This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/65/321cdc-2143-4b5c-9733-16699c96dd5e/1/YYX8sDy67FAIQkG8wm-Kgzaaa0I.roa File: YYX8sDy67FAIQkG8wm-Kgzaaa0I.roa (raw, json) Hash identifier: tQXNVmDiRZonlAGFT1cxpz8pWdjvhKJEn+Ap6+tGqLk= Subject key identifier: 61:85:FC:B0:3C:BA:EC:50:08:42:41:BC:C2:6F:8A:83:36:9A:6B:42 Certificate issuer: /CN=885b857706dac54e20ca0d11bd6416cb634203b4 Certificate serial: 019B77C69ECB9497B8C8DA1EA98C62CFD77A Authority key identifier: 88:5B:85:77:06:DA:C5:4E:20:CA:0D:11:BD:64:16:CB:63:42:03:B4 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iFuFdwbaxU4gyg0RvWQWy2NCA7Q.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/65/321cdc-2143-4b5c-9733-16699c96dd5e/1/YYX8sDy67FAIQkG8wm-Kgzaaa0I.roa Signing time: Thu 01 Jan 2026 04:17:44 +0000 ROA not before: Thu 01 Jan 2026 04:17:44 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 51032 IP address blocks: 2001:146a::/32 maxlen: 36 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/65/321cdc-2143-4b5c-9733-16699c96dd5e/1/iFuFdwbaxU4gyg0RvWQWy2NCA7Q.crl rsync://rpki.ripe.net/repository/DEFAULT/65/321cdc-2143-4b5c-9733-16699c96dd5e/1/iFuFdwbaxU4gyg0RvWQWy2NCA7Q.mft rsync://rpki.ripe.net/repository/DEFAULT/iFuFdwbaxU4gyg0RvWQWy2NCA7Q.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 13:21:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:77:c6:9e:cb:94:97:b8:c8:da:1e:a9:8c:62:cf:d7:7a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=885b857706dac54e20ca0d11bd6416cb634203b4 Validity Not Before: Jan 1 04:17:44 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=6185fcb03cbaec50084241bcc26f8a83369a6b42 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:93:ea:48:83:58:ea:a6:cf:87:22:05:0c:3f: 57:e8:47:b6:79:37:01:9b:2a:94:05:34:6a:55:1e: c3:8d:e7:c3:2a:16:7f:12:d6:5f:d6:88:28:d2:30: 26:c9:f4:c3:66:fc:81:d5:f5:7a:ce:86:30:93:21: eb:eb:a5:bd:53:5f:c9:78:a6:13:a3:f3:f9:0c:fc: c0:a0:56:bb:8e:40:ce:d2:e0:c3:2f:30:1c:24:54: f9:dd:6f:6b:8f:36:08:1f:e6:4c:b9:d1:06:37:19: 92:71:f6:0a:82:c2:c8:4b:6e:4d:bf:b4:7a:fa:3f: b5:ab:6b:38:15:fe:41:1d:4d:bd:33:35:83:93:2f: 57:eb:d4:a6:39:22:90:ff:2e:4a:45:c1:11:e6:fc: ee:ef:69:8e:7e:66:dd:18:72:6d:08:a7:8e:e3:bb: ed:e3:91:5a:ce:58:0f:a4:50:4a:07:1b:2a:b0:f1: 5d:91:8b:a2:cc:a7:10:39:00:44:14:f0:4f:a5:56: 95:f8:04:00:a3:30:cd:47:c3:3e:e2:b6:58:5f:5a: c0:31:7c:ba:e4:22:ab:6c:f4:d4:d2:0c:22:74:92: c1:fd:d5:d4:18:0e:4d:e1:e7:89:ae:27:85:e5:c1: b1:30:1b:65:b3:a9:83:75:c3:e7:34:65:f8:ed:b1: a8:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 61:85:FC:B0:3C:BA:EC:50:08:42:41:BC:C2:6F:8A:83:36:9A:6B:42 X509v3 Authority Key Identifier: keyid:88:5B:85:77:06:DA:C5:4E:20:CA:0D:11:BD:64:16:CB:63:42:03:B4 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iFuFdwbaxU4gyg0RvWQWy2NCA7Q.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/65/321cdc-2143-4b5c-9733-16699c96dd5e/1/YYX8sDy67FAIQkG8wm-Kgzaaa0I.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/65/321cdc-2143-4b5c-9733-16699c96dd5e/1/iFuFdwbaxU4gyg0RvWQWy2NCA7Q.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:146a::/32 Signature Algorithm: sha256WithRSAEncryption 75:cc:a2:ec:6d:0e:07:67:af:30:8e:ef:26:8d:6f:8a:a8:29: 9a:b3:2a:c4:57:2a:de:5d:82:3d:54:7b:57:41:7c:53:ca:b9: 9d:21:a0:96:9c:66:26:7e:9d:a6:97:b2:86:d9:fc:b8:66:a8: 5e:be:cc:2c:b2:04:cb:8f:00:3d:9c:aa:c6:f0:8e:ca:fe:62: 47:4c:b4:1f:93:be:e1:c8:99:49:d6:d0:ba:67:35:f9:16:c0: 64:3f:01:00:d3:72:b4:2b:08:e7:13:08:ea:ca:98:f9:25:82: ac:05:da:ad:ea:71:bb:e4:60:49:d5:03:60:82:49:8b:d8:39: 08:41:6d:b3:09:77:56:d0:78:82:ee:e7:ba:0c:c4:a8:93:21: fc:f8:61:f6:48:71:d4:bf:1c:63:26:ad:31:95:bc:0f:9b:d3: 3f:27:37:27:17:e7:c9:89:07:16:b3:21:48:9c:1e:98:d7:ce: 2c:d5:bd:85:62:37:87:d9:da:41:44:ed:45:d4:b1:ba:db:c6: 78:91:7c:32:f5:62:90:3d:19:4a:6a:43:37:16:4e:fb:3d:74: 97:23:84:2b:05:c1:dd:09:56:22:c4:1f:dc:59:d9:2c:07:92: 0f:fd:e8:80:17:2b:d0:0a:63:81:b5:b2:71:b3:6f:ba:a3:2c: 4c:7a:5d:d1 -----BEGIN CERTIFICATE----- MIIE/jCCA+agAwIBAgISAZt3xp7LlJe4yNoeqYxiz9d6MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDg4NWI4NTc3MDZkYWM1NGUyMGNhMGQxMWJkNjQxNmNiNjM0 MjAzYjQwHhcNMjYwMTAxMDQxNzQ0WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg2MTg1ZmNiMDNjYmFlYzUwMDg0MjQxYmNjMjZmOGE4MzM2OWE2YjQyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqpPqSINY6qbPhyIFDD9X6Ee2eTcB myqUBTRqVR7DjefDKhZ/EtZf1ogo0jAmyfTDZvyB1fV6zoYwkyHr66W9U1/JeKYT o/P5DPzAoFa7jkDO0uDDLzAcJFT53W9rjzYIH+ZMudEGNxmScfYKgsLIS25Nv7R6 +j+1q2s4Ff5BHU29MzWDky9X69SmOSKQ/y5KRcER5vzu72mOfmbdGHJtCKeO47vt 45FazlgPpFBKBxsqsPFdkYuizKcQOQBEFPBPpVaV+AQAozDNR8M+4rZYX1rAMXy6 5CKrbPTU0gwidJLB/dXUGA5N4eeJrieF5cGxMBtls6mDdcPnNGX47bGocQIDAQAB o4ICCjCCAgYwHQYDVR0OBBYEFGGF/LA8uuxQCEJBvMJvioM2mmtCMB8GA1UdIwQY MBaAFIhbhXcG2sVOIMoNEb1kFstjQgO0MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvaUZ1RmR3YmF4VTRneWcwUnZXUVd5Mk5DQTdRLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82NS8zMjFjZGMtMjE0My00YjVjLTk3MzMt MTY2OTljOTZkZDVlLzEvWVlYOHNEeTY3RkFJUWtHOHdtLUtnemFhYTBJLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC82NS8zMjFjZGMtMjE0My00YjVjLTk3MzMtMTY2OTljOTZkZDVl LzEvaUZ1RmR3YmF4VTRneWcwUnZXUVd5Mk5DQTdRLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCAGCCsGAQUFBwEHAQH/BBEwDzANBAIAAjAHAwUAIAEUajAN BgkqhkiG9w0BAQsFAAOCAQEAdcyi7G0OB2evMI7vJo1viqgpmrMqxFcq3l2CPVR7 V0F8U8q5nSGglpxmJn6dppeyhtn8uGaoXr7MLLIEy48APZyqxvCOyv5iR0y0H5O+ 4ciZSdbQumc1+RbAZD8BANNytCsI5xMI6sqY+SWCrAXarepxu+RgSdUDYIJJi9g5 CEFtswl3VtB4gu7nugzEqJMh/Phh9khx1L8cYyatMZW8D5vTPyc3JxfnyYkHFrMh SJwemNfOLNW9hWI3h9naQUTtRdSxutvGeJF8MvVikD0ZSmpDNxZO+z10lyOEKwXB 3QlWIsQf3FnZLAeSD/3ogBcr0ApjgbWycbNvuqMsTHpd0Q== -----END CERTIFICATE-----Generated at Sun Jan 25 22:41:41 2026 by rpki-client