This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/94/f71cc2-b71d-4668-8661-0538e95f3f12/1/vqZQVORPWZ1lXlQgDCRvTJCZfXo.roa File: vqZQVORPWZ1lXlQgDCRvTJCZfXo.roa (raw, json) Hash identifier: s8+Y7767O5xM4xdOIqw3TNY342+4LMjbnHyZjQIRUhA= Subject key identifier: BE:A6:50:54:E4:4F:59:9D:65:5E:54:20:0C:24:6F:4C:90:99:7D:7A Certificate issuer: /CN=4776afb74fad5baf0a6180b49510d8b8497df8d3 Certificate serial: 019B7BA51DB69FCE076E0BCC2D59FF73288B Authority key identifier: 47:76:AF:B7:4F:AD:5B:AF:0A:61:80:B4:95:10:D8:B8:49:7D:F8:D3 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/R3avt0-tW68KYYC0lRDYuEl9-NM.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/94/f71cc2-b71d-4668-8661-0538e95f3f12/1/vqZQVORPWZ1lXlQgDCRvTJCZfXo.roa Signing time: Thu 01 Jan 2026 22:19:37 +0000 ROA not before: Thu 01 Jan 2026 22:19:37 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 1921 IP address blocks: 2a04:2b00:14cc::/48 maxlen: 48 2a04:2b00:14dd::/48 maxlen: 48 2a04:2b00:14ee::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/94/f71cc2-b71d-4668-8661-0538e95f3f12/1/R3avt0-tW68KYYC0lRDYuEl9-NM.crl rsync://rpki.ripe.net/repository/DEFAULT/94/f71cc2-b71d-4668-8661-0538e95f3f12/1/R3avt0-tW68KYYC0lRDYuEl9-NM.mft rsync://rpki.ripe.net/repository/DEFAULT/R3avt0-tW68KYYC0lRDYuEl9-NM.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 27 Jan 2026 15:35:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7b:a5:1d:b6:9f:ce:07:6e:0b:cc:2d:59:ff:73:28:8b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4776afb74fad5baf0a6180b49510d8b8497df8d3 Validity Not Before: Jan 1 22:19:37 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=bea65054e44f599d655e54200c246f4c90997d7a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:a4:58:f9:2c:ef:91:98:61:b5:44:99:b2:7e: f2:1e:02:e0:a7:fe:f4:cf:63:fe:43:df:56:35:40: d1:3d:7d:21:68:ed:17:f1:f5:a9:05:46:76:7d:f0: 70:d6:80:7e:d1:97:a2:32:1a:ce:09:b1:4d:ca:e0: 46:68:ce:5f:e0:e7:e7:d3:65:a2:f5:43:06:77:e1: f5:c6:87:f8:6b:1b:12:86:d3:bf:9b:8b:c9:76:48: d3:9f:cc:ab:2e:0a:71:be:78:06:11:78:d6:fe:83: dc:7c:24:4b:15:1d:ea:44:d3:09:1c:b3:c9:e7:09: 97:1c:a0:90:77:7f:b4:fb:a4:0a:0f:32:2d:9c:85: 25:5a:78:09:b2:ce:49:97:ce:e2:c2:a3:91:4a:76: 59:5d:89:20:d6:2d:ea:a8:15:7f:65:04:b2:cc:d9: 30:9a:b6:5d:c4:0f:22:fb:ae:25:a8:c3:de:53:c0: da:56:ee:29:42:d8:5b:d8:ba:54:5e:8e:bd:ca:81: a3:ec:4e:db:e0:70:89:55:bd:f0:1a:98:3d:de:53: ce:94:86:97:b0:95:07:94:a4:9d:1f:ba:a2:a8:55: 05:c5:17:d8:45:56:ff:a3:1d:2e:ed:df:42:dc:e7: 45:1d:f9:fe:b3:d1:1a:63:20:f6:a9:8e:e8:af:1d: ca:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BE:A6:50:54:E4:4F:59:9D:65:5E:54:20:0C:24:6F:4C:90:99:7D:7A X509v3 Authority Key Identifier: keyid:47:76:AF:B7:4F:AD:5B:AF:0A:61:80:B4:95:10:D8:B8:49:7D:F8:D3 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/R3avt0-tW68KYYC0lRDYuEl9-NM.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/94/f71cc2-b71d-4668-8661-0538e95f3f12/1/vqZQVORPWZ1lXlQgDCRvTJCZfXo.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/94/f71cc2-b71d-4668-8661-0538e95f3f12/1/R3avt0-tW68KYYC0lRDYuEl9-NM.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a04:2b00:14cc::/48 2a04:2b00:14dd::/48 2a04:2b00:14ee::/48 Signature Algorithm: sha256WithRSAEncryption 16:66:68:9f:f9:8c:cb:89:78:ff:ed:da:aa:56:a7:63:2b:9e: 03:7c:2c:23:dc:2c:e1:61:e8:fb:8c:41:2d:3e:3f:99:1f:28: dd:24:58:0e:56:1d:06:b4:7b:ca:b5:f0:90:92:92:68:01:87: 65:f3:ba:36:fb:80:eb:59:04:0c:31:9b:3d:a8:04:2a:00:d9: 0e:75:a9:24:ae:19:e7:35:68:d4:eb:e4:a8:77:90:32:34:34: 44:d5:49:7d:3b:15:59:34:0f:b8:08:a6:34:7f:32:3d:27:ea: 6d:eb:ec:61:97:ff:62:8a:83:4a:dd:6c:dc:da:e7:37:aa:4f: 24:f9:a9:df:a4:b8:94:e4:74:c4:00:3a:4d:33:9e:63:ba:1a: d3:c6:bc:62:d4:be:33:e5:ad:81:47:8f:19:de:f4:e5:fb:86: 6e:57:70:c4:fb:d7:f9:b0:fd:71:65:e3:78:64:bc:45:cf:58: da:5e:12:7c:3c:94:1b:fc:a7:21:b7:4a:fd:d0:66:d6:0e:11: 65:12:a5:0a:1a:22:77:1c:da:6c:96:28:25:22:d1:89:ac:20: 1d:06:d0:e1:b1:f2:d8:1f:ff:b7:4b:84:7f:e6:11:e9:93:38: 47:22:83:6f:94:89:f0:2b:41:98:11:bc:e5:80:78:82:ff:be: 07:37:d5:26 -----BEGIN CERTIFICATE----- MIIFEjCCA/qgAwIBAgISAZt7pR22n84HbgvMLVn/cyiLMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDQ3NzZhZmI3NGZhZDViYWYwYTYxODBiNDk1MTBkOGI4NDk3 ZGY4ZDMwHhcNMjYwMTAxMjIxOTM3WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhiZWE2NTA1NGU0NGY1OTlkNjU1ZTU0MjAwYzI0NmY0YzkwOTk3ZDdhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsqRY+SzvkZhhtUSZsn7yHgLgp/70 z2P+Q99WNUDRPX0haO0X8fWpBUZ2ffBw1oB+0ZeiMhrOCbFNyuBGaM5f4Ofn02Wi 9UMGd+H1xof4axsShtO/m4vJdkjTn8yrLgpxvngGEXjW/oPcfCRLFR3qRNMJHLPJ 5wmXHKCQd3+0+6QKDzItnIUlWngJss5Jl87iwqORSnZZXYkg1i3qqBV/ZQSyzNkw mrZdxA8i+64lqMPeU8DaVu4pQthb2LpUXo69yoGj7E7b4HCJVb3wGpg93lPOlIaX sJUHlKSdH7qiqFUFxRfYRVb/ox0u7d9C3OdFHfn+s9EaYyD2qY7orx3KrQIDAQAB o4ICHjCCAhowHQYDVR0OBBYEFL6mUFTkT1mdZV5UIAwkb0yQmX16MB8GA1UdIwQY MBaAFEd2r7dPrVuvCmGAtJUQ2LhJffjTMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvUjNhdnQwLXRXNjhLWVlDMGxSRFl1RWw5LU5NLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85NC9mNzFjYzItYjcxZC00NjY4LTg2NjEt MDUzOGU5NWYzZjEyLzEvdnFaUVZPUlBXWjFsWGxRZ0RDUnZUSkNaZlhvLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC85NC9mNzFjYzItYjcxZC00NjY4LTg2NjEtMDUzOGU5NWYzZjEy LzEvUjNhdnQwLXRXNjhLWVlDMGxSRFl1RWw5LU5NLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMDQGCCsGAQUFBwEHAQH/BCUwIzAhBAIAAjAbAwcAKgQrABTM AwcAKgQrABTdAwcAKgQrABTuMA0GCSqGSIb3DQEBCwUAA4IBAQAWZmif+YzLiXj/ 7dqqVqdjK54DfCwj3CzhYej7jEEtPj+ZHyjdJFgOVh0GtHvKtfCQkpJoAYdl87o2 +4DrWQQMMZs9qAQqANkOdakkrhnnNWjU6+Sod5AyNDRE1Ul9OxVZNA+4CKY0fzI9 J+pt6+xhl/9iioNK3Wzc2uc3qk8k+anfpLiU5HTEADpNM55juhrTxrxi1L4z5a2B R48Z3vTl+4ZuV3DE+9f5sP1xZeN4ZLxFz1jaXhJ8PJQb/Kcht0r90GbWDhFlEqUK GiJ3HNpsliglItGJrCAdBtDhsfLYH/+3S4R/5hHpkzhHIoNvlInwK0GYEbzlgHiC /74HN9Um -----END CERTIFICATE-----Generated at Mon Jan 26 21:17:39 2026 by rpki-client