This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/qKibwG92dF-FtDiZuEaWPxHovsY.roa File: qKibwG92dF-FtDiZuEaWPxHovsY.roa (raw, json) Hash identifier: Mr6QT3HM2LZQb6m4YW9xv5xzxQzt2VzMWGWdi8AZ/Gw= Subject key identifier: A8:A8:9B:C0:6F:76:74:5F:85:B4:38:99:B8:46:96:3F:11:E8:BE:C6 Certificate issuer: /CN=05976801363d375786152e4d061e75c8beb35058 Certificate serial: 019B7E396BC6B450DAD97F7ACAC4990E72D9 Authority key identifier: 05:97:68:01:36:3D:37:57:86:15:2E:4D:06:1E:75:C8:BE:B3:50:58 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BZdoATY9N1eGFS5NBh51yL6zUFg.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/qKibwG92dF-FtDiZuEaWPxHovsY.roa Signing time: Fri 02 Jan 2026 10:20:50 +0000 ROA not before: Fri 02 Jan 2026 10:20:50 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 214795 IP address blocks: 2a0c:b641:c70::/44 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/BZdoATY9N1eGFS5NBh51yL6zUFg.crl rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/BZdoATY9N1eGFS5NBh51yL6zUFg.mft rsync://rpki.ripe.net/repository/DEFAULT/BZdoATY9N1eGFS5NBh51yL6zUFg.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 20 Jan 2026 18:00:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7e:39:6b:c6:b4:50:da:d9:7f:7a:ca:c4:99:0e:72:d9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=05976801363d375786152e4d061e75c8beb35058 Validity Not Before: Jan 2 10:20:50 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=a8a89bc06f76745f85b43899b846963f11e8bec6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:98:d6:e2:9a:cc:12:31:ae:93:51:02:d8:be:5a: d8:5d:3a:ca:38:d6:99:13:81:af:41:54:b8:ed:a2: be:65:6b:37:f3:9a:74:91:81:89:41:1d:e6:86:ea: 9e:09:81:fe:7b:bf:b2:3e:8a:4c:2c:26:f9:d9:bd: 2d:f3:6d:4b:5a:26:d6:8e:db:36:28:74:47:43:d1: d8:e1:0d:58:35:2c:72:2d:3f:4a:41:4a:34:61:77: f6:1c:2c:d5:a2:2f:2b:c2:62:e6:6c:27:59:98:6d: e7:62:5c:df:74:8d:f6:17:30:f7:12:2f:fa:31:98: 50:96:97:77:8b:04:5b:3c:f9:7c:f3:1b:6a:2b:73: 38:ce:06:c0:af:e8:36:4f:da:f1:69:8c:78:cf:97: c7:4a:03:cb:ed:6e:fc:55:3a:37:9b:80:02:a6:86: 51:5f:93:9f:bb:12:be:f2:db:fc:df:1d:9d:79:67: 1c:15:56:44:50:dd:8c:76:bf:8b:63:11:f6:20:11: 5c:38:75:e8:72:cc:2c:5d:c8:f4:44:64:ff:4a:b0: 1e:24:a3:99:f4:39:24:37:9e:a6:e7:0f:fc:39:b2: 6a:ca:57:b9:6c:75:14:e1:78:11:b4:c1:55:84:69: 5d:d8:bb:06:83:1f:db:dc:bf:0d:90:2f:9e:b3:3d: b4:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A8:A8:9B:C0:6F:76:74:5F:85:B4:38:99:B8:46:96:3F:11:E8:BE:C6 X509v3 Authority Key Identifier: keyid:05:97:68:01:36:3D:37:57:86:15:2E:4D:06:1E:75:C8:BE:B3:50:58 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BZdoATY9N1eGFS5NBh51yL6zUFg.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/qKibwG92dF-FtDiZuEaWPxHovsY.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/BZdoATY9N1eGFS5NBh51yL6zUFg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0c:b641:c70::/44 Signature Algorithm: sha256WithRSAEncryption 90:bf:88:57:1e:f6:84:60:91:09:75:d1:ff:90:67:1d:bc:39: 86:f5:1c:f7:5f:60:6f:41:89:14:19:f8:54:02:7d:a3:54:b6: 8a:d7:f8:cb:1f:f4:98:66:fc:d4:9d:19:6b:c1:74:8f:6f:96: d3:e4:26:36:77:3d:79:22:35:79:5a:e9:6e:0a:cc:e7:24:f1: b8:48:4a:0f:70:c1:e8:b3:fc:ca:25:2a:13:90:c4:81:38:19: ca:6d:5d:14:2f:93:8c:26:fe:17:da:ff:c6:6a:0f:4c:8c:a1: ea:66:05:1f:7d:2c:e4:21:d6:0c:3e:e3:a9:5b:e1:bd:98:1a: a5:03:bf:c7:f1:42:67:03:10:04:7a:3a:7b:d5:28:58:3c:c5: e7:f9:10:a3:bb:1a:ce:c0:17:66:35:0d:76:09:e0:fb:fd:c6: 83:6a:9e:21:e1:d9:66:7f:18:46:5c:00:af:a8:53:24:5b:ce: 5c:ff:2d:c3:96:ab:a5:0b:c9:c3:39:4e:8a:95:53:39:95:4a: 12:c9:f9:91:b5:6e:a4:95:7d:24:72:63:0b:9b:eb:2a:08:9c: fe:1d:84:a0:c5:4f:34:59:d1:fd:d3:1d:2b:e7:e3:17:5e:9f: f1:ed:65:ae:97:97:69:29:c3:22:8c:f6:83:90:24:97:e8:58: 0b:af:df:4e -----BEGIN CERTIFICATE----- MIIFADCCA+igAwIBAgISAZt+OWvGtFDa2X96ysSZDnLZMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDA1OTc2ODAxMzYzZDM3NTc4NjE1MmU0ZDA2MWU3NWM4YmVi MzUwNTgwHhcNMjYwMTAyMTAyMDUwWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhhOGE4OWJjMDZmNzY3NDVmODViNDM4OTliODQ2OTYzZjExZThiZWM2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmNbimswSMa6TUQLYvlrYXTrKONaZ E4GvQVS47aK+ZWs385p0kYGJQR3mhuqeCYH+e7+yPopMLCb52b0t821LWibWjts2 KHRHQ9HY4Q1YNSxyLT9KQUo0YXf2HCzVoi8rwmLmbCdZmG3nYlzfdI32FzD3Ei/6 MZhQlpd3iwRbPPl88xtqK3M4zgbAr+g2T9rxaYx4z5fHSgPL7W78VTo3m4ACpoZR X5OfuxK+8tv83x2deWccFVZEUN2Mdr+LYxH2IBFcOHXocswsXcj0RGT/SrAeJKOZ 9DkkN56m5w/8ObJqyle5bHUU4XgRtMFVhGld2LsGgx/b3L8NkC+esz20YwIDAQAB o4ICDDCCAggwHQYDVR0OBBYEFKiom8BvdnRfhbQ4mbhGlj8R6L7GMB8GA1UdIwQY MBaAFAWXaAE2PTdXhhUuTQYedci+s1BYMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvQlpkb0FUWTlOMWVHRlM1TkJoNTF5TDZ6VUZnLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yOS8yYmFhZGMtMmI3YS00ZWMwLTk1Y2Et NWVjOGM4ZWQ2MGZkLzEvcUtpYndHOTJkRi1GdERpWnVFYVdQeEhvdnNZLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yOS8yYmFhZGMtMmI3YS00ZWMwLTk1Y2EtNWVjOGM4ZWQ2MGZk LzEvQlpkb0FUWTlOMWVHRlM1TkJoNTF5TDZ6VUZnLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcEKgy2QQxw MA0GCSqGSIb3DQEBCwUAA4IBAQCQv4hXHvaEYJEJddH/kGcdvDmG9Rz3X2BvQYkU GfhUAn2jVLaK1/jLH/SYZvzUnRlrwXSPb5bT5CY2dz15IjV5WuluCsznJPG4SEoP cMHos/zKJSoTkMSBOBnKbV0UL5OMJv4X2v/Gag9MjKHqZgUffSzkIdYMPuOpW+G9 mBqlA7/H8UJnAxAEejp71ShYPMXn+RCjuxrOwBdmNQ12CeD7/caDap4h4dlmfxhG XACvqFMkW85c/y3DlqulC8nDOU6KlVM5lUoSyfmRtW6klX0kcmMLm+sqCJz+HYSg xU80WdH90x0r5+MXXp/x7WWul5dpKcMijPaDkCSX6FgLr99O -----END CERTIFICATE-----Generated at Tue Jan 20 02:46:08 2026 by rpki-client