This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/10/c55cbc-e43d-40cb-844f-31c5137ec38a/1/Yrcgx8X9stHwgpCHDOsVbc1hluI.roa File: Yrcgx8X9stHwgpCHDOsVbc1hluI.roa (raw, json) Hash identifier: ECVF6igxy3y3LufgBVxh6FK9Aw/oP5gnb7fO7cFVtSs= Subject key identifier: 62:B7:20:C7:C5:FD:B2:D1:F0:82:90:87:0C:EB:15:6D:CD:61:96:E2 Certificate issuer: /CN=ab64c9ae5be2640a5fd694586a704ca34c2087bf Certificate serial: 019B7834984D2D6505ABCDE49DCB6303C42D Authority key identifier: AB:64:C9:AE:5B:E2:64:0A:5F:D6:94:58:6A:70:4C:A3:4C:20:87:BF Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/q2TJrlviZApf1pRYanBMo0wgh78.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/10/c55cbc-e43d-40cb-844f-31c5137ec38a/1/Yrcgx8X9stHwgpCHDOsVbc1hluI.roa Signing time: Thu 01 Jan 2026 06:17:51 +0000 ROA not before: Thu 01 Jan 2026 06:17:51 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 20815 IP address blocks: 80.64.32.0/20 maxlen: 24 2a00:5c00::/32 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/10/c55cbc-e43d-40cb-844f-31c5137ec38a/1/q2TJrlviZApf1pRYanBMo0wgh78.crl rsync://rpki.ripe.net/repository/DEFAULT/10/c55cbc-e43d-40cb-844f-31c5137ec38a/1/q2TJrlviZApf1pRYanBMo0wgh78.mft rsync://rpki.ripe.net/repository/DEFAULT/q2TJrlviZApf1pRYanBMo0wgh78.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:00:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:78:34:98:4d:2d:65:05:ab:cd:e4:9d:cb:63:03:c4:2d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ab64c9ae5be2640a5fd694586a704ca34c2087bf Validity Not Before: Jan 1 06:17:51 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=62b720c7c5fdb2d1f08290870ceb156dcd6196e2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:b4:1d:4c:50:cc:b7:fe:13:ed:08:bc:97:9f: c6:9b:7f:14:69:55:0b:4d:00:e8:b9:b8:50:18:9e: 09:74:b7:22:cb:d7:1b:2a:24:ff:94:51:0c:1e:39: 9e:41:6e:56:83:fb:44:37:6d:42:3a:8f:0a:1c:64: 93:81:62:5b:74:b7:88:a0:74:ff:43:5f:c8:ff:ee: 74:09:38:96:cf:20:22:31:06:b9:21:7f:80:f5:67: 49:57:d3:70:92:1b:e4:0a:7e:8d:a5:61:85:5d:6e: 88:12:60:78:16:f3:42:b1:3d:b6:ce:e5:81:0f:67: a2:98:45:2f:41:1b:35:8a:49:d6:66:95:b1:78:b2: 4c:39:dd:09:ee:b6:f4:ee:27:29:2e:9c:7d:51:60: a2:9c:e4:83:da:10:64:0c:6b:ea:1a:aa:8e:19:c5: 6e:ac:84:5a:33:94:55:a9:9d:b5:1b:b2:d0:c8:26: 26:be:3d:61:67:fd:f7:dc:dc:6e:19:10:50:06:2b: 92:15:ed:e3:ec:31:84:c0:dc:d5:e7:b4:a2:93:71: a3:97:7a:ea:e4:0e:ef:31:34:37:d4:5c:b0:cb:0a: b8:19:b2:9b:c4:b7:c2:66:f4:b8:ad:f9:71:f5:31: f3:22:d1:4c:9c:d8:ec:50:85:17:42:52:e7:53:af: 6d:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 62:B7:20:C7:C5:FD:B2:D1:F0:82:90:87:0C:EB:15:6D:CD:61:96:E2 X509v3 Authority Key Identifier: keyid:AB:64:C9:AE:5B:E2:64:0A:5F:D6:94:58:6A:70:4C:A3:4C:20:87:BF X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/q2TJrlviZApf1pRYanBMo0wgh78.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/10/c55cbc-e43d-40cb-844f-31c5137ec38a/1/Yrcgx8X9stHwgpCHDOsVbc1hluI.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/10/c55cbc-e43d-40cb-844f-31c5137ec38a/1/q2TJrlviZApf1pRYanBMo0wgh78.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 80.64.32.0/20 IPv6: 2a00:5c00::/32 Signature Algorithm: sha256WithRSAEncryption 17:28:69:e2:c5:3c:2d:a3:6e:b9:e0:d7:90:c5:af:d2:20:fb: 0d:bb:77:5f:36:84:89:7a:50:b2:ad:e9:67:17:f1:7b:33:c8: 51:66:64:31:38:23:8b:5e:8c:37:56:08:8c:79:e6:2c:3f:26: fe:f4:82:33:7d:44:b7:0f:da:0c:0e:58:0c:f8:0b:81:f1:a8: bf:7f:e7:95:85:a0:12:63:a3:04:a2:92:eb:28:8b:0c:54:49: cb:03:2f:3f:3c:56:8c:fb:47:e0:73:48:0c:c5:39:14:94:bc: 2c:73:b9:ca:f0:01:ad:87:df:01:70:e4:60:95:aa:b7:91:3c: 9b:d5:70:71:4f:d8:74:ae:c6:1d:6e:f5:05:30:9e:b6:3d:40: e7:23:8d:da:fb:1b:76:c9:34:96:77:d9:f5:70:d0:3b:7f:c3: a2:fa:95:49:f8:ba:bc:54:f5:2f:64:a5:63:8f:64:d4:70:7f: 09:21:92:dc:d9:08:d5:70:fc:c7:40:6e:39:3c:5a:aa:05:2f: 47:aa:af:60:4b:cf:09:b9:5f:b7:e7:88:48:21:be:97:10:24: 49:5e:4b:f7:58:6e:ad:1b:94:2c:28:e9:e3:e4:e6:e1:6d:54: b3:5b:00:88:65:db:1a:42:3b:1a:34:25:7d:f1:11:92:1d:23: c6:a1:68:a8 -----BEGIN CERTIFICATE----- MIIFDDCCA/SgAwIBAgISAZt4NJhNLWUFq83knctjA8QtMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGFiNjRjOWFlNWJlMjY0MGE1ZmQ2OTQ1ODZhNzA0Y2EzNGMy MDg3YmYwHhcNMjYwMTAxMDYxNzUxWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg2MmI3MjBjN2M1ZmRiMmQxZjA4MjkwODcwY2ViMTU2ZGNkNjE5NmUyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAq7QdTFDMt/4T7Qi8l5/Gm38UaVUL TQDoubhQGJ4JdLciy9cbKiT/lFEMHjmeQW5Wg/tEN21COo8KHGSTgWJbdLeIoHT/ Q1/I/+50CTiWzyAiMQa5IX+A9WdJV9NwkhvkCn6NpWGFXW6IEmB4FvNCsT22zuWB D2eimEUvQRs1iknWZpWxeLJMOd0J7rb07icpLpx9UWCinOSD2hBkDGvqGqqOGcVu rIRaM5RVqZ21G7LQyCYmvj1hZ/333NxuGRBQBiuSFe3j7DGEwNzV57Sik3Gjl3rq 5A7vMTQ31Fywywq4GbKbxLfCZvS4rflx9THzItFMnNjsUIUXQlLnU69tHwIDAQAB o4ICGDCCAhQwHQYDVR0OBBYEFGK3IMfF/bLR8IKQhwzrFW3NYZbiMB8GA1UdIwQY MBaAFKtkya5b4mQKX9aUWGpwTKNMIIe/MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvcTJUSnJsdmlaQXBmMXBSWWFuQk1vMHdnaDc4LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xMC9jNTVjYmMtZTQzZC00MGNiLTg0NGYt MzFjNTEzN2VjMzhhLzEvWXJjZ3g4WDlzdEh3Z3BDSERPc1ZiYzFobHVJLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xMC9jNTVjYmMtZTQzZC00MGNiLTg0NGYtMzFjNTEzN2VjMzhh LzEvcTJUSnJsdmlaQXBmMXBSWWFuQk1vMHdnaDc4LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMC4GCCsGAQUFBwEHAQH/BB8wHTAMBAIAATAGAwQEUEAgMA0E AgACMAcDBQAqAFwAMA0GCSqGSIb3DQEBCwUAA4IBAQAXKGnixTwto2654NeQxa/S IPsNu3dfNoSJelCyrelnF/F7M8hRZmQxOCOLXow3VgiMeeYsPyb+9IIzfUS3D9oM DlgM+AuB8ai/f+eVhaASY6MEopLrKIsMVEnLAy8/PFaM+0fgc0gMxTkUlLwsc7nK 8AGth98BcORglaq3kTyb1XBxT9h0rsYdbvUFMJ62PUDnI43a+xt2yTSWd9n1cNA7 f8Oi+pVJ+Lq8VPUvZKVjj2TUcH8JIZLc2QjVcPzHQG45PFqqBS9Hqq9gS88JuV+3 54hIIb6XECRJXkv3WG6tG5QsKOnj5ObhbVSzWwCIZdsaQjsaNCV98RGSHSPGoWio -----END CERTIFICATE-----Generated at Tue Feb 10 00:14:41 2026 by rpki-client