This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d5/c4647a-6042-4fe8-a276-f5b6a718f4b5/1/yksBayrTtDqZfB4PjOJFi7q-J_s.roa File: yksBayrTtDqZfB4PjOJFi7q-J_s.roa (raw, json) Hash identifier: NTQOC7Qh8YjTtb2OscIz/owLhfuYloPRgnYrTHMDg0Y= Subject key identifier: CA:4B:01:6B:2A:D3:B4:3A:99:7C:1E:0F:8C:E2:45:8B:BA:BE:27:FB Certificate issuer: /CN=cfcead390625edba1408108df57cea47160d70e5 Certificate serial: 019B7C80315C7771E5B0C1C1F0605373687B Authority key identifier: CF:CE:AD:39:06:25:ED:BA:14:08:10:8D:F5:7C:EA:47:16:0D:70:E5 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/z86tOQYl7boUCBCN9XzqRxYNcOU.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d5/c4647a-6042-4fe8-a276-f5b6a718f4b5/1/yksBayrTtDqZfB4PjOJFi7q-J_s.roa Signing time: Fri 02 Jan 2026 02:18:54 +0000 ROA not before: Fri 02 Jan 2026 02:18:54 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 214911 IP address blocks: 2a0f:7803:dd00::/40 maxlen: 48 2a0f:7804:da00::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d5/c4647a-6042-4fe8-a276-f5b6a718f4b5/1/z86tOQYl7boUCBCN9XzqRxYNcOU.crl rsync://rpki.ripe.net/repository/DEFAULT/d5/c4647a-6042-4fe8-a276-f5b6a718f4b5/1/z86tOQYl7boUCBCN9XzqRxYNcOU.mft rsync://rpki.ripe.net/repository/DEFAULT/z86tOQYl7boUCBCN9XzqRxYNcOU.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 22 Jan 2026 14:00:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7c:80:31:5c:77:71:e5:b0:c1:c1:f0:60:53:73:68:7b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=cfcead390625edba1408108df57cea47160d70e5 Validity Not Before: Jan 2 02:18:54 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=ca4b016b2ad3b43a997c1e0f8ce2458bbabe27fb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:9e:b1:a0:85:d4:8d:61:65:63:96:27:09:7b: 03:ae:28:b1:22:05:1d:31:2e:6d:95:e8:57:37:7e: 3d:f0:2e:cd:b6:11:09:0a:8c:11:4f:bc:8f:ba:ce: 9c:75:39:7c:7d:92:5c:cb:21:2a:31:3f:38:74:6a: 1d:71:57:0f:5e:6c:14:6e:26:18:9e:a5:c1:c0:31: 4b:fd:4e:fe:30:f7:98:68:b2:7a:0f:53:9f:09:78: 24:fa:8a:88:ec:b8:50:de:d0:24:87:02:e3:d5:34: f0:47:80:29:a9:b2:5f:47:57:50:5e:29:03:18:e9: 70:05:37:25:9f:ba:c6:8a:1e:d4:ed:60:27:24:6d: 0e:04:e6:d5:04:cc:47:67:27:e6:03:7b:c9:1a:d1: d0:9f:bd:57:26:14:fe:ba:8e:aa:f7:27:7f:91:bf: fb:ab:d2:ae:f3:da:e3:3a:3d:a4:fb:3c:aa:a1:7a: 6a:0c:10:b4:94:c0:4a:f5:53:f0:e5:06:0d:55:a8: 46:af:38:1f:51:2c:6a:1e:cf:a3:5a:9c:2c:eb:44: ae:5d:0c:78:e1:0b:e5:4b:20:38:b3:32:b6:5a:cb: 09:4d:35:52:a0:28:be:c5:f6:bc:3d:c8:11:55:14: 76:c4:4a:67:d1:a7:6b:9a:ec:74:c9:5f:82:ec:91: b3:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CA:4B:01:6B:2A:D3:B4:3A:99:7C:1E:0F:8C:E2:45:8B:BA:BE:27:FB X509v3 Authority Key Identifier: keyid:CF:CE:AD:39:06:25:ED:BA:14:08:10:8D:F5:7C:EA:47:16:0D:70:E5 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/z86tOQYl7boUCBCN9XzqRxYNcOU.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d5/c4647a-6042-4fe8-a276-f5b6a718f4b5/1/yksBayrTtDqZfB4PjOJFi7q-J_s.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/d5/c4647a-6042-4fe8-a276-f5b6a718f4b5/1/z86tOQYl7boUCBCN9XzqRxYNcOU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0f:7803:dd00::/40 2a0f:7804:da00::/40 Signature Algorithm: sha256WithRSAEncryption 91:aa:41:17:63:39:b2:3f:93:c2:ba:b3:70:8c:a5:81:5a:9e: a1:bd:4d:c7:a6:b2:d1:27:4b:2d:03:86:96:67:d9:d1:12:35: d0:58:b3:4d:a5:02:06:9c:37:69:2c:03:2b:e4:3a:3c:50:27: 05:bd:60:0c:dd:20:e9:0c:16:f6:89:cf:86:89:65:3f:b9:11: 54:cb:17:8b:5a:da:5f:0b:7f:10:d2:ae:f5:19:01:94:29:48: 26:54:86:03:b5:57:32:67:4c:61:63:d5:db:cc:62:8b:e8:e9: c3:f3:ed:b3:54:9c:cd:71:78:0e:9f:44:81:de:d8:6b:91:47: 77:63:08:29:b4:52:83:c4:f5:79:cf:ea:df:9a:d1:49:ad:91: 87:6e:e8:58:79:46:40:4e:7d:89:26:6f:d0:1f:8b:34:bf:5d: 0f:56:41:2d:7b:3b:52:98:b4:9f:de:f1:d7:62:9e:8a:14:33: 64:30:45:c8:59:36:43:00:8b:30:15:5c:13:1a:0c:79:77:e7: a5:0e:8e:7f:57:89:99:93:79:af:ea:c8:e5:8f:6e:09:a4:3b: ab:d0:59:2c:7f:d4:5b:ff:53:2b:16:9f:12:03:95:64:eb:2b: a3:0a:b8:6a:87:ba:ca:8d:48:09:1c:66:15:12:aa:39:32:ad: 71:c3:6a:cd -----BEGIN CERTIFICATE----- MIIFBzCCA++gAwIBAgISAZt8gDFcd3HlsMHB8GBTc2h7MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGNmY2VhZDM5MDYyNWVkYmExNDA4MTA4ZGY1N2NlYTQ3MTYw ZDcwZTUwHhcNMjYwMTAyMDIxODU0WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhjYTRiMDE2YjJhZDNiNDNhOTk3YzFlMGY4Y2UyNDU4YmJhYmUyN2ZiMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA256xoIXUjWFlY5YnCXsDriixIgUd MS5tlehXN3498C7NthEJCowRT7yPus6cdTl8fZJcyyEqMT84dGodcVcPXmwUbiYY nqXBwDFL/U7+MPeYaLJ6D1OfCXgk+oqI7LhQ3tAkhwLj1TTwR4ApqbJfR1dQXikD GOlwBTcln7rGih7U7WAnJG0OBObVBMxHZyfmA3vJGtHQn71XJhT+uo6q9yd/kb/7 q9Ku89rjOj2k+zyqoXpqDBC0lMBK9VPw5QYNVahGrzgfUSxqHs+jWpws60SuXQx4 4QvlSyA4szK2WssJTTVSoCi+xfa8PcgRVRR2xEpn0adrmux0yV+C7JGzTQIDAQAB o4ICEzCCAg8wHQYDVR0OBBYEFMpLAWsq07Q6mXweD4ziRYu6vif7MB8GA1UdIwQY MBaAFM/OrTkGJe26FAgQjfV86kcWDXDlMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvejg2dE9RWWw3Ym9VQ0JDTjlYenFSeFlOY09VLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kNS9jNDY0N2EtNjA0Mi00ZmU4LWEyNzYt ZjViNmE3MThmNGI1LzEveWtzQmF5clR0RHFaZkI0UGpPSkZpN3EtSl9zLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kNS9jNDY0N2EtNjA0Mi00ZmU4LWEyNzYtZjViNmE3MThmNGI1 LzEvejg2dE9RWWw3Ym9VQ0JDTjlYenFSeFlOY09VLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCkGCCsGAQUFBwEHAQH/BBowGDAWBAIAAjAQAwYAKg94A90D BgAqD3gE2jANBgkqhkiG9w0BAQsFAAOCAQEAkapBF2M5sj+TwrqzcIylgVqeob1N x6ay0SdLLQOGlmfZ0RI10FizTaUCBpw3aSwDK+Q6PFAnBb1gDN0g6QwW9onPholl P7kRVMsXi1raXwt/ENKu9RkBlClIJlSGA7VXMmdMYWPV28xii+jpw/Pts1SczXF4 Dp9Egd7Ya5FHd2MIKbRSg8T1ec/q35rRSa2Rh27oWHlGQE59iSZv0B+LNL9dD1ZB LXs7Upi0n97x12KeihQzZDBFyFk2QwCLMBVcExoMeXfnpQ6Of1eJmZN5r+rI5Y9u CaQ7q9BZLH/UW/9TKxafEgOVZOsrowq4aoe6yo1ICRxmFRKqOTKtccNqzQ== -----END CERTIFICATE-----Generated at Wed Jan 21 17:00:57 2026 by rpki-client