This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9e/f76e20-5859-415d-86b3-119efcbb2023/1/y4_D6Qio_R6p7o2KXWCnWybEys0.roa File: y4_D6Qio_R6p7o2KXWCnWybEys0.roa (raw, json) Hash identifier: mUX1ZbSigKnFsHWLnR+/SQCMcTKlzqfR36hp2kv3WSg= Subject key identifier: CB:8F:C3:E9:08:A8:FD:1E:A9:EE:8D:8A:5D:60:A7:5B:26:C4:CA:CD Certificate issuer: /CN=bb830630f23b070a2b7bdf529f73948c97eacd40 Certificate serial: 019B7F13B8C0FA14A47F4959B0FCC708D32A Authority key identifier: BB:83:06:30:F2:3B:07:0A:2B:7B:DF:52:9F:73:94:8C:97:EA:CD:40 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/u4MGMPI7Bwore99Sn3OUjJfqzUA.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9e/f76e20-5859-415d-86b3-119efcbb2023/1/y4_D6Qio_R6p7o2KXWCnWybEys0.roa Signing time: Fri 02 Jan 2026 14:19:17 +0000 ROA not before: Fri 02 Jan 2026 14:19:17 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 44094 IP address blocks: 2a09:7c47::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9e/f76e20-5859-415d-86b3-119efcbb2023/1/u4MGMPI7Bwore99Sn3OUjJfqzUA.crl rsync://rpki.ripe.net/repository/DEFAULT/9e/f76e20-5859-415d-86b3-119efcbb2023/1/u4MGMPI7Bwore99Sn3OUjJfqzUA.mft rsync://rpki.ripe.net/repository/DEFAULT/u4MGMPI7Bwore99Sn3OUjJfqzUA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 12:00:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7f:13:b8:c0:fa:14:a4:7f:49:59:b0:fc:c7:08:d3:2a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=bb830630f23b070a2b7bdf529f73948c97eacd40 Validity Not Before: Jan 2 14:19:17 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=cb8fc3e908a8fd1ea9ee8d8a5d60a75b26c4cacd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9c:a2:88:00:f6:c7:11:f5:15:d6:03:2d:3c:43: 8a:5b:db:f1:ee:43:b7:ad:c8:36:ef:30:0f:b1:71: e8:bc:b0:a2:31:40:b4:45:21:ad:6c:7c:a9:81:98: 18:36:46:21:57:68:9c:58:23:5b:cc:1c:67:72:00: 82:f0:55:41:60:cc:a7:4a:3f:4c:3a:62:ab:b2:99: 6f:b6:f6:22:e4:d7:88:c8:cb:68:ff:a1:27:4f:33: c6:73:1c:3c:06:eb:63:c6:b4:3d:83:75:d8:41:c2: ca:7c:e4:ff:d2:b5:01:99:e7:11:68:45:d5:37:ab: 89:00:94:c2:91:7a:c9:cb:46:74:bd:a1:b9:a5:53: c2:2c:6f:0b:c1:31:d4:23:a5:82:be:32:05:ab:cc: de:fb:58:a8:1f:73:7b:16:2a:d6:ef:de:43:ec:d8: 6f:48:dd:60:e0:40:1f:3f:38:3c:45:51:70:af:a6: 56:8d:55:91:32:b2:7a:72:2c:ba:bf:05:c6:e0:61: 4c:f6:76:30:68:0f:df:6e:39:c5:6a:57:55:a6:f5: 61:73:ed:54:10:f4:e7:b1:3f:8b:db:99:f0:01:6a: a7:2f:9c:c6:d3:83:47:b5:dc:da:8e:5d:07:4e:53: 3b:51:34:0f:88:96:22:f1:64:e4:91:07:a7:fe:38: 37:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CB:8F:C3:E9:08:A8:FD:1E:A9:EE:8D:8A:5D:60:A7:5B:26:C4:CA:CD X509v3 Authority Key Identifier: keyid:BB:83:06:30:F2:3B:07:0A:2B:7B:DF:52:9F:73:94:8C:97:EA:CD:40 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/u4MGMPI7Bwore99Sn3OUjJfqzUA.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9e/f76e20-5859-415d-86b3-119efcbb2023/1/y4_D6Qio_R6p7o2KXWCnWybEys0.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/9e/f76e20-5859-415d-86b3-119efcbb2023/1/u4MGMPI7Bwore99Sn3OUjJfqzUA.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a09:7c47::/32 Signature Algorithm: sha256WithRSAEncryption 72:44:32:a2:6e:51:6b:6a:16:10:cc:c4:21:3c:d7:46:63:6b: 8a:f4:a9:16:68:0b:4c:8c:4a:a0:30:9a:56:52:bb:21:c4:4a: da:46:6b:1f:4c:2a:a8:4d:a5:f7:de:7c:21:22:89:ab:94:96: 9f:1e:38:9e:66:80:b8:5b:b9:11:58:8b:db:4b:b9:d1:56:84: f4:7c:ae:9e:d8:2c:8f:79:df:7c:b8:44:1a:58:75:58:82:d3: f8:36:9f:80:69:5c:76:6f:d4:0c:64:d9:45:3e:08:8b:01:49: 31:12:e5:be:46:2a:34:35:4a:5f:04:42:7a:88:a2:f2:06:48: af:0a:17:de:65:d0:5d:ef:80:c6:e8:32:d6:1c:1c:02:88:e5: 9b:8b:74:7f:e6:3b:f7:9d:e7:2b:4c:ab:f2:5a:93:ea:d2:63: 71:ae:4e:0c:99:7c:ef:99:a7:8b:85:dd:d4:c1:ae:6b:bc:29: 82:b5:ee:ad:a9:4a:13:37:dc:d7:90:84:96:b4:db:0e:bb:a6: 24:1b:3d:d4:01:43:c6:2b:1e:84:95:09:14:31:48:32:cd:59: ca:fb:d5:ae:03:35:85:74:cc:5f:d4:5b:96:c0:25:2e:b2:21: 71:98:83:ee:99:d2:5a:48:3f:e3:52:4d:88:bb:0b:18:e5:dd: a7:aa:4a:3a -----BEGIN CERTIFICATE----- MIIE/jCCA+agAwIBAgISAZt/E7jA+hSkf0lZsPzHCNMqMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGJiODMwNjMwZjIzYjA3MGEyYjdiZGY1MjlmNzM5NDhjOTdl YWNkNDAwHhcNMjYwMTAyMTQxOTE3WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhjYjhmYzNlOTA4YThmZDFlYTllZThkOGE1ZDYwYTc1YjI2YzRjYWNkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnKKIAPbHEfUV1gMtPEOKW9vx7kO3 rcg27zAPsXHovLCiMUC0RSGtbHypgZgYNkYhV2icWCNbzBxncgCC8FVBYMynSj9M OmKrsplvtvYi5NeIyMto/6EnTzPGcxw8ButjxrQ9g3XYQcLKfOT/0rUBmecRaEXV N6uJAJTCkXrJy0Z0vaG5pVPCLG8LwTHUI6WCvjIFq8ze+1ioH3N7FirW795D7Nhv SN1g4EAfPzg8RVFwr6ZWjVWRMrJ6ciy6vwXG4GFM9nYwaA/fbjnFaldVpvVhc+1U EPTnsT+L25nwAWqnL5zG04NHtdzajl0HTlM7UTQPiJYi8WTkkQen/jg3wwIDAQAB o4ICCjCCAgYwHQYDVR0OBBYEFMuPw+kIqP0eqe6Nil1gp1smxMrNMB8GA1UdIwQY MBaAFLuDBjDyOwcKK3vfUp9zlIyX6s1AMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvdTRNR01QSTdCd29yZTk5U24zT1VqSmZxelVBLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85ZS9mNzZlMjAtNTg1OS00MTVkLTg2YjMt MTE5ZWZjYmIyMDIzLzEveTRfRDZRaW9fUjZwN28yS1hXQ25XeWJFeXMwLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC85ZS9mNzZlMjAtNTg1OS00MTVkLTg2YjMtMTE5ZWZjYmIyMDIz LzEvdTRNR01QSTdCd29yZTk5U24zT1VqSmZxelVBLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCAGCCsGAQUFBwEHAQH/BBEwDzANBAIAAjAHAwUAKgl8RzAN BgkqhkiG9w0BAQsFAAOCAQEAckQyom5Ra2oWEMzEITzXRmNrivSpFmgLTIxKoDCa VlK7IcRK2kZrH0wqqE2l9958ISKJq5SWnx44nmaAuFu5EViL20u50VaE9Hyuntgs j3nffLhEGlh1WILT+DafgGlcdm/UDGTZRT4IiwFJMRLlvkYqNDVKXwRCeoii8gZI rwoX3mXQXe+Axugy1hwcAojlm4t0f+Y7953nK0yr8lqT6tJjca5ODJl875mni4Xd 1MGua7wpgrXuralKEzfc15CElrTbDrumJBs91AFDxisehJUJFDFIMs1ZyvvVrgM1 hXTMX9RblsAlLrIhcZiD7pnSWkg/41JNiLsLGOXdp6pKOg== -----END CERTIFICATE-----Generated at Sun Jan 25 19:02:19 2026 by rpki-client