This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d2/0b064f-b01a-4371-a44a-40c86b32eb22/1/SFQQoJg97TGHjrgzii8KpRT8xfc.roa File: SFQQoJg97TGHjrgzii8KpRT8xfc.roa (raw, json) Hash identifier: iv/LMo2P0Oa29pglyapnh+eYTODXjJUku1HA9y8udbA= Subject key identifier: 48:54:10:A0:98:3D:ED:31:87:8E:B8:33:8A:2F:0A:A5:14:FC:C5:F7 Certificate issuer: /CN=dceb394aae0836d34341f7ad319494765ab56b07 Certificate serial: 019B7A5B4F44ADD7FA532EDEB35D7AE2ED2B Authority key identifier: DC:EB:39:4A:AE:08:36:D3:43:41:F7:AD:31:94:94:76:5A:B5:6B:07 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3Os5Sq4INtNDQfetMZSUdlq1awc.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d2/0b064f-b01a-4371-a44a-40c86b32eb22/1/SFQQoJg97TGHjrgzii8KpRT8xfc.roa Signing time: Thu 01 Jan 2026 16:19:23 +0000 ROA not before: Thu 01 Jan 2026 16:19:23 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 51105 IP address blocks: 2a0c:ab40::/29 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d2/0b064f-b01a-4371-a44a-40c86b32eb22/1/3Os5Sq4INtNDQfetMZSUdlq1awc.crl rsync://rpki.ripe.net/repository/DEFAULT/d2/0b064f-b01a-4371-a44a-40c86b32eb22/1/3Os5Sq4INtNDQfetMZSUdlq1awc.mft rsync://rpki.ripe.net/repository/DEFAULT/3Os5Sq4INtNDQfetMZSUdlq1awc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 27 Jan 2026 10:02:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7a:5b:4f:44:ad:d7:fa:53:2e:de:b3:5d:7a:e2:ed:2b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=dceb394aae0836d34341f7ad319494765ab56b07 Validity Not Before: Jan 1 16:19:23 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=485410a0983ded31878eb8338a2f0aa514fcc5f7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:d8:9c:73:2b:f9:a6:d5:87:a3:18:87:cb:b6: bf:0a:0c:ed:f1:5c:5d:e1:b5:f9:92:2e:65:56:ce: 8f:4d:c4:16:62:4d:f7:14:b2:e0:44:5b:1e:5c:c2: 5e:53:c2:b2:ba:3e:eb:55:a7:9c:ca:b5:c6:89:5a: fc:e7:1e:eb:a4:ef:db:12:70:81:07:9f:31:d3:71: c5:28:3e:97:c5:43:0d:82:ec:11:c1:3a:d3:e1:81: 3d:bd:49:11:c4:3a:e5:f5:15:32:11:9c:fd:cd:78: 32:a7:bc:8c:0e:af:8b:d7:69:9f:16:60:c2:24:d1: ef:ad:7d:0b:7a:44:f9:23:a2:8f:2e:c8:33:c4:84: 1c:08:96:50:36:a8:cc:2a:c6:18:8a:48:e4:5e:0e: f7:e6:be:4e:5e:a1:fe:d6:42:c1:31:c8:82:e8:76: cd:98:8f:72:68:7e:5a:d5:c1:6b:0c:ea:c8:d6:f3: b4:cc:da:d2:c1:58:0d:33:1e:39:ed:bf:60:e3:00: 01:9a:08:77:08:71:ac:9c:bb:54:a2:ba:22:0d:ca: 0d:a1:21:27:67:5c:39:8d:7b:15:42:5e:46:c9:67: 23:81:a0:c9:b4:e3:d6:63:3f:1f:ab:ee:1a:0b:aa: ed:9d:b9:71:63:b9:9c:e5:77:4b:86:a7:65:0c:e6: bf:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 48:54:10:A0:98:3D:ED:31:87:8E:B8:33:8A:2F:0A:A5:14:FC:C5:F7 X509v3 Authority Key Identifier: keyid:DC:EB:39:4A:AE:08:36:D3:43:41:F7:AD:31:94:94:76:5A:B5:6B:07 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3Os5Sq4INtNDQfetMZSUdlq1awc.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d2/0b064f-b01a-4371-a44a-40c86b32eb22/1/SFQQoJg97TGHjrgzii8KpRT8xfc.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/d2/0b064f-b01a-4371-a44a-40c86b32eb22/1/3Os5Sq4INtNDQfetMZSUdlq1awc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0c:ab40::/29 Signature Algorithm: sha256WithRSAEncryption 85:30:97:30:94:89:1a:76:8c:1c:dc:8c:0c:0f:66:f5:a6:84: 68:ed:ff:c9:8b:ed:1d:15:e8:89:96:52:77:83:c8:0c:1c:68: 30:ed:93:90:ab:53:d7:12:5b:36:5b:c7:6c:d0:11:0c:a0:84: f5:8f:0f:d6:38:c8:eb:af:a2:39:2f:46:b6:54:f4:1c:1e:81: fa:b3:8e:73:9f:d5:74:01:b8:7c:ce:ed:ab:bb:b2:a4:ec:38: 18:38:f5:30:27:f1:eb:4c:4f:ca:69:25:86:75:34:0a:1f:9e: fa:f6:9c:fa:70:45:b1:6d:b8:0d:cd:c6:77:63:b9:a8:b7:5f: 9f:8d:5f:7d:ca:cd:14:e0:76:86:ab:ab:be:3b:a5:29:15:7e: 0f:fc:bc:be:f7:ff:c8:3d:0f:b4:d4:93:32:c4:d2:98:7d:5b: 09:3a:ad:aa:09:25:e9:4a:d0:74:dc:d8:33:7d:65:08:2d:10: 2d:d8:d3:9e:5c:37:8b:85:3a:99:a8:79:ec:d2:f8:e0:76:81: d7:81:e9:a0:ba:2b:a2:ed:6a:c8:52:be:c1:8b:d0:c5:15:85: 18:a7:46:d0:18:ae:b7:34:75:45:33:1d:63:27:02:00:4e:9b: fa:1a:82:d1:64:e8:0b:f9:f3:b8:36:4f:18:02:7d:89:1c:8e: 3b:92:ed:e7 -----BEGIN CERTIFICATE----- MIIE/jCCA+agAwIBAgISAZt6W09Erdf6Uy7es1164u0rMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGRjZWIzOTRhYWUwODM2ZDM0MzQxZjdhZDMxOTQ5NDc2NWFi NTZiMDcwHhcNMjYwMTAxMTYxOTIzWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg0ODU0MTBhMDk4M2RlZDMxODc4ZWI4MzM4YTJmMGFhNTE0ZmNjNWY3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApdiccyv5ptWHoxiHy7a/Cgzt8Vxd 4bX5ki5lVs6PTcQWYk33FLLgRFseXMJeU8Kyuj7rVaecyrXGiVr85x7rpO/bEnCB B58x03HFKD6XxUMNguwRwTrT4YE9vUkRxDrl9RUyEZz9zXgyp7yMDq+L12mfFmDC JNHvrX0LekT5I6KPLsgzxIQcCJZQNqjMKsYYikjkXg735r5OXqH+1kLBMciC6HbN mI9yaH5a1cFrDOrI1vO0zNrSwVgNMx457b9g4wABmgh3CHGsnLtUoroiDcoNoSEn Z1w5jXsVQl5GyWcjgaDJtOPWYz8fq+4aC6rtnblxY7mc5XdLhqdlDOa/kwIDAQAB o4ICCjCCAgYwHQYDVR0OBBYEFEhUEKCYPe0xh464M4ovCqUU/MX3MB8GA1UdIwQY MBaAFNzrOUquCDbTQ0H3rTGUlHZatWsHMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvM09zNVNxNElOdE5EUWZldE1aU1VkbHExYXdjLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kMi8wYjA2NGYtYjAxYS00MzcxLWE0NGEt NDBjODZiMzJlYjIyLzEvU0ZRUW9KZzk3VEdIanJnemlpOEtwUlQ4eGZjLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kMi8wYjA2NGYtYjAxYS00MzcxLWE0NGEtNDBjODZiMzJlYjIy LzEvM09zNVNxNElOdE5EUWZldE1aU1VkbHExYXdjLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCAGCCsGAQUFBwEHAQH/BBEwDzANBAIAAjAHAwUDKgyrQDAN BgkqhkiG9w0BAQsFAAOCAQEAhTCXMJSJGnaMHNyMDA9m9aaEaO3/yYvtHRXoiZZS d4PIDBxoMO2TkKtT1xJbNlvHbNARDKCE9Y8P1jjI66+iOS9GtlT0HB6B+rOOc5/V dAG4fM7tq7uypOw4GDj1MCfx60xPymklhnU0Ch+e+vac+nBFsW24Dc3Gd2O5qLdf n41ffcrNFOB2hqurvjulKRV+D/y8vvf/yD0PtNSTMsTSmH1bCTqtqgkl6UrQdNzY M31lCC0QLdjTnlw3i4U6mah57NL44HaB14HpoLorou1qyFK+wYvQxRWFGKdG0Biu tzR1RTMdYycCAE6b+hqC0WToC/nzuDZPGAJ9iRyOO5Lt5w== -----END CERTIFICATE-----Generated at Mon Jan 26 20:42:29 2026 by rpki-client