This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ef/f5d0f9-ca2f-4b6e-917c-137109369621/1/1QZ2MlTqXygwlnH8Udt0i4cHU2M.roa File: 1QZ2MlTqXygwlnH8Udt0i4cHU2M.roa (raw, json) Hash identifier: yoD+lVhqZgbthHDn2WTTaJtIVkfO54F2E284Wpna3Yw= Subject key identifier: D5:06:76:32:54:EA:5F:28:30:96:71:FC:51:DB:74:8B:87:07:53:63 Certificate issuer: /CN=2bfb0d548c49b6a5618a4d3b3c1da4c3d144bf46 Certificate serial: 019B7C130F314D3018153260E3279E758AA7 Authority key identifier: 2B:FB:0D:54:8C:49:B6:A5:61:8A:4D:3B:3C:1D:A4:C3:D1:44:BF:46 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/K_sNVIxJtqVhik07PB2kw9FEv0Y.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ef/f5d0f9-ca2f-4b6e-917c-137109369621/1/1QZ2MlTqXygwlnH8Udt0i4cHU2M.roa Signing time: Fri 02 Jan 2026 00:19:42 +0000 ROA not before: Fri 02 Jan 2026 00:19:42 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 210475 IP address blocks: 2001:67c:2ff8::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ef/f5d0f9-ca2f-4b6e-917c-137109369621/1/K_sNVIxJtqVhik07PB2kw9FEv0Y.crl rsync://rpki.ripe.net/repository/DEFAULT/ef/f5d0f9-ca2f-4b6e-917c-137109369621/1/K_sNVIxJtqVhik07PB2kw9FEv0Y.mft rsync://rpki.ripe.net/repository/DEFAULT/K_sNVIxJtqVhik07PB2kw9FEv0Y.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 06:00:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7c:13:0f:31:4d:30:18:15:32:60:e3:27:9e:75:8a:a7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2bfb0d548c49b6a5618a4d3b3c1da4c3d144bf46 Validity Not Before: Jan 2 00:19:42 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=d506763254ea5f28309671fc51db748b87075363 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:f4:d6:30:11:0e:e2:17:b0:76:be:ca:d7:79: e7:7b:fa:0c:42:ec:41:48:b1:72:a7:02:ed:77:17: 74:45:35:fa:ef:79:97:5c:92:9b:97:dc:2c:7b:90: cf:71:5d:74:97:25:9f:c4:92:cc:a2:b8:76:00:5e: 70:7d:72:69:19:41:8b:ba:88:75:4b:55:f2:95:41: 81:cf:80:d0:7e:ef:38:24:75:52:ae:22:5b:9b:04: 16:21:c7:b9:88:f1:73:cf:3b:30:1e:a5:87:c7:14: eb:50:1b:bb:e6:d2:18:a4:7b:52:39:00:a3:7e:7d: 6b:e4:ab:56:bd:05:88:4d:ec:2c:71:f2:98:60:5f: 88:3a:7a:cf:0f:73:1b:a2:97:4f:af:e0:bc:27:8a: 8c:f3:00:10:52:37:24:3e:e9:6b:63:d1:9f:f9:ff: 3b:1a:ae:fe:48:b9:fb:46:66:5f:15:69:b8:ec:75: bf:4a:a4:ba:a2:de:c3:fe:f0:d8:f4:13:c6:7b:f2: 27:c0:50:fd:32:66:1d:fe:68:b6:47:f1:89:43:dd: 95:d2:b3:16:06:ab:c0:50:70:91:2d:ea:ed:1a:57: b5:82:e5:a0:5c:c9:61:4a:f6:b7:3c:ca:cd:1c:e0: 8b:b6:89:50:f8:87:b5:60:b6:88:28:77:77:27:1b: 10:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D5:06:76:32:54:EA:5F:28:30:96:71:FC:51:DB:74:8B:87:07:53:63 X509v3 Authority Key Identifier: keyid:2B:FB:0D:54:8C:49:B6:A5:61:8A:4D:3B:3C:1D:A4:C3:D1:44:BF:46 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/K_sNVIxJtqVhik07PB2kw9FEv0Y.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ef/f5d0f9-ca2f-4b6e-917c-137109369621/1/1QZ2MlTqXygwlnH8Udt0i4cHU2M.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/ef/f5d0f9-ca2f-4b6e-917c-137109369621/1/K_sNVIxJtqVhik07PB2kw9FEv0Y.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:67c:2ff8::/48 Signature Algorithm: sha256WithRSAEncryption b7:3f:c3:1d:db:29:c1:ca:93:64:b2:bd:1a:62:2c:f9:e4:34: 1a:71:af:32:ee:a5:86:3e:fd:01:58:d0:7f:24:d5:03:4b:91: 23:3f:d9:c2:e0:f6:8a:ba:6f:c1:3d:1e:cf:9c:14:00:3d:b1: 43:e0:fd:c0:86:27:14:cf:65:9c:cb:b8:1f:0f:c3:66:3b:43: 31:1a:8c:d1:e6:c1:45:8e:61:91:66:41:af:3c:75:12:93:3d: 63:00:53:6b:c3:5b:cf:62:8e:e8:71:5d:5a:15:99:76:ae:7c: 78:09:38:17:9a:95:d5:95:ee:d3:15:2b:83:7c:0a:3d:78:f0: c4:64:af:cd:3b:88:9e:6f:e9:ec:e7:81:7a:29:42:9a:84:73: ef:f3:39:48:ff:21:f3:b3:4b:65:3d:76:e2:52:88:10:39:30: f6:b5:d5:88:02:3a:24:f6:80:51:5d:94:72:1d:02:0d:2f:ae: 40:50:6b:81:c7:0b:81:03:cc:31:65:52:c6:f8:88:c7:3c:88: 85:f6:96:84:3b:fe:15:4c:1b:55:61:4b:38:d6:f1:ff:16:b7: fd:5f:2b:6a:ec:0d:d0:81:e9:f6:c8:93:94:39:56:bf:bc:f8: 07:96:29:1a:c2:f3:b9:54:1b:0d:6f:4d:33:30:09:80:79:c2: b2:af:de:f4 -----BEGIN CERTIFICATE----- MIIFADCCA+igAwIBAgISAZt8Ew8xTTAYFTJg4yeedYqnMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJiZmIwZDU0OGM0OWI2YTU2MThhNGQzYjNjMWRhNGMzZDE0 NGJmNDYwHhcNMjYwMTAyMDAxOTQyWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhkNTA2NzYzMjU0ZWE1ZjI4MzA5NjcxZmM1MWRiNzQ4Yjg3MDc1MzYzMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArfTWMBEO4hewdr7K13nne/oMQuxB SLFypwLtdxd0RTX673mXXJKbl9wse5DPcV10lyWfxJLMorh2AF5wfXJpGUGLuoh1 S1XylUGBz4DQfu84JHVSriJbmwQWIce5iPFzzzswHqWHxxTrUBu75tIYpHtSOQCj fn1r5KtWvQWITewscfKYYF+IOnrPD3MbopdPr+C8J4qM8wAQUjckPulrY9Gf+f87 Gq7+SLn7RmZfFWm47HW/SqS6ot7D/vDY9BPGe/InwFD9MmYd/mi2R/GJQ92V0rMW BqvAUHCRLertGle1guWgXMlhSva3PMrNHOCLtolQ+Ie1YLaIKHd3JxsQXQIDAQAB o4ICDDCCAggwHQYDVR0OBBYEFNUGdjJU6l8oMJZx/FHbdIuHB1NjMB8GA1UdIwQY MBaAFCv7DVSMSbalYYpNOzwdpMPRRL9GMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvS19zTlZJeEp0cVZoaWswN1BCMmt3OUZFdjBZLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lZi9mNWQwZjktY2EyZi00YjZlLTkxN2Mt MTM3MTA5MzY5NjIxLzEvMVFaMk1sVHFYeWd3bG5IOFVkdDBpNGNIVTJNLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9lZi9mNWQwZjktY2EyZi00YjZlLTkxN2MtMTM3MTA5MzY5NjIx LzEvS19zTlZJeEp0cVZoaWswN1BCMmt3OUZFdjBZLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAIAEGfC/4 MA0GCSqGSIb3DQEBCwUAA4IBAQC3P8Md2ynBypNksr0aYiz55DQaca8y7qWGPv0B WNB/JNUDS5EjP9nC4PaKum/BPR7PnBQAPbFD4P3AhicUz2Wcy7gfD8NmO0MxGozR 5sFFjmGRZkGvPHUSkz1jAFNrw1vPYo7ocV1aFZl2rnx4CTgXmpXVle7TFSuDfAo9 ePDEZK/NO4ieb+ns54F6KUKahHPv8zlI/yHzs0tlPXbiUogQOTD2tdWIAjok9oBR XZRyHQINL65AUGuBxwuBA8wxZVLG+IjHPIiF9paEO/4VTBtVYUs41vH/Frf9Xytq 7A3Qgen2yJOUOVa/vPgHlikawvO5VBsNb00zMAmAecKyr970 -----END CERTIFICATE-----Generated at Sun Jan 25 16:37:48 2026 by rpki-client