This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f6/ca7c4a-f946-49e6-9f41-02f92aa4e2a0/1/ywsPXOHRV5iC_U8Kx3E6fIirpS0.roa File: ywsPXOHRV5iC_U8Kx3E6fIirpS0.roa (raw, json) Hash identifier: 3lNvDQfCt6hAulnUYGzPmQT+uldjzxP7nScqzqvC1Ac= Subject key identifier: CB:0B:0F:5C:E1:D1:57:98:82:FD:4F:0A:C7:71:3A:7C:88:AB:A5:2D Certificate issuer: /CN=bce75c43a41501d35417ae813be29f4227fb2dcf Certificate serial: 019B79110EC92EE9F559ECC5A5869295782C Authority key identifier: BC:E7:5C:43:A4:15:01:D3:54:17:AE:81:3B:E2:9F:42:27:FB:2D:CF Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vOdcQ6QVAdNUF66BO-KfQif7Lc8.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f6/ca7c4a-f946-49e6-9f41-02f92aa4e2a0/1/ywsPXOHRV5iC_U8Kx3E6fIirpS0.roa Signing time: Thu 01 Jan 2026 10:18:39 +0000 ROA not before: Thu 01 Jan 2026 10:18:39 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 203785 IP address blocks: 213.134.1.0/24 maxlen: 24 2a13:4b80::/29 maxlen: 29 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f6/ca7c4a-f946-49e6-9f41-02f92aa4e2a0/1/vOdcQ6QVAdNUF66BO-KfQif7Lc8.crl rsync://rpki.ripe.net/repository/DEFAULT/f6/ca7c4a-f946-49e6-9f41-02f92aa4e2a0/1/vOdcQ6QVAdNUF66BO-KfQif7Lc8.mft rsync://rpki.ripe.net/repository/DEFAULT/vOdcQ6QVAdNUF66BO-KfQif7Lc8.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 08 Jan 2026 10:00:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:79:11:0e:c9:2e:e9:f5:59:ec:c5:a5:86:92:95:78:2c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=bce75c43a41501d35417ae813be29f4227fb2dcf Validity Not Before: Jan 1 10:18:39 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=cb0b0f5ce1d1579882fd4f0ac7713a7c88aba52d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:10:fc:c6:9f:dc:69:9a:39:bd:43:31:c4:2d: 56:60:a1:76:68:04:18:46:53:cd:ad:c0:6b:5c:2a: a7:5e:23:8d:58:cb:e6:3d:1b:df:11:ee:71:1a:97: 57:d8:c6:7f:e3:da:36:e9:46:93:3b:cf:e3:a0:f9: 0e:a1:ff:b5:3c:5a:93:2c:81:e6:81:e5:bd:c0:15: 61:6a:56:88:6c:d5:32:ed:b3:09:b4:a0:aa:8b:34: 1c:60:8a:6f:86:d4:5a:ea:95:ee:03:68:18:73:5e: 54:17:b8:df:a2:ab:10:76:52:47:9d:65:2a:fe:52: 6c:8e:35:94:b6:5a:f3:53:17:c6:e1:13:58:64:25: 5e:32:da:99:b0:86:ae:37:50:c1:c9:23:3f:fc:44: 0a:46:ba:fb:e0:45:a6:5d:cf:ff:e9:60:66:16:ba: 5d:9b:43:1f:b6:05:69:ff:c9:fd:63:bc:03:d8:df: d9:63:88:f0:90:42:fa:26:fe:a2:78:70:88:5f:94: c1:37:51:ff:da:51:05:e2:91:32:67:0c:d6:13:7f: 22:25:1c:c6:0b:ec:d7:da:d1:72:b1:ed:92:61:6c: 0f:2f:64:ed:36:2d:16:bd:e3:03:0d:5b:97:5a:cb: 22:80:ef:7f:42:ec:92:1d:0d:9c:12:22:dd:0d:42: 58:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CB:0B:0F:5C:E1:D1:57:98:82:FD:4F:0A:C7:71:3A:7C:88:AB:A5:2D X509v3 Authority Key Identifier: keyid:BC:E7:5C:43:A4:15:01:D3:54:17:AE:81:3B:E2:9F:42:27:FB:2D:CF X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vOdcQ6QVAdNUF66BO-KfQif7Lc8.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f6/ca7c4a-f946-49e6-9f41-02f92aa4e2a0/1/ywsPXOHRV5iC_U8Kx3E6fIirpS0.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/f6/ca7c4a-f946-49e6-9f41-02f92aa4e2a0/1/vOdcQ6QVAdNUF66BO-KfQif7Lc8.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 213.134.1.0/24 IPv6: 2a13:4b80::/29 Signature Algorithm: sha256WithRSAEncryption 91:0d:d7:df:d5:1f:b0:42:37:98:15:18:17:76:e1:b1:5d:73: 76:cb:e2:10:a8:59:90:03:ec:2d:9d:63:5f:02:c9:9b:c9:d8: a9:5b:0a:67:3a:51:9f:11:16:b9:3b:24:16:b1:ff:92:34:d9: 04:1f:32:5b:40:3d:7c:4f:93:ca:02:d3:17:33:19:54:7e:91: 65:b6:f2:f2:89:ba:9a:cb:de:f0:1b:65:f3:9b:8e:0b:4a:50: b7:a6:f9:08:a4:58:ab:a3:bc:8f:18:a5:e8:ef:ba:33:5f:7b: 05:c6:ac:3b:e9:e6:b0:77:a2:3f:aa:77:32:54:5e:14:41:11: 25:df:ee:86:aa:65:96:f6:b3:cd:ac:e1:fd:29:e5:e9:29:36: 36:0a:c7:7e:d6:be:5d:a2:b1:b8:a7:c4:30:8c:1b:f3:07:1d: 5f:36:80:32:07:6d:6c:42:24:59:1d:be:79:be:69:b6:c7:5c: a4:4b:d1:af:34:6f:bd:e4:24:6c:b9:f1:27:5b:53:c6:2b:d3: 36:7f:29:08:3f:31:92:30:66:01:f1:b7:eb:03:bb:94:68:78: 09:cb:8b:a2:a7:60:29:af:9f:78:7f:83:67:12:c5:50:d7:1c: 53:58:b8:84:2f:10:9a:c1:57:6d:05:e0:50:f2:be:18:09:05: fd:58:b1:4f -----BEGIN CERTIFICATE----- MIIFDDCCA/SgAwIBAgISAZt5EQ7JLun1WezFpYaSlXgsMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGJjZTc1YzQzYTQxNTAxZDM1NDE3YWU4MTNiZTI5ZjQyMjdm YjJkY2YwHhcNMjYwMTAxMTAxODM5WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhjYjBiMGY1Y2UxZDE1Nzk4ODJmZDRmMGFjNzcxM2E3Yzg4YWJhNTJkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA3RD8xp/caZo5vUMxxC1WYKF2aAQY RlPNrcBrXCqnXiONWMvmPRvfEe5xGpdX2MZ/49o26UaTO8/joPkOof+1PFqTLIHm geW9wBVhalaIbNUy7bMJtKCqizQcYIpvhtRa6pXuA2gYc15UF7jfoqsQdlJHnWUq /lJsjjWUtlrzUxfG4RNYZCVeMtqZsIauN1DBySM//EQKRrr74EWmXc//6WBmFrpd m0MftgVp/8n9Y7wD2N/ZY4jwkEL6Jv6ieHCIX5TBN1H/2lEF4pEyZwzWE38iJRzG C+zX2tFyse2SYWwPL2TtNi0WveMDDVuXWssigO9/QuySHQ2cEiLdDUJYQQIDAQAB o4ICGDCCAhQwHQYDVR0OBBYEFMsLD1zh0VeYgv1PCsdxOnyIq6UtMB8GA1UdIwQY MBaAFLznXEOkFQHTVBeugTvin0In+y3PMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvdk9kY1E2UVZBZE5VRjY2Qk8tS2ZRaWY3TGM4LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mNi9jYTdjNGEtZjk0Ni00OWU2LTlmNDEt MDJmOTJhYTRlMmEwLzEveXdzUFhPSFJWNWlDX1U4S3gzRTZmSWlycFMwLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9mNi9jYTdjNGEtZjk0Ni00OWU2LTlmNDEtMDJmOTJhYTRlMmEw LzEvdk9kY1E2UVZBZE5VRjY2Qk8tS2ZRaWY3TGM4LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMC4GCCsGAQUFBwEHAQH/BB8wHTAMBAIAATAGAwQA1YYBMA0E AgACMAcDBQMqE0uAMA0GCSqGSIb3DQEBCwUAA4IBAQCRDdff1R+wQjeYFRgXduGx XXN2y+IQqFmQA+wtnWNfAsmbydipWwpnOlGfERa5OyQWsf+SNNkEHzJbQD18T5PK AtMXMxlUfpFltvLyibqay97wG2Xzm44LSlC3pvkIpFiro7yPGKXo77ozX3sFxqw7 6eawd6I/qncyVF4UQREl3+6GqmWW9rPNrOH9KeXpKTY2Csd+1r5dorG4p8QwjBvz Bx1fNoAyB21sQiRZHb55vmm2x1ykS9GvNG+95CRsufEnW1PGK9M2fykIPzGSMGYB 8bfrA7uUaHgJy4uip2Apr594f4NnEsVQ1xxTWLiELxCawVdtBeBQ8r4YCQX9WLFP -----END CERTIFICATE-----Generated at Wed Jan 7 14:15:07 2026 by rpki-client