This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a7/481637-6c1c-45e8-8fbd-44f8ed5d61d7/1/y_hFsBFw5TnwZzUPUVeY_JDobJw.roa File: y_hFsBFw5TnwZzUPUVeY_JDobJw.roa (raw, json) Hash identifier: Yw4KTjxopDUyK/440NIIBj8AANnYLxlC6/L3kGPhoos= Subject key identifier: CB:F8:45:B0:11:70:E5:39:F0:67:35:0F:51:57:98:FC:90:E8:6C:9C Certificate issuer: /CN=2968b4e0ef8106f0e12ab8e501d2aa4e36b783c2 Certificate serial: 019B7BA36929F26DC98A43BFAFEA15D32116 Authority key identifier: 29:68:B4:E0:EF:81:06:F0:E1:2A:B8:E5:01:D2:AA:4E:36:B7:83:C2 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KWi04O-BBvDhKrjlAdKqTja3g8I.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a7/481637-6c1c-45e8-8fbd-44f8ed5d61d7/1/y_hFsBFw5TnwZzUPUVeY_JDobJw.roa Signing time: Thu 01 Jan 2026 22:17:45 +0000 ROA not before: Thu 01 Jan 2026 22:17:45 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 207001 IP address blocks: 2a01:e901:161::/48 maxlen: 48 2a01:e901:163::/48 maxlen: 48 2a01:e901:171::/48 maxlen: 48 2a01:e901:173::/48 maxlen: 48 2a01:e901:183::/48 maxlen: 48 2a01:e901:193::/48 maxlen: 48 2a01:e901:1a3::/48 maxlen: 48 2a01:e901:1b3::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a7/481637-6c1c-45e8-8fbd-44f8ed5d61d7/1/KWi04O-BBvDhKrjlAdKqTja3g8I.crl rsync://rpki.ripe.net/repository/DEFAULT/a7/481637-6c1c-45e8-8fbd-44f8ed5d61d7/1/KWi04O-BBvDhKrjlAdKqTja3g8I.mft rsync://rpki.ripe.net/repository/DEFAULT/KWi04O-BBvDhKrjlAdKqTja3g8I.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 07:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7b:a3:69:29:f2:6d:c9:8a:43:bf:af:ea:15:d3:21:16 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2968b4e0ef8106f0e12ab8e501d2aa4e36b783c2 Validity Not Before: Jan 1 22:17:45 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=cbf845b01170e539f067350f515798fc90e86c9c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f1:80:29:0c:a7:d8:9e:c5:a6:5b:02:22:e4:e7: 92:e3:f9:d8:ad:a2:33:02:31:f3:f1:61:ed:31:ff: f8:68:20:56:3d:e5:6c:78:b9:37:52:94:37:7a:cd: 9e:59:8d:98:1d:7d:62:38:2f:40:38:ea:a4:98:b5: 6c:34:6e:d3:d2:90:6f:2d:b7:ae:c7:49:cd:c2:bd: 3b:3a:ac:3b:09:92:77:76:26:8b:2f:21:ee:78:c1: 94:b8:92:0e:f2:aa:9f:19:aa:40:84:fb:d3:6b:32: b5:6a:13:ab:62:fd:5c:02:82:79:1e:e2:7f:18:8e: 99:03:81:b6:6c:d5:47:10:cc:1d:d1:c3:62:2e:9f: c8:40:89:2f:ed:9d:0e:ca:30:65:55:8d:d5:26:09: 6c:bd:4c:b0:c6:a8:a5:76:f0:65:67:4e:bc:cf:0b: ae:5b:96:90:29:d3:8e:7c:5f:d0:4a:31:1c:d7:8b: 5e:93:0b:39:7a:ca:3f:54:1e:2b:2d:cd:b1:db:ba: 9b:4a:e2:7c:d3:94:5e:56:d1:51:50:a8:77:2e:a1: e9:e0:b8:ee:2a:aa:2b:9e:2b:ab:2b:a7:14:e1:43: 56:f5:e6:d1:0a:76:1f:e7:72:cd:de:47:b0:31:f2: 08:f5:21:c0:b7:ca:a5:14:a0:a2:f1:69:f4:b7:d3: 20:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CB:F8:45:B0:11:70:E5:39:F0:67:35:0F:51:57:98:FC:90:E8:6C:9C X509v3 Authority Key Identifier: keyid:29:68:B4:E0:EF:81:06:F0:E1:2A:B8:E5:01:D2:AA:4E:36:B7:83:C2 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KWi04O-BBvDhKrjlAdKqTja3g8I.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/481637-6c1c-45e8-8fbd-44f8ed5d61d7/1/y_hFsBFw5TnwZzUPUVeY_JDobJw.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/481637-6c1c-45e8-8fbd-44f8ed5d61d7/1/KWi04O-BBvDhKrjlAdKqTja3g8I.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a01:e901:161::/48 2a01:e901:163::/48 2a01:e901:171::/48 2a01:e901:173::/48 2a01:e901:183::/48 2a01:e901:193::/48 2a01:e901:1a3::/48 2a01:e901:1b3::/48 Signature Algorithm: sha256WithRSAEncryption 40:01:e8:07:25:60:03:1c:0c:37:04:6c:10:4a:c5:8d:bc:eb: 85:91:00:e1:81:9f:6a:bd:2b:f1:56:df:e6:ab:57:26:21:a7: e1:33:6b:6b:dc:23:14:a5:21:2c:43:52:0e:8c:ff:90:ec:04: 73:5c:3a:99:3a:c4:53:e9:2b:4c:da:cd:94:46:9e:22:bc:46: c6:36:83:30:80:68:9f:df:44:ec:ca:6f:bb:82:21:96:64:3d: 17:7c:85:bf:6d:84:d7:a8:b8:66:ad:88:92:00:ec:92:35:7a: a9:f7:4a:1f:6b:01:34:54:56:b4:b8:7c:73:fb:f1:13:91:bd: 28:d2:a9:79:90:2d:78:98:93:3f:7b:c1:ed:d5:cc:d6:22:4d: 61:68:c3:4d:f0:7c:be:df:30:4b:cf:7d:69:d3:f7:63:ab:83: e6:71:15:d6:19:68:02:17:58:15:53:4c:ed:5b:36:57:5c:13: 3f:fb:5a:5d:f7:a9:9c:cb:68:68:4f:c5:19:c8:ed:fd:27:33: 90:f3:1d:f5:94:c9:d1:55:7f:12:08:db:50:81:ec:62:ee:20: fb:fc:be:1c:95:dc:c8:b6:62:09:a8:4e:21:dc:4d:30:03:68: 33:55:f2:7f:93:70:c8:e1:54:45:56:c1:ab:d0:2b:2e:8a:4c: d8:49:c7:47 -----BEGIN CERTIFICATE----- MIIFPzCCBCegAwIBAgISAZt7o2kp8m3JikO/r+oV0yEWMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDI5NjhiNGUwZWY4MTA2ZjBlMTJhYjhlNTAxZDJhYTRlMzZi NzgzYzIwHhcNMjYwMTAxMjIxNzQ1WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhjYmY4NDViMDExNzBlNTM5ZjA2NzM1MGY1MTU3OThmYzkwZTg2YzljMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA8YApDKfYnsWmWwIi5OeS4/nYraIz AjHz8WHtMf/4aCBWPeVseLk3UpQ3es2eWY2YHX1iOC9AOOqkmLVsNG7T0pBvLbeu x0nNwr07Oqw7CZJ3diaLLyHueMGUuJIO8qqfGapAhPvTazK1ahOrYv1cAoJ5HuJ/ GI6ZA4G2bNVHEMwd0cNiLp/IQIkv7Z0OyjBlVY3VJglsvUywxqildvBlZ068zwuu W5aQKdOOfF/QSjEc14tekws5eso/VB4rLc2x27qbSuJ805ReVtFRUKh3LqHp4Lju KqorniurK6cU4UNW9ebRCnYf53LN3kewMfII9SHAt8qlFKCi8Wn0t9MgqQIDAQAB o4ICSzCCAkcwHQYDVR0OBBYEFMv4RbARcOU58Gc1D1FXmPyQ6GycMB8GA1UdIwQY MBaAFClotODvgQbw4Sq45QHSqk42t4PCMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvS1dpMDRPLUJCdkRoS3JqbEFkS3FUamEzZzhJLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hNy80ODE2MzctNmMxYy00NWU4LThmYmQt NDRmOGVkNWQ2MWQ3LzEveV9oRnNCRnc1VG53WnpVUFVWZVlfSkRvYkp3LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9hNy80ODE2MzctNmMxYy00NWU4LThmYmQtNDRmOGVkNWQ2MWQ3 LzEvS1dpMDRPLUJCdkRoS3JqbEFkS3FUamEzZzhJLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMGEGCCsGAQUFBwEHAQH/BFIwUDBOBAIAAjBIAwcAKgHpAQFh AwcAKgHpAQFjAwcAKgHpAQFxAwcAKgHpAQFzAwcAKgHpAQGDAwcAKgHpAQGTAwcA KgHpAQGjAwcAKgHpAQGzMA0GCSqGSIb3DQEBCwUAA4IBAQBAAegHJWADHAw3BGwQ SsWNvOuFkQDhgZ9qvSvxVt/mq1cmIafhM2tr3CMUpSEsQ1IOjP+Q7ARzXDqZOsRT 6StM2s2URp4ivEbGNoMwgGif30Tsym+7giGWZD0XfIW/bYTXqLhmrYiSAOySNXqp 90ofawE0VFa0uHxz+/ETkb0o0ql5kC14mJM/e8Ht1czWIk1haMNN8Hy+3zBLz31p 0/djq4PmcRXWGWgCF1gVU0ztWzZXXBM/+1pd96mcy2hoT8UZyO39JzOQ8x31lMnR VX8SCNtQgexi7iD7/L4cldzItmIJqE4h3E0wA2gzVfJ/k3DI4VRFVsGr0CsuikzY ScdH -----END CERTIFICATE-----Generated at Sun Jan 25 17:19:21 2026 by rpki-client