This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/af/33a733-ef05-4af0-8535-196d666d2b2b/1/lypKNyumbp3Rx5Ca8OfilFGC6co.roa File: lypKNyumbp3Rx5Ca8OfilFGC6co.roa (raw, json) Hash identifier: 1pqIQQrSkAL4LQAupUembuigh5NslsCnzhntmGy1wNg= Subject key identifier: 97:2A:4A:37:2B:A6:6E:9D:D1:C7:90:9A:F0:E7:E2:94:51:82:E9:CA Certificate issuer: /CN=11184fb6503a760657f90270e276a3fcb50b8e8f Certificate serial: 019B7758D8268A555F1AF39F3227E895AF54 Authority key identifier: 11:18:4F:B6:50:3A:76:06:57:F9:02:70:E2:76:A3:FC:B5:0B:8E:8F Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ERhPtlA6dgZX-QJw4naj_LULjo8.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/af/33a733-ef05-4af0-8535-196d666d2b2b/1/lypKNyumbp3Rx5Ca8OfilFGC6co.roa Signing time: Thu 01 Jan 2026 02:17:49 +0000 ROA not before: Thu 01 Jan 2026 02:17:49 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 12891 IP address blocks: 193.110.208.0/24 maxlen: 24 193.110.210.0/24 maxlen: 24 193.110.211.0/24 maxlen: 24 193.110.212.0/24 maxlen: 24 193.110.213.0/24 maxlen: 24 193.110.214.0/24 maxlen: 24 193.110.215.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/af/33a733-ef05-4af0-8535-196d666d2b2b/1/ERhPtlA6dgZX-QJw4naj_LULjo8.crl rsync://rpki.ripe.net/repository/DEFAULT/af/33a733-ef05-4af0-8535-196d666d2b2b/1/ERhPtlA6dgZX-QJw4naj_LULjo8.mft rsync://rpki.ripe.net/repository/DEFAULT/ERhPtlA6dgZX-QJw4naj_LULjo8.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 22 Jan 2026 08:01:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:77:58:d8:26:8a:55:5f:1a:f3:9f:32:27:e8:95:af:54 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=11184fb6503a760657f90270e276a3fcb50b8e8f Validity Not Before: Jan 1 02:17:49 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=972a4a372ba66e9dd1c7909af0e7e2945182e9ca Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:92:3c:dd:49:46:60:30:19:9e:bd:93:de:39:74: 79:17:cd:52:fa:0d:d5:26:64:e6:86:2f:0c:41:e8: 76:63:eb:82:c6:41:62:a1:8f:f2:2a:3f:3f:98:53: 2a:ed:da:44:02:d4:cf:3e:d0:28:f8:97:ea:77:1e: 2f:b4:aa:e8:6d:6d:7e:15:2d:a3:b5:04:3e:c0:af: b3:65:79:74:24:c8:83:a9:b7:cd:6b:ea:09:6a:83: ac:a0:56:c3:6f:15:dd:ed:bb:9c:eb:2d:30:0e:d4: 88:af:99:36:f0:6b:7f:e3:c2:64:6f:40:a0:c0:11: 34:03:2e:87:3e:07:97:1e:04:82:05:a6:2b:1e:7d: a2:03:52:f0:83:9b:6b:ea:e6:ff:55:9e:6b:4e:9b: b1:29:36:3d:32:73:8b:ff:95:96:89:5a:29:37:48: c4:ec:a4:8a:71:4b:7e:9d:f2:d5:04:6c:1f:e7:d8: 32:4c:c2:9a:45:da:e7:95:f2:6d:98:1e:e9:f4:61: 3a:ac:38:47:be:cd:93:e3:56:da:b4:0f:88:27:ba: cc:71:87:f3:6c:dd:98:2e:0e:1e:99:ac:74:a1:77: 40:d0:7b:04:6e:cf:16:24:08:6d:d2:8c:80:dc:34: 2e:19:fe:3f:69:da:78:3c:7e:71:4b:ed:df:cb:5a: 23:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 97:2A:4A:37:2B:A6:6E:9D:D1:C7:90:9A:F0:E7:E2:94:51:82:E9:CA X509v3 Authority Key Identifier: keyid:11:18:4F:B6:50:3A:76:06:57:F9:02:70:E2:76:A3:FC:B5:0B:8E:8F X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ERhPtlA6dgZX-QJw4naj_LULjo8.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/af/33a733-ef05-4af0-8535-196d666d2b2b/1/lypKNyumbp3Rx5Ca8OfilFGC6co.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/af/33a733-ef05-4af0-8535-196d666d2b2b/1/ERhPtlA6dgZX-QJw4naj_LULjo8.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 193.110.208.0/24 193.110.210.0-193.110.215.255 Signature Algorithm: sha256WithRSAEncryption 79:76:cd:38:f8:5b:43:95:5d:36:cf:35:5c:02:c2:48:4a:11: 02:bf:69:d3:13:f7:12:bb:ba:42:b1:81:90:9c:b9:b3:63:40: e7:73:f2:b4:73:7e:b0:c1:36:3d:7c:ed:fd:b3:d3:7f:f3:e8: 57:1c:e8:ea:c1:d8:12:3f:ca:75:cd:56:85:9f:61:2e:11:2c: 6d:db:65:a8:bd:d5:e9:a6:74:7f:f4:49:a2:51:b5:e7:4d:86: 22:f4:86:7a:cb:44:c0:87:da:d0:c9:6e:8f:f2:08:41:25:be: f4:8b:70:13:15:e0:40:82:c6:57:37:bf:76:63:93:1e:61:fd: 5a:aa:30:39:e3:7f:6c:c9:74:b3:11:94:65:d2:f3:85:ca:97: 0f:17:02:69:a4:ca:62:c1:00:2d:e8:ff:5f:84:46:62:6e:82: 8e:81:d2:dd:e4:c4:81:54:75:50:2f:36:5a:6d:b8:2f:d9:96: b7:37:eb:25:7b:b8:71:1c:64:3c:66:39:70:9e:4c:1e:3b:1f: 2f:05:69:b6:72:5c:47:80:27:37:f3:76:7e:ce:1c:8f:96:88: 04:c5:ab:a9:f3:e2:82:96:df:60:b7:6c:72:80:60:85:9e:f4: 8c:2a:c8:61:81:5d:58:be:2f:fe:6d:52:ab:f7:bb:fa:90:d3: 51:a2:6b:24 -----BEGIN CERTIFICATE----- MIIFCzCCA/OgAwIBAgISAZt3WNgmilVfGvOfMifola9UMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDExMTg0ZmI2NTAzYTc2MDY1N2Y5MDI3MGUyNzZhM2ZjYjUw YjhlOGYwHhcNMjYwMTAxMDIxNzQ5WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg5NzJhNGEzNzJiYTY2ZTlkZDFjNzkwOWFmMGU3ZTI5NDUxODJlOWNhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAkjzdSUZgMBmevZPeOXR5F81S+g3V JmTmhi8MQeh2Y+uCxkFioY/yKj8/mFMq7dpEAtTPPtAo+Jfqdx4vtKrobW1+FS2j tQQ+wK+zZXl0JMiDqbfNa+oJaoOsoFbDbxXd7buc6y0wDtSIr5k28Gt/48Jkb0Cg wBE0Ay6HPgeXHgSCBaYrHn2iA1Lwg5tr6ub/VZ5rTpuxKTY9MnOL/5WWiVopN0jE 7KSKcUt+nfLVBGwf59gyTMKaRdrnlfJtmB7p9GE6rDhHvs2T41batA+IJ7rMcYfz bN2YLg4emax0oXdA0HsEbs8WJAht0oyA3DQuGf4/adp4PH5xS+3fy1ojuQIDAQAB o4ICFzCCAhMwHQYDVR0OBBYEFJcqSjcrpm6d0ceQmvDn4pRRgunKMB8GA1UdIwQY MBaAFBEYT7ZQOnYGV/kCcOJ2o/y1C46PMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvRVJoUHRsQTZkZ1pYLVFKdzRuYWpfTFVMam84LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hZi8zM2E3MzMtZWYwNS00YWYwLTg1MzUt MTk2ZDY2NmQyYjJiLzEvbHlwS055dW1icDNSeDVDYThPZmlsRkdDNmNvLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9hZi8zM2E3MzMtZWYwNS00YWYwLTg1MzUtMTk2ZDY2NmQyYjJi LzEvRVJoUHRsQTZkZ1pYLVFKdzRuYWpfTFVMam84LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMC0GCCsGAQUFBwEHAQH/BB4wHDAaBAIAATAUAwQAwW7QMAwD BAHBbtIDBAPBbtAwDQYJKoZIhvcNAQELBQADggEBAHl2zTj4W0OVXTbPNVwCwkhK EQK/adMT9xK7ukKxgZCcubNjQOdz8rRzfrDBNj187f2z03/z6Fcc6OrB2BI/ynXN VoWfYS4RLG3bZai91emmdH/0SaJRtedNhiL0hnrLRMCH2tDJbo/yCEElvvSLcBMV 4ECCxlc3v3Zjkx5h/VqqMDnjf2zJdLMRlGXS84XKlw8XAmmkymLBAC3o/1+ERmJu go6B0t3kxIFUdVAvNlptuC/Zlrc36yV7uHEcZDxmOXCeTB47Hy8FabZyXEeAJzfz dn7OHI+WiATFq6nz4oKW32C3bHKAYIWe9IwqyGGBXVi+L/5tUqv3u/qQ01GiayQ= -----END CERTIFICATE-----Generated at Wed Jan 21 15:54:29 2026 by rpki-client