This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c1/bbcf3c-67cd-403f-944c-fd5d79ec5b17/1/ymwnzHfZGdMRFGEeM7VXK-BgXAw.roa File: ymwnzHfZGdMRFGEeM7VXK-BgXAw.roa (raw, json) Hash identifier: zIUfyqH90eqwbG4q9Ekkq/Mb1Io/2HvKy6Zq+oTaP8c= Subject key identifier: CA:6C:27:CC:77:D9:19:D3:11:14:61:1E:33:B5:57:2B:E0:60:5C:0C Certificate issuer: /CN=98418cc6550dfdb1899969a6027e435a1b0b1341 Certificate serial: 019B76EB9B3C22C5D42CBE01658C619F48F1 Authority key identifier: 98:41:8C:C6:55:0D:FD:B1:89:99:69:A6:02:7E:43:5A:1B:0B:13:41 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mEGMxlUN_bGJmWmmAn5DWhsLE0E.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c1/bbcf3c-67cd-403f-944c-fd5d79ec5b17/1/ymwnzHfZGdMRFGEeM7VXK-BgXAw.roa Signing time: Thu 01 Jan 2026 00:18:30 +0000 ROA not before: Thu 01 Jan 2026 00:18:30 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 47610 IP address blocks: 2001:67c:a20::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c1/bbcf3c-67cd-403f-944c-fd5d79ec5b17/1/mEGMxlUN_bGJmWmmAn5DWhsLE0E.crl rsync://rpki.ripe.net/repository/DEFAULT/c1/bbcf3c-67cd-403f-944c-fd5d79ec5b17/1/mEGMxlUN_bGJmWmmAn5DWhsLE0E.mft rsync://rpki.ripe.net/repository/DEFAULT/mEGMxlUN_bGJmWmmAn5DWhsLE0E.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 22 Jan 2026 15:00:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:76:eb:9b:3c:22:c5:d4:2c:be:01:65:8c:61:9f:48:f1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=98418cc6550dfdb1899969a6027e435a1b0b1341 Validity Not Before: Jan 1 00:18:30 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=ca6c27cc77d919d31114611e33b5572be0605c0c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e6:7f:0d:5d:05:e5:cf:70:f8:5c:b0:9e:76:b3: df:04:82:01:84:74:4d:6c:50:c8:fe:af:40:35:d7: d3:72:9c:e9:6f:5e:59:17:e6:e5:f5:a8:3f:0d:02: 14:0f:aa:5d:9e:e6:96:95:78:d7:ce:2f:9b:14:cb: 09:44:68:04:87:ec:be:a7:3c:e9:58:76:d0:94:14: 89:e6:94:96:83:8d:58:fc:6e:01:af:3d:2d:94:ee: 9f:cb:2f:bd:ae:9d:64:f4:9e:6f:3e:6e:85:89:65: 45:79:a8:2f:b1:5c:28:63:ba:60:43:46:b9:eb:e8: e0:04:cd:8d:ae:ff:78:70:b5:d1:8e:4f:f6:c4:cc: 8e:ef:46:ed:a8:b2:a3:67:af:b0:6d:9d:ee:ec:4e: 50:55:ec:85:62:09:24:85:09:01:39:07:26:64:0d: 95:27:8f:00:ef:b8:e5:3d:1e:21:9d:b5:44:cd:e0: a4:b1:cd:e3:bd:fc:6c:5f:56:58:35:24:d6:5d:38: 50:c7:53:b7:c2:69:4d:f4:4e:48:b8:64:ac:76:eb: b0:9d:3c:90:b8:ab:f6:c1:bd:5a:12:7a:3f:15:42: bf:f0:6c:77:57:24:a8:93:c1:5c:73:03:88:d3:cb: 6b:5b:58:4d:d6:cc:8c:82:7d:c9:4b:9a:22:68:d5: 0b:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CA:6C:27:CC:77:D9:19:D3:11:14:61:1E:33:B5:57:2B:E0:60:5C:0C X509v3 Authority Key Identifier: keyid:98:41:8C:C6:55:0D:FD:B1:89:99:69:A6:02:7E:43:5A:1B:0B:13:41 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mEGMxlUN_bGJmWmmAn5DWhsLE0E.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c1/bbcf3c-67cd-403f-944c-fd5d79ec5b17/1/ymwnzHfZGdMRFGEeM7VXK-BgXAw.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/c1/bbcf3c-67cd-403f-944c-fd5d79ec5b17/1/mEGMxlUN_bGJmWmmAn5DWhsLE0E.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:67c:a20::/48 Signature Algorithm: sha256WithRSAEncryption 74:21:4e:65:6c:a2:0d:29:fc:74:1e:b0:05:15:08:34:61:d7: 12:a9:d2:2c:82:27:70:e0:6c:ed:ae:0d:3e:fd:d1:16:c0:23: 39:20:d3:c6:2a:19:a6:f2:32:e2:38:3c:79:9d:eb:88:f4:b6: 5d:f4:4e:89:c5:a2:5f:3a:3f:8a:da:df:1b:66:2d:6e:37:c2: 3b:c0:0b:e7:28:f4:db:71:60:3e:0e:4e:a5:38:15:38:5c:50: f5:ea:8e:fc:10:b8:16:3d:69:26:e3:9b:9c:ea:59:a1:eb:17: 1c:ad:0e:9d:33:0d:dc:6a:14:89:3a:34:af:fb:eb:3a:82:0f: 8f:62:56:f3:75:5a:2d:d8:bf:35:ba:38:34:f9:79:8c:80:29: f5:37:de:1f:ec:19:4d:af:8e:47:d5:cb:59:85:10:72:02:e2: b2:a6:23:c4:e7:ab:d1:f2:d1:f1:8b:9b:47:00:b0:4f:78:b5: 9f:e0:1b:b2:cc:d7:2d:79:9d:9d:01:65:c2:76:7d:cc:fe:26: 6b:4f:8c:87:cd:b5:c4:25:9b:30:50:ee:70:f1:7a:73:8a:94: bc:8e:70:3b:7d:1e:49:96:8f:35:1b:9d:38:da:c7:5a:9f:98: 33:eb:0d:86:0b:78:d1:52:e4:37:35:90:f0:46:c3:9a:e7:c7: 72:7a:b0:c3 -----BEGIN CERTIFICATE----- MIIFADCCA+igAwIBAgISAZt265s8IsXULL4BZYxhn0jxMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDk4NDE4Y2M2NTUwZGZkYjE4OTk5NjlhNjAyN2U0MzVhMWIw YjEzNDEwHhcNMjYwMTAxMDAxODMwWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhjYTZjMjdjYzc3ZDkxOWQzMTExNDYxMWUzM2I1NTcyYmUwNjA1YzBjMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA5n8NXQXlz3D4XLCedrPfBIIBhHRN bFDI/q9ANdfTcpzpb15ZF+bl9ag/DQIUD6pdnuaWlXjXzi+bFMsJRGgEh+y+pzzp WHbQlBSJ5pSWg41Y/G4Brz0tlO6fyy+9rp1k9J5vPm6FiWVFeagvsVwoY7pgQ0a5 6+jgBM2Nrv94cLXRjk/2xMyO70btqLKjZ6+wbZ3u7E5QVeyFYgkkhQkBOQcmZA2V J48A77jlPR4hnbVEzeCksc3jvfxsX1ZYNSTWXThQx1O3wmlN9E5IuGSsduuwnTyQ uKv2wb1aEno/FUK/8Gx3VySok8FccwOI08trW1hN1syMgn3JS5oiaNULOwIDAQAB o4ICDDCCAggwHQYDVR0OBBYEFMpsJ8x32RnTERRhHjO1VyvgYFwMMB8GA1UdIwQY MBaAFJhBjMZVDf2xiZlppgJ+Q1obCxNBMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvbUVHTXhsVU5fYkdKbVdtbUFuNURXaHNMRTBFLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jMS9iYmNmM2MtNjdjZC00MDNmLTk0NGMt ZmQ1ZDc5ZWM1YjE3LzEveW13bnpIZlpHZE1SRkdFZU03VlhLLUJnWEF3LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9jMS9iYmNmM2MtNjdjZC00MDNmLTk0NGMtZmQ1ZDc5ZWM1YjE3 LzEvbUVHTXhsVU5fYkdKbVdtbUFuNURXaHNMRTBFLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAIAEGfAog MA0GCSqGSIb3DQEBCwUAA4IBAQB0IU5lbKINKfx0HrAFFQg0YdcSqdIsgidw4Gzt rg0+/dEWwCM5INPGKhmm8jLiODx5neuI9LZd9E6JxaJfOj+K2t8bZi1uN8I7wAvn KPTbcWA+Dk6lOBU4XFD16o78ELgWPWkm45uc6lmh6xccrQ6dMw3cahSJOjSv++s6 gg+PYlbzdVot2L81ujg0+XmMgCn1N94f7BlNr45H1ctZhRByAuKypiPE56vR8tHx i5tHALBPeLWf4BuyzNcteZ2dAWXCdn3M/iZrT4yHzbXEJZswUO5w8XpzipS8jnA7 fR5Jlo81G5042sdan5gz6w2GC3jRUuQ3NZDwRsOa58dyerDD -----END CERTIFICATE-----Generated at Wed Jan 21 17:30:16 2026 by rpki-client