This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0a/4404f5-e10c-4190-9270-ac0a84a27d53/1/6q2q3YFmVQNANHpUplZUUHfT0yk.roa File: 6q2q3YFmVQNANHpUplZUUHfT0yk.roa (raw, json) Hash identifier: TaYDbuxiCpELLVVW2DBFRgmKqdXKNPW01u8ESdMBcms= Subject key identifier: EA:AD:AA:DD:81:66:55:03:40:34:7A:54:A6:56:54:50:77:D3:D3:29 Certificate issuer: /CN=f806ec9cf1deabf9d6cd5f8891bb82d56f91d678 Certificate serial: 019B7C1326E5F32B5B9AB1FC4ED6EDB594DD Authority key identifier: F8:06:EC:9C:F1:DE:AB:F9:D6:CD:5F:88:91:BB:82:D5:6F:91:D6:78 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-AbsnPHeq_nWzV-IkbuC1W-R1ng.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0a/4404f5-e10c-4190-9270-ac0a84a27d53/1/6q2q3YFmVQNANHpUplZUUHfT0yk.roa Signing time: Fri 02 Jan 2026 00:19:48 +0000 ROA not before: Fri 02 Jan 2026 00:19:48 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 21032 IP address blocks: 80.78.160.0/20 maxlen: 20 80.78.176.0/20 maxlen: 20 89.145.0.0/18 maxlen: 18 185.159.208.0/22 maxlen: 22 193.109.138.0/23 maxlen: 23 195.85.202.0/24 maxlen: 24 2a02:5d0::/29 maxlen: 32 2a02:5d5::/32 maxlen: 32 2a02:5d7::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0a/4404f5-e10c-4190-9270-ac0a84a27d53/1/1-AbsnPHeq_nWzV-IkbuC1W-R1ng.crl rsync://rpki.ripe.net/repository/DEFAULT/0a/4404f5-e10c-4190-9270-ac0a84a27d53/1/1-AbsnPHeq_nWzV-IkbuC1W-R1ng.mft rsync://rpki.ripe.net/repository/DEFAULT/1-AbsnPHeq_nWzV-IkbuC1W-R1ng.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 21:05:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7c:13:26:e5:f3:2b:5b:9a:b1:fc:4e:d6:ed:b5:94:dd Signature Algorithm: sha256WithRSAEncryption Issuer: CN=f806ec9cf1deabf9d6cd5f8891bb82d56f91d678 Validity Not Before: Jan 2 00:19:48 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=eaadaadd8166550340347a54a656545077d3d329 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:91:db:f7:70:6b:2e:33:cb:c5:5f:bf:1b:09:b8: b1:0d:7b:c3:52:af:cf:3f:08:e7:0b:b3:91:c2:71: e4:fa:33:16:10:39:b7:b3:7d:60:e4:f9:82:b2:67: 21:ab:37:d5:01:64:a1:4a:a5:07:fa:ef:cd:00:f6: b4:25:1b:e4:c1:6e:6c:d4:d3:15:86:70:00:fd:b0: e2:34:ba:e1:a5:cc:ab:af:08:ba:94:5e:87:07:ad: 0c:af:1b:61:a4:e1:9a:36:17:63:9b:c4:e8:05:9c: 64:98:01:e7:bd:42:1e:99:77:a2:15:c7:2e:2a:a7: 1c:0e:c9:3d:1a:fa:37:bd:3f:fe:33:cb:bc:19:75: af:37:ca:fa:b1:a4:07:f9:1a:61:04:a1:22:68:6e: dd:b6:f8:26:99:b7:74:28:2c:54:1c:dc:24:dc:a5: ec:f6:b5:1c:dd:1f:b5:2d:f5:1b:e7:74:ad:2b:29: 18:b1:c1:c9:fb:ee:8a:ab:50:b7:c1:1d:78:d0:5e: bd:b6:87:d6:c1:08:c5:cc:7a:29:73:f3:c6:77:1c: 98:65:ad:bc:b8:78:36:95:06:94:e2:6a:f3:c2:7b: 2a:ee:61:37:5d:d0:28:2e:fc:c4:cf:fc:0c:d0:44: 0d:f8:82:bb:d7:36:40:6f:ff:8b:6d:be:8f:11:28: 6f:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EA:AD:AA:DD:81:66:55:03:40:34:7A:54:A6:56:54:50:77:D3:D3:29 X509v3 Authority Key Identifier: keyid:F8:06:EC:9C:F1:DE:AB:F9:D6:CD:5F:88:91:BB:82:D5:6F:91:D6:78 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-AbsnPHeq_nWzV-IkbuC1W-R1ng.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0a/4404f5-e10c-4190-9270-ac0a84a27d53/1/6q2q3YFmVQNANHpUplZUUHfT0yk.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/0a/4404f5-e10c-4190-9270-ac0a84a27d53/1/1-AbsnPHeq_nWzV-IkbuC1W-R1ng.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 80.78.160.0/19 89.145.0.0/18 185.159.208.0/22 193.109.138.0/23 195.85.202.0/24 IPv6: 2a02:5d0::/29 Signature Algorithm: sha256WithRSAEncryption b0:6e:ad:7e:ed:f6:85:23:25:8b:f1:97:91:f0:21:80:45:cb: 4e:c0:5b:86:05:94:e2:16:ea:87:17:7f:a1:97:8f:30:c8:41: 24:83:b8:e6:4d:5e:b5:c0:18:65:32:ec:ea:7e:37:9d:44:df: 8e:54:8b:f4:01:53:da:b6:99:f4:ab:44:ee:c7:c9:a7:0f:67: 23:b5:83:f7:16:17:c9:6e:4c:13:51:c0:84:33:07:8f:a6:a8: 32:d2:7d:b9:c3:8d:92:54:c7:84:a9:0d:49:d3:7d:24:6e:0c: c9:66:d7:b7:ae:dc:8f:23:2d:e7:b7:16:2b:ab:95:10:ae:22: 1a:bc:a8:ee:11:ca:c6:bf:5c:6a:b3:af:bc:2d:77:71:9c:55: 36:f7:99:54:b7:59:12:2a:13:82:5a:5a:24:10:f6:07:d3:3d: 49:03:ca:96:a3:46:80:32:72:99:91:d5:21:a4:71:51:39:d1: 43:2c:12:40:e1:a3:d7:d7:4e:4f:91:be:e1:b1:ff:2c:24:bb: 4f:88:89:32:7a:7f:05:f7:3b:a0:53:98:ee:b9:5c:eb:14:da: 2e:23:b2:7a:dc:b8:0a:21:b9:aa:56:99:45:1d:98:56:6d:53: 31:fb:28:1a:20:3f:8e:5f:d3:5d:c9:30:25:8a:01:b8:d2:a8: 28:55:0a:2c -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgISAZt8Eybl8ytbmrH8TtbttZTdMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGY4MDZlYzljZjFkZWFiZjlkNmNkNWY4ODkxYmI4MmQ1NmY5 MWQ2NzgwHhcNMjYwMTAyMDAxOTQ4WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhlYWFkYWFkZDgxNjY1NTAzNDAzNDdhNTRhNjU2NTQ1MDc3ZDNkMzI5MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAkdv3cGsuM8vFX78bCbixDXvDUq/P PwjnC7ORwnHk+jMWEDm3s31g5PmCsmchqzfVAWShSqUH+u/NAPa0JRvkwW5s1NMV hnAA/bDiNLrhpcyrrwi6lF6HB60MrxthpOGaNhdjm8ToBZxkmAHnvUIemXeiFccu KqccDsk9Gvo3vT/+M8u8GXWvN8r6saQH+RphBKEiaG7dtvgmmbd0KCxUHNwk3KXs 9rUc3R+1LfUb53StKykYscHJ++6Kq1C3wR140F69tofWwQjFzHopc/PGdxyYZa28 uHg2lQaU4mrzwnsq7mE3XdAoLvzEz/wM0EQN+IK71zZAb/+Lbb6PEShvrwIDAQAB o4ICMjCCAi4wHQYDVR0OBBYEFOqtqt2BZlUDQDR6VKZWVFB309MpMB8GA1UdIwQY MBaAFPgG7Jzx3qv51s1fiJG7gtVvkdZ4MA4GA1UdDwEB/wQEAwIHgDBlBggrBgEF BQcBAQRZMFcwVQYIKwYBBQUHMAKGSXJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvMS1BYnNuUEhlcV9uV3pWLUlrYnVDMVctUjFuZy5jZXIw gY0GCCsGAQUFBwELBIGAMH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBl Lm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMGEvNDQwNGY1LWUxMGMtNDE5MC05Mjcw LWFjMGE4NGEyN2Q1My8xLzZxMnEzWUZtVlFOQU5IcFVwbFpVVUhmVDB5ay5yb2Ew gYIGA1UdHwR7MHkwd6B1oHOGcXJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0 b3J5L0RFRkFVTFQvMGEvNDQwNGY1LWUxMGMtNDE5MC05MjcwLWFjMGE4NGEyN2Q1 My8xLzEtQWJzblBIZXFfbld6Vi1Ja2J1QzFXLVIxbmcuY3JsMBgGA1UdIAEB/wQO MAwwCgYIKwYBBQUHDgIwRgYIKwYBBQUHAQcBAf8ENzA1MCQEAgABMB4DBAVQTqAD BAZZkQADBAK5n9ADBAHBbYoDBADDVcowDQQCAAIwBwMFAyoCBdAwDQYJKoZIhvcN AQELBQADggEBALBurX7t9oUjJYvxl5HwIYBFy07AW4YFlOIW6ocXf6GXjzDIQSSD uOZNXrXAGGUy7Op+N51E345Ui/QBU9q2mfSrRO7HyacPZyO1g/cWF8luTBNRwIQz B4+mqDLSfbnDjZJUx4SpDUnTfSRuDMlm17eu3I8jLee3FiurlRCuIhq8qO4Rysa/ XGqzr7wtd3GcVTb3mVS3WRIqE4JaWiQQ9gfTPUkDypajRoAycpmR1SGkcVE50UMs EkDho9fXTk+RvuGx/ywku0+IiTJ6fwX3O6BTmO65XOsU2i4jsnrcuAohuapWmUUd mFZtUzH7KBogP45f013JMCWKAbjSqChVCiw= -----END CERTIFICATE-----Generated at Tue Feb 10 07:30:58 2026 by rpki-client