This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7d/388fd8-c81f-4e71-af52-c0b1ad435b95/1/quvibglo6Ez0p7GLGOPHRy9oRo0.roa File: quvibglo6Ez0p7GLGOPHRy9oRo0.roa (raw, json) Hash identifier: PHUCyCkb1CzH3KiJNE2akCPX54R84dlZX7do54X1Jww= Subject key identifier: AA:EB:E2:6E:09:68:E8:4C:F4:A7:B1:8B:18:E3:C7:47:2F:68:46:8D Certificate issuer: /CN=a7fd3f89335dcf828666b28fad8ae993bd448878 Certificate serial: 019B7F153A4C9282D600B32F296015EFDE40 Authority key identifier: A7:FD:3F:89:33:5D:CF:82:86:66:B2:8F:AD:8A:E9:93:BD:44:88:78 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/p_0_iTNdz4KGZrKPrYrpk71EiHg.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7d/388fd8-c81f-4e71-af52-c0b1ad435b95/1/quvibglo6Ez0p7GLGOPHRy9oRo0.roa Signing time: Fri 02 Jan 2026 14:20:56 +0000 ROA not before: Fri 02 Jan 2026 14:20:56 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 35543 IP address blocks: 2a12:a4c1::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/7d/388fd8-c81f-4e71-af52-c0b1ad435b95/1/p_0_iTNdz4KGZrKPrYrpk71EiHg.crl rsync://rpki.ripe.net/repository/DEFAULT/7d/388fd8-c81f-4e71-af52-c0b1ad435b95/1/p_0_iTNdz4KGZrKPrYrpk71EiHg.mft rsync://rpki.ripe.net/repository/DEFAULT/p_0_iTNdz4KGZrKPrYrpk71EiHg.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 11:01:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7f:15:3a:4c:92:82:d6:00:b3:2f:29:60:15:ef:de:40 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=a7fd3f89335dcf828666b28fad8ae993bd448878 Validity Not Before: Jan 2 14:20:56 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=aaebe26e0968e84cf4a7b18b18e3c7472f68468d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:99:6e:d4:56:07:da:f6:81:6b:f9:94:86:62:3b: 96:80:51:62:95:92:ff:96:75:fb:af:ae:f6:4c:2f: b9:da:bb:2d:37:b3:bf:f7:14:ce:2a:51:c2:fb:57: 76:33:13:ad:7c:fd:0c:1d:75:c9:16:1c:6a:e0:65: 2a:29:15:43:06:4b:b1:09:bd:25:65:b8:65:7b:41: 51:03:f6:32:97:98:52:31:84:57:a1:71:cd:61:4d: af:a9:de:84:b3:4a:a2:a6:3a:4b:c9:14:e8:a8:4b: 4c:e0:f8:a8:aa:c6:29:7b:e3:09:8b:f8:af:51:1d: aa:69:8e:c2:28:b3:9d:e3:9b:03:29:4c:18:1b:a0: 15:cc:64:9f:2a:9f:6e:cd:91:8d:17:cf:3e:19:ca: e5:93:6a:3a:5d:07:53:ff:96:9f:88:2b:d2:cd:d5: 85:ab:f9:05:4b:34:d3:ba:25:75:8d:04:3c:0c:85: 0e:5e:c6:0c:9e:1b:51:e2:cb:34:3e:f3:42:67:e6: 5a:8e:f2:1b:a8:c7:db:06:0f:5f:b0:47:ae:c5:4a: 88:4a:82:cb:63:2f:2d:a1:78:60:d3:8c:33:31:4f: 82:59:81:ee:58:18:71:25:f3:67:74:63:d4:22:56: 5c:98:0f:51:c3:92:c8:d4:01:3b:8b:1d:08:eb:59: 68:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AA:EB:E2:6E:09:68:E8:4C:F4:A7:B1:8B:18:E3:C7:47:2F:68:46:8D X509v3 Authority Key Identifier: keyid:A7:FD:3F:89:33:5D:CF:82:86:66:B2:8F:AD:8A:E9:93:BD:44:88:78 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/p_0_iTNdz4KGZrKPrYrpk71EiHg.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7d/388fd8-c81f-4e71-af52-c0b1ad435b95/1/quvibglo6Ez0p7GLGOPHRy9oRo0.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/7d/388fd8-c81f-4e71-af52-c0b1ad435b95/1/p_0_iTNdz4KGZrKPrYrpk71EiHg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a12:a4c1::/32 Signature Algorithm: sha256WithRSAEncryption 4f:f7:ca:df:73:88:aa:ef:95:0a:54:67:93:c9:9b:11:86:2d: 2e:69:4d:12:c6:96:be:f0:9d:bd:47:5d:a2:57:f0:d4:54:fe: 23:57:25:4e:f7:21:3a:9e:2f:6d:5b:b3:fd:5d:f0:32:54:98: 75:6b:f7:87:b7:20:c4:5f:f9:10:f7:d5:a4:19:fb:f9:b8:3f: 3e:90:61:87:32:9a:b5:2b:81:96:df:9c:a4:f5:06:a0:46:6e: 68:ff:eb:78:53:4d:38:6b:66:2b:59:e9:1a:90:26:b2:54:93: 5d:d8:84:97:88:60:18:04:09:55:8d:12:88:fe:fd:51:4e:48: 8b:65:0f:00:b9:d7:e8:2c:8f:a8:b1:b3:7c:71:b9:6c:fd:e3: e5:f8:f0:fc:26:8a:d7:94:fe:c0:dd:14:8d:a7:27:4b:72:9f: 93:c7:23:81:47:94:d2:4e:7f:9b:3c:a0:ca:48:1b:88:5a:e6: 7a:b4:78:7b:05:d8:46:5c:86:86:08:33:70:6f:3f:ce:b6:56: 67:1c:56:92:ad:cf:7a:e8:ed:c6:68:ec:5a:6c:e0:ff:d7:a2: 12:d2:ef:34:d2:93:4d:19:99:48:a1:d5:43:f9:16:85:64:c4: cf:44:c5:22:90:1b:6f:bd:0b:30:cb:31:c2:21:a0:b6:03:bf: 93:c3:0e:48 -----BEGIN CERTIFICATE----- MIIE/jCCA+agAwIBAgISAZt/FTpMkoLWALMvKWAV795AMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGE3ZmQzZjg5MzM1ZGNmODI4NjY2YjI4ZmFkOGFlOTkzYmQ0 NDg4NzgwHhcNMjYwMTAyMTQyMDU2WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhhYWViZTI2ZTA5NjhlODRjZjRhN2IxOGIxOGUzYzc0NzJmNjg0NjhkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmW7UVgfa9oFr+ZSGYjuWgFFilZL/ lnX7r672TC+52rstN7O/9xTOKlHC+1d2MxOtfP0MHXXJFhxq4GUqKRVDBkuxCb0l Zbhle0FRA/Yyl5hSMYRXoXHNYU2vqd6Es0qipjpLyRToqEtM4PioqsYpe+MJi/iv UR2qaY7CKLOd45sDKUwYG6AVzGSfKp9uzZGNF88+Gcrlk2o6XQdT/5afiCvSzdWF q/kFSzTTuiV1jQQ8DIUOXsYMnhtR4ss0PvNCZ+ZajvIbqMfbBg9fsEeuxUqISoLL Yy8toXhg04wzMU+CWYHuWBhxJfNndGPUIlZcmA9Rw5LI1AE7ix0I61loVQIDAQAB o4ICCjCCAgYwHQYDVR0OBBYEFKrr4m4JaOhM9Kexixjjx0cvaEaNMB8GA1UdIwQY MBaAFKf9P4kzXc+Chmayj62K6ZO9RIh4MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvcF8wX2lUTmR6NEtHWnJLUHJZcnBrNzFFaUhnLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83ZC8zODhmZDgtYzgxZi00ZTcxLWFmNTIt YzBiMWFkNDM1Yjk1LzEvcXV2aWJnbG82RXowcDdHTEdPUEhSeTlvUm8wLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC83ZC8zODhmZDgtYzgxZi00ZTcxLWFmNTItYzBiMWFkNDM1Yjk1 LzEvcF8wX2lUTmR6NEtHWnJLUHJZcnBrNzFFaUhnLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCAGCCsGAQUFBwEHAQH/BBEwDzANBAIAAjAHAwUAKhKkwTAN BgkqhkiG9w0BAQsFAAOCAQEAT/fK33OIqu+VClRnk8mbEYYtLmlNEsaWvvCdvUdd olfw1FT+I1clTvchOp4vbVuz/V3wMlSYdWv3h7cgxF/5EPfVpBn7+bg/PpBhhzKa tSuBlt+cpPUGoEZuaP/reFNNOGtmK1npGpAmslSTXdiEl4hgGAQJVY0SiP79UU5I i2UPALnX6CyPqLGzfHG5bP3j5fjw/CaK15T+wN0UjacnS3Kfk8cjgUeU0k5/mzyg ykgbiFrmerR4ewXYRlyGhggzcG8/zrZWZxxWkq3PeujtxmjsWmzg/9eiEtLvNNKT TRmZSKHVQ/kWhWTEz0TFIpAbb70LMMsxwiGgtgO/k8MOSA== -----END CERTIFICATE-----Generated at Sun Jan 25 20:01:33 2026 by rpki-client