This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5a/d2e137-cebb-4794-9ace-1b5de5b76062/1/qYLGAcvtEuF5PRAuWurjHsIKzqA.roa File: qYLGAcvtEuF5PRAuWurjHsIKzqA.roa (raw, json) Hash identifier: 5iM7z0Ocb30XgRdkW4wQqrCmbwJLHsRTyj2e6RtK/do= Subject key identifier: A9:82:C6:01:CB:ED:12:E1:79:3D:10:2E:5A:EA:E3:1E:C2:0A:CE:A0 Certificate issuer: /CN=4aca04586a85ed12e9cda834dfdfa119c1a58975 Certificate serial: 019B7C7F97E4BEE1B17BE4603FB80CE136C6 Authority key identifier: 4A:CA:04:58:6A:85:ED:12:E9:CD:A8:34:DF:DF:A1:19:C1:A5:89:75 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/SsoEWGqF7RLpzag039-hGcGliXU.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5a/d2e137-cebb-4794-9ace-1b5de5b76062/1/qYLGAcvtEuF5PRAuWurjHsIKzqA.roa Signing time: Fri 02 Jan 2026 02:18:15 +0000 ROA not before: Fri 02 Jan 2026 02:18:15 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 9145 IP address blocks: 2001:678:c4::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5a/d2e137-cebb-4794-9ace-1b5de5b76062/1/SsoEWGqF7RLpzag039-hGcGliXU.crl rsync://rpki.ripe.net/repository/DEFAULT/5a/d2e137-cebb-4794-9ace-1b5de5b76062/1/SsoEWGqF7RLpzag039-hGcGliXU.mft rsync://rpki.ripe.net/repository/DEFAULT/SsoEWGqF7RLpzag039-hGcGliXU.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7c:7f:97:e4:be:e1:b1:7b:e4:60:3f:b8:0c:e1:36:c6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4aca04586a85ed12e9cda834dfdfa119c1a58975 Validity Not Before: Jan 2 02:18:15 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=a982c601cbed12e1793d102e5aeae31ec20acea0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:a9:28:20:40:1b:9a:a8:81:4f:62:b2:2d:79: 64:ce:1c:96:71:fa:68:be:d1:a6:81:7d:68:89:1d: e0:6d:1f:ca:1c:74:77:d1:66:05:ed:78:e3:60:8d: 63:fe:cb:76:40:50:41:9b:ef:08:31:7d:f1:db:78: 60:a3:87:be:d8:37:87:03:0f:2a:0c:7c:8e:65:0d: 33:eb:a2:71:06:a1:b0:9b:4a:ad:07:d2:06:f7:ed: 6e:05:45:36:8f:8b:b2:9c:c0:97:ba:79:d2:e8:44: f8:72:4c:56:31:8b:20:0a:e9:10:c3:0e:18:3a:2a: ba:7f:1d:5e:40:8c:fb:b5:06:14:83:84:80:80:8d: 77:69:48:ba:48:86:7a:d7:78:33:98:66:bf:59:98: 55:8a:d6:c1:30:cb:d9:56:57:79:33:7b:f4:21:bd: b8:13:00:d9:45:e1:2f:76:3e:98:63:36:4b:79:dd: 7c:dc:3b:4e:c6:c1:5f:9f:82:c2:d5:bf:f7:1c:54: 14:f5:5c:8d:ff:c4:d8:3c:fd:f2:d7:51:21:a3:26: 1e:25:34:a4:cb:99:5f:8d:2b:7a:b3:f9:e7:b0:d0: ca:ac:f1:b2:13:a5:a4:57:3d:1e:de:1c:96:25:fd: f3:78:ce:2a:18:e2:6c:e6:75:45:a3:1c:a2:bf:0c: 69:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A9:82:C6:01:CB:ED:12:E1:79:3D:10:2E:5A:EA:E3:1E:C2:0A:CE:A0 X509v3 Authority Key Identifier: keyid:4A:CA:04:58:6A:85:ED:12:E9:CD:A8:34:DF:DF:A1:19:C1:A5:89:75 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/SsoEWGqF7RLpzag039-hGcGliXU.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/d2e137-cebb-4794-9ace-1b5de5b76062/1/qYLGAcvtEuF5PRAuWurjHsIKzqA.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/d2e137-cebb-4794-9ace-1b5de5b76062/1/SsoEWGqF7RLpzag039-hGcGliXU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:678:c4::/48 Signature Algorithm: sha256WithRSAEncryption 24:d0:83:23:49:d1:3b:0e:af:08:22:ed:dc:45:29:65:c6:8b: cb:5f:ed:78:88:72:77:92:0f:16:5d:62:e4:f3:ba:36:b3:ea: be:c1:9a:c2:17:b6:91:0f:aa:70:0a:51:62:81:14:2f:24:3b: 8c:b6:de:eb:ef:ae:d5:18:62:7a:6f:59:3a:f1:af:ed:47:d7: c4:9e:cf:6f:2e:c6:6a:68:21:68:32:87:66:1f:ce:92:61:34: a4:16:bc:79:59:ef:a3:45:83:d0:8e:18:e3:dc:d9:eb:04:aa: fc:41:da:fa:57:43:1d:e4:c3:8f:10:92:46:29:8a:dd:3a:fd: e2:c5:ab:e4:d6:d8:56:20:86:57:0e:a7:33:52:ee:0c:9f:91: fd:e3:2a:82:d8:07:b7:02:be:b8:62:88:5f:d6:6b:e8:68:16: 55:d8:f7:b2:1d:e7:0e:88:bd:a6:cc:e1:c0:9d:79:97:0b:8b: 57:68:c6:68:27:4b:46:5c:52:c9:dd:8f:e3:53:6c:c3:77:d5: 2e:84:38:e4:bf:5a:b3:ea:11:e6:fa:bc:e8:79:46:c1:f0:1c: 63:fa:0b:2f:90:c0:56:b6:3e:16:8f:b6:ad:6f:e1:99:b2:3a: 6a:fd:91:1d:82:ed:39:cc:19:b9:68:41:8d:2e:e6:a3:26:94: 58:3b:62:fa -----BEGIN CERTIFICATE----- MIIFADCCA+igAwIBAgISAZt8f5fkvuGxe+RgP7gM4TbGMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDRhY2EwNDU4NmE4NWVkMTJlOWNkYTgzNGRmZGZhMTE5YzFh NTg5NzUwHhcNMjYwMTAyMDIxODE1WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhhOTgyYzYwMWNiZWQxMmUxNzkzZDEwMmU1YWVhZTMxZWMyMGFjZWEwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAq6koIEAbmqiBT2KyLXlkzhyWcfpo vtGmgX1oiR3gbR/KHHR30WYF7XjjYI1j/st2QFBBm+8IMX3x23hgo4e+2DeHAw8q DHyOZQ0z66JxBqGwm0qtB9IG9+1uBUU2j4uynMCXunnS6ET4ckxWMYsgCukQww4Y Oiq6fx1eQIz7tQYUg4SAgI13aUi6SIZ613gzmGa/WZhVitbBMMvZVld5M3v0Ib24 EwDZReEvdj6YYzZLed183DtOxsFfn4LC1b/3HFQU9VyN/8TYPP3y11EhoyYeJTSk y5lfjSt6s/nnsNDKrPGyE6WkVz0e3hyWJf3zeM4qGOJs5nVFoxyivwxp1wIDAQAB o4ICDDCCAggwHQYDVR0OBBYEFKmCxgHL7RLheT0QLlrq4x7CCs6gMB8GA1UdIwQY MBaAFErKBFhqhe0S6c2oNN/foRnBpYl1MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvU3NvRVdHcUY3UkxwemFnMDM5LWhHY0dsaVhVLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81YS9kMmUxMzctY2ViYi00Nzk0LTlhY2Ut MWI1ZGU1Yjc2MDYyLzEvcVlMR0FjdnRFdUY1UFJBdVd1cmpIc0lLenFBLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81YS9kMmUxMzctY2ViYi00Nzk0LTlhY2UtMWI1ZGU1Yjc2MDYy LzEvU3NvRVdHcUY3UkxwemFnMDM5LWhHY0dsaVhVLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAIAEGeADE MA0GCSqGSIb3DQEBCwUAA4IBAQAk0IMjSdE7Dq8IIu3cRSllxovLX+14iHJ3kg8W XWLk87o2s+q+wZrCF7aRD6pwClFigRQvJDuMtt7r767VGGJ6b1k68a/tR9fEns9v LsZqaCFoModmH86SYTSkFrx5We+jRYPQjhjj3NnrBKr8Qdr6V0Md5MOPEJJGKYrd Ov3ixavk1thWIIZXDqczUu4Mn5H94yqC2Ae3Ar64Yohf1mvoaBZV2PeyHecOiL2m zOHAnXmXC4tXaMZoJ0tGXFLJ3Y/jU2zDd9UuhDjkv1qz6hHm+rzoeUbB8Bxj+gsv kMBWtj4Wj7atb+GZsjpq/ZEdgu05zBm5aEGNLuajJpRYO2L6 -----END CERTIFICATE-----Generated at Mon Feb 9 23:54:44 2026 by rpki-client