This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/ryVyzb9YvtNPbgd8wuydxcpfaBc.roa File: ryVyzb9YvtNPbgd8wuydxcpfaBc.roa (raw, json) Hash identifier: RicYccsYHU4DbyaVT/h07d1e7OVrldB6p1DX6xGEvh4= Subject key identifier: AF:25:72:CD:BF:58:BE:D3:4F:6E:07:7C:C2:EC:9D:C5:CA:5F:68:17 Certificate issuer: /CN=05976801363d375786152e4d061e75c8beb35058 Certificate serial: 019B7E3921775EC72D81ABEA2D22822C8BAA Authority key identifier: 05:97:68:01:36:3D:37:57:86:15:2E:4D:06:1E:75:C8:BE:B3:50:58 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BZdoATY9N1eGFS5NBh51yL6zUFg.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/ryVyzb9YvtNPbgd8wuydxcpfaBc.roa Signing time: Fri 02 Jan 2026 10:20:31 +0000 ROA not before: Fri 02 Jan 2026 10:20:31 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 31396 IP address blocks: 2a0c:b641:410::/44 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/BZdoATY9N1eGFS5NBh51yL6zUFg.crl rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/BZdoATY9N1eGFS5NBh51yL6zUFg.mft rsync://rpki.ripe.net/repository/DEFAULT/BZdoATY9N1eGFS5NBh51yL6zUFg.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 20 Jan 2026 18:00:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7e:39:21:77:5e:c7:2d:81:ab:ea:2d:22:82:2c:8b:aa Signature Algorithm: sha256WithRSAEncryption Issuer: CN=05976801363d375786152e4d061e75c8beb35058 Validity Not Before: Jan 2 10:20:31 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=af2572cdbf58bed34f6e077cc2ec9dc5ca5f6817 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:58:2b:0f:ea:66:c1:26:89:f6:a7:e1:64:d0: ac:25:b2:48:03:27:50:11:70:58:80:ea:bb:bf:b7: a0:2c:5c:a2:48:72:03:70:02:7c:a4:e5:ed:13:37: 7c:06:b1:de:68:40:0d:07:85:94:9b:95:6e:f3:eb: ae:b8:e7:08:82:93:64:e0:02:cf:ea:65:2f:23:e8: 07:e3:ad:1e:54:8b:dd:62:39:90:f3:15:b4:a3:0d: 57:99:fd:29:6c:f7:8b:df:b7:2d:68:a9:d5:30:22: 60:e3:cd:90:38:d1:b0:48:d3:ab:3b:71:11:46:35: a2:74:c7:3e:ad:5c:47:80:ba:1d:32:e6:6b:ad:2e: e9:46:ca:aa:07:b7:81:71:b1:23:51:ee:86:5f:a2: a0:09:2b:68:83:be:73:db:eb:ba:2a:62:d2:22:a3: 73:76:b1:e8:f7:d5:ba:47:a2:38:99:8e:12:cf:f2: 9e:c7:0a:0e:30:55:2a:5a:38:08:16:2e:a1:9f:9c: 24:9d:45:c9:16:97:61:61:dd:fb:f6:e2:c3:27:a4: ce:c4:2d:44:2e:95:1d:04:52:64:2c:05:27:81:eb: 73:34:62:b8:11:f8:5f:81:f2:8e:cb:84:af:e5:9f: d4:ef:cf:50:cf:5d:ae:1a:8a:07:c9:84:c4:34:99: 8a:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AF:25:72:CD:BF:58:BE:D3:4F:6E:07:7C:C2:EC:9D:C5:CA:5F:68:17 X509v3 Authority Key Identifier: keyid:05:97:68:01:36:3D:37:57:86:15:2E:4D:06:1E:75:C8:BE:B3:50:58 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BZdoATY9N1eGFS5NBh51yL6zUFg.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/ryVyzb9YvtNPbgd8wuydxcpfaBc.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/BZdoATY9N1eGFS5NBh51yL6zUFg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0c:b641:410::/44 Signature Algorithm: sha256WithRSAEncryption 37:9f:a1:7d:71:3a:98:52:e7:b8:59:4a:2d:1b:db:d5:76:47: 06:73:e4:50:e7:88:60:24:9d:a4:66:40:c7:8c:e9:33:97:6c: 0c:c7:38:13:ca:c5:a6:00:41:46:38:96:99:54:b6:dd:21:ce: 40:63:ea:25:fc:07:ab:80:5c:5e:a2:05:1d:ef:81:04:be:31: 94:fd:73:fb:f7:ad:3b:d5:7b:c2:9c:1e:82:22:32:7a:9b:8d: d7:93:b3:b6:aa:ae:a3:82:06:f2:a7:80:8c:2a:e9:36:bd:c7: 59:e4:3c:5a:09:be:45:ed:8f:2c:05:3a:ac:4e:f4:e9:3e:3a: 90:c8:ac:85:53:ba:51:08:09:de:35:39:85:cc:64:3c:c1:94: 13:13:c0:f5:26:d1:c0:03:8c:c5:fb:39:c3:bd:a1:65:af:3c: 19:49:d9:f2:ba:36:12:7d:c6:03:41:d3:d1:dd:10:3f:5f:7b: 5b:34:a1:c3:66:71:c4:e1:67:be:1a:eb:e8:8b:62:69:7a:53: a9:16:2e:22:a4:5c:56:8a:ea:da:45:f7:8c:2d:8c:25:6e:eb: 30:35:6c:f6:b4:51:43:43:5e:17:0e:a5:89:7a:ed:b8:2d:b4: e3:eb:4f:68:ac:5f:14:ba:09:a3:88:f3:22:fc:1c:d4:0d:cd: dc:11:ba:29 -----BEGIN CERTIFICATE----- MIIFADCCA+igAwIBAgISAZt+OSF3XsctgavqLSKCLIuqMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDA1OTc2ODAxMzYzZDM3NTc4NjE1MmU0ZDA2MWU3NWM4YmVi MzUwNTgwHhcNMjYwMTAyMTAyMDMxWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhhZjI1NzJjZGJmNThiZWQzNGY2ZTA3N2NjMmVjOWRjNWNhNWY2ODE3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA2VgrD+pmwSaJ9qfhZNCsJbJIAydQ EXBYgOq7v7egLFyiSHIDcAJ8pOXtEzd8BrHeaEANB4WUm5Vu8+uuuOcIgpNk4ALP 6mUvI+gH460eVIvdYjmQ8xW0ow1Xmf0pbPeL37ctaKnVMCJg482QONGwSNOrO3ER RjWidMc+rVxHgLodMuZrrS7pRsqqB7eBcbEjUe6GX6KgCStog75z2+u6KmLSIqNz drHo99W6R6I4mY4Sz/KexwoOMFUqWjgIFi6hn5wknUXJFpdhYd379uLDJ6TOxC1E LpUdBFJkLAUngetzNGK4EfhfgfKOy4Sv5Z/U789Qz12uGooHyYTENJmKpQIDAQAB o4ICDDCCAggwHQYDVR0OBBYEFK8lcs2/WL7TT24HfMLsncXKX2gXMB8GA1UdIwQY MBaAFAWXaAE2PTdXhhUuTQYedci+s1BYMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvQlpkb0FUWTlOMWVHRlM1TkJoNTF5TDZ6VUZnLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yOS8yYmFhZGMtMmI3YS00ZWMwLTk1Y2Et NWVjOGM4ZWQ2MGZkLzEvcnlWeXpiOVl2dE5QYmdkOHd1eWR4Y3BmYUJjLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yOS8yYmFhZGMtMmI3YS00ZWMwLTk1Y2EtNWVjOGM4ZWQ2MGZk LzEvQlpkb0FUWTlOMWVHRlM1TkJoNTF5TDZ6VUZnLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcEKgy2QQQQ MA0GCSqGSIb3DQEBCwUAA4IBAQA3n6F9cTqYUue4WUotG9vVdkcGc+RQ54hgJJ2k ZkDHjOkzl2wMxzgTysWmAEFGOJaZVLbdIc5AY+ol/AergFxeogUd74EEvjGU/XP7 96071XvCnB6CIjJ6m43Xk7O2qq6jggbyp4CMKuk2vcdZ5DxaCb5F7Y8sBTqsTvTp PjqQyKyFU7pRCAneNTmFzGQ8wZQTE8D1JtHAA4zF+znDvaFlrzwZSdnyujYSfcYD QdPR3RA/X3tbNKHDZnHE4We+Guvoi2JpelOpFi4ipFxWiuraRfeMLYwlbuswNWz2 tFFDQ14XDqWJeu24LbTj609orF8UugmjiPMi/BzUDc3cEbop -----END CERTIFICATE-----Generated at Tue Jan 20 02:46:14 2026 by rpki-client