This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1c/8bfcc2-5def-44aa-87c1-2bbf46884585/1/yjCN4h-OQwH-dv_bxbcZqXCm3bE.roa File: yjCN4h-OQwH-dv_bxbcZqXCm3bE.roa (raw, json) Hash identifier: p3KrL6JUxzdYriz06hWpPAtkTxaVZyDG1Zr5vFYZVTs= Subject key identifier: CA:30:8D:E2:1F:8E:43:01:FE:76:FF:DB:C5:B7:19:A9:70:A6:DD:B1 Certificate issuer: /CN=88ebaa2f1769a3ddf65f873dc31f351ef078ad25 Certificate serial: 019B7BA5114317E60D104DD6D4A59DB85F46 Authority key identifier: 88:EB:AA:2F:17:69:A3:DD:F6:5F:87:3D:C3:1F:35:1E:F0:78:AD:25 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iOuqLxdpo932X4c9wx81HvB4rSU.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1c/8bfcc2-5def-44aa-87c1-2bbf46884585/1/yjCN4h-OQwH-dv_bxbcZqXCm3bE.roa Signing time: Thu 01 Jan 2026 22:19:33 +0000 ROA not before: Thu 01 Jan 2026 22:19:33 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 209431 IP address blocks: 2a06:a7c0::/29 maxlen: 29 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1c/8bfcc2-5def-44aa-87c1-2bbf46884585/1/iOuqLxdpo932X4c9wx81HvB4rSU.crl rsync://rpki.ripe.net/repository/DEFAULT/1c/8bfcc2-5def-44aa-87c1-2bbf46884585/1/iOuqLxdpo932X4c9wx81HvB4rSU.mft rsync://rpki.ripe.net/repository/DEFAULT/iOuqLxdpo932X4c9wx81HvB4rSU.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 13:00:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7b:a5:11:43:17:e6:0d:10:4d:d6:d4:a5:9d:b8:5f:46 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=88ebaa2f1769a3ddf65f873dc31f351ef078ad25 Validity Not Before: Jan 1 22:19:33 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=ca308de21f8e4301fe76ffdbc5b719a970a6ddb1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:bb:21:41:86:d3:f0:39:41:b8:21:56:32:b1: 51:a5:b8:94:47:0c:26:46:91:4a:37:af:eb:e1:b5: 7a:64:31:79:ec:fe:26:09:c2:6e:19:d7:09:c2:d6: 30:92:41:b4:ae:fa:97:8b:9c:38:37:c0:d7:62:36: 2f:3d:9e:f2:cb:37:f8:d5:ea:15:7c:63:fa:cb:f3: 03:08:0d:50:60:f0:5a:58:a7:e9:69:3a:f7:d7:62: 14:47:e4:c6:c0:ca:c4:94:cd:50:00:9f:be:c7:30: 9f:37:dd:98:1a:fe:ba:7b:6b:e4:0a:47:5a:ef:9f: 8f:b5:68:86:da:e2:5d:21:7f:6f:5c:25:d5:f7:1a: a9:07:75:1d:e5:f6:7b:8d:29:df:d7:3c:e7:80:b8: be:01:e7:6a:5a:b7:5d:08:09:03:7e:21:f0:09:87: 05:6f:05:e5:d5:41:29:cb:b0:5f:47:39:3b:3d:72: 88:ff:3c:ac:db:e8:8f:cc:f8:f5:9e:d9:f7:c9:c0: 8e:71:d4:07:59:ea:97:3d:f6:75:06:a5:f0:d0:c1: 6b:0b:3e:3d:fb:c4:aa:ea:ab:86:2d:09:2f:05:f4: 7a:c0:76:8d:94:71:1c:1e:eb:a6:07:2c:7b:71:7b: 8b:bd:b9:06:9a:2d:e1:4e:65:9c:c5:db:c8:08:4d: 6a:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CA:30:8D:E2:1F:8E:43:01:FE:76:FF:DB:C5:B7:19:A9:70:A6:DD:B1 X509v3 Authority Key Identifier: keyid:88:EB:AA:2F:17:69:A3:DD:F6:5F:87:3D:C3:1F:35:1E:F0:78:AD:25 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iOuqLxdpo932X4c9wx81HvB4rSU.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/8bfcc2-5def-44aa-87c1-2bbf46884585/1/yjCN4h-OQwH-dv_bxbcZqXCm3bE.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/8bfcc2-5def-44aa-87c1-2bbf46884585/1/iOuqLxdpo932X4c9wx81HvB4rSU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a06:a7c0::/29 Signature Algorithm: sha256WithRSAEncryption 85:17:28:3d:20:31:4e:81:d1:f1:5e:45:45:da:f0:8c:40:43: 9c:5b:fb:5d:f6:41:05:38:b0:e7:4f:b7:be:4c:e1:ec:f2:77: 75:98:c6:3b:2b:8f:d6:a1:80:5a:cc:01:93:b1:78:f0:8b:92: 15:a3:10:5e:28:36:6a:16:2c:2c:c4:63:27:82:56:34:a2:44: 9c:c8:53:64:c4:a6:01:1a:50:75:1e:1f:fb:1a:74:34:4e:52: 50:51:52:b6:56:40:6d:6d:7d:61:e4:db:72:74:3e:06:72:d1: fe:53:e2:86:3a:05:58:05:fd:04:93:d1:2d:a6:1a:b5:7b:0b: 5b:16:48:f8:96:81:a0:47:81:7d:06:90:8e:3f:4e:c5:ad:c8: ea:7c:23:6a:78:8a:5b:de:07:46:9f:0e:35:4b:3b:f7:6e:b3: f4:96:05:30:eb:9c:da:ed:1c:ee:a5:3a:ac:f1:ab:29:fc:70: a9:28:f6:e1:2e:9a:96:a6:7e:a5:82:c5:b6:4d:32:65:2c:0b: a5:fd:c2:5f:28:6f:a9:44:69:c3:cc:47:f9:5a:62:aa:07:64: 24:18:f7:e9:96:b7:42:d8:9b:fb:5e:1b:7f:7a:85:55:8d:5e: 36:ea:c9:78:db:ef:df:5d:2a:e3:54:72:e9:ec:a8:9a:c6:6c: 5b:1b:b3:67 -----BEGIN CERTIFICATE----- MIIE/jCCA+agAwIBAgISAZt7pRFDF+YNEE3W1KWduF9GMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDg4ZWJhYTJmMTc2OWEzZGRmNjVmODczZGMzMWYzNTFlZjA3 OGFkMjUwHhcNMjYwMTAxMjIxOTMzWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhjYTMwOGRlMjFmOGU0MzAxZmU3NmZmZGJjNWI3MTlhOTcwYTZkZGIxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA47shQYbT8DlBuCFWMrFRpbiURwwm RpFKN6/r4bV6ZDF57P4mCcJuGdcJwtYwkkG0rvqXi5w4N8DXYjYvPZ7yyzf41eoV fGP6y/MDCA1QYPBaWKfpaTr312IUR+TGwMrElM1QAJ++xzCfN92YGv66e2vkCkda 75+PtWiG2uJdIX9vXCXV9xqpB3Ud5fZ7jSnf1zzngLi+AedqWrddCAkDfiHwCYcF bwXl1UEpy7BfRzk7PXKI/zys2+iPzPj1ntn3ycCOcdQHWeqXPfZ1BqXw0MFrCz49 +8Sq6quGLQkvBfR6wHaNlHEcHuumByx7cXuLvbkGmi3hTmWcxdvICE1qNwIDAQAB o4ICCjCCAgYwHQYDVR0OBBYEFMowjeIfjkMB/nb/28W3Galwpt2xMB8GA1UdIwQY MBaAFIjrqi8XaaPd9l+HPcMfNR7weK0lMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvaU91cUx4ZHBvOTMyWDRjOXd4ODFIdkI0clNVLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xYy84YmZjYzItNWRlZi00NGFhLTg3YzEt MmJiZjQ2ODg0NTg1LzEveWpDTjRoLU9Rd0gtZHZfYnhiY1pxWENtM2JFLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xYy84YmZjYzItNWRlZi00NGFhLTg3YzEtMmJiZjQ2ODg0NTg1 LzEvaU91cUx4ZHBvOTMyWDRjOXd4ODFIdkI0clNVLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCAGCCsGAQUFBwEHAQH/BBEwDzANBAIAAjAHAwUDKganwDAN BgkqhkiG9w0BAQsFAAOCAQEAhRcoPSAxToHR8V5FRdrwjEBDnFv7XfZBBTiw50+3 vkzh7PJ3dZjGOyuP1qGAWswBk7F48IuSFaMQXig2ahYsLMRjJ4JWNKJEnMhTZMSm ARpQdR4f+xp0NE5SUFFStlZAbW19YeTbcnQ+BnLR/lPihjoFWAX9BJPRLaYatXsL WxZI+JaBoEeBfQaQjj9Oxa3I6nwjaniKW94HRp8ONUs7926z9JYFMOuc2u0c7qU6 rPGrKfxwqSj24S6alqZ+pYLFtk0yZSwLpf3CXyhvqURpw8xH+VpiqgdkJBj36Za3 Qtib+14bf3qFVY1eNurJeNvv310q41Ry6eyomsZsWxuzZw== -----END CERTIFICATE-----Generated at Mon Feb 9 21:00:18 2026 by rpki-client