This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/db/de171b-5b3c-4b76-b065-20d34e18e270/1/7yzx2Vou8DokUymMEJ2gEGzbZWY.roa File: 7yzx2Vou8DokUymMEJ2gEGzbZWY.roa (raw, json) Hash identifier: LGKQizHBh7IVFdmQglMkoUVSWIWG/s6M78Z60SVxtgg= Subject key identifier: EF:2C:F1:D9:5A:2E:F0:3A:24:53:29:8C:10:9D:A0:10:6C:DB:65:66 Certificate issuer: /CN=998de60a867b49db29a627c6f7d223a266a322a9 Certificate serial: 019AC1D1142EED3272A53AE7E9B4E010FF6D Authority key identifier: 99:8D:E6:0A:86:7B:49:DB:29:A6:27:C6:F7:D2:23:A2:66:A3:22:A9 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mY3mCoZ7SdsppifG99IjomajIqk.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/db/de171b-5b3c-4b76-b065-20d34e18e270/1/7yzx2Vou8DokUymMEJ2gEGzbZWY.roa Signing time: Wed 26 Nov 2025 20:18:16 +0000 ROA not before: Wed 26 Nov 2025 20:18:16 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 203430 IP address blocks: 2001:678:1160::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/db/de171b-5b3c-4b76-b065-20d34e18e270/1/mY3mCoZ7SdsppifG99IjomajIqk.crl rsync://rpki.ripe.net/repository/DEFAULT/db/de171b-5b3c-4b76-b065-20d34e18e270/1/mY3mCoZ7SdsppifG99IjomajIqk.mft rsync://rpki.ripe.net/repository/DEFAULT/mY3mCoZ7SdsppifG99IjomajIqk.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 04 Dec 2025 23:00:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:c1:d1:14:2e:ed:32:72:a5:3a:e7:e9:b4:e0:10:ff:6d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=998de60a867b49db29a627c6f7d223a266a322a9 Validity Not Before: Nov 26 20:18:16 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=ef2cf1d95a2ef03a2453298c109da0106cdb6566 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:5b:39:85:1b:38:4b:6d:85:90:10:b4:d5:4e: ce:7c:31:05:eb:e2:07:3d:a8:64:94:12:38:51:28: 8c:e3:cf:f0:5b:97:e4:4a:b8:ae:0a:4d:d8:35:07: d7:02:cc:04:c9:10:84:9a:6f:46:05:84:14:a6:5a: 15:25:c7:94:46:53:d3:37:32:f0:a2:07:53:f1:26: 40:0e:5a:95:be:90:0d:cb:6b:33:10:61:df:a3:8d: e2:f7:c4:99:43:12:1b:39:fb:34:e9:12:69:d2:ba: bb:4b:b8:73:1d:06:5d:dd:4a:3f:ff:29:95:6e:9b: 70:5a:90:71:01:d1:5f:9c:ea:f8:ff:b6:c1:65:2e: 37:a4:20:68:95:45:fc:76:d2:3c:a3:0d:27:cc:84: bc:83:af:ea:b8:0d:68:65:88:ee:76:e9:11:52:73: 2c:7c:a3:82:5f:50:86:bb:e5:52:95:08:fe:d1:b3: aa:0d:a7:e9:4e:38:8e:b3:72:f8:67:7f:03:00:f0: 7d:02:5d:f0:c8:05:4f:c2:44:7c:fb:ba:07:c3:d8: 01:f5:0a:09:3c:a6:d9:d9:51:93:b4:52:8a:eb:9e: 6a:b8:fa:1c:f8:90:ee:45:73:3b:6c:fe:17:59:51: 49:52:eb:64:82:62:d3:f6:8b:56:f8:2e:ff:17:b6: 4f:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EF:2C:F1:D9:5A:2E:F0:3A:24:53:29:8C:10:9D:A0:10:6C:DB:65:66 X509v3 Authority Key Identifier: keyid:99:8D:E6:0A:86:7B:49:DB:29:A6:27:C6:F7:D2:23:A2:66:A3:22:A9 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mY3mCoZ7SdsppifG99IjomajIqk.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/db/de171b-5b3c-4b76-b065-20d34e18e270/1/7yzx2Vou8DokUymMEJ2gEGzbZWY.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/db/de171b-5b3c-4b76-b065-20d34e18e270/1/mY3mCoZ7SdsppifG99IjomajIqk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:678:1160::/48 Signature Algorithm: sha256WithRSAEncryption 69:cb:94:52:25:6b:78:4e:70:4b:01:fc:24:5a:dd:70:20:d1: 75:04:ff:9e:e1:44:f8:c4:78:8b:f6:9e:19:b5:be:55:05:9c: 24:d5:47:1c:3f:58:ac:ac:ea:cc:da:99:43:cb:62:04:75:eb: 74:5c:84:b5:e6:2e:58:84:cd:a7:da:d4:56:96:98:41:1e:6c: 09:d4:5e:39:6d:06:5b:e3:b7:dd:2c:87:2b:ce:d5:21:59:1f: 1d:cc:e5:00:e5:37:4c:eb:cc:15:52:aa:4f:09:18:ed:db:9f: 67:8d:53:f8:c0:58:93:c9:3f:73:83:b3:5f:8d:db:b2:24:64: 02:f8:09:fe:e9:5f:3b:32:64:86:65:44:57:63:73:87:5f:d9: 66:a2:57:cc:8b:d3:61:31:25:ab:9f:00:83:a8:18:2e:32:57: 8f:fa:f5:1e:8b:e9:19:bf:de:60:1d:13:f0:99:e1:9a:c2:f6: ee:de:28:94:da:b2:82:6e:56:ea:e1:81:05:cb:81:18:79:68: 0a:dc:3e:90:61:3e:98:ea:0f:1e:87:4c:f8:1e:79:4c:d3:74: 5e:01:7a:4b:ed:85:45:bc:56:e1:7a:5a:d7:be:8e:08:0f:4d: b1:c1:50:a1:4e:91:03:34:a8:a5:06:2a:c3:9b:a8:9b:90:c8: e7:13:27:ae -----BEGIN CERTIFICATE----- MIIFADCCA+igAwIBAgISAZrB0RQu7TJypTrn6bTgEP9tMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDk5OGRlNjBhODY3YjQ5ZGIyOWE2MjdjNmY3ZDIyM2EyNjZh MzIyYTkwHhcNMjUxMTI2MjAxODE2WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhlZjJjZjFkOTVhMmVmMDNhMjQ1MzI5OGMxMDlkYTAxMDZjZGI2NTY2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA11s5hRs4S22FkBC01U7OfDEF6+IH PahklBI4USiM48/wW5fkSriuCk3YNQfXAswEyRCEmm9GBYQUploVJceURlPTNzLw ogdT8SZADlqVvpANy2szEGHfo43i98SZQxIbOfs06RJp0rq7S7hzHQZd3Uo//ymV bptwWpBxAdFfnOr4/7bBZS43pCBolUX8dtI8ow0nzIS8g6/quA1oZYjudukRUnMs fKOCX1CGu+VSlQj+0bOqDafpTjiOs3L4Z38DAPB9Al3wyAVPwkR8+7oHw9gB9QoJ PKbZ2VGTtFKK655quPoc+JDuRXM7bP4XWVFJUutkgmLT9otW+C7/F7ZP4wIDAQAB o4ICDDCCAggwHQYDVR0OBBYEFO8s8dlaLvA6JFMpjBCdoBBs22VmMB8GA1UdIwQY MBaAFJmN5gqGe0nbKaYnxvfSI6JmoyKpMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvbVkzbUNvWjdTZHNwcGlmRzk5SWpvbWFqSXFrLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kYi9kZTE3MWItNWIzYy00Yjc2LWIwNjUt MjBkMzRlMThlMjcwLzEvN3l6eDJWb3U4RG9rVXltTUVKMmdFR3piWldZLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kYi9kZTE3MWItNWIzYy00Yjc2LWIwNjUtMjBkMzRlMThlMjcw LzEvbVkzbUNvWjdTZHNwcGlmRzk5SWpvbWFqSXFrLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAIAEGeBFg MA0GCSqGSIb3DQEBCwUAA4IBAQBpy5RSJWt4TnBLAfwkWt1wINF1BP+e4UT4xHiL 9p4Ztb5VBZwk1UccP1isrOrM2plDy2IEdet0XIS15i5YhM2n2tRWlphBHmwJ1F45 bQZb47fdLIcrztUhWR8dzOUA5TdM68wVUqpPCRjt259njVP4wFiTyT9zg7Nfjduy JGQC+An+6V87MmSGZURXY3OHX9lmolfMi9NhMSWrnwCDqBguMleP+vUei+kZv95g HRPwmeGawvbu3iiU2rKCblbq4YEFy4EYeWgK3D6QYT6Y6g8eh0z4HnlM03ReAXpL 7YVFvFbhelrXvo4ID02xwVChTpEDNKilBirDm6ibkMjnEyeu -----END CERTIFICATE-----Generated at Thu Dec 4 07:45:36 2025 by rpki-client