This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b4/40b8f6-685d-4e86-97d8-6e31347d04d9/1/MQ1rIvHKeTYhLT9zYntvVr0Ep7w.roa File: MQ1rIvHKeTYhLT9zYntvVr0Ep7w.roa (raw, json) Hash identifier: /nZ/kzhs/5Nc05vPwFMbSjWv3DV2VWk20JauYWJRGIY= Subject key identifier: 31:0D:6B:22:F1:CA:79:36:21:2D:3F:73:62:7B:6F:56:BD:04:A7:BC Certificate issuer: /CN=58dd42ab3460279709c134b570f76e34e4d95b91 Certificate serial: 019B7F8584F39522C6E6ED4D3BD20186B1B5 Authority key identifier: 58:DD:42:AB:34:60:27:97:09:C1:34:B5:70:F7:6E:34:E4:D9:5B:91 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/WN1CqzRgJ5cJwTS1cPduNOTZW5E.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b4/40b8f6-685d-4e86-97d8-6e31347d04d9/1/MQ1rIvHKeTYhLT9zYntvVr0Ep7w.roa Signing time: Fri 02 Jan 2026 16:23:35 +0000 ROA not before: Fri 02 Jan 2026 16:23:35 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 29152 IP address blocks: 2a00:1b11:115::/48 maxlen: 48 2a00:1b11:116::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b4/40b8f6-685d-4e86-97d8-6e31347d04d9/1/WN1CqzRgJ5cJwTS1cPduNOTZW5E.crl rsync://rpki.ripe.net/repository/DEFAULT/b4/40b8f6-685d-4e86-97d8-6e31347d04d9/1/WN1CqzRgJ5cJwTS1cPduNOTZW5E.mft rsync://rpki.ripe.net/repository/DEFAULT/WN1CqzRgJ5cJwTS1cPduNOTZW5E.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7f:85:84:f3:95:22:c6:e6:ed:4d:3b:d2:01:86:b1:b5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=58dd42ab3460279709c134b570f76e34e4d95b91 Validity Not Before: Jan 2 16:23:35 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=310d6b22f1ca7936212d3f73627b6f56bd04a7bc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:99:c3:63:93:23:8b:2c:48:33:be:05:58:fa:20: 51:2c:f8:e4:19:92:75:9c:7b:bc:5d:90:7b:5e:8c: dc:e6:9e:fa:10:08:d2:09:b3:bd:37:19:48:20:a3: 13:52:2a:dd:39:e8:a3:13:0f:5c:42:9e:8b:07:76: cf:37:9d:ef:9d:e7:be:96:82:ec:6d:9b:ac:aa:95: 53:79:17:dd:0a:09:a6:22:13:21:d2:a0:e2:0a:8b: a0:38:fe:5e:ec:50:c1:7e:59:98:b6:57:0f:5e:cd: ec:6d:61:42:61:39:42:e5:f9:39:1f:db:26:48:7c: d5:a3:17:26:de:ff:91:0a:7d:b7:7d:18:97:e0:78: 4a:d6:9e:b1:1e:81:b2:0b:d5:d3:02:08:cb:91:96: 05:39:17:56:25:97:87:2d:17:f8:87:b0:f0:8a:4a: 0f:0c:c1:64:a8:ab:44:61:4a:f8:fd:36:a5:23:63: be:b0:fb:61:06:a6:9f:2e:2d:2d:1b:b7:fd:6e:82: 14:6d:24:7f:99:6a:2b:12:dc:4f:54:3a:37:c2:7a: 0e:e8:16:4f:45:e4:c9:29:82:2c:ff:b7:5d:d6:15: 28:8e:e1:cc:41:99:c1:6e:77:18:b8:f1:36:a1:c0: d1:b6:a6:69:2e:77:dc:0d:f8:aa:35:58:54:aa:8e: fc:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 31:0D:6B:22:F1:CA:79:36:21:2D:3F:73:62:7B:6F:56:BD:04:A7:BC X509v3 Authority Key Identifier: keyid:58:DD:42:AB:34:60:27:97:09:C1:34:B5:70:F7:6E:34:E4:D9:5B:91 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/WN1CqzRgJ5cJwTS1cPduNOTZW5E.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/40b8f6-685d-4e86-97d8-6e31347d04d9/1/MQ1rIvHKeTYhLT9zYntvVr0Ep7w.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/40b8f6-685d-4e86-97d8-6e31347d04d9/1/WN1CqzRgJ5cJwTS1cPduNOTZW5E.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a00:1b11:115::-2a00:1b11:116:ffff:ffff:ffff:ffff:ffff Signature Algorithm: sha256WithRSAEncryption b6:34:9a:36:87:44:34:67:c4:bf:fb:2e:90:4f:9f:41:fe:cc: ca:a0:0b:85:b8:56:f2:03:b5:81:1b:9f:a4:83:81:94:50:34: ae:f4:39:73:f9:98:e3:34:c8:2b:df:d7:68:6b:28:a4:20:d6: 5e:71:1f:70:b2:01:89:cd:e5:7e:3c:e9:97:81:29:86:2a:cb: af:d7:25:ec:b1:e0:b3:4f:c6:bf:63:df:6a:27:f0:cd:ba:0d: 1e:a9:e8:a9:90:f2:22:f4:7a:28:e2:9f:cd:b6:d4:9f:1f:e4: db:c7:a4:73:00:56:d0:fa:20:c8:6c:ac:d9:8f:31:2c:32:5e: 49:d7:10:df:ca:70:e8:0f:d8:98:09:0e:fa:ca:fa:eb:67:45: 9b:94:94:30:b1:de:58:45:64:5b:df:c9:27:46:bd:8e:c7:e4: f8:1f:57:4a:35:bb:65:51:a6:10:0d:32:2d:79:f9:7b:2f:62: ee:72:a8:ff:97:e2:33:22:97:f0:b6:d7:9b:6d:42:0c:6e:22: 94:24:0d:17:e4:e8:dd:4e:7c:ed:ce:b0:3a:84:1f:6f:d2:5f: c3:3a:c6:99:81:ec:b3:29:99:4f:08:70:db:b4:60:2b:7b:28: 0c:52:b7:35:9f:1b:de:f2:7b:88:35:07:21:48:38:c7:86:e8: 12:76:18:52 -----BEGIN CERTIFICATE----- MIIFCzCCA/OgAwIBAgISAZt/hYTzlSLG5u1NO9IBhrG1MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDU4ZGQ0MmFiMzQ2MDI3OTcwOWMxMzRiNTcwZjc2ZTM0ZTRk OTViOTEwHhcNMjYwMTAyMTYyMzM1WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygzMTBkNmIyMmYxY2E3OTM2MjEyZDNmNzM2MjdiNmY1NmJkMDRhN2JjMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmcNjkyOLLEgzvgVY+iBRLPjkGZJ1 nHu8XZB7Xozc5p76EAjSCbO9NxlIIKMTUirdOeijEw9cQp6LB3bPN53vnee+loLs bZusqpVTeRfdCgmmIhMh0qDiCougOP5e7FDBflmYtlcPXs3sbWFCYTlC5fk5H9sm SHzVoxcm3v+RCn23fRiX4HhK1p6xHoGyC9XTAgjLkZYFORdWJZeHLRf4h7DwikoP DMFkqKtEYUr4/TalI2O+sPthBqafLi0tG7f9boIUbSR/mWorEtxPVDo3wnoO6BZP ReTJKYIs/7dd1hUojuHMQZnBbncYuPE2ocDRtqZpLnfcDfiqNVhUqo78fwIDAQAB o4ICFzCCAhMwHQYDVR0OBBYEFDENayLxynk2IS0/c2J7b1a9BKe8MB8GA1UdIwQY MBaAFFjdQqs0YCeXCcE0tXD3bjTk2VuRMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvV04xQ3F6UmdKNWNKd1RTMWNQZHVOT1RaVzVFLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iNC80MGI4ZjYtNjg1ZC00ZTg2LTk3ZDgt NmUzMTM0N2QwNGQ5LzEvTVExckl2SEtlVFloTFQ5elludHZWcjBFcDd3LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iNC80MGI4ZjYtNjg1ZC00ZTg2LTk3ZDgtNmUzMTM0N2QwNGQ5 LzEvV04xQ3F6UmdKNWNKd1RTMWNQZHVOT1RaVzVFLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMC0GCCsGAQUFBwEHAQH/BB4wHDAaBAIAAjAUMBIDBwAqABsR ARUDBwAqABsRARYwDQYJKoZIhvcNAQELBQADggEBALY0mjaHRDRnxL/7LpBPn0H+ zMqgC4W4VvIDtYEbn6SDgZRQNK70OXP5mOM0yCvf12hrKKQg1l5xH3CyAYnN5X48 6ZeBKYYqy6/XJeyx4LNPxr9j32on8M26DR6p6KmQ8iL0eijin8221J8f5NvHpHMA VtD6IMhsrNmPMSwyXknXEN/KcOgP2JgJDvrK+utnRZuUlDCx3lhFZFvfySdGvY7H 5PgfV0o1u2VRphANMi15+XsvYu5yqP+X4jMil/C215ttQgxuIpQkDRfk6N1OfO3O sDqEH2/SX8M6xpmB7LMpmU8IcNu0YCt7KAxStzWfG97ye4g1ByFIOMeG6BJ2GFI= -----END CERTIFICATE-----Generated at Tue Feb 10 00:29:14 2026 by rpki-client