This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/RYFoAXhFHv8VHTGuWgVVhBgiuDU.roa File: RYFoAXhFHv8VHTGuWgVVhBgiuDU.roa (raw, json) Hash identifier: Ud3NVuBynTZPzkl0YI1UpbKsRBh1cetNOJ7LodXHsWU= Subject key identifier: 45:81:68:01:78:45:1E:FF:15:1D:31:AE:5A:05:55:84:18:22:B8:35 Certificate issuer: /CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b Certificate serial: 019B7D5D0467BA5DCBDB360FD9FC0B2284D7 Authority key identifier: 63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/RYFoAXhFHv8VHTGuWgVVhBgiuDU.roa Signing time: Fri 02 Jan 2026 06:20:06 +0000 ROA not before: Fri 02 Jan 2026 06:20:06 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 206411 IP address blocks: 193.163.85.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.crl rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.mft rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 12 Jan 2026 18:00:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7d:5d:04:67:ba:5d:cb:db:36:0f:d9:fc:0b:22:84:d7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b Validity Not Before: Jan 2 06:20:06 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=4581680178451eff151d31ae5a0555841822b835 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:0b:91:25:22:54:fa:81:f7:96:a1:ca:1c:78: be:99:cd:7d:26:8c:55:5d:7a:66:9b:1d:10:59:06: 63:d2:a6:27:20:71:e2:63:16:ec:e7:a4:6f:1b:c6: f2:f1:f0:dc:3a:40:57:1d:b3:92:12:1b:7b:2a:60: 68:d8:e6:d2:82:f8:a0:76:d5:94:b3:d3:24:1e:70: 50:c4:0a:7c:fe:84:2e:eb:c7:e9:a9:7c:df:a9:c9: 70:8d:ae:46:cf:80:ea:60:19:59:5a:37:75:ad:51: 64:4d:bf:20:8b:39:ab:06:e0:4e:a9:3c:4a:0e:71: 53:24:a5:be:54:0f:11:17:35:81:8c:64:2a:0d:8b: 9c:d1:ee:d9:d2:2b:b9:f3:7c:09:b3:48:62:21:a6: 88:a2:55:e5:2b:de:99:43:23:2e:ee:7d:37:a4:5a: 85:c1:ca:74:8e:43:2e:04:e2:fe:78:39:f3:3d:95: 61:8a:16:07:c9:b4:98:7f:81:c5:16:39:59:d7:92: f7:72:5b:0a:17:65:ea:b1:d6:d2:eb:f6:7a:b8:b5: aa:45:b4:14:07:24:f7:a2:f7:97:78:35:88:21:b8: 0e:eb:c1:ae:d3:fc:2b:50:f2:35:7b:1b:53:7e:0d: 48:67:dc:f5:92:7a:8d:02:51:0a:ab:29:db:4a:6c: 37:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 45:81:68:01:78:45:1E:FF:15:1D:31:AE:5A:05:55:84:18:22:B8:35 X509v3 Authority Key Identifier: keyid:63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/RYFoAXhFHv8VHTGuWgVVhBgiuDU.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 193.163.85.0/24 Signature Algorithm: sha256WithRSAEncryption 04:0c:3a:ed:7b:31:31:90:60:02:d2:88:0a:dc:1c:98:86:1e: 61:29:a2:7e:94:66:46:e1:e2:ec:a4:7e:bd:ca:77:0f:ea:09: 6c:90:ee:c4:0a:57:a6:78:19:f9:e7:ef:a7:21:5f:bd:29:1a: ad:9b:61:a5:7f:c9:a4:5b:7d:22:7d:27:98:bc:5d:dc:a0:6a: cb:0a:3d:54:0d:65:d2:2f:ea:f1:be:97:fa:9c:04:84:e3:ca: dd:3d:76:49:1c:0c:2b:b9:a6:e4:9e:13:5a:51:d5:4e:21:a6: 40:8c:5e:09:be:6c:14:51:10:d5:90:a0:00:da:7b:9d:f4:ef: 33:9a:48:4d:f5:e5:19:ba:2b:ba:50:c2:18:b8:fc:18:c5:33: 41:8f:ef:38:dc:5e:55:27:bb:24:1f:2e:37:5e:c9:e8:ea:97: 01:53:99:52:f5:d3:78:07:6a:c9:3b:2b:2e:cb:f2:ed:b9:55: 5e:55:66:34:00:30:85:2b:af:a0:4b:ea:d8:51:84:13:36:dd: 62:9e:64:93:c9:d2:40:fa:c4:dd:5a:52:25:b0:fd:54:1a:f6: e7:be:99:a0:e4:68:11:e1:d5:19:64:95:99:35:d5:3f:e0:9d: 4d:d1:07:40:28:0e:7d:5c:99:ab:06:1a:0c:f2:e3:81:7b:29: ac:94:9b:a5 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt9XQRnul3L2zYP2fwLIoTXMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDYzZTkxNjcxN2FiMTFjY2NmMTFlZjFmYjVjMTJlZTQxOTUw ZmFkOWIwHhcNMjYwMTAyMDYyMDA2WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg0NTgxNjgwMTc4NDUxZWZmMTUxZDMxYWU1YTA1NTU4NDE4MjJiODM1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArguRJSJU+oH3lqHKHHi+mc19JoxV XXpmmx0QWQZj0qYnIHHiYxbs56RvG8by8fDcOkBXHbOSEht7KmBo2ObSgvigdtWU s9MkHnBQxAp8/oQu68fpqXzfqclwja5Gz4DqYBlZWjd1rVFkTb8gizmrBuBOqTxK DnFTJKW+VA8RFzWBjGQqDYuc0e7Z0iu583wJs0hiIaaIolXlK96ZQyMu7n03pFqF wcp0jkMuBOL+eDnzPZVhihYHybSYf4HFFjlZ15L3clsKF2XqsdbS6/Z6uLWqRbQU ByT3oveXeDWIIbgO68Gu0/wrUPI1extTfg1IZ9z1knqNAlEKqynbSmw3YwIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFEWBaAF4RR7/FR0xrloFVYQYIrg1MB8GA1UdIwQY MBaAFGPpFnF6sRzM8R7x+1wS7kGVD62bMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvWS1rV2NYcXhITXp4SHZIN1hCTHVRWlVQclpzLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81MS80OTU3YTQtY2U1OS00MzE1LTk5NzYt ZGM1ZWM3NDhmNmE1LzEvUllGb0FYaEZIdjhWSFRHdVdnVlZoQmdpdURVLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81MS80OTU3YTQtY2U1OS00MzE1LTk5NzYtZGM1ZWM3NDhmNmE1 LzEvWS1rV2NYcXhITXp4SHZIN1hCTHVRWlVQclpzLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAwaNVMA0G CSqGSIb3DQEBCwUAA4IBAQAEDDrtezExkGAC0ogK3ByYhh5hKaJ+lGZG4eLspH69 yncP6glskO7EClemeBn55++nIV+9KRqtm2Glf8mkW30ifSeYvF3coGrLCj1UDWXS L+rxvpf6nASE48rdPXZJHAwruabknhNaUdVOIaZAjF4JvmwUURDVkKAA2nud9O8z mkhN9eUZuiu6UMIYuPwYxTNBj+843F5VJ7skHy43Xsno6pcBU5lS9dN4B2rJOysu y/LtuVVeVWY0ADCFK6+gS+rYUYQTNt1inmSTydJA+sTdWlIlsP1UGvbnvpmg5GgR 4dUZZJWZNdU/4J1N0QdAKA59XJmrBhoM8uOBeymslJul -----END CERTIFICATE-----Generated at Sun Jan 11 23:53:52 2026 by rpki-client