This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/q1pnvO6HYeuGgZPysL-nUQvdWsw.roa File: q1pnvO6HYeuGgZPysL-nUQvdWsw.roa (raw, json) Hash identifier: 59GduqFyTymMBaPEThtHFzf9JEbY27jFfHIll/1t4fY= Subject key identifier: AB:5A:67:BC:EE:87:61:EB:86:81:93:F2:B0:BF:A7:51:0B:DD:5A:CC Certificate issuer: /CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f Certificate serial: 019B7F859485CAEBACDD4791EF6EAFAA0E04 Authority key identifier: 6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/q1pnvO6HYeuGgZPysL-nUQvdWsw.roa Signing time: Fri 02 Jan 2026 16:23:39 +0000 ROA not before: Fri 02 Jan 2026 16:23:39 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 202758 IP address blocks: 2a0f:b240:100::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/bocQSk20xGNxp_i2pEH8MOzf4g8.crl rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/bocQSk20xGNxp_i2pEH8MOzf4g8.mft rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 22 Jan 2026 02:24:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7f:85:94:85:ca:eb:ac:dd:47:91:ef:6e:af:aa:0e:04 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f Validity Not Before: Jan 2 16:23:39 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=ab5a67bcee8761eb868193f2b0bfa7510bdd5acc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:94:ed:6d:28:31:3c:31:b6:44:cb:40:e6:09: 74:d9:16:a4:69:ea:81:b5:75:c3:01:d8:bb:5e:0c: 78:b5:3e:0b:dd:b7:f1:8a:fe:35:bb:2b:49:5b:77: 12:51:7f:df:f3:a9:ec:73:20:cd:dd:6b:72:a6:0a: b9:aa:93:34:76:f8:62:55:96:39:e0:c9:80:e3:57: 4a:29:43:69:28:9c:b3:b3:fe:86:59:c3:a7:07:a5: 14:f8:f6:dd:b4:e0:33:16:51:9c:3c:9c:54:a8:a6: a1:1d:a8:bd:5f:2e:69:a3:fd:5a:15:2f:3a:7b:df: e1:12:ad:46:7c:ed:64:d9:64:a6:fa:6d:0c:3c:36: 25:63:37:e4:54:da:e8:ea:de:0a:f0:bc:00:c1:7a: 7c:d7:f9:3f:03:dd:74:5c:74:10:77:14:e0:a2:88: d2:0c:11:1d:24:2d:a0:aa:d2:8e:53:de:17:73:82: bc:2e:7d:69:f4:70:fe:69:71:2e:88:84:80:6f:c6: 70:8c:46:63:d5:8e:2c:ad:50:ce:26:0e:ec:da:9f: 3b:73:5f:28:1c:ec:2b:1e:28:5e:6e:97:f3:68:a0: 81:82:da:b7:3b:64:e9:05:96:68:b1:32:6a:cd:73: 3a:5e:c0:ee:3d:b8:0b:24:f0:cf:76:6c:eb:ee:95: 36:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AB:5A:67:BC:EE:87:61:EB:86:81:93:F2:B0:BF:A7:51:0B:DD:5A:CC X509v3 Authority Key Identifier: keyid:6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/q1pnvO6HYeuGgZPysL-nUQvdWsw.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/bocQSk20xGNxp_i2pEH8MOzf4g8.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0f:b240:100::/40 Signature Algorithm: sha256WithRSAEncryption 15:02:8d:ec:c5:55:83:72:74:13:24:15:8e:f4:41:06:a6:78: 22:d3:46:e0:e0:11:06:b1:82:2f:2b:d8:31:8b:0f:82:10:ce: 7c:3f:8e:bc:8a:19:4f:a4:e6:00:5c:db:f4:9f:81:65:89:36: b3:83:f4:e5:fb:d3:24:ef:52:27:e4:0f:a4:a7:c2:3d:b3:a6: f0:0e:59:ff:fc:ba:82:53:1d:c9:53:77:8b:ce:fe:d6:06:fe: b3:d5:76:4a:3d:2a:25:1f:32:bc:f0:03:3a:b2:20:c9:e5:58: bb:7b:0e:1a:87:52:59:55:44:2b:56:c7:21:65:2f:74:68:7e: d3:29:bb:ad:fd:d4:9a:b8:2c:6f:bc:0b:c5:00:5a:21:6f:7d: c7:38:09:e3:f6:a5:ad:4a:b5:ed:19:f4:31:dc:c9:e2:8f:ea: fd:c8:d6:bf:ab:6c:b0:cf:b0:72:9d:18:44:b5:7e:23:e8:4c: 74:27:6b:42:d6:d1:cc:fd:3d:b1:c3:4f:49:1b:9b:81:94:ee: 41:78:0b:44:39:bb:26:52:b7:e6:fe:f0:57:4b:6d:66:15:7d: 3c:af:b6:2d:c0:69:b2:4b:20:7d:6d:3a:7b:1d:98:84:8b:9c: 2e:a8:ba:90:87:6b:6a:ee:93:9b:ee:39:fc:8f:a7:2b:39:3e: 90:67:bb:6e -----BEGIN CERTIFICATE----- MIIE/zCCA+egAwIBAgISAZt/hZSFyuus3UeR726vqg4EMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDZlODcxMDRhNGRiNGM0NjM3MWE3ZjhiNmE0NDFmYzMwZWNk ZmUyMGYwHhcNMjYwMTAyMTYyMzM5WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhhYjVhNjdiY2VlODc2MWViODY4MTkzZjJiMGJmYTc1MTBiZGQ1YWNjMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA2ZTtbSgxPDG2RMtA5gl02RakaeqB tXXDAdi7Xgx4tT4L3bfxiv41uytJW3cSUX/f86nscyDN3Wtypgq5qpM0dvhiVZY5 4MmA41dKKUNpKJyzs/6GWcOnB6UU+PbdtOAzFlGcPJxUqKahHai9Xy5po/1aFS86 e9/hEq1GfO1k2WSm+m0MPDYlYzfkVNro6t4K8LwAwXp81/k/A910XHQQdxTgoojS DBEdJC2gqtKOU94Xc4K8Ln1p9HD+aXEuiISAb8ZwjEZj1Y4srVDOJg7s2p87c18o HOwrHihebpfzaKCBgtq3O2TpBZZosTJqzXM6XsDuPbgLJPDPdmzr7pU2PwIDAQAB o4ICCzCCAgcwHQYDVR0OBBYEFKtaZ7zuh2HrhoGT8rC/p1EL3VrMMB8GA1UdIwQY MBaAFG6HEEpNtMRjcaf4tqRB/DDs3+IPMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvYm9jUVNrMjB4R054cF9pMnBFSDhNT3pmNGc4LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kMy9iODdlYzAtZjc1YS00YmJlLWIwNjct YjcxNzk4MGU0YWQ2LzEvcTFwbnZPNkhZZXVHZ1pQeXNMLW5VUXZkV3N3LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kMy9iODdlYzAtZjc1YS00YmJlLWIwNjctYjcxNzk4MGU0YWQ2 LzEvYm9jUVNrMjB4R054cF9pMnBFSDhNT3pmNGc4LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAOBAIAAjAIAwYAKg+yQAEw DQYJKoZIhvcNAQELBQADggEBABUCjezFVYNydBMkFY70QQameCLTRuDgEQaxgi8r 2DGLD4IQznw/jryKGU+k5gBc2/SfgWWJNrOD9OX70yTvUifkD6Snwj2zpvAOWf/8 uoJTHclTd4vO/tYG/rPVdko9KiUfMrzwAzqyIMnlWLt7DhqHUllVRCtWxyFlL3Ro ftMpu6391Jq4LG+8C8UAWiFvfcc4CeP2pa1Kte0Z9DHcyeKP6v3I1r+rbLDPsHKd GES1fiPoTHQna0LW0cz9PbHDT0kbm4GU7kF4C0Q5uyZSt+b+8FdLbWYVfTyvti3A abJLIH1tOnsdmISLnC6oupCHa2ruk5vuOfyPpys5PpBnu24= -----END CERTIFICATE-----Generated at Wed Jan 21 11:59:25 2026 by rpki-client