This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bd/c7ee9e-b5bf-4c2d-a983-dee3ed497aee/1/LyKLy6uT_WPlcRb0ykSf0GYdO4Y.roa File: LyKLy6uT_WPlcRb0ykSf0GYdO4Y.roa (raw, json) Hash identifier: Ws+t3EfpSQ+jlmW0/VstL/1QYYDtPwZDFVE4WDXtUAE= Subject key identifier: 2F:22:8B:CB:AB:93:FD:63:E5:71:16:F4:CA:44:9F:D0:66:1D:3B:86 Certificate issuer: /CN=05e9fca0a8584feb1c12319071423061b08fe456 Certificate serial: 019B7BA3C3C3A7F73BCB664E938CDADE11CB Authority key identifier: 05:E9:FC:A0:A8:58:4F:EB:1C:12:31:90:71:42:30:61:B0:8F:E4:56 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Ben8oKhYT-scEjGQcUIwYbCP5FY.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bd/c7ee9e-b5bf-4c2d-a983-dee3ed497aee/1/LyKLy6uT_WPlcRb0ykSf0GYdO4Y.roa Signing time: Thu 01 Jan 2026 22:18:08 +0000 ROA not before: Thu 01 Jan 2026 22:18:08 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 212165 IP address blocks: 2a04:cfc0::/29 maxlen: 29 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bd/c7ee9e-b5bf-4c2d-a983-dee3ed497aee/1/Ben8oKhYT-scEjGQcUIwYbCP5FY.crl rsync://rpki.ripe.net/repository/DEFAULT/bd/c7ee9e-b5bf-4c2d-a983-dee3ed497aee/1/Ben8oKhYT-scEjGQcUIwYbCP5FY.mft rsync://rpki.ripe.net/repository/DEFAULT/Ben8oKhYT-scEjGQcUIwYbCP5FY.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 22 Jan 2026 10:00:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7b:a3:c3:c3:a7:f7:3b:cb:66:4e:93:8c:da:de:11:cb Signature Algorithm: sha256WithRSAEncryption Issuer: CN=05e9fca0a8584feb1c12319071423061b08fe456 Validity Not Before: Jan 1 22:18:08 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=2f228bcbab93fd63e57116f4ca449fd0661d3b86 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9a:47:45:f8:47:a9:70:02:43:e1:cc:20:ae:fa: 1f:19:5d:27:b7:78:0d:53:40:e8:90:5c:9d:63:44: a4:10:2e:4c:bc:ac:63:98:c9:94:fd:be:d3:01:44: 46:99:49:43:5c:66:93:0f:cb:e5:dd:eb:75:0f:27: 8d:4a:e1:51:0e:a2:d1:2d:13:24:0e:74:f5:87:5b: 34:e8:51:83:3f:42:64:57:5b:4e:63:5c:36:a0:f3: 39:90:17:9f:f1:ca:14:75:de:4b:8d:27:71:df:e9: f2:f8:06:30:e8:07:26:c1:43:9a:e0:90:45:15:a5: 12:41:d7:fe:b3:c6:da:e6:83:c5:7b:6a:85:d6:eb: 23:0c:a7:b8:3d:36:5b:44:51:6a:27:74:68:46:4b: 7a:6c:7c:a5:24:07:2c:e3:4a:61:24:74:f7:7f:37: f7:8b:60:8c:f1:5a:b1:89:b3:2e:fa:3b:61:b9:0c: 4e:4b:ff:9c:7f:8f:e0:ca:62:c3:7d:b5:5f:1b:0f: 8d:e7:8b:88:ad:2c:30:a0:62:7c:b8:3d:96:20:35: 6c:ec:3d:8b:cf:42:d7:f1:cb:1e:f7:68:09:53:3a: 45:a1:ad:14:29:b9:f1:76:02:01:fc:1e:22:6b:dd: 9d:e7:c8:f1:26:a1:45:0a:04:ea:7a:88:f0:db:7a: 74:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2F:22:8B:CB:AB:93:FD:63:E5:71:16:F4:CA:44:9F:D0:66:1D:3B:86 X509v3 Authority Key Identifier: keyid:05:E9:FC:A0:A8:58:4F:EB:1C:12:31:90:71:42:30:61:B0:8F:E4:56 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Ben8oKhYT-scEjGQcUIwYbCP5FY.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/c7ee9e-b5bf-4c2d-a983-dee3ed497aee/1/LyKLy6uT_WPlcRb0ykSf0GYdO4Y.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/c7ee9e-b5bf-4c2d-a983-dee3ed497aee/1/Ben8oKhYT-scEjGQcUIwYbCP5FY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a04:cfc0::/29 Signature Algorithm: sha256WithRSAEncryption 7a:10:3d:4a:0a:0d:10:95:2e:91:c8:9b:07:42:e4:44:99:1c: 35:72:bb:47:a6:c4:2a:d3:61:ce:68:4f:11:09:fd:bd:05:ba: 43:62:ef:a0:2c:a2:74:5d:a8:f1:c2:c6:fb:7f:d4:8a:df:df: a8:6a:11:6c:45:a6:f3:2c:18:28:31:b7:01:83:08:70:b3:66: a3:be:ae:6d:fa:8b:a3:9e:fb:94:93:cc:b9:ae:eb:27:f6:b3: bf:9d:9f:1d:7d:94:7b:a4:09:91:87:02:78:ba:61:e2:de:37: af:db:ce:d2:24:6d:6d:a4:78:0a:18:cc:92:5e:4d:00:b8:4e: 83:6a:3c:6b:26:da:93:ef:7c:87:33:f1:68:6b:af:f7:2b:af: 86:4a:51:43:67:24:20:2b:af:bb:65:7e:59:10:f6:4c:9d:4d: 2c:46:cf:8c:98:e3:1a:8f:73:a0:48:40:b5:36:ee:71:f0:1a: 13:a8:20:53:5e:f4:ec:21:35:1f:43:3f:6b:c8:7b:0d:ff:3b: 89:2e:76:a8:eb:25:48:d7:1b:22:c5:98:7d:ec:ce:53:5d:ca: a9:af:8f:73:ef:1f:b1:fa:4a:51:93:66:9d:7c:2d:b5:e4:ea: b2:b3:6e:3a:b3:ff:f7:65:13:4d:4d:79:8a:53:9f:21:eb:6c: 3b:af:cf:d7 -----BEGIN CERTIFICATE----- MIIE/jCCA+agAwIBAgISAZt7o8PDp/c7y2ZOk4za3hHLMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDA1ZTlmY2EwYTg1ODRmZWIxYzEyMzE5MDcxNDIzMDYxYjA4 ZmU0NTYwHhcNMjYwMTAxMjIxODA4WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygyZjIyOGJjYmFiOTNmZDYzZTU3MTE2ZjRjYTQ0OWZkMDY2MWQzYjg2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmkdF+EepcAJD4cwgrvofGV0nt3gN U0DokFydY0SkEC5MvKxjmMmU/b7TAURGmUlDXGaTD8vl3et1DyeNSuFRDqLRLRMk DnT1h1s06FGDP0JkV1tOY1w2oPM5kBef8coUdd5LjSdx3+ny+AYw6AcmwUOa4JBF FaUSQdf+s8ba5oPFe2qF1usjDKe4PTZbRFFqJ3RoRkt6bHylJAcs40phJHT3fzf3 i2CM8VqxibMu+jthuQxOS/+cf4/gymLDfbVfGw+N54uIrSwwoGJ8uD2WIDVs7D2L z0LX8cse92gJUzpFoa0UKbnxdgIB/B4ia92d58jxJqFFCgTqeojw23p0hQIDAQAB o4ICCjCCAgYwHQYDVR0OBBYEFC8ii8urk/1j5XEW9MpEn9BmHTuGMB8GA1UdIwQY MBaAFAXp/KCoWE/rHBIxkHFCMGGwj+RWMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvQmVuOG9LaFlULXNjRWpHUWNVSXdZYkNQNUZZLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iZC9jN2VlOWUtYjViZi00YzJkLWE5ODMt ZGVlM2VkNDk3YWVlLzEvTHlLTHk2dVRfV1BsY1JiMHlrU2YwR1lkTzRZLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iZC9jN2VlOWUtYjViZi00YzJkLWE5ODMtZGVlM2VkNDk3YWVl LzEvQmVuOG9LaFlULXNjRWpHUWNVSXdZYkNQNUZZLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCAGCCsGAQUFBwEHAQH/BBEwDzANBAIAAjAHAwUDKgTPwDAN BgkqhkiG9w0BAQsFAAOCAQEAehA9SgoNEJUukcibB0LkRJkcNXK7R6bEKtNhzmhP EQn9vQW6Q2LvoCyidF2o8cLG+3/Uit/fqGoRbEWm8ywYKDG3AYMIcLNmo76ubfqL o577lJPMua7rJ/azv52fHX2Ue6QJkYcCeLph4t43r9vO0iRtbaR4ChjMkl5NALhO g2o8aybak+98hzPxaGuv9yuvhkpRQ2ckICuvu2V+WRD2TJ1NLEbPjJjjGo9zoEhA tTbucfAaE6ggU1707CE1H0M/a8h7Df87iS52qOslSNcbIsWYfezOU13Kqa+Pc+8f sfpKUZNmnXwtteTqsrNuOrP/92UTTU15ilOfIetsO6/P1w== -----END CERTIFICATE-----Generated at Wed Jan 21 17:06:38 2026 by rpki-client