This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b5/57faee-68b2-4693-8130-ce434a402617/1/bqQFNJsrG869RK3Nfbwr65mLsd0.roa File: bqQFNJsrG869RK3Nfbwr65mLsd0.roa (raw, json) Hash identifier: lGIgTiJR2g5VC3z+XfnzZ2hEM7gGKI2STx8vdvlyfrE= Subject key identifier: 6E:A4:05:34:9B:2B:1B:CE:BD:44:AD:CD:7D:BC:2B:EB:99:8B:B1:DD Certificate issuer: /CN=60ef4a17b8eff45ba0b39d47496557e388fffe52 Certificate serial: 019B7F808F5C73086F3A6F5971379D451F4C Authority key identifier: 60:EF:4A:17:B8:EF:F4:5B:A0:B3:9D:47:49:65:57:E3:88:FF:FE:52 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YO9KF7jv9Fugs51HSWVX44j__lI.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b5/57faee-68b2-4693-8130-ce434a402617/1/bqQFNJsrG869RK3Nfbwr65mLsd0.roa Signing time: Fri 02 Jan 2026 16:18:10 +0000 ROA not before: Fri 02 Jan 2026 16:18:10 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 680 IP address blocks: 141.22.0.0/16 maxlen: 16 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b5/57faee-68b2-4693-8130-ce434a402617/1/YO9KF7jv9Fugs51HSWVX44j__lI.crl rsync://rpki.ripe.net/repository/DEFAULT/b5/57faee-68b2-4693-8130-ce434a402617/1/YO9KF7jv9Fugs51HSWVX44j__lI.mft rsync://rpki.ripe.net/repository/DEFAULT/YO9KF7jv9Fugs51HSWVX44j__lI.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 28 Jan 2026 01:00:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7f:80:8f:5c:73:08:6f:3a:6f:59:71:37:9d:45:1f:4c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=60ef4a17b8eff45ba0b39d47496557e388fffe52 Validity Not Before: Jan 2 16:18:10 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=6ea405349b2b1bcebd44adcd7dbc2beb998bb1dd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:f1:e5:81:51:cd:b3:c6:f1:f8:d7:e7:c9:52: 03:a6:46:91:ed:cb:62:f3:bd:c2:01:c0:79:6c:9e: fc:97:3c:92:10:7d:05:1d:e0:e2:3c:60:4b:54:0b: 31:c0:de:08:68:4e:6e:42:73:81:8e:7c:a1:92:e0: 95:f9:40:12:5d:07:6b:6a:41:19:8b:dc:fb:fc:04: de:1e:26:7b:f3:c8:66:4e:c0:8b:c9:90:e5:9d:90: f4:d7:97:59:19:0b:c0:89:d7:1c:af:23:28:be:82: ed:91:09:ac:17:06:d3:8b:1c:96:83:40:f8:f4:78: 32:af:5c:cc:d3:08:24:21:5f:74:76:40:06:23:06: 69:70:5a:00:b9:b7:3f:62:78:f8:0f:90:e1:60:c8: 8b:28:b7:e5:01:81:e4:c5:5e:e5:d1:9d:1a:10:d6: d4:bc:b3:ac:80:71:12:cb:12:08:7c:a3:52:0a:7f: 5c:ef:84:62:8a:ad:5e:fb:3b:3a:54:3a:97:b2:be: 03:a9:53:be:04:73:1d:e9:3f:41:dd:1d:cf:8a:6e: a6:92:42:37:3e:a0:51:c4:40:09:70:2b:cf:84:34: 78:2f:2c:8a:2a:7e:87:06:ed:79:75:a3:79:5e:58: 6a:81:d3:14:22:da:b3:08:49:82:ad:ec:e6:10:51: 41:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6E:A4:05:34:9B:2B:1B:CE:BD:44:AD:CD:7D:BC:2B:EB:99:8B:B1:DD X509v3 Authority Key Identifier: keyid:60:EF:4A:17:B8:EF:F4:5B:A0:B3:9D:47:49:65:57:E3:88:FF:FE:52 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YO9KF7jv9Fugs51HSWVX44j__lI.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b5/57faee-68b2-4693-8130-ce434a402617/1/bqQFNJsrG869RK3Nfbwr65mLsd0.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/b5/57faee-68b2-4693-8130-ce434a402617/1/YO9KF7jv9Fugs51HSWVX44j__lI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 141.22.0.0/16 Signature Algorithm: sha256WithRSAEncryption 15:5c:c6:cd:07:3d:59:35:33:d2:1d:08:26:7f:8e:ea:75:b2: f4:71:f8:79:68:90:5f:76:79:78:d2:6e:d0:aa:0e:03:c8:e8: 3f:75:e6:8d:41:6d:f5:3d:5b:8a:cd:cf:ca:88:be:94:1a:7d: 29:0e:5a:d1:93:f1:d4:3f:92:b7:c1:b0:9f:83:10:25:f3:04: ab:b8:76:d9:33:28:2a:7b:ea:66:fa:b2:a0:72:09:dc:7c:e5: 99:42:ca:4d:2d:e4:30:c0:ad:03:50:42:10:7b:3e:3f:0c:21: 24:26:21:c7:20:36:15:a6:ed:70:dc:bf:02:26:37:9a:8b:5b: 15:2b:11:6f:c2:c6:24:eb:6a:21:5b:01:00:ea:4c:d8:e4:b3: cf:b9:69:1d:63:bd:ce:39:6f:b0:19:5b:2a:f2:7b:68:e6:02: ca:17:2f:2c:ca:91:68:f8:82:ae:5a:79:4b:f8:77:4d:9c:7c: a7:61:32:75:41:8c:25:b9:f9:00:97:49:3b:af:f8:9c:b4:14: b5:80:17:8d:3f:33:39:66:3e:bc:17:e1:f8:fc:d0:2e:9c:30: 29:39:e6:e3:f9:70:61:20:69:ff:4b:a8:ef:0a:77:3b:15:4f: 03:cc:f9:91:6b:34:0d:bb:dc:9e:22:bf:1a:2f:4e:d9:97:28: cd:d1:89:e9 -----BEGIN CERTIFICATE----- MIIE/DCCA+SgAwIBAgISAZt/gI9ccwhvOm9ZcTedRR9MMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDYwZWY0YTE3YjhlZmY0NWJhMGIzOWQ0NzQ5NjU1N2UzODhm ZmZlNTIwHhcNMjYwMTAyMTYxODEwWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg2ZWE0MDUzNDliMmIxYmNlYmQ0NGFkY2Q3ZGJjMmJlYjk5OGJiMWRkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAz/HlgVHNs8bx+NfnyVIDpkaR7cti 873CAcB5bJ78lzySEH0FHeDiPGBLVAsxwN4IaE5uQnOBjnyhkuCV+UASXQdrakEZ i9z7/ATeHiZ788hmTsCLyZDlnZD015dZGQvAidccryMovoLtkQmsFwbTixyWg0D4 9Hgyr1zM0wgkIV90dkAGIwZpcFoAubc/Ynj4D5DhYMiLKLflAYHkxV7l0Z0aENbU vLOsgHESyxIIfKNSCn9c74Riiq1e+zs6VDqXsr4DqVO+BHMd6T9B3R3Pim6mkkI3 PqBRxEAJcCvPhDR4LyyKKn6HBu15daN5XlhqgdMUItqzCEmCrezmEFFBQQIDAQAB o4ICCDCCAgQwHQYDVR0OBBYEFG6kBTSbKxvOvUStzX28K+uZi7HdMB8GA1UdIwQY MBaAFGDvShe47/RboLOdR0llV+OI//5SMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvWU85S0Y3anY5RnVnczUxSFNXVlg0NGpfX2xJLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iNS81N2ZhZWUtNjhiMi00NjkzLTgxMzAt Y2U0MzRhNDAyNjE3LzEvYnFRRk5Kc3JHODY5UkszTmZid3I2NW1Mc2QwLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iNS81N2ZhZWUtNjhiMi00NjkzLTgxMzAtY2U0MzRhNDAyNjE3 LzEvWU85S0Y3anY5RnVnczUxSFNXVlg0NGpfX2xJLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB4GCCsGAQUFBwEHAQH/BA8wDTALBAIAATAFAwMAjRYwDQYJ KoZIhvcNAQELBQADggEBABVcxs0HPVk1M9IdCCZ/jup1svRx+HlokF92eXjSbtCq DgPI6D915o1BbfU9W4rNz8qIvpQafSkOWtGT8dQ/krfBsJ+DECXzBKu4dtkzKCp7 6mb6sqByCdx85ZlCyk0t5DDArQNQQhB7Pj8MISQmIccgNhWm7XDcvwImN5qLWxUr EW/CxiTraiFbAQDqTNjks8+5aR1jvc45b7AZWyrye2jmAsoXLyzKkWj4gq5aeUv4 d02cfKdhMnVBjCW5+QCXSTuv+Jy0FLWAF40/MzlmPrwX4fj80C6cMCk55uP5cGEg af9LqO8KdzsVTwPM+ZFrNA273J4ivxovTtmXKM3Riek= -----END CERTIFICATE-----Generated at Tue Jan 27 11:25:55 2026 by rpki-client