This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/9f7b6b-b29d-486e-8478-27efc13aff1e/1/PoqWbVHh-FUr2dkHNr-gmxi2c-8.roa File: PoqWbVHh-FUr2dkHNr-gmxi2c-8.roa (raw, json) Hash identifier: YLgUsuGSocGrObs4G25+Ghw9LtEJ63hht/5KGdZnHW0= Subject key identifier: 3E:8A:96:6D:51:E1:F8:55:2B:D9:D9:07:36:BF:A0:9B:18:B6:73:EF Certificate issuer: /CN=afec4f4a16cc51bd51621011539ceb574ac15d02 Certificate serial: 019B797EE94D23414496FD3A50329EE02BB1 Authority key identifier: AF:EC:4F:4A:16:CC:51:BD:51:62:10:11:53:9C:EB:57:4A:C1:5D:02 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/r-xPShbMUb1RYhARU5zrV0rBXQI.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/9f7b6b-b29d-486e-8478-27efc13aff1e/1/PoqWbVHh-FUr2dkHNr-gmxi2c-8.roa Signing time: Thu 01 Jan 2026 12:18:38 +0000 ROA not before: Thu 01 Jan 2026 12:18:38 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 41562 IP address blocks: 2a03:2040:ff00::/40 maxlen: 40 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/66/9f7b6b-b29d-486e-8478-27efc13aff1e/1/r-xPShbMUb1RYhARU5zrV0rBXQI.crl rsync://rpki.ripe.net/repository/DEFAULT/66/9f7b6b-b29d-486e-8478-27efc13aff1e/1/r-xPShbMUb1RYhARU5zrV0rBXQI.mft rsync://rpki.ripe.net/repository/DEFAULT/r-xPShbMUb1RYhARU5zrV0rBXQI.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 12:00:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:79:7e:e9:4d:23:41:44:96:fd:3a:50:32:9e:e0:2b:b1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=afec4f4a16cc51bd51621011539ceb574ac15d02 Validity Not Before: Jan 1 12:18:38 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=3e8a966d51e1f8552bd9d90736bfa09b18b673ef Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:06:83:b6:4c:33:de:bb:3c:89:07:66:b4:8f: 5b:36:ef:1d:69:44:55:f2:d2:91:a6:91:4b:8d:7a: ed:77:59:7d:d4:19:28:f1:a3:98:a9:99:fd:ff:e0: 6d:21:e2:e6:b5:2f:84:3c:02:13:a1:58:1f:e6:9c: 87:42:29:90:8f:9b:91:d2:45:49:a5:87:43:9e:ed: 76:07:00:92:ed:3f:d1:4a:a0:64:67:93:96:b9:60: 10:38:15:5c:0b:23:68:e5:15:49:b0:c0:af:d1:80: 1e:9f:3a:27:bd:9c:b7:4a:a9:53:21:9f:ce:94:ed: 86:a0:4c:c8:89:0e:4a:88:99:51:d8:e2:cd:44:5d: 10:82:62:c2:ea:13:6f:e5:d6:5b:0e:74:cd:62:75: 35:41:3f:e4:34:de:c7:66:00:ca:56:95:7d:7d:b2: 26:34:b2:7c:8e:20:11:99:9f:c7:ca:f3:4c:ff:7b: 5e:c3:4f:11:bd:8d:a0:d1:67:a8:cd:3c:f3:e9:25: 69:a1:9e:53:fc:bf:bb:ee:19:bd:ec:bc:88:af:be: 67:20:c1:7e:bc:6e:0b:a7:85:34:a9:0c:1f:75:b9: de:3a:43:65:39:9f:fe:9c:e6:e2:74:6a:e0:62:44: 45:69:5e:90:a4:89:1b:5e:78:91:95:7b:81:d4:5e: 7f:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3E:8A:96:6D:51:E1:F8:55:2B:D9:D9:07:36:BF:A0:9B:18:B6:73:EF X509v3 Authority Key Identifier: keyid:AF:EC:4F:4A:16:CC:51:BD:51:62:10:11:53:9C:EB:57:4A:C1:5D:02 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/r-xPShbMUb1RYhARU5zrV0rBXQI.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/9f7b6b-b29d-486e-8478-27efc13aff1e/1/PoqWbVHh-FUr2dkHNr-gmxi2c-8.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/66/9f7b6b-b29d-486e-8478-27efc13aff1e/1/r-xPShbMUb1RYhARU5zrV0rBXQI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a03:2040:ff00::/40 Signature Algorithm: sha256WithRSAEncryption 01:1a:89:45:6d:a1:6c:1f:44:9a:0c:a3:96:ac:95:8f:4a:4f: 1c:28:1c:11:bc:cc:f3:67:38:e7:99:6d:69:7a:27:89:7e:5c: 59:df:ea:92:af:75:48:e6:b8:cf:da:28:99:ae:7c:44:22:2e: 1c:e4:5c:30:e2:5f:6b:20:90:26:05:11:60:0e:9a:3c:6c:25: 91:32:6d:93:3e:67:58:7c:09:8a:4b:b3:e1:56:c1:09:6e:cc: f1:97:5e:d2:e8:a0:57:18:06:62:7d:1a:57:2d:fc:83:d9:51: a5:af:0d:5c:cb:89:01:b9:c3:62:2c:f3:91:ac:d3:05:2d:00: 27:f3:9a:57:48:51:f3:d5:f4:51:91:67:c4:fb:52:9d:63:4c: 2a:fd:9d:e4:82:0b:c5:f9:05:9a:5d:e6:06:4e:99:85:74:2f: 6f:96:22:7d:de:7f:63:c7:0b:28:f5:34:76:e0:da:9c:da:c5: ee:62:10:b7:b7:b1:a6:13:4c:91:0e:dc:e1:bc:d7:8f:02:ba: e6:d6:8c:52:0f:10:4b:61:89:07:d5:50:a4:25:89:e5:7c:0a: 7a:9e:a6:d2:94:04:8a:25:bc:37:a6:c1:20:d3:6c:47:56:c5: 66:d6:e1:d8:7a:1f:f9:ff:b2:74:9e:10:ae:c0:5d:43:53:29: 66:f8:49:db -----BEGIN CERTIFICATE----- MIIE/zCCA+egAwIBAgISAZt5fulNI0FElv06UDKe4CuxMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGFmZWM0ZjRhMTZjYzUxYmQ1MTYyMTAxMTUzOWNlYjU3NGFj MTVkMDIwHhcNMjYwMTAxMTIxODM4WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygzZThhOTY2ZDUxZTFmODU1MmJkOWQ5MDczNmJmYTA5YjE4YjY3M2VmMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsgaDtkwz3rs8iQdmtI9bNu8daURV 8tKRppFLjXrtd1l91Bko8aOYqZn9/+BtIeLmtS+EPAIToVgf5pyHQimQj5uR0kVJ pYdDnu12BwCS7T/RSqBkZ5OWuWAQOBVcCyNo5RVJsMCv0YAenzonvZy3SqlTIZ/O lO2GoEzIiQ5KiJlR2OLNRF0QgmLC6hNv5dZbDnTNYnU1QT/kNN7HZgDKVpV9fbIm NLJ8jiARmZ/HyvNM/3tew08RvY2g0WeozTzz6SVpoZ5T/L+77hm97LyIr75nIMF+ vG4Lp4U0qQwfdbneOkNlOZ/+nObidGrgYkRFaV6QpIkbXniRlXuB1F5/GQIDAQAB o4ICCzCCAgcwHQYDVR0OBBYEFD6Klm1R4fhVK9nZBza/oJsYtnPvMB8GA1UdIwQY MBaAFK/sT0oWzFG9UWIQEVOc61dKwV0CMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvci14UFNoYk1VYjFSWWhBUlU1enJWMHJCWFFJLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82Ni85ZjdiNmItYjI5ZC00ODZlLTg0Nzgt MjdlZmMxM2FmZjFlLzEvUG9xV2JWSGgtRlVyMmRrSE5yLWdteGkyYy04LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC82Ni85ZjdiNmItYjI5ZC00ODZlLTg0NzgtMjdlZmMxM2FmZjFl LzEvci14UFNoYk1VYjFSWWhBUlU1enJWMHJCWFFJLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAOBAIAAjAIAwYAKgMgQP8w DQYJKoZIhvcNAQELBQADggEBAAEaiUVtoWwfRJoMo5aslY9KTxwoHBG8zPNnOOeZ bWl6J4l+XFnf6pKvdUjmuM/aKJmufEQiLhzkXDDiX2sgkCYFEWAOmjxsJZEybZM+ Z1h8CYpLs+FWwQluzPGXXtLooFcYBmJ9Glct/IPZUaWvDVzLiQG5w2Is85Gs0wUt ACfzmldIUfPV9FGRZ8T7Up1jTCr9neSCC8X5BZpd5gZOmYV0L2+WIn3ef2PHCyj1 NHbg2pzaxe5iELe3saYTTJEO3OG8148CuubWjFIPEEthiQfVUKQlieV8CnqeptKU BIolvDemwSDTbEdWxWbW4dh6H/n/snSeEK7AXUNTKWb4Sds= -----END CERTIFICATE-----Generated at Mon Feb 9 22:17:16 2026 by rpki-client