This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/56/efb8ee-c5c4-4467-a0cc-88a3c41faee2/1/qaltJRhtOumKjVHwnWVUetcuLl8.roa File: qaltJRhtOumKjVHwnWVUetcuLl8.roa (raw, json) Hash identifier: BGZRfPeZLiJVX41F+zt+HW9khnF21BsLuwIzvIKpNck= Subject key identifier: A9:A9:6D:25:18:6D:3A:E9:8A:8D:51:F0:9D:65:54:7A:D7:2E:2E:5F Certificate issuer: /CN=ab8c6c58b607ff23ae7175a61682c75480f1e214 Certificate serial: 019B7C805FC31CB93D5089836C6FE327E1E8 Authority key identifier: AB:8C:6C:58:B6:07:FF:23:AE:71:75:A6:16:82:C7:54:80:F1:E2:14 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/q4xsWLYH_yOucXWmFoLHVIDx4hQ.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/56/efb8ee-c5c4-4467-a0cc-88a3c41faee2/1/qaltJRhtOumKjVHwnWVUetcuLl8.roa Signing time: Fri 02 Jan 2026 02:19:06 +0000 ROA not before: Fri 02 Jan 2026 02:19:06 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 50819 IP address blocks: 2a00:1480:3::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/56/efb8ee-c5c4-4467-a0cc-88a3c41faee2/1/q4xsWLYH_yOucXWmFoLHVIDx4hQ.crl rsync://rpki.ripe.net/repository/DEFAULT/56/efb8ee-c5c4-4467-a0cc-88a3c41faee2/1/q4xsWLYH_yOucXWmFoLHVIDx4hQ.mft rsync://rpki.ripe.net/repository/DEFAULT/q4xsWLYH_yOucXWmFoLHVIDx4hQ.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 11:01:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7c:80:5f:c3:1c:b9:3d:50:89:83:6c:6f:e3:27:e1:e8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ab8c6c58b607ff23ae7175a61682c75480f1e214 Validity Not Before: Jan 2 02:19:06 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=a9a96d25186d3ae98a8d51f09d65547ad72e2e5f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:2d:ee:19:26:4f:07:62:93:fd:55:c4:4a:b4: c9:71:3e:d9:18:e6:3e:4c:0c:55:38:e3:9d:c9:5e: 57:b6:04:1b:33:f4:63:79:77:28:5a:a8:4b:35:40: ef:87:4e:bf:f1:42:dc:06:df:07:b3:e8:28:2b:23: 0d:fa:ac:97:6f:96:6a:bd:80:04:45:6c:41:de:b4: 39:46:69:92:1d:75:c2:3f:79:8f:e4:b6:46:93:f8: 26:e6:d4:5d:55:f4:0a:77:fd:25:e1:40:c8:c4:cc: 6a:7d:5d:58:9c:96:4e:23:58:5d:e5:23:74:25:10: 69:05:16:21:b1:13:29:f6:18:88:59:f3:51:63:4d: a3:65:cc:ee:3e:63:16:8c:bd:cc:f7:e8:5d:51:ed: f2:4f:c8:39:9a:8b:e0:93:9b:58:7a:fc:8c:18:bb: 22:fa:0d:24:9f:79:a5:22:9c:5b:c7:42:18:a6:39: 97:d2:c2:b3:5b:ba:9c:c8:fc:5e:25:12:5a:24:8b: 2a:02:66:62:8b:c7:6c:4d:ef:03:a2:11:cb:57:d7: 89:cf:26:a7:f2:95:5b:ea:c7:1f:5d:28:52:03:c2: 72:0c:bf:4e:23:7f:91:ef:0b:3a:e3:27:71:eb:12: 75:37:cc:6f:da:54:e1:ef:15:69:e1:74:51:0b:5f: ca:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A9:A9:6D:25:18:6D:3A:E9:8A:8D:51:F0:9D:65:54:7A:D7:2E:2E:5F X509v3 Authority Key Identifier: keyid:AB:8C:6C:58:B6:07:FF:23:AE:71:75:A6:16:82:C7:54:80:F1:E2:14 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/q4xsWLYH_yOucXWmFoLHVIDx4hQ.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/56/efb8ee-c5c4-4467-a0cc-88a3c41faee2/1/qaltJRhtOumKjVHwnWVUetcuLl8.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/56/efb8ee-c5c4-4467-a0cc-88a3c41faee2/1/q4xsWLYH_yOucXWmFoLHVIDx4hQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a00:1480:3::/48 Signature Algorithm: sha256WithRSAEncryption 68:42:9b:27:2f:a3:13:f7:13:ad:19:d0:c6:b5:f2:4c:ac:b1: 7e:d4:a3:78:47:84:4f:0e:2f:e7:d8:e5:ac:c3:bf:7e:ae:c8: 94:a7:0b:90:79:e1:65:a5:7a:ff:6a:a6:c2:c2:bb:82:f3:0e: 8f:c0:59:df:f5:98:78:e1:15:10:4f:93:7c:e8:20:fa:9b:82: 88:ad:ab:04:57:85:08:60:2b:19:88:95:e9:68:1d:1d:b3:ab: 79:a3:f3:4f:a0:ba:93:99:bf:b1:58:6c:27:98:39:88:40:c6: b7:99:f8:82:23:02:65:ef:87:8c:69:32:a4:dd:ac:a2:3d:1a: 6c:1e:79:3c:60:90:26:48:f8:2d:73:1c:c1:af:f3:2d:45:52: b6:62:79:0f:6a:8a:80:5a:54:fb:19:02:9f:88:5c:99:fd:e7: 70:21:2d:89:83:ee:6c:93:36:65:27:af:68:ef:4c:0a:ed:ae: 36:b3:f4:4d:82:47:41:94:b0:65:a6:38:51:5d:00:fe:ae:34: bf:c4:23:dd:13:a8:f5:7f:d8:13:41:72:35:04:a3:d4:dd:cc: 4f:3c:9c:14:e7:fe:a5:3b:30:98:9a:2d:d2:fc:9c:d0:46:68: 38:de:ed:f9:90:df:b0:a9:ac:e9:17:3d:1e:4d:82:e6:c7:d4: ec:3d:ad:75 -----BEGIN CERTIFICATE----- MIIFADCCA+igAwIBAgISAZt8gF/DHLk9UImDbG/jJ+HoMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGFiOGM2YzU4YjYwN2ZmMjNhZTcxNzVhNjE2ODJjNzU0ODBm MWUyMTQwHhcNMjYwMTAyMDIxOTA2WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhhOWE5NmQyNTE4NmQzYWU5OGE4ZDUxZjA5ZDY1NTQ3YWQ3MmUyZTVmMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxC3uGSZPB2KT/VXESrTJcT7ZGOY+ TAxVOOOdyV5XtgQbM/RjeXcoWqhLNUDvh06/8ULcBt8Hs+goKyMN+qyXb5ZqvYAE RWxB3rQ5RmmSHXXCP3mP5LZGk/gm5tRdVfQKd/0l4UDIxMxqfV1YnJZOI1hd5SN0 JRBpBRYhsRMp9hiIWfNRY02jZczuPmMWjL3M9+hdUe3yT8g5movgk5tYevyMGLsi +g0kn3mlIpxbx0IYpjmX0sKzW7qcyPxeJRJaJIsqAmZii8dsTe8DohHLV9eJzyan 8pVb6scfXShSA8JyDL9OI3+R7ws64ydx6xJ1N8xv2lTh7xVp4XRRC1/KnwIDAQAB o4ICDDCCAggwHQYDVR0OBBYEFKmpbSUYbTrpio1R8J1lVHrXLi5fMB8GA1UdIwQY MBaAFKuMbFi2B/8jrnF1phaCx1SA8eIUMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvcTR4c1dMWUhfeU91Y1hXbUZvTEhWSUR4NGhRLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81Ni9lZmI4ZWUtYzVjNC00NDY3LWEwY2Mt ODhhM2M0MWZhZWUyLzEvcWFsdEpSaHRPdW1LalZId25XVlVldGN1TGw4LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81Ni9lZmI4ZWUtYzVjNC00NDY3LWEwY2MtODhhM2M0MWZhZWUy LzEvcTR4c1dMWUhfeU91Y1hXbUZvTEhWSUR4NGhRLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAKgAUgAAD MA0GCSqGSIb3DQEBCwUAA4IBAQBoQpsnL6MT9xOtGdDGtfJMrLF+1KN4R4RPDi/n 2OWsw79+rsiUpwuQeeFlpXr/aqbCwruC8w6PwFnf9Zh44RUQT5N86CD6m4KIrasE V4UIYCsZiJXpaB0ds6t5o/NPoLqTmb+xWGwnmDmIQMa3mfiCIwJl74eMaTKk3ayi PRpsHnk8YJAmSPgtcxzBr/MtRVK2YnkPaoqAWlT7GQKfiFyZ/edwIS2Jg+5skzZl J69o70wK7a42s/RNgkdBlLBlpjhRXQD+rjS/xCPdE6j1f9gTQXI1BKPU3cxPPJwU 5/6lOzCYmi3S/JzQRmg43u35kN+wqazpFz0eTYLmx9TsPa11 -----END CERTIFICATE-----Generated at Sun Jan 25 22:12:45 2026 by rpki-client