This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f8/d53c78-0d5b-4237-9999-0e2d697b27e3/1/qydppjeYfUzDVxdV73Ghn9vaAYk.roa File: qydppjeYfUzDVxdV73Ghn9vaAYk.roa (raw, json) Hash identifier: F/o5ke8f18yC9oKEjHkU0hNCPxAS0/yMbN5QTK0st0g= Subject key identifier: AB:27:69:A6:37:98:7D:4C:C3:57:17:55:EF:71:A1:9F:DB:DA:01:89 Certificate issuer: /CN=005ff9cc89c66a8a3a5d734a0d65c61fdc8518be Certificate serial: 019B7EA57A01D54BA62D681CEDAE5998CE99 Authority key identifier: 00:5F:F9:CC:89:C6:6A:8A:3A:5D:73:4A:0D:65:C6:1F:DC:85:18:BE Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AF_5zInGaoo6XXNKDWXGH9yFGL4.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f8/d53c78-0d5b-4237-9999-0e2d697b27e3/1/qydppjeYfUzDVxdV73Ghn9vaAYk.roa Signing time: Fri 02 Jan 2026 12:18:52 +0000 ROA not before: Fri 02 Jan 2026 12:18:52 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 34685 IP address blocks: 2a01:7f0::/32 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f8/d53c78-0d5b-4237-9999-0e2d697b27e3/1/AF_5zInGaoo6XXNKDWXGH9yFGL4.crl rsync://rpki.ripe.net/repository/DEFAULT/f8/d53c78-0d5b-4237-9999-0e2d697b27e3/1/AF_5zInGaoo6XXNKDWXGH9yFGL4.mft rsync://rpki.ripe.net/repository/DEFAULT/AF_5zInGaoo6XXNKDWXGH9yFGL4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 09:00:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7e:a5:7a:01:d5:4b:a6:2d:68:1c:ed:ae:59:98:ce:99 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=005ff9cc89c66a8a3a5d734a0d65c61fdc8518be Validity Not Before: Jan 2 12:18:52 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=ab2769a637987d4cc3571755ef71a19fdbda0189 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:b2:e5:2c:c4:55:d9:aa:6f:60:da:bd:68:ae: d4:06:6d:e2:0a:ee:2b:1f:b9:17:e1:b6:cf:b3:53: 20:a4:9c:15:eb:6e:c8:ae:45:d5:91:91:69:ee:f8: 02:24:07:aa:2f:57:2a:c3:45:8a:67:56:3a:0c:25: 96:d8:f7:cc:b5:90:92:a6:fc:83:28:8b:29:44:94: 96:af:50:3b:ab:32:26:18:74:04:ab:f4:a8:90:20: 76:58:5c:7a:32:c4:23:c2:55:21:eb:46:b5:56:72: 79:22:51:5d:cb:77:b8:21:c0:ab:a0:a0:ef:c0:7d: 7f:7f:b4:bc:c3:56:e7:fc:77:9c:ad:98:21:65:cb: 44:9d:b6:22:0c:51:93:f5:7e:54:83:83:d7:80:80: 9d:a7:6e:a9:cf:91:c5:3e:62:15:22:9c:af:d9:a5: b5:47:ea:cc:fb:0c:13:93:d7:94:7f:80:0c:5f:a6: 1a:88:54:f0:07:b4:ea:ac:43:5e:21:9e:61:4a:17: d1:6f:4f:6e:a9:41:d3:56:a9:54:1b:4e:87:95:73: 5d:b7:02:e8:78:d9:a2:4d:80:31:07:8b:4d:1f:a2: bb:29:7f:3c:0d:16:58:11:ae:c5:39:cb:b9:98:bf: 01:c8:51:d6:b0:e8:7d:59:11:7f:be:43:6d:ed:64: 3e:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AB:27:69:A6:37:98:7D:4C:C3:57:17:55:EF:71:A1:9F:DB:DA:01:89 X509v3 Authority Key Identifier: keyid:00:5F:F9:CC:89:C6:6A:8A:3A:5D:73:4A:0D:65:C6:1F:DC:85:18:BE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AF_5zInGaoo6XXNKDWXGH9yFGL4.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f8/d53c78-0d5b-4237-9999-0e2d697b27e3/1/qydppjeYfUzDVxdV73Ghn9vaAYk.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/f8/d53c78-0d5b-4237-9999-0e2d697b27e3/1/AF_5zInGaoo6XXNKDWXGH9yFGL4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a01:7f0::/32 Signature Algorithm: sha256WithRSAEncryption 83:17:8a:7a:fc:13:24:0d:b1:e5:f0:94:d2:04:11:75:03:d3: 71:9f:ea:f7:45:3e:42:b5:35:41:ee:d0:e3:7b:45:1b:67:e9: 13:7c:18:00:62:95:42:65:14:23:1a:31:89:1e:00:9a:4e:0c: 9a:11:4f:e5:d4:11:76:ba:03:a7:ae:b4:39:ce:f4:63:ac:29: 61:68:15:e3:f3:21:02:93:df:8a:11:24:5b:2f:88:17:0a:81: 44:22:ac:c2:03:5a:a5:61:00:a9:99:ad:57:30:cf:aa:30:8c: 2e:b8:6a:37:0e:3d:42:e1:62:31:d2:f7:23:14:b9:67:e0:84: 57:e7:d1:27:1f:99:3f:ba:bf:46:8f:44:cc:cc:38:e4:63:94: e1:41:2c:f4:47:24:8a:67:c9:19:85:e8:20:38:9d:3c:39:bd: 63:1b:e7:8d:51:5f:8f:a1:f9:eb:51:8b:6d:0d:cf:bf:55:9f: 4f:6d:87:28:94:51:f8:3b:69:38:17:9a:e0:c9:d2:10:d5:d3: ce:d0:41:06:31:2b:91:50:92:f8:af:be:cf:b4:ec:53:e1:9e: 12:31:a5:aa:76:33:19:83:01:92:7b:1e:59:fc:33:27:5f:9f: a5:f0:59:1d:48:a9:97:aa:53:2a:18:cb:e5:ee:17:e8:e2:8e: e1:35:69:b1 -----BEGIN CERTIFICATE----- MIIE/jCCA+agAwIBAgISAZt+pXoB1UumLWgc7a5ZmM6ZMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDAwNWZmOWNjODljNjZhOGEzYTVkNzM0YTBkNjVjNjFmZGM4 NTE4YmUwHhcNMjYwMTAyMTIxODUyWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhhYjI3NjlhNjM3OTg3ZDRjYzM1NzE3NTVlZjcxYTE5ZmRiZGEwMTg5MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAybLlLMRV2apvYNq9aK7UBm3iCu4r H7kX4bbPs1MgpJwV627IrkXVkZFp7vgCJAeqL1cqw0WKZ1Y6DCWW2PfMtZCSpvyD KIspRJSWr1A7qzImGHQEq/SokCB2WFx6MsQjwlUh60a1VnJ5IlFdy3e4IcCroKDv wH1/f7S8w1bn/HecrZghZctEnbYiDFGT9X5Ug4PXgICdp26pz5HFPmIVIpyv2aW1 R+rM+wwTk9eUf4AMX6YaiFTwB7TqrENeIZ5hShfRb09uqUHTVqlUG06HlXNdtwLo eNmiTYAxB4tNH6K7KX88DRZYEa7FOcu5mL8ByFHWsOh9WRF/vkNt7WQ+7QIDAQAB o4ICCjCCAgYwHQYDVR0OBBYEFKsnaaY3mH1Mw1cXVe9xoZ/b2gGJMB8GA1UdIwQY MBaAFABf+cyJxmqKOl1zSg1lxh/chRi+MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvQUZfNXpJbkdhb282WFhOS0RXWEdIOXlGR0w0LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mOC9kNTNjNzgtMGQ1Yi00MjM3LTk5OTkt MGUyZDY5N2IyN2UzLzEvcXlkcHBqZVlmVXpEVnhkVjczR2huOXZhQVlrLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9mOC9kNTNjNzgtMGQ1Yi00MjM3LTk5OTktMGUyZDY5N2IyN2Uz LzEvQUZfNXpJbkdhb282WFhOS0RXWEdIOXlGR0w0LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCAGCCsGAQUFBwEHAQH/BBEwDzANBAIAAjAHAwUAKgEH8DAN BgkqhkiG9w0BAQsFAAOCAQEAgxeKevwTJA2x5fCU0gQRdQPTcZ/q90U+QrU1Qe7Q 43tFG2fpE3wYAGKVQmUUIxoxiR4Amk4MmhFP5dQRdroDp660Oc70Y6wpYWgV4/Mh ApPfihEkWy+IFwqBRCKswgNapWEAqZmtVzDPqjCMLrhqNw49QuFiMdL3IxS5Z+CE V+fRJx+ZP7q/Ro9EzMw45GOU4UEs9EckimfJGYXoIDidPDm9YxvnjVFfj6H561GL bQ3Pv1WfT22HKJRR+DtpOBea4MnSENXTztBBBjErkVCS+K++z7TsU+GeEjGlqnYz GYMBknseWfwzJ1+fpfBZHUipl6pTKhjL5e4X6OKO4TVpsQ== -----END CERTIFICATE-----Generated at Sun Jan 25 19:37:23 2026 by rpki-client