This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/72/25812d-8cd7-4707-8bdb-cfa5042dc95c/1/qyikk7bS12oqKnZ6ZpePEhFi5EA.roa File: qyikk7bS12oqKnZ6ZpePEhFi5EA.roa (raw, json) Hash identifier: iJ4m2Ce6hYzteRUMXY0l32a188WmXjWtAniRs3aLn1M= Subject key identifier: AB:28:A4:93:B6:D2:D7:6A:2A:2A:76:7A:66:97:8F:12:11:62:E4:40 Certificate issuer: /CN=76866be69f3770720a6dcc4792e680fc7f7321a1 Certificate serial: 019B7B3644B6C4302184E21C0ED3C3FC81CF Authority key identifier: 76:86:6B:E6:9F:37:70:72:0A:6D:CC:47:92:E6:80:FC:7F:73:21:A1 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/doZr5p83cHIKbcxHkuaA_H9zIaE.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/72/25812d-8cd7-4707-8bdb-cfa5042dc95c/1/qyikk7bS12oqKnZ6ZpePEhFi5EA.roa Signing time: Thu 01 Jan 2026 20:18:32 +0000 ROA not before: Thu 01 Jan 2026 20:18:32 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 200300 IP address blocks: 2001:678:7e8::/48 maxlen: 56 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/72/25812d-8cd7-4707-8bdb-cfa5042dc95c/1/doZr5p83cHIKbcxHkuaA_H9zIaE.crl rsync://rpki.ripe.net/repository/DEFAULT/72/25812d-8cd7-4707-8bdb-cfa5042dc95c/1/doZr5p83cHIKbcxHkuaA_H9zIaE.mft rsync://rpki.ripe.net/repository/DEFAULT/doZr5p83cHIKbcxHkuaA_H9zIaE.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7b:36:44:b6:c4:30:21:84:e2:1c:0e:d3:c3:fc:81:cf Signature Algorithm: sha256WithRSAEncryption Issuer: CN=76866be69f3770720a6dcc4792e680fc7f7321a1 Validity Not Before: Jan 1 20:18:32 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=ab28a493b6d2d76a2a2a767a66978f121162e440 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:93:ef:b9:6f:33:d5:86:38:c9:e9:53:ae:50:63: 47:34:c8:ea:2a:cb:07:01:bd:e6:ed:ba:28:91:a8: e3:4d:0f:63:16:a6:7f:99:3c:91:a5:dd:a0:cf:b3: 1f:d8:97:ef:f7:da:f4:dd:82:1f:88:53:9b:d3:60: 31:ce:2f:56:1b:c2:e7:12:49:1c:67:2f:c2:e9:09: 1f:c0:aa:4e:e4:e7:9e:0b:a5:5c:c2:2c:28:a2:0b: c2:9e:55:da:1b:59:01:1c:ac:d4:be:1a:f3:89:ec: 6e:6e:03:14:c5:2f:38:05:d5:8a:e3:90:7f:d7:00: f3:de:12:9d:a7:5c:dc:a6:0d:8c:24:7a:ae:71:8e: 34:d6:12:a7:83:f6:09:b4:f1:09:b4:8f:53:e4:7d: 84:d3:76:8c:54:d5:ff:69:b9:85:f4:d2:96:b9:ba: 6f:1c:bc:18:56:5f:b1:11:a6:78:d6:14:24:af:11: 4d:06:bc:54:4f:93:55:02:73:c0:31:66:0c:b5:8a: a2:c3:20:4a:cc:8a:6e:26:9c:a0:5d:33:0a:f6:5f: 78:c9:75:62:0c:f5:6d:ab:28:a1:5f:60:03:82:a3: 0e:5a:5a:46:cc:8e:16:ec:c9:1c:d5:12:5b:8f:bf: e8:72:c3:06:36:09:f8:5d:aa:06:81:ee:13:97:a5: 27:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AB:28:A4:93:B6:D2:D7:6A:2A:2A:76:7A:66:97:8F:12:11:62:E4:40 X509v3 Authority Key Identifier: keyid:76:86:6B:E6:9F:37:70:72:0A:6D:CC:47:92:E6:80:FC:7F:73:21:A1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/doZr5p83cHIKbcxHkuaA_H9zIaE.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/72/25812d-8cd7-4707-8bdb-cfa5042dc95c/1/qyikk7bS12oqKnZ6ZpePEhFi5EA.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/72/25812d-8cd7-4707-8bdb-cfa5042dc95c/1/doZr5p83cHIKbcxHkuaA_H9zIaE.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:678:7e8::/48 Signature Algorithm: sha256WithRSAEncryption 85:a8:52:76:10:56:8b:d0:27:7d:54:f3:55:dd:70:36:aa:9e: 54:9f:21:d1:8d:5f:24:d2:8f:9a:10:0e:05:e1:f0:a6:82:bf: 80:5f:ce:02:ce:1d:06:97:06:bb:e4:10:05:24:a1:5a:b5:a6: 9f:eb:86:86:6c:d8:65:f5:b5:61:02:15:54:fb:26:52:e9:1d: 6b:c6:d5:b3:b2:4c:5d:4c:c6:60:65:19:b0:80:0b:99:e4:87: c4:f1:75:89:21:b3:f9:2d:d3:5a:65:ad:82:93:b8:93:69:9a: d0:76:e2:a7:5a:c1:95:17:96:36:fa:fc:a9:7a:1d:64:57:c6: f0:78:e5:6e:52:1c:f4:b6:ca:ec:83:21:04:e4:6b:2b:ce:47: 60:bb:bc:eb:fb:ce:62:6d:29:91:98:b1:1e:6c:b2:e1:3c:81: 7e:92:25:aa:25:08:7b:88:be:55:81:87:26:f8:df:28:c1:e2: fc:34:e8:ce:b0:84:6a:f9:90:24:5b:9e:09:ce:72:57:f6:44: 74:a8:45:a1:7c:c1:cb:12:0c:b3:8a:a9:47:75:7f:90:af:80: 10:83:33:b2:07:a5:bb:37:e1:e4:f3:4d:1b:74:6a:fa:48:cd: c7:d7:39:c3:70:92:0f:60:4d:f7:54:8d:9a:0e:38:9d:c5:bd: df:50:d0:4f -----BEGIN CERTIFICATE----- MIIFADCCA+igAwIBAgISAZt7NkS2xDAhhOIcDtPD/IHPMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDc2ODY2YmU2OWYzNzcwNzIwYTZkY2M0NzkyZTY4MGZjN2Y3 MzIxYTEwHhcNMjYwMTAxMjAxODMyWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhhYjI4YTQ5M2I2ZDJkNzZhMmEyYTc2N2E2Njk3OGYxMjExNjJlNDQwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAk++5bzPVhjjJ6VOuUGNHNMjqKssH Ab3m7bookajjTQ9jFqZ/mTyRpd2gz7Mf2Jfv99r03YIfiFOb02Axzi9WG8LnEkkc Zy/C6QkfwKpO5OeeC6VcwiwoogvCnlXaG1kBHKzUvhrziexubgMUxS84BdWK45B/ 1wDz3hKdp1zcpg2MJHqucY401hKng/YJtPEJtI9T5H2E03aMVNX/abmF9NKWubpv HLwYVl+xEaZ41hQkrxFNBrxUT5NVAnPAMWYMtYqiwyBKzIpuJpygXTMK9l94yXVi DPVtqyihX2ADgqMOWlpGzI4W7Mkc1RJbj7/ocsMGNgn4XaoGge4Tl6UnEQIDAQAB o4ICDDCCAggwHQYDVR0OBBYEFKsopJO20tdqKip2emaXjxIRYuRAMB8GA1UdIwQY MBaAFHaGa+afN3ByCm3MR5LmgPx/cyGhMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvZG9acjVwODNjSElLYmN4SGt1YUFfSDl6SWFFLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83Mi8yNTgxMmQtOGNkNy00NzA3LThiZGIt Y2ZhNTA0MmRjOTVjLzEvcXlpa2s3YlMxMm9xS25aNlpwZVBFaEZpNUVBLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC83Mi8yNTgxMmQtOGNkNy00NzA3LThiZGItY2ZhNTA0MmRjOTVj LzEvZG9acjVwODNjSElLYmN4SGt1YUFfSDl6SWFFLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAIAEGeAfo MA0GCSqGSIb3DQEBCwUAA4IBAQCFqFJ2EFaL0Cd9VPNV3XA2qp5UnyHRjV8k0o+a EA4F4fCmgr+AX84Czh0Glwa75BAFJKFataaf64aGbNhl9bVhAhVU+yZS6R1rxtWz skxdTMZgZRmwgAuZ5IfE8XWJIbP5LdNaZa2Ck7iTaZrQduKnWsGVF5Y2+vypeh1k V8bweOVuUhz0tsrsgyEE5Gsrzkdgu7zr+85ibSmRmLEebLLhPIF+kiWqJQh7iL5V gYcm+N8oweL8NOjOsIRq+ZAkW54JznJX9kR0qEWhfMHLEgyziqlHdX+Qr4AQgzOy B6W7N+Hk800bdGr6SM3H1znDcJIPYE33VI2aDjidxb3fUNBP -----END CERTIFICATE-----Generated at Mon Feb 9 22:36:15 2026 by rpki-client