This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c6/1f6de8-9e29-4cb3-aa4a-0a2e9336d6d0/1/ynu8tUDUEPguQB0iGrynuoA2iPw.roa File: ynu8tUDUEPguQB0iGrynuoA2iPw.roa (raw, json) Hash identifier: johc23xrqxWrSzPXwvlfoLCZ1FTv0QQ+G+sZUcEYX8w= Subject key identifier: CA:7B:BC:B5:40:D4:10:F8:2E:40:1D:22:1A:BC:A7:BA:80:36:88:FC Certificate issuer: /CN=79ad074aface91ac3fdd0a3ebd60fadbc16de4fc Certificate serial: 019B79ED602A219AE9B3FF4206494C69FD90 Authority key identifier: 79:AD:07:4A:FA:CE:91:AC:3F:DD:0A:3E:BD:60:FA:DB:C1:6D:E4:FC Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ea0HSvrOkaw_3Qo-vWD628Ft5Pw.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c6/1f6de8-9e29-4cb3-aa4a-0a2e9336d6d0/1/ynu8tUDUEPguQB0iGrynuoA2iPw.roa Signing time: Thu 01 Jan 2026 14:19:18 +0000 ROA not before: Thu 01 Jan 2026 14:19:18 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 208633 IP address blocks: 2a0e:1dc0::/29 maxlen: 29 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c6/1f6de8-9e29-4cb3-aa4a-0a2e9336d6d0/1/ea0HSvrOkaw_3Qo-vWD628Ft5Pw.crl rsync://rpki.ripe.net/repository/DEFAULT/c6/1f6de8-9e29-4cb3-aa4a-0a2e9336d6d0/1/ea0HSvrOkaw_3Qo-vWD628Ft5Pw.mft rsync://rpki.ripe.net/repository/DEFAULT/ea0HSvrOkaw_3Qo-vWD628Ft5Pw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 14:00:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:79:ed:60:2a:21:9a:e9:b3:ff:42:06:49:4c:69:fd:90 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=79ad074aface91ac3fdd0a3ebd60fadbc16de4fc Validity Not Before: Jan 1 14:19:18 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=ca7bbcb540d410f82e401d221abca7ba803688fc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:6d:3a:57:c8:b5:6f:97:c4:d9:dc:53:e9:e1: 36:18:01:78:69:13:90:77:af:d2:50:22:cb:44:3b: dc:0e:90:b8:2a:dd:a2:cb:4c:0a:f9:35:da:b7:99: 2f:97:95:22:18:4b:2f:68:25:29:81:42:32:31:b8: 2a:7b:ed:75:dc:f3:ef:83:77:5a:fa:29:85:8e:ae: e5:48:fc:5f:a7:78:db:10:91:d2:4d:fd:1f:c6:1e: 3e:8e:39:b9:40:45:7b:5c:9a:4d:b7:cd:ad:90:58: 56:49:2d:4e:8c:32:27:43:6c:a5:4c:67:2c:fe:82: 51:a7:58:fa:4a:9f:ed:c7:76:cb:ad:0c:47:14:99: 6a:28:23:45:df:b5:04:88:30:ae:ea:e1:0a:d0:18: 04:08:b4:0b:06:e7:14:29:34:f0:87:c8:33:04:26: b1:bc:52:25:c4:fe:9a:ee:1a:12:4a:80:cb:c9:fa: bb:72:70:e5:05:91:35:20:1e:3d:5e:f3:62:2a:c8: 40:0e:4d:2e:95:83:42:09:f3:81:a7:82:f4:73:c7: 35:e7:45:b2:96:15:bc:76:e7:ab:b6:33:92:14:9e: d6:0b:ed:b3:f8:f5:21:93:05:4e:e9:91:22:20:b3: a0:f0:21:a3:2e:76:0f:e5:c8:91:6b:14:1e:fe:35: 1f:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CA:7B:BC:B5:40:D4:10:F8:2E:40:1D:22:1A:BC:A7:BA:80:36:88:FC X509v3 Authority Key Identifier: keyid:79:AD:07:4A:FA:CE:91:AC:3F:DD:0A:3E:BD:60:FA:DB:C1:6D:E4:FC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ea0HSvrOkaw_3Qo-vWD628Ft5Pw.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c6/1f6de8-9e29-4cb3-aa4a-0a2e9336d6d0/1/ynu8tUDUEPguQB0iGrynuoA2iPw.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/c6/1f6de8-9e29-4cb3-aa4a-0a2e9336d6d0/1/ea0HSvrOkaw_3Qo-vWD628Ft5Pw.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0e:1dc0::/29 Signature Algorithm: sha256WithRSAEncryption 09:f4:a6:02:6b:aa:e6:eb:c2:d3:9b:cf:cc:79:d5:70:1f:42: 93:c9:ab:db:d1:ea:6e:26:62:06:dd:59:f1:89:d0:4b:e4:bb: 7f:c1:e9:74:cb:8e:20:41:3d:57:05:f5:16:41:69:0b:ac:e2: b2:9b:5e:7a:93:69:5c:ab:6e:fb:17:cd:51:70:8e:c2:6f:cf: 8f:51:e6:c1:a8:3c:e5:7f:3c:a7:67:f0:0e:fc:55:5b:2e:08: 4c:dd:ca:ec:8e:48:de:71:d0:63:33:d5:0b:2e:16:83:49:23: 11:cc:84:50:a0:d8:13:2e:80:4b:5c:bb:43:7e:7a:ed:d5:11: 95:d9:a9:8a:15:55:5e:76:c5:da:8f:4d:54:d4:06:47:70:31: 5c:c9:14:47:c2:72:ed:17:47:0b:e5:25:74:d0:c1:f3:cd:a9: dc:ed:7c:22:c3:3a:48:19:bc:e2:c2:1f:f1:bb:f5:55:3e:4f: ab:d7:cf:6a:b1:fb:d8:cb:e0:c4:30:f6:97:36:a4:99:26:59: 26:63:03:e1:48:39:7c:33:4e:56:c1:62:a1:f6:df:3d:56:28: 2b:4b:e2:b1:75:62:8d:fd:6b:95:a9:ad:d4:59:66:d7:55:10: f5:e8:c6:f8:87:5d:56:d1:73:a2:f9:04:3e:3a:59:b6:e4:ec: b8:f6:4f:5a -----BEGIN CERTIFICATE----- MIIE/jCCA+agAwIBAgISAZt57WAqIZrps/9CBklMaf2QMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDc5YWQwNzRhZmFjZTkxYWMzZmRkMGEzZWJkNjBmYWRiYzE2 ZGU0ZmMwHhcNMjYwMTAxMTQxOTE4WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhjYTdiYmNiNTQwZDQxMGY4MmU0MDFkMjIxYWJjYTdiYTgwMzY4OGZjMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA3G06V8i1b5fE2dxT6eE2GAF4aROQ d6/SUCLLRDvcDpC4Kt2iy0wK+TXat5kvl5UiGEsvaCUpgUIyMbgqe+113PPvg3da +imFjq7lSPxfp3jbEJHSTf0fxh4+jjm5QEV7XJpNt82tkFhWSS1OjDInQ2ylTGcs /oJRp1j6Sp/tx3bLrQxHFJlqKCNF37UEiDCu6uEK0BgECLQLBucUKTTwh8gzBCax vFIlxP6a7hoSSoDLyfq7cnDlBZE1IB49XvNiKshADk0ulYNCCfOBp4L0c8c150Wy lhW8duertjOSFJ7WC+2z+PUhkwVO6ZEiILOg8CGjLnYP5ciRaxQe/jUfLQIDAQAB o4ICCjCCAgYwHQYDVR0OBBYEFMp7vLVA1BD4LkAdIhq8p7qANoj8MB8GA1UdIwQY MBaAFHmtB0r6zpGsP90KPr1g+tvBbeT8MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvZWEwSFN2ck9rYXdfM1FvLXZXRDYyOEZ0NVB3LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jNi8xZjZkZTgtOWUyOS00Y2IzLWFhNGEt MGEyZTkzMzZkNmQwLzEveW51OHRVRFVFUGd1UUIwaUdyeW51b0EyaVB3LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9jNi8xZjZkZTgtOWUyOS00Y2IzLWFhNGEtMGEyZTkzMzZkNmQw LzEvZWEwSFN2ck9rYXdfM1FvLXZXRDYyOEZ0NVB3LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCAGCCsGAQUFBwEHAQH/BBEwDzANBAIAAjAHAwUDKg4dwDAN BgkqhkiG9w0BAQsFAAOCAQEACfSmAmuq5uvC05vPzHnVcB9Ck8mr29HqbiZiBt1Z 8YnQS+S7f8HpdMuOIEE9VwX1FkFpC6zispteepNpXKtu+xfNUXCOwm/Pj1Hmwag8 5X88p2fwDvxVWy4ITN3K7I5I3nHQYzPVCy4Wg0kjEcyEUKDYEy6AS1y7Q3567dUR ldmpihVVXnbF2o9NVNQGR3AxXMkUR8Jy7RdHC+UldNDB882p3O18IsM6SBm84sIf 8bv1VT5Pq9fParH72MvgxDD2lzakmSZZJmMD4Ug5fDNOVsFiofbfPVYoK0visXVi jf1rlamt1Flm11UQ9ejG+IddVtFzovkEPjpZtuTsuPZPWg== -----END CERTIFICATE-----Generated at Mon Feb 9 22:35:20 2026 by rpki-client