This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/55/1d5135-b712-431a-a28b-b57f50f00804/1/FQxNg7AnkMBIxSPt-ywRlwPzZU0.roa File: FQxNg7AnkMBIxSPt-ywRlwPzZU0.roa (raw, json) Hash identifier: mDMc0kRW89SXaN2WszngnBY0Vg6QXvcafmxW2mS8Fw8= Subject key identifier: 15:0C:4D:83:B0:27:90:C0:48:C5:23:ED:FB:2C:11:97:03:F3:65:4D Certificate issuer: /CN=f0594e7a31db7937fab52fcc389059d3451f2366 Certificate serial: 019B7758B42247B4CCF68F76B701D2062C3F Authority key identifier: F0:59:4E:7A:31:DB:79:37:FA:B5:2F:CC:38:90:59:D3:45:1F:23:66 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8FlOejHbeTf6tS_MOJBZ00UfI2Y.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/55/1d5135-b712-431a-a28b-b57f50f00804/1/FQxNg7AnkMBIxSPt-ywRlwPzZU0.roa Signing time: Thu 01 Jan 2026 02:17:40 +0000 ROA not before: Thu 01 Jan 2026 02:17:40 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 212043 IP address blocks: 2001:678:a6c::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/55/1d5135-b712-431a-a28b-b57f50f00804/1/8FlOejHbeTf6tS_MOJBZ00UfI2Y.crl rsync://rpki.ripe.net/repository/DEFAULT/55/1d5135-b712-431a-a28b-b57f50f00804/1/8FlOejHbeTf6tS_MOJBZ00UfI2Y.mft rsync://rpki.ripe.net/repository/DEFAULT/8FlOejHbeTf6tS_MOJBZ00UfI2Y.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 16:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:77:58:b4:22:47:b4:cc:f6:8f:76:b7:01:d2:06:2c:3f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=f0594e7a31db7937fab52fcc389059d3451f2366 Validity Not Before: Jan 1 02:17:40 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=150c4d83b02790c048c523edfb2c119703f3654d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:da:7d:3a:c9:21:20:7a:af:73:1c:69:8b:8f: 69:63:d6:ab:3c:91:3b:32:34:40:69:87:b3:21:70: d4:30:b9:53:ec:14:f7:ef:80:3f:67:46:0f:66:51: 97:73:38:56:38:de:1d:bc:94:7b:ee:67:a7:cf:54: c5:ba:2d:54:57:da:79:f7:3c:7e:ca:7f:9f:86:04: 8a:4f:bf:43:94:20:5e:ca:12:5f:fb:8c:c4:a3:4f: a4:89:d4:2d:76:d6:01:e2:ba:e2:36:26:fe:a6:be: ec:1d:c5:e7:5b:2d:81:fb:7a:86:0a:a3:76:d9:e3: b2:3c:e5:a7:81:3f:29:30:4e:1c:5c:c1:69:d1:5d: fd:b0:c0:b6:2f:a9:11:d7:8e:a2:66:66:91:40:96: d2:2b:99:45:6d:d5:55:38:9a:8a:1f:f1:1e:e0:3b: 79:3e:fa:85:7e:32:69:bd:44:9e:94:11:72:a9:2c: ba:23:10:92:91:1a:e3:3d:5d:97:9f:c0:de:a7:3e: 3b:82:8d:0c:df:ef:30:e3:de:d5:29:58:c4:cf:d0: a6:47:60:c7:65:d5:1f:17:54:a1:26:e9:da:2c:01: b2:df:f1:a8:c1:a3:c7:85:56:61:90:05:e5:2d:6f: 84:84:de:f5:8d:54:e2:86:f9:fe:4e:e7:7c:c7:da: d9:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 15:0C:4D:83:B0:27:90:C0:48:C5:23:ED:FB:2C:11:97:03:F3:65:4D X509v3 Authority Key Identifier: keyid:F0:59:4E:7A:31:DB:79:37:FA:B5:2F:CC:38:90:59:D3:45:1F:23:66 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8FlOejHbeTf6tS_MOJBZ00UfI2Y.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/55/1d5135-b712-431a-a28b-b57f50f00804/1/FQxNg7AnkMBIxSPt-ywRlwPzZU0.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/55/1d5135-b712-431a-a28b-b57f50f00804/1/8FlOejHbeTf6tS_MOJBZ00UfI2Y.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:678:a6c::/48 Signature Algorithm: sha256WithRSAEncryption 5a:fd:87:dc:dd:ad:05:7b:32:1e:82:64:84:a1:35:0e:c1:fe: 42:1a:3c:99:e0:4c:a4:7f:e4:8f:0f:4e:6d:80:86:d3:27:46: b8:87:32:0d:87:f1:59:cf:80:2d:6f:4f:34:a9:ac:45:f2:99: 79:d4:41:0a:1a:bb:3d:b7:1e:c8:4d:0f:d4:53:0c:b3:c2:9f: 43:8e:c5:3e:86:81:e4:fe:07:6f:11:9a:ec:0f:5e:1c:c5:93: e6:b6:c4:a2:9c:3f:6b:ad:d0:57:d2:83:a7:27:f4:54:b4:b6: 70:b0:f4:56:76:c8:a0:cd:88:90:9f:bc:b7:7e:8a:eb:87:0c: 63:c6:45:49:94:7e:4b:65:d9:fb:b1:27:79:e1:57:87:59:09: f7:2b:43:a8:50:41:70:e1:d5:f0:c9:96:67:f7:6c:82:0a:e8: fb:08:63:c2:a7:09:1e:c4:3c:3d:d0:71:f1:e6:47:53:c7:50: 51:34:ff:a5:bd:16:af:d5:dd:3b:a9:1f:df:a1:78:50:a7:28: 5d:fe:6d:36:9b:24:5a:21:c3:d4:58:38:a5:ab:4c:27:eb:93: 57:08:ff:eb:55:75:aa:71:93:28:64:1f:44:f5:d7:e3:d7:d0: 17:5e:20:47:f1:b8:b3:c1:f7:82:bd:de:f3:13:91:1c:bc:87: 98:a8:25:53 -----BEGIN CERTIFICATE----- MIIFADCCA+igAwIBAgISAZt3WLQiR7TM9o92twHSBiw/MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGYwNTk0ZTdhMzFkYjc5MzdmYWI1MmZjYzM4OTA1OWQzNDUx ZjIzNjYwHhcNMjYwMTAxMDIxNzQwWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygxNTBjNGQ4M2IwMjc5MGMwNDhjNTIzZWRmYjJjMTE5NzAzZjM2NTRkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAoNp9OskhIHqvcxxpi49pY9arPJE7 MjRAaYezIXDUMLlT7BT374A/Z0YPZlGXczhWON4dvJR77menz1TFui1UV9p59zx+ yn+fhgSKT79DlCBeyhJf+4zEo0+kidQtdtYB4rriNib+pr7sHcXnWy2B+3qGCqN2 2eOyPOWngT8pME4cXMFp0V39sMC2L6kR146iZmaRQJbSK5lFbdVVOJqKH/Ee4Dt5 PvqFfjJpvUSelBFyqSy6IxCSkRrjPV2Xn8Depz47go0M3+8w497VKVjEz9CmR2DH ZdUfF1ShJunaLAGy3/GowaPHhVZhkAXlLW+EhN71jVTihvn+Tud8x9rZgQIDAQAB o4ICDDCCAggwHQYDVR0OBBYEFBUMTYOwJ5DASMUj7fssEZcD82VNMB8GA1UdIwQY MBaAFPBZTnox23k3+rUvzDiQWdNFHyNmMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvOEZsT2VqSGJlVGY2dFNfTU9KQlowMFVmSTJZLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81NS8xZDUxMzUtYjcxMi00MzFhLWEyOGIt YjU3ZjUwZjAwODA0LzEvRlF4Tmc3QW5rTUJJeFNQdC15d1Jsd1B6WlUwLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81NS8xZDUxMzUtYjcxMi00MzFhLWEyOGItYjU3ZjUwZjAwODA0 LzEvOEZsT2VqSGJlVGY2dFNfTU9KQlowMFVmSTJZLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAIAEGeAps MA0GCSqGSIb3DQEBCwUAA4IBAQBa/Yfc3a0FezIegmSEoTUOwf5CGjyZ4Eykf+SP D05tgIbTJ0a4hzINh/FZz4Atb080qaxF8pl51EEKGrs9tx7ITQ/UUwyzwp9DjsU+ hoHk/gdvEZrsD14cxZPmtsSinD9rrdBX0oOnJ/RUtLZwsPRWdsigzYiQn7y3forr hwxjxkVJlH5LZdn7sSd54VeHWQn3K0OoUEFw4dXwyZZn92yCCuj7CGPCpwkexDw9 0HHx5kdTx1BRNP+lvRav1d07qR/foXhQpyhd/m02myRaIcPUWDilq0wn65NXCP/r VXWqcZMoZB9E9dfj19AXXiBH8bizwfeCvd7zE5EcvIeYqCVT -----END CERTIFICATE-----Generated at Mon Jan 26 02:32:12 2026 by rpki-client