This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c1/901012-0e2c-41ba-8734-bf06d7873f02/1/Ydl5RfFIrbsmSH6-XTvntjcnl-A.roa File: Ydl5RfFIrbsmSH6-XTvntjcnl-A.roa (raw, json) Hash identifier: lwEnqSA72LQH4xIm5xneqDzJT1+5eNfuOciZJI5TDZk= Subject key identifier: 61:D9:79:45:F1:48:AD:BB:26:48:7E:BE:5D:3B:E7:B6:37:27:97:E0 Certificate issuer: /CN=3c52f8c17df46f863360e032fa9d31689e4af6f1 Certificate serial: 019B7CEDD0B151CDAF289AEF28C79A9A934D Authority key identifier: 3C:52:F8:C1:7D:F4:6F:86:33:60:E0:32:FA:9D:31:68:9E:4A:F6:F1 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PFL4wX30b4YzYOAy-p0xaJ5K9vE.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c1/901012-0e2c-41ba-8734-bf06d7873f02/1/Ydl5RfFIrbsmSH6-XTvntjcnl-A.roa Signing time: Fri 02 Jan 2026 04:18:38 +0000 ROA not before: Fri 02 Jan 2026 04:18:38 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 6798 IP address blocks: 193.243.162.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c1/901012-0e2c-41ba-8734-bf06d7873f02/1/PFL4wX30b4YzYOAy-p0xaJ5K9vE.crl rsync://rpki.ripe.net/repository/DEFAULT/c1/901012-0e2c-41ba-8734-bf06d7873f02/1/PFL4wX30b4YzYOAy-p0xaJ5K9vE.mft rsync://rpki.ripe.net/repository/DEFAULT/PFL4wX30b4YzYOAy-p0xaJ5K9vE.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 10:00:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7c:ed:d0:b1:51:cd:af:28:9a:ef:28:c7:9a:9a:93:4d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3c52f8c17df46f863360e032fa9d31689e4af6f1 Validity Not Before: Jan 2 04:18:38 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=61d97945f148adbb26487ebe5d3be7b6372797e0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:9f:96:e5:28:2a:33:89:fd:5c:35:12:ea:3a: 2f:b7:e4:79:80:93:43:1f:9e:d0:00:63:eb:4f:86: 50:9e:4c:32:0d:d4:70:5b:84:80:83:64:bb:64:70: 3e:20:42:34:32:5f:14:53:f1:6b:9e:d9:84:dd:eb: c0:9e:5c:7a:72:42:9d:64:bb:28:8e:7b:d0:2f:4a: a4:dd:5f:32:c7:fd:6f:70:8d:d2:2f:5a:6e:65:5a: 23:cb:17:0c:ad:2b:b6:2a:c4:9b:59:e7:9f:46:e6: dd:2c:8f:4a:e0:37:d8:39:8c:0a:19:bd:f3:03:79: be:65:48:53:ce:be:6f:ce:28:06:0f:b0:e0:c5:af: 8e:4f:fc:a8:24:79:44:88:07:c5:d2:f3:74:4e:08: e1:8e:21:43:4c:bd:3a:07:4f:8d:69:98:3d:9a:2a: 3f:59:9b:a5:6a:0e:1a:82:da:2a:e4:e8:9d:05:29: 38:96:79:d1:e6:d8:87:bb:9a:66:d1:3a:71:da:9f: 27:f5:fa:3e:68:06:2f:b9:e8:4d:3f:a6:78:fb:3b: a0:bf:21:eb:34:aa:ff:42:de:9c:7e:b7:56:dc:5f: 44:41:e4:aa:d3:5d:00:3d:b9:2a:1b:16:ad:f8:b5: b4:31:5b:e0:a0:c0:67:14:81:e2:22:a2:6c:d0:f2: 3e:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 61:D9:79:45:F1:48:AD:BB:26:48:7E:BE:5D:3B:E7:B6:37:27:97:E0 X509v3 Authority Key Identifier: keyid:3C:52:F8:C1:7D:F4:6F:86:33:60:E0:32:FA:9D:31:68:9E:4A:F6:F1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PFL4wX30b4YzYOAy-p0xaJ5K9vE.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c1/901012-0e2c-41ba-8734-bf06d7873f02/1/Ydl5RfFIrbsmSH6-XTvntjcnl-A.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/c1/901012-0e2c-41ba-8734-bf06d7873f02/1/PFL4wX30b4YzYOAy-p0xaJ5K9vE.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 193.243.162.0/23 Signature Algorithm: sha256WithRSAEncryption 8e:3e:16:bd:27:5e:5f:48:db:08:52:80:05:cc:59:b3:4d:f1: 1c:c3:ef:b3:a6:2a:2f:4e:77:01:52:af:8d:85:27:b3:83:3c: c4:52:9d:16:71:fb:70:eb:6f:96:dc:8b:1a:c4:3e:ea:b3:fa: a1:b1:ab:8f:b3:b2:fc:88:89:c3:c7:0c:fb:bd:98:49:00:f2: 1c:1d:ab:d2:8c:3b:8a:4c:34:ca:c7:8c:4a:af:17:d8:a4:69: 71:33:f1:27:e4:53:e5:c7:cf:e2:70:ad:91:3b:76:d4:cc:ad: 53:47:8d:71:84:19:f8:de:b5:21:96:47:80:a0:19:08:15:57: 1d:f7:7c:da:7d:57:8f:6d:bd:23:62:af:be:4c:1c:4c:bc:aa: 67:9d:7e:1e:f4:df:c3:f5:80:69:6a:24:42:e6:96:36:5f:81: f6:6b:80:69:2f:ed:ea:1e:63:a3:dd:05:fe:ae:8f:bb:4d:0e: 12:bb:3e:c3:0e:98:fd:35:41:52:a9:15:6c:34:f6:66:ad:30: a1:25:f1:f0:74:2d:46:ad:52:f6:c3:07:8c:02:15:6b:ff:e4: c8:1a:c8:39:f7:f1:01:63:ed:fb:01:37:fa:6c:66:63:f4:37: 70:42:e2:97:b1:6a:c5:d9:3b:2f:b3:95:72:fc:b0:b5:a7:ff: f0:58:3f:66 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt87dCxUc2vKJrvKMeampNNMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDNjNTJmOGMxN2RmNDZmODYzMzYwZTAzMmZhOWQzMTY4OWU0 YWY2ZjEwHhcNMjYwMTAyMDQxODM4WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg2MWQ5Nzk0NWYxNDhhZGJiMjY0ODdlYmU1ZDNiZTdiNjM3Mjc5N2UwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA2J+W5SgqM4n9XDUS6jovt+R5gJND H57QAGPrT4ZQnkwyDdRwW4SAg2S7ZHA+IEI0Ml8UU/FrntmE3evAnlx6ckKdZLso jnvQL0qk3V8yx/1vcI3SL1puZVojyxcMrSu2KsSbWeefRubdLI9K4DfYOYwKGb3z A3m+ZUhTzr5vzigGD7Dgxa+OT/yoJHlEiAfF0vN0TgjhjiFDTL06B0+NaZg9mio/ WZulag4agtoq5OidBSk4lnnR5tiHu5pm0Tpx2p8n9fo+aAYvuehNP6Z4+zugvyHr NKr/Qt6cfrdW3F9EQeSq010APbkqGxat+LW0MVvgoMBnFIHiIqJs0PI+6wIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFGHZeUXxSK27Jkh+vl0757Y3J5fgMB8GA1UdIwQY MBaAFDxS+MF99G+GM2DgMvqdMWieSvbxMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvUEZMNHdYMzBiNFl6WU9BeS1wMHhhSjVLOXZFLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jMS85MDEwMTItMGUyYy00MWJhLTg3MzQt YmYwNmQ3ODczZjAyLzEvWWRsNVJmRklyYnNtU0g2LVhUdm50amNubC1BLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9jMS85MDEwMTItMGUyYy00MWJhLTg3MzQtYmYwNmQ3ODczZjAy LzEvUEZMNHdYMzBiNFl6WU9BeS1wMHhhSjVLOXZFLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBwfOiMA0G CSqGSIb3DQEBCwUAA4IBAQCOPha9J15fSNsIUoAFzFmzTfEcw++zpiovTncBUq+N hSezgzzEUp0Wcftw62+W3IsaxD7qs/qhsauPs7L8iInDxwz7vZhJAPIcHavSjDuK TDTKx4xKrxfYpGlxM/En5FPlx8/icK2RO3bUzK1TR41xhBn43rUhlkeAoBkIFVcd 93zafVePbb0jYq++TBxMvKpnnX4e9N/D9YBpaiRC5pY2X4H2a4BpL+3qHmOj3QX+ ro+7TQ4Suz7DDpj9NUFSqRVsNPZmrTChJfHwdC1GrVL2wweMAhVr/+TIGsg59/EB Y+37ATf6bGZj9DdwQuKXsWrF2Tsvs5Vy/LC1p//wWD9m -----END CERTIFICATE-----Generated at Mon Feb 9 20:10:16 2026 by rpki-client