This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/00/732b6c-48e4-4350-8a56-f6cc4ef0f7df/1/_sqGhlHA27KwHksonjgmIaBdsAQ.roa File: _sqGhlHA27KwHksonjgmIaBdsAQ.roa (raw, json) Hash identifier: NoYjgJE5d2d1MYQOa/RRnSo+ARJATCUhVG5n9dOn0n4= Subject key identifier: FE:CA:86:86:51:C0:DB:B2:B0:1E:4B:28:9E:38:26:21:A0:5D:B0:04 Certificate issuer: /CN=67f31bde46516347f4edfcbe30edac9a09e4e0e0 Certificate serial: 019B83609F9FB48A8FA2FB0EBDE19612765F Authority key identifier: 67:F3:1B:DE:46:51:63:47:F4:ED:FC:BE:30:ED:AC:9A:09:E4:E0:E0 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Z_Mb3kZRY0f07fy-MO2smgnk4OA.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/00/732b6c-48e4-4350-8a56-f6cc4ef0f7df/1/_sqGhlHA27KwHksonjgmIaBdsAQ.roa Signing time: Sat 03 Jan 2026 10:21:46 +0000 ROA not before: Sat 03 Jan 2026 10:21:46 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 214848 IP address blocks: 2a14:67c2:800::/40 maxlen: 48 2a14:67c3:d0::/44 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/00/732b6c-48e4-4350-8a56-f6cc4ef0f7df/1/Z_Mb3kZRY0f07fy-MO2smgnk4OA.crl rsync://rpki.ripe.net/repository/DEFAULT/00/732b6c-48e4-4350-8a56-f6cc4ef0f7df/1/Z_Mb3kZRY0f07fy-MO2smgnk4OA.mft rsync://rpki.ripe.net/repository/DEFAULT/Z_Mb3kZRY0f07fy-MO2smgnk4OA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 07:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:83:60:9f:9f:b4:8a:8f:a2:fb:0e:bd:e1:96:12:76:5f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=67f31bde46516347f4edfcbe30edac9a09e4e0e0 Validity Not Before: Jan 3 10:21:46 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=feca868651c0dbb2b01e4b289e382621a05db004 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:1f:9d:9e:59:2e:b3:c2:b4:48:61:38:ca:6e: ae:f0:29:8f:0b:8e:c6:da:68:de:71:29:96:bc:7a: 55:c2:07:9c:e5:71:8c:29:b1:19:24:b8:67:cb:e3: 69:23:86:6f:77:cc:d0:fa:2f:ce:ca:c7:bf:d0:43: c4:34:2f:a2:d4:0d:3c:0f:09:fd:ac:c5:28:79:c5: 4d:97:e1:f0:28:60:b5:45:28:b6:cb:b1:44:3a:05: df:82:0d:07:2d:38:ee:72:5e:00:8c:60:b8:04:32: e4:78:6e:b6:47:fd:f3:76:2a:bb:f0:4a:6a:dd:07: d7:c3:83:6f:0b:a6:84:28:ae:c4:a9:b6:fc:f4:11: 9b:4d:16:fa:93:71:0f:00:b5:4b:d6:7f:c8:da:b0: c6:fe:7f:56:8f:76:bb:68:3f:29:a6:cb:d7:1b:d1: 90:36:d5:1d:f1:30:d3:ab:06:10:86:b2:d5:e4:8a: a4:6c:e8:96:66:a4:ab:03:5f:df:c3:47:66:69:dd: f0:fc:38:f2:da:b9:01:54:a8:75:13:62:f9:79:d4: 9d:85:3c:49:7c:b2:c0:4f:e6:4a:1e:ff:1e:08:20: 53:38:dd:d4:7b:33:ed:8a:1c:61:21:6d:b4:44:64: 5b:54:3a:e6:fc:d7:2a:1e:3c:07:19:99:7b:2b:1b: ba:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FE:CA:86:86:51:C0:DB:B2:B0:1E:4B:28:9E:38:26:21:A0:5D:B0:04 X509v3 Authority Key Identifier: keyid:67:F3:1B:DE:46:51:63:47:F4:ED:FC:BE:30:ED:AC:9A:09:E4:E0:E0 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Z_Mb3kZRY0f07fy-MO2smgnk4OA.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/00/732b6c-48e4-4350-8a56-f6cc4ef0f7df/1/_sqGhlHA27KwHksonjgmIaBdsAQ.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/00/732b6c-48e4-4350-8a56-f6cc4ef0f7df/1/Z_Mb3kZRY0f07fy-MO2smgnk4OA.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a14:67c2:800::/40 2a14:67c3:d0::/44 Signature Algorithm: sha256WithRSAEncryption 3f:83:7d:d5:b2:bd:bb:3e:d5:02:d9:35:68:f9:07:95:e1:30: 58:28:bb:fa:0a:fc:c6:cb:58:d6:a6:54:14:a9:4d:ef:13:8b: 8b:6a:f0:df:c7:ed:48:3a:d2:27:c5:6f:6b:4e:1a:85:13:e5: 3e:8c:d2:d3:b3:0b:49:82:25:82:4f:97:ac:11:22:24:2d:f4: a3:10:b7:fc:d6:c7:01:d6:58:4c:e9:6a:79:b6:6b:a1:d7:0b: 10:6e:88:7f:37:13:62:f1:d1:d5:b7:09:f5:06:01:6e:14:b8: bc:bb:d1:3a:b1:c1:d6:27:ec:ae:e9:0c:48:de:39:24:bf:6f: 01:6d:45:13:79:3e:1f:2c:89:11:1b:2a:20:07:e8:79:93:1a: 78:d6:8c:94:6d:82:c5:63:45:4b:62:fd:c8:95:b7:e7:d0:79: f5:0e:4f:f7:5d:b7:2e:72:39:6e:5f:56:38:e5:13:a2:56:03: 07:8c:1b:fc:03:30:e8:5d:c5:30:be:93:0e:80:de:30:57:f0: a1:30:07:40:8e:4e:79:73:0b:8c:66:c9:7f:b4:9f:8f:2c:99: 67:82:ee:c9:e7:e2:6d:f6:75:60:1e:4a:e5:18:63:31:68:e6: cd:de:0e:fc:95:25:53:49:d4:df:aa:e9:0b:59:67:6d:7c:0f: ac:f3:a2:68 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgISAZuDYJ+ftIqPovsOveGWEnZfMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDY3ZjMxYmRlNDY1MTYzNDdmNGVkZmNiZTMwZWRhYzlhMDll NGUwZTAwHhcNMjYwMTAzMTAyMTQ2WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhmZWNhODY4NjUxYzBkYmIyYjAxZTRiMjg5ZTM4MjYyMWEwNWRiMDA0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA2R+dnlkus8K0SGE4ym6u8CmPC47G 2mjecSmWvHpVwgec5XGMKbEZJLhny+NpI4Zvd8zQ+i/Oyse/0EPENC+i1A08Dwn9 rMUoecVNl+HwKGC1RSi2y7FEOgXfgg0HLTjucl4AjGC4BDLkeG62R/3zdiq78Epq 3QfXw4NvC6aEKK7Eqbb89BGbTRb6k3EPALVL1n/I2rDG/n9Wj3a7aD8ppsvXG9GQ NtUd8TDTqwYQhrLV5IqkbOiWZqSrA1/fw0dmad3w/Djy2rkBVKh1E2L5edSdhTxJ fLLAT+ZKHv8eCCBTON3UezPtihxhIW20RGRbVDrm/NcqHjwHGZl7Kxu6qQIDAQAB o4ICFDCCAhAwHQYDVR0OBBYEFP7KhoZRwNuysB5LKJ44JiGgXbAEMB8GA1UdIwQY MBaAFGfzG95GUWNH9O38vjDtrJoJ5ODgMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvWl9NYjNrWlJZMGYwN2Z5LU1PMnNtZ25rNE9BLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wMC83MzJiNmMtNDhlNC00MzUwLThhNTYt ZjZjYzRlZjBmN2RmLzEvX3NxR2hsSEEyN0t3SGtzb25qZ21JYUJkc0FRLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wMC83MzJiNmMtNDhlNC00MzUwLThhNTYtZjZjYzRlZjBmN2Rm LzEvWl9NYjNrWlJZMGYwN2Z5LU1PMnNtZ25rNE9BLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCoGCCsGAQUFBwEHAQH/BBswGTAXBAIAAjARAwYAKhRnwggD BwQqFGfDANAwDQYJKoZIhvcNAQELBQADggEBAD+DfdWyvbs+1QLZNWj5B5XhMFgo u/oK/MbLWNamVBSpTe8Ti4tq8N/H7Ug60ifFb2tOGoUT5T6M0tOzC0mCJYJPl6wR IiQt9KMQt/zWxwHWWEzpanm2a6HXCxBuiH83E2Lx0dW3CfUGAW4UuLy70TqxwdYn 7K7pDEjeOSS/bwFtRRN5Ph8siREbKiAH6HmTGnjWjJRtgsVjRUti/ciVt+fQefUO T/ddty5yOW5fVjjlE6JWAweMG/wDMOhdxTC+kw6A3jBX8KEwB0COTnlzC4xmyX+0 n48smWeC7snn4m32dWAeSuUYYzFo5s3eDvyVJVNJ1N+q6QtZZ218D6zzomg= -----END CERTIFICATE-----Generated at Sun Jan 25 13:33:28 2026 by rpki-client