This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/3fd4b6-b414-4902-891f-d2bb7c795a86/1/04qNzQFDeYtDWOQnUWzTpUuvB9k.roa File: 04qNzQFDeYtDWOQnUWzTpUuvB9k.roa (raw, json) Hash identifier: JDVg+JID1CY+10mhtydqzj3KZ7OSSxyFlNU6MU9NGN4= Subject key identifier: D3:8A:8D:CD:01:43:79:8B:43:58:E4:27:51:6C:D3:A5:4B:AF:07:D9 Certificate issuer: /CN=6a9c1faa9783dfab2b7a53da3fb0fdef4ccfeae5 Certificate serial: 019B77589E5F4DF9F4313D051BA376012EA4 Authority key identifier: 6A:9C:1F:AA:97:83:DF:AB:2B:7A:53:DA:3F:B0:FD:EF:4C:CF:EA:E5 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/apwfqpeD36srelPaP7D970zP6uU.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/3fd4b6-b414-4902-891f-d2bb7c795a86/1/04qNzQFDeYtDWOQnUWzTpUuvB9k.roa Signing time: Thu 01 Jan 2026 02:17:34 +0000 ROA not before: Thu 01 Jan 2026 02:17:34 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 210503 IP address blocks: 2a14:ec80::/29 maxlen: 29 2a14:ec80::/48 maxlen: 48 2a14:ec80:1::/48 maxlen: 48 2a14:ec80:2::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/51/3fd4b6-b414-4902-891f-d2bb7c795a86/1/apwfqpeD36srelPaP7D970zP6uU.crl rsync://rpki.ripe.net/repository/DEFAULT/51/3fd4b6-b414-4902-891f-d2bb7c795a86/1/apwfqpeD36srelPaP7D970zP6uU.mft rsync://rpki.ripe.net/repository/DEFAULT/apwfqpeD36srelPaP7D970zP6uU.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 20:00:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:77:58:9e:5f:4d:f9:f4:31:3d:05:1b:a3:76:01:2e:a4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6a9c1faa9783dfab2b7a53da3fb0fdef4ccfeae5 Validity Not Before: Jan 1 02:17:34 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=d38a8dcd0143798b4358e427516cd3a54baf07d9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:05:bf:5e:53:5f:fe:8b:ba:2f:98:ec:43:5b: 00:75:3a:17:d2:d7:f6:df:8e:77:bf:87:42:15:3f: cc:dc:57:cc:9a:55:f0:c9:93:2e:3c:72:41:80:6f: d0:9a:a8:82:a2:f2:ad:05:e6:93:20:72:7f:fb:e7: 9d:4f:54:a0:9d:38:b4:24:e5:b8:2c:cd:48:71:79: 4c:2f:3b:b7:7b:fa:aa:0f:7a:6b:ee:4e:6f:b3:53: 3e:73:1b:c5:ec:ef:32:53:53:d6:8e:77:7a:8b:76: 38:b7:03:0e:3b:7e:2b:06:3f:73:e9:7b:40:dc:64: 4e:bd:ff:51:84:92:8a:fa:34:79:a5:21:6b:c5:f5: 8f:9c:c2:e3:05:ea:0f:78:4d:68:42:54:52:ba:5b: 24:ae:42:d3:65:29:f6:f2:28:3c:4d:0e:7e:f7:26: d5:62:c7:ed:45:c8:2a:3e:05:b0:63:bf:97:b9:63: bc:7d:de:8c:64:f9:a8:21:bc:fb:3e:57:60:3e:d4: e1:44:75:89:ec:e4:09:5e:44:f7:99:5c:c7:c4:c6: 6c:55:bb:75:d9:a3:60:8c:c7:38:75:73:f6:7a:05: 3f:2d:2b:aa:d8:bc:a4:96:06:4c:53:94:93:86:b9: 14:ce:de:0d:5f:01:45:48:4e:d7:41:99:f9:5f:2a: 7a:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D3:8A:8D:CD:01:43:79:8B:43:58:E4:27:51:6C:D3:A5:4B:AF:07:D9 X509v3 Authority Key Identifier: keyid:6A:9C:1F:AA:97:83:DF:AB:2B:7A:53:DA:3F:B0:FD:EF:4C:CF:EA:E5 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/apwfqpeD36srelPaP7D970zP6uU.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/3fd4b6-b414-4902-891f-d2bb7c795a86/1/04qNzQFDeYtDWOQnUWzTpUuvB9k.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/51/3fd4b6-b414-4902-891f-d2bb7c795a86/1/apwfqpeD36srelPaP7D970zP6uU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a14:ec80::/29 Signature Algorithm: sha256WithRSAEncryption 66:59:87:58:ce:19:85:bb:5e:f2:99:71:18:12:e0:20:f0:1e: 33:b7:27:40:d9:1c:47:47:fa:a4:9b:4e:d3:6c:33:3a:ba:b7: 4a:cd:78:b1:0e:83:b1:76:2f:00:0b:e4:b8:0f:9b:0b:01:cf: 54:9a:97:a7:09:8c:a2:24:0a:89:a7:f4:fa:7b:52:50:26:c2: 14:74:e3:78:be:83:2f:03:03:5c:6b:f3:8e:45:f0:3c:66:7c: 4b:9f:e7:62:6a:74:56:a0:1b:f7:fb:02:8d:3a:fa:61:3f:f7: ac:d4:69:7d:82:0f:cd:ed:3a:17:cc:a1:f6:7f:89:45:fa:67: ff:2b:9f:98:07:f4:6e:ff:e5:2d:16:bf:c3:01:66:d7:7f:85: 74:5c:8e:a1:88:b8:bb:04:dd:3d:69:f6:33:c5:73:7e:17:c5: da:0a:8e:6d:44:41:18:52:48:4f:df:b9:a9:ef:50:c5:22:2c: 7c:51:5e:d1:c3:93:bc:b2:8c:d2:d7:28:44:01:d1:2a:14:cd: c4:17:d3:c5:c6:9a:42:37:9e:9c:03:71:7e:3e:3c:ac:d9:dc: 38:2d:e7:e0:3c:bf:95:21:c4:8a:95:2d:dd:39:cf:5a:8d:ff: 2d:d4:32:7c:78:35:26:16:9a:0e:e4:81:59:3e:1c:89:68:e2: b2:75:8b:5d -----BEGIN CERTIFICATE----- MIIE/jCCA+agAwIBAgISAZt3WJ5fTfn0MT0FG6N2AS6kMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDZhOWMxZmFhOTc4M2RmYWIyYjdhNTNkYTNmYjBmZGVmNGNj ZmVhZTUwHhcNMjYwMTAxMDIxNzM0WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhkMzhhOGRjZDAxNDM3OThiNDM1OGU0Mjc1MTZjZDNhNTRiYWYwN2Q5MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAoAW/XlNf/ou6L5jsQ1sAdToX0tf2 3453v4dCFT/M3FfMmlXwyZMuPHJBgG/QmqiCovKtBeaTIHJ/++edT1SgnTi0JOW4 LM1IcXlMLzu3e/qqD3pr7k5vs1M+cxvF7O8yU1PWjnd6i3Y4twMOO34rBj9z6XtA 3GROvf9RhJKK+jR5pSFrxfWPnMLjBeoPeE1oQlRSulskrkLTZSn28ig8TQ5+9ybV YsftRcgqPgWwY7+XuWO8fd6MZPmoIbz7PldgPtThRHWJ7OQJXkT3mVzHxMZsVbt1 2aNgjMc4dXP2egU/LSuq2LyklgZMU5SThrkUzt4NXwFFSE7XQZn5Xyp6JQIDAQAB o4ICCjCCAgYwHQYDVR0OBBYEFNOKjc0BQ3mLQ1jkJ1Fs06VLrwfZMB8GA1UdIwQY MBaAFGqcH6qXg9+rK3pT2j+w/e9Mz+rlMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvYXB3ZnFwZUQzNnNyZWxQYVA3RDk3MHpQNnVVLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81MS8zZmQ0YjYtYjQxNC00OTAyLTg5MWYt ZDJiYjdjNzk1YTg2LzEvMDRxTnpRRkRlWXREV09RblVXelRwVXV2QjlrLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81MS8zZmQ0YjYtYjQxNC00OTAyLTg5MWYtZDJiYjdjNzk1YTg2 LzEvYXB3ZnFwZUQzNnNyZWxQYVA3RDk3MHpQNnVVLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCAGCCsGAQUFBwEHAQH/BBEwDzANBAIAAjAHAwUDKhTsgDAN BgkqhkiG9w0BAQsFAAOCAQEAZlmHWM4Zhbte8plxGBLgIPAeM7cnQNkcR0f6pJtO 02wzOrq3Ss14sQ6DsXYvAAvkuA+bCwHPVJqXpwmMoiQKiaf0+ntSUCbCFHTjeL6D LwMDXGvzjkXwPGZ8S5/nYmp0VqAb9/sCjTr6YT/3rNRpfYIPze06F8yh9n+JRfpn /yufmAf0bv/lLRa/wwFm13+FdFyOoYi4uwTdPWn2M8VzfhfF2gqObURBGFJIT9+5 qe9QxSIsfFFe0cOTvLKM0tcoRAHRKhTNxBfTxcaaQjeenANxfj48rNncOC3n4Dy/ lSHEipUt3TnPWo3/LdQyfHg1JhaaDuSBWT4ciWjisnWLXQ== -----END CERTIFICATE-----Generated at Tue Feb 10 04:16:12 2026 by rpki-client