This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/87/97f49a-7a95-4dd5-8c74-55369cf507ee/1/qv9KfHeL3B9g82FjCHtpUaWQBPg.roa File: qv9KfHeL3B9g82FjCHtpUaWQBPg.roa (raw, json) Hash identifier: xIbfq/BUYtVW3FumpW+hj1tac4DWh+5Gq7EPRnPeekE= Subject key identifier: AA:FF:4A:7C:77:8B:DC:1F:60:F3:61:63:08:7B:69:51:A5:90:04:F8 Certificate issuer: /CN=b37e215a415ed7b5de4b6dc12f2f7b7750c3d66f Certificate serial: 019B791088B933B9733A9D7E551AABFDB545 Authority key identifier: B3:7E:21:5A:41:5E:D7:B5:DE:4B:6D:C1:2F:2F:7B:77:50:C3:D6:6F Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/s34hWkFe17XeS23BLy97d1DD1m8.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/87/97f49a-7a95-4dd5-8c74-55369cf507ee/1/qv9KfHeL3B9g82FjCHtpUaWQBPg.roa Signing time: Thu 01 Jan 2026 10:18:05 +0000 ROA not before: Thu 01 Jan 2026 10:18:05 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 52181 IP address blocks: 2a12:bec0:300::/44 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/87/97f49a-7a95-4dd5-8c74-55369cf507ee/1/s34hWkFe17XeS23BLy97d1DD1m8.crl rsync://rpki.ripe.net/repository/DEFAULT/87/97f49a-7a95-4dd5-8c74-55369cf507ee/1/s34hWkFe17XeS23BLy97d1DD1m8.mft rsync://rpki.ripe.net/repository/DEFAULT/s34hWkFe17XeS23BLy97d1DD1m8.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 20 Jan 2026 16:01:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:79:10:88:b9:33:b9:73:3a:9d:7e:55:1a:ab:fd:b5:45 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b37e215a415ed7b5de4b6dc12f2f7b7750c3d66f Validity Not Before: Jan 1 10:18:05 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=aaff4a7c778bdc1f60f36163087b6951a59004f8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:c5:06:66:ce:a0:0b:fb:a6:ce:bd:50:75:94: b1:00:af:b6:92:a3:4a:8f:7a:75:4d:f0:90:01:ff: 87:ef:3d:10:9d:53:d5:a9:bb:b4:49:be:de:41:2e: 7f:95:1e:ae:82:52:c4:81:1a:d8:04:f6:5e:d2:eb: e8:02:9f:ca:8f:d9:ed:16:55:69:a0:da:c4:4c:1c: af:d3:16:cf:8a:e1:6a:f4:05:08:f7:c9:b4:f4:5f: b8:7d:88:71:df:78:e5:67:77:0a:bf:36:5f:d6:e8: b1:99:12:74:b3:21:08:cc:7a:6d:b8:4d:7e:8a:22: 81:37:bf:40:f7:0f:1a:19:e5:ae:8c:22:fd:54:2c: de:e8:ce:dd:ac:c1:b9:5d:38:c1:88:1c:d1:9e:82: 15:0f:51:7f:d9:ca:5c:6c:a8:cb:1d:09:ee:f3:81: f7:13:32:9a:a2:ae:e1:fb:78:be:2e:20:7e:c0:c4: 5c:b2:26:f3:e4:f8:1e:c8:3c:ec:1c:65:1c:f7:85: cd:29:ce:ee:10:8a:0c:ab:27:b0:82:1b:1b:b9:fa: bf:fe:a4:51:18:b6:f6:54:c1:3c:9e:e0:51:27:19: 12:6a:c5:d5:41:38:c4:5a:0f:2e:c2:da:7f:69:5d: 50:ec:d3:85:e6:5e:e6:3e:cc:b1:e3:bb:36:2e:2c: a0:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AA:FF:4A:7C:77:8B:DC:1F:60:F3:61:63:08:7B:69:51:A5:90:04:F8 X509v3 Authority Key Identifier: keyid:B3:7E:21:5A:41:5E:D7:B5:DE:4B:6D:C1:2F:2F:7B:77:50:C3:D6:6F X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/s34hWkFe17XeS23BLy97d1DD1m8.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/87/97f49a-7a95-4dd5-8c74-55369cf507ee/1/qv9KfHeL3B9g82FjCHtpUaWQBPg.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/87/97f49a-7a95-4dd5-8c74-55369cf507ee/1/s34hWkFe17XeS23BLy97d1DD1m8.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a12:bec0:300::/44 Signature Algorithm: sha256WithRSAEncryption 1c:6f:ff:c0:38:06:87:98:38:09:14:b6:ca:b5:bd:5e:78:00: ce:2b:23:c3:ab:92:a6:e2:be:4c:9c:4f:e7:b6:3d:16:2a:8e: e9:33:c0:d2:e8:a7:88:42:1b:2c:0e:6f:19:6b:29:b7:ed:ba: 73:0c:84:8f:03:d1:38:ce:cd:e0:79:fd:1b:d6:3e:4d:11:54: 4d:eb:98:af:d3:dd:6e:68:7b:c6:62:d4:b6:d9:39:8f:1b:72: 9a:65:d0:c4:0e:47:6f:e2:a9:c1:fb:2a:f8:55:df:4f:c0:dd: 30:5c:fa:f5:4b:23:da:29:7d:ae:b8:7d:e0:82:70:6e:31:cd: 22:58:e9:7f:79:3e:71:84:6c:b5:ec:03:88:c1:8b:d0:d9:4f: 6f:fb:c1:c7:43:4a:fb:32:dc:1e:1d:46:a6:49:04:82:b8:51: 12:96:8e:4f:52:8a:0b:4c:c0:05:3a:82:88:4c:96:c3:4c:4c: 83:37:13:2c:77:33:10:c5:47:13:a7:d4:4a:45:fe:36:ea:62: a8:fa:7b:43:d5:dd:5a:7d:de:55:7c:ee:cf:59:63:45:09:ef: 96:fc:81:81:1c:52:8f:28:0a:ff:d7:3f:a8:6d:96:69:35:17: f4:d3:70:8d:41:ea:19:b6:04:25:55:cc:50:19:57:d5:a2:56: 5f:19:50:73 -----BEGIN CERTIFICATE----- MIIFADCCA+igAwIBAgISAZt5EIi5M7lzOp1+VRqr/bVFMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGIzN2UyMTVhNDE1ZWQ3YjVkZTRiNmRjMTJmMmY3Yjc3NTBj M2Q2NmYwHhcNMjYwMTAxMTAxODA1WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhhYWZmNGE3Yzc3OGJkYzFmNjBmMzYxNjMwODdiNjk1MWE1OTAwNGY4MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvMUGZs6gC/umzr1QdZSxAK+2kqNK j3p1TfCQAf+H7z0QnVPVqbu0Sb7eQS5/lR6uglLEgRrYBPZe0uvoAp/Kj9ntFlVp oNrETByv0xbPiuFq9AUI98m09F+4fYhx33jlZ3cKvzZf1uixmRJ0syEIzHptuE1+ iiKBN79A9w8aGeWujCL9VCze6M7drMG5XTjBiBzRnoIVD1F/2cpcbKjLHQnu84H3 EzKaoq7h+3i+LiB+wMRcsibz5PgeyDzsHGUc94XNKc7uEIoMqyewghsbufq//qRR GLb2VME8nuBRJxkSasXVQTjEWg8uwtp/aV1Q7NOF5l7mPsyx47s2LiygvQIDAQAB o4ICDDCCAggwHQYDVR0OBBYEFKr/Snx3i9wfYPNhYwh7aVGlkAT4MB8GA1UdIwQY MBaAFLN+IVpBXte13kttwS8ve3dQw9ZvMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvczM0aFdrRmUxN1hlUzIzQkx5OTdkMUREMW04LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84Ny85N2Y0OWEtN2E5NS00ZGQ1LThjNzQt NTUzNjljZjUwN2VlLzEvcXY5S2ZIZUwzQjlnODJGakNIdHBVYVdRQlBnLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC84Ny85N2Y0OWEtN2E5NS00ZGQ1LThjNzQtNTUzNjljZjUwN2Vl LzEvczM0aFdrRmUxN1hlUzIzQkx5OTdkMUREMW04LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcEKhK+wAMA MA0GCSqGSIb3DQEBCwUAA4IBAQAcb//AOAaHmDgJFLbKtb1eeADOKyPDq5Km4r5M nE/ntj0WKo7pM8DS6KeIQhssDm8Zaym37bpzDISPA9E4zs3gef0b1j5NEVRN65iv 091uaHvGYtS22TmPG3KaZdDEDkdv4qnB+yr4Vd9PwN0wXPr1SyPaKX2uuH3ggnBu Mc0iWOl/eT5xhGy17AOIwYvQ2U9v+8HHQ0r7MtweHUamSQSCuFESlo5PUooLTMAF OoKITJbDTEyDNxMsdzMQxUcTp9RKRf426mKo+ntD1d1afd5VfO7PWWNFCe+W/IGB HFKPKAr/1z+obZZpNRf003CNQeoZtgQlVcxQGVfVolZfGVBz -----END CERTIFICATE-----Generated at Tue Jan 20 02:47:40 2026 by rpki-client