This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bd/a831c0-457c-4ba8-bec7-e251109bfd19/1/QMeWn3NQA2fbA8c1b6eFvzqzvWg.roa File: QMeWn3NQA2fbA8c1b6eFvzqzvWg.roa (raw, json) Hash identifier: 8sNKEwPOI3VlePsjcLNbwBz/I6kJ5Yh/1lRoX0WjxkU= Subject key identifier: 40:C7:96:9F:73:50:03:67:DB:03:C7:35:6F:A7:85:BF:3A:B3:BD:68 Certificate issuer: /CN=4da3711dc5de45f2f5b47901659e956d938272fe Certificate serial: 019B797E2A840249E4C65408995A1C87291A Authority key identifier: 4D:A3:71:1D:C5:DE:45:F2:F5:B4:79:01:65:9E:95:6D:93:82:72:FE Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TaNxHcXeRfL1tHkBZZ6VbZOCcv4.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bd/a831c0-457c-4ba8-bec7-e251109bfd19/1/QMeWn3NQA2fbA8c1b6eFvzqzvWg.roa Signing time: Thu 01 Jan 2026 12:17:50 +0000 ROA not before: Thu 01 Jan 2026 12:17:50 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 204896 IP address blocks: 2001:67c:1384::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bd/a831c0-457c-4ba8-bec7-e251109bfd19/1/TaNxHcXeRfL1tHkBZZ6VbZOCcv4.crl rsync://rpki.ripe.net/repository/DEFAULT/bd/a831c0-457c-4ba8-bec7-e251109bfd19/1/TaNxHcXeRfL1tHkBZZ6VbZOCcv4.mft rsync://rpki.ripe.net/repository/DEFAULT/TaNxHcXeRfL1tHkBZZ6VbZOCcv4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 07:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:79:7e:2a:84:02:49:e4:c6:54:08:99:5a:1c:87:29:1a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4da3711dc5de45f2f5b47901659e956d938272fe Validity Not Before: Jan 1 12:17:50 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=40c7969f73500367db03c7356fa785bf3ab3bd68 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:1b:c3:64:7b:6f:e9:eb:dd:bf:b6:54:14:a0: af:78:52:22:e8:77:72:58:3c:6e:49:6f:51:0d:75: 3c:22:bf:90:17:05:00:2f:25:74:ef:1f:88:72:33: c3:52:5b:0e:cb:13:c8:7a:9e:43:d1:de:8b:d3:24: 61:46:cc:2a:27:3d:bb:5a:41:3e:91:8e:d8:03:28: 77:78:87:de:78:20:fd:84:e0:33:5a:b6:5d:7d:7b: 0b:1f:33:6d:e6:52:1c:f3:b6:84:3e:d8:eb:74:04: 9b:78:63:19:37:7a:f1:19:26:f5:9b:74:e7:25:34: d7:17:a5:78:b5:a3:35:62:ef:43:ed:c4:b4:78:10: 97:48:20:d1:4c:c8:fa:4b:1b:db:dd:c3:4a:73:f0: 62:69:ce:05:c6:83:44:c1:7b:29:ff:56:35:39:f7: 4e:09:32:4f:a5:59:d0:58:76:80:fd:d1:38:8c:49: d9:b2:72:1a:2f:b4:9f:f3:10:21:ca:b6:08:9b:af: f7:76:c0:58:b2:c1:95:cd:60:53:04:bd:1e:03:84: f9:2a:94:cf:8e:e0:70:3e:a2:42:e0:59:26:21:44: 74:9e:65:84:3f:ce:84:e6:34:d4:72:a6:91:5f:aa: 5d:67:6b:dc:0e:f8:9e:ba:5a:52:78:06:2a:38:17: e1:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 40:C7:96:9F:73:50:03:67:DB:03:C7:35:6F:A7:85:BF:3A:B3:BD:68 X509v3 Authority Key Identifier: keyid:4D:A3:71:1D:C5:DE:45:F2:F5:B4:79:01:65:9E:95:6D:93:82:72:FE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TaNxHcXeRfL1tHkBZZ6VbZOCcv4.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/a831c0-457c-4ba8-bec7-e251109bfd19/1/QMeWn3NQA2fbA8c1b6eFvzqzvWg.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/a831c0-457c-4ba8-bec7-e251109bfd19/1/TaNxHcXeRfL1tHkBZZ6VbZOCcv4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:67c:1384::/48 Signature Algorithm: sha256WithRSAEncryption 50:d3:a2:6a:ec:e0:be:7f:a5:86:01:d9:eb:9e:77:fd:a4:2d: 3e:54:be:3a:8c:3c:76:be:71:9b:d3:5d:7a:31:f0:53:8c:d2: cb:f1:a8:67:18:8c:ff:fa:18:75:dd:b8:6c:9c:df:59:aa:3e: ab:0e:69:ec:30:2b:81:dd:21:75:47:73:05:16:db:4f:ac:d9: ad:14:a4:03:b2:b7:6e:13:07:af:09:d7:85:c4:a1:26:4d:8b: 53:b1:33:bf:0d:ef:21:2b:18:fc:74:ee:21:ec:72:61:cc:4f: b2:fd:92:3e:fd:03:55:33:e8:4f:a9:da:c7:ec:d3:67:b3:b9: b0:71:4f:5c:5b:f0:48:17:bd:e7:ed:75:ce:08:a0:f4:81:c2: 80:18:ff:e8:5b:c0:d8:1c:a7:ad:bb:a7:68:62:b4:4e:ae:91: 2b:9f:54:5e:1a:d0:7c:f2:03:44:06:3d:c6:31:33:4b:4f:3d: fd:59:cf:98:78:2e:2e:25:2c:f8:06:56:a4:ad:a0:12:64:37: 0f:3c:5c:fd:ac:ce:fa:87:1e:31:1c:2e:87:0b:24:7a:7c:11: c6:a2:43:74:ab:bd:00:fa:9d:83:98:e4:f9:9d:c9:a2:48:39: b1:53:fd:33:ec:4e:db:db:38:7a:1e:80:d7:d1:29:5e:d2:e9: e8:28:e4:c4 -----BEGIN CERTIFICATE----- MIIFADCCA+igAwIBAgISAZt5fiqEAknkxlQImVochykaMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDRkYTM3MTFkYzVkZTQ1ZjJmNWI0NzkwMTY1OWU5NTZkOTM4 MjcyZmUwHhcNMjYwMTAxMTIxNzUwWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg0MGM3OTY5ZjczNTAwMzY3ZGIwM2M3MzU2ZmE3ODViZjNhYjNiZDY4MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuhvDZHtv6evdv7ZUFKCveFIi6Hdy WDxuSW9RDXU8Ir+QFwUALyV07x+IcjPDUlsOyxPIep5D0d6L0yRhRswqJz27WkE+ kY7YAyh3eIfeeCD9hOAzWrZdfXsLHzNt5lIc87aEPtjrdASbeGMZN3rxGSb1m3Tn JTTXF6V4taM1Yu9D7cS0eBCXSCDRTMj6Sxvb3cNKc/Biac4FxoNEwXsp/1Y1OfdO CTJPpVnQWHaA/dE4jEnZsnIaL7Sf8xAhyrYIm6/3dsBYssGVzWBTBL0eA4T5KpTP juBwPqJC4FkmIUR0nmWEP86E5jTUcqaRX6pdZ2vcDvieulpSeAYqOBfhfQIDAQAB o4ICDDCCAggwHQYDVR0OBBYEFEDHlp9zUANn2wPHNW+nhb86s71oMB8GA1UdIwQY MBaAFE2jcR3F3kXy9bR5AWWelW2TgnL+MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvVGFOeEhjWGVSZkwxdEhrQlpaNlZiWk9DY3Y0LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iZC9hODMxYzAtNDU3Yy00YmE4LWJlYzct ZTI1MTEwOWJmZDE5LzEvUU1lV24zTlFBMmZiQThjMWI2ZUZ2enF6dldnLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iZC9hODMxYzAtNDU3Yy00YmE4LWJlYzctZTI1MTEwOWJmZDE5 LzEvVGFOeEhjWGVSZkwxdEhrQlpaNlZiWk9DY3Y0LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAIAEGfBOE MA0GCSqGSIb3DQEBCwUAA4IBAQBQ06Jq7OC+f6WGAdnrnnf9pC0+VL46jDx2vnGb 0116MfBTjNLL8ahnGIz/+hh13bhsnN9Zqj6rDmnsMCuB3SF1R3MFFttPrNmtFKQD srduEwevCdeFxKEmTYtTsTO/De8hKxj8dO4h7HJhzE+y/ZI+/QNVM+hPqdrH7NNn s7mwcU9cW/BIF73n7XXOCKD0gcKAGP/oW8DYHKetu6doYrROrpErn1ReGtB88gNE Bj3GMTNLTz39Wc+YeC4uJSz4BlakraASZDcPPFz9rM76hx4xHC6HCyR6fBHGokN0 q70A+p2DmOT5ncmiSDmxU/0z7E7b2zh6HoDX0Sle0unoKOTE -----END CERTIFICATE-----Generated at Sun Jan 25 15:13:21 2026 by rpki-client