This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/50/86c002-758b-495a-b9cd-7b0dc00a8c20/1/qK0Mrs6KenO_aRFhW0teITHdeuo.roa File: qK0Mrs6KenO_aRFhW0teITHdeuo.roa (raw, json) Hash identifier: 4G9MkNxMVnSOflcsOcuB/8IbmHM1MZ+IOen97Qx/3A0= Subject key identifier: A8:AD:0C:AE:CE:8A:7A:73:BF:69:11:61:5B:4B:5E:21:31:DD:7A:EA Certificate issuer: /CN=8e0f683867ef769a0a22ade17118ed06fa57b81f Certificate serial: 019B79108E2D707578F08E5F4DF1071E474A Authority key identifier: 8E:0F:68:38:67:EF:76:9A:0A:22:AD:E1:71:18:ED:06:FA:57:B8:1F Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jg9oOGfvdpoKIq3hcRjtBvpXuB8.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/50/86c002-758b-495a-b9cd-7b0dc00a8c20/1/qK0Mrs6KenO_aRFhW0teITHdeuo.roa Signing time: Thu 01 Jan 2026 10:18:06 +0000 ROA not before: Thu 01 Jan 2026 10:18:06 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 215387 IP address blocks: 2001:67c:e24::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/50/86c002-758b-495a-b9cd-7b0dc00a8c20/1/jg9oOGfvdpoKIq3hcRjtBvpXuB8.crl rsync://rpki.ripe.net/repository/DEFAULT/50/86c002-758b-495a-b9cd-7b0dc00a8c20/1/jg9oOGfvdpoKIq3hcRjtBvpXuB8.mft rsync://rpki.ripe.net/repository/DEFAULT/jg9oOGfvdpoKIq3hcRjtBvpXuB8.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 10:01:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:79:10:8e:2d:70:75:78:f0:8e:5f:4d:f1:07:1e:47:4a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8e0f683867ef769a0a22ade17118ed06fa57b81f Validity Not Before: Jan 1 10:18:06 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=a8ad0caece8a7a73bf6911615b4b5e2131dd7aea Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:07:09:8b:16:ac:c3:1a:81:87:e7:34:37:45: 06:ab:3e:be:ab:c3:a1:fb:42:21:e0:ae:dd:0b:72: d0:eb:f3:35:e7:f7:4f:ec:be:55:45:1d:16:39:1a: 77:d5:ff:d6:71:19:57:8c:0b:af:b1:8f:35:a5:19: 40:64:39:09:1e:16:f1:4b:67:2f:2e:98:4a:a0:86: 2d:9a:c3:1e:90:86:9e:45:3d:0d:31:42:02:37:4e: ec:c1:ab:92:f4:27:db:5f:af:4a:c6:5a:bd:ee:69: a9:67:31:b2:07:f3:5c:c3:20:cd:52:28:4a:4d:81: 5a:91:1f:bd:d9:65:8e:0a:43:95:4a:1c:cb:92:54: 46:14:a5:d9:62:c7:db:44:42:41:9d:01:08:1a:fa: e8:ee:89:7f:4e:1e:a3:32:03:19:29:d9:ce:dd:cc: db:8b:35:e3:40:07:4d:89:62:1e:c1:e6:7f:25:b6: d1:02:6a:f3:a7:3e:21:1a:81:27:19:2e:4a:bd:e7: 08:5d:39:f6:0e:d4:0e:d0:9c:56:aa:b1:0b:28:96: 10:0a:be:8b:53:97:dd:c2:8d:62:9d:5f:fb:bd:00: 40:06:53:ee:d4:65:42:53:39:41:9c:ce:74:36:81: 2d:6b:b8:ed:2d:a7:17:f1:cf:be:76:a4:5d:36:8d: 6c:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A8:AD:0C:AE:CE:8A:7A:73:BF:69:11:61:5B:4B:5E:21:31:DD:7A:EA X509v3 Authority Key Identifier: keyid:8E:0F:68:38:67:EF:76:9A:0A:22:AD:E1:71:18:ED:06:FA:57:B8:1F X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jg9oOGfvdpoKIq3hcRjtBvpXuB8.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/50/86c002-758b-495a-b9cd-7b0dc00a8c20/1/qK0Mrs6KenO_aRFhW0teITHdeuo.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/50/86c002-758b-495a-b9cd-7b0dc00a8c20/1/jg9oOGfvdpoKIq3hcRjtBvpXuB8.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:67c:e24::/48 Signature Algorithm: sha256WithRSAEncryption c3:17:c4:2a:4d:18:e0:c7:84:3f:ef:95:60:53:32:53:91:12: 4d:79:e6:44:45:49:70:2a:df:06:32:85:66:5b:25:bb:50:17: 30:a0:34:a8:2a:d7:12:81:a0:4d:2a:b0:eb:df:7b:60:2d:4f: 00:94:11:64:66:c5:84:44:59:78:5c:0b:74:9e:63:9a:f8:33: 87:af:b1:f3:95:79:c2:ef:d9:2b:dd:a1:51:8c:af:31:c2:4c: 13:b7:32:ce:f7:88:ed:bb:19:a0:27:f5:41:2e:51:79:97:25: de:01:7c:4a:a1:5e:ab:c8:bc:3e:d6:28:9b:ca:19:d2:2e:58: 41:05:51:e6:a9:e0:55:39:16:a2:15:9b:1d:2e:0f:37:0e:49: b2:a0:b3:29:05:03:3e:df:7a:d8:27:79:ba:87:0a:02:aa:11: 74:d1:42:94:88:d6:f8:bd:fa:d9:40:f4:aa:af:a0:77:37:b7: c5:f9:94:f7:f8:aa:01:50:65:3b:3d:04:bb:7b:c2:13:8c:64: e9:33:69:b8:bf:5d:35:f8:66:93:24:c3:9a:bb:85:84:72:4e: 5b:c2:88:3e:eb:b8:62:a2:df:72:84:3e:38:b4:d3:ea:29:d6: 13:87:60:30:03:e9:8e:1e:bf:3a:a4:24:a9:1b:23:f9:1b:ac: de:60:a3:e4 -----BEGIN CERTIFICATE----- MIIFADCCA+igAwIBAgISAZt5EI4tcHV48I5fTfEHHkdKMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDhlMGY2ODM4NjdlZjc2OWEwYTIyYWRlMTcxMThlZDA2ZmE1 N2I4MWYwHhcNMjYwMTAxMTAxODA2WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhhOGFkMGNhZWNlOGE3YTczYmY2OTExNjE1YjRiNWUyMTMxZGQ3YWVhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0QcJixaswxqBh+c0N0UGqz6+q8Oh +0Ih4K7dC3LQ6/M15/dP7L5VRR0WORp31f/WcRlXjAuvsY81pRlAZDkJHhbxS2cv LphKoIYtmsMekIaeRT0NMUICN07swauS9CfbX69Kxlq97mmpZzGyB/NcwyDNUihK TYFakR+92WWOCkOVShzLklRGFKXZYsfbREJBnQEIGvro7ol/Th6jMgMZKdnO3czb izXjQAdNiWIeweZ/JbbRAmrzpz4hGoEnGS5KvecIXTn2DtQO0JxWqrELKJYQCr6L U5fdwo1inV/7vQBABlPu1GVCUzlBnM50NoEta7jtLacX8c++dqRdNo1sewIDAQAB o4ICDDCCAggwHQYDVR0OBBYEFKitDK7Oinpzv2kRYVtLXiEx3XrqMB8GA1UdIwQY MBaAFI4PaDhn73aaCiKt4XEY7Qb6V7gfMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvamc5b09HZnZkcG9LSXEzaGNSanRCdnBYdUI4LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81MC84NmMwMDItNzU4Yi00OTVhLWI5Y2Qt N2IwZGMwMGE4YzIwLzEvcUswTXJzNktlbk9fYVJGaFcwdGVJVEhkZXVvLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81MC84NmMwMDItNzU4Yi00OTVhLWI5Y2QtN2IwZGMwMGE4YzIw LzEvamc5b09HZnZkcG9LSXEzaGNSanRCdnBYdUI4LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAIAEGfA4k MA0GCSqGSIb3DQEBCwUAA4IBAQDDF8QqTRjgx4Q/75VgUzJTkRJNeeZERUlwKt8G MoVmWyW7UBcwoDSoKtcSgaBNKrDr33tgLU8AlBFkZsWERFl4XAt0nmOa+DOHr7Hz lXnC79kr3aFRjK8xwkwTtzLO94jtuxmgJ/VBLlF5lyXeAXxKoV6ryLw+1iibyhnS LlhBBVHmqeBVORaiFZsdLg83DkmyoLMpBQM+33rYJ3m6hwoCqhF00UKUiNb4vfrZ QPSqr6B3N7fF+ZT3+KoBUGU7PQS7e8ITjGTpM2m4v101+GaTJMOau4WEck5bwog+ 67hiot9yhD44tNPqKdYTh2AwA+mOHr86pCSpGyP5G6zeYKPk -----END CERTIFICATE-----Generated at Mon Feb 9 20:05:19 2026 by rpki-client