This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6d/f0cfa7-6254-4a81-996c-3b7ef25cfe83/1/NyYE3UHHBaBD3ue76kpyUryE20o.roa File: NyYE3UHHBaBD3ue76kpyUryE20o.roa (raw, json) Hash identifier: FScu0FQsDxlcDVgtQ7BPeCNgRoM/ijvtnVWyLkhXy8k= Subject key identifier: 37:26:04:DD:41:C7:05:A0:43:DE:E7:BB:EA:4A:72:52:BC:84:DB:4A Certificate issuer: /CN=a60e46d63a7183f70da492f02b8098c2bffc28be Certificate serial: 019B7911062B02B52849A52937B6F4E54466 Authority key identifier: A6:0E:46:D6:3A:71:83:F7:0D:A4:92:F0:2B:80:98:C2:BF:FC:28:BE Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pg5G1jpxg_cNpJLwK4CYwr_8KL4.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6d/f0cfa7-6254-4a81-996c-3b7ef25cfe83/1/NyYE3UHHBaBD3ue76kpyUryE20o.roa Signing time: Thu 01 Jan 2026 10:18:37 +0000 ROA not before: Thu 01 Jan 2026 10:18:37 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 20712 IP address blocks: 2001:67c:a18::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/6d/f0cfa7-6254-4a81-996c-3b7ef25cfe83/1/pg5G1jpxg_cNpJLwK4CYwr_8KL4.crl rsync://rpki.ripe.net/repository/DEFAULT/6d/f0cfa7-6254-4a81-996c-3b7ef25cfe83/1/pg5G1jpxg_cNpJLwK4CYwr_8KL4.mft rsync://rpki.ripe.net/repository/DEFAULT/pg5G1jpxg_cNpJLwK4CYwr_8KL4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 07:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:79:11:06:2b:02:b5:28:49:a5:29:37:b6:f4:e5:44:66 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=a60e46d63a7183f70da492f02b8098c2bffc28be Validity Not Before: Jan 1 10:18:37 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=372604dd41c705a043dee7bbea4a7252bc84db4a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:df:90:aa:09:b0:e7:72:d0:23:43:a0:9a:b0: 1f:d6:db:5f:24:e3:26:60:cf:41:1f:d9:7a:af:b4: e7:98:17:4d:ea:36:07:a8:ab:90:2c:e5:93:10:13: de:4c:eb:20:35:35:b2:01:68:7d:77:83:da:12:bb: d8:26:e0:4c:5e:47:18:4e:95:7a:1c:01:b4:93:73: ef:50:26:b5:c5:02:47:1f:ed:a2:25:9a:9b:05:36: c2:0d:9e:91:74:25:69:8c:f8:67:8f:e6:0c:e8:4d: 4d:b4:94:df:90:01:dc:21:9f:23:8e:50:ad:73:c7: 6f:35:03:15:14:55:19:a1:cf:04:31:cf:50:53:84: bc:8b:12:b0:73:f5:aa:a6:3f:ec:67:94:5b:c6:97: 0e:79:3a:5a:47:59:f7:dc:2b:95:d6:98:ee:db:87: 3b:bb:5b:3d:be:61:58:29:33:45:fd:e9:f1:5f:1c: a5:e2:52:b5:c8:b3:0e:4d:e0:2b:f5:13:b5:a7:a2: 6c:ce:85:c7:3a:72:85:70:bd:d8:c5:1e:7a:e8:78: ed:19:b3:05:e1:b0:b1:9e:cf:3a:80:ef:ed:ed:50: c5:4e:f6:35:8e:38:a3:03:f0:8a:1d:eb:31:67:c4: ad:59:a3:8d:5f:59:a1:97:b6:25:84:03:bc:46:4a: 92:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 37:26:04:DD:41:C7:05:A0:43:DE:E7:BB:EA:4A:72:52:BC:84:DB:4A X509v3 Authority Key Identifier: keyid:A6:0E:46:D6:3A:71:83:F7:0D:A4:92:F0:2B:80:98:C2:BF:FC:28:BE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pg5G1jpxg_cNpJLwK4CYwr_8KL4.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6d/f0cfa7-6254-4a81-996c-3b7ef25cfe83/1/NyYE3UHHBaBD3ue76kpyUryE20o.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/6d/f0cfa7-6254-4a81-996c-3b7ef25cfe83/1/pg5G1jpxg_cNpJLwK4CYwr_8KL4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:67c:a18::/48 Signature Algorithm: sha256WithRSAEncryption 29:aa:35:0f:2d:b0:86:49:07:b2:6e:3b:40:a0:d7:0c:1c:06: 53:d7:f7:ec:13:a9:d6:29:53:8a:b4:76:71:6d:f4:35:5c:49: db:f3:4d:36:70:9a:77:cd:08:a0:e4:80:cb:9b:82:98:ef:d5: c5:e2:bc:ab:83:81:79:c1:dd:71:d6:b9:45:ba:a9:7f:13:95: ba:bd:aa:18:42:42:ec:b7:63:d8:e9:36:04:c4:c0:b2:d4:da: 08:0f:51:57:fe:fe:17:8b:8f:77:e3:48:4c:e0:07:72:d7:9f: e0:f2:78:40:e1:cf:91:92:c2:f3:20:5b:55:c9:eb:45:ee:4e: 6c:7e:47:fe:0c:1b:c3:2e:3c:5b:69:5a:33:4d:0f:33:59:51: 33:22:a3:86:23:8b:16:95:9a:17:20:6e:f9:24:7a:66:c2:84: 28:6b:2b:b6:47:a6:0a:d0:c7:6c:e6:d8:f8:49:9a:4f:67:91: d9:de:8d:ac:44:8d:19:b8:b8:f8:e1:f8:a2:cb:be:f2:12:f1: 81:f7:8d:16:2e:4f:fd:5a:1f:a6:44:2b:df:ea:d9:3b:af:ae: e9:a1:e6:3b:e1:a3:b2:6e:f1:e6:71:a1:39:e0:b1:15:4f:7c: dd:20:30:a0:83:2e:fd:58:45:25:dc:8e:b4:71:3a:c4:ae:2e: 93:7f:33:4a -----BEGIN CERTIFICATE----- MIIFADCCA+igAwIBAgISAZt5EQYrArUoSaUpN7b05URmMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGE2MGU0NmQ2M2E3MTgzZjcwZGE0OTJmMDJiODA5OGMyYmZm YzI4YmUwHhcNMjYwMTAxMTAxODM3WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygzNzI2MDRkZDQxYzcwNWEwNDNkZWU3YmJlYTRhNzI1MmJjODRkYjRhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvd+Qqgmw53LQI0OgmrAf1ttfJOMm YM9BH9l6r7TnmBdN6jYHqKuQLOWTEBPeTOsgNTWyAWh9d4PaErvYJuBMXkcYTpV6 HAG0k3PvUCa1xQJHH+2iJZqbBTbCDZ6RdCVpjPhnj+YM6E1NtJTfkAHcIZ8jjlCt c8dvNQMVFFUZoc8EMc9QU4S8ixKwc/Wqpj/sZ5RbxpcOeTpaR1n33CuV1pju24c7 u1s9vmFYKTNF/enxXxyl4lK1yLMOTeAr9RO1p6JszoXHOnKFcL3YxR566HjtGbMF 4bCxns86gO/t7VDFTvY1jjijA/CKHesxZ8StWaONX1mhl7YlhAO8RkqScQIDAQAB o4ICDDCCAggwHQYDVR0OBBYEFDcmBN1BxwWgQ97nu+pKclK8hNtKMB8GA1UdIwQY MBaAFKYORtY6cYP3DaSS8CuAmMK//Ci+MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvcGc1RzFqcHhnX2NOcEpMd0s0Q1l3cl84S0w0LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82ZC9mMGNmYTctNjI1NC00YTgxLTk5NmMt M2I3ZWYyNWNmZTgzLzEvTnlZRTNVSEhCYUJEM3VlNzZrcHlVcnlFMjBvLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC82ZC9mMGNmYTctNjI1NC00YTgxLTk5NmMtM2I3ZWYyNWNmZTgz LzEvcGc1RzFqcHhnX2NOcEpMd0s0Q1l3cl84S0w0LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAIAEGfAoY MA0GCSqGSIb3DQEBCwUAA4IBAQApqjUPLbCGSQeybjtAoNcMHAZT1/fsE6nWKVOK tHZxbfQ1XEnb8002cJp3zQig5IDLm4KY79XF4ryrg4F5wd1x1rlFuql/E5W6vaoY QkLst2PY6TYExMCy1NoID1FX/v4Xi49340hM4Ady15/g8nhA4c+RksLzIFtVyetF 7k5sfkf+DBvDLjxbaVozTQ8zWVEzIqOGI4sWlZoXIG75JHpmwoQoayu2R6YK0Mds 5tj4SZpPZ5HZ3o2sRI0ZuLj44fiiy77yEvGB940WLk/9Wh+mRCvf6tk7r67poeY7 4aOybvHmcaE54LEVT3zdIDCggy79WEUl3I60cTrEri6TfzNK -----END CERTIFICATE-----Generated at Sun Jan 25 17:41:44 2026 by rpki-client