This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/42/f00ccc-ec3f-40df-a9fc-7cc79917300a/1/yDFjBcpO_rK8R2DYPm8fJ39oFdA.roa File: yDFjBcpO_rK8R2DYPm8fJ39oFdA.roa (raw, json) Hash identifier: B955P2LGm+p4uxnj3O6YVa6b5/IJbwPos+qiuEjVJ94= Subject key identifier: C8:31:63:05:CA:4E:FE:B2:BC:47:60:D8:3E:6F:1F:27:7F:68:15:D0 Certificate issuer: /CN=2dbdb89fb4118ffa55fafdbf45e19282be0e7acf Certificate serial: 019B7758F6B38B516C93E6F5158C874D77A6 Authority key identifier: 2D:BD:B8:9F:B4:11:8F:FA:55:FA:FD:BF:45:E1:92:82:BE:0E:7A:CF Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Lb24n7QRj_pV-v2_ReGSgr4Oes8.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/42/f00ccc-ec3f-40df-a9fc-7cc79917300a/1/yDFjBcpO_rK8R2DYPm8fJ39oFdA.roa Signing time: Thu 01 Jan 2026 02:17:57 +0000 ROA not before: Thu 01 Jan 2026 02:17:57 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 34182 IP address blocks: 2a00:5647::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/42/f00ccc-ec3f-40df-a9fc-7cc79917300a/1/Lb24n7QRj_pV-v2_ReGSgr4Oes8.crl rsync://rpki.ripe.net/repository/DEFAULT/42/f00ccc-ec3f-40df-a9fc-7cc79917300a/1/Lb24n7QRj_pV-v2_ReGSgr4Oes8.mft rsync://rpki.ripe.net/repository/DEFAULT/Lb24n7QRj_pV-v2_ReGSgr4Oes8.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 20:01:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:77:58:f6:b3:8b:51:6c:93:e6:f5:15:8c:87:4d:77:a6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2dbdb89fb4118ffa55fafdbf45e19282be0e7acf Validity Not Before: Jan 1 02:17:57 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=c8316305ca4efeb2bc4760d83e6f1f277f6815d0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e1:c2:96:c4:ad:b1:cf:6e:93:21:65:1d:be:f7: f6:8c:fb:5b:0c:33:7a:35:8a:a3:65:42:9e:a5:59: 88:86:da:5c:8b:7e:8f:36:9c:63:9b:0b:95:0f:38: e6:f4:0c:28:c7:fb:e2:e7:b4:10:8f:2c:5d:6e:9a: 10:76:e5:0f:57:04:54:17:e6:15:ad:bd:bb:5e:67: 6f:01:c6:e0:ca:17:54:52:94:ba:0e:85:ae:1f:b5: 66:1c:ee:50:80:eb:d9:08:8e:07:bc:09:70:4d:3a: 8e:c7:5d:7a:72:79:19:19:f4:e8:75:9b:8b:15:e8: 37:8e:1c:cd:f5:9b:48:51:9c:c5:f5:1d:d5:0e:88: 60:ec:d8:b6:c9:e9:95:75:33:f7:68:e2:18:d3:ed: 25:56:85:f0:b2:e1:62:16:a3:41:14:a4:96:79:20: 42:a8:b0:ac:0a:a6:65:0a:87:95:88:90:14:35:6f: 57:b1:18:1f:4a:54:42:0b:6e:23:53:94:71:d3:61: f6:4c:07:74:20:62:1c:c0:7e:21:9c:65:67:e0:a9: d2:b4:6c:3c:39:1e:82:5f:4e:fc:3c:83:8d:c6:59: 81:8c:aa:a3:23:a4:3a:c9:84:61:77:ee:06:43:f2: 81:6e:7f:82:53:2b:d1:26:bc:b0:b3:61:d4:eb:e8: cb:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C8:31:63:05:CA:4E:FE:B2:BC:47:60:D8:3E:6F:1F:27:7F:68:15:D0 X509v3 Authority Key Identifier: keyid:2D:BD:B8:9F:B4:11:8F:FA:55:FA:FD:BF:45:E1:92:82:BE:0E:7A:CF X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Lb24n7QRj_pV-v2_ReGSgr4Oes8.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/42/f00ccc-ec3f-40df-a9fc-7cc79917300a/1/yDFjBcpO_rK8R2DYPm8fJ39oFdA.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/42/f00ccc-ec3f-40df-a9fc-7cc79917300a/1/Lb24n7QRj_pV-v2_ReGSgr4Oes8.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a00:5647::/32 Signature Algorithm: sha256WithRSAEncryption 39:e3:ab:ca:b5:a1:24:40:be:19:cb:74:e4:f2:2c:16:d7:d0: 07:f4:cf:56:4c:e3:db:14:89:f0:26:9b:70:bf:85:02:43:1a: 17:e9:8b:c5:f3:64:a5:96:92:39:af:9b:9e:3b:8d:df:c4:e1: 46:14:c1:cc:9f:d9:49:9d:97:51:66:85:99:9e:47:96:a8:be: 07:5b:39:92:b7:a0:41:5a:1d:52:a3:79:4b:c0:2a:d0:80:15: 9a:b2:37:fb:3c:ed:17:e9:ff:3b:3c:c9:dd:6c:58:bf:0a:40: 05:5a:9a:50:10:d6:29:b1:c9:df:70:d5:d2:e1:54:c7:0e:64: f4:8a:27:42:7e:37:b9:79:d2:64:7e:ed:45:60:1d:7b:f9:9f: e9:56:52:7a:6b:97:95:49:8b:6e:2f:6e:48:62:26:84:b9:f8: b4:b9:c0:c0:a7:17:03:42:d5:40:7f:38:14:1e:11:64:b0:7f: 65:df:b5:a0:de:4b:f8:70:aa:eb:bb:3e:37:af:3a:48:db:87: 9f:5e:b6:9d:d7:15:d9:e4:d5:86:bc:ac:4a:29:88:35:4f:8f: df:60:c9:0b:bf:98:0e:17:de:a3:e1:8e:43:98:3b:08:04:ef: 40:e4:76:8c:f3:69:f3:86:f0:6a:41:f1:1f:89:b5:c5:7c:d4: 1f:fa:3f:b8 -----BEGIN CERTIFICATE----- MIIE/jCCA+agAwIBAgISAZt3WPazi1Fsk+b1FYyHTXemMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJkYmRiODlmYjQxMThmZmE1NWZhZmRiZjQ1ZTE5MjgyYmUw ZTdhY2YwHhcNMjYwMTAxMDIxNzU3WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhjODMxNjMwNWNhNGVmZWIyYmM0NzYwZDgzZTZmMWYyNzdmNjgxNWQwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA4cKWxK2xz26TIWUdvvf2jPtbDDN6 NYqjZUKepVmIhtpci36PNpxjmwuVDzjm9Awox/vi57QQjyxdbpoQduUPVwRUF+YV rb27XmdvAcbgyhdUUpS6DoWuH7VmHO5QgOvZCI4HvAlwTTqOx116cnkZGfTodZuL Feg3jhzN9ZtIUZzF9R3VDohg7Ni2yemVdTP3aOIY0+0lVoXwsuFiFqNBFKSWeSBC qLCsCqZlCoeViJAUNW9XsRgfSlRCC24jU5Rx02H2TAd0IGIcwH4hnGVn4KnStGw8 OR6CX078PIONxlmBjKqjI6Q6yYRhd+4GQ/KBbn+CUyvRJryws2HU6+jLYQIDAQAB o4ICCjCCAgYwHQYDVR0OBBYEFMgxYwXKTv6yvEdg2D5vHyd/aBXQMB8GA1UdIwQY MBaAFC29uJ+0EY/6Vfr9v0XhkoK+DnrPMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvTGIyNG43UVJqX3BWLXYyX1JlR1NncjRPZXM4LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80Mi9mMDBjY2MtZWMzZi00MGRmLWE5ZmMt N2NjNzk5MTczMDBhLzEveURGakJjcE9fcks4UjJEWVBtOGZKMzlvRmRBLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC80Mi9mMDBjY2MtZWMzZi00MGRmLWE5ZmMtN2NjNzk5MTczMDBh LzEvTGIyNG43UVJqX3BWLXYyX1JlR1NncjRPZXM4LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCAGCCsGAQUFBwEHAQH/BBEwDzANBAIAAjAHAwUAKgBWRzAN BgkqhkiG9w0BAQsFAAOCAQEAOeOryrWhJEC+Gct05PIsFtfQB/TPVkzj2xSJ8Cab cL+FAkMaF+mLxfNkpZaSOa+bnjuN38ThRhTBzJ/ZSZ2XUWaFmZ5Hlqi+B1s5kreg QVodUqN5S8Aq0IAVmrI3+zztF+n/OzzJ3WxYvwpABVqaUBDWKbHJ33DV0uFUxw5k 9IonQn43uXnSZH7tRWAde/mf6VZSemuXlUmLbi9uSGImhLn4tLnAwKcXA0LVQH84 FB4RZLB/Zd+1oN5L+HCq67s+N686SNuHn162ndcV2eTVhrysSimINU+P32DJC7+Y Dhfeo+GOQ5g7CATvQOR2jPNp84bwakHxH4m1xXzUH/o/uA== -----END CERTIFICATE-----Generated at Mon Jan 26 03:27:36 2026 by rpki-client