This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/02/f96f73-6686-4164-b23f-bf4e527b9fa8/1/q6EO5WMUIjo6nex-1TrKByWC6lo.roa File: q6EO5WMUIjo6nex-1TrKByWC6lo.roa (raw, json) Hash identifier: ydmpbR/gUl4AR9Q7E2WABePMHBAkMww9EflFB1gWV9E= Subject key identifier: AB:A1:0E:E5:63:14:22:3A:3A:9D:EC:7E:D5:3A:CA:07:25:82:EA:5A Certificate issuer: /CN=9e95a361fe2b2c5292626ba4c56a65a814e48008 Certificate serial: 019B7EA6DBC9BB0311ADEA3D1A9D83F04DF1 Authority key identifier: 9E:95:A3:61:FE:2B:2C:52:92:62:6B:A4:C5:6A:65:A8:14:E4:80:08 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/npWjYf4rLFKSYmukxWplqBTkgAg.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/02/f96f73-6686-4164-b23f-bf4e527b9fa8/1/q6EO5WMUIjo6nex-1TrKByWC6lo.roa Signing time: Fri 02 Jan 2026 12:20:22 +0000 ROA not before: Fri 02 Jan 2026 12:20:22 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 200529 IP address blocks: 2a0c:9a46:700::/40 maxlen: 48 2a0e:7d47::/32 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/02/f96f73-6686-4164-b23f-bf4e527b9fa8/1/npWjYf4rLFKSYmukxWplqBTkgAg.crl rsync://rpki.ripe.net/repository/DEFAULT/02/f96f73-6686-4164-b23f-bf4e527b9fa8/1/npWjYf4rLFKSYmukxWplqBTkgAg.mft rsync://rpki.ripe.net/repository/DEFAULT/npWjYf4rLFKSYmukxWplqBTkgAg.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 21 Jan 2026 02:01:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7e:a6:db:c9:bb:03:11:ad:ea:3d:1a:9d:83:f0:4d:f1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9e95a361fe2b2c5292626ba4c56a65a814e48008 Validity Not Before: Jan 2 12:20:22 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=aba10ee56314223a3a9dec7ed53aca072582ea5a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:71:1c:86:fa:86:38:6f:28:81:4e:1b:54:d3: fb:5f:d1:be:b2:73:bb:a7:0c:d5:1c:bf:a9:b5:c3: 0c:98:39:a6:29:11:84:e2:60:92:41:aa:b5:e5:c8: 03:4c:c6:6d:ab:d5:79:fd:a2:d3:56:f3:37:90:a0: 1d:93:a5:8c:42:47:7c:f2:43:2b:86:94:df:d5:02: 3f:71:f8:48:9e:d1:f7:a9:aa:f7:75:08:d8:65:6a: eb:d4:0f:f5:7c:0b:f9:d5:dc:e3:db:68:3e:7e:11: 23:bc:d8:ea:78:8a:1d:f0:27:90:3a:01:d5:77:0c: 4f:ac:74:78:d1:d9:3c:5a:32:71:a4:c1:e2:53:e0: 39:ce:11:65:2f:83:8d:bc:3c:f6:7d:99:7c:6f:5d: 22:b0:ab:0b:03:02:31:63:cb:45:17:47:34:8a:61: e3:58:fd:0e:e5:d4:f0:6c:6f:42:e7:5a:c5:ce:fc: 55:79:e2:c4:cc:50:f6:b4:04:a1:81:03:bc:f7:cf: 94:ed:2d:6a:e7:20:84:5c:eb:e7:88:ac:cf:67:a8: 86:1f:a2:dd:4c:0e:7d:5f:c5:ea:b3:b2:eb:1d:2b: 05:6b:bf:8b:4c:51:fd:ad:57:eb:28:e5:31:85:a2: b5:b1:f2:71:b3:7f:7d:67:82:ca:ee:f1:c9:a6:43: ee:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AB:A1:0E:E5:63:14:22:3A:3A:9D:EC:7E:D5:3A:CA:07:25:82:EA:5A X509v3 Authority Key Identifier: keyid:9E:95:A3:61:FE:2B:2C:52:92:62:6B:A4:C5:6A:65:A8:14:E4:80:08 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/npWjYf4rLFKSYmukxWplqBTkgAg.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/02/f96f73-6686-4164-b23f-bf4e527b9fa8/1/q6EO5WMUIjo6nex-1TrKByWC6lo.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/02/f96f73-6686-4164-b23f-bf4e527b9fa8/1/npWjYf4rLFKSYmukxWplqBTkgAg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0c:9a46:700::/40 2a0e:7d47::/32 Signature Algorithm: sha256WithRSAEncryption c7:cf:1b:fb:35:28:0e:0e:6e:f2:a3:d6:3f:d8:db:cd:e9:09: ec:e7:b9:45:79:71:e1:91:32:ec:9b:22:4c:2a:cd:2b:81:87: 05:e4:03:f1:46:11:bd:01:66:f2:a0:3d:1f:12:ab:ba:93:51: 7b:aa:88:b0:56:f5:6a:48:3d:ff:e3:fb:e9:28:4d:6c:64:fa: da:02:cc:2f:0c:ec:16:6a:08:0c:46:bd:64:2b:f5:a1:46:05: 79:6d:87:d7:86:61:e7:69:90:20:9c:0e:f3:8c:94:d0:d0:ee: 39:4c:f0:1b:79:57:db:23:58:dc:87:c9:cf:c1:cf:84:c3:68: e0:72:08:aa:f2:0a:2c:61:84:20:75:17:aa:d6:29:e7:53:85: 5d:1e:37:f1:4e:15:27:d3:39:b7:c6:d8:f3:56:61:60:c1:fe: 00:c8:23:e9:64:44:34:94:e8:35:7c:3a:b8:77:84:a5:19:18: cd:02:79:13:c9:e8:37:9e:f6:a4:5b:45:d4:36:f0:f6:a1:c0: f0:87:f8:45:10:52:e0:a8:9d:0b:9a:d0:da:95:cd:27:e9:75: 6f:dd:85:3a:df:93:6b:52:92:d9:c2:c7:d1:19:cd:4d:1d:c4: 87:43:f1:27:aa:89:f3:7e:b0:26:b9:d7:e6:55:f7:10:94:92: 89:a5:fc:cb -----BEGIN CERTIFICATE----- MIIFBjCCA+6gAwIBAgISAZt+ptvJuwMRreo9Gp2D8E3xMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDllOTVhMzYxZmUyYjJjNTI5MjYyNmJhNGM1NmE2NWE4MTRl NDgwMDgwHhcNMjYwMTAyMTIyMDIyWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhhYmExMGVlNTYzMTQyMjNhM2E5ZGVjN2VkNTNhY2EwNzI1ODJlYTVhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA4HEchvqGOG8ogU4bVNP7X9G+snO7 pwzVHL+ptcMMmDmmKRGE4mCSQaq15cgDTMZtq9V5/aLTVvM3kKAdk6WMQkd88kMr hpTf1QI/cfhIntH3qar3dQjYZWrr1A/1fAv51dzj22g+fhEjvNjqeIod8CeQOgHV dwxPrHR40dk8WjJxpMHiU+A5zhFlL4ONvDz2fZl8b10isKsLAwIxY8tFF0c0imHj WP0O5dTwbG9C51rFzvxVeeLEzFD2tAShgQO898+U7S1q5yCEXOvniKzPZ6iGH6Ld TA59X8Xqs7LrHSsFa7+LTFH9rVfrKOUxhaK1sfJxs399Z4LK7vHJpkPuywIDAQAB o4ICEjCCAg4wHQYDVR0OBBYEFKuhDuVjFCI6Op3sftU6ygclgupaMB8GA1UdIwQY MBaAFJ6Vo2H+KyxSkmJrpMVqZagU5IAIMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvbnBXallmNHJMRktTWW11a3hXcGxxQlRrZ0FnLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wMi9mOTZmNzMtNjY4Ni00MTY0LWIyM2Yt YmY0ZTUyN2I5ZmE4LzEvcTZFTzVXTVVJam82bmV4LTFUcktCeVdDNmxvLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wMi9mOTZmNzMtNjY4Ni00MTY0LWIyM2YtYmY0ZTUyN2I5ZmE4 LzEvbnBXallmNHJMRktTWW11a3hXcGxxQlRrZ0FnLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCgGCCsGAQUFBwEHAQH/BBkwFzAVBAIAAjAPAwYAKgyaRgcD BQAqDn1HMA0GCSqGSIb3DQEBCwUAA4IBAQDHzxv7NSgODm7yo9Y/2NvN6Qns57lF eXHhkTLsmyJMKs0rgYcF5APxRhG9AWbyoD0fEqu6k1F7qoiwVvVqSD3/4/vpKE1s ZPraAswvDOwWaggMRr1kK/WhRgV5bYfXhmHnaZAgnA7zjJTQ0O45TPAbeVfbI1jc h8nPwc+Ew2jgcgiq8gosYYQgdReq1innU4VdHjfxThUn0zm3xtjzVmFgwf4AyCPp ZEQ0lOg1fDq4d4SlGRjNAnkTyeg3nvakW0XUNvD2ocDwh/hFEFLgqJ0LmtDalc0n 6XVv3YU635NrUpLZwsfRGc1NHcSHQ/EnqonzfrAmudfmVfcQlJKJpfzL -----END CERTIFICATE-----Generated at Tue Jan 20 09:03:40 2026 by rpki-client