This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/YV32z5sTsBUfv7SaEQfPjIBs5lc.roa File: YV32z5sTsBUfv7SaEQfPjIBs5lc.roa (raw, json) Hash identifier: KX1bjQu5aPRednWDe5fr5MgRYKv2RYpvU2QjK5w6lE0= Subject key identifier: 61:5D:F6:CF:9B:13:B0:15:1F:BF:B4:9A:11:07:CF:8C:80:6C:E6:57 Certificate issuer: /CN=05976801363d375786152e4d061e75c8beb35058 Certificate serial: 019B7E39391296CC39FF5ACC46C5D002176F Authority key identifier: 05:97:68:01:36:3D:37:57:86:15:2E:4D:06:1E:75:C8:BE:B3:50:58 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BZdoATY9N1eGFS5NBh51yL6zUFg.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/YV32z5sTsBUfv7SaEQfPjIBs5lc.roa Signing time: Fri 02 Jan 2026 10:20:37 +0000 ROA not before: Fri 02 Jan 2026 10:20:37 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 204625 IP address blocks: 2a0c:b642:900::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/BZdoATY9N1eGFS5NBh51yL6zUFg.crl rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/BZdoATY9N1eGFS5NBh51yL6zUFg.mft rsync://rpki.ripe.net/repository/DEFAULT/BZdoATY9N1eGFS5NBh51yL6zUFg.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 20 Jan 2026 18:00:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7e:39:39:12:96:cc:39:ff:5a:cc:46:c5:d0:02:17:6f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=05976801363d375786152e4d061e75c8beb35058 Validity Not Before: Jan 2 10:20:37 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=615df6cf9b13b0151fbfb49a1107cf8c806ce657 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:21:3c:0c:b4:52:95:fc:49:47:8a:53:e9:17: 8c:0c:fc:5e:85:f6:90:5c:aa:98:17:56:30:14:7d: c1:4e:18:36:e7:ca:cc:c6:33:32:7e:f0:bc:cb:b4: 19:9f:b9:1b:9a:32:38:aa:1c:0c:e1:77:44:f5:12: 84:cd:f8:2a:63:4e:fc:b4:10:58:2a:ac:0d:8d:bb: a3:b2:b6:49:3d:a7:ed:18:e5:ce:44:6a:41:fd:5c: b4:e4:db:44:48:7d:f5:32:38:35:ee:9e:e0:ae:8f: 5f:9e:fd:2a:8b:54:09:17:f3:17:00:49:a8:8f:ee: a8:3e:69:21:8f:b3:f0:d6:35:8f:dc:8c:c0:08:42: db:47:68:10:8e:33:b7:38:1e:94:3b:b4:aa:58:2e: 4f:b4:ba:bd:c8:36:71:a2:4b:f4:03:bb:ed:00:33: 87:58:c6:1a:46:fb:76:d7:87:af:ad:f9:93:92:c3: 53:62:a9:93:32:62:5c:37:d5:eb:ef:12:8d:11:d5: f5:4d:63:07:9a:db:8b:52:0f:fd:b6:0a:e7:06:62: db:aa:fd:3a:59:06:11:d3:59:4c:38:3e:db:66:4a: ab:75:ab:df:f1:92:79:8d:2b:5f:10:85:49:63:ac: 19:22:6a:07:94:34:f6:27:2e:38:ce:2e:1f:36:c4: d6:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 61:5D:F6:CF:9B:13:B0:15:1F:BF:B4:9A:11:07:CF:8C:80:6C:E6:57 X509v3 Authority Key Identifier: keyid:05:97:68:01:36:3D:37:57:86:15:2E:4D:06:1E:75:C8:BE:B3:50:58 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BZdoATY9N1eGFS5NBh51yL6zUFg.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/YV32z5sTsBUfv7SaEQfPjIBs5lc.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/BZdoATY9N1eGFS5NBh51yL6zUFg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0c:b642:900::/40 Signature Algorithm: sha256WithRSAEncryption 83:ab:27:04:53:74:22:95:85:fc:5d:94:c9:91:47:7c:b2:1d: 8f:c7:37:04:94:f3:36:99:26:82:d0:8c:7e:df:12:8a:94:82: c6:7e:e6:c6:e2:ec:d8:b8:5a:63:60:ef:d3:c4:75:68:94:a3: 1e:4b:6e:92:71:51:8d:3b:46:07:48:48:81:dd:1f:18:75:62: 68:33:21:1a:ae:e3:52:1f:54:7b:91:c6:1e:64:3d:28:4a:8e: a6:84:51:d5:ca:8d:23:07:62:17:b0:f2:72:cb:4b:e4:31:1c: 01:67:1b:6a:6a:44:94:ac:2c:cb:6b:fd:76:3b:83:46:e9:8c: ea:2d:ba:bb:34:c6:b4:1e:c8:85:f5:03:10:35:c4:77:37:cb: 5c:80:ba:51:aa:17:ac:81:2a:84:62:57:5a:0b:a2:36:8e:e4: e5:a9:8d:9e:20:8f:d5:4d:7f:38:bf:3b:05:a7:d5:4c:c5:47: 0b:1f:f5:73:9c:9f:9c:05:0d:f0:04:34:bd:2a:91:cf:2c:65: cd:a9:54:14:ee:95:12:06:ee:1a:60:9d:72:5c:9d:c5:a3:ad: 48:ef:f2:73:7d:35:3c:6e:68:3c:94:fe:06:fb:e6:39:19:40: d0:d6:90:41:92:60:ef:1b:9c:81:25:dd:11:0a:37:e3:ce:8e: 51:36:1d:20 -----BEGIN CERTIFICATE----- MIIE/zCCA+egAwIBAgISAZt+OTkSlsw5/1rMRsXQAhdvMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDA1OTc2ODAxMzYzZDM3NTc4NjE1MmU0ZDA2MWU3NWM4YmVi MzUwNTgwHhcNMjYwMTAyMTAyMDM3WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg2MTVkZjZjZjliMTNiMDE1MWZiZmI0OWExMTA3Y2Y4YzgwNmNlNjU3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuCE8DLRSlfxJR4pT6ReMDPxehfaQ XKqYF1YwFH3BThg258rMxjMyfvC8y7QZn7kbmjI4qhwM4XdE9RKEzfgqY078tBBY KqwNjbujsrZJPaftGOXORGpB/Vy05NtESH31Mjg17p7gro9fnv0qi1QJF/MXAEmo j+6oPmkhj7Pw1jWP3IzACELbR2gQjjO3OB6UO7SqWC5PtLq9yDZxokv0A7vtADOH WMYaRvt214evrfmTksNTYqmTMmJcN9Xr7xKNEdX1TWMHmtuLUg/9tgrnBmLbqv06 WQYR01lMOD7bZkqrdavf8ZJ5jStfEIVJY6wZImoHlDT2Jy44zi4fNsTW5wIDAQAB o4ICCzCCAgcwHQYDVR0OBBYEFGFd9s+bE7AVH7+0mhEHz4yAbOZXMB8GA1UdIwQY MBaAFAWXaAE2PTdXhhUuTQYedci+s1BYMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvQlpkb0FUWTlOMWVHRlM1TkJoNTF5TDZ6VUZnLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yOS8yYmFhZGMtMmI3YS00ZWMwLTk1Y2Et NWVjOGM4ZWQ2MGZkLzEvWVYzMno1c1RzQlVmdjdTYUVRZlBqSUJzNWxjLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yOS8yYmFhZGMtMmI3YS00ZWMwLTk1Y2EtNWVjOGM4ZWQ2MGZk LzEvQlpkb0FUWTlOMWVHRlM1TkJoNTF5TDZ6VUZnLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAOBAIAAjAIAwYAKgy2Qgkw DQYJKoZIhvcNAQELBQADggEBAIOrJwRTdCKVhfxdlMmRR3yyHY/HNwSU8zaZJoLQ jH7fEoqUgsZ+5sbi7Ni4WmNg79PEdWiUox5LbpJxUY07RgdISIHdHxh1YmgzIRqu 41IfVHuRxh5kPShKjqaEUdXKjSMHYhew8nLLS+QxHAFnG2pqRJSsLMtr/XY7g0bp jOoturs0xrQeyIX1AxA1xHc3y1yAulGqF6yBKoRiV1oLojaO5OWpjZ4gj9VNfzi/ OwWn1UzFRwsf9XOcn5wFDfAENL0qkc8sZc2pVBTulRIG7hpgnXJcncWjrUjv8nN9 NTxuaDyU/gb75jkZQNDWkEGSYO8bnIEl3REKN+POjlE2HSA= -----END CERTIFICATE-----Generated at Tue Jan 20 02:44:54 2026 by rpki-client