This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/28/dd062a-1319-4019-a551-876c7fca4b34/1/cNqycsZxVsHcATCP8JWqqaoM9SI.roa File: cNqycsZxVsHcATCP8JWqqaoM9SI.roa (raw, json) Hash identifier: CX+xOUuMFEXPOxevDnRNct6cRUm/jc1q9b58M6PTWZo= Subject key identifier: 70:DA:B2:72:C6:71:56:C1:DC:01:30:8F:F0:95:AA:A9:AA:0C:F5:22 Certificate issuer: /CN=255876412d20fbb6cab823481782ac47703b4404 Certificate serial: 019B7B36C7EF0C9C67FCB3A62AF9ABB13699 Authority key identifier: 25:58:76:41:2D:20:FB:B6:CA:B8:23:48:17:82:AC:47:70:3B:44:04 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/JVh2QS0g-7bKuCNIF4KsR3A7RAQ.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/28/dd062a-1319-4019-a551-876c7fca4b34/1/cNqycsZxVsHcATCP8JWqqaoM9SI.roa Signing time: Thu 01 Jan 2026 20:19:06 +0000 ROA not before: Thu 01 Jan 2026 20:19:06 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 152911 IP address blocks: 2a01:ffc7:100::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/28/dd062a-1319-4019-a551-876c7fca4b34/1/JVh2QS0g-7bKuCNIF4KsR3A7RAQ.crl rsync://rpki.ripe.net/repository/DEFAULT/28/dd062a-1319-4019-a551-876c7fca4b34/1/JVh2QS0g-7bKuCNIF4KsR3A7RAQ.mft rsync://rpki.ripe.net/repository/DEFAULT/JVh2QS0g-7bKuCNIF4KsR3A7RAQ.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 11:01:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7b:36:c7:ef:0c:9c:67:fc:b3:a6:2a:f9:ab:b1:36:99 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=255876412d20fbb6cab823481782ac47703b4404 Validity Not Before: Jan 1 20:19:06 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=70dab272c67156c1dc01308ff095aaa9aa0cf522 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:86:1f:7c:6b:e2:2e:5f:53:4d:28:87:b2:20: bd:8e:c3:7d:79:22:ae:f6:b3:cd:4e:cb:3f:36:fc: ba:73:6a:5e:42:3c:c2:35:ac:40:62:27:24:55:c6: 6c:3e:3a:ab:1b:79:90:3d:b0:2c:7d:15:04:2b:ba: 9f:a0:51:f1:9a:a4:1d:73:04:c0:f6:45:83:e2:72: 29:c1:01:5d:d1:57:1f:75:2d:60:3d:bf:57:90:c8: 41:18:4a:29:9a:4f:ff:4a:26:bd:d3:aa:8a:c4:38: 93:39:29:53:9c:52:7a:29:6e:b9:5d:27:32:ba:20: 95:47:13:b3:34:de:3f:cb:d6:c0:54:91:bd:4f:46: a5:cd:79:c9:02:1c:08:37:6c:ed:e1:57:6b:a9:81: 1a:87:9c:93:59:04:fc:c7:4e:74:e1:89:5a:fd:a3: 89:f5:7d:22:3a:c9:83:33:a0:ce:8a:44:8c:ae:b1: bc:7e:55:9b:1a:44:35:85:fe:ab:31:e9:fd:a9:13: 0e:c9:85:29:f9:c0:9c:90:28:46:fc:49:6f:dd:d8: be:c4:c6:11:ae:73:f3:8b:87:58:82:98:c2:e9:2b: 66:3c:de:6a:b5:4b:15:19:13:78:1d:f3:4c:b6:a6: 6b:9e:96:eb:cd:48:0e:ef:f5:1f:5d:04:02:25:67: 42:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 70:DA:B2:72:C6:71:56:C1:DC:01:30:8F:F0:95:AA:A9:AA:0C:F5:22 X509v3 Authority Key Identifier: keyid:25:58:76:41:2D:20:FB:B6:CA:B8:23:48:17:82:AC:47:70:3B:44:04 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JVh2QS0g-7bKuCNIF4KsR3A7RAQ.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/28/dd062a-1319-4019-a551-876c7fca4b34/1/cNqycsZxVsHcATCP8JWqqaoM9SI.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/28/dd062a-1319-4019-a551-876c7fca4b34/1/JVh2QS0g-7bKuCNIF4KsR3A7RAQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a01:ffc7:100::/40 Signature Algorithm: sha256WithRSAEncryption 00:58:0e:17:d9:c6:91:56:60:41:4f:e5:bf:aa:e8:23:85:15: 73:1b:9d:50:96:9b:4e:e8:65:a1:8f:f1:8e:6f:ff:47:34:4a: 27:f4:26:d8:f9:df:2e:0e:b2:c4:92:9d:b8:08:5b:6b:ea:48: 01:e5:82:08:1c:a7:bb:fd:40:80:cc:e2:d3:e4:69:95:4b:63: cd:ce:95:99:fd:62:02:b6:5d:f2:28:de:27:70:97:cb:c5:a8: 7c:1d:b5:7c:d4:f8:7d:af:de:db:3c:10:68:88:0a:8e:e1:8e: f3:88:0b:c0:4a:57:98:8b:11:ec:e5:84:b8:98:b9:c4:6c:c1: 3b:1d:14:59:be:51:44:79:7a:bb:ee:ec:7a:10:9e:6a:12:83: af:a8:c7:73:6e:1f:d1:87:16:e1:e7:52:51:42:29:89:15:51: d4:80:13:0f:2b:f4:82:60:e3:19:81:6f:7b:80:2e:0e:7f:ae: 4f:2e:ea:5f:ad:bf:86:63:d5:c4:84:bb:02:f3:74:a3:37:ac: 48:bf:2d:a9:00:61:1e:bc:06:dc:1c:fb:1b:29:38:ba:0c:f4: 06:2a:eb:8d:bc:42:69:2c:63:ca:d1:50:50:91:47:1f:32:09: 60:f3:56:e7:ba:03:c3:a1:0f:dd:5b:36:73:2c:1c:a7:8e:9d: d7:d3:c5:16 -----BEGIN CERTIFICATE----- MIIE/zCCA+egAwIBAgISAZt7NsfvDJxn/LOmKvmrsTaZMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDI1NTg3NjQxMmQyMGZiYjZjYWI4MjM0ODE3ODJhYzQ3NzAz YjQ0MDQwHhcNMjYwMTAxMjAxOTA2WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg3MGRhYjI3MmM2NzE1NmMxZGMwMTMwOGZmMDk1YWFhOWFhMGNmNTIyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqIYffGviLl9TTSiHsiC9jsN9eSKu 9rPNTss/Nvy6c2peQjzCNaxAYickVcZsPjqrG3mQPbAsfRUEK7qfoFHxmqQdcwTA 9kWD4nIpwQFd0VcfdS1gPb9XkMhBGEopmk//Sia906qKxDiTOSlTnFJ6KW65XScy uiCVRxOzNN4/y9bAVJG9T0alzXnJAhwIN2zt4VdrqYEah5yTWQT8x0504Yla/aOJ 9X0iOsmDM6DOikSMrrG8flWbGkQ1hf6rMen9qRMOyYUp+cCckChG/Elv3di+xMYR rnPzi4dYgpjC6StmPN5qtUsVGRN4HfNMtqZrnpbrzUgO7/UfXQQCJWdC7wIDAQAB o4ICCzCCAgcwHQYDVR0OBBYEFHDasnLGcVbB3AEwj/CVqqmqDPUiMB8GA1UdIwQY MBaAFCVYdkEtIPu2yrgjSBeCrEdwO0QEMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSlZoMlFTMGctN2JLdUNOSUY0S3NSM0E3UkFRLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yOC9kZDA2MmEtMTMxOS00MDE5LWE1NTEt ODc2YzdmY2E0YjM0LzEvY05xeWNzWnhWc0hjQVRDUDhKV3FxYW9NOVNJLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yOC9kZDA2MmEtMTMxOS00MDE5LWE1NTEtODc2YzdmY2E0YjM0 LzEvSlZoMlFTMGctN2JLdUNOSUY0S3NSM0E3UkFRLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAOBAIAAjAIAwYAKgH/xwEw DQYJKoZIhvcNAQELBQADggEBAABYDhfZxpFWYEFP5b+q6COFFXMbnVCWm07oZaGP 8Y5v/0c0Sif0Jtj53y4OssSSnbgIW2vqSAHlgggcp7v9QIDM4tPkaZVLY83OlZn9 YgK2XfIo3idwl8vFqHwdtXzU+H2v3ts8EGiICo7hjvOIC8BKV5iLEezlhLiYucRs wTsdFFm+UUR5ervu7HoQnmoSg6+ox3NuH9GHFuHnUlFCKYkVUdSAEw8r9IJg4xmB b3uALg5/rk8u6l+tv4Zj1cSEuwLzdKM3rEi/LakAYR68Btwc+xspOLoM9AYq6428 QmksY8rRUFCRRx8yCWDzVue6A8OhD91bNnMsHKeOndfTxRY= -----END CERTIFICATE-----Generated at Sun Jan 25 20:00:40 2026 by rpki-client