This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/00/732b6c-48e4-4350-8a56-f6cc4ef0f7df/1/q8od2baM6KfOkjzxGj1xR_rY6bI.roa File: q8od2baM6KfOkjzxGj1xR_rY6bI.roa (raw, json) Hash identifier: SveTVFlMEBN9roAs8L2cta2adtsfSpScJJt4Ne//xkY= Subject key identifier: AB:CA:1D:D9:B6:8C:E8:A7:CE:92:3C:F1:1A:3D:71:47:FA:D8:E9:B2 Certificate issuer: /CN=67f31bde46516347f4edfcbe30edac9a09e4e0e0 Certificate serial: 019B7B357C36AE46AFBFABB855DB5B0AB05B Authority key identifier: 67:F3:1B:DE:46:51:63:47:F4:ED:FC:BE:30:ED:AC:9A:09:E4:E0:E0 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Z_Mb3kZRY0f07fy-MO2smgnk4OA.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/00/732b6c-48e4-4350-8a56-f6cc4ef0f7df/1/q8od2baM6KfOkjzxGj1xR_rY6bI.roa Signing time: Thu 01 Jan 2026 20:17:41 +0000 ROA not before: Thu 01 Jan 2026 20:17:41 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 137908 IP address blocks: 2a14:67c1:a110::/44 maxlen: 48 2a14:67c1:c600::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/00/732b6c-48e4-4350-8a56-f6cc4ef0f7df/1/Z_Mb3kZRY0f07fy-MO2smgnk4OA.crl rsync://rpki.ripe.net/repository/DEFAULT/00/732b6c-48e4-4350-8a56-f6cc4ef0f7df/1/Z_Mb3kZRY0f07fy-MO2smgnk4OA.mft rsync://rpki.ripe.net/repository/DEFAULT/Z_Mb3kZRY0f07fy-MO2smgnk4OA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 07:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7b:35:7c:36:ae:46:af:bf:ab:b8:55:db:5b:0a:b0:5b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=67f31bde46516347f4edfcbe30edac9a09e4e0e0 Validity Not Before: Jan 1 20:17:41 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=abca1dd9b68ce8a7ce923cf11a3d7147fad8e9b2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:12:4e:f3:0a:55:ab:c4:d2:aa:c5:c6:b8:cb: e0:fe:3a:7c:de:f4:00:d8:d2:53:7c:c5:b8:26:b3: 7b:7a:1c:27:55:69:86:c1:ee:6f:58:19:25:99:41: ab:52:1d:78:a3:88:d8:8a:9d:57:b6:55:d7:9e:c0: 14:b4:d2:18:26:25:14:4c:62:77:d1:e4:cd:03:a1: cf:2f:84:2a:80:9e:0c:89:65:68:4a:4b:14:30:d9: 6b:ba:17:c9:8f:e8:4e:7b:27:df:72:45:4b:45:7a: 51:92:05:26:3b:a6:93:e8:6c:ff:29:66:fd:ac:3e: 52:2f:a1:a3:b0:b7:f3:f6:2a:eb:e6:78:f9:0d:1b: f9:7d:08:2e:ea:a7:d1:a9:b5:e4:50:69:ad:7e:fe: 0f:cc:29:df:76:a1:f5:2f:b6:d1:5d:fe:ee:9d:d9: 9d:d9:eb:e8:a1:ca:14:ca:c5:45:6b:bf:2f:09:c3: 3e:c7:f7:66:0c:00:95:ec:ed:15:a0:6a:4b:e5:57: f4:3d:80:79:cd:ca:dd:73:5a:f8:56:83:3c:79:5e: 9e:80:26:d2:e9:58:5f:ec:f7:ed:0f:81:f7:50:a4: 58:c3:31:9d:f0:8c:51:a4:5d:77:52:00:de:5e:12: 5c:75:a6:da:db:ab:17:d9:a5:db:2c:a9:a8:23:d3: b6:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AB:CA:1D:D9:B6:8C:E8:A7:CE:92:3C:F1:1A:3D:71:47:FA:D8:E9:B2 X509v3 Authority Key Identifier: keyid:67:F3:1B:DE:46:51:63:47:F4:ED:FC:BE:30:ED:AC:9A:09:E4:E0:E0 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Z_Mb3kZRY0f07fy-MO2smgnk4OA.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/00/732b6c-48e4-4350-8a56-f6cc4ef0f7df/1/q8od2baM6KfOkjzxGj1xR_rY6bI.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/00/732b6c-48e4-4350-8a56-f6cc4ef0f7df/1/Z_Mb3kZRY0f07fy-MO2smgnk4OA.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a14:67c1:a110::/44 2a14:67c1:c600::/40 Signature Algorithm: sha256WithRSAEncryption 8b:56:2f:ef:0d:5c:dc:34:f5:cc:69:56:55:58:e9:3d:a8:7a: 1a:6b:e2:b2:8c:b2:32:a3:4f:21:b2:3e:34:bd:e2:f4:d7:3b: 95:90:0c:92:c5:94:f2:e9:c9:09:ee:d3:e2:0c:1a:84:6e:64: 4a:a4:39:c1:a1:0c:d5:fb:08:14:bf:16:2d:25:b3:c2:8f:71: bd:20:fe:f7:af:41:cf:22:0e:ae:64:0a:90:12:18:88:14:fa: 47:e9:fb:a0:0a:70:f8:16:a0:37:1e:fd:e6:d3:73:8d:66:d2: d4:05:5a:fb:7b:e0:1c:1c:53:b8:9e:c4:e4:34:11:9f:4f:f1: 2a:de:f3:f2:f7:92:ee:9f:07:c8:6a:e8:c3:0a:6f:35:ce:93: eb:9f:89:28:7f:a5:2e:7b:77:9e:ea:a8:22:a1:bc:da:9f:0b: 1a:2a:5b:55:21:31:48:ec:b5:88:b5:b7:0e:88:cc:1f:97:e5: 58:ac:61:3a:7b:cc:80:66:a3:4c:9a:95:32:5a:1b:2f:a7:7c: 02:18:48:fe:f1:b9:61:65:7b:94:21:b7:92:54:45:9c:66:2a: dd:69:a5:25:27:cb:a8:c0:71:76:08:d0:18:bb:22:da:04:64: af:24:f9:16:70:cb:1e:12:78:39:9b:0b:e6:cf:55:48:2d:32: ac:33:e5:90 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgISAZt7NXw2rkavv6u4VdtbCrBbMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDY3ZjMxYmRlNDY1MTYzNDdmNGVkZmNiZTMwZWRhYzlhMDll NGUwZTAwHhcNMjYwMTAxMjAxNzQxWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhhYmNhMWRkOWI2OGNlOGE3Y2U5MjNjZjExYTNkNzE0N2ZhZDhlOWIyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwBJO8wpVq8TSqsXGuMvg/jp83vQA 2NJTfMW4JrN7ehwnVWmGwe5vWBklmUGrUh14o4jYip1XtlXXnsAUtNIYJiUUTGJ3 0eTNA6HPL4QqgJ4MiWVoSksUMNlruhfJj+hOeyffckVLRXpRkgUmO6aT6Gz/KWb9 rD5SL6GjsLfz9irr5nj5DRv5fQgu6qfRqbXkUGmtfv4PzCnfdqH1L7bRXf7undmd 2evoocoUysVFa78vCcM+x/dmDACV7O0VoGpL5Vf0PYB5zcrdc1r4VoM8eV6egCbS 6Vhf7PftD4H3UKRYwzGd8IxRpF13UgDeXhJcdaba26sX2aXbLKmoI9O25wIDAQAB o4ICFDCCAhAwHQYDVR0OBBYEFKvKHdm2jOinzpI88Ro9cUf62OmyMB8GA1UdIwQY MBaAFGfzG95GUWNH9O38vjDtrJoJ5ODgMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvWl9NYjNrWlJZMGYwN2Z5LU1PMnNtZ25rNE9BLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wMC83MzJiNmMtNDhlNC00MzUwLThhNTYt ZjZjYzRlZjBmN2RmLzEvcThvZDJiYU02S2ZPa2p6eEdqMXhSX3JZNmJJLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wMC83MzJiNmMtNDhlNC00MzUwLThhNTYtZjZjYzRlZjBmN2Rm LzEvWl9NYjNrWlJZMGYwN2Z5LU1PMnNtZ25rNE9BLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCoGCCsGAQUFBwEHAQH/BBswGTAXBAIAAjARAwcEKhRnwaEQ AwYAKhRnwcYwDQYJKoZIhvcNAQELBQADggEBAItWL+8NXNw09cxpVlVY6T2oehpr 4rKMsjKjTyGyPjS94vTXO5WQDJLFlPLpyQnu0+IMGoRuZEqkOcGhDNX7CBS/Fi0l s8KPcb0g/vevQc8iDq5kCpASGIgU+kfp+6AKcPgWoDce/ebTc41m0tQFWvt74Bwc U7iexOQ0EZ9P8Sre8/L3ku6fB8hq6MMKbzXOk+ufiSh/pS57d57qqCKhvNqfCxoq W1UhMUjstYi1tw6IzB+X5VisYTp7zIBmo0yalTJaGy+nfAIYSP7xuWFle5Qht5JU RZxmKt1ppSUny6jAcXYI0Bi7ItoEZK8k+RZwyx4SeDmbC+bPVUgtMqwz5ZA= -----END CERTIFICATE-----Generated at Sun Jan 25 12:05:55 2026 by rpki-client