This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/81/7c9fcc-8fce-44b7-b6bf-11776031415f/1/YgZJVFX3OkDWFjZdRKjb_NUoz1M.roa File: YgZJVFX3OkDWFjZdRKjb_NUoz1M.roa (raw, json) Hash identifier: NCpt8khkgPpZrPW976z6HD5fVpp76XizDrBM0IJRoeA= Subject key identifier: 62:06:49:54:55:F7:3A:40:D6:16:36:5D:44:A8:DB:FC:D5:28:CF:53 Certificate issuer: /CN=5754d19527fd85d0d444acadd44a01655fdc7400 Certificate serial: 019B7BA52A11575723F630635A911715487C Authority key identifier: 57:54:D1:95:27:FD:85:D0:D4:44:AC:AD:D4:4A:01:65:5F:DC:74:00 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/V1TRlSf9hdDURKyt1EoBZV_cdAA.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/81/7c9fcc-8fce-44b7-b6bf-11776031415f/1/YgZJVFX3OkDWFjZdRKjb_NUoz1M.roa Signing time: Thu 01 Jan 2026 22:19:40 +0000 ROA not before: Thu 01 Jan 2026 22:19:40 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 16509 IP address blocks: 2a00:a640:10a0::/44 maxlen: 48 2a00:a640:20a0::/44 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/81/7c9fcc-8fce-44b7-b6bf-11776031415f/1/V1TRlSf9hdDURKyt1EoBZV_cdAA.crl rsync://rpki.ripe.net/repository/DEFAULT/81/7c9fcc-8fce-44b7-b6bf-11776031415f/1/V1TRlSf9hdDURKyt1EoBZV_cdAA.mft rsync://rpki.ripe.net/repository/DEFAULT/V1TRlSf9hdDURKyt1EoBZV_cdAA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 03 Jan 2026 03:00:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7b:a5:2a:11:57:57:23:f6:30:63:5a:91:17:15:48:7c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5754d19527fd85d0d444acadd44a01655fdc7400 Validity Not Before: Jan 1 22:19:40 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=6206495455f73a40d616365d44a8dbfcd528cf53 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:4d:c4:46:c3:78:53:4a:ea:ad:ec:f6:b1:d0: 74:c5:14:92:f8:f4:d0:23:08:c4:87:9d:17:46:2e: d9:71:c2:01:d7:5f:f4:7c:6e:36:87:de:8d:cb:85: 7d:1c:17:fb:ad:b6:85:34:2d:f1:46:c9:ca:86:c7: 15:50:52:73:fb:f1:69:d7:32:5d:f4:fe:7c:22:5b: 84:f4:61:1c:56:46:21:f8:8d:ae:8a:70:5a:18:45: e1:58:ae:85:e0:af:ed:11:58:7b:c3:c5:d1:c7:ce: a6:ca:99:2d:ff:43:18:50:b7:e7:21:63:ed:75:43: 2c:06:79:52:d5:93:42:92:c5:23:c4:d1:ff:c6:9c: 5e:c0:c5:d2:bf:f1:84:1b:4c:5f:63:93:15:4a:f1: 1f:ef:7d:41:db:2e:1e:09:2b:c4:01:bf:fe:e6:bd: bd:bf:b8:a2:6e:b9:76:a5:b2:4f:78:46:44:a1:8e: f9:e1:06:da:7e:42:90:c4:5b:79:bc:70:33:ca:61: ba:55:fd:02:a6:0f:b5:b5:31:c8:32:ce:dd:e9:64: fc:cc:ff:74:a4:50:c0:b8:72:5e:9c:0d:84:73:5a: 22:d5:e3:df:1d:cd:7a:f3:8b:32:7d:03:81:5f:33: dd:30:44:1d:60:c8:b2:68:ca:de:e9:ed:e4:ef:5c: e0:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 62:06:49:54:55:F7:3A:40:D6:16:36:5D:44:A8:DB:FC:D5:28:CF:53 X509v3 Authority Key Identifier: keyid:57:54:D1:95:27:FD:85:D0:D4:44:AC:AD:D4:4A:01:65:5F:DC:74:00 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/V1TRlSf9hdDURKyt1EoBZV_cdAA.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/81/7c9fcc-8fce-44b7-b6bf-11776031415f/1/YgZJVFX3OkDWFjZdRKjb_NUoz1M.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/81/7c9fcc-8fce-44b7-b6bf-11776031415f/1/V1TRlSf9hdDURKyt1EoBZV_cdAA.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a00:a640:10a0::/44 2a00:a640:20a0::/44 Signature Algorithm: sha256WithRSAEncryption 2a:41:36:a2:2e:8e:4b:a5:7a:2b:83:91:ba:46:64:46:ce:19: 80:47:82:dd:99:32:10:38:b0:25:bb:91:7e:b1:4d:be:b8:a6: 47:ef:62:c9:be:bc:9b:db:e0:25:ee:e7:f4:88:36:c4:2f:40: e5:3e:7e:48:35:1f:b2:a7:83:b5:87:20:28:2d:19:4d:71:32: 29:b5:d0:1e:09:6f:0d:27:f2:ec:3d:1a:26:f4:c9:f2:04:e0: 6b:ce:a7:5c:39:77:0b:87:5d:ad:52:da:2e:fc:4d:8b:3a:b7: 88:e7:3d:6a:0c:81:b7:3a:2a:aa:ac:f9:4e:3e:f5:a6:6f:76: 89:3f:a3:8f:93:c6:20:67:37:a9:b1:25:b3:51:00:53:43:6d: 0e:0d:08:66:e8:c1:2e:9c:c3:fe:65:f8:6d:6e:20:09:52:d9: 90:0b:0e:72:46:46:7c:0b:bf:a4:01:c5:57:3c:f8:b1:07:17: a9:96:78:ee:71:ca:1b:1c:27:10:fe:e1:25:a9:70:25:57:d3: c4:00:7c:e9:34:88:4d:67:66:78:af:35:d4:c0:57:c5:90:5e: 77:15:00:58:6c:ea:cb:8c:9e:52:f7:2d:22:ad:23:ca:c8:2f: f2:32:be:d0:50:47:17:2a:f3:e9:98:18:95:79:f5:10:94:e9: 4f:ce:bd:f8 -----BEGIN CERTIFICATE----- MIIFCTCCA/GgAwIBAgISAZt7pSoRV1cj9jBjWpEXFUh8MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDU3NTRkMTk1MjdmZDg1ZDBkNDQ0YWNhZGQ0NGEwMTY1NWZk Yzc0MDAwHhcNMjYwMTAxMjIxOTQwWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg2MjA2NDk1NDU1ZjczYTQwZDYxNjM2NWQ0NGE4ZGJmY2Q1MjhjZjUzMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAq03ERsN4U0rqrez2sdB0xRSS+PTQ IwjEh50XRi7ZccIB11/0fG42h96Ny4V9HBf7rbaFNC3xRsnKhscVUFJz+/Fp1zJd 9P58IluE9GEcVkYh+I2uinBaGEXhWK6F4K/tEVh7w8XRx86mypkt/0MYULfnIWPt dUMsBnlS1ZNCksUjxNH/xpxewMXSv/GEG0xfY5MVSvEf731B2y4eCSvEAb/+5r29 v7iibrl2pbJPeEZEoY754QbafkKQxFt5vHAzymG6Vf0Cpg+1tTHIMs7d6WT8zP90 pFDAuHJenA2Ec1oi1ePfHc1684syfQOBXzPdMEQdYMiyaMre6e3k71zgBQIDAQAB o4ICFTCCAhEwHQYDVR0OBBYEFGIGSVRV9zpA1hY2XUSo2/zVKM9TMB8GA1UdIwQY MBaAFFdU0ZUn/YXQ1ESsrdRKAWVf3HQAMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvVjFUUmxTZjloZERVUkt5dDFFb0JaVl9jZEFBLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84MS83YzlmY2MtOGZjZS00NGI3LWI2YmYt MTE3NzYwMzE0MTVmLzEvWWdaSlZGWDNPa0RXRmpaZFJLamJfTlVvejFNLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC84MS83YzlmY2MtOGZjZS00NGI3LWI2YmYtMTE3NzYwMzE0MTVm LzEvVjFUUmxTZjloZERVUkt5dDFFb0JaVl9jZEFBLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCsGCCsGAQUFBwEHAQH/BBwwGjAYBAIAAjASAwcEKgCmQBCg AwcEKgCmQCCgMA0GCSqGSIb3DQEBCwUAA4IBAQAqQTaiLo5LpXorg5G6RmRGzhmA R4LdmTIQOLAlu5F+sU2+uKZH72LJvryb2+Al7uf0iDbEL0DlPn5INR+yp4O1hyAo LRlNcTIptdAeCW8NJ/LsPRom9MnyBOBrzqdcOXcLh12tUtou/E2LOreI5z1qDIG3 OiqqrPlOPvWmb3aJP6OPk8YgZzepsSWzUQBTQ20ODQhm6MEunMP+ZfhtbiAJUtmQ Cw5yRkZ8C7+kAcVXPPixBxeplnjuccobHCcQ/uElqXAlV9PEAHzpNIhNZ2Z4rzXU wFfFkF53FQBYbOrLjJ5S9y0irSPKyC/yMr7QUEcXKvPpmBiVefUQlOlPzr34 -----END CERTIFICATE-----Generated at Fri Jan 2 11:03:56 2026 by rpki-client