This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d4/ed7c8a-3952-4401-9dd4-44692dbccb32/1/SYtSh6MgqpX8fZ4WHojx0wxmwAU.roa File: SYtSh6MgqpX8fZ4WHojx0wxmwAU.roa (raw, json) Hash identifier: qfAbswAstxuSdJu35mimEN1jiqsDnLeGp+g0coBMNag= Subject key identifier: 49:8B:52:87:A3:20:AA:95:FC:7D:9E:16:1E:88:F1:D3:0C:66:C0:05 Certificate issuer: /CN=9a4d76dd2f46068b0871ad4500ac6e577afe469c Certificate serial: 019B7A5B121E93F70BE81655CF1D9101BEDD Authority key identifier: 9A:4D:76:DD:2F:46:06:8B:08:71:AD:45:00:AC:6E:57:7A:FE:46:9C Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mk123S9GBosIca1FAKxuV3r-Rpw.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d4/ed7c8a-3952-4401-9dd4-44692dbccb32/1/SYtSh6MgqpX8fZ4WHojx0wxmwAU.roa Signing time: Thu 01 Jan 2026 16:19:07 +0000 ROA not before: Thu 01 Jan 2026 16:19:07 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 2611 IP address blocks: 93.190.122.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d4/ed7c8a-3952-4401-9dd4-44692dbccb32/1/mk123S9GBosIca1FAKxuV3r-Rpw.crl rsync://rpki.ripe.net/repository/DEFAULT/d4/ed7c8a-3952-4401-9dd4-44692dbccb32/1/mk123S9GBosIca1FAKxuV3r-Rpw.mft rsync://rpki.ripe.net/repository/DEFAULT/mk123S9GBosIca1FAKxuV3r-Rpw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 27 Jan 2026 15:35:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7a:5b:12:1e:93:f7:0b:e8:16:55:cf:1d:91:01:be:dd Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9a4d76dd2f46068b0871ad4500ac6e577afe469c Validity Not Before: Jan 1 16:19:07 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=498b5287a320aa95fc7d9e161e88f1d30c66c005 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:6a:3c:40:bc:ef:49:45:2c:a9:75:53:4d:ba: 91:d8:fc:30:b7:3e:d9:4f:a8:d4:b5:d6:00:8c:4a: cf:00:a6:15:27:31:c2:83:3e:34:40:19:28:7d:75: 43:c6:3d:43:f8:3f:55:c7:ef:61:2f:b8:00:dc:91: 2f:01:74:be:86:57:b9:bc:0b:05:99:19:fe:38:d0: a7:f7:0a:15:65:60:3b:a4:ae:cf:90:cf:03:d9:ea: 0d:d0:6b:f7:95:17:cf:d6:0f:31:6e:ec:b4:f3:ff: 06:85:a1:e7:96:7f:ce:ae:24:89:d9:df:cd:e9:93: 2b:7d:04:b2:1b:4b:49:98:d1:e3:7e:0e:3c:15:69: 3c:97:91:3a:cc:b8:b8:6c:59:a8:0c:9d:05:fa:5e: e4:2d:50:7a:35:bf:14:b6:34:8e:8c:2f:32:fd:36: 7c:fb:87:62:e6:68:ab:ec:24:11:ef:b5:37:b7:26: 9f:68:c0:b3:e8:0b:eb:83:0d:81:27:6e:0b:03:ea: d5:4d:bc:f2:dc:43:94:21:06:0f:31:73:e7:ac:56: 45:0c:e0:ab:9e:a0:73:67:1b:06:30:94:ac:fe:62: 37:fd:35:a7:04:c7:29:73:c2:85:73:c9:8e:44:d6: 6c:ad:45:4d:64:1f:24:7a:c5:3e:ab:3a:2b:66:e3: d3:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 49:8B:52:87:A3:20:AA:95:FC:7D:9E:16:1E:88:F1:D3:0C:66:C0:05 X509v3 Authority Key Identifier: keyid:9A:4D:76:DD:2F:46:06:8B:08:71:AD:45:00:AC:6E:57:7A:FE:46:9C X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mk123S9GBosIca1FAKxuV3r-Rpw.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/ed7c8a-3952-4401-9dd4-44692dbccb32/1/SYtSh6MgqpX8fZ4WHojx0wxmwAU.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/ed7c8a-3952-4401-9dd4-44692dbccb32/1/mk123S9GBosIca1FAKxuV3r-Rpw.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 93.190.122.0/24 Signature Algorithm: sha256WithRSAEncryption 40:f3:7f:9d:db:96:64:97:bf:34:ca:97:7c:53:b0:90:9a:95: 82:c8:d7:4a:37:64:e4:00:03:ee:e6:f0:85:d3:00:0f:34:d2: 85:05:29:7e:6a:55:05:52:3d:94:3a:96:f1:42:30:bb:b8:5a: 01:7a:f1:9c:13:26:dd:f4:8c:c7:a4:49:0e:3d:ad:ab:82:74: 06:9a:eb:f2:22:d1:de:6e:53:b9:18:b1:f9:32:3e:7b:b0:e8: e4:d7:b5:8a:5b:33:53:8b:90:7d:d4:87:f3:b4:7f:0d:8e:d3: b9:63:f5:0f:ba:8f:db:21:b3:96:77:76:e9:dc:38:17:83:ab: 32:67:5a:31:93:dc:5b:4b:47:32:bc:a2:48:37:21:0f:65:06: 71:36:e4:db:21:5f:4b:10:b5:cb:2d:58:c3:0f:45:d7:e4:08: 6f:28:2e:13:c1:be:76:7c:2f:5f:90:35:35:86:d3:8c:95:8f: 2f:7c:dd:fc:c0:fb:9f:71:23:72:6d:b2:a5:43:a7:d3:bf:56: 87:73:f7:97:9c:ba:4d:f0:aa:3d:dc:33:c7:25:fd:a7:59:0e: 25:ec:7e:36:10:2d:04:6e:2b:0e:27:34:59:cb:80:8c:1e:f8: 49:34:fc:94:66:37:94:37:ce:71:89:01:a0:c9:1a:9f:97:09: 7c:70:66:fc -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt6WxIek/cL6BZVzx2RAb7dMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDlhNGQ3NmRkMmY0NjA2OGIwODcxYWQ0NTAwYWM2ZTU3N2Fm ZTQ2OWMwHhcNMjYwMTAxMTYxOTA3WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg0OThiNTI4N2EzMjBhYTk1ZmM3ZDllMTYxZTg4ZjFkMzBjNjZjMDA1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArGo8QLzvSUUsqXVTTbqR2Pwwtz7Z T6jUtdYAjErPAKYVJzHCgz40QBkofXVDxj1D+D9Vx+9hL7gA3JEvAXS+hle5vAsF mRn+ONCn9woVZWA7pK7PkM8D2eoN0Gv3lRfP1g8xbuy08/8GhaHnln/OriSJ2d/N 6ZMrfQSyG0tJmNHjfg48FWk8l5E6zLi4bFmoDJ0F+l7kLVB6Nb8UtjSOjC8y/TZ8 +4di5mir7CQR77U3tyafaMCz6Avrgw2BJ24LA+rVTbzy3EOUIQYPMXPnrFZFDOCr nqBzZxsGMJSs/mI3/TWnBMcpc8KFc8mORNZsrUVNZB8kesU+qzorZuPTwQIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFEmLUoejIKqV/H2eFh6I8dMMZsAFMB8GA1UdIwQY MBaAFJpNdt0vRgaLCHGtRQCsbld6/kacMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvbWsxMjNTOUdCb3NJY2ExRkFLeHVWM3ItUnB3LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kNC9lZDdjOGEtMzk1Mi00NDAxLTlkZDQt NDQ2OTJkYmNjYjMyLzEvU1l0U2g2TWdxcFg4Zlo0V0hvangwd3htd0FVLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kNC9lZDdjOGEtMzk1Mi00NDAxLTlkZDQtNDQ2OTJkYmNjYjMy LzEvbWsxMjNTOUdCb3NJY2ExRkFLeHVWM3ItUnB3LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAXb56MA0G CSqGSIb3DQEBCwUAA4IBAQBA83+d25Zkl780ypd8U7CQmpWCyNdKN2TkAAPu5vCF 0wAPNNKFBSl+alUFUj2UOpbxQjC7uFoBevGcEybd9IzHpEkOPa2rgnQGmuvyItHe blO5GLH5Mj57sOjk17WKWzNTi5B91IfztH8NjtO5Y/UPuo/bIbOWd3bp3DgXg6sy Z1oxk9xbS0cyvKJINyEPZQZxNuTbIV9LELXLLVjDD0XX5AhvKC4Twb52fC9fkDU1 htOMlY8vfN38wPufcSNybbKlQ6fTv1aHc/eXnLpN8Ko93DPHJf2nWQ4l7H42EC0E bisOJzRZy4CMHvhJNPyUZjeUN85xiQGgyRqflwl8cGb8 -----END CERTIFICATE-----Generated at Mon Jan 26 23:22:11 2026 by rpki-client