This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d3/c0bd67-f7dd-4ce2-ab7e-a347564158f8/1/q3rbGoECoqVzoiEg67F8Le7vz1Q.roa File: q3rbGoECoqVzoiEg67F8Le7vz1Q.roa (raw, json) Hash identifier: u7wuzSzxMHXwNLDoDAPzL65dXF8XL5bh5VXZVXeIDP0= Subject key identifier: AB:7A:DB:1A:81:02:A2:A5:73:A2:21:20:EB:B1:7C:2D:EE:EF:CF:54 Certificate issuer: /CN=0c21b925b4c4bcc30f77c9c41ba8d040ac95dfc6 Certificate serial: 019B79ED483ADD73B4D96F46B943239D10CC Authority key identifier: 0C:21:B9:25:B4:C4:BC:C3:0F:77:C9:C4:1B:A8:D0:40:AC:95:DF:C6 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DCG5JbTEvMMPd8nEG6jQQKyV38Y.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d3/c0bd67-f7dd-4ce2-ab7e-a347564158f8/1/q3rbGoECoqVzoiEg67F8Le7vz1Q.roa Signing time: Thu 01 Jan 2026 14:19:12 +0000 ROA not before: Thu 01 Jan 2026 14:19:12 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 57401 IP address blocks: 2a0f:607:1059::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d3/c0bd67-f7dd-4ce2-ab7e-a347564158f8/1/DCG5JbTEvMMPd8nEG6jQQKyV38Y.crl rsync://rpki.ripe.net/repository/DEFAULT/d3/c0bd67-f7dd-4ce2-ab7e-a347564158f8/1/DCG5JbTEvMMPd8nEG6jQQKyV38Y.mft rsync://rpki.ripe.net/repository/DEFAULT/DCG5JbTEvMMPd8nEG6jQQKyV38Y.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 08 Jan 2026 15:30:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:79:ed:48:3a:dd:73:b4:d9:6f:46:b9:43:23:9d:10:cc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0c21b925b4c4bcc30f77c9c41ba8d040ac95dfc6 Validity Not Before: Jan 1 14:19:12 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=ab7adb1a8102a2a573a22120ebb17c2deeefcf54 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:c6:09:65:09:a3:22:eb:93:a6:79:62:72:e9: d9:94:79:7a:27:20:6e:4f:45:97:e7:c4:9b:a9:93: 53:4d:50:01:a7:b1:fc:e7:cc:3b:21:7e:45:69:60: b1:94:1e:f7:a0:b6:b9:70:0f:74:02:b1:2c:96:f5: 9c:c4:d5:37:4a:6a:d5:6a:36:10:b1:8a:43:97:28: 8f:8a:08:9b:7d:0c:dc:eb:07:71:d0:f9:2d:57:68: 2b:1b:42:23:84:25:3e:d5:dc:f2:46:f1:c0:f3:6c: f9:d4:38:4c:89:90:dd:17:a4:e5:a5:cd:39:87:d4: 0c:de:68:df:03:d7:c4:a6:69:bb:a7:97:53:ef:7d: 66:6f:cf:c0:75:f4:5f:94:d7:dd:26:67:3b:47:36: 5c:45:aa:eb:46:86:7c:bb:ab:5e:2a:bf:fe:85:64: 5c:7a:ce:e7:96:05:42:2f:7b:9a:07:8e:2f:f4:82: 40:bf:8f:a0:9a:da:04:a9:89:88:05:21:f9:a7:1b: 0a:99:60:19:a5:00:47:2d:0e:fa:42:02:62:65:1e: 89:ed:40:4b:7c:e4:61:b7:35:5b:0c:69:5d:d6:13: b2:fa:87:b3:0b:65:f2:84:b5:19:56:8f:1e:9e:29: 51:6e:41:c5:e4:f7:e4:da:a7:8b:05:31:94:6c:c3: c1:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AB:7A:DB:1A:81:02:A2:A5:73:A2:21:20:EB:B1:7C:2D:EE:EF:CF:54 X509v3 Authority Key Identifier: keyid:0C:21:B9:25:B4:C4:BC:C3:0F:77:C9:C4:1B:A8:D0:40:AC:95:DF:C6 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DCG5JbTEvMMPd8nEG6jQQKyV38Y.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/c0bd67-f7dd-4ce2-ab7e-a347564158f8/1/q3rbGoECoqVzoiEg67F8Le7vz1Q.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/c0bd67-f7dd-4ce2-ab7e-a347564158f8/1/DCG5JbTEvMMPd8nEG6jQQKyV38Y.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0f:607:1059::/48 Signature Algorithm: sha256WithRSAEncryption 1b:c8:26:a8:e4:c3:10:a8:e1:3b:b5:43:af:5b:b2:dc:7c:26: 3d:47:d0:99:1c:e7:2c:cd:f4:76:ff:21:14:6a:d2:d4:78:bb: e6:b5:9b:52:0f:dd:84:cf:2e:f8:28:ee:b2:1b:a3:3f:98:c0: cf:65:f4:4d:68:d9:5a:6b:f6:aa:6f:82:8b:04:0d:50:67:8e: f7:3c:b5:a5:08:8d:6b:16:70:c9:a0:1e:9d:c5:db:a9:9f:f4: 63:4d:62:1b:1c:d9:d4:c8:bf:d9:ff:d9:79:e6:23:aa:a7:87: af:0e:62:12:02:19:c3:2f:8e:2e:6d:24:c4:0a:4d:3a:83:e1: 42:3f:2f:b9:c4:5d:2a:99:5f:d5:03:f9:af:9f:96:85:65:b9: 77:4c:77:75:9d:5e:c2:86:a6:88:24:d6:4e:dd:3f:4e:73:d3: aa:91:08:75:5f:2a:df:4d:16:28:83:6f:48:28:4e:ff:68:77: c0:08:09:49:91:01:be:0f:6b:81:5b:30:19:1c:9e:2d:54:f3: aa:5c:d3:15:c4:b2:86:7d:5b:c9:74:17:85:4d:a0:38:98:c2: 9f:46:ea:60:7e:b2:07:06:15:d3:6b:40:55:54:7a:02:82:65: 1b:dc:6a:5f:4f:99:fd:e1:72:e8:ee:7f:b2:6a:b0:e1:5d:de: 14:10:d2:43 -----BEGIN CERTIFICATE----- MIIFADCCA+igAwIBAgISAZt57Ug63XO02W9GuUMjnRDMMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDBjMjFiOTI1YjRjNGJjYzMwZjc3YzljNDFiYThkMDQwYWM5 NWRmYzYwHhcNMjYwMTAxMTQxOTEyWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhhYjdhZGIxYTgxMDJhMmE1NzNhMjIxMjBlYmIxN2MyZGVlZWZjZjU0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAz8YJZQmjIuuTpnlicunZlHl6JyBu T0WX58SbqZNTTVABp7H858w7IX5FaWCxlB73oLa5cA90ArEslvWcxNU3SmrVajYQ sYpDlyiPigibfQzc6wdx0PktV2grG0IjhCU+1dzyRvHA82z51DhMiZDdF6Tlpc05 h9QM3mjfA9fEpmm7p5dT731mb8/AdfRflNfdJmc7RzZcRarrRoZ8u6teKr/+hWRc es7nlgVCL3uaB44v9IJAv4+gmtoEqYmIBSH5pxsKmWAZpQBHLQ76QgJiZR6J7UBL fORhtzVbDGld1hOy+oezC2XyhLUZVo8enilRbkHF5Pfk2qeLBTGUbMPBoQIDAQAB o4ICDDCCAggwHQYDVR0OBBYEFKt62xqBAqKlc6IhIOuxfC3u789UMB8GA1UdIwQY MBaAFAwhuSW0xLzDD3fJxBuo0ECsld/GMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvRENHNUpiVEV2TU1QZDhuRUc2alFRS3lWMzhZLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kMy9jMGJkNjctZjdkZC00Y2UyLWFiN2Ut YTM0NzU2NDE1OGY4LzEvcTNyYkdvRUNvcVZ6b2lFZzY3RjhMZTd2ejFRLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kMy9jMGJkNjctZjdkZC00Y2UyLWFiN2UtYTM0NzU2NDE1OGY4 LzEvRENHNUpiVEV2TU1QZDhuRUc2alFRS3lWMzhZLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAKg8GBxBZ MA0GCSqGSIb3DQEBCwUAA4IBAQAbyCao5MMQqOE7tUOvW7LcfCY9R9CZHOcszfR2 /yEUatLUeLvmtZtSD92Ezy74KO6yG6M/mMDPZfRNaNlaa/aqb4KLBA1QZ473PLWl CI1rFnDJoB6dxdupn/RjTWIbHNnUyL/Z/9l55iOqp4evDmISAhnDL44ubSTECk06 g+FCPy+5xF0qmV/VA/mvn5aFZbl3THd1nV7ChqaIJNZO3T9Oc9OqkQh1XyrfTRYo g29IKE7/aHfACAlJkQG+D2uBWzAZHJ4tVPOqXNMVxLKGfVvJdBeFTaA4mMKfRupg frIHBhXTa0BVVHoCgmUb3GpfT5n94XLo7n+yarDhXd4UENJD -----END CERTIFICATE-----Generated at Thu Jan 8 00:39:56 2026 by rpki-client