This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/11/5e0ee1-c833-4241-960a-e5768d6b182c/1/QFgVTa_d7QcMY8-5_IuqXoD8tZI.roa File: QFgVTa_d7QcMY8-5_IuqXoD8tZI.roa (raw, json) Hash identifier: jeGiUlHqHgGFamo7VLOuJ0n17v7Q86jD8/H1xHylsKA= Subject key identifier: 40:58:15:4D:AF:DD:ED:07:0C:63:CF:B9:FC:8B:AA:5E:80:FC:B5:92 Certificate issuer: /CN=baa0f258eef4b2bf4bbaa8430c1e58ca8c188ea7 Certificate serial: 019B77C6AEAE72B61436DE2F7A9929D3A00F Authority key identifier: BA:A0:F2:58:EE:F4:B2:BF:4B:BA:A8:43:0C:1E:58:CA:8C:18:8E:A7 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uqDyWO70sr9LuqhDDB5YyowYjqc.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/11/5e0ee1-c833-4241-960a-e5768d6b182c/1/QFgVTa_d7QcMY8-5_IuqXoD8tZI.roa Signing time: Thu 01 Jan 2026 04:17:48 +0000 ROA not before: Thu 01 Jan 2026 04:17:48 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 42375 IP address blocks: 2a05:1e40::/29 maxlen: 29 2a06:4380::/29 maxlen: 29 2a09:2980::/32 maxlen: 32 2a09:2985::/32 maxlen: 32 2a09:9440::/32 maxlen: 32 2a09:a200::/32 maxlen: 32 2a09:a201::/32 maxlen: 32 2a09:a202::/32 maxlen: 32 2a09:a500::/32 maxlen: 32 2a09:a502::/32 maxlen: 32 2a09:a504::/32 maxlen: 32 2a09:a800::/29 maxlen: 29 2a09:af80::/32 maxlen: 32 2a09:af81::/32 maxlen: 32 2a09:af82::/32 maxlen: 32 2a09:bc00::/29 maxlen: 29 2a09:c700::/29 maxlen: 29 2a09:cf00::/29 maxlen: 29 2a09:d700::/32 maxlen: 32 2a09:d701::/32 maxlen: 32 2a09:d702::/32 maxlen: 32 2a09:dd00::/32 maxlen: 32 2a09:dd01::/32 maxlen: 32 2a09:dd02::/32 maxlen: 32 2a09:e300::/32 maxlen: 32 2a09:e301::/32 maxlen: 32 2a09:e302::/32 maxlen: 32 2a09:e700::/29 maxlen: 29 2a09:ef00::/32 maxlen: 32 2a0a:b380::/32 maxlen: 32 2a0a:c0c0::/29 maxlen: 29 2a0b:9000::/29 maxlen: 29 2a0c:72c0::/29 maxlen: 29 2a0c:9480::/29 maxlen: 29 2a0d:3c40::/32 maxlen: 32 2a0d:3c41::/32 maxlen: 32 2a0d:95c0::/32 maxlen: 32 2a0d:95c1::/32 maxlen: 32 2a0d:afc1::/32 maxlen: 32 2a0d:afc2::/32 maxlen: 32 2a0d:c100::/32 maxlen: 32 2a0d:c101::/32 maxlen: 32 2a0d:cdc3::/32 maxlen: 32 2a0d:f840::/29 maxlen: 29 2a0d:fcc0::/32 maxlen: 32 2a0d:fcc1::/32 maxlen: 32 2a0d:fcc2::/32 maxlen: 32 2a0e:3f40::/29 maxlen: 29 2a0e:5880::/29 maxlen: 29 2a0e:7f00::/32 maxlen: 32 2a0e:7f01::/32 maxlen: 32 2a0e:7f02::/32 maxlen: 32 2a0e:b200::/29 maxlen: 29 2a0e:c4c0::/29 maxlen: 29 2a0e:eec0::/32 maxlen: 32 2a0e:eec1::/32 maxlen: 32 2a0e:eec2::/32 maxlen: 32 2a0f:1800::/29 maxlen: 29 2a0f:9d01::/32 maxlen: 32 2a0f:9d02::/32 maxlen: 32 2a0f:9d03::/32 maxlen: 32 2a11:3c40::/32 maxlen: 32 2a11:3c41::/32 maxlen: 32 2a11:3c42::/32 maxlen: 32 2a11:4040::/29 maxlen: 29 2a11:6540::/29 maxlen: 29 2a11:6580::/29 maxlen: 29 2a11:6bc0::/32 maxlen: 32 2a11:6bc1::/32 maxlen: 32 2a11:6bc3::/32 maxlen: 32 2a11:6d00::/29 maxlen: 29 2a11:84c0::/29 maxlen: 29 2a11:a180::/29 maxlen: 29 2a12:2fc0::/32 maxlen: 32 2a12:2fc1::/32 maxlen: 32 2a12:2fc2::/32 maxlen: 32 2a12:3040::/29 maxlen: 29 2a12:38c0::/29 maxlen: 29 2a12:39c0::/29 maxlen: 29 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/11/5e0ee1-c833-4241-960a-e5768d6b182c/1/uqDyWO70sr9LuqhDDB5YyowYjqc.crl rsync://rpki.ripe.net/repository/DEFAULT/11/5e0ee1-c833-4241-960a-e5768d6b182c/1/uqDyWO70sr9LuqhDDB5YyowYjqc.mft rsync://rpki.ripe.net/repository/DEFAULT/uqDyWO70sr9LuqhDDB5YyowYjqc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 13:01:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:77:c6:ae:ae:72:b6:14:36:de:2f:7a:99:29:d3:a0:0f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=baa0f258eef4b2bf4bbaa8430c1e58ca8c188ea7 Validity Not Before: Jan 1 04:17:48 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=4058154dafdded070c63cfb9fc8baa5e80fcb592 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:1a:7d:c7:c3:74:cb:51:0b:9d:1e:4c:4e:e5: 94:69:95:3c:b7:c9:11:f1:ae:41:ba:d4:85:70:9e: 5b:4c:9b:07:fb:7e:ec:9d:24:18:4a:56:be:2b:cf: 83:63:2d:0c:04:aa:ce:1c:68:a1:e5:9a:c5:07:a2: 3c:d4:b1:3f:cb:18:8b:02:c6:8a:bf:e4:ba:1f:b2: 1e:a7:e7:b3:5d:08:6a:dd:ee:a2:7a:6d:01:7a:99: 06:d7:c7:6d:42:09:0d:9e:17:30:61:f5:7b:86:08: 7f:b1:db:3c:c7:91:8d:a5:5e:ea:7d:11:4e:a1:22: d2:fb:dc:3d:8c:e7:69:70:be:ae:bb:33:ce:f1:2b: 14:2a:3a:7a:b3:45:b6:c8:8d:f4:d6:a7:d8:7a:50: 60:00:21:84:24:f2:bc:db:2f:c8:40:22:8a:a0:86: e9:ca:82:62:f4:71:e9:00:a1:78:a4:2b:a7:54:57: 79:e4:7c:32:75:7c:1e:22:14:42:8c:f4:45:b5:aa: b2:58:7c:55:15:44:00:80:37:36:8a:02:8c:c0:f1: 30:a5:a5:08:62:c5:bf:b7:91:ed:83:14:6c:2e:e3: 55:a9:2a:02:e6:86:6d:37:c1:d0:56:fe:fd:90:a7: 0b:4d:13:d2:97:a3:b2:7a:c9:82:69:d7:4e:38:ea: b6:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 40:58:15:4D:AF:DD:ED:07:0C:63:CF:B9:FC:8B:AA:5E:80:FC:B5:92 X509v3 Authority Key Identifier: keyid:BA:A0:F2:58:EE:F4:B2:BF:4B:BA:A8:43:0C:1E:58:CA:8C:18:8E:A7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uqDyWO70sr9LuqhDDB5YyowYjqc.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/11/5e0ee1-c833-4241-960a-e5768d6b182c/1/QFgVTa_d7QcMY8-5_IuqXoD8tZI.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/11/5e0ee1-c833-4241-960a-e5768d6b182c/1/uqDyWO70sr9LuqhDDB5YyowYjqc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:1e40::/29 2a06:4380::/29 2a09:2980::/32 2a09:2985::/32 2a09:9440::/32 2a09:a200::-2a09:a202:ffff:ffff:ffff:ffff:ffff:ffff 2a09:a500::/32 2a09:a502::/32 2a09:a504::/32 2a09:a800::/29 2a09:af80::-2a09:af82:ffff:ffff:ffff:ffff:ffff:ffff 2a09:bc00::/29 2a09:c700::/29 2a09:cf00::/29 2a09:d700::-2a09:d702:ffff:ffff:ffff:ffff:ffff:ffff 2a09:dd00::-2a09:dd02:ffff:ffff:ffff:ffff:ffff:ffff 2a09:e300::-2a09:e302:ffff:ffff:ffff:ffff:ffff:ffff 2a09:e700::/29 2a09:ef00::/32 2a0a:b380::/32 2a0a:c0c0::/29 2a0b:9000::/29 2a0c:72c0::/29 2a0c:9480::/29 2a0d:3c40::/31 2a0d:95c0::/31 2a0d:afc1::-2a0d:afc2:ffff:ffff:ffff:ffff:ffff:ffff 2a0d:c100::/31 2a0d:cdc3::/32 2a0d:f840::/29 2a0d:fcc0::-2a0d:fcc2:ffff:ffff:ffff:ffff:ffff:ffff 2a0e:3f40::/29 2a0e:5880::/29 2a0e:7f00::-2a0e:7f02:ffff:ffff:ffff:ffff:ffff:ffff 2a0e:b200::/29 2a0e:c4c0::/29 2a0e:eec0::-2a0e:eec2:ffff:ffff:ffff:ffff:ffff:ffff 2a0f:1800::/29 2a0f:9d01::-2a0f:9d03:ffff:ffff:ffff:ffff:ffff:ffff 2a11:3c40::-2a11:3c42:ffff:ffff:ffff:ffff:ffff:ffff 2a11:4040::/29 2a11:6540::/29 2a11:6580::/29 2a11:6bc0::/31 2a11:6bc3::/32 2a11:6d00::/29 2a11:84c0::/29 2a11:a180::/29 2a12:2fc0::-2a12:2fc2:ffff:ffff:ffff:ffff:ffff:ffff 2a12:3040::/29 2a12:38c0::/29 2a12:39c0::/29 Signature Algorithm: sha256WithRSAEncryption 35:d4:81:fc:fb:95:31:b6:7f:eb:78:de:b1:eb:4d:88:6a:8c: 60:ca:5f:71:a4:1a:94:bc:8e:c3:94:17:6d:82:64:ab:b9:f6: 5c:bb:43:b1:8f:02:36:02:a5:75:7f:3c:04:cd:a3:67:6d:44: 9c:ad:8c:d1:fb:f8:69:f3:7c:4b:d9:9d:f7:6c:7f:57:4a:cf: 5d:22:7c:ba:d4:86:d2:c6:78:83:c4:da:ea:28:b3:8d:7a:69: dd:5a:b6:39:10:29:08:2d:80:da:88:e2:19:47:33:97:b6:b9: 26:8d:90:2b:b8:0b:79:50:c4:4e:6e:82:26:b2:2d:2c:d7:e4: 54:8c:13:cc:bb:3f:bf:0c:0a:45:a0:7b:bf:94:7d:e1:74:27: 14:ee:f7:35:5d:de:32:0e:2d:a8:4c:af:66:33:1b:cf:29:8d: 86:f4:ac:04:9d:f2:7f:40:8a:fc:be:46:a0:58:0f:b8:d3:1b: 4e:d5:b9:ae:95:1b:c3:c0:41:86:6b:b3:a6:b7:08:1e:31:eb: 7a:57:9f:16:d9:cc:75:bf:78:9b:41:7f:96:6f:cd:9a:ca:d4: 57:83:71:48:3d:97:46:62:26:1a:bc:40:1a:05:81:50:65:e8: bf:b8:cd:23:e6:fd:b8:55:fb:c8:56:7e:65:0d:59:52:2e:42: a6:20:a6:7b -----BEGIN CERTIFICATE----- MIIG1DCCBbygAwIBAgISAZt3xq6ucrYUNt4vepkp06APMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGJhYTBmMjU4ZWVmNGIyYmY0YmJhYTg0MzBjMWU1OGNhOGMx ODhlYTcwHhcNMjYwMTAxMDQxNzQ4WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg0MDU4MTU0ZGFmZGRlZDA3MGM2M2NmYjlmYzhiYWE1ZTgwZmNiNTkyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyxp9x8N0y1ELnR5MTuWUaZU8t8kR 8a5ButSFcJ5bTJsH+37snSQYSla+K8+DYy0MBKrOHGih5ZrFB6I81LE/yxiLAsaK v+S6H7Iep+ezXQhq3e6iem0BepkG18dtQgkNnhcwYfV7hgh/sds8x5GNpV7qfRFO oSLS+9w9jOdpcL6uuzPO8SsUKjp6s0W2yI301qfYelBgACGEJPK82y/IQCKKoIbp yoJi9HHpAKF4pCunVFd55HwydXweIhRCjPRFtaqyWHxVFUQAgDc2igKMwPEwpaUI YsW/t5HtgxRsLuNVqSoC5oZtN8HQVv79kKcLTRPSl6OyesmCaddOOOq2LQIDAQAB o4ID4DCCA9wwHQYDVR0OBBYEFEBYFU2v3e0HDGPPufyLql6A/LWSMB8GA1UdIwQY MBaAFLqg8lju9LK/S7qoQwweWMqMGI6nMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvdXFEeVdPNzBzcjlMdXFoRERCNVl5b3dZanFjLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xMS81ZTBlZTEtYzgzMy00MjQxLTk2MGEt ZTU3NjhkNmIxODJjLzEvUUZnVlRhX2Q3UWNNWTgtNV9JdXFYb0Q4dFpJLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xMS81ZTBlZTEtYzgzMy00MjQxLTk2MGEtZTU3NjhkNmIxODJj LzEvdXFEeVdPNzBzcjlMdXFoRERCNVl5b3dZanFjLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMIIB9AYIKwYBBQUHAQcBAf8EggHjMIIB3zCCAdsEAgACMIIB 0wMFAyoFHkADBQMqBkOAAwUAKgkpgAMFACoJKYUDBQAqCZRAMA0DBAEqCaIDBQAq CaICAwUAKgmlAAMFACoJpQIDBQAqCaUEAwUDKgmoADAOAwUHKgmvgAMFACoJr4ID BQMqCbwAAwUDKgnHAAMFAyoJzwAwDQMEACoJ1wMFACoJ1wIwDQMEACoJ3QMFACoJ 3QIwDQMEACoJ4wMFACoJ4wIDBQMqCecAAwUAKgnvAAMFACoKs4ADBQMqCsDAAwUD KguQAAMFAyoMcsADBQMqDJSAAwUBKg08QAMFASoNlcAwDgMFACoNr8EDBQAqDa/C AwUBKg3BAAMFACoNzcMDBQMqDfhAMA4DBQYqDfzAAwUAKg38wgMFAyoOP0ADBQMq DliAMA0DBAAqDn8DBQAqDn8CAwUDKg6yAAMFAyoOxMAwDgMFBioO7sADBQAqDu7C AwUDKg8YADAOAwUAKg+dAQMFAioPnQAwDgMFBioRPEADBQAqETxCAwUDKhFAQAMF AyoRZUADBQMqEWWAAwUBKhFrwAMFACoRa8MDBQMqEW0AAwUDKhGEwAMFAyoRoYAw DgMFBioSL8ADBQAqEi/CAwUDKhIwQAMFAyoSOMADBQMqEjnAMA0GCSqGSIb3DQEB CwUAA4IBAQA11IH8+5Uxtn/reN6x602Iaoxgyl9xpBqUvI7DlBdtgmSrufZcu0Ox jwI2AqV1fzwEzaNnbUScrYzR+/hp83xL2Z33bH9XSs9dIny61IbSxniDxNrqKLON emndWrY5ECkILYDaiOIZRzOXtrkmjZAruAt5UMROboImsi0s1+RUjBPMuz+/DApF oHu/lH3hdCcU7vc1Xd4yDi2oTK9mMxvPKY2G9KwEnfJ/QIr8vkagWA+40xtO1bmu lRvDwEGGa7OmtwgeMet6V58W2cx1v3ibQX+Wb82aytRXg3FIPZdGYiYavEAaBYFQ Zei/uM0j5v24VfvIVn5lDVlSLkKmIKZ7 -----END CERTIFICATE-----Generated at Sun Jan 25 20:48:58 2026 by rpki-client