This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a5/57d1db-d8eb-49e0-8133-5bc90505d8ca/1/LyQJZOiJBFj_CkncEm0AMCx8VkA.roa File: LyQJZOiJBFj_CkncEm0AMCx8VkA.roa (raw, json) Hash identifier: 0nBIH73/4Jum7OxlljaMAAXDP5B7wTyLZnA+y+yJXE4= Subject key identifier: 2F:24:09:64:E8:89:04:58:FF:0A:49:DC:12:6D:00:30:2C:7C:56:40 Certificate issuer: /CN=86daaf4e68d322248230544cd8db29568e6cf003 Certificate serial: 019B7C11CDF28EF473714433A6142FD775F9 Authority key identifier: 86:DA:AF:4E:68:D3:22:24:82:30:54:4C:D8:DB:29:56:8E:6C:F0:03 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/htqvTmjTIiSCMFRM2NspVo5s8AM.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a5/57d1db-d8eb-49e0-8133-5bc90505d8ca/1/LyQJZOiJBFj_CkncEm0AMCx8VkA.roa Signing time: Fri 02 Jan 2026 00:18:20 +0000 ROA not before: Fri 02 Jan 2026 00:18:20 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 204088 IP address blocks: 2001:67c:2d14::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a5/57d1db-d8eb-49e0-8133-5bc90505d8ca/1/htqvTmjTIiSCMFRM2NspVo5s8AM.crl rsync://rpki.ripe.net/repository/DEFAULT/a5/57d1db-d8eb-49e0-8133-5bc90505d8ca/1/htqvTmjTIiSCMFRM2NspVo5s8AM.mft rsync://rpki.ripe.net/repository/DEFAULT/htqvTmjTIiSCMFRM2NspVo5s8AM.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:01:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7c:11:cd:f2:8e:f4:73:71:44:33:a6:14:2f:d7:75:f9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=86daaf4e68d322248230544cd8db29568e6cf003 Validity Not Before: Jan 2 00:18:20 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=2f240964e8890458ff0a49dc126d00302c7c5640 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:a7:5f:36:f2:53:da:2e:91:e1:5b:9c:91:6a: 5c:a7:d5:70:ae:8c:88:41:0b:68:e4:60:a4:34:4d: d2:18:84:78:3f:0a:e1:d4:5b:5e:0d:ab:73:0e:5d: 9f:b0:43:22:dd:46:82:d5:ce:67:dc:48:f6:e0:0c: d0:ca:2d:05:8a:49:9c:7b:9b:3a:26:76:14:00:61: 31:7f:dc:d4:d8:30:22:39:cf:69:c4:b3:9e:23:b8: 74:17:2a:64:7e:8c:76:59:ed:14:78:51:7b:ad:ef: 55:de:f9:a0:cb:08:69:89:20:cf:6e:0f:52:39:f8: b8:ce:0f:1c:74:01:8f:8e:7c:78:7b:72:c3:30:e9: d2:9b:34:7b:a1:ce:df:23:c8:6d:5f:47:40:4e:20: d4:69:8a:5d:08:68:cd:23:b2:b3:82:9f:85:1a:ec: 20:e8:60:1a:ed:e7:d5:41:85:76:6c:d0:88:28:01: fe:c4:94:f9:93:d8:4f:a8:01:6d:6b:b4:85:16:ed: 6a:41:91:71:d7:6c:4b:df:d9:f5:02:01:2f:63:29: 3b:f9:1e:9b:54:88:0f:22:ae:1f:07:9c:8a:31:ba: b8:01:b8:c1:42:13:1b:27:5c:c3:e2:ee:d3:8b:67: 2a:72:34:d1:f1:ce:bb:59:d1:35:51:c3:1b:7c:77: 27:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2F:24:09:64:E8:89:04:58:FF:0A:49:DC:12:6D:00:30:2C:7C:56:40 X509v3 Authority Key Identifier: keyid:86:DA:AF:4E:68:D3:22:24:82:30:54:4C:D8:DB:29:56:8E:6C:F0:03 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/htqvTmjTIiSCMFRM2NspVo5s8AM.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a5/57d1db-d8eb-49e0-8133-5bc90505d8ca/1/LyQJZOiJBFj_CkncEm0AMCx8VkA.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/a5/57d1db-d8eb-49e0-8133-5bc90505d8ca/1/htqvTmjTIiSCMFRM2NspVo5s8AM.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:67c:2d14::/48 Signature Algorithm: sha256WithRSAEncryption 90:b8:f6:bb:e2:f3:57:9d:5b:bf:a6:5a:12:a1:87:c0:ce:26: 2b:15:69:76:65:f6:b1:c0:02:bf:45:89:2e:ad:9a:fe:44:3a: 4e:b0:ef:0f:5c:4d:61:59:68:f7:06:8e:45:77:86:c6:cf:db: 92:d3:8f:97:dd:d6:24:1d:b6:d4:78:bc:f8:80:e2:c7:8d:19: 95:d8:c1:7e:01:3b:77:9c:4c:0e:2e:df:b1:be:d7:77:0d:58: 23:31:6c:86:8e:91:8f:5d:58:43:a9:c0:8f:49:06:42:ba:ee: e7:f2:3d:6f:be:07:5e:cb:a1:57:6d:85:85:63:ac:25:0d:56: 8a:97:d7:ad:80:ed:75:bd:13:c6:7d:8e:b0:1b:e7:1c:9c:b7: 6c:0b:e5:8c:e5:42:e6:99:16:0b:1e:8e:88:8d:64:32:b3:9c: 29:2c:31:40:91:4f:7d:81:27:7c:11:5e:43:19:c8:39:60:e0: c8:5a:db:2d:00:82:24:b5:a9:dd:a5:6b:52:83:e4:cc:b3:1f: 9f:bc:87:53:69:2c:66:7d:e9:00:d5:e3:9e:5f:76:13:9d:13: 30:87:46:83:27:69:6f:af:a3:77:69:38:0f:80:d9:1b:1b:96: 2f:bf:3d:9d:fd:0b:63:40:22:c2:96:d4:9a:5d:ed:a6:75:bf: 3b:77:21:71 -----BEGIN CERTIFICATE----- MIIFADCCA+igAwIBAgISAZt8Ec3yjvRzcUQzphQv13X5MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDg2ZGFhZjRlNjhkMzIyMjQ4MjMwNTQ0Y2Q4ZGIyOTU2OGU2 Y2YwMDMwHhcNMjYwMTAyMDAxODIwWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygyZjI0MDk2NGU4ODkwNDU4ZmYwYTQ5ZGMxMjZkMDAzMDJjN2M1NjQwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwadfNvJT2i6R4VuckWpcp9VwroyI QQto5GCkNE3SGIR4Pwrh1FteDatzDl2fsEMi3UaC1c5n3Ej24AzQyi0Fikmce5s6 JnYUAGExf9zU2DAiOc9pxLOeI7h0Fypkfox2We0UeFF7re9V3vmgywhpiSDPbg9S Ofi4zg8cdAGPjnx4e3LDMOnSmzR7oc7fI8htX0dATiDUaYpdCGjNI7Kzgp+FGuwg 6GAa7efVQYV2bNCIKAH+xJT5k9hPqAFta7SFFu1qQZFx12xL39n1AgEvYyk7+R6b VIgPIq4fB5yKMbq4AbjBQhMbJ1zD4u7Ti2cqcjTR8c67WdE1UcMbfHcnTQIDAQAB o4ICDDCCAggwHQYDVR0OBBYEFC8kCWToiQRY/wpJ3BJtADAsfFZAMB8GA1UdIwQY MBaAFIbar05o0yIkgjBUTNjbKVaObPADMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvaHRxdlRtalRJaVNDTUZSTTJOc3BWbzVzOEFNLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hNS81N2QxZGItZDhlYi00OWUwLTgxMzMt NWJjOTA1MDVkOGNhLzEvTHlRSlpPaUpCRmpfQ2tuY0VtMEFNQ3g4VmtBLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9hNS81N2QxZGItZDhlYi00OWUwLTgxMzMtNWJjOTA1MDVkOGNh LzEvaHRxdlRtalRJaVNDTUZSTTJOc3BWbzVzOEFNLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAIAEGfC0U MA0GCSqGSIb3DQEBCwUAA4IBAQCQuPa74vNXnVu/ploSoYfAziYrFWl2ZfaxwAK/ RYkurZr+RDpOsO8PXE1hWWj3Bo5Fd4bGz9uS04+X3dYkHbbUeLz4gOLHjRmV2MF+ ATt3nEwOLt+xvtd3DVgjMWyGjpGPXVhDqcCPSQZCuu7n8j1vvgdey6FXbYWFY6wl DVaKl9etgO11vRPGfY6wG+ccnLdsC+WM5ULmmRYLHo6IjWQys5wpLDFAkU99gSd8 EV5DGcg5YODIWtstAIIktandpWtSg+TMsx+fvIdTaSxmfekA1eOeX3YTnRMwh0aD J2lvr6N3aTgPgNkbG5Yvvz2d/QtjQCLCltSaXe2mdb87dyFx -----END CERTIFICATE-----Generated at Mon Feb 9 22:31:44 2026 by rpki-client