This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/2q1I-rKM0BSFshYIZC0Y0WTco9w.roa File: 2q1I-rKM0BSFshYIZC0Y0WTco9w.roa (raw, json) Hash identifier: usUb3vtM/qXm8uXZdRTyttXM7Tu/hnRYi33OilTJXqE= Subject key identifier: DA:AD:48:FA:B2:8C:D0:14:85:B2:16:08:64:2D:18:D1:64:DC:A3:DC Certificate issuer: /CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b Certificate serial: 019B7D5D45151CB1807610DCEB7B5ECE4791 Authority key identifier: 63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/2q1I-rKM0BSFshYIZC0Y0WTco9w.roa Signing time: Fri 02 Jan 2026 06:20:23 +0000 ROA not before: Fri 02 Jan 2026 06:20:23 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 211738 IP address blocks: 2a0e:b107:fd0::/44 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.crl rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.mft rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 10 Jan 2026 03:00:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7d:5d:45:15:1c:b1:80:76:10:dc:eb:7b:5e:ce:47:91 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b Validity Not Before: Jan 2 06:20:23 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=daad48fab28cd01485b21608642d18d164dca3dc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:4e:8c:ce:13:60:4c:73:ab:fc:1e:1e:37:6f: 56:19:da:85:4e:d9:84:5a:cf:00:2d:17:41:7c:74: d2:3c:dc:21:63:f6:4c:48:37:96:b0:43:d8:0e:5f: 46:c3:6b:a2:eb:34:34:6e:6d:70:41:eb:a3:21:bb: e0:b8:99:9b:b9:b6:95:fc:8a:0b:ca:ce:ff:a6:53: cf:08:6b:0a:bc:cc:60:d2:d9:d7:9e:8c:09:3b:da: 4f:e3:fb:80:c1:fb:d6:ce:6e:21:82:c8:aa:a3:d5: 5d:e4:34:4c:06:f6:53:46:65:90:a8:ef:f1:4f:59: 9e:ce:b3:82:35:e0:b2:7e:12:6c:c3:95:ca:7e:d5: ca:85:21:e6:14:18:e9:49:22:cc:08:31:d5:7f:2e: f2:6d:cd:d8:06:b4:dc:c0:01:fc:e4:6b:d7:e3:26: b3:a3:74:f0:6f:e8:ef:f3:6c:98:79:b2:8d:78:2e: 7d:05:d0:08:47:b6:2a:9a:0f:de:f0:11:9d:5c:22: 51:e5:67:6c:a5:15:bf:4a:12:70:41:8e:c1:dc:81: 98:0e:8e:fd:a0:92:14:bb:9c:74:70:cd:52:e9:94: 90:03:3c:ff:e8:96:73:87:21:a3:59:c7:64:a7:5a: 7f:c0:f9:cb:25:36:58:8d:7f:06:25:dc:16:b9:42: e1:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DA:AD:48:FA:B2:8C:D0:14:85:B2:16:08:64:2D:18:D1:64:DC:A3:DC X509v3 Authority Key Identifier: keyid:63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/2q1I-rKM0BSFshYIZC0Y0WTco9w.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0e:b107:fd0::/44 Signature Algorithm: sha256WithRSAEncryption 2e:03:63:cf:85:db:c0:fe:20:7c:26:9b:02:69:30:b2:31:81: 02:6c:ff:d3:17:9d:2d:a8:94:e7:2e:0f:76:f0:9f:59:92:e1: fd:68:bb:02:62:f3:13:81:14:32:12:76:11:1a:e6:f8:58:c5: 07:34:4c:a5:52:a3:08:be:1a:dd:af:59:74:7d:bc:3c:36:9e: 44:0d:63:f4:77:fe:3a:a4:f6:cc:16:04:4f:e5:b8:2a:92:bd: cf:81:13:02:2d:b9:c0:75:e8:06:ee:74:59:42:0f:3f:bc:a4: 91:eb:ec:01:83:14:25:79:69:2d:ef:e5:44:20:12:c0:24:73: b7:63:f0:ea:27:69:86:d2:de:86:69:8d:17:5d:4c:f2:fe:d7: ac:4a:87:69:3a:d0:65:6c:8f:cf:f1:8f:9e:84:eb:df:d4:6b: 12:8d:c6:fa:0e:bf:3a:ff:8b:90:c8:2c:ff:13:21:1d:02:c8: 56:68:fe:6d:fd:4e:77:15:6d:57:39:1c:ad:02:54:f5:05:65: eb:b2:b1:0e:68:4d:40:58:9a:e4:40:b0:38:a5:df:96:b7:45: 1a:ce:2f:76:94:90:3b:c5:2d:8c:8b:1f:d2:c5:f1:61:30:6d: d2:db:ec:32:c7:9d:14:ed:b7:d4:3f:99:9f:ee:8c:88:45:09: 50:ff:e7:1e -----BEGIN CERTIFICATE----- MIIFADCCA+igAwIBAgISAZt9XUUVHLGAdhDc63tezkeRMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDYzZTkxNjcxN2FiMTFjY2NmMTFlZjFmYjVjMTJlZTQxOTUw ZmFkOWIwHhcNMjYwMTAyMDYyMDIzWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhkYWFkNDhmYWIyOGNkMDE0ODViMjE2MDg2NDJkMThkMTY0ZGNhM2RjMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0U6MzhNgTHOr/B4eN29WGdqFTtmE Ws8ALRdBfHTSPNwhY/ZMSDeWsEPYDl9Gw2ui6zQ0bm1wQeujIbvguJmbubaV/IoL ys7/plPPCGsKvMxg0tnXnowJO9pP4/uAwfvWzm4hgsiqo9Vd5DRMBvZTRmWQqO/x T1mezrOCNeCyfhJsw5XKftXKhSHmFBjpSSLMCDHVfy7ybc3YBrTcwAH85GvX4yaz o3Twb+jv82yYebKNeC59BdAIR7Yqmg/e8BGdXCJR5WdspRW/ShJwQY7B3IGYDo79 oJIUu5x0cM1S6ZSQAzz/6JZzhyGjWcdkp1p/wPnLJTZYjX8GJdwWuULhzQIDAQAB o4ICDDCCAggwHQYDVR0OBBYEFNqtSPqyjNAUhbIWCGQtGNFk3KPcMB8GA1UdIwQY MBaAFGPpFnF6sRzM8R7x+1wS7kGVD62bMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvWS1rV2NYcXhITXp4SHZIN1hCTHVRWlVQclpzLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81MS80OTU3YTQtY2U1OS00MzE1LTk5NzYt ZGM1ZWM3NDhmNmE1LzEvMnExSS1yS00wQlNGc2hZSVpDMFkwV1Rjbzl3LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81MS80OTU3YTQtY2U1OS00MzE1LTk5NzYtZGM1ZWM3NDhmNmE1 LzEvWS1rV2NYcXhITXp4SHZIN1hCTHVRWlVQclpzLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcEKg6xBw/Q MA0GCSqGSIb3DQEBCwUAA4IBAQAuA2PPhdvA/iB8JpsCaTCyMYECbP/TF50tqJTn Lg928J9ZkuH9aLsCYvMTgRQyEnYRGub4WMUHNEylUqMIvhrdr1l0fbw8Np5EDWP0 d/46pPbMFgRP5bgqkr3PgRMCLbnAdegG7nRZQg8/vKSR6+wBgxQleWkt7+VEIBLA JHO3Y/DqJ2mG0t6GaY0XXUzy/tesSodpOtBlbI/P8Y+ehOvf1GsSjcb6Dr86/4uQ yCz/EyEdAshWaP5t/U53FW1XORytAlT1BWXrsrEOaE1AWJrkQLA4pd+Wt0Uazi92 lJA7xS2Mix/SxfFhMG3S2+wyx50U7bfUP5mf7oyIRQlQ/+ce -----END CERTIFICATE-----Generated at Fri Jan 9 13:11:53 2026 by rpki-client