This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7c/022839-6984-40d4-8716-6cb89791d7fd/1/Q10vUKnhN4L-e_82624QlCh-n1M.roa File: Q10vUKnhN4L-e_82624QlCh-n1M.roa (raw, json) Hash identifier: IYHC2iagB6g5getgbWKA+JJntxjftNzEXQBIaKYPZjo= Subject key identifier: 43:5D:2F:50:A9:E1:37:82:FE:7B:FF:36:EB:6E:10:94:28:7E:9F:53 Certificate issuer: /CN=f77705e89bb65b472e4e0184d6fe9bfb8c58635a Certificate serial: 019B7FF1BF24E568D985329D2A6DF1F7AA1D Authority key identifier: F7:77:05:E8:9B:B6:5B:47:2E:4E:01:84:D6:FE:9B:FB:8C:58:63:5A Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/93cF6Ju2W0cuTgGE1v6b-4xYY1o.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7c/022839-6984-40d4-8716-6cb89791d7fd/1/Q10vUKnhN4L-e_82624QlCh-n1M.roa Signing time: Fri 02 Jan 2026 18:21:48 +0000 ROA not before: Fri 02 Jan 2026 18:21:48 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 209484 IP address blocks: 2a03:5840:f3::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/7c/022839-6984-40d4-8716-6cb89791d7fd/1/93cF6Ju2W0cuTgGE1v6b-4xYY1o.crl rsync://rpki.ripe.net/repository/DEFAULT/7c/022839-6984-40d4-8716-6cb89791d7fd/1/93cF6Ju2W0cuTgGE1v6b-4xYY1o.mft rsync://rpki.ripe.net/repository/DEFAULT/93cF6Ju2W0cuTgGE1v6b-4xYY1o.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 24 Jan 2026 10:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7f:f1:bf:24:e5:68:d9:85:32:9d:2a:6d:f1:f7:aa:1d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=f77705e89bb65b472e4e0184d6fe9bfb8c58635a Validity Not Before: Jan 2 18:21:48 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=435d2f50a9e13782fe7bff36eb6e1094287e9f53 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:ab:5e:af:6c:40:32:52:d4:eb:24:d6:28:db: ae:80:ba:23:f5:b5:1c:6f:4e:1d:f6:40:ff:8e:c9: 70:ec:84:6a:27:d4:9d:de:86:fc:10:5c:e8:e6:54: 22:e2:c8:71:4e:eb:44:1d:88:0c:af:85:ba:2d:08: 54:a1:9a:ea:dc:8b:f2:24:7c:fa:7c:d6:ce:55:70: e5:4a:54:7a:a5:93:cc:0f:f9:5b:ba:10:02:6c:ef: 0a:4b:1f:e4:46:3d:a6:ca:c9:6e:08:22:60:b1:02: c3:0b:1b:5b:04:5d:70:17:46:7f:6a:5b:c9:32:83: bf:0e:96:81:1c:fd:da:91:b4:14:0d:4f:98:f0:35: f8:a7:7a:4a:bc:87:0c:a2:a2:83:ab:99:f0:5d:19: 3a:ac:a8:66:14:35:cf:1c:66:2b:4b:b1:49:f7:66: 9e:d1:04:5d:b0:e0:49:57:6d:57:e3:85:03:8b:0f: 15:a5:3b:ee:62:f7:5e:ea:58:70:4e:e3:98:b9:5a: a0:a3:23:31:05:c1:e2:92:2b:c4:3d:cd:6e:b3:d8: 50:43:8a:a1:0a:18:f0:b6:69:f2:ba:9c:9f:3a:ea: c3:2b:d8:64:1d:a0:8b:aa:1c:8d:d8:b3:b0:30:50: 0a:3d:3e:da:ad:79:60:1a:a4:3e:be:5f:76:9c:d4: d7:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 43:5D:2F:50:A9:E1:37:82:FE:7B:FF:36:EB:6E:10:94:28:7E:9F:53 X509v3 Authority Key Identifier: keyid:F7:77:05:E8:9B:B6:5B:47:2E:4E:01:84:D6:FE:9B:FB:8C:58:63:5A X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/93cF6Ju2W0cuTgGE1v6b-4xYY1o.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7c/022839-6984-40d4-8716-6cb89791d7fd/1/Q10vUKnhN4L-e_82624QlCh-n1M.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/7c/022839-6984-40d4-8716-6cb89791d7fd/1/93cF6Ju2W0cuTgGE1v6b-4xYY1o.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a03:5840:f3::/48 Signature Algorithm: sha256WithRSAEncryption 26:71:06:35:bc:13:0b:0c:9d:e8:e0:d4:a5:a1:19:e8:2b:39: ff:58:c0:d3:10:e2:b4:24:b6:76:9d:f5:b5:2c:89:cb:57:13: 34:40:df:45:4a:10:8b:6d:07:77:08:d5:51:b1:87:49:1c:de: 14:9d:f1:53:9f:b9:fd:5c:92:ed:34:e3:38:67:d2:76:3f:87: 2f:e3:5c:be:02:1f:07:4c:00:93:4c:b8:43:fc:1d:dd:74:c9: d2:15:53:e6:a3:7c:f3:db:7f:b4:c9:6a:07:c4:fd:ef:62:60: 22:c6:e8:46:43:10:99:d3:74:e5:b2:2c:38:6e:a1:1a:a1:d8: e3:f3:53:2f:d0:3e:2a:97:f8:50:ab:9e:e0:fc:a8:c5:32:2b: 65:5f:85:1e:30:36:7f:a1:d2:e6:40:a6:ed:38:35:06:88:9c: 64:8e:44:1d:e1:a2:d0:ab:4e:f1:3c:ad:42:f4:73:70:66:e0: 5c:b6:0c:f2:c1:db:46:5e:bc:f1:53:d1:53:8a:ab:dc:cc:6e: 00:56:05:87:21:b0:48:51:1a:c9:8d:9b:a9:6f:a7:67:63:8b: 6d:24:4a:40:77:35:25:ac:98:52:4c:2d:27:90:4f:88:d3:25: b9:71:5b:80:61:e7:7e:6c:50:4d:f7:91:dc:e6:70:b4:c8:bd: 94:9c:0a:5a -----BEGIN CERTIFICATE----- MIIFADCCA+igAwIBAgISAZt/8b8k5WjZhTKdKm3x96odMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGY3NzcwNWU4OWJiNjViNDcyZTRlMDE4NGQ2ZmU5YmZiOGM1 ODYzNWEwHhcNMjYwMTAyMTgyMTQ4WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg0MzVkMmY1MGE5ZTEzNzgyZmU3YmZmMzZlYjZlMTA5NDI4N2U5ZjUzMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAv6ter2xAMlLU6yTWKNuugLoj9bUc b04d9kD/jslw7IRqJ9Sd3ob8EFzo5lQi4shxTutEHYgMr4W6LQhUoZrq3IvyJHz6 fNbOVXDlSlR6pZPMD/lbuhACbO8KSx/kRj2mysluCCJgsQLDCxtbBF1wF0Z/alvJ MoO/DpaBHP3akbQUDU+Y8DX4p3pKvIcMoqKDq5nwXRk6rKhmFDXPHGYrS7FJ92ae 0QRdsOBJV21X44UDiw8VpTvuYvde6lhwTuOYuVqgoyMxBcHikivEPc1us9hQQ4qh ChjwtmnyupyfOurDK9hkHaCLqhyN2LOwMFAKPT7arXlgGqQ+vl92nNTX4wIDAQAB o4ICDDCCAggwHQYDVR0OBBYEFENdL1Cp4TeC/nv/NutuEJQofp9TMB8GA1UdIwQY MBaAFPd3BeibtltHLk4BhNb+m/uMWGNaMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvOTNjRjZKdTJXMGN1VGdHRTF2NmItNHhZWTFvLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83Yy8wMjI4MzktNjk4NC00MGQ0LTg3MTYt NmNiODk3OTFkN2ZkLzEvUTEwdlVLbmhONEwtZV84MjYyNFFsQ2gtbjFNLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC83Yy8wMjI4MzktNjk4NC00MGQ0LTg3MTYtNmNiODk3OTFkN2Zk LzEvOTNjRjZKdTJXMGN1VGdHRTF2NmItNHhZWTFvLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAKgNYQADz MA0GCSqGSIb3DQEBCwUAA4IBAQAmcQY1vBMLDJ3o4NSloRnoKzn/WMDTEOK0JLZ2 nfW1LInLVxM0QN9FShCLbQd3CNVRsYdJHN4UnfFTn7n9XJLtNOM4Z9J2P4cv41y+ Ah8HTACTTLhD/B3ddMnSFVPmo3zz23+0yWoHxP3vYmAixuhGQxCZ03Tlsiw4bqEa odjj81Mv0D4ql/hQq57g/KjFMitlX4UeMDZ/odLmQKbtODUGiJxkjkQd4aLQq07x PK1C9HNwZuBctgzywdtGXrzxU9FTiqvczG4AVgWHIbBIURrJjZupb6dnY4ttJEpA dzUlrJhSTC0nkE+I0yW5cVuAYed+bFBN95Hc5nC0yL2UnApa -----END CERTIFICATE-----Generated at Fri Jan 23 15:23:14 2026 by rpki-client