This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4c/40ade0-98da-4aa5-b817-6edc1b225625/1/Yt-w69_I1wza2CvDEypwz6EYLMA.roa File: Yt-w69_I1wza2CvDEypwz6EYLMA.roa (raw, json) Hash identifier: T9k6Uc+A+ePGrkY6SKOEbGhVQItgNDio3FncjOloEKs= Subject key identifier: 62:DF:B0:EB:DF:C8:D7:0C:DA:D8:2B:C3:13:2A:70:CF:A1:18:2C:C0 Certificate issuer: /CN=cfcd73f82c260da87386dcf7be26d5c5445526fa Certificate serial: 019B7C12AE15A7CA24C410AF097097CB093F Authority key identifier: CF:CD:73:F8:2C:26:0D:A8:73:86:DC:F7:BE:26:D5:C5:44:55:26:FA Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/z81z-CwmDahzhtz3vibVxURVJvo.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4c/40ade0-98da-4aa5-b817-6edc1b225625/1/Yt-w69_I1wza2CvDEypwz6EYLMA.roa Signing time: Fri 02 Jan 2026 00:19:17 +0000 ROA not before: Fri 02 Jan 2026 00:19:17 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 64486 IP address blocks: 2a09:d2c1:100::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4c/40ade0-98da-4aa5-b817-6edc1b225625/1/z81z-CwmDahzhtz3vibVxURVJvo.crl rsync://rpki.ripe.net/repository/DEFAULT/4c/40ade0-98da-4aa5-b817-6edc1b225625/1/z81z-CwmDahzhtz3vibVxURVJvo.mft rsync://rpki.ripe.net/repository/DEFAULT/z81z-CwmDahzhtz3vibVxURVJvo.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 13:21:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7c:12:ae:15:a7:ca:24:c4:10:af:09:70:97:cb:09:3f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=cfcd73f82c260da87386dcf7be26d5c5445526fa Validity Not Before: Jan 2 00:19:17 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=62dfb0ebdfc8d70cdad82bc3132a70cfa1182cc0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:9f:f6:49:48:26:5c:8f:45:04:2c:53:48:0f: fb:4e:e1:25:3f:a4:6e:6d:57:b5:ac:42:c3:c2:10: 94:f2:99:89:a6:86:66:64:6b:a5:42:0c:b3:91:e6: 8e:78:d0:9e:89:c0:bc:38:7f:5e:d7:6f:a5:91:a7: aa:2d:9d:42:84:11:48:97:95:8e:fa:b0:83:31:ec: 53:5f:50:68:2e:28:e2:67:6f:3f:b8:47:9b:0b:e7: e3:15:3d:39:23:c4:f1:2f:5f:fe:d3:89:99:ae:bf: 30:fb:ee:7e:84:71:64:3d:0d:f8:e0:2c:0f:eb:44: b4:ad:91:3b:48:b6:e6:98:6e:94:1c:22:90:08:18: 77:68:63:ea:78:e3:0e:e4:12:60:d9:9a:4d:7d:ba: d0:1e:80:b9:9e:58:68:d1:6c:c3:83:7f:61:60:52: 7a:14:6c:8c:93:40:43:83:68:39:05:8a:51:45:4f: 98:56:3b:a4:cd:25:94:b8:c5:90:f7:37:f5:5f:f3: cc:26:15:b7:20:77:22:a6:2b:4f:0d:cc:e4:96:d0: 68:3e:0b:43:df:73:39:8f:0c:2c:a9:b6:cb:88:49: d4:77:e1:2d:41:64:c5:ac:ab:ed:b0:17:7a:31:25: cf:40:62:99:18:ef:18:b9:00:4b:92:bc:b9:55:f8: 1c:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 62:DF:B0:EB:DF:C8:D7:0C:DA:D8:2B:C3:13:2A:70:CF:A1:18:2C:C0 X509v3 Authority Key Identifier: keyid:CF:CD:73:F8:2C:26:0D:A8:73:86:DC:F7:BE:26:D5:C5:44:55:26:FA X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/z81z-CwmDahzhtz3vibVxURVJvo.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/40ade0-98da-4aa5-b817-6edc1b225625/1/Yt-w69_I1wza2CvDEypwz6EYLMA.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/40ade0-98da-4aa5-b817-6edc1b225625/1/z81z-CwmDahzhtz3vibVxURVJvo.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a09:d2c1:100::/48 Signature Algorithm: sha256WithRSAEncryption 51:47:e9:ac:fa:96:c0:a1:7b:eb:de:7b:02:69:f4:80:11:ca: 4f:86:ea:5b:8b:59:da:a3:d0:3b:b1:19:ca:07:48:6b:35:73: 98:e6:ce:50:c4:aa:0d:ed:4b:e6:3e:4b:9e:b2:c0:a5:6f:cf: 08:ee:30:c9:bf:32:87:bc:99:ac:cc:02:3c:42:3f:6c:39:5b: c7:6e:9e:e7:58:f7:3c:9d:7f:f2:f0:db:90:d6:34:37:e6:25: eb:15:1a:20:dc:44:da:17:6c:8a:bc:d3:2e:6a:2e:2d:69:bd: bf:43:33:df:44:33:08:a5:4a:ac:c1:c7:37:87:67:9c:d5:c8: 14:5d:2a:1d:41:3f:4d:49:1f:aa:70:ae:67:7c:02:72:13:73: 52:85:cd:c1:a6:ef:70:bf:7d:11:30:12:39:d6:6a:77:54:6d: 9a:30:c9:c0:13:b4:36:cd:a1:cc:da:6d:41:f9:37:10:d6:53: cf:eb:78:81:f6:10:81:89:7f:a7:1d:b4:2f:ee:91:59:a6:22: b2:be:c7:7a:f8:4a:42:05:49:7d:1a:df:2a:c8:7e:18:58:99: 7a:37:fb:e8:fa:67:3e:8f:2d:da:8f:fb:a3:df:7c:02:1a:89: 0f:b0:67:e4:7e:47:2c:9c:9e:07:72:44:30:23:9f:df:ea:bf: 63:65:61:aa -----BEGIN CERTIFICATE----- MIIFADCCA+igAwIBAgISAZt8Eq4Vp8okxBCvCXCXywk/MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGNmY2Q3M2Y4MmMyNjBkYTg3Mzg2ZGNmN2JlMjZkNWM1NDQ1 NTI2ZmEwHhcNMjYwMTAyMDAxOTE3WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg2MmRmYjBlYmRmYzhkNzBjZGFkODJiYzMxMzJhNzBjZmExMTgyY2MwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqZ/2SUgmXI9FBCxTSA/7TuElP6Ru bVe1rELDwhCU8pmJpoZmZGulQgyzkeaOeNCeicC8OH9e12+lkaeqLZ1ChBFIl5WO +rCDMexTX1BoLijiZ28/uEebC+fjFT05I8TxL1/+04mZrr8w++5+hHFkPQ344CwP 60S0rZE7SLbmmG6UHCKQCBh3aGPqeOMO5BJg2ZpNfbrQHoC5nlho0WzDg39hYFJ6 FGyMk0BDg2g5BYpRRU+YVjukzSWUuMWQ9zf1X/PMJhW3IHcipitPDczkltBoPgtD 33M5jwwsqbbLiEnUd+EtQWTFrKvtsBd6MSXPQGKZGO8YuQBLkry5VfgcCwIDAQAB o4ICDDCCAggwHQYDVR0OBBYEFGLfsOvfyNcM2tgrwxMqcM+hGCzAMB8GA1UdIwQY MBaAFM/Nc/gsJg2oc4bc974m1cVEVSb6MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvejgxei1Dd21EYWh6aHR6M3ZpYlZ4VVJWSnZvLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80Yy80MGFkZTAtOThkYS00YWE1LWI4MTct NmVkYzFiMjI1NjI1LzEvWXQtdzY5X0kxd3phMkN2REV5cHd6NkVZTE1BLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC80Yy80MGFkZTAtOThkYS00YWE1LWI4MTctNmVkYzFiMjI1NjI1 LzEvejgxei1Dd21EYWh6aHR6M3ZpYlZ4VVJWSnZvLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAKgnSwQEA MA0GCSqGSIb3DQEBCwUAA4IBAQBRR+ms+pbAoXvr3nsCafSAEcpPhupbi1nao9A7 sRnKB0hrNXOY5s5QxKoN7UvmPkuessClb88I7jDJvzKHvJmszAI8Qj9sOVvHbp7n WPc8nX/y8NuQ1jQ35iXrFRog3ETaF2yKvNMuai4tab2/QzPfRDMIpUqswcc3h2ec 1cgUXSodQT9NSR+qcK5nfAJyE3NShc3Bpu9wv30RMBI51mp3VG2aMMnAE7Q2zaHM 2m1B+TcQ1lPP63iB9hCBiX+nHbQv7pFZpiKyvsd6+EpCBUl9Gt8qyH4YWJl6N/vo +mc+jy3aj/uj33wCGokPsGfkfkcsnJ4HckQwI5/f6r9jZWGq -----END CERTIFICATE-----Generated at Sun Jan 25 20:50:15 2026 by rpki-client