This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/c2ba72-a892-426d-aec9-a1575f91f83b/1/CSchYm_Yb2tAYnM5byG6HH2lrs0.roa File: CSchYm_Yb2tAYnM5byG6HH2lrs0.roa (raw, json) Hash identifier: QoobycHQMak1ztaLqGk0kAyMV2X2IAYlbkDS/x6XelI= Subject key identifier: 09:27:21:62:6F:D8:6F:6B:40:62:73:39:6F:21:BA:1C:7D:A5:AE:CD Certificate issuer: /CN=b4a3b005366b0e10d502e9414901cd84fae2dc95 Certificate serial: 019B78353D763FAF41857ABC6D1B968FA65D Authority key identifier: B4:A3:B0:05:36:6B:0E:10:D5:02:E9:41:49:01:CD:84:FA:E2:DC:95 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tKOwBTZrDhDVAulBSQHNhPri3JU.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/c2ba72-a892-426d-aec9-a1575f91f83b/1/CSchYm_Yb2tAYnM5byG6HH2lrs0.roa Signing time: Thu 01 Jan 2026 06:18:33 +0000 ROA not before: Thu 01 Jan 2026 06:18:33 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 199631 IP address blocks: 2a13:ab00::/29 maxlen: 64 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/51/c2ba72-a892-426d-aec9-a1575f91f83b/1/tKOwBTZrDhDVAulBSQHNhPri3JU.crl rsync://rpki.ripe.net/repository/DEFAULT/51/c2ba72-a892-426d-aec9-a1575f91f83b/1/tKOwBTZrDhDVAulBSQHNhPri3JU.mft rsync://rpki.ripe.net/repository/DEFAULT/tKOwBTZrDhDVAulBSQHNhPri3JU.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 28 Jan 2026 00:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:78:35:3d:76:3f:af:41:85:7a:bc:6d:1b:96:8f:a6:5d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b4a3b005366b0e10d502e9414901cd84fae2dc95 Validity Not Before: Jan 1 06:18:33 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=092721626fd86f6b406273396f21ba1c7da5aecd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:98:b4:1d:da:fd:3b:e2:34:0e:4c:15:cb:a5:6a: 61:05:c2:5c:cd:79:54:cd:cd:b0:c4:ca:90:80:23: 18:77:c2:90:b0:06:4a:40:ec:d6:31:db:d7:a4:4e: cc:2f:4f:26:85:ef:bf:3d:41:e1:1f:25:24:b6:0d: 20:d8:e8:c6:62:24:d3:23:97:0b:5f:26:6c:63:07: 80:7f:76:dc:7c:16:6e:a5:80:71:3e:76:1f:24:53: a4:03:73:36:f7:f0:0c:f1:0b:52:c9:78:33:d1:fe: 6e:8e:ed:21:d6:6e:be:69:79:84:99:38:13:57:33: ed:60:84:2e:8e:87:d6:11:e9:21:81:73:ea:88:59: 19:fb:f4:be:3f:6b:58:7f:2a:ef:b4:8b:4f:30:77: 9d:06:dc:dc:3a:65:8d:15:5f:99:07:6c:fd:23:55: ef:eb:d0:c5:3d:c2:0b:d0:6b:c0:e2:4d:80:94:b6: b2:4f:fd:af:1e:42:04:da:ea:4c:4a:4e:7b:ae:03: 38:61:df:5b:5e:9c:d1:e8:46:f5:13:af:9b:43:bf: f7:cd:47:07:ea:ec:a8:72:71:4b:7e:c8:15:2d:df: 5d:ab:ba:85:a8:cf:97:4f:a7:c9:8c:21:c9:fc:fd: 3a:6d:95:9f:cc:52:77:8d:2d:62:bb:f9:4f:1c:f7: 0f:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 09:27:21:62:6F:D8:6F:6B:40:62:73:39:6F:21:BA:1C:7D:A5:AE:CD X509v3 Authority Key Identifier: keyid:B4:A3:B0:05:36:6B:0E:10:D5:02:E9:41:49:01:CD:84:FA:E2:DC:95 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tKOwBTZrDhDVAulBSQHNhPri3JU.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/c2ba72-a892-426d-aec9-a1575f91f83b/1/CSchYm_Yb2tAYnM5byG6HH2lrs0.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/51/c2ba72-a892-426d-aec9-a1575f91f83b/1/tKOwBTZrDhDVAulBSQHNhPri3JU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a13:ab00::/29 Signature Algorithm: sha256WithRSAEncryption b5:b3:02:12:33:aa:42:2e:34:85:4a:34:62:ba:5d:5b:8c:0c: 2a:a8:d1:93:de:24:1a:79:8c:6e:f2:bd:e1:de:0b:21:c7:b6: af:8f:b3:80:9e:ef:c5:58:af:bd:6e:8a:25:d0:e3:5c:ed:4e: 5b:b5:20:c6:33:d3:03:d6:59:0c:f4:23:13:b6:d4:55:8b:0a: e4:a4:f0:23:bd:45:36:c3:49:55:e0:73:fe:64:b5:79:9d:50: da:55:f3:a5:48:08:34:96:82:22:f7:33:1b:d8:7a:57:a4:e3: 40:f3:8c:5e:38:2c:e3:c4:0a:3d:0e:40:84:af:a6:ae:14:56: 50:b5:81:82:f8:cf:9d:7f:e2:d5:31:04:1c:59:52:38:24:a8: a0:67:6b:87:70:ed:e0:c7:37:76:ef:25:c5:8f:43:22:0a:32: 76:4e:93:c2:09:92:7c:22:04:b0:50:59:68:1e:da:db:65:36: db:79:2e:c8:04:ac:de:c2:ac:b9:ca:db:f4:16:47:71:ab:8e: 51:26:2c:a6:f1:76:11:5d:2e:5b:4e:af:3b:97:3d:9b:00:15: 05:9c:ae:fc:f9:94:2b:b5:6b:11:29:09:d5:8d:37:a9:45:6e: 9c:96:eb:e9:f1:1f:0d:89:0f:bc:5a:d2:fb:73:b3:25:bd:1a: f5:f6:2d:9e -----BEGIN CERTIFICATE----- MIIE/jCCA+agAwIBAgISAZt4NT12P69BhXq8bRuWj6ZdMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGI0YTNiMDA1MzY2YjBlMTBkNTAyZTk0MTQ5MDFjZDg0ZmFl MmRjOTUwHhcNMjYwMTAxMDYxODMzWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygwOTI3MjE2MjZmZDg2ZjZiNDA2MjczMzk2ZjIxYmExYzdkYTVhZWNkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmLQd2v074jQOTBXLpWphBcJczXlU zc2wxMqQgCMYd8KQsAZKQOzWMdvXpE7ML08mhe+/PUHhHyUktg0g2OjGYiTTI5cL XyZsYweAf3bcfBZupYBxPnYfJFOkA3M29/AM8QtSyXgz0f5uju0h1m6+aXmEmTgT VzPtYIQujofWEekhgXPqiFkZ+/S+P2tYfyrvtItPMHedBtzcOmWNFV+ZB2z9I1Xv 69DFPcIL0GvA4k2AlLayT/2vHkIE2upMSk57rgM4Yd9bXpzR6Eb1E6+bQ7/3zUcH 6uyocnFLfsgVLd9dq7qFqM+XT6fJjCHJ/P06bZWfzFJ3jS1iu/lPHPcPQQIDAQAB o4ICCjCCAgYwHQYDVR0OBBYEFAknIWJv2G9rQGJzOW8huhx9pa7NMB8GA1UdIwQY MBaAFLSjsAU2aw4Q1QLpQUkBzYT64tyVMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvdEtPd0JUWnJEaERWQXVsQlNRSE5oUHJpM0pVLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81MS9jMmJhNzItYTg5Mi00MjZkLWFlYzkt YTE1NzVmOTFmODNiLzEvQ1NjaFltX1liMnRBWW5NNWJ5RzZISDJscnMwLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81MS9jMmJhNzItYTg5Mi00MjZkLWFlYzktYTE1NzVmOTFmODNi LzEvdEtPd0JUWnJEaERWQXVsQlNRSE5oUHJpM0pVLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCAGCCsGAQUFBwEHAQH/BBEwDzANBAIAAjAHAwUDKhOrADAN BgkqhkiG9w0BAQsFAAOCAQEAtbMCEjOqQi40hUo0YrpdW4wMKqjRk94kGnmMbvK9 4d4LIce2r4+zgJ7vxVivvW6KJdDjXO1OW7UgxjPTA9ZZDPQjE7bUVYsK5KTwI71F NsNJVeBz/mS1eZ1Q2lXzpUgINJaCIvczG9h6V6TjQPOMXjgs48QKPQ5AhK+mrhRW ULWBgvjPnX/i1TEEHFlSOCSooGdrh3Dt4Mc3du8lxY9DIgoydk6TwgmSfCIEsFBZ aB7a22U223kuyASs3sKsucrb9BZHcauOUSYspvF2EV0uW06vO5c9mwAVBZyu/PmU K7VrESkJ1Y03qUVunJbr6fEfDYkPvFrS+3OzJb0a9fYtng== -----END CERTIFICATE-----Generated at Tue Jan 27 08:47:05 2026 by rpki-client