This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/56/8c51cb-a3bd-476d-880f-a96c6266abdb/1/yTlDO6dWszXiBm3hduGVp38lBa4.roa File: yTlDO6dWszXiBm3hduGVp38lBa4.roa (raw, json) Hash identifier: SegOwCCa/6cPlpQ15U35o2VjRPgrt2I4STP15j5SvSE= Subject key identifier: C9:39:43:3B:A7:56:B3:35:E2:06:6D:E1:76:E1:95:A7:7F:25:05:AE Certificate issuer: /CN=57182aab5ad9efa380a6c6f06c016e158be977bc Certificate serial: 019B7FF260016EC526CA50332279B77241AB Authority key identifier: 57:18:2A:AB:5A:D9:EF:A3:80:A6:C6:F0:6C:01:6E:15:8B:E9:77:BC Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Vxgqq1rZ76OApsbwbAFuFYvpd7w.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/56/8c51cb-a3bd-476d-880f-a96c6266abdb/1/yTlDO6dWszXiBm3hduGVp38lBa4.roa Signing time: Fri 02 Jan 2026 18:22:29 +0000 ROA not before: Fri 02 Jan 2026 18:22:29 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 61352 IP address blocks: 31.12.56.0/21 maxlen: 21 2a02:101c::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/56/8c51cb-a3bd-476d-880f-a96c6266abdb/1/Vxgqq1rZ76OApsbwbAFuFYvpd7w.crl rsync://rpki.ripe.net/repository/DEFAULT/56/8c51cb-a3bd-476d-880f-a96c6266abdb/1/Vxgqq1rZ76OApsbwbAFuFYvpd7w.mft rsync://rpki.ripe.net/repository/DEFAULT/Vxgqq1rZ76OApsbwbAFuFYvpd7w.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 22 Jan 2026 09:00:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7f:f2:60:01:6e:c5:26:ca:50:33:22:79:b7:72:41:ab Signature Algorithm: sha256WithRSAEncryption Issuer: CN=57182aab5ad9efa380a6c6f06c016e158be977bc Validity Not Before: Jan 2 18:22:29 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=c939433ba756b335e2066de176e195a77f2505ae Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:6e:79:65:c4:bd:18:cb:58:48:ac:ba:29:c8: d4:01:45:c3:c5:dc:8f:41:96:4b:0a:0f:50:40:61: 2e:a0:d6:e5:17:0f:80:29:36:3c:be:4b:d5:96:df: 77:bf:29:97:31:aa:00:75:4b:3d:aa:d4:3c:21:00: c0:e5:58:82:9a:47:3d:01:fa:99:1e:12:83:0f:83: f9:7a:a0:60:62:ef:5a:44:35:5e:32:7b:01:11:72: 66:2d:11:0c:bc:24:2c:9d:24:75:21:16:0b:51:57: 72:0f:19:f0:2c:5a:a0:83:ea:9d:c5:44:a8:d7:bc: 37:d4:2d:0e:dc:da:9d:82:97:be:3e:ce:f6:a1:b4: 9b:c2:60:ea:4d:55:4b:b3:bd:32:34:3d:b1:ca:9d: d0:f0:7d:6f:95:57:ed:61:35:14:3c:c8:e2:3e:be: 61:eb:8d:3e:a2:d1:df:b0:c5:39:4f:33:73:05:a4: 63:15:86:2f:0e:f0:11:2d:23:a7:20:9c:8c:e8:0f: 48:9f:cc:cf:4b:17:96:3e:28:d0:d1:79:f4:d0:de: b5:73:f6:5a:03:aa:c5:87:79:3a:93:c3:b5:23:1f: 26:bb:a9:04:b4:23:2f:31:2f:53:bc:4d:15:fd:a4: eb:f2:db:c4:7e:3b:fe:ed:41:4b:e1:5a:8c:1d:f2: ba:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C9:39:43:3B:A7:56:B3:35:E2:06:6D:E1:76:E1:95:A7:7F:25:05:AE X509v3 Authority Key Identifier: keyid:57:18:2A:AB:5A:D9:EF:A3:80:A6:C6:F0:6C:01:6E:15:8B:E9:77:BC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Vxgqq1rZ76OApsbwbAFuFYvpd7w.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/56/8c51cb-a3bd-476d-880f-a96c6266abdb/1/yTlDO6dWszXiBm3hduGVp38lBa4.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/56/8c51cb-a3bd-476d-880f-a96c6266abdb/1/Vxgqq1rZ76OApsbwbAFuFYvpd7w.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 31.12.56.0/21 IPv6: 2a02:101c::/32 Signature Algorithm: sha256WithRSAEncryption 5e:40:a4:05:cf:09:93:d9:06:cd:11:c0:ea:a3:be:02:17:b7: 79:f4:f7:f9:d6:e8:64:ca:0f:34:dc:77:40:bd:1a:2c:f8:35: 8a:b2:62:19:f2:70:43:14:58:18:83:0c:85:08:09:f6:21:03: 3d:b8:9b:c5:6c:77:f6:ab:5e:e3:ec:d6:b7:01:a3:23:c2:96: e1:e0:5a:05:8f:11:18:28:73:e3:c5:4b:00:9d:7b:b9:b5:03: 09:6a:ed:90:b5:1b:cf:cc:23:39:89:27:3e:22:e6:84:1a:6b: d7:46:45:75:c2:6d:9b:2d:c7:ee:0a:77:af:dd:5a:e9:be:f3: 42:09:8c:f0:9f:83:35:3f:71:cc:c9:f5:a7:60:8a:51:a4:48: 0d:ad:d0:cb:a4:68:05:34:87:9f:45:55:3f:72:6c:eb:39:0d: 1b:9a:3f:7b:bd:92:6d:65:d4:8b:f5:ac:12:e3:ce:78:05:ce: 82:ef:fc:29:b6:58:98:ee:8a:d0:90:89:96:cf:06:d3:af:40: 7a:cb:cc:a4:13:f4:3d:31:18:e8:9e:a6:af:87:2e:dd:50:71: 0f:c3:fd:ed:36:4b:35:99:56:f7:ea:b5:5a:53:b4:69:db:67: 0c:28:ec:e5:48:69:62:7e:74:ff:31:26:64:bc:fa:67:49:ee: 33:b8:11:ec -----BEGIN CERTIFICATE----- MIIFDDCCA/SgAwIBAgISAZt/8mABbsUmylAzInm3ckGrMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDU3MTgyYWFiNWFkOWVmYTM4MGE2YzZmMDZjMDE2ZTE1OGJl OTc3YmMwHhcNMjYwMTAyMTgyMjI5WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhjOTM5NDMzYmE3NTZiMzM1ZTIwNjZkZTE3NmUxOTVhNzdmMjUwNWFlMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1G55ZcS9GMtYSKy6KcjUAUXDxdyP QZZLCg9QQGEuoNblFw+AKTY8vkvVlt93vymXMaoAdUs9qtQ8IQDA5ViCmkc9AfqZ HhKDD4P5eqBgYu9aRDVeMnsBEXJmLREMvCQsnSR1IRYLUVdyDxnwLFqgg+qdxUSo 17w31C0O3Nqdgpe+Ps72obSbwmDqTVVLs70yND2xyp3Q8H1vlVftYTUUPMjiPr5h 640+otHfsMU5TzNzBaRjFYYvDvARLSOnIJyM6A9In8zPSxeWPijQ0Xn00N61c/Za A6rFh3k6k8O1Ix8mu6kEtCMvMS9TvE0V/aTr8tvEfjv+7UFL4VqMHfK6DwIDAQAB o4ICGDCCAhQwHQYDVR0OBBYEFMk5QzunVrM14gZt4Xbhlad/JQWuMB8GA1UdIwQY MBaAFFcYKqta2e+jgKbG8GwBbhWL6Xe8MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvVnhncXExclo3Nk9BcHNid2JBRnVGWXZwZDd3LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81Ni84YzUxY2ItYTNiZC00NzZkLTg4MGYt YTk2YzYyNjZhYmRiLzEveVRsRE82ZFdzelhpQm0zaGR1R1ZwMzhsQmE0LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81Ni84YzUxY2ItYTNiZC00NzZkLTg4MGYtYTk2YzYyNjZhYmRi LzEvVnhncXExclo3Nk9BcHNid2JBRnVGWXZwZDd3LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMC4GCCsGAQUFBwEHAQH/BB8wHTAMBAIAATAGAwQDHww4MA0E AgACMAcDBQAqAhAcMA0GCSqGSIb3DQEBCwUAA4IBAQBeQKQFzwmT2QbNEcDqo74C F7d59Pf51uhkyg803HdAvRos+DWKsmIZ8nBDFFgYgwyFCAn2IQM9uJvFbHf2q17j 7Na3AaMjwpbh4FoFjxEYKHPjxUsAnXu5tQMJau2QtRvPzCM5iSc+IuaEGmvXRkV1 wm2bLcfuCnev3VrpvvNCCYzwn4M1P3HMyfWnYIpRpEgNrdDLpGgFNIefRVU/cmzr OQ0bmj97vZJtZdSL9awS4854Bc6C7/wptliY7orQkImWzwbTr0B6y8ykE/Q9MRjo nqavhy7dUHEPw/3tNks1mVb36rVaU7Rp22cMKOzlSGlifnT/MSZkvPpnSe4zuBHs -----END CERTIFICATE-----Generated at Wed Jan 21 15:05:53 2026 by rpki-client