This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/11/5e0ee1-c833-4241-960a-e5768d6b182c/1/YuYmQaJNtuOBq3fPKH-8v6Xr9Qk.roa File: YuYmQaJNtuOBq3fPKH-8v6Xr9Qk.roa (raw, json) Hash identifier: U5rEQ3u5XOjHhPmf1nGbyQ/BjTbyBdisgzm75iFjhvQ= Subject key identifier: 62:E6:26:41:A2:4D:B6:E3:81:AB:77:CF:28:7F:BC:BF:A5:EB:F5:09 Certificate issuer: /CN=baa0f258eef4b2bf4bbaa8430c1e58ca8c188ea7 Certificate serial: 019B77C6B03F861C1E2C9F5B237EA3300100 Authority key identifier: BA:A0:F2:58:EE:F4:B2:BF:4B:BA:A8:43:0C:1E:58:CA:8C:18:8E:A7 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uqDyWO70sr9LuqhDDB5YyowYjqc.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/11/5e0ee1-c833-4241-960a-e5768d6b182c/1/YuYmQaJNtuOBq3fPKH-8v6Xr9Qk.roa Signing time: Thu 01 Jan 2026 04:17:48 +0000 ROA not before: Thu 01 Jan 2026 04:17:48 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 199152 IP address blocks: 2a0e:7f07::/32 maxlen: 32 2a0f:9d00::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/11/5e0ee1-c833-4241-960a-e5768d6b182c/1/uqDyWO70sr9LuqhDDB5YyowYjqc.crl rsync://rpki.ripe.net/repository/DEFAULT/11/5e0ee1-c833-4241-960a-e5768d6b182c/1/uqDyWO70sr9LuqhDDB5YyowYjqc.mft rsync://rpki.ripe.net/repository/DEFAULT/uqDyWO70sr9LuqhDDB5YyowYjqc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 07:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:77:c6:b0:3f:86:1c:1e:2c:9f:5b:23:7e:a3:30:01:00 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=baa0f258eef4b2bf4bbaa8430c1e58ca8c188ea7 Validity Not Before: Jan 1 04:17:48 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=62e62641a24db6e381ab77cf287fbcbfa5ebf509 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:94:53:90:a9:6e:4f:d3:ce:d6:90:f6:7d:2a:84: 5e:75:a6:c3:dc:af:45:a1:99:c1:82:e5:5e:cc:e3: 04:62:db:3b:dc:94:57:8b:5d:d1:ee:49:be:19:10: 0e:75:10:17:b6:11:8d:ec:ff:eb:c4:06:6c:e3:3b: 8b:d5:73:3a:a4:1f:c2:96:31:b4:20:19:d1:ca:4e: 66:42:45:69:43:1c:81:5d:08:67:a7:f6:f2:3b:6c: 94:d9:34:89:2e:b9:07:93:0a:b9:17:24:a2:9f:d4: e8:86:de:14:73:41:af:ab:ed:40:db:b4:49:19:72: fc:44:61:7f:f2:b0:bf:43:cd:c6:e0:10:01:ff:1a: f2:fe:7e:01:44:b7:ce:22:6f:04:9f:20:2b:6a:ad: ea:f0:ba:4e:8c:19:5c:e9:44:41:ac:5c:98:e3:8f: 63:f1:d6:f6:77:76:a5:04:59:77:91:cf:13:e2:59: 0b:aa:5d:6e:b9:67:d7:9f:f0:4e:8a:6f:35:1d:ad: 34:1b:63:e7:10:30:38:bf:f4:e6:6b:97:5a:ae:07: 17:ba:9e:bb:d3:b3:f8:e5:09:dd:28:9e:c6:f7:48: b6:14:9a:77:8e:63:c4:2c:b1:6f:43:ff:c4:08:c8: 20:04:fe:5d:48:80:f6:42:0d:fa:4c:af:53:2b:f1: f4:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 62:E6:26:41:A2:4D:B6:E3:81:AB:77:CF:28:7F:BC:BF:A5:EB:F5:09 X509v3 Authority Key Identifier: keyid:BA:A0:F2:58:EE:F4:B2:BF:4B:BA:A8:43:0C:1E:58:CA:8C:18:8E:A7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uqDyWO70sr9LuqhDDB5YyowYjqc.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/11/5e0ee1-c833-4241-960a-e5768d6b182c/1/YuYmQaJNtuOBq3fPKH-8v6Xr9Qk.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/11/5e0ee1-c833-4241-960a-e5768d6b182c/1/uqDyWO70sr9LuqhDDB5YyowYjqc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0e:7f07::/32 2a0f:9d00::/32 Signature Algorithm: sha256WithRSAEncryption 65:2a:71:64:78:c6:6b:b0:a1:28:37:00:88:ea:ee:74:64:fa: af:a7:02:64:7a:b5:2d:81:54:9b:10:0c:2f:6e:14:8b:a0:cf: a9:10:be:3e:dc:4c:72:0d:40:86:f9:2b:ff:68:2e:ed:1a:05: 83:ff:bc:f7:c1:c3:4e:aa:b2:e4:a6:ff:d3:ea:88:db:34:ed: bc:05:cd:a6:af:c6:49:31:05:d9:5f:f4:23:cc:7f:73:4a:ef: 4d:52:55:5e:16:41:d2:d6:56:cd:ee:4b:50:3f:f8:e7:23:4f: 68:f5:52:63:7e:79:64:3e:ac:c5:85:0e:85:e4:3e:b9:37:78: eb:32:db:54:2b:2d:67:25:fe:e2:e3:39:15:8e:49:bb:06:00: 0d:78:a0:08:dd:fc:ce:ee:c3:8a:01:33:7c:b0:a1:8e:53:ce: 13:c8:da:f8:a2:90:fa:1e:95:32:fe:09:37:9b:b4:ce:96:ab: 04:41:29:8d:f6:33:bb:b3:74:f1:15:f9:1d:e7:89:bf:39:5f: 1a:e3:c0:96:a4:5a:99:d7:36:70:9d:9c:88:ab:46:1a:0e:5e: e8:98:e8:73:b8:08:ba:45:a6:a1:06:83:b8:ca:55:9e:fa:9b: 65:24:c6:d3:7e:73:f4:80:5d:5c:b4:80:dd:46:a4:1b:eb:a6: 72:a4:7c:0b -----BEGIN CERTIFICATE----- MIIFBTCCA+2gAwIBAgISAZt3xrA/hhweLJ9bI36jMAEAMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGJhYTBmMjU4ZWVmNGIyYmY0YmJhYTg0MzBjMWU1OGNhOGMx ODhlYTcwHhcNMjYwMTAxMDQxNzQ4WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg2MmU2MjY0MWEyNGRiNmUzODFhYjc3Y2YyODdmYmNiZmE1ZWJmNTA5MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAlFOQqW5P087WkPZ9KoRedabD3K9F oZnBguVezOMEYts73JRXi13R7km+GRAOdRAXthGN7P/rxAZs4zuL1XM6pB/CljG0 IBnRyk5mQkVpQxyBXQhnp/byO2yU2TSJLrkHkwq5FySin9Toht4Uc0Gvq+1A27RJ GXL8RGF/8rC/Q83G4BAB/xry/n4BRLfOIm8EnyAraq3q8LpOjBlc6URBrFyY449j 8db2d3alBFl3kc8T4lkLql1uuWfXn/BOim81Ha00G2PnEDA4v/Tma5dargcXup67 07P45QndKJ7G90i2FJp3jmPELLFvQ//ECMggBP5dSID2Qg36TK9TK/H0swIDAQAB o4ICETCCAg0wHQYDVR0OBBYEFGLmJkGiTbbjgat3zyh/vL+l6/UJMB8GA1UdIwQY MBaAFLqg8lju9LK/S7qoQwweWMqMGI6nMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvdXFEeVdPNzBzcjlMdXFoRERCNVl5b3dZanFjLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xMS81ZTBlZTEtYzgzMy00MjQxLTk2MGEt ZTU3NjhkNmIxODJjLzEvWXVZbVFhSk50dU9CcTNmUEtILTh2NlhyOVFrLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xMS81ZTBlZTEtYzgzMy00MjQxLTk2MGEtZTU3NjhkNmIxODJj LzEvdXFEeVdPNzBzcjlMdXFoRERCNVl5b3dZanFjLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCcGCCsGAQUFBwEHAQH/BBgwFjAUBAIAAjAOAwUAKg5/BwMF ACoPnQAwDQYJKoZIhvcNAQELBQADggEBAGUqcWR4xmuwoSg3AIjq7nRk+q+nAmR6 tS2BVJsQDC9uFIugz6kQvj7cTHINQIb5K/9oLu0aBYP/vPfBw06qsuSm/9PqiNs0 7bwFzaavxkkxBdlf9CPMf3NK701SVV4WQdLWVs3uS1A/+OcjT2j1UmN+eWQ+rMWF DoXkPrk3eOsy21QrLWcl/uLjORWOSbsGAA14oAjd/M7uw4oBM3ywoY5TzhPI2vii kPoelTL+CTebtM6WqwRBKY32M7uzdPEV+R3nib85XxrjwJakWpnXNnCdnIirRhoO XuiY6HO4CLpFpqEGg7jKVZ76m2UkxtN+c/SAXVy0gN1GpBvrpnKkfAs= -----END CERTIFICATE-----Generated at Sun Jan 25 16:27:42 2026 by rpki-client