This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/14/10e965-7409-44d8-9502-cf0aa3ecad28/1/yqWqycxDvODXOPVo60dSBqjaSe8.roa File: yqWqycxDvODXOPVo60dSBqjaSe8.roa (raw, json) Hash identifier: EZtFEMVoeITSA0JZ/DBD86/mXpaTIrHY/lFYqHddSSQ= Subject key identifier: CA:A5:AA:C9:CC:43:BC:E0:D7:38:F5:68:EB:47:52:06:A8:DA:49:EF Certificate issuer: /CN=0802b95ce6239d526c35ae7a8e2ceb48aeb82b5f Certificate serial: 019B7F13F079946338457E70AC1A103C1EE0 Authority key identifier: 08:02:B9:5C:E6:23:9D:52:6C:35:AE:7A:8E:2C:EB:48:AE:B8:2B:5F Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CAK5XOYjnVJsNa56jizrSK64K18.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/14/10e965-7409-44d8-9502-cf0aa3ecad28/1/yqWqycxDvODXOPVo60dSBqjaSe8.roa Signing time: Fri 02 Jan 2026 14:19:31 +0000 ROA not before: Fri 02 Jan 2026 14:19:31 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 42683 IP address blocks: 2a02:2698:5800::/38 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/14/10e965-7409-44d8-9502-cf0aa3ecad28/1/CAK5XOYjnVJsNa56jizrSK64K18.crl rsync://rpki.ripe.net/repository/DEFAULT/14/10e965-7409-44d8-9502-cf0aa3ecad28/1/CAK5XOYjnVJsNa56jizrSK64K18.mft rsync://rpki.ripe.net/repository/DEFAULT/CAK5XOYjnVJsNa56jizrSK64K18.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 05 Feb 2026 23:01:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7f:13:f0:79:94:63:38:45:7e:70:ac:1a:10:3c:1e:e0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0802b95ce6239d526c35ae7a8e2ceb48aeb82b5f Validity Not Before: Jan 2 14:19:31 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=caa5aac9cc43bce0d738f568eb475206a8da49ef Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:af:14:f9:9a:79:ea:a9:cc:ec:fa:74:3c:32: 53:9e:ff:0a:82:68:45:5a:5f:b0:77:e1:39:4d:69: 54:02:7d:70:64:fa:69:6d:f4:82:1d:8a:d4:dd:f6: 0b:bb:20:d1:12:29:d5:2c:9c:0b:c3:10:af:df:02: 25:26:60:16:a3:2a:89:47:ad:0a:28:e9:94:7b:1c: 0a:d4:15:39:30:17:18:1d:12:55:fd:6b:4e:86:ba: 97:d6:d2:43:77:a9:a7:fa:89:27:cb:7e:52:51:14: d1:5a:b4:54:7c:bb:d2:f3:10:93:11:7d:7e:5c:6c: 15:ad:c1:47:10:bb:f2:e4:00:91:99:a6:77:94:3c: 28:f9:21:f9:64:da:b5:28:ed:cf:9b:26:98:bc:13: a2:6b:f7:3a:f9:b1:d8:6d:d6:20:a6:d0:c1:cd:b7: e0:c7:36:42:c8:27:41:25:ca:34:97:ca:16:b2:7b: c6:b1:49:ec:37:b8:d3:4e:5e:36:36:99:91:72:39: ad:95:0d:4e:60:11:a2:59:d6:80:83:48:fd:de:e5: c1:83:c3:66:19:02:13:b1:c6:92:cf:aa:73:68:fc: f2:87:51:0f:03:42:5a:4c:6a:6e:77:47:e9:89:3c: 7b:46:13:b5:14:8a:41:1b:c5:a6:a2:bf:ae:b3:06: 31:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CA:A5:AA:C9:CC:43:BC:E0:D7:38:F5:68:EB:47:52:06:A8:DA:49:EF X509v3 Authority Key Identifier: keyid:08:02:B9:5C:E6:23:9D:52:6C:35:AE:7A:8E:2C:EB:48:AE:B8:2B:5F X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CAK5XOYjnVJsNa56jizrSK64K18.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/14/10e965-7409-44d8-9502-cf0aa3ecad28/1/yqWqycxDvODXOPVo60dSBqjaSe8.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/14/10e965-7409-44d8-9502-cf0aa3ecad28/1/CAK5XOYjnVJsNa56jizrSK64K18.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a02:2698:5800::/38 Signature Algorithm: sha256WithRSAEncryption 29:b7:1b:7d:a7:00:5d:0b:12:76:49:1a:f9:30:55:29:87:65: 68:af:44:6f:d0:c4:a2:37:95:bd:7c:cf:8f:f1:f6:bc:17:80: 24:42:81:8f:29:c7:91:2f:59:b7:5e:59:79:cd:f0:97:61:42: 02:f0:8f:38:9c:06:ac:02:3b:82:bb:02:d3:ac:79:14:22:cf: af:91:3f:53:4a:52:85:48:51:0d:ec:57:8c:6f:eb:2b:9c:0e: 3a:40:a7:8f:c0:ac:9c:3e:60:65:01:f7:80:2f:48:75:07:8b: 51:3e:96:2d:3c:74:a0:77:d2:8f:49:33:53:27:ab:7e:95:55: 4c:ba:cd:48:28:14:6b:c0:b3:b1:d6:c7:0f:0b:fd:33:5e:eb: 44:d3:22:39:e5:bf:06:8c:70:a4:23:bd:e4:8e:dc:d3:fe:2b: f3:46:21:16:8e:f6:7f:55:b4:6d:a3:8e:1a:82:d5:af:3a:5c: aa:82:d1:ee:aa:24:ee:1a:72:75:df:43:f1:e5:14:9c:92:79: 89:aa:0b:7f:ed:2f:af:4f:24:f4:55:a2:da:06:a9:8e:d1:4f: e8:2e:08:67:40:1c:1a:91:5c:25:76:9b:ee:b7:a5:0c:19:3b: 89:58:35:5f:8e:36:d5:8f:95:60:13:12:75:35:09:b6:57:4e: b9:91:1e:2f -----BEGIN CERTIFICATE----- MIIE/zCCA+egAwIBAgISAZt/E/B5lGM4RX5wrBoQPB7gMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDA4MDJiOTVjZTYyMzlkNTI2YzM1YWU3YThlMmNlYjQ4YWVi ODJiNWYwHhcNMjYwMTAyMTQxOTMxWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhjYWE1YWFjOWNjNDNiY2UwZDczOGY1NjhlYjQ3NTIwNmE4ZGE0OWVmMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzq8U+Zp56qnM7Pp0PDJTnv8KgmhF Wl+wd+E5TWlUAn1wZPppbfSCHYrU3fYLuyDREinVLJwLwxCv3wIlJmAWoyqJR60K KOmUexwK1BU5MBcYHRJV/WtOhrqX1tJDd6mn+okny35SURTRWrRUfLvS8xCTEX1+ XGwVrcFHELvy5ACRmaZ3lDwo+SH5ZNq1KO3PmyaYvBOia/c6+bHYbdYgptDBzbfg xzZCyCdBJco0l8oWsnvGsUnsN7jTTl42NpmRcjmtlQ1OYBGiWdaAg0j93uXBg8Nm GQITscaSz6pzaPzyh1EPA0JaTGpud0fpiTx7RhO1FIpBG8Wmor+uswYxAwIDAQAB o4ICCzCCAgcwHQYDVR0OBBYEFMqlqsnMQ7zg1zj1aOtHUgao2knvMB8GA1UdIwQY MBaAFAgCuVzmI51SbDWueo4s60iuuCtfMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvQ0FLNVhPWWpuVkpzTmE1NmppenJTSzY0SzE4LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xNC8xMGU5NjUtNzQwOS00NGQ4LTk1MDIt Y2YwYWEzZWNhZDI4LzEveXFXcXljeER2T0RYT1BWbzYwZFNCcWphU2U4LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xNC8xMGU5NjUtNzQwOS00NGQ4LTk1MDItY2YwYWEzZWNhZDI4 LzEvQ0FLNVhPWWpuVkpzTmE1NmppenJTSzY0SzE4LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAOBAIAAjAIAwYCKgImmFgw DQYJKoZIhvcNAQELBQADggEBACm3G32nAF0LEnZJGvkwVSmHZWivRG/QxKI3lb18 z4/x9rwXgCRCgY8px5EvWbdeWXnN8JdhQgLwjzicBqwCO4K7AtOseRQiz6+RP1NK UoVIUQ3sV4xv6yucDjpAp4/ArJw+YGUB94AvSHUHi1E+li08dKB30o9JM1Mnq36V VUy6zUgoFGvAs7HWxw8L/TNe60TTIjnlvwaMcKQjveSO3NP+K/NGIRaO9n9VtG2j jhqC1a86XKqC0e6qJO4acnXfQ/HlFJySeYmqC3/tL69PJPRVotoGqY7RT+guCGdA HBqRXCV2m+63pQwZO4lYNV+ONtWPlWATEnU1CbZXTrmRHi8= -----END CERTIFICATE-----Generated at Thu Feb 5 05:55:04 2026 by rpki-client