This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/yToyd-dhQWHpDPNwQtkbBGxESds.roa File: yToyd-dhQWHpDPNwQtkbBGxESds.roa (raw, json) Hash identifier: yK9DUCz4Vlm5EjX/7G7J6sBUuD13Y8qyFt9DlfW3oxY= Subject key identifier: C9:3A:32:77:E7:61:41:61:E9:0C:F3:70:42:D9:1B:04:6C:44:49:DB Certificate issuer: /CN=b155009c3de421cc4e67b9a9ae423bb35de0b926 Certificate serial: 019B7BA54E8A313E3F07E8D1D0E13546552B Authority key identifier: B1:55:00:9C:3D:E4:21:CC:4E:67:B9:A9:AE:42:3B:B3:5D:E0:B9:26 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sVUAnD3kIcxOZ7mprkI7s13guSY.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/yToyd-dhQWHpDPNwQtkbBGxESds.roa Signing time: Thu 01 Jan 2026 22:19:49 +0000 ROA not before: Thu 01 Jan 2026 22:19:49 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 45671 IP address blocks: 2a0f:11c0::/29 maxlen: 29 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/sVUAnD3kIcxOZ7mprkI7s13guSY.crl rsync://rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/sVUAnD3kIcxOZ7mprkI7s13guSY.mft rsync://rpki.ripe.net/repository/DEFAULT/sVUAnD3kIcxOZ7mprkI7s13guSY.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 20 Jan 2026 13:02:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7b:a5:4e:8a:31:3e:3f:07:e8:d1:d0:e1:35:46:55:2b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b155009c3de421cc4e67b9a9ae423bb35de0b926 Validity Not Before: Jan 1 22:19:49 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=c93a3277e7614161e90cf37042d91b046c4449db Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:d7:fc:99:11:03:96:07:5b:97:86:85:21:67: 0b:46:c0:74:7b:43:c7:96:54:9f:f9:94:8b:c4:3d: 72:e8:ca:85:4c:68:81:bb:9b:27:28:fd:de:6a:4c: 36:cf:30:99:ad:c2:c9:53:2a:a5:9f:1d:3c:8e:fa: 19:ae:ee:59:2c:5b:97:2f:8c:48:cc:6a:5a:2e:da: 4c:46:61:2c:be:22:2c:81:1a:59:f7:5b:21:ce:4f: 0f:dd:96:be:0d:9b:b7:49:4c:c8:14:47:be:d2:41: 1b:7c:ea:05:8b:f6:d4:f1:d4:86:f4:21:b2:8b:9d: 74:69:d8:58:d2:0e:3b:78:b9:af:0b:eb:88:8a:15: 6e:44:3e:21:f6:7f:24:83:af:7a:4d:b7:10:c6:b1: f7:87:cc:0a:17:e4:c5:54:8c:ce:b4:4c:4c:6a:c9: 2b:63:da:12:4d:8a:62:3b:09:a4:fc:f5:11:8b:f2: 36:a5:89:a6:3a:30:5b:5b:98:9f:f5:88:83:5d:47: 03:b7:c8:2b:f0:57:77:ce:a6:2c:c1:b1:81:99:2b: b0:75:64:ee:e5:7e:47:cc:8f:e5:26:fa:2a:9f:81: 6c:bb:af:ad:af:2b:1e:3f:d1:ce:03:3d:2f:01:52: 51:fc:bb:49:c3:54:21:3f:b7:52:4e:6e:13:e9:44: d0:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C9:3A:32:77:E7:61:41:61:E9:0C:F3:70:42:D9:1B:04:6C:44:49:DB X509v3 Authority Key Identifier: keyid:B1:55:00:9C:3D:E4:21:CC:4E:67:B9:A9:AE:42:3B:B3:5D:E0:B9:26 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sVUAnD3kIcxOZ7mprkI7s13guSY.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/yToyd-dhQWHpDPNwQtkbBGxESds.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/sVUAnD3kIcxOZ7mprkI7s13guSY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0f:11c0::/29 Signature Algorithm: sha256WithRSAEncryption b4:c2:03:ce:49:00:8b:18:5b:0c:00:ed:b4:b3:f9:c6:b1:52: 76:2f:16:79:2c:56:1d:7a:b8:23:37:24:ef:44:d6:18:90:99: 87:14:a5:ae:b5:41:79:42:38:0f:61:22:e4:f6:c7:db:96:32: b0:f2:cb:8a:35:e3:39:0c:48:9c:21:f0:a1:4e:cd:2d:cb:02: e0:a1:de:e0:0f:9c:ab:d0:ca:3b:47:e5:43:26:06:96:15:8b: 0e:b2:b4:fd:94:8a:03:44:38:c8:1a:e0:ef:14:88:41:0f:4a: 95:c0:6e:eb:9c:58:85:a2:bb:0b:c5:67:0d:e0:d2:e9:63:f6: 3f:63:d7:4a:d3:66:45:00:63:27:1e:81:9e:dc:92:2a:4c:11: d6:63:e1:b9:88:8a:eb:27:08:ae:3e:47:05:8d:b9:11:54:f9: e2:a3:ad:ee:11:61:32:7e:1d:77:52:ea:b1:d9:65:8a:4c:d5: cf:0d:b3:95:49:b0:8f:8a:a3:6b:1a:d7:c6:70:0b:71:9a:1d: ea:0c:cd:9f:90:47:90:83:78:9b:2b:b6:27:97:12:1a:75:e8: 8e:42:50:11:9c:6d:44:02:e3:d9:08:9a:5d:98:2c:a5:e1:a9: 02:62:de:eb:65:ff:bd:87:a8:aa:a8:2d:e4:fe:4e:01:a0:2d: ea:c4:8c:20 -----BEGIN CERTIFICATE----- MIIE/jCCA+agAwIBAgISAZt7pU6KMT4/B+jR0OE1RlUrMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGIxNTUwMDljM2RlNDIxY2M0ZTY3YjlhOWFlNDIzYmIzNWRl MGI5MjYwHhcNMjYwMTAxMjIxOTQ5WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhjOTNhMzI3N2U3NjE0MTYxZTkwY2YzNzA0MmQ5MWIwNDZjNDQ0OWRiMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAytf8mREDlgdbl4aFIWcLRsB0e0PH llSf+ZSLxD1y6MqFTGiBu5snKP3eakw2zzCZrcLJUyqlnx08jvoZru5ZLFuXL4xI zGpaLtpMRmEsviIsgRpZ91shzk8P3Za+DZu3SUzIFEe+0kEbfOoFi/bU8dSG9CGy i510adhY0g47eLmvC+uIihVuRD4h9n8kg696TbcQxrH3h8wKF+TFVIzOtExMaskr Y9oSTYpiOwmk/PURi/I2pYmmOjBbW5if9YiDXUcDt8gr8Fd3zqYswbGBmSuwdWTu 5X5HzI/lJvoqn4Fsu6+tryseP9HOAz0vAVJR/LtJw1QhP7dSTm4T6UTQewIDAQAB o4ICCjCCAgYwHQYDVR0OBBYEFMk6MnfnYUFh6QzzcELZGwRsREnbMB8GA1UdIwQY MBaAFLFVAJw95CHMTme5qa5CO7Nd4LkmMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvc1ZVQW5EM2tJY3hPWjdtcHJrSTdzMTNndVNZLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hMC9kZTkwMmMtM2QxMy00N2QxLWE1ZTYt NzM4NTZhZjQ5ZjNlLzEveVRveWQtZGhRV0hwRFBOd1F0a2JCR3hFU2RzLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9hMC9kZTkwMmMtM2QxMy00N2QxLWE1ZTYtNzM4NTZhZjQ5ZjNl LzEvc1ZVQW5EM2tJY3hPWjdtcHJrSTdzMTNndVNZLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCAGCCsGAQUFBwEHAQH/BBEwDzANBAIAAjAHAwUDKg8RwDAN BgkqhkiG9w0BAQsFAAOCAQEAtMIDzkkAixhbDADttLP5xrFSdi8WeSxWHXq4Izck 70TWGJCZhxSlrrVBeUI4D2Ei5PbH25YysPLLijXjOQxInCHwoU7NLcsC4KHe4A+c q9DKO0flQyYGlhWLDrK0/ZSKA0Q4yBrg7xSIQQ9KlcBu65xYhaK7C8VnDeDS6WP2 P2PXStNmRQBjJx6BntySKkwR1mPhuYiK6ycIrj5HBY25EVT54qOt7hFhMn4dd1Lq sdllikzVzw2zlUmwj4qjaxrXxnALcZod6gzNn5BHkIN4myu2J5cSGnXojkJQEZxt RALj2QiaXZgspeGpAmLe62X/vYeoqqgt5P5OAaAt6sSMIA== -----END CERTIFICATE-----Generated at Mon Jan 19 19:58:13 2026 by rpki-client