This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/23/f65610-59f6-4ad6-a9d8-1470ac364dd2/1/ty1ff7-sDyLx4nDkaEvA6OsoOtQ.roa File: ty1ff7-sDyLx4nDkaEvA6OsoOtQ.roa (raw, json) Hash identifier: jgvaKJ/trlHrZqFZbc1zXXkzbtQm22Rj/n2MqvbIbWk= Subject key identifier: B7:2D:5F:7F:BF:AC:0F:22:F1:E2:70:E4:68:4B:C0:E8:EB:28:3A:D4 Certificate issuer: /CN=979f5ca8c33f134c3c157d48b9c2ae4e91b630bf Certificate serial: 019B7F82C9372C3E685EB7FA1A14135AB4CB Authority key identifier: 97:9F:5C:A8:C3:3F:13:4C:3C:15:7D:48:B9:C2:AE:4E:91:B6:30:BF Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/l59cqMM_E0w8FX1IucKuTpG2ML8.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/23/f65610-59f6-4ad6-a9d8-1470ac364dd2/1/ty1ff7-sDyLx4nDkaEvA6OsoOtQ.roa Signing time: Fri 02 Jan 2026 16:20:36 +0000 ROA not before: Fri 02 Jan 2026 16:20:36 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 47943 IP address blocks: 2001:b18:1017::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/23/f65610-59f6-4ad6-a9d8-1470ac364dd2/1/l59cqMM_E0w8FX1IucKuTpG2ML8.crl rsync://rpki.ripe.net/repository/DEFAULT/23/f65610-59f6-4ad6-a9d8-1470ac364dd2/1/l59cqMM_E0w8FX1IucKuTpG2ML8.mft rsync://rpki.ripe.net/repository/DEFAULT/l59cqMM_E0w8FX1IucKuTpG2ML8.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 25 Jan 2026 22:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7f:82:c9:37:2c:3e:68:5e:b7:fa:1a:14:13:5a:b4:cb Signature Algorithm: sha256WithRSAEncryption Issuer: CN=979f5ca8c33f134c3c157d48b9c2ae4e91b630bf Validity Not Before: Jan 2 16:20:36 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=b72d5f7fbfac0f22f1e270e4684bc0e8eb283ad4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e6:a0:12:49:d8:d8:ae:93:90:4f:37:74:4a:4a: c1:98:99:12:bf:05:aa:18:e9:d9:c6:82:f1:1b:68: 34:69:87:bd:37:05:09:2e:2c:20:f9:9c:6a:7e:db: 71:84:21:d5:d0:f3:19:aa:0e:0b:ca:ac:71:2b:dc: 88:2e:46:ed:f8:90:73:2e:b1:bc:a9:de:b8:39:96: c6:3e:34:2f:4a:a1:bc:e8:92:d9:67:08:4a:42:68: 01:1a:23:3c:2e:8b:d6:13:89:ad:b4:0d:87:dd:2f: b1:62:5f:88:ce:91:30:f4:79:a7:11:8e:0a:59:0d: 76:ac:85:1e:ad:71:23:a6:b6:d0:e3:cf:39:20:91: c6:fe:8a:31:a2:7e:d4:8f:7e:81:c3:ca:bb:b0:89: db:63:49:3c:c1:e0:01:27:01:33:5b:c3:fd:f7:13: 78:4a:49:bb:18:6c:82:d2:06:0d:0f:bf:0a:b6:fa: 75:2b:f1:19:2f:ac:44:62:3c:85:08:f2:42:7c:8f: 4b:25:4c:05:cb:2c:40:bd:ce:00:c7:62:c2:51:dd: f0:52:61:49:ad:26:23:67:13:ca:42:54:36:39:a0: 18:11:8d:b4:aa:27:96:73:5b:07:4b:49:60:05:5a: 5d:8a:d5:a0:59:eb:1a:2f:09:f9:10:f9:d1:5c:c0: 76:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B7:2D:5F:7F:BF:AC:0F:22:F1:E2:70:E4:68:4B:C0:E8:EB:28:3A:D4 X509v3 Authority Key Identifier: keyid:97:9F:5C:A8:C3:3F:13:4C:3C:15:7D:48:B9:C2:AE:4E:91:B6:30:BF X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/l59cqMM_E0w8FX1IucKuTpG2ML8.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/23/f65610-59f6-4ad6-a9d8-1470ac364dd2/1/ty1ff7-sDyLx4nDkaEvA6OsoOtQ.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/23/f65610-59f6-4ad6-a9d8-1470ac364dd2/1/l59cqMM_E0w8FX1IucKuTpG2ML8.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:b18:1017::/48 Signature Algorithm: sha256WithRSAEncryption ab:48:19:47:67:d6:52:6b:ee:f2:18:47:06:a4:db:b9:07:f5: 16:38:0b:a9:ed:40:3a:83:7b:1b:8f:d7:1c:9f:76:4d:14:35: 1b:f3:04:75:37:27:b3:66:1f:5d:31:3d:c4:a9:9a:8c:65:4e: 70:26:7d:06:89:01:1c:f7:41:bf:f3:7b:a8:7b:8c:29:7e:92: ce:a8:61:da:e8:c9:0b:bf:cf:96:24:d8:42:0c:d1:b3:ab:9c: bf:cc:7d:29:ae:6c:d2:71:08:62:48:ac:ea:94:f0:9a:c9:da: f0:07:4e:ad:c4:32:62:49:e4:db:19:12:59:32:1e:a8:31:be: e5:92:e1:31:22:28:8b:38:f8:89:cc:5b:36:f9:35:d8:fe:f6: d0:72:d1:fe:9a:36:be:93:8c:d2:a8:41:6d:d0:5b:49:bd:d2: 69:43:b5:bd:d8:c4:3b:1a:90:d7:a2:c5:e8:bd:22:3d:91:0d: 20:fe:0f:45:ff:dc:14:69:69:d6:63:3f:65:3f:d5:29:5e:de: 26:23:49:44:2a:ce:55:25:fc:af:82:c4:89:e0:6c:51:39:9b: 4d:94:2e:00:25:04:9a:f0:39:db:18:7a:7d:ef:b6:06:b9:eb: ac:9c:09:d0:80:b6:c7:bb:3c:47:17:76:a3:a3:64:e9:b6:b3: 5e:71:1a:e5 -----BEGIN CERTIFICATE----- MIIFADCCA+igAwIBAgISAZt/gsk3LD5oXrf6GhQTWrTLMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDk3OWY1Y2E4YzMzZjEzNGMzYzE1N2Q0OGI5YzJhZTRlOTFi NjMwYmYwHhcNMjYwMTAyMTYyMDM2WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhiNzJkNWY3ZmJmYWMwZjIyZjFlMjcwZTQ2ODRiYzBlOGViMjgzYWQ0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA5qASSdjYrpOQTzd0SkrBmJkSvwWq GOnZxoLxG2g0aYe9NwUJLiwg+ZxqfttxhCHV0PMZqg4LyqxxK9yILkbt+JBzLrG8 qd64OZbGPjQvSqG86JLZZwhKQmgBGiM8LovWE4mttA2H3S+xYl+IzpEw9HmnEY4K WQ12rIUerXEjprbQ4885IJHG/ooxon7Uj36Bw8q7sInbY0k8weABJwEzW8P99xN4 Skm7GGyC0gYND78Ktvp1K/EZL6xEYjyFCPJCfI9LJUwFyyxAvc4Ax2LCUd3wUmFJ rSYjZxPKQlQ2OaAYEY20qieWc1sHS0lgBVpditWgWesaLwn5EPnRXMB2QwIDAQAB o4ICDDCCAggwHQYDVR0OBBYEFLctX3+/rA8i8eJw5GhLwOjrKDrUMB8GA1UdIwQY MBaAFJefXKjDPxNMPBV9SLnCrk6RtjC/MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvbDU5Y3FNTV9FMHc4RlgxSXVjS3VUcEcyTUw4LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yMy9mNjU2MTAtNTlmNi00YWQ2LWE5ZDgt MTQ3MGFjMzY0ZGQyLzEvdHkxZmY3LXNEeUx4NG5Ea2FFdkE2T3NvT3RRLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yMy9mNjU2MTAtNTlmNi00YWQ2LWE5ZDgtMTQ3MGFjMzY0ZGQy LzEvbDU5Y3FNTV9FMHc4RlgxSXVjS3VUcEcyTUw4LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAIAELGBAX MA0GCSqGSIb3DQEBCwUAA4IBAQCrSBlHZ9ZSa+7yGEcGpNu5B/UWOAup7UA6g3sb j9ccn3ZNFDUb8wR1NyezZh9dMT3EqZqMZU5wJn0GiQEc90G/83uoe4wpfpLOqGHa 6MkLv8+WJNhCDNGzq5y/zH0prmzScQhiSKzqlPCaydrwB06txDJiSeTbGRJZMh6o Mb7lkuExIiiLOPiJzFs2+TXY/vbQctH+mja+k4zSqEFt0FtJvdJpQ7W92MQ7GpDX osXovSI9kQ0g/g9F/9wUaWnWYz9lP9UpXt4mI0lEKs5VJfyvgsSJ4GxROZtNlC4A JQSa8DnbGHp977YGueusnAnQgLbHuzxHF3ajo2TptrNecRrl -----END CERTIFICATE-----Generated at Sun Jan 25 05:56:38 2026 by rpki-client