This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/87/931927-9f38-41b6-87fa-254acd92b4e1/1/nYq1bioZ2vuY3Rx5KeiuPIpm9K4.roa File: nYq1bioZ2vuY3Rx5KeiuPIpm9K4.roa (raw, json) Hash identifier: CmOI6EFvrz2q10h/34RtY2ze+cAxMH/PPioWanVwDQo= Subject key identifier: 9D:8A:B5:6E:2A:19:DA:FB:98:DD:1C:79:29:E8:AE:3C:8A:66:F4:AE Certificate issuer: /CN=a576eb2cc462e6e4bf0de69b9f634875debbaae2 Certificate serial: 019B783456E2455DBF82D25C4008AB19171D Authority key identifier: A5:76:EB:2C:C4:62:E6:E4:BF:0D:E6:9B:9F:63:48:75:DE:BB:AA:E2 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pXbrLMRi5uS_Deabn2NIdd67quI.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/87/931927-9f38-41b6-87fa-254acd92b4e1/1/nYq1bioZ2vuY3Rx5KeiuPIpm9K4.roa Signing time: Thu 01 Jan 2026 06:17:34 +0000 ROA not before: Thu 01 Jan 2026 06:17:34 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 205610 IP address blocks: 2a0d:c7c7::/32 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/87/931927-9f38-41b6-87fa-254acd92b4e1/1/pXbrLMRi5uS_Deabn2NIdd67quI.crl rsync://rpki.ripe.net/repository/DEFAULT/87/931927-9f38-41b6-87fa-254acd92b4e1/1/pXbrLMRi5uS_Deabn2NIdd67quI.mft rsync://rpki.ripe.net/repository/DEFAULT/pXbrLMRi5uS_Deabn2NIdd67quI.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 13:21:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:78:34:56:e2:45:5d:bf:82:d2:5c:40:08:ab:19:17:1d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=a576eb2cc462e6e4bf0de69b9f634875debbaae2 Validity Not Before: Jan 1 06:17:34 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=9d8ab56e2a19dafb98dd1c7929e8ae3c8a66f4ae Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9c:12:68:4b:b1:e2:7c:b3:f9:3f:bf:25:ad:26: 8a:f7:d5:6e:68:54:17:c6:2e:7b:59:83:c6:c6:3a: d1:d2:49:c4:b5:04:6c:09:58:10:ab:03:05:78:ec: f6:69:5d:1b:d7:e5:6c:5c:c2:4e:c5:8f:91:4f:8d: 96:27:db:66:f7:5c:86:47:af:9e:e8:81:d2:4a:8d: 15:8c:b6:0a:f2:ab:1d:70:d9:26:95:76:9d:bb:5e: 24:34:b1:96:77:fc:63:27:d6:6c:14:2f:a3:ba:d5: 90:51:14:dd:1b:a9:e6:d3:4f:3b:96:7f:19:0f:59: e6:22:d6:f7:8a:82:80:f5:52:1e:4d:c8:f8:88:c3: c5:d1:5e:f0:f2:3e:fd:ef:fd:78:bb:0c:ae:26:3e: 3d:04:35:9a:d6:00:3b:57:78:9b:ab:9c:5f:03:aa: 74:cf:52:05:db:96:04:de:45:ca:f3:6a:52:79:38: c9:4a:ff:63:8c:7d:c0:f6:12:0e:0b:53:99:e7:5a: 35:8e:3d:79:e5:26:dd:df:3b:c4:74:f2:1c:a4:39: 4f:9d:89:42:90:a9:15:96:4f:b3:de:28:7b:d4:7e: 80:ec:70:59:dd:5a:e6:0a:76:3e:0a:6b:be:37:77: 5e:35:bb:67:a7:e1:a6:bc:7f:75:9e:3f:f6:ca:e5: f0:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9D:8A:B5:6E:2A:19:DA:FB:98:DD:1C:79:29:E8:AE:3C:8A:66:F4:AE X509v3 Authority Key Identifier: keyid:A5:76:EB:2C:C4:62:E6:E4:BF:0D:E6:9B:9F:63:48:75:DE:BB:AA:E2 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pXbrLMRi5uS_Deabn2NIdd67quI.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/87/931927-9f38-41b6-87fa-254acd92b4e1/1/nYq1bioZ2vuY3Rx5KeiuPIpm9K4.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/87/931927-9f38-41b6-87fa-254acd92b4e1/1/pXbrLMRi5uS_Deabn2NIdd67quI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0d:c7c7::/32 Signature Algorithm: sha256WithRSAEncryption 76:df:1a:11:6c:90:36:08:d8:e8:a1:a3:3c:85:5a:e9:46:36: dd:49:9d:e8:58:fa:ad:89:32:6b:07:7f:39:62:16:99:fb:09: 69:01:b4:a9:5f:74:69:33:1d:2c:c8:61:43:c1:d5:45:87:80: 11:80:37:25:a1:d0:4e:4f:cf:5c:14:3b:6c:b0:cf:30:4a:0e: 51:f5:d6:b2:3d:26:12:73:b4:50:3b:de:99:f4:d5:e4:d1:ec: 35:32:a3:bc:5d:97:f9:0a:5a:a4:c8:e0:b8:2c:e0:7a:d6:15: 31:25:1f:77:ab:4b:a7:6b:24:e4:97:bc:c3:c3:4f:20:ac:a0: 95:b5:03:fa:bb:06:3f:01:c3:2e:4f:3e:a6:bb:ac:b1:d4:fa: 69:da:1f:44:a3:ef:75:c7:0f:64:0d:c1:83:50:56:d9:4e:77: 0d:d9:2e:11:ce:7d:83:98:2d:10:84:d9:bc:74:be:40:7f:aa: 87:1d:0a:21:bd:c7:f5:73:81:30:c0:ea:5f:d2:e5:02:51:4d: c1:b3:46:d9:0d:71:84:b9:bd:a5:60:18:6b:a4:14:22:c2:c1: 0a:6d:64:d0:c4:53:21:17:cc:5d:1f:7a:64:04:46:24:ba:98: cc:9d:9b:23:c1:dc:b4:c4:fc:b7:18:bc:27:7e:fe:cc:f1:c4: 55:06:19:5c -----BEGIN CERTIFICATE----- MIIE/jCCA+agAwIBAgISAZt4NFbiRV2/gtJcQAirGRcdMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGE1NzZlYjJjYzQ2MmU2ZTRiZjBkZTY5YjlmNjM0ODc1ZGVi YmFhZTIwHhcNMjYwMTAxMDYxNzM0WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg5ZDhhYjU2ZTJhMTlkYWZiOThkZDFjNzkyOWU4YWUzYzhhNjZmNGFlMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnBJoS7HifLP5P78lrSaK99VuaFQX xi57WYPGxjrR0knEtQRsCVgQqwMFeOz2aV0b1+VsXMJOxY+RT42WJ9tm91yGR6+e 6IHSSo0VjLYK8qsdcNkmlXadu14kNLGWd/xjJ9ZsFC+jutWQURTdG6nm0087ln8Z D1nmItb3ioKA9VIeTcj4iMPF0V7w8j797/14uwyuJj49BDWa1gA7V3ibq5xfA6p0 z1IF25YE3kXK82pSeTjJSv9jjH3A9hIOC1OZ51o1jj155Sbd3zvEdPIcpDlPnYlC kKkVlk+z3ih71H6A7HBZ3VrmCnY+Cmu+N3deNbtnp+GmvH91nj/2yuXw/QIDAQAB o4ICCjCCAgYwHQYDVR0OBBYEFJ2KtW4qGdr7mN0ceSnorjyKZvSuMB8GA1UdIwQY MBaAFKV26yzEYubkvw3mm59jSHXeu6riMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvcFhickxNUmk1dVNfRGVhYm4yTklkZDY3cXVJLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84Ny85MzE5MjctOWYzOC00MWI2LTg3ZmEt MjU0YWNkOTJiNGUxLzEvbllxMWJpb1oydnVZM1J4NUtlaXVQSXBtOUs0LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC84Ny85MzE5MjctOWYzOC00MWI2LTg3ZmEtMjU0YWNkOTJiNGUx LzEvcFhickxNUmk1dVNfRGVhYm4yTklkZDY3cXVJLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCAGCCsGAQUFBwEHAQH/BBEwDzANBAIAAjAHAwUAKg3HxzAN BgkqhkiG9w0BAQsFAAOCAQEAdt8aEWyQNgjY6KGjPIVa6UY23Umd6Fj6rYkyawd/ OWIWmfsJaQG0qV90aTMdLMhhQ8HVRYeAEYA3JaHQTk/PXBQ7bLDPMEoOUfXWsj0m EnO0UDvemfTV5NHsNTKjvF2X+QpapMjguCzgetYVMSUfd6tLp2sk5Je8w8NPIKyg lbUD+rsGPwHDLk8+prussdT6adofRKPvdccPZA3Bg1BW2U53DdkuEc59g5gtEITZ vHS+QH+qhx0KIb3H9XOBMMDqX9LlAlFNwbNG2Q1xhLm9pWAYa6QUIsLBCm1k0MRT IRfMXR96ZARGJLqYzJ2bI8HctMT8txi8J37+zPHEVQYZXA== -----END CERTIFICATE-----Generated at Sun Jan 25 22:29:49 2026 by rpki-client