This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/52/40862c-93af-4b26-825e-656c162fb24e/1/YJV-_TIAYd0ZugaqrTxVpXEnAb8.roa File: YJV-_TIAYd0ZugaqrTxVpXEnAb8.roa (raw, json) Hash identifier: Ks1+ulQdNCCzX5S/H1ruBgBYNEZ6/xlaYJ29EC/7ons= Subject key identifier: 60:95:7E:FD:32:00:61:DD:19:BA:06:AA:AD:3C:55:A5:71:27:01:BF Certificate issuer: /CN=459602d7af7c348c95ab11edd6132056753eabb9 Certificate serial: 019AFFBCB9DFE846DFCFFECDB895A0595A4C Authority key identifier: 45:96:02:D7:AF:7C:34:8C:95:AB:11:ED:D6:13:20:56:75:3E:AB:B9 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/RZYC1698NIyVqxHt1hMgVnU-q7k.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/52/40862c-93af-4b26-825e-656c162fb24e/1/YJV-_TIAYd0ZugaqrTxVpXEnAb8.roa Signing time: Mon 08 Dec 2025 20:52:29 +0000 ROA not before: Mon 08 Dec 2025 20:52:29 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 215724 IP address blocks: 2a14:7f00::/29 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/52/40862c-93af-4b26-825e-656c162fb24e/1/RZYC1698NIyVqxHt1hMgVnU-q7k.crl rsync://rpki.ripe.net/repository/DEFAULT/52/40862c-93af-4b26-825e-656c162fb24e/1/RZYC1698NIyVqxHt1hMgVnU-q7k.mft rsync://rpki.ripe.net/repository/DEFAULT/RZYC1698NIyVqxHt1hMgVnU-q7k.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 18 Dec 2025 19:00:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:ff:bc:b9:df:e8:46:df:cf:fe:cd:b8:95:a0:59:5a:4c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=459602d7af7c348c95ab11edd6132056753eabb9 Validity Not Before: Dec 8 20:52:29 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=60957efd320061dd19ba06aaad3c55a5712701bf Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:34:f3:79:9e:e5:cb:9b:2e:1d:c8:6c:69:14: 05:c8:eb:ce:40:f3:5b:1b:b4:2c:00:fc:6c:17:5b: 27:ed:4c:7d:4b:ee:e8:e8:20:e1:2b:c6:4b:5b:8d: 1e:e9:fd:c2:3a:ab:33:8c:da:82:4f:d4:4a:b9:57: 7a:07:53:76:bb:2f:03:f8:fc:00:e2:ee:27:58:95: 1c:fb:f7:7f:8b:21:ee:71:f9:28:f5:ab:db:ac:a9: 8e:c1:87:26:87:67:54:ed:01:9f:3a:02:5d:54:90: 7c:4d:b6:89:58:6e:26:77:df:cd:3a:d1:c8:71:10: f0:b1:78:d5:88:78:2e:17:e1:de:66:4d:c4:8a:d6: bb:c8:71:69:ca:70:bf:a7:6b:74:99:68:ec:b3:31: 55:db:d0:55:b8:bd:c6:f8:cc:66:e6:56:74:15:d6: 15:2e:ab:b0:2b:e8:a7:c7:20:b2:54:cc:a4:30:a5: 8c:91:18:79:8a:8d:2f:ef:18:ad:e1:d3:bb:54:2d: 42:c8:47:9d:e8:51:89:fd:de:74:70:96:51:79:17: 67:dc:24:90:69:09:66:9c:32:3f:ed:bc:84:57:a8: c3:c3:39:69:34:c4:17:61:14:43:3c:00:16:f8:59: bd:97:54:66:9b:4d:6f:62:e6:19:c2:bb:c6:a0:e7: fb:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 60:95:7E:FD:32:00:61:DD:19:BA:06:AA:AD:3C:55:A5:71:27:01:BF X509v3 Authority Key Identifier: keyid:45:96:02:D7:AF:7C:34:8C:95:AB:11:ED:D6:13:20:56:75:3E:AB:B9 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/RZYC1698NIyVqxHt1hMgVnU-q7k.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/52/40862c-93af-4b26-825e-656c162fb24e/1/YJV-_TIAYd0ZugaqrTxVpXEnAb8.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/52/40862c-93af-4b26-825e-656c162fb24e/1/RZYC1698NIyVqxHt1hMgVnU-q7k.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a14:7f00::/29 Signature Algorithm: sha256WithRSAEncryption a2:d4:75:a3:09:f4:fb:0e:c6:b5:76:a5:38:e1:e4:82:65:3a: bf:ed:5d:70:77:75:5f:26:3d:5c:fd:36:d2:ec:18:4c:7b:ee: 24:96:7d:68:e3:15:01:ad:69:ef:7a:84:8c:83:59:7e:ad:ec: 1d:14:d9:ee:56:09:fb:b8:2d:f5:4b:1f:e7:b9:8a:e7:cb:c0: 34:35:b5:82:9a:94:16:11:bb:70:3f:47:3b:44:ba:4a:5a:16: d5:d2:fa:5b:a2:7b:10:99:84:d6:8f:e5:a3:29:44:9a:05:ac: 7f:b0:a1:cd:6b:58:2f:68:15:61:c9:29:a0:fa:da:0e:f3:43: 86:c3:b6:0d:bf:ed:d3:b0:ca:90:96:75:88:d6:65:6b:c9:f3: d4:25:c0:14:04:bf:0a:02:c3:44:6e:6c:7e:64:d7:50:89:ff: df:c9:d8:2c:b5:a5:f9:12:0d:a1:b4:d4:8a:9b:aa:21:4f:02: dc:12:2f:ab:51:34:fc:06:77:28:94:5f:8a:95:48:01:e6:77: 33:be:d3:6c:e9:92:36:61:c9:a7:6d:77:89:bb:01:cf:90:c6: b0:d3:b5:bb:87:17:36:3e:09:a7:4f:e4:6c:ad:70:0b:e6:3d: 11:50:99:6f:20:b9:41:58:a3:6b:ce:e1:c3:f2:0e:6c:5a:da: f1:87:c3:1d -----BEGIN CERTIFICATE----- MIIE/jCCA+agAwIBAgISAZr/vLnf6Ebfz/7NuJWgWVpMMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDQ1OTYwMmQ3YWY3YzM0OGM5NWFiMTFlZGQ2MTMyMDU2NzUz ZWFiYjkwHhcNMjUxMjA4MjA1MjI5WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg2MDk1N2VmZDMyMDA2MWRkMTliYTA2YWFhZDNjNTVhNTcxMjcwMWJmMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtDTzeZ7ly5suHchsaRQFyOvOQPNb G7QsAPxsF1sn7Ux9S+7o6CDhK8ZLW40e6f3COqszjNqCT9RKuVd6B1N2uy8D+PwA 4u4nWJUc+/d/iyHucfko9avbrKmOwYcmh2dU7QGfOgJdVJB8TbaJWG4md9/NOtHI cRDwsXjViHguF+HeZk3Eita7yHFpynC/p2t0mWjsszFV29BVuL3G+Mxm5lZ0FdYV LquwK+inxyCyVMykMKWMkRh5io0v7xit4dO7VC1CyEed6FGJ/d50cJZReRdn3CSQ aQlmnDI/7byEV6jDwzlpNMQXYRRDPAAW+Fm9l1Rmm01vYuYZwrvGoOf7mwIDAQAB o4ICCjCCAgYwHQYDVR0OBBYEFGCVfv0yAGHdGboGqq08VaVxJwG/MB8GA1UdIwQY MBaAFEWWAtevfDSMlasR7dYTIFZ1Pqu5MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvUlpZQzE2OThOSXlWcXhIdDFoTWdWblUtcTdrLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81Mi80MDg2MmMtOTNhZi00YjI2LTgyNWUt NjU2YzE2MmZiMjRlLzEvWUpWLV9USUFZZDBadWdhcXJUeFZwWEVuQWI4LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81Mi80MDg2MmMtOTNhZi00YjI2LTgyNWUtNjU2YzE2MmZiMjRl LzEvUlpZQzE2OThOSXlWcXhIdDFoTWdWblUtcTdrLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCAGCCsGAQUFBwEHAQH/BBEwDzANBAIAAjAHAwUDKhR/ADAN BgkqhkiG9w0BAQsFAAOCAQEAotR1own0+w7GtXalOOHkgmU6v+1dcHd1XyY9XP02 0uwYTHvuJJZ9aOMVAa1p73qEjINZfq3sHRTZ7lYJ+7gt9Usf57mK58vANDW1gpqU FhG7cD9HO0S6SloW1dL6W6J7EJmE1o/loylEmgWsf7ChzWtYL2gVYckpoPraDvND hsO2Db/t07DKkJZ1iNZla8nz1CXAFAS/CgLDRG5sfmTXUIn/38nYLLWl+RINobTU ipuqIU8C3BIvq1E0/AZ3KJRfipVIAeZ3M77TbOmSNmHJp213ibsBz5DGsNO1u4cX Nj4Jp0/kbK1wC+Y9EVCZbyC5QVija87hw/IObFra8YfDHQ== -----END CERTIFICATE-----Generated at Thu Dec 18 00:36:42 2025 by rpki-client