This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e8/fe7fc2-41cc-467d-980b-f5af616b5483/1/Qt9b8eH_026x-QvzB2v7OUwPKW0.roa File: Qt9b8eH_026x-QvzB2v7OUwPKW0.roa (raw, json) Hash identifier: giCqVfLyiuosSKyEoDq9V/ttZpO9E78wjOrOmrwG9Bk= Subject key identifier: 42:DF:5B:F1:E1:FF:D3:6E:B1:F9:0B:F3:07:6B:FB:39:4C:0F:29:6D Certificate issuer: /CN=635d5b644e22fb488e4d6c0012b0aabf238e61e5 Certificate serial: 019B7F13824020919427A73EEEE4C8261ABE Authority key identifier: 63:5D:5B:64:4E:22:FB:48:8E:4D:6C:00:12:B0:AA:BF:23:8E:61:E5 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y11bZE4i-0iOTWwAErCqvyOOYeU.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e8/fe7fc2-41cc-467d-980b-f5af616b5483/1/Qt9b8eH_026x-QvzB2v7OUwPKW0.roa Signing time: Fri 02 Jan 2026 14:19:03 +0000 ROA not before: Fri 02 Jan 2026 14:19:03 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 3257 IP address blocks: 2a14:4b00::/29 maxlen: 29 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e8/fe7fc2-41cc-467d-980b-f5af616b5483/1/Y11bZE4i-0iOTWwAErCqvyOOYeU.crl rsync://rpki.ripe.net/repository/DEFAULT/e8/fe7fc2-41cc-467d-980b-f5af616b5483/1/Y11bZE4i-0iOTWwAErCqvyOOYeU.mft rsync://rpki.ripe.net/repository/DEFAULT/Y11bZE4i-0iOTWwAErCqvyOOYeU.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 17 Jan 2026 18:00:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7f:13:82:40:20:91:94:27:a7:3e:ee:e4:c8:26:1a:be Signature Algorithm: sha256WithRSAEncryption Issuer: CN=635d5b644e22fb488e4d6c0012b0aabf238e61e5 Validity Not Before: Jan 2 14:19:03 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=42df5bf1e1ffd36eb1f90bf3076bfb394c0f296d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:90:e1:f8:74:07:2f:90:cc:43:40:c7:f6:a6:c1: 94:94:c1:a8:c6:06:cd:b2:18:bd:7c:b0:99:ab:c8: 0f:3b:53:66:e0:2b:03:82:20:fa:10:57:a0:6e:0f: 97:61:ec:bb:76:ba:59:ad:d4:82:26:b8:bd:bd:98: 5b:7e:fd:a6:ec:a2:41:c3:5e:e3:30:53:14:4d:55: 00:bd:29:fb:a8:ca:3d:8f:ef:06:c3:a0:14:e6:1e: 31:cc:5c:cf:5b:dd:5e:03:56:7a:bc:91:c3:ed:f6: e3:cd:ff:c4:5b:c2:c1:96:d6:f5:09:f9:fb:eb:9e: ce:6c:b4:1d:6c:54:94:90:95:1e:cc:21:3a:e0:c5: 5d:00:03:8a:d3:de:53:45:c4:8a:0f:c9:b5:03:6a: 9d:71:10:05:1c:30:86:d3:35:f3:ec:24:2f:aa:92: fe:2c:b1:79:90:36:21:12:30:f7:69:94:0f:ef:03: d4:f7:5a:17:45:2a:36:c6:b3:b3:36:37:01:00:cd: 84:f1:37:63:36:6b:f1:6f:ee:94:fb:50:5e:50:dc: 18:1b:9e:a4:da:05:ff:fb:2c:fa:e4:ea:94:ea:1c: cb:24:45:74:ab:83:7d:f5:e8:86:0f:9d:4a:fe:d6: 7f:a2:b7:68:41:40:7b:5e:bd:df:84:70:19:71:3e: c6:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 42:DF:5B:F1:E1:FF:D3:6E:B1:F9:0B:F3:07:6B:FB:39:4C:0F:29:6D X509v3 Authority Key Identifier: keyid:63:5D:5B:64:4E:22:FB:48:8E:4D:6C:00:12:B0:AA:BF:23:8E:61:E5 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y11bZE4i-0iOTWwAErCqvyOOYeU.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e8/fe7fc2-41cc-467d-980b-f5af616b5483/1/Qt9b8eH_026x-QvzB2v7OUwPKW0.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/e8/fe7fc2-41cc-467d-980b-f5af616b5483/1/Y11bZE4i-0iOTWwAErCqvyOOYeU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a14:4b00::/29 Signature Algorithm: sha256WithRSAEncryption 8a:82:d8:fd:20:80:a3:da:a1:69:5e:ed:4f:d7:84:a1:15:af: 3f:07:91:51:4e:17:51:43:97:a4:72:80:49:bf:69:50:b8:1c: 0b:fe:09:45:4e:41:e7:e9:51:52:32:b5:d6:94:83:e2:ca:8d: 38:24:27:2a:ba:d9:95:4a:59:83:93:2e:05:9f:ad:d7:95:91: 6a:c0:f7:dc:27:5d:a6:f4:5a:68:77:f2:c9:44:cf:c9:85:58: 92:6a:62:9d:4f:a6:31:75:00:87:fc:53:d2:11:81:af:72:72: 9a:c6:c0:d6:11:02:b0:ea:cc:f8:64:de:71:b6:a7:39:99:aa: 13:cb:64:2f:c7:35:bb:86:e1:ea:44:8a:6c:9f:91:7f:bc:bf: 26:af:15:8d:3d:37:c5:c4:d3:4a:63:b8:cc:75:35:78:d9:8e: fb:87:65:80:bf:ce:3e:13:39:b8:2d:2b:42:0b:7d:85:29:87: 2f:cd:76:56:e9:af:63:b6:13:78:30:f2:b5:77:d6:8a:2e:7b: 4a:13:d9:b2:0f:84:d5:b1:24:df:94:cb:f0:12:55:5f:fd:55: a3:3d:87:ee:3b:37:c5:c6:98:be:79:ad:21:9a:ac:ee:e4:fa: cf:53:c5:71:36:68:68:86:36:ff:b8:1f:4f:41:55:e7:07:1d: fb:d0:21:29 -----BEGIN CERTIFICATE----- MIIE/jCCA+agAwIBAgISAZt/E4JAIJGUJ6c+7uTIJhq+MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDYzNWQ1YjY0NGUyMmZiNDg4ZTRkNmMwMDEyYjBhYWJmMjM4 ZTYxZTUwHhcNMjYwMTAyMTQxOTAzWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg0MmRmNWJmMWUxZmZkMzZlYjFmOTBiZjMwNzZiZmIzOTRjMGYyOTZkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAkOH4dAcvkMxDQMf2psGUlMGoxgbN shi9fLCZq8gPO1Nm4CsDgiD6EFegbg+XYey7drpZrdSCJri9vZhbfv2m7KJBw17j MFMUTVUAvSn7qMo9j+8Gw6AU5h4xzFzPW91eA1Z6vJHD7fbjzf/EW8LBltb1Cfn7 657ObLQdbFSUkJUezCE64MVdAAOK095TRcSKD8m1A2qdcRAFHDCG0zXz7CQvqpL+ LLF5kDYhEjD3aZQP7wPU91oXRSo2xrOzNjcBAM2E8TdjNmvxb+6U+1BeUNwYG56k 2gX/+yz65OqU6hzLJEV0q4N99eiGD51K/tZ/ordoQUB7Xr3fhHAZcT7G4QIDAQAB o4ICCjCCAgYwHQYDVR0OBBYEFELfW/Hh/9NusfkL8wdr+zlMDyltMB8GA1UdIwQY MBaAFGNdW2ROIvtIjk1sABKwqr8jjmHlMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvWTExYlpFNGktMGlPVFd3QUVyQ3F2eU9PWWVVLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lOC9mZTdmYzItNDFjYy00NjdkLTk4MGIt ZjVhZjYxNmI1NDgzLzEvUXQ5YjhlSF8wMjZ4LVF2ekIydjdPVXdQS1cwLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9lOC9mZTdmYzItNDFjYy00NjdkLTk4MGItZjVhZjYxNmI1NDgz LzEvWTExYlpFNGktMGlPVFd3QUVyQ3F2eU9PWWVVLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCAGCCsGAQUFBwEHAQH/BBEwDzANBAIAAjAHAwUDKhRLADAN BgkqhkiG9w0BAQsFAAOCAQEAioLY/SCAo9qhaV7tT9eEoRWvPweRUU4XUUOXpHKA Sb9pULgcC/4JRU5B5+lRUjK11pSD4sqNOCQnKrrZlUpZg5MuBZ+t15WRasD33Cdd pvRaaHfyyUTPyYVYkmpinU+mMXUAh/xT0hGBr3JymsbA1hECsOrM+GTecbanOZmq E8tkL8c1u4bh6kSKbJ+Rf7y/Jq8VjT03xcTTSmO4zHU1eNmO+4dlgL/OPhM5uC0r Qgt9hSmHL812VumvY7YTeDDytXfWii57ShPZsg+E1bEk35TL8BJVX/1Voz2H7js3 xcaYvnmtIZqs7uT6z1PFcTZoaIY2/7gfT0FV5wcd+9AhKQ== -----END CERTIFICATE-----Generated at Sat Jan 17 02:50:35 2026 by rpki-client