This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/10/0512df-7d0c-463b-8724-82531e9c7804/1/yoNR3031t1c5fIpSVbBNiZg-fgU.roa File: yoNR3031t1c5fIpSVbBNiZg-fgU.roa (raw, json) Hash identifier: WFBkEZbt/RtOe+ZGOFWHx7RKyRoySV4z75BvLA08kjg= Subject key identifier: CA:83:51:DF:4D:F5:B7:57:39:7C:8A:52:55:B0:4D:89:98:3E:7E:05 Certificate issuer: /CN=ef55459645979c413d0bc6f7454f0d36e40e99f9 Certificate serial: 019B9F7BDFF1C9B2845EDEC6899377EEC756 Authority key identifier: EF:55:45:96:45:97:9C:41:3D:0B:C6:F7:45:4F:0D:36:E4:0E:99:F9 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/71VFlkWXnEE9C8b3RU8NNuQOmfk.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/10/0512df-7d0c-463b-8724-82531e9c7804/1/yoNR3031t1c5fIpSVbBNiZg-fgU.roa Signing time: Thu 08 Jan 2026 21:20:54 +0000 ROA not before: Thu 08 Jan 2026 21:20:54 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 213579 IP address blocks: 2a14:47c0:e000::/40 maxlen: 48 2a14:47c0:e000::/47 maxlen: 47 2a14:47c0:e000::/48 maxlen: 48 2a14:47c0:e001::/48 maxlen: 48 2a14:47c0:e002::/48 maxlen: 48 2a14:47c0:e003::/48 maxlen: 48 2a14:47c0:e004::/48 maxlen: 48 2a14:47c0:e005::/48 maxlen: 48 2a14:47c0:e047::/48 maxlen: 48 2a14:47c0:e0ff::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/10/0512df-7d0c-463b-8724-82531e9c7804/1/71VFlkWXnEE9C8b3RU8NNuQOmfk.crl rsync://rpki.ripe.net/repository/DEFAULT/10/0512df-7d0c-463b-8724-82531e9c7804/1/71VFlkWXnEE9C8b3RU8NNuQOmfk.mft rsync://rpki.ripe.net/repository/DEFAULT/71VFlkWXnEE9C8b3RU8NNuQOmfk.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 13:21:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:9f:7b:df:f1:c9:b2:84:5e:de:c6:89:93:77:ee:c7:56 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ef55459645979c413d0bc6f7454f0d36e40e99f9 Validity Not Before: Jan 8 21:20:54 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=ca8351df4df5b757397c8a5255b04d89983e7e05 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:73:d6:e4:00:9b:69:4d:46:05:18:6b:b9:02: d8:41:6b:e9:7c:74:0a:81:18:ca:c5:7b:b3:98:f4: f0:0b:aa:27:cd:f3:48:9e:13:27:2d:c1:ae:1a:aa: 8a:04:9f:01:f4:67:6f:13:a2:4f:d6:49:b5:a9:32: a7:3a:07:ec:db:e5:29:54:ab:9f:f7:6b:3f:3e:b0: 4b:61:1f:af:c6:10:55:fb:2e:b7:ee:6c:2f:b1:69: c0:47:0f:97:e4:ae:1a:ac:90:66:a1:f8:5f:66:33: 62:92:ec:45:32:53:75:00:54:39:d3:0f:34:de:71: 78:9f:64:4f:55:24:2d:fa:8d:a2:b0:4a:a8:59:6c: f5:b4:a7:59:08:a9:4f:28:e6:6a:55:5b:c1:f0:fd: 42:56:7b:09:f7:1c:35:0a:12:4c:1c:e4:9f:81:49: b0:76:b8:c3:e9:13:0f:b6:18:e0:bc:79:57:cc:a2: 24:30:05:7a:ef:21:a5:d6:ae:c1:7d:a3:b8:28:7b: 6f:e1:8e:79:43:f1:dc:54:55:a6:58:e5:32:90:e1: 3b:d0:d2:84:b9:13:32:d9:02:96:b0:38:8a:ba:0b: ca:f1:c5:53:c8:9e:23:de:ec:99:72:66:d0:ec:d8: 8b:35:ad:ad:0a:c0:b7:6c:b4:76:87:3d:b0:11:14: 0a:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CA:83:51:DF:4D:F5:B7:57:39:7C:8A:52:55:B0:4D:89:98:3E:7E:05 X509v3 Authority Key Identifier: keyid:EF:55:45:96:45:97:9C:41:3D:0B:C6:F7:45:4F:0D:36:E4:0E:99:F9 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/71VFlkWXnEE9C8b3RU8NNuQOmfk.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/10/0512df-7d0c-463b-8724-82531e9c7804/1/yoNR3031t1c5fIpSVbBNiZg-fgU.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/10/0512df-7d0c-463b-8724-82531e9c7804/1/71VFlkWXnEE9C8b3RU8NNuQOmfk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a14:47c0:e000::/40 Signature Algorithm: sha256WithRSAEncryption 65:58:c0:0e:59:8b:ff:d6:7a:82:a6:1d:bb:c8:b1:6e:fe:37: 78:b9:a7:94:42:32:87:6a:df:12:8b:29:2e:83:da:fa:cd:db: e8:57:be:d9:af:d4:b7:39:47:a4:bb:31:6e:2a:5c:25:fe:e1: 19:6a:eb:da:6e:eb:e0:26:aa:e3:c4:b3:ec:10:f3:b0:af:a0: 09:5f:6c:f2:04:92:d3:ee:f3:b6:ee:6f:e8:32:b0:ce:77:e1: cd:fd:73:e0:0d:44:01:a3:db:e4:a7:6b:83:bf:a3:80:14:e8: b9:71:09:a0:24:0b:22:0e:0f:1e:3d:18:83:a8:25:35:29:ca: c5:1a:70:20:67:06:e9:9f:7f:42:4c:46:71:e2:35:c6:54:89: fe:f3:08:af:a8:0e:cb:77:a3:d7:0d:47:17:26:a1:4e:cd:2e: 1c:e2:f4:05:6d:38:e3:df:cb:05:40:11:19:96:24:af:18:e8: 08:8c:0b:77:2e:f5:2d:be:5a:4b:db:90:61:05:0a:43:0f:33: dc:fc:78:b0:ee:ee:2c:1c:f8:1b:38:bb:f1:ba:e5:12:ef:34: af:84:b3:fe:bb:06:30:39:02:1d:33:df:f3:4d:97:82:c3:a1: a5:ac:4b:36:a2:42:57:04:60:40:af:d2:ec:9c:85:56:6b:05: 2b:22:07:2a -----BEGIN CERTIFICATE----- MIIE/zCCA+egAwIBAgISAZufe9/xybKEXt7GiZN37sdWMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGVmNTU0NTk2NDU5NzljNDEzZDBiYzZmNzQ1NGYwZDM2ZTQw ZTk5ZjkwHhcNMjYwMTA4MjEyMDU0WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhjYTgzNTFkZjRkZjViNzU3Mzk3YzhhNTI1NWIwNGQ4OTk4M2U3ZTA1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsHPW5ACbaU1GBRhruQLYQWvpfHQK gRjKxXuzmPTwC6onzfNInhMnLcGuGqqKBJ8B9GdvE6JP1km1qTKnOgfs2+UpVKuf 92s/PrBLYR+vxhBV+y637mwvsWnARw+X5K4arJBmofhfZjNikuxFMlN1AFQ50w80 3nF4n2RPVSQt+o2isEqoWWz1tKdZCKlPKOZqVVvB8P1CVnsJ9xw1ChJMHOSfgUmw drjD6RMPthjgvHlXzKIkMAV67yGl1q7BfaO4KHtv4Y55Q/HcVFWmWOUykOE70NKE uRMy2QKWsDiKugvK8cVTyJ4j3uyZcmbQ7NiLNa2tCsC3bLR2hz2wERQKLwIDAQAB o4ICCzCCAgcwHQYDVR0OBBYEFMqDUd9N9bdXOXyKUlWwTYmYPn4FMB8GA1UdIwQY MBaAFO9VRZZFl5xBPQvG90VPDTbkDpn5MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvNzFWRmxrV1huRUU5QzhiM1JVOE5OdVFPbWZrLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xMC8wNTEyZGYtN2QwYy00NjNiLTg3MjQt ODI1MzFlOWM3ODA0LzEveW9OUjMwMzF0MWM1ZklwU1ZiQk5pWmctZmdVLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xMC8wNTEyZGYtN2QwYy00NjNiLTg3MjQtODI1MzFlOWM3ODA0 LzEvNzFWRmxrV1huRUU5QzhiM1JVOE5OdVFPbWZrLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAOBAIAAjAIAwYAKhRHwOAw DQYJKoZIhvcNAQELBQADggEBAGVYwA5Zi//WeoKmHbvIsW7+N3i5p5RCModq3xKL KS6D2vrN2+hXvtmv1Lc5R6S7MW4qXCX+4Rlq69pu6+AmquPEs+wQ87CvoAlfbPIE ktPu87bub+gysM534c39c+ANRAGj2+Sna4O/o4AU6LlxCaAkCyIODx49GIOoJTUp ysUacCBnBumff0JMRnHiNcZUif7zCK+oDst3o9cNRxcmoU7NLhzi9AVtOOPfywVA ERmWJK8Y6AiMC3cu9S2+WkvbkGEFCkMPM9z8eLDu7iwc+Bs4u/G65RLvNK+Es/67 BjA5Ah0z3/NNl4LDoaWsSzaiQlcEYECv0uychVZrBSsiByo= -----END CERTIFICATE-----Generated at Sun Jan 25 20:58:31 2026 by rpki-client