This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a5/a53644-9da6-4d29-b9b6-e78cfa79eff1/1/yNYC7VNuITL88FuMRKTJoDt6hNg.roa File: yNYC7VNuITL88FuMRKTJoDt6hNg.roa (raw, json) Hash identifier: 8JNp2jq6UQpWFc9nLRlegOYLaf507H8Zto0kp+p83oY= Subject key identifier: C8:D6:02:ED:53:6E:21:32:FC:F0:5B:8C:44:A4:C9:A0:3B:7A:84:D8 Certificate issuer: /CN=4e7545eee66daa39443ff9f88f522447f7863783 Certificate serial: 019B76EB9D4BD02D5610DB4FD16BB4BAB33A Authority key identifier: 4E:75:45:EE:E6:6D:AA:39:44:3F:F9:F8:8F:52:24:47:F7:86:37:83 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TnVF7uZtqjlEP_n4j1IkR_eGN4M.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a5/a53644-9da6-4d29-b9b6-e78cfa79eff1/1/yNYC7VNuITL88FuMRKTJoDt6hNg.roa Signing time: Thu 01 Jan 2026 00:18:31 +0000 ROA not before: Thu 01 Jan 2026 00:18:31 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 214267 IP address blocks: 193.3.35.0/24 maxlen: 24 2a10:c440::/29 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a5/a53644-9da6-4d29-b9b6-e78cfa79eff1/1/TnVF7uZtqjlEP_n4j1IkR_eGN4M.crl rsync://rpki.ripe.net/repository/DEFAULT/a5/a53644-9da6-4d29-b9b6-e78cfa79eff1/1/TnVF7uZtqjlEP_n4j1IkR_eGN4M.mft rsync://rpki.ripe.net/repository/DEFAULT/TnVF7uZtqjlEP_n4j1IkR_eGN4M.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 21:05:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:76:eb:9d:4b:d0:2d:56:10:db:4f:d1:6b:b4:ba:b3:3a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4e7545eee66daa39443ff9f88f522447f7863783 Validity Not Before: Jan 1 00:18:31 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=c8d602ed536e2132fcf05b8c44a4c9a03b7a84d8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:40:82:cc:ae:2b:4b:78:8f:a4:38:80:72:23: 9c:64:2d:8b:9f:71:0a:35:e0:dc:7e:0c:4c:dd:9a: b5:c6:ad:78:d7:b6:2e:e0:b7:63:ce:62:9c:23:a1: 5e:19:17:36:c7:78:60:00:0a:39:95:9e:2c:3b:50: 96:81:c9:aa:2a:f4:63:8b:e2:85:b7:64:b8:a5:d0: f5:c3:a4:85:14:c0:7b:0b:6d:99:9c:04:65:a5:a0: c8:0e:f9:3e:dd:5a:44:e8:cf:97:64:23:11:91:48: 7a:a7:c1:2a:42:3f:7e:65:b4:80:26:d3:50:ed:9d: 88:11:24:68:7c:28:d3:04:9e:59:d8:ca:93:a4:72: 60:c1:93:82:9a:d6:46:a9:ab:41:22:ef:05:ff:03: 48:ab:47:6e:6c:16:20:1d:f5:20:b1:e7:80:98:22: e9:70:fc:54:f0:40:3a:f8:7a:4d:90:6c:96:f3:2b: 61:29:e8:62:59:dd:f5:81:d8:cf:19:4f:81:8e:0e: 65:75:91:fb:37:19:4d:06:c7:29:78:47:d7:d4:9b: f6:b2:69:32:ba:9b:04:b4:53:5b:4f:e9:9a:76:f0: 35:b5:f6:e3:4b:66:a6:97:55:76:11:41:46:f0:7f: 8e:2a:0e:d8:c2:d0:0f:5e:0d:cc:fa:54:1b:90:8f: d1:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C8:D6:02:ED:53:6E:21:32:FC:F0:5B:8C:44:A4:C9:A0:3B:7A:84:D8 X509v3 Authority Key Identifier: keyid:4E:75:45:EE:E6:6D:AA:39:44:3F:F9:F8:8F:52:24:47:F7:86:37:83 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TnVF7uZtqjlEP_n4j1IkR_eGN4M.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a5/a53644-9da6-4d29-b9b6-e78cfa79eff1/1/yNYC7VNuITL88FuMRKTJoDt6hNg.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/a5/a53644-9da6-4d29-b9b6-e78cfa79eff1/1/TnVF7uZtqjlEP_n4j1IkR_eGN4M.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 193.3.35.0/24 IPv6: 2a10:c440::/29 Signature Algorithm: sha256WithRSAEncryption 4a:7b:3c:c6:cb:7e:6d:60:ae:e7:b2:98:04:83:32:71:33:20: ba:c9:c5:75:cc:84:39:a3:33:03:99:31:a9:36:71:80:3d:29: 6e:85:40:f9:19:86:0f:fc:4d:af:48:db:e8:a3:fd:13:76:b0: 91:1f:00:13:7e:e2:8f:86:74:5b:4d:45:98:b2:cd:9e:cf:cf: c2:e6:b7:cb:26:89:39:82:d0:a0:56:e3:b9:2b:dc:17:01:02: 34:80:f6:aa:4f:60:fd:8b:9e:0f:e9:86:62:5e:3a:22:8d:19: 59:1b:59:e2:d2:ce:82:39:a7:a0:cd:c6:3d:72:bc:2e:b6:ac: fb:78:ab:b7:15:f4:7f:d1:a4:a4:f6:c5:a1:99:1d:3f:c7:94: 3f:cd:38:96:1f:2f:59:fa:de:da:91:c8:a7:80:cd:c1:86:f4: 14:3c:3f:1a:e5:b5:77:80:6c:0b:55:91:0a:48:a5:d3:75:8a: 88:88:88:f8:38:1a:95:bf:c4:3d:68:0f:a1:f0:19:df:40:cd: 68:89:cb:4b:10:9c:1b:89:c9:ea:3d:2a:e8:ea:90:5b:83:6f: 84:a0:d1:05:64:29:54:81:84:ff:57:0c:b1:63:6c:9f:47:74: 58:9c:e8:e3:a1:28:36:0d:37:01:2d:e8:3d:ce:a2:bd:1f:21: 14:2e:68:d8 -----BEGIN CERTIFICATE----- MIIFDDCCA/SgAwIBAgISAZt2651L0C1WENtP0Wu0urM6MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDRlNzU0NWVlZTY2ZGFhMzk0NDNmZjlmODhmNTIyNDQ3Zjc4 NjM3ODMwHhcNMjYwMTAxMDAxODMxWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhjOGQ2MDJlZDUzNmUyMTMyZmNmMDViOGM0NGE0YzlhMDNiN2E4NGQ4MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxECCzK4rS3iPpDiAciOcZC2Ln3EK NeDcfgxM3Zq1xq1417Yu4LdjzmKcI6FeGRc2x3hgAAo5lZ4sO1CWgcmqKvRji+KF t2S4pdD1w6SFFMB7C22ZnARlpaDIDvk+3VpE6M+XZCMRkUh6p8EqQj9+ZbSAJtNQ 7Z2IESRofCjTBJ5Z2MqTpHJgwZOCmtZGqatBIu8F/wNIq0dubBYgHfUgseeAmCLp cPxU8EA6+HpNkGyW8ythKehiWd31gdjPGU+Bjg5ldZH7NxlNBscpeEfX1Jv2smky upsEtFNbT+madvA1tfbjS2aml1V2EUFG8H+OKg7YwtAPXg3M+lQbkI/RLQIDAQAB o4ICGDCCAhQwHQYDVR0OBBYEFMjWAu1TbiEy/PBbjESkyaA7eoTYMB8GA1UdIwQY MBaAFE51Re7mbao5RD/5+I9SJEf3hjeDMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvVG5WRjd1WnRxamxFUF9uNGoxSWtSX2VHTjRNLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hNS9hNTM2NDQtOWRhNi00ZDI5LWI5YjYt ZTc4Y2ZhNzllZmYxLzEveU5ZQzdWTnVJVEw4OEZ1TVJLVEpvRHQ2aE5nLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9hNS9hNTM2NDQtOWRhNi00ZDI5LWI5YjYtZTc4Y2ZhNzllZmYx LzEvVG5WRjd1WnRxamxFUF9uNGoxSWtSX2VHTjRNLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMC4GCCsGAQUFBwEHAQH/BB8wHTAMBAIAATAGAwQAwQMjMA0E AgACMAcDBQMqEMRAMA0GCSqGSIb3DQEBCwUAA4IBAQBKezzGy35tYK7nspgEgzJx MyC6ycV1zIQ5ozMDmTGpNnGAPSluhUD5GYYP/E2vSNvoo/0TdrCRHwATfuKPhnRb TUWYss2ez8/C5rfLJok5gtCgVuO5K9wXAQI0gPaqT2D9i54P6YZiXjoijRlZG1ni 0s6COaegzcY9crwutqz7eKu3FfR/0aSk9sWhmR0/x5Q/zTiWHy9Z+t7akcingM3B hvQUPD8a5bV3gGwLVZEKSKXTdYqIiIj4OBqVv8Q9aA+h8BnfQM1oictLEJwbicnq PSro6pBbg2+EoNEFZClUgYT/VwyxY2yfR3RYnOjjoSg2DTcBLeg9zqK9HyEULmjY -----END CERTIFICATE-----Generated at Tue Feb 10 06:06:53 2026 by rpki-client