This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6f/211354-ebe4-4797-98f3-1b2ac35c09aa/1/YbKvoesrYXHEmFEjcVByq5eynzo.roa File: YbKvoesrYXHEmFEjcVByq5eynzo.roa (raw, json) Hash identifier: +DYa+fe9egpPIsRsJIXZUMAsEnq8jTNkWLMhIYMd4Q8= Subject key identifier: 61:B2:AF:A1:EB:2B:61:71:C4:98:51:23:71:50:72:AB:97:B2:9F:3A Certificate issuer: /CN=d588212bf5dace1080dc45e2c55b92ff85c6c192 Certificate serial: 019B76EB68CF120C622B9FDBB7570CBAB599 Authority key identifier: D5:88:21:2B:F5:DA:CE:10:80:DC:45:E2:C5:5B:92:FF:85:C6:C1:92 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1YghK_XazhCA3EXixVuS_4XGwZI.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6f/211354-ebe4-4797-98f3-1b2ac35c09aa/1/YbKvoesrYXHEmFEjcVByq5eynzo.roa Signing time: Thu 01 Jan 2026 00:18:17 +0000 ROA not before: Thu 01 Jan 2026 00:18:17 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 198260 IP address blocks: 2a01:8840:1c1::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/6f/211354-ebe4-4797-98f3-1b2ac35c09aa/1/1YghK_XazhCA3EXixVuS_4XGwZI.crl rsync://rpki.ripe.net/repository/DEFAULT/6f/211354-ebe4-4797-98f3-1b2ac35c09aa/1/1YghK_XazhCA3EXixVuS_4XGwZI.mft rsync://rpki.ripe.net/repository/DEFAULT/1YghK_XazhCA3EXixVuS_4XGwZI.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 09:01:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:76:eb:68:cf:12:0c:62:2b:9f:db:b7:57:0c:ba:b5:99 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d588212bf5dace1080dc45e2c55b92ff85c6c192 Validity Not Before: Jan 1 00:18:17 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=61b2afa1eb2b6171c4985123715072ab97b29f3a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:6c:6e:e0:24:bf:7f:85:1f:c2:68:35:ba:15: 48:86:e1:fe:4a:f9:15:55:5f:31:4d:67:40:0a:4d: 3a:1c:2c:46:b6:3d:4f:f3:fe:4f:dc:08:93:66:9d: 15:dc:3a:4c:41:db:52:b5:61:13:f0:b0:7e:ae:ef: b2:21:59:3e:79:e0:91:48:9a:f6:7c:aa:cf:a0:e9: 5c:a4:c1:00:2f:25:c8:18:9e:f5:4e:08:64:a0:83: 8a:4b:c5:f5:c9:de:19:08:71:40:01:fd:c9:8e:bc: 0c:b7:f1:4e:3f:af:f5:ce:cc:a5:7c:38:b4:28:47: 50:ea:c7:73:77:e1:8d:dd:9f:7d:37:89:6c:2b:45: 04:dc:00:38:18:ae:f8:99:61:e7:2e:2d:92:a1:01: 22:df:82:aa:42:f4:54:5a:db:39:5e:80:b1:0c:d8: 21:de:2f:49:07:cd:30:64:59:87:3e:f9:34:1a:bc: ab:1f:6d:f2:07:b9:ee:6e:fd:10:ff:fc:e1:45:9f: 70:9a:a8:3f:11:cf:09:d1:fd:4f:0b:34:53:66:11: bf:09:37:9f:c1:3d:39:76:a5:55:26:8a:f9:77:e5: fb:b6:89:0d:df:ec:81:1f:59:74:3a:ca:8b:cd:92: 3b:ef:0c:df:51:65:d1:48:bc:d6:14:0b:81:9f:14: 7e:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 61:B2:AF:A1:EB:2B:61:71:C4:98:51:23:71:50:72:AB:97:B2:9F:3A X509v3 Authority Key Identifier: keyid:D5:88:21:2B:F5:DA:CE:10:80:DC:45:E2:C5:5B:92:FF:85:C6:C1:92 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1YghK_XazhCA3EXixVuS_4XGwZI.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6f/211354-ebe4-4797-98f3-1b2ac35c09aa/1/YbKvoesrYXHEmFEjcVByq5eynzo.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/6f/211354-ebe4-4797-98f3-1b2ac35c09aa/1/1YghK_XazhCA3EXixVuS_4XGwZI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a01:8840:1c1::/48 Signature Algorithm: sha256WithRSAEncryption 92:9e:b5:e4:d5:3f:de:b9:c8:65:ba:13:d2:f7:cd:8b:be:69: f8:3a:65:0c:33:24:16:34:c9:16:6b:8a:c5:d0:75:53:29:2d: ad:1c:12:a3:fd:3b:cc:4c:20:e9:9b:03:96:e4:1a:b2:bb:34: 30:f6:b6:94:eb:31:09:d7:53:71:25:23:2d:9c:fc:07:63:21: 38:83:98:41:e8:8d:1d:f4:20:19:20:e3:fc:ee:2d:40:a7:fb: 46:61:e3:33:47:36:73:2c:22:26:4e:c2:3e:31:9a:63:21:54: 80:c7:df:aa:68:90:d2:4c:a0:0a:88:ea:a4:88:ed:65:ee:9d: a4:2b:fd:21:db:43:c4:94:41:25:51:11:45:6f:d4:f1:30:31: 26:98:eb:15:4a:2e:07:32:64:e4:6a:1e:a9:e3:71:82:4f:56: 9c:3f:b3:1c:06:16:8a:08:81:3b:58:f1:13:80:c0:f7:07:aa: e3:43:45:86:58:64:3b:cd:40:06:cb:c8:e3:af:56:15:67:47: 65:20:dd:40:f0:80:7f:de:77:44:44:d4:bb:44:a6:0c:33:a4: 68:b3:f6:d5:7e:b0:c2:8c:8e:ce:de:30:bc:b6:d5:8e:1d:46: d1:0a:62:52:c6:65:26:c6:d5:68:59:d7:ca:e4:2a:ac:78:83: 7f:ca:5b:60 -----BEGIN CERTIFICATE----- MIIFADCCA+igAwIBAgISAZt262jPEgxiK5/bt1cMurWZMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGQ1ODgyMTJiZjVkYWNlMTA4MGRjNDVlMmM1NWI5MmZmODVj NmMxOTIwHhcNMjYwMTAxMDAxODE3WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg2MWIyYWZhMWViMmI2MTcxYzQ5ODUxMjM3MTUwNzJhYjk3YjI5ZjNhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtGxu4CS/f4Ufwmg1uhVIhuH+SvkV VV8xTWdACk06HCxGtj1P8/5P3AiTZp0V3DpMQdtStWET8LB+ru+yIVk+eeCRSJr2 fKrPoOlcpMEALyXIGJ71TghkoIOKS8X1yd4ZCHFAAf3JjrwMt/FOP6/1zsylfDi0 KEdQ6sdzd+GN3Z99N4lsK0UE3AA4GK74mWHnLi2SoQEi34KqQvRUWts5XoCxDNgh 3i9JB80wZFmHPvk0GryrH23yB7nubv0Q//zhRZ9wmqg/Ec8J0f1PCzRTZhG/CTef wT05dqVVJor5d+X7tokN3+yBH1l0OsqLzZI77wzfUWXRSLzWFAuBnxR+ZwIDAQAB o4ICDDCCAggwHQYDVR0OBBYEFGGyr6HrK2FxxJhRI3FQcquXsp86MB8GA1UdIwQY MBaAFNWIISv12s4QgNxF4sVbkv+FxsGSMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvMVlnaEtfWGF6aENBM0VYaXhWdVNfNFhHd1pJLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82Zi8yMTEzNTQtZWJlNC00Nzk3LTk4ZjMt MWIyYWMzNWMwOWFhLzEvWWJLdm9lc3JZWEhFbUZFamNWQnlxNWV5bnpvLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC82Zi8yMTEzNTQtZWJlNC00Nzk3LTk4ZjMtMWIyYWMzNWMwOWFh LzEvMVlnaEtfWGF6aENBM0VYaXhWdVNfNFhHd1pJLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAKgGIQAHB MA0GCSqGSIb3DQEBCwUAA4IBAQCSnrXk1T/euchluhPS982Lvmn4OmUMMyQWNMkW a4rF0HVTKS2tHBKj/TvMTCDpmwOW5BqyuzQw9raU6zEJ11NxJSMtnPwHYyE4g5hB 6I0d9CAZIOP87i1Ap/tGYeMzRzZzLCImTsI+MZpjIVSAx9+qaJDSTKAKiOqkiO1l 7p2kK/0h20PElEElURFFb9TxMDEmmOsVSi4HMmTkah6p43GCT1acP7McBhaKCIE7 WPETgMD3B6rjQ0WGWGQ7zUAGy8jjr1YVZ0dlIN1A8IB/3ndERNS7RKYMM6Ros/bV frDCjI7O3jC8ttWOHUbRCmJSxmUmxtVoWdfK5CqseIN/yltg -----END CERTIFICATE-----Generated at Sun Jan 25 20:01:08 2026 by rpki-client