27:8c:12:d1:60:1d:5c:c5:16:de:89:ff:f2: 30:e7:1b:33:88:1b:ff:7e:75:46:75:ee:91:7d:8f: a6:79:ed:ef:92:a4:d2:7f:31:dd:16:88:44:69:f2: 53:bf:e2:8c:3f:b2:0d:fa:d0:8a:40:4d:f9:fe:7e: 71:17:d2:7b:d1:bd:e5:07:db:62:19:5f:99:74:d9: d5:8e:9a:71:2e:c4:7a:99:0a:bf:06:ad:67:e1:9f: 77:64:3c:19:ba:45:00:9e:a6:0b:c4:8d:81:d4:05: d8:1b:82:77:2a:b7:91:48:db:7d:0f:c6:a5:1e:8e: 05:30:b2:46:08:54:ae:ce:cc:19:64:06:1d:0c:8a: 49:e7:5f:f5:f8:28:d4:a0:16:86:9d:2d:36:f1:67: 8c:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 60:2F:56:FA:25:6F:F5:D3:89:85:F6:D9:C3:D1:DF:B5:2D:4A:C4:F6 X509v3 Authority Key Identifier: keyid:B2:62:BF:21:DE:51:38:58:59:41:6C:4C:60:80:01:E2:02:5A:5D:25 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/smK_Id5ROFhZQWxMYIAB4gJaXSU.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8f/863093-5ed6-43b2-bbda-14c6c5055f88/1/YC9W-iVv9dOJhfbZw9HftS1KxPY.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/8f/863093-5ed6-43b2-bbda-14c6c5055f88/1/smK_Id5ROFhZQWxMYIAB4gJaXSU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 130.193.78.0/24 185.19.150.0/24 Signature Algorithm: sha256WithRSAEncryption 70:22:98:76:c6:57:37:a3:dc:50:3d:e2:fb:2e:32:27:7d:a9: 19:3d:c0:72:1e:18:9d:fa:11:ca:54:a5:36:d9:9d:34:89:e6: 37:d6:d2:a0:f0:18:bb:e9:e3:26:77:20:e3:0c:f1:b6:97:4f: 38:19:cb:28:93:c3:27:c7:ae:af:10:7c:89:fb:55:fb:33:7d: 0b:81:b7:b5:a3:32:f1:48:b9:78:6a:e7:0e:41:e4:7d:14:36: 57:e2:2c:64:ed:35:7c:56:53:b9:30:9f:a9:92:94:b1:ed:33: 64:5d:de:4c:47:ab:f6:e8:a1:63:9b:fc:66:3a:49:bf:a2:fd: 51:cf:3d:a0:8c:fa:e7:61:23:be:21:d4:f7:56:a6:55:39:89: 2b:84:b8:2e:14:04:ae:bb:d6:1d:3b:a5:13:2f:52:6b:58:aa: f8:13:c9:25:ac:e4:de:c1:e3:0c:12:be:60:91:f8:33:04:b2: 34:89:2d:6d:6e:00:24:12:e7:23:29:62:4b:b2:0b:3a:25:c7: 8e:53:96:ad:ef:bb:bf:b0:f2:68:d7:f1:3e:ef:93:fc:f6:97: 86:e3:93:39:e1:5f:27:07:1b:3b:3c:ef:07:2c:b9:eb:f5:09: 2c:42:c8:45:9e:59:df:e0:42:63:fb:0e:c4:68:24:ce:e5:4a: 80:3f:56:14 -----BEGIN CERTIFICATE----- MIIFAzCCA+ugAwIBAgISAZt8gFO5MfE0WxQGUBm6HupUMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGIyNjJiZjIxZGU1MTM4NTg1OTQxNmM0YzYwODAwMWUyMDI1 YTVkMjUwHhcNMjYwMTAyMDIxOTAzWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg2MDJmNTZmYTI1NmZmNWQzODk4NWY2ZDljM2QxZGZiNTJkNGFjNGY2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAniHWeRSanAQ89PnkwdrgHbmdhXdj SUauHokO2tx6tzTQv7bosSSYw15qfUVKH9nOEyNUwImvdB4NYgHZjjL11ksjPDJT DynELd4AoQmRy9hwRre+WSfDfaQngvqHUD8KR0+afZOUSlgCwyeMEtFgHVzFFt6J //Iw5xsziBv/fnVGde6RfY+mee3vkqTSfzHdFohEafJTv+KMP7IN+tCKQE35/n5x F9J70b3lB9tiGV+ZdNnVjppxLsR6mQq/Bq1n4Z93ZDwZukUAnqYLxI2B1AXYG4J3 KreRSNt9D8alHo4FMLJGCFSuzswZZAYdDIpJ51/1+CjUoBaGnS028WeMpQIDAQAB o4ICDzCCAgswHQYDVR0OBBYEFGAvVvolb/XTiYX22cPR37UtSsT2MB8GA1UdIwQY MBaAFLJivyHeUThYWUFsTGCAAeICWl0lMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvc21LX0lkNVJPRmhaUVd4TVlJQUI0Z0phWFNVLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84Zi84NjMwOTMtNWVkNi00M2IyLWJiZGEt MTRjNmM1MDU1Zjg4LzEvWUM5Vy1pVnY5ZE9KaGZiWnc5SGZ0UzFLeFBZLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC84Zi84NjMwOTMtNWVkNi00M2IyLWJiZGEtMTRjNmM1MDU1Zjg4 LzEvc21LX0lkNVJPRmhaUVd4TVlJQUI0Z0phWFNVLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQAgsFOAwQA uROWMA0GCSqGSIb3DQEBCwUAA4IBAQBwIph2xlc3o9xQPeL7LjInfakZPcByHhid +hHKVKU22Z00ieY31tKg8Bi76eMmdyDjDPG2l084Gcsok8Mnx66vEHyJ+1X7M30L gbe1ozLxSLl4aucOQeR9FDZX4ixk7TV8VlO5MJ+pkpSx7TNkXd5MR6v26KFjm/xm Okm/ov1Rzz2gjPrnYSO+IdT3VqZVOYkrhLguFASuu9YdO6UTL1JrWKr4E8klrOTe weMMEr5gkfgzBLI0iS1tbgAkEucjKWJLsgs6JceOU5at77u/sPJo1/E+75P89peG 45M54V8nBxs7PO8HLLnr9QksQshFnlnf4EJj+w7EaCTO5UqAP1YU -----END CERTIFICATE-----Generated at Sun Jan 25 03:09:04 2026 by rpki-client