This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bb/dd8e31-00b5-4212-9e01-2394c6600022/1/yoxe9lLbCa2h6gtQRAHAduOM9X0.roa File: yoxe9lLbCa2h6gtQRAHAduOM9X0.roa (raw, json) Hash identifier: s8LyW32eS7lJnnnTP0eK55NVtnvGmgvQdGOQCvIfya4= Subject key identifier: CA:8C:5E:F6:52:DB:09:AD:A1:EA:0B:50:44:01:C0:76:E3:8C:F5:7D Certificate issuer: /CN=5659b0ba8407be11cfc911bd31ed140cd1c6046c Certificate serial: 019B78352CE0A424FDB9A42BF4EBF8322986 Authority key identifier: 56:59:B0:BA:84:07:BE:11:CF:C9:11:BD:31:ED:14:0C:D1:C6:04:6C Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VlmwuoQHvhHPyRG9Me0UDNHGBGw.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bb/dd8e31-00b5-4212-9e01-2394c6600022/1/yoxe9lLbCa2h6gtQRAHAduOM9X0.roa Signing time: Thu 01 Jan 2026 06:18:29 +0000 ROA not before: Thu 01 Jan 2026 06:18:29 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 48878 IP address blocks: 2a10:fa81:1::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bb/dd8e31-00b5-4212-9e01-2394c6600022/1/VlmwuoQHvhHPyRG9Me0UDNHGBGw.crl rsync://rpki.ripe.net/repository/DEFAULT/bb/dd8e31-00b5-4212-9e01-2394c6600022/1/VlmwuoQHvhHPyRG9Me0UDNHGBGw.mft rsync://rpki.ripe.net/repository/DEFAULT/VlmwuoQHvhHPyRG9Me0UDNHGBGw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 07:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:78:35:2c:e0:a4:24:fd:b9:a4:2b:f4:eb:f8:32:29:86 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5659b0ba8407be11cfc911bd31ed140cd1c6046c Validity Not Before: Jan 1 06:18:29 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=ca8c5ef652db09ada1ea0b504401c076e38cf57d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:94:ef:cf:bc:bf:eb:26:61:bf:53:9b:98:b1:97: 58:7d:cb:a3:ce:87:b3:7d:34:39:40:3e:17:60:c5: f6:3f:46:eb:35:cb:70:77:de:a4:f8:28:e0:61:34: fd:04:99:ee:15:10:51:d7:78:30:25:6e:27:e0:8e: a9:58:7d:1d:4a:b9:69:52:6e:1c:e2:7f:ef:b3:7a: 3e:9a:ae:0b:98:f3:43:9a:98:92:5f:48:66:0d:a2: 75:1a:46:b6:95:29:a0:78:3d:02:1a:b0:11:3d:df: 06:2b:db:ef:20:d1:69:77:c3:fc:9e:59:80:be:98: b2:3b:16:51:63:68:83:44:3c:e8:c4:aa:21:1f:82: 8d:3c:9a:df:99:dd:44:5a:ad:f5:fc:b1:5a:ec:4b: c0:91:e7:72:a3:5f:16:93:4a:1f:a3:00:30:63:4f: b5:a3:a6:b2:03:b4:77:8b:34:4f:4a:ef:36:ef:e1: 5c:70:fa:6c:62:9c:b3:3f:1d:70:1a:a5:80:2d:bd: b4:59:41:b9:e9:b9:e2:56:75:90:b9:f3:96:68:34: 30:a5:49:d2:c6:b2:1d:97:d6:c4:90:80:e8:bf:c7: c1:5b:ac:93:de:eb:16:e9:c8:55:38:94:2a:36:f5: 2d:8c:f8:ce:22:3f:50:e7:89:60:bb:05:18:1f:82: 86:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CA:8C:5E:F6:52:DB:09:AD:A1:EA:0B:50:44:01:C0:76:E3:8C:F5:7D X509v3 Authority Key Identifier: keyid:56:59:B0:BA:84:07:BE:11:CF:C9:11:BD:31:ED:14:0C:D1:C6:04:6C X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VlmwuoQHvhHPyRG9Me0UDNHGBGw.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bb/dd8e31-00b5-4212-9e01-2394c6600022/1/yoxe9lLbCa2h6gtQRAHAduOM9X0.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/bb/dd8e31-00b5-4212-9e01-2394c6600022/1/VlmwuoQHvhHPyRG9Me0UDNHGBGw.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a10:fa81:1::/48 Signature Algorithm: sha256WithRSAEncryption 6d:5b:51:8c:53:78:3b:84:e7:3d:16:6e:c4:09:4d:4a:29:15: eb:b7:e8:70:d7:91:79:c9:c7:a5:1f:22:d9:53:e4:b2:d0:92: 55:64:a5:55:43:f0:0c:31:ec:5e:cf:b9:85:13:aa:5f:22:e6: a1:09:09:d0:c5:71:61:9a:cc:e5:23:5f:45:d1:66:66:c1:11: d9:b6:b8:39:d8:dd:c0:95:42:19:e9:dc:0a:4a:27:4f:56:ea: 50:f9:61:37:30:98:3f:0e:7d:33:22:9b:f3:93:ba:6c:07:f7: b0:81:64:8e:8e:90:a3:fc:68:02:3c:68:f7:a1:2d:1a:0b:3b: 1e:46:09:77:95:d2:73:73:da:40:74:d9:4b:05:b0:ce:0e:5b: a1:74:c4:70:f9:62:8e:85:d0:17:bb:30:02:e4:22:db:16:a0: f9:6e:bd:19:b6:3f:5d:5c:bf:73:aa:2e:1b:cc:8c:7e:03:c7: f6:34:d3:39:32:65:b3:ba:67:31:c6:5b:5e:28:22:6e:42:42: bf:11:35:cf:55:79:89:e6:70:05:cd:15:11:7a:81:2a:45:ad: 76:08:da:af:0a:6c:6c:20:41:06:e2:3d:19:6e:75:ae:ba:07: 9b:f4:26:76:21:a3:80:8b:bc:b6:d7:4e:d3:69:9d:89:8b:00: 22:d2:a9:d5 -----BEGIN CERTIFICATE----- MIIFADCCA+igAwIBAgISAZt4NSzgpCT9uaQr9Ov4MimGMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDU2NTliMGJhODQwN2JlMTFjZmM5MTFiZDMxZWQxNDBjZDFj NjA0NmMwHhcNMjYwMTAxMDYxODI5WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhjYThjNWVmNjUyZGIwOWFkYTFlYTBiNTA0NDAxYzA3NmUzOGNmNTdkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAlO/PvL/rJmG/U5uYsZdYfcujzoez fTQ5QD4XYMX2P0brNctwd96k+CjgYTT9BJnuFRBR13gwJW4n4I6pWH0dSrlpUm4c 4n/vs3o+mq4LmPNDmpiSX0hmDaJ1Gka2lSmgeD0CGrARPd8GK9vvINFpd8P8nlmA vpiyOxZRY2iDRDzoxKohH4KNPJrfmd1EWq31/LFa7EvAkedyo18Wk0ofowAwY0+1 o6ayA7R3izRPSu827+FccPpsYpyzPx1wGqWALb20WUG56bniVnWQufOWaDQwpUnS xrIdl9bEkIDov8fBW6yT3usW6chVOJQqNvUtjPjOIj9Q54lguwUYH4KGBQIDAQAB o4ICDDCCAggwHQYDVR0OBBYEFMqMXvZS2wmtoeoLUEQBwHbjjPV9MB8GA1UdIwQY MBaAFFZZsLqEB74Rz8kRvTHtFAzRxgRsMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvVmxtd3VvUUh2aEhQeVJHOU1lMFVETkhHQkd3LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iYi9kZDhlMzEtMDBiNS00MjEyLTllMDEt MjM5NGM2NjAwMDIyLzEveW94ZTlsTGJDYTJoNmd0UVJBSEFkdU9NOVgwLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iYi9kZDhlMzEtMDBiNS00MjEyLTllMDEtMjM5NGM2NjAwMDIy LzEvVmxtd3VvUUh2aEhQeVJHOU1lMFVETkhHQkd3LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAKhD6gQAB MA0GCSqGSIb3DQEBCwUAA4IBAQBtW1GMU3g7hOc9Fm7ECU1KKRXrt+hw15F5ycel HyLZU+Sy0JJVZKVVQ/AMMexez7mFE6pfIuahCQnQxXFhmszlI19F0WZmwRHZtrg5 2N3AlUIZ6dwKSidPVupQ+WE3MJg/Dn0zIpvzk7psB/ewgWSOjpCj/GgCPGj3oS0a CzseRgl3ldJzc9pAdNlLBbDODluhdMRw+WKOhdAXuzAC5CLbFqD5br0Ztj9dXL9z qi4bzIx+A8f2NNM5MmWzumcxxlteKCJuQkK/ETXPVXmJ5nAFzRUReoEqRa12CNqv CmxsIEEG4j0ZbnWuugeb9CZ2IaOAi7y2107TaZ2JiwAi0qnV -----END CERTIFICATE-----Generated at Sun Jan 25 17:45:52 2026 by rpki-client