This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/83/8cb935-71a3-4db3-9f3f-7aa7fc359655/1/YPZWcAq3hKD_OGWN_6VEUrxB6aw.roa File: YPZWcAq3hKD_OGWN_6VEUrxB6aw.roa (raw, json) Hash identifier: iE4Fbg7p91f/ooVnXCF/WBwjpqnpexFi2sUHuiRma/0= Subject key identifier: 60:F6:56:70:0A:B7:84:A0:FF:38:65:8D:FF:A5:44:52:BC:41:E9:AC Certificate issuer: /CN=56b98f83ccbda7c19f004151c98b57c59d268f54 Certificate serial: 019B78A219FE305865CD743DA9879BB4FF2E Authority key identifier: 56:B9:8F:83:CC:BD:A7:C1:9F:00:41:51:C9:8B:57:C5:9D:26:8F:54 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VrmPg8y9p8GfAEFRyYtXxZ0mj1Q.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/83/8cb935-71a3-4db3-9f3f-7aa7fc359655/1/YPZWcAq3hKD_OGWN_6VEUrxB6aw.roa Signing time: Thu 01 Jan 2026 08:17:27 +0000 ROA not before: Thu 01 Jan 2026 08:17:27 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 206085 IP address blocks: 2001:3280::/29 maxlen: 29 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/83/8cb935-71a3-4db3-9f3f-7aa7fc359655/1/VrmPg8y9p8GfAEFRyYtXxZ0mj1Q.crl rsync://rpki.ripe.net/repository/DEFAULT/83/8cb935-71a3-4db3-9f3f-7aa7fc359655/1/VrmPg8y9p8GfAEFRyYtXxZ0mj1Q.mft rsync://rpki.ripe.net/repository/DEFAULT/VrmPg8y9p8GfAEFRyYtXxZ0mj1Q.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 07:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:78:a2:19:fe:30:58:65:cd:74:3d:a9:87:9b:b4:ff:2e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=56b98f83ccbda7c19f004151c98b57c59d268f54 Validity Not Before: Jan 1 08:17:27 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=60f656700ab784a0ff38658dffa54452bc41e9ac Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ee:f0:e7:57:fe:d8:ae:9d:34:05:ab:19:ce:d8: 38:da:bd:2b:84:76:3d:62:f9:ed:c6:7a:89:f2:31: 8a:b5:fc:50:ab:64:7b:d8:f2:80:3f:a2:3c:02:4a: ce:e1:7e:ce:b6:59:a8:39:38:c6:1a:34:52:de:ba: eb:6c:c0:89:c9:67:57:cc:bc:bf:bb:81:ac:9e:85: 0a:ff:02:7f:0e:30:35:d1:53:52:37:fb:38:80:e2: 6f:ec:0e:24:0f:a2:1e:3e:b9:d6:9b:8e:0c:ee:40: 2a:4b:62:ff:f6:75:fc:72:d5:74:7a:fa:46:17:9b: b5:bb:99:d4:3c:08:ef:94:c3:6e:b1:fb:7a:a3:88: 04:8c:e9:fe:69:94:bb:a0:8e:b2:35:60:30:2b:06: e1:c4:29:d6:8a:78:90:69:61:32:78:c0:67:c6:7d: 17:00:f1:fa:ff:b8:cb:f7:6f:5e:b7:5c:70:b2:34: e4:1e:b8:47:74:34:f0:ff:2d:4c:c7:f1:95:64:7b: 72:d8:63:7f:8f:de:ca:74:75:2c:f0:07:f1:fe:a5: 72:2c:43:46:cc:b8:6b:ae:23:8e:3c:26:4e:bf:60: 2a:59:84:5d:29:72:f0:76:34:04:a6:20:fc:32:81: 97:b4:48:b5:cd:d1:03:1f:26:27:17:53:2b:4d:84: ef:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 60:F6:56:70:0A:B7:84:A0:FF:38:65:8D:FF:A5:44:52:BC:41:E9:AC X509v3 Authority Key Identifier: keyid:56:B9:8F:83:CC:BD:A7:C1:9F:00:41:51:C9:8B:57:C5:9D:26:8F:54 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VrmPg8y9p8GfAEFRyYtXxZ0mj1Q.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/83/8cb935-71a3-4db3-9f3f-7aa7fc359655/1/YPZWcAq3hKD_OGWN_6VEUrxB6aw.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/83/8cb935-71a3-4db3-9f3f-7aa7fc359655/1/VrmPg8y9p8GfAEFRyYtXxZ0mj1Q.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:3280::/29 Signature Algorithm: sha256WithRSAEncryption 05:78:0f:80:bc:5c:a5:f6:ed:b4:23:a7:e0:ea:bd:48:5f:65: 2d:70:20:d8:8f:a6:51:a3:74:f0:ed:b6:37:9b:8a:34:64:66: 56:d3:ab:0b:d9:0b:82:c8:f8:c5:02:a8:e2:58:af:74:e9:ec: fc:11:3a:af:3b:d8:d9:29:d7:cc:62:66:e4:ec:8e:2f:3c:b2: 11:c5:42:23:03:9c:32:82:66:16:e1:3e:39:10:f3:9b:8f:0c: 2c:8c:5d:e1:fa:79:71:48:46:e5:2f:45:58:2b:c6:a0:7d:03: 37:d6:df:51:31:23:94:24:fc:f9:52:96:a4:6d:15:11:64:00: ff:92:62:fe:8e:89:5f:d4:93:8b:a9:93:90:03:2b:1f:3c:54: 48:15:df:fb:a5:64:17:ef:ba:3e:fe:1a:4c:49:0c:a6:9f:b6: 74:11:0b:c9:8a:dd:23:ff:5f:84:6a:cd:2f:19:f0:81:fc:12: e8:01:f1:31:b3:5c:b6:7a:c7:51:35:1d:29:fa:39:a4:88:53: 53:1c:d4:9d:36:49:39:5d:c2:17:00:17:79:47:73:c4:05:64: dd:c2:5e:0d:27:c2:dc:c1:94:f8:f8:28:44:86:76:ba:00:82: 19:f2:2a:3f:ba:e5:36:22:f6:c3:53:ef:4c:c9:04:1e:57:d1: 69:0f:d2:f2 -----BEGIN CERTIFICATE----- MIIE/jCCA+agAwIBAgISAZt4ohn+MFhlzXQ9qYebtP8uMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDU2Yjk4ZjgzY2NiZGE3YzE5ZjAwNDE1MWM5OGI1N2M1OWQy NjhmNTQwHhcNMjYwMTAxMDgxNzI3WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg2MGY2NTY3MDBhYjc4NGEwZmYzODY1OGRmZmE1NDQ1MmJjNDFlOWFjMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA7vDnV/7Yrp00BasZztg42r0rhHY9 YvntxnqJ8jGKtfxQq2R72PKAP6I8AkrO4X7OtlmoOTjGGjRS3rrrbMCJyWdXzLy/ u4GsnoUK/wJ/DjA10VNSN/s4gOJv7A4kD6IePrnWm44M7kAqS2L/9nX8ctV0evpG F5u1u5nUPAjvlMNusft6o4gEjOn+aZS7oI6yNWAwKwbhxCnWiniQaWEyeMBnxn0X APH6/7jL929et1xwsjTkHrhHdDTw/y1Mx/GVZHty2GN/j97KdHUs8Afx/qVyLENG zLhrriOOPCZOv2AqWYRdKXLwdjQEpiD8MoGXtEi1zdEDHyYnF1MrTYTvXQIDAQAB o4ICCjCCAgYwHQYDVR0OBBYEFGD2VnAKt4Sg/zhljf+lRFK8QemsMB8GA1UdIwQY MBaAFFa5j4PMvafBnwBBUcmLV8WdJo9UMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvVnJtUGc4eTlwOEdmQUVGUnlZdFh4WjBtajFRLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84My84Y2I5MzUtNzFhMy00ZGIzLTlmM2Yt N2FhN2ZjMzU5NjU1LzEvWVBaV2NBcTNoS0RfT0dXTl82VkVVcnhCNmF3LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC84My84Y2I5MzUtNzFhMy00ZGIzLTlmM2YtN2FhN2ZjMzU5NjU1 LzEvVnJtUGc4eTlwOEdmQUVGUnlZdFh4WjBtajFRLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCAGCCsGAQUFBwEHAQH/BBEwDzANBAIAAjAHAwUDIAEygDAN BgkqhkiG9w0BAQsFAAOCAQEABXgPgLxcpfbttCOn4Oq9SF9lLXAg2I+mUaN08O22 N5uKNGRmVtOrC9kLgsj4xQKo4livdOns/BE6rzvY2SnXzGJm5OyOLzyyEcVCIwOc MoJmFuE+ORDzm48MLIxd4fp5cUhG5S9FWCvGoH0DN9bfUTEjlCT8+VKWpG0VEWQA /5Ji/o6JX9STi6mTkAMrHzxUSBXf+6VkF++6Pv4aTEkMpp+2dBELyYrdI/9fhGrN LxnwgfwS6AHxMbNctnrHUTUdKfo5pIhTUxzUnTZJOV3CFwAXeUdzxAVk3cJeDSfC 3MGU+PgoRIZ2ugCCGfIqP7rlNiL2w1PvTMkEHlfRaQ/S8g== -----END CERTIFICATE-----Generated at Sun Jan 25 17:33:54 2026 by rpki-client