This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7f/72bf2f-8e34-48a2-849a-a541d1bcee19/1/QAN3QNVlhBBWsYeQ1dMZYipFQoc.roa File: QAN3QNVlhBBWsYeQ1dMZYipFQoc.roa (raw, json) Hash identifier: Fjeh9727z9I7uFiSKfrxS4EZdwydqj4KNFILCLFhfeA= Subject key identifier: 40:03:77:40:D5:65:84:10:56:B1:87:90:D5:D3:19:62:2A:45:42:87 Certificate issuer: /CN=9361b5cd696825b74fccba7d97c3d0a2724ef3aa Certificate serial: 019B797EAE3125042795FD9000EF59B78C5C Authority key identifier: 93:61:B5:CD:69:68:25:B7:4F:CC:BA:7D:97:C3:D0:A2:72:4E:F3:AA Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/k2G1zWloJbdPzLp9l8PQonJO86o.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7f/72bf2f-8e34-48a2-849a-a541d1bcee19/1/QAN3QNVlhBBWsYeQ1dMZYipFQoc.roa Signing time: Thu 01 Jan 2026 12:18:23 +0000 ROA not before: Thu 01 Jan 2026 12:18:23 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 208618 IP address blocks: 2a0e:aa06:470::/44 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/7f/72bf2f-8e34-48a2-849a-a541d1bcee19/1/k2G1zWloJbdPzLp9l8PQonJO86o.crl rsync://rpki.ripe.net/repository/DEFAULT/7f/72bf2f-8e34-48a2-849a-a541d1bcee19/1/k2G1zWloJbdPzLp9l8PQonJO86o.mft rsync://rpki.ripe.net/repository/DEFAULT/k2G1zWloJbdPzLp9l8PQonJO86o.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 07 Jan 2026 14:32:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:79:7e:ae:31:25:04:27:95:fd:90:00:ef:59:b7:8c:5c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9361b5cd696825b74fccba7d97c3d0a2724ef3aa Validity Not Before: Jan 1 12:18:23 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=40037740d565841056b18790d5d319622a454287 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:23:ce:a5:9b:fa:6b:a7:8f:9d:21:44:01:1e: d5:e5:50:c7:29:15:cb:3f:01:d9:e4:f4:6d:06:d9: 05:60:89:af:c4:86:32:dc:71:99:a3:e7:56:32:6a: c8:38:65:cf:ef:ec:74:30:cb:ee:22:0b:ee:ec:c7: 5b:d8:b2:14:ea:07:96:b5:ad:f9:70:96:fc:3e:b6: 96:1d:c6:a5:de:dc:f6:5d:70:5f:79:fc:e2:48:62: f6:32:7d:89:7d:97:25:44:6a:10:45:30:de:ee:16: a6:64:d7:78:5f:52:ad:a3:cd:47:3f:80:9f:4c:75: 53:f1:e3:61:36:d2:90:5a:10:b8:32:57:37:2f:f1: 37:d7:16:77:4c:4b:b2:9f:f4:6b:31:2a:97:68:02: 1e:cf:0c:32:d2:45:ab:60:8a:65:c2:86:19:ed:36: e4:e8:7b:65:b5:e2:be:6e:76:46:7a:a1:85:6c:59: 1a:d1:66:53:ec:c0:d1:1c:5c:81:91:9f:30:81:08: 77:92:13:be:04:52:da:d2:4c:f6:0a:96:d6:da:a6: 65:de:3f:fc:bc:bc:a1:99:e1:2c:69:07:73:2e:45: e1:27:24:47:1d:5d:81:c8:35:52:e5:f2:64:2c:39: 57:b7:f2:90:c6:1b:4b:bd:8e:0c:35:07:f7:a1:bd: 43:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 40:03:77:40:D5:65:84:10:56:B1:87:90:D5:D3:19:62:2A:45:42:87 X509v3 Authority Key Identifier: keyid:93:61:B5:CD:69:68:25:B7:4F:CC:BA:7D:97:C3:D0:A2:72:4E:F3:AA X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/k2G1zWloJbdPzLp9l8PQonJO86o.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7f/72bf2f-8e34-48a2-849a-a541d1bcee19/1/QAN3QNVlhBBWsYeQ1dMZYipFQoc.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/7f/72bf2f-8e34-48a2-849a-a541d1bcee19/1/k2G1zWloJbdPzLp9l8PQonJO86o.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0e:aa06:470::/44 Signature Algorithm: sha256WithRSAEncryption 92:b7:10:03:6a:93:73:33:01:84:a9:70:d4:70:c5:95:36:b7: af:e1:85:80:57:b0:03:79:68:49:f8:45:70:c3:21:0c:57:36: da:2e:08:2e:98:72:32:9b:17:d2:74:86:80:9d:a7:03:53:2c: 76:23:13:b5:79:c1:f4:9f:bd:3f:21:4e:45:99:99:88:75:f1: 17:90:9a:97:c1:77:bd:8c:6e:3b:1b:e1:99:b1:c3:97:45:ef: c8:03:fb:ed:8a:db:26:b1:ce:cf:c1:01:84:11:73:94:d8:92: a1:3f:d3:08:07:a4:6a:4c:26:01:9f:2d:f7:67:c7:c7:69:5a: fa:76:64:ca:3f:0e:06:08:27:09:68:03:2c:a2:af:94:43:61: c5:c6:f7:47:62:89:3c:6a:50:8a:d6:95:7d:f5:a1:a5:21:ef: 61:26:2a:83:fe:2f:24:ae:58:d7:f8:0b:c6:09:0a:96:91:fb: 85:56:27:d0:6d:06:de:ea:a2:30:48:ac:de:eb:cd:76:fe:c5: 51:64:fb:a8:b1:a1:32:0c:fa:92:4b:5b:e8:59:70:d1:d8:c0: cd:f1:db:2f:5c:79:63:a3:8c:4f:1f:cd:c6:24:d5:b3:6b:d4: a0:7f:14:5a:3f:92:e1:e5:ef:41:fe:5c:fe:05:bf:2e:9a:01: 17:f6:ab:b7 -----BEGIN CERTIFICATE----- MIIFADCCA+igAwIBAgISAZt5fq4xJQQnlf2QAO9Zt4xcMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDkzNjFiNWNkNjk2ODI1Yjc0ZmNjYmE3ZDk3YzNkMGEyNzI0 ZWYzYWEwHhcNMjYwMTAxMTIxODIzWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg0MDAzNzc0MGQ1NjU4NDEwNTZiMTg3OTBkNWQzMTk2MjJhNDU0Mjg3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAziPOpZv6a6ePnSFEAR7V5VDHKRXL PwHZ5PRtBtkFYImvxIYy3HGZo+dWMmrIOGXP7+x0MMvuIgvu7Mdb2LIU6geWta35 cJb8PraWHcal3tz2XXBfefziSGL2Mn2JfZclRGoQRTDe7hamZNd4X1Kto81HP4Cf THVT8eNhNtKQWhC4Mlc3L/E31xZ3TEuyn/RrMSqXaAIezwwy0kWrYIplwoYZ7Tbk 6HtlteK+bnZGeqGFbFka0WZT7MDRHFyBkZ8wgQh3khO+BFLa0kz2CpbW2qZl3j/8 vLyhmeEsaQdzLkXhJyRHHV2ByDVS5fJkLDlXt/KQxhtLvY4MNQf3ob1DbQIDAQAB o4ICDDCCAggwHQYDVR0OBBYEFEADd0DVZYQQVrGHkNXTGWIqRUKHMB8GA1UdIwQY MBaAFJNhtc1paCW3T8y6fZfD0KJyTvOqMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvazJHMXpXbG9KYmRQekxwOWw4UFFvbkpPODZvLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83Zi83MmJmMmYtOGUzNC00OGEyLTg0OWEt YTU0MWQxYmNlZTE5LzEvUUFOM1FOVmxoQkJXc1llUTFkTVpZaXBGUW9jLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC83Zi83MmJmMmYtOGUzNC00OGEyLTg0OWEtYTU0MWQxYmNlZTE5 LzEvazJHMXpXbG9KYmRQekxwOWw4UFFvbkpPODZvLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcEKg6qBgRw MA0GCSqGSIb3DQEBCwUAA4IBAQCStxADapNzMwGEqXDUcMWVNrev4YWAV7ADeWhJ +EVwwyEMVzbaLggumHIymxfSdIaAnacDUyx2IxO1ecH0n70/IU5FmZmIdfEXkJqX wXe9jG47G+GZscOXRe/IA/vtitsmsc7PwQGEEXOU2JKhP9MIB6RqTCYBny33Z8fH aVr6dmTKPw4GCCcJaAMsoq+UQ2HFxvdHYok8alCK1pV99aGlIe9hJiqD/i8krljX +AvGCQqWkfuFVifQbQbe6qIwSKze6812/sVRZPuosaEyDPqSS1voWXDR2MDN8dsv XHljo4xPH83GJNWza9SgfxRaP5Lh5e9B/lz+Bb8umgEX9qu3 -----END CERTIFICATE-----Generated at Tue Jan 6 21:32:03 2026 by rpki-client