This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2f/075bc1-2b55-40b1-990e-23bb4203eb57/1/YKDNzzYNdE1sKwNoJ39aAgh_OZU.roa File: YKDNzzYNdE1sKwNoJ39aAgh_OZU.roa (raw, json) Hash identifier: 6jhSpIspHRwUAWUI+iMNv3fuIaKW3vG2nI/dTcMCJDw= Subject key identifier: 60:A0:CD:CF:36:0D:74:4D:6C:2B:03:68:27:7F:5A:02:08:7F:39:95 Certificate issuer: /CN=89e4bf59877a3b2ef14f5f120a6750dc14939c6b Certificate serial: 019B7E37821B18A73077AC5CD06CF7443F6C Authority key identifier: 89:E4:BF:59:87:7A:3B:2E:F1:4F:5F:12:0A:67:50:DC:14:93:9C:6B Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ieS_WYd6Oy7xT18SCmdQ3BSTnGs.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2f/075bc1-2b55-40b1-990e-23bb4203eb57/1/YKDNzzYNdE1sKwNoJ39aAgh_OZU.roa Signing time: Fri 02 Jan 2026 10:18:45 +0000 ROA not before: Fri 02 Jan 2026 10:18:45 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 50643 IP address blocks: 2001:678:b4c::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2f/075bc1-2b55-40b1-990e-23bb4203eb57/1/ieS_WYd6Oy7xT18SCmdQ3BSTnGs.crl rsync://rpki.ripe.net/repository/DEFAULT/2f/075bc1-2b55-40b1-990e-23bb4203eb57/1/ieS_WYd6Oy7xT18SCmdQ3BSTnGs.mft rsync://rpki.ripe.net/repository/DEFAULT/ieS_WYd6Oy7xT18SCmdQ3BSTnGs.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 21:05:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7e:37:82:1b:18:a7:30:77:ac:5c:d0:6c:f7:44:3f:6c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=89e4bf59877a3b2ef14f5f120a6750dc14939c6b Validity Not Before: Jan 2 10:18:45 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=60a0cdcf360d744d6c2b0368277f5a02087f3995 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:08:1f:9b:be:2a:14:01:57:ef:b1:70:03:7f: 2b:07:5d:cb:5e:c6:b4:fd:3d:6e:43:5e:57:59:30: d9:24:14:9c:0d:58:96:ad:c0:b1:02:3d:50:96:47: 6f:5e:e7:db:33:a4:99:bf:ed:61:c7:e6:49:b1:22: fa:67:88:fa:01:1a:a2:2d:e7:cf:78:13:1b:67:e8: f1:db:9e:2e:22:0c:64:fd:20:db:07:be:70:49:63: c9:44:6a:bc:f2:ed:06:40:82:45:30:fd:73:c2:bf: 64:0c:4e:a3:88:3e:e2:57:86:81:8d:fd:0d:75:76: 5c:27:e8:88:80:3b:91:77:59:9c:23:d2:09:86:73: 24:ec:45:fb:40:53:44:b2:c7:07:91:41:20:69:62: ff:5c:19:0e:b2:26:2c:f6:80:dc:16:92:52:8c:8e: f8:b7:c6:bd:ec:e0:29:8d:ad:09:ff:cd:25:5b:d2: 80:f1:ce:1f:a8:33:e3:24:45:9a:a4:ec:3e:9f:b8: 59:8f:e1:de:b3:a3:e1:da:54:37:c5:35:19:d9:f3: 40:9d:43:5a:fb:41:43:ce:53:2a:85:56:69:8f:55: 2d:eb:dc:f8:af:e8:17:db:e2:ff:4b:f6:60:2f:84: 6d:e5:4b:66:1f:d2:9f:f6:32:90:fa:ce:a1:b7:61: be:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 60:A0:CD:CF:36:0D:74:4D:6C:2B:03:68:27:7F:5A:02:08:7F:39:95 X509v3 Authority Key Identifier: keyid:89:E4:BF:59:87:7A:3B:2E:F1:4F:5F:12:0A:67:50:DC:14:93:9C:6B X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ieS_WYd6Oy7xT18SCmdQ3BSTnGs.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/075bc1-2b55-40b1-990e-23bb4203eb57/1/YKDNzzYNdE1sKwNoJ39aAgh_OZU.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/075bc1-2b55-40b1-990e-23bb4203eb57/1/ieS_WYd6Oy7xT18SCmdQ3BSTnGs.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:678:b4c::/48 Signature Algorithm: sha256WithRSAEncryption a5:89:14:10:d4:b5:a4:64:97:41:0c:77:07:d3:1c:81:5e:08: 03:5d:f9:93:ee:1e:94:a3:2e:9c:40:73:a3:ed:a9:23:f2:a6: 51:bf:40:1b:13:65:33:14:94:28:78:52:58:59:9c:41:f9:db: 74:71:e1:4e:d5:dd:cd:de:84:93:ec:43:d2:94:7d:69:e0:a6: f7:79:ac:98:1f:2f:c6:53:c6:3a:01:1f:52:72:4f:94:9c:f8: ba:cd:ec:c6:8b:3b:62:13:44:49:36:b0:39:09:ed:5c:9a:7b: 10:c2:e0:6f:50:c1:3d:14:ca:61:e8:4f:eb:28:b1:bc:e1:42: a5:a5:86:c6:15:bc:3b:ad:f9:57:8f:23:84:cc:2f:33:2c:6b: 75:d9:d7:54:70:54:a0:17:88:46:9e:25:0e:1b:8d:ce:54:a2: c0:b3:d7:fc:d6:4d:d9:73:67:b4:71:bb:87:44:af:43:45:9f: 61:21:ac:c7:1a:96:57:93:76:30:c0:4c:0b:a4:e5:6f:4e:51: 40:9d:88:41:75:27:5d:52:86:9c:e8:3a:22:14:bc:b6:d1:ce: fe:ca:e1:d8:39:70:75:40:c6:01:fd:ee:b0:36:6c:1e:62:be: 7c:fa:ea:c8:52:73:31:ee:d8:5e:f5:2b:07:1b:ef:d1:d1:84: d0:e5:a8:16 -----BEGIN CERTIFICATE----- MIIFADCCA+igAwIBAgISAZt+N4IbGKcwd6xc0Gz3RD9sMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDg5ZTRiZjU5ODc3YTNiMmVmMTRmNWYxMjBhNjc1MGRjMTQ5 MzljNmIwHhcNMjYwMTAyMTAxODQ1WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg2MGEwY2RjZjM2MGQ3NDRkNmMyYjAzNjgyNzdmNWEwMjA4N2YzOTk1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1Qgfm74qFAFX77FwA38rB13LXsa0 /T1uQ15XWTDZJBScDViWrcCxAj1QlkdvXufbM6SZv+1hx+ZJsSL6Z4j6ARqiLefP eBMbZ+jx254uIgxk/SDbB75wSWPJRGq88u0GQIJFMP1zwr9kDE6jiD7iV4aBjf0N dXZcJ+iIgDuRd1mcI9IJhnMk7EX7QFNEsscHkUEgaWL/XBkOsiYs9oDcFpJSjI74 t8a97OApja0J/80lW9KA8c4fqDPjJEWapOw+n7hZj+Hes6Ph2lQ3xTUZ2fNAnUNa +0FDzlMqhVZpj1Ut69z4r+gX2+L/S/ZgL4Rt5UtmH9Kf9jKQ+s6ht2G+4wIDAQAB o4ICDDCCAggwHQYDVR0OBBYEFGCgzc82DXRNbCsDaCd/WgIIfzmVMB8GA1UdIwQY MBaAFInkv1mHejsu8U9fEgpnUNwUk5xrMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvaWVTX1dZZDZPeTd4VDE4U0NtZFEzQlNUbkdzLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yZi8wNzViYzEtMmI1NS00MGIxLTk5MGUt MjNiYjQyMDNlYjU3LzEvWUtETnp6WU5kRTFzS3dOb0ozOWFBZ2hfT1pVLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yZi8wNzViYzEtMmI1NS00MGIxLTk5MGUtMjNiYjQyMDNlYjU3 LzEvaWVTX1dZZDZPeTd4VDE4U0NtZFEzQlNUbkdzLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAIAEGeAtM MA0GCSqGSIb3DQEBCwUAA4IBAQCliRQQ1LWkZJdBDHcH0xyBXggDXfmT7h6Uoy6c QHOj7akj8qZRv0AbE2UzFJQoeFJYWZxB+dt0ceFO1d3N3oST7EPSlH1p4Kb3eayY Hy/GU8Y6AR9Sck+UnPi6zezGiztiE0RJNrA5Ce1cmnsQwuBvUME9FMph6E/rKLG8 4UKlpYbGFbw7rflXjyOEzC8zLGt12ddUcFSgF4hGniUOG43OVKLAs9f81k3Zc2e0 cbuHRK9DRZ9hIazHGpZXk3YwwEwLpOVvTlFAnYhBdSddUoac6DoiFLy20c7+yuHY OXB1QMYB/e6wNmweYr58+urIUnMx7the9SsHG+/R0YTQ5agW -----END CERTIFICATE-----Generated at Tue Feb 10 02:58:51 2026 by rpki-client