This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/27/cdecd2-38d6-40cf-ab02-dab9dc6dc4c9/1/QeR12R9Z_jTNrUpQr1ODF5IR7mc.roa File: QeR12R9Z_jTNrUpQr1ODF5IR7mc.roa (raw, json) Hash identifier: 8rRLxS0jjdwQyV6rT5Us1y0eR8TYGMlqxEVb79Eceds= Subject key identifier: 41:E4:75:D9:1F:59:FE:34:CD:AD:4A:50:AF:53:83:17:92:11:EE:67 Certificate issuer: /CN=81b65a230d6927dbac201097f949e2eaa2731220 Certificate serial: 019B7F1573D6CDA125BFE3C2F56537373549 Authority key identifier: 81:B6:5A:23:0D:69:27:DB:AC:20:10:97:F9:49:E2:EA:A2:73:12:20 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gbZaIw1pJ9usIBCX-Uni6qJzEiA.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/27/cdecd2-38d6-40cf-ab02-dab9dc6dc4c9/1/QeR12R9Z_jTNrUpQr1ODF5IR7mc.roa Signing time: Fri 02 Jan 2026 14:21:10 +0000 ROA not before: Fri 02 Jan 2026 14:21:10 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 203218 IP address blocks: 2001:67c:2d80::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/27/cdecd2-38d6-40cf-ab02-dab9dc6dc4c9/1/gbZaIw1pJ9usIBCX-Uni6qJzEiA.crl rsync://rpki.ripe.net/repository/DEFAULT/27/cdecd2-38d6-40cf-ab02-dab9dc6dc4c9/1/gbZaIw1pJ9usIBCX-Uni6qJzEiA.mft rsync://rpki.ripe.net/repository/DEFAULT/gbZaIw1pJ9usIBCX-Uni6qJzEiA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 11:01:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7f:15:73:d6:cd:a1:25:bf:e3:c2:f5:65:37:37:35:49 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=81b65a230d6927dbac201097f949e2eaa2731220 Validity Not Before: Jan 2 14:21:10 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=41e475d91f59fe34cdad4a50af5383179211ee67 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:d0:66:89:3a:8a:0f:9e:28:20:04:ad:23:bd: 2d:6c:c9:38:40:cc:21:6f:52:55:f8:49:aa:b9:86: a7:6b:10:af:b4:0e:20:16:a0:44:ea:82:fe:bf:e0: 57:1c:2e:7c:5f:ab:a4:c3:6b:ca:68:18:e6:bb:85: e6:85:dc:06:57:b9:7f:56:a2:0a:c7:82:5d:ef:90: 50:13:24:39:7f:63:c6:d1:b5:a5:dd:2d:d3:b5:8c: bd:a1:29:29:0d:c6:f8:16:7b:e4:4f:e2:f6:2f:41: 6f:42:c8:d2:83:1f:69:68:e1:9e:f5:a9:a5:07:0d: d7:32:1d:21:5b:ff:69:6b:ec:16:8c:f8:a4:5a:08: 64:28:37:c3:4d:a5:ec:60:db:80:3c:bd:1c:5f:b2: 3c:0a:fd:12:93:d3:16:4c:ab:d9:6e:90:9d:c4:30: 4a:f5:f8:31:64:d3:db:17:79:80:c0:d4:50:d9:40: dc:10:cb:f1:de:53:0c:2b:53:0e:b1:55:ef:51:3f: 6f:b9:a0:c4:ae:f5:a3:4e:be:94:6c:bc:29:07:ad: 4f:9e:ee:af:8f:3b:b0:36:5b:5f:42:12:f1:dd:b4: 54:4b:3b:2f:16:e7:a2:e2:b9:a1:9b:ad:1c:66:d7: 35:e5:ae:e7:bd:ea:65:02:d9:79:2a:64:21:c2:42: e7:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 41:E4:75:D9:1F:59:FE:34:CD:AD:4A:50:AF:53:83:17:92:11:EE:67 X509v3 Authority Key Identifier: keyid:81:B6:5A:23:0D:69:27:DB:AC:20:10:97:F9:49:E2:EA:A2:73:12:20 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gbZaIw1pJ9usIBCX-Uni6qJzEiA.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/27/cdecd2-38d6-40cf-ab02-dab9dc6dc4c9/1/QeR12R9Z_jTNrUpQr1ODF5IR7mc.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/27/cdecd2-38d6-40cf-ab02-dab9dc6dc4c9/1/gbZaIw1pJ9usIBCX-Uni6qJzEiA.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:67c:2d80::/48 Signature Algorithm: sha256WithRSAEncryption 4e:7a:99:c5:cc:75:b6:a6:a7:88:30:cd:a9:f6:99:43:ef:87: bf:27:40:05:83:3e:6a:29:7f:55:79:3d:ad:49:41:6b:d5:91: 38:01:9a:7f:14:b9:5d:ed:78:4a:6a:a5:80:e6:82:7c:13:82: 0c:d1:09:4f:2f:2a:09:3a:8a:26:90:1a:cc:04:92:ce:2a:4d: 67:02:df:0b:58:9e:0c:a9:89:d5:b9:82:98:c7:86:94:4d:a6: 17:a9:90:16:cd:10:1d:b2:d9:6d:e3:8d:48:59:9c:f9:2f:27: 8b:db:82:ae:5c:1f:52:30:23:03:89:10:43:01:50:e4:c7:e6: 64:6b:0c:40:c9:4a:4b:e8:ec:0c:c7:5c:11:b4:a5:66:5b:72: 15:3c:30:fe:8e:46:43:15:bb:e7:4a:57:24:6b:3a:4e:be:b1: 98:8b:96:d3:37:59:ea:76:d6:27:5c:bd:e6:de:2b:8a:c9:4e: 7b:08:02:2b:05:fc:dd:12:97:c3:1b:6d:d1:4a:1b:38:e1:43: 7f:af:cf:ac:ff:c8:c6:59:58:6a:04:a2:bf:31:05:99:96:6b: 0a:9d:47:3d:ca:e0:56:4d:6a:52:63:0e:28:78:c4:4e:47:e2: 10:75:17:6d:ba:d9:64:e2:a6:9f:3c:e6:27:21:5c:6e:c7:35: 00:59:51:10 -----BEGIN CERTIFICATE----- MIIFADCCA+igAwIBAgISAZt/FXPWzaElv+PC9WU3NzVJMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDgxYjY1YTIzMGQ2OTI3ZGJhYzIwMTA5N2Y5NDllMmVhYTI3 MzEyMjAwHhcNMjYwMTAyMTQyMTEwWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg0MWU0NzVkOTFmNTlmZTM0Y2RhZDRhNTBhZjUzODMxNzkyMTFlZTY3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvtBmiTqKD54oIAStI70tbMk4QMwh b1JV+EmquYanaxCvtA4gFqBE6oL+v+BXHC58X6ukw2vKaBjmu4XmhdwGV7l/VqIK x4Jd75BQEyQ5f2PG0bWl3S3TtYy9oSkpDcb4FnvkT+L2L0FvQsjSgx9paOGe9aml Bw3XMh0hW/9pa+wWjPikWghkKDfDTaXsYNuAPL0cX7I8Cv0Sk9MWTKvZbpCdxDBK 9fgxZNPbF3mAwNRQ2UDcEMvx3lMMK1MOsVXvUT9vuaDErvWjTr6UbLwpB61Pnu6v jzuwNltfQhLx3bRUSzsvFuei4rmhm60cZtc15a7nveplAtl5KmQhwkLnZQIDAQAB o4ICDDCCAggwHQYDVR0OBBYEFEHkddkfWf40za1KUK9TgxeSEe5nMB8GA1UdIwQY MBaAFIG2WiMNaSfbrCAQl/lJ4uqicxIgMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvZ2JaYUl3MXBKOXVzSUJDWC1Vbmk2cUp6RWlBLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yNy9jZGVjZDItMzhkNi00MGNmLWFiMDIt ZGFiOWRjNmRjNGM5LzEvUWVSMTJSOVpfalROclVwUXIxT0RGNUlSN21jLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yNy9jZGVjZDItMzhkNi00MGNmLWFiMDItZGFiOWRjNmRjNGM5 LzEvZ2JaYUl3MXBKOXVzSUJDWC1Vbmk2cUp6RWlBLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAIAEGfC2A MA0GCSqGSIb3DQEBCwUAA4IBAQBOepnFzHW2pqeIMM2p9plD74e/J0AFgz5qKX9V eT2tSUFr1ZE4AZp/FLld7XhKaqWA5oJ8E4IM0QlPLyoJOoomkBrMBJLOKk1nAt8L WJ4MqYnVuYKYx4aUTaYXqZAWzRAdstlt441IWZz5LyeL24KuXB9SMCMDiRBDAVDk x+ZkawxAyUpL6OwMx1wRtKVmW3IVPDD+jkZDFbvnSlckazpOvrGYi5bTN1nqdtYn XL3m3iuKyU57CAIrBfzdEpfDG23RShs44UN/r8+s/8jGWVhqBKK/MQWZlmsKnUc9 yuBWTWpSYw4oeMROR+IQdRdtutlk4qafPOYnIVxuxzUAWVEQ -----END CERTIFICATE-----Generated at Sun Jan 25 19:18:20 2026 by rpki-client