This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/71/5a7d2f-5168-4720-8ce0-704149619c46/1/Q3uvcJk1aivu7ToH0eZwM2MePrY.roa File: Q3uvcJk1aivu7ToH0eZwM2MePrY.roa (raw, json) Hash identifier: j0i6DOSkvpYiLwStrAAsU53hjHyyfEDy63fjeik32sA= Subject key identifier: 43:7B:AF:70:99:35:6A:2B:EE:ED:3A:07:D1:E6:70:33:63:1E:3E:B6 Certificate issuer: /CN=458cc52a0707cc340ac9c7f6e9028b64b70267bc Certificate serial: 019B79107218542CE6CF90C918E949F9728C Authority key identifier: 45:8C:C5:2A:07:07:CC:34:0A:C9:C7:F6:E9:02:8B:64:B7:02:67:BC Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/RYzFKgcHzDQKycf26QKLZLcCZ7w.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/71/5a7d2f-5168-4720-8ce0-704149619c46/1/Q3uvcJk1aivu7ToH0eZwM2MePrY.roa Signing time: Thu 01 Jan 2026 10:17:59 +0000 ROA not before: Thu 01 Jan 2026 10:17:59 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 213456 IP address blocks: 2a13:9e40::/29 maxlen: 29 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/71/5a7d2f-5168-4720-8ce0-704149619c46/1/RYzFKgcHzDQKycf26QKLZLcCZ7w.crl rsync://rpki.ripe.net/repository/DEFAULT/71/5a7d2f-5168-4720-8ce0-704149619c46/1/RYzFKgcHzDQKycf26QKLZLcCZ7w.mft rsync://rpki.ripe.net/repository/DEFAULT/RYzFKgcHzDQKycf26QKLZLcCZ7w.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 22 Jan 2026 09:00:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:79:10:72:18:54:2c:e6:cf:90:c9:18:e9:49:f9:72:8c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=458cc52a0707cc340ac9c7f6e9028b64b70267bc Validity Not Before: Jan 1 10:17:59 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=437baf7099356a2beeed3a07d1e67033631e3eb6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:71:de:fa:d5:3e:5e:62:8c:fc:6d:f2:ad:a8: 7d:10:5d:f1:03:c6:0b:cd:7f:ea:58:c1:a0:ee:a3: 5a:2e:ae:c5:94:f2:10:df:5a:3f:a1:d3:18:85:fc: 9f:46:0d:33:b3:db:50:4b:0d:71:54:d6:aa:63:f2: f1:b4:6a:43:33:14:2f:77:38:ac:2a:ee:e9:c8:cf: 99:bf:2f:d8:00:8d:6c:46:29:a8:4c:55:32:a2:45: 10:8f:17:e5:ec:6c:30:69:f1:bc:df:8e:8a:7b:c2: 08:7b:fc:ea:d4:2b:df:d6:e7:d0:2f:60:75:c6:4a: c4:1e:6e:c6:c4:31:20:63:14:12:a8:b1:77:df:1f: fd:a4:c7:5c:1a:cf:4d:f8:e9:0c:f0:59:6a:7f:22: a8:00:3a:d6:8d:8d:29:51:c7:e7:59:19:57:c4:b4: 60:39:9c:6d:c4:b8:e0:9d:2d:3e:b8:93:57:84:dd: 80:ac:71:37:91:9b:27:14:2e:70:ac:ae:fe:48:a6: 3d:da:73:6a:bc:4b:77:1c:2f:83:3e:c3:72:04:8f: bc:cb:8f:9a:02:ed:27:88:cc:8e:42:ec:fa:07:c0: 33:dd:3d:87:7d:a4:fa:00:8f:cf:e4:09:e2:21:b0: a9:a2:89:bd:9a:65:e2:bc:9a:5e:e4:c4:f5:34:a2: c8:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 43:7B:AF:70:99:35:6A:2B:EE:ED:3A:07:D1:E6:70:33:63:1E:3E:B6 X509v3 Authority Key Identifier: keyid:45:8C:C5:2A:07:07:CC:34:0A:C9:C7:F6:E9:02:8B:64:B7:02:67:BC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/RYzFKgcHzDQKycf26QKLZLcCZ7w.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/71/5a7d2f-5168-4720-8ce0-704149619c46/1/Q3uvcJk1aivu7ToH0eZwM2MePrY.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/71/5a7d2f-5168-4720-8ce0-704149619c46/1/RYzFKgcHzDQKycf26QKLZLcCZ7w.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a13:9e40::/29 Signature Algorithm: sha256WithRSAEncryption 40:8b:cc:6c:e8:fb:7f:08:bc:54:f6:5f:45:21:a7:8c:b6:16: 74:ea:f4:e1:26:b9:03:27:4d:b8:82:1a:4a:36:31:f9:fa:8e: 99:07:72:d7:46:61:c8:90:42:73:f0:58:9d:06:6a:6c:92:1d: cf:ea:59:4a:4d:52:9a:d7:9d:46:54:c0:73:7e:d3:e3:c0:d1: 21:a0:82:43:7b:0d:f6:6c:41:69:e0:ae:5c:c3:40:d2:ef:a6: 00:0a:74:1c:f2:38:cc:ef:cf:22:e3:27:b1:aa:ba:e7:99:0c: 39:5a:f6:98:41:2f:e7:a5:93:21:a1:57:9d:44:74:2d:5e:f1: 4b:e4:f0:1b:1a:5d:15:1e:68:3d:b5:20:22:6b:78:61:d4:b6: 02:26:f1:33:3b:c3:83:bd:24:10:f7:30:43:4b:d2:eb:ee:20: 92:ff:8f:67:af:d2:3f:f5:04:86:b7:6b:ca:e7:b9:6a:5f:13: d6:ed:2c:43:3e:53:7f:9a:35:6a:26:29:48:1c:d9:fe:4c:cd: c9:1d:98:cf:19:5c:c4:e3:69:49:6f:53:34:e6:63:bf:ae:eb: d1:40:42:a2:4a:87:ce:d5:67:4d:90:7e:66:4f:11:59:ed:58: e7:05:ce:df:80:1b:e7:18:34:6d:ab:1d:1b:66:02:6b:8e:7e: 52:18:58:27 -----BEGIN CERTIFICATE----- MIIE/jCCA+agAwIBAgISAZt5EHIYVCzmz5DJGOlJ+XKMMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDQ1OGNjNTJhMDcwN2NjMzQwYWM5YzdmNmU5MDI4YjY0Yjcw MjY3YmMwHhcNMjYwMTAxMTAxNzU5WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg0MzdiYWY3MDk5MzU2YTJiZWVlZDNhMDdkMWU2NzAzMzYzMWUzZWI2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsHHe+tU+XmKM/G3yrah9EF3xA8YL zX/qWMGg7qNaLq7FlPIQ31o/odMYhfyfRg0zs9tQSw1xVNaqY/LxtGpDMxQvdzis Ku7pyM+Zvy/YAI1sRimoTFUyokUQjxfl7GwwafG8346Ke8IIe/zq1Cvf1ufQL2B1 xkrEHm7GxDEgYxQSqLF33x/9pMdcGs9N+OkM8FlqfyKoADrWjY0pUcfnWRlXxLRg OZxtxLjgnS0+uJNXhN2ArHE3kZsnFC5wrK7+SKY92nNqvEt3HC+DPsNyBI+8y4+a Au0niMyOQuz6B8Az3T2HfaT6AI/P5AniIbCpoom9mmXivJpe5MT1NKLIyQIDAQAB o4ICCjCCAgYwHQYDVR0OBBYEFEN7r3CZNWor7u06B9HmcDNjHj62MB8GA1UdIwQY MBaAFEWMxSoHB8w0CsnH9ukCi2S3Ame8MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvUll6RktnY0h6RFFLeWNmMjZRS0xaTGNDWjd3LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83MS81YTdkMmYtNTE2OC00NzIwLThjZTAt NzA0MTQ5NjE5YzQ2LzEvUTN1dmNKazFhaXZ1N1RvSDBlWndNMk1lUHJZLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC83MS81YTdkMmYtNTE2OC00NzIwLThjZTAtNzA0MTQ5NjE5YzQ2 LzEvUll6RktnY0h6RFFLeWNmMjZRS0xaTGNDWjd3LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCAGCCsGAQUFBwEHAQH/BBEwDzANBAIAAjAHAwUDKhOeQDAN BgkqhkiG9w0BAQsFAAOCAQEAQIvMbOj7fwi8VPZfRSGnjLYWdOr04Sa5AydNuIIa SjYx+fqOmQdy10ZhyJBCc/BYnQZqbJIdz+pZSk1SmtedRlTAc37T48DRIaCCQ3sN 9mxBaeCuXMNA0u+mAAp0HPI4zO/PIuMnsaq655kMOVr2mEEv56WTIaFXnUR0LV7x S+TwGxpdFR5oPbUgImt4YdS2AibxMzvDg70kEPcwQ0vS6+4gkv+PZ6/SP/UEhrdr yue5al8T1u0sQz5Tf5o1aiYpSBzZ/kzNyR2YzxlcxONpSW9TNOZjv67r0UBCokqH ztVnTZB+Zk8RWe1Y5wXO34Ab5xg0basdG2YCa45+UhhYJw== -----END CERTIFICATE-----Generated at Wed Jan 21 13:49:42 2026 by rpki-client