This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2a/8366ae-575d-4fde-8e92-0089944980ca/1/qjNimTETtLh1inCnrKPLmHgkunQ.roa File: qjNimTETtLh1inCnrKPLmHgkunQ.roa (raw, json) Hash identifier: kUIDVTcUU2FFx3V4rmksKlF4Rs1SMVdSsMNg5i2JJXw= Subject key identifier: AA:33:62:99:31:13:B4:B8:75:8A:70:A7:AC:A3:CB:98:78:24:BA:74 Certificate issuer: /CN=d515f2e9149ce1b428c8f1edfc009215e2847f55 Certificate serial: 019B7BA39234D04A1EEF823172215D40DD13 Authority key identifier: D5:15:F2:E9:14:9C:E1:B4:28:C8:F1:ED:FC:00:92:15:E2:84:7F:55 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1RXy6RSc4bQoyPHt_ACSFeKEf1U.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2a/8366ae-575d-4fde-8e92-0089944980ca/1/qjNimTETtLh1inCnrKPLmHgkunQ.roa Signing time: Thu 01 Jan 2026 22:17:55 +0000 ROA not before: Thu 01 Jan 2026 22:17:55 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 214368 IP address blocks: 2a01:ea05::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2a/8366ae-575d-4fde-8e92-0089944980ca/1/1RXy6RSc4bQoyPHt_ACSFeKEf1U.crl rsync://rpki.ripe.net/repository/DEFAULT/2a/8366ae-575d-4fde-8e92-0089944980ca/1/1RXy6RSc4bQoyPHt_ACSFeKEf1U.mft rsync://rpki.ripe.net/repository/DEFAULT/1RXy6RSc4bQoyPHt_ACSFeKEf1U.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 04:00:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7b:a3:92:34:d0:4a:1e:ef:82:31:72:21:5d:40:dd:13 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d515f2e9149ce1b428c8f1edfc009215e2847f55 Validity Not Before: Jan 1 22:17:55 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=aa3362993113b4b8758a70a7aca3cb987824ba74 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:54:4b:ed:4b:cf:64:3e:cc:32:89:8e:63:88: 8e:b8:90:6f:1c:42:e4:ce:a8:42:bd:e9:13:b5:27: fe:81:b2:c4:fe:ab:d8:37:64:fa:2f:78:d5:d4:09: 25:51:22:ce:e9:a8:a7:ce:8f:2f:53:2f:fa:83:55: 6d:d4:da:95:66:d1:79:4a:5a:59:ac:49:3b:94:70: e6:70:16:7e:f7:79:f5:01:7b:9e:74:72:75:a4:53: 0a:7c:a8:83:0b:2f:c9:b5:1b:39:d9:a3:51:1e:c4: b0:40:b0:80:b1:98:11:e7:1b:1a:2d:37:4c:98:84: d8:08:3e:23:e1:4c:22:96:03:1b:a1:d9:92:1b:ad: 40:8e:1b:8b:fc:23:d2:51:99:c6:08:40:e0:85:a1: 54:65:e6:28:d2:0d:9b:85:00:59:a1:56:4a:f5:7b: 0a:bc:40:72:12:c2:e6:c3:b7:68:b7:45:fb:aa:2b: c2:cb:e1:1f:56:e0:1b:77:67:ca:7c:d3:71:2a:a7: 97:bc:ce:46:18:f6:19:21:83:e0:e5:b6:44:85:a6: 5a:5f:96:75:8c:d0:e8:04:9f:9a:97:be:85:40:75: 37:18:d6:c4:b5:14:c7:bd:cc:4c:32:6c:ff:1c:6b: 62:04:61:71:0c:5b:1e:5d:12:b5:dc:37:ad:e5:82: 08:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AA:33:62:99:31:13:B4:B8:75:8A:70:A7:AC:A3:CB:98:78:24:BA:74 X509v3 Authority Key Identifier: keyid:D5:15:F2:E9:14:9C:E1:B4:28:C8:F1:ED:FC:00:92:15:E2:84:7F:55 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1RXy6RSc4bQoyPHt_ACSFeKEf1U.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/8366ae-575d-4fde-8e92-0089944980ca/1/qjNimTETtLh1inCnrKPLmHgkunQ.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/8366ae-575d-4fde-8e92-0089944980ca/1/1RXy6RSc4bQoyPHt_ACSFeKEf1U.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a01:ea05::/32 Signature Algorithm: sha256WithRSAEncryption 55:89:c6:1f:a6:49:e4:d3:f3:40:b9:22:a3:df:b8:18:b8:61: b7:f1:02:b0:ea:d3:d6:b3:3b:36:8b:35:c1:12:dc:03:8d:a0: 3e:99:62:1c:0d:a6:9e:c8:c6:c8:2d:e2:97:93:69:18:9f:a4: 5b:2d:e0:11:04:21:b5:24:4e:7a:76:4d:b3:61:b8:cd:6b:00: 92:ff:7f:60:1c:da:e7:eb:3c:82:0f:9b:c5:19:06:01:9f:21: bf:c2:7d:a2:8b:22:ec:44:95:b1:d5:af:85:87:2b:30:02:ab: 1b:49:1e:f2:65:bb:a6:2d:29:c3:eb:fa:99:18:65:2b:9c:e5: 9f:8f:1e:89:a6:a1:ad:94:8e:bf:bc:7e:f3:c3:ed:d7:fe:53: f0:6c:f2:3b:5f:17:fc:65:9a:16:c6:bd:95:c8:a3:29:ec:d9: 4e:96:77:30:bc:38:1a:a8:ce:00:b6:63:cb:d9:70:92:ac:db: 92:33:05:ac:a5:0c:f2:30:cb:a1:36:84:41:08:aa:52:5a:1f: 09:41:e0:9f:6e:f9:8b:18:85:a6:52:96:19:61:a2:7a:4b:43: 14:c9:31:38:d9:90:80:ae:34:95:cb:8b:9a:3d:14:1c:df:0d: aa:68:c8:dc:59:db:d0:d3:c6:bd:4a:13:fc:d4:d2:b1:bb:42: e6:c3:84:9b -----BEGIN CERTIFICATE----- MIIE/jCCA+agAwIBAgISAZt7o5I00Eoe74IxciFdQN0TMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGQ1MTVmMmU5MTQ5Y2UxYjQyOGM4ZjFlZGZjMDA5MjE1ZTI4 NDdmNTUwHhcNMjYwMTAxMjIxNzU1WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhhYTMzNjI5OTMxMTNiNGI4NzU4YTcwYTdhY2EzY2I5ODc4MjRiYTc0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuVRL7UvPZD7MMomOY4iOuJBvHELk zqhCvekTtSf+gbLE/qvYN2T6L3jV1AklUSLO6ainzo8vUy/6g1Vt1NqVZtF5SlpZ rEk7lHDmcBZ+93n1AXuedHJ1pFMKfKiDCy/JtRs52aNRHsSwQLCAsZgR5xsaLTdM mITYCD4j4UwilgMbodmSG61AjhuL/CPSUZnGCEDghaFUZeYo0g2bhQBZoVZK9XsK vEByEsLmw7dot0X7qivCy+EfVuAbd2fKfNNxKqeXvM5GGPYZIYPg5bZEhaZaX5Z1 jNDoBJ+al76FQHU3GNbEtRTHvcxMMmz/HGtiBGFxDFseXRK13Det5YII7wIDAQAB o4ICCjCCAgYwHQYDVR0OBBYEFKozYpkxE7S4dYpwp6yjy5h4JLp0MB8GA1UdIwQY MBaAFNUV8ukUnOG0KMjx7fwAkhXihH9VMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvMVJYeTZSU2M0YlFveVBIdF9BQ1NGZUtFZjFVLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yYS84MzY2YWUtNTc1ZC00ZmRlLThlOTIt MDA4OTk0NDk4MGNhLzEvcWpOaW1URVR0TGgxaW5DbnJLUExtSGdrdW5RLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yYS84MzY2YWUtNTc1ZC00ZmRlLThlOTItMDA4OTk0NDk4MGNh LzEvMVJYeTZSU2M0YlFveVBIdF9BQ1NGZUtFZjFVLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCAGCCsGAQUFBwEHAQH/BBEwDzANBAIAAjAHAwUAKgHqBTAN BgkqhkiG9w0BAQsFAAOCAQEAVYnGH6ZJ5NPzQLkio9+4GLhht/ECsOrT1rM7Nos1 wRLcA42gPpliHA2mnsjGyC3il5NpGJ+kWy3gEQQhtSROenZNs2G4zWsAkv9/YBza 5+s8gg+bxRkGAZ8hv8J9oosi7ESVsdWvhYcrMAKrG0ke8mW7pi0pw+v6mRhlK5zl n48eiaahrZSOv7x+88Pt1/5T8GzyO18X/GWaFsa9lcijKezZTpZ3MLw4GqjOALZj y9lwkqzbkjMFrKUM8jDLoTaEQQiqUlofCUHgn275ixiFplKWGWGiektDFMkxONmQ gK40lcuLmj0UHN8NqmjI3Fnb0NPGvUoT/NTSsbtC5sOEmw== -----END CERTIFICATE-----Generated at Sun Jan 25 13:01:28 2026 by rpki-client