This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f9/143392-d868-4a26-8543-3aa2227badfe/1/Q9vzkSdQF14ioB3GAw9P4jbjWRM.roa File: Q9vzkSdQF14ioB3GAw9P4jbjWRM.roa (raw, json) Hash identifier: 07c/KOp4+Vb2VyrM0tZBqnClLw7pWpgvcj2JSiSJlc4= Subject key identifier: 43:DB:F3:91:27:50:17:5E:22:A0:1D:C6:03:0F:4F:E2:36:E3:59:13 Certificate issuer: /CN=5524b2e26dd3afcc5c1eac01f90263d201fbe099 Certificate serial: 019AE62A62FA413946261A9D490E809EC292 Authority key identifier: 55:24:B2:E2:6D:D3:AF:CC:5C:1E:AC:01:F9:02:63:D2:01:FB:E0:99 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VSSy4m3Tr8xcHqwB-QJj0gH74Jk.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f9/143392-d868-4a26-8543-3aa2227badfe/1/Q9vzkSdQF14ioB3GAw9P4jbjWRM.roa Signing time: Wed 03 Dec 2025 21:42:08 +0000 ROA not before: Wed 03 Dec 2025 21:42:08 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 0 IP address blocks: 2a13:4a80::/29 maxlen: 29 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f9/143392-d868-4a26-8543-3aa2227badfe/1/VSSy4m3Tr8xcHqwB-QJj0gH74Jk.crl rsync://rpki.ripe.net/repository/DEFAULT/f9/143392-d868-4a26-8543-3aa2227badfe/1/VSSy4m3Tr8xcHqwB-QJj0gH74Jk.mft rsync://rpki.ripe.net/repository/DEFAULT/VSSy4m3Tr8xcHqwB-QJj0gH74Jk.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 12:01:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:e6:2a:62:fa:41:39:46:26:1a:9d:49:0e:80:9e:c2:92 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5524b2e26dd3afcc5c1eac01f90263d201fbe099 Validity Not Before: Dec 3 21:42:08 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=43dbf3912750175e22a01dc6030f4fe236e35913 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:ea:96:b6:34:85:c5:95:5f:02:01:fd:cd:6f: 56:36:76:fe:ad:69:48:0c:f3:4d:c4:ec:34:ab:d5: 45:e1:4c:28:48:c4:28:a8:79:13:85:86:ba:4f:e3: 23:00:b9:4f:48:04:62:c5:cf:be:dc:8e:f4:b1:a9: ea:f1:dc:4f:94:de:7a:3e:8d:5d:ab:9d:28:a4:48: 1a:0b:db:d2:de:40:f0:4f:a5:cc:51:55:e5:f0:d9: e9:5b:13:a9:6d:70:cb:9f:e2:7f:d4:54:ff:38:5d: 53:ec:31:a2:14:63:f9:0c:bf:01:dd:f0:db:e0:f6: 61:89:c9:e5:27:f1:3e:fe:1d:18:0d:9b:70:1e:d5: 5d:de:7a:a3:4a:57:65:e9:22:16:d1:fb:4c:6e:bd: 3f:93:0b:bb:e7:25:5a:0c:4a:5f:30:b4:50:0b:45: 0f:8d:75:72:ac:11:22:44:5e:1d:e8:9b:ee:2b:46: 16:53:f9:72:42:32:10:12:de:f3:72:b9:55:69:84: e9:25:4d:a4:95:09:2b:8d:e2:ce:ab:27:62:11:b2: 82:6b:4b:cf:31:85:8c:fd:61:24:05:ff:97:3d:7a: f7:f8:79:29:61:3b:89:2d:04:79:8c:55:e8:ed:95: f9:da:fb:aa:81:2f:a5:42:4b:49:1c:05:e2:4e:69: 88:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 43:DB:F3:91:27:50:17:5E:22:A0:1D:C6:03:0F:4F:E2:36:E3:59:13 X509v3 Authority Key Identifier: keyid:55:24:B2:E2:6D:D3:AF:CC:5C:1E:AC:01:F9:02:63:D2:01:FB:E0:99 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VSSy4m3Tr8xcHqwB-QJj0gH74Jk.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f9/143392-d868-4a26-8543-3aa2227badfe/1/Q9vzkSdQF14ioB3GAw9P4jbjWRM.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/f9/143392-d868-4a26-8543-3aa2227badfe/1/VSSy4m3Tr8xcHqwB-QJj0gH74Jk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a13:4a80::/29 Signature Algorithm: sha256WithRSAEncryption 17:ed:1a:5b:47:f0:59:bc:7d:51:ae:20:91:49:dd:81:ae:24: 51:53:44:a7:98:6e:5b:ca:2e:31:ae:fd:f8:a6:5e:70:68:47: d1:59:fd:f2:4b:d6:6e:4f:a1:ca:74:8c:9a:e7:71:ce:5c:61: 34:67:a0:93:a6:d0:b5:32:1e:c1:82:67:8a:ee:4c:de:bb:a0: fe:2c:54:f9:c0:9b:bf:29:97:42:91:04:9f:50:f8:49:31:07: 9d:df:20:61:20:7d:23:7e:7c:5a:3b:7b:5b:ea:a3:85:10:32: f1:11:6d:a5:2e:67:fc:53:18:46:66:8f:f9:60:d7:82:b0:a8: a8:c6:08:53:f3:19:04:48:54:25:5f:11:0c:96:bc:06:8a:26: 40:14:df:14:77:55:c5:98:f8:ec:42:e6:e5:e2:f1:a7:01:ba: 14:59:62:73:41:7a:bf:ba:de:49:4c:87:b2:5d:1a:11:c7:c2: 47:03:57:6d:1f:05:97:bc:77:2f:8f:cc:d7:f8:01:b8:d0:b2: 18:3c:17:cd:ed:fa:5b:ae:76:fa:37:d3:af:a9:fb:4b:76:47: fa:62:52:14:7e:c1:f1:c6:09:49:ae:e1:19:ba:82:08:4a:41: 59:24:1c:91:8f:2a:2e:8e:cf:0f:1f:96:bd:ab:1a:fe:7d:2b: 34:2e:30:85 -----BEGIN CERTIFICATE----- MIIE/jCCA+agAwIBAgISAZrmKmL6QTlGJhqdSQ6AnsKSMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDU1MjRiMmUyNmRkM2FmY2M1YzFlYWMwMWY5MDI2M2QyMDFm YmUwOTkwHhcNMjUxMjAzMjE0MjA4WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg0M2RiZjM5MTI3NTAxNzVlMjJhMDFkYzYwMzBmNGZlMjM2ZTM1OTEzMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1+qWtjSFxZVfAgH9zW9WNnb+rWlI DPNNxOw0q9VF4UwoSMQoqHkThYa6T+MjALlPSARixc++3I70sanq8dxPlN56Po1d q50opEgaC9vS3kDwT6XMUVXl8NnpWxOpbXDLn+J/1FT/OF1T7DGiFGP5DL8B3fDb 4PZhicnlJ/E+/h0YDZtwHtVd3nqjSldl6SIW0ftMbr0/kwu75yVaDEpfMLRQC0UP jXVyrBEiRF4d6JvuK0YWU/lyQjIQEt7zcrlVaYTpJU2klQkrjeLOqydiEbKCa0vP MYWM/WEkBf+XPXr3+HkpYTuJLQR5jFXo7ZX52vuqgS+lQktJHAXiTmmIjwIDAQAB o4ICCjCCAgYwHQYDVR0OBBYEFEPb85EnUBdeIqAdxgMPT+I241kTMB8GA1UdIwQY MBaAFFUksuJt06/MXB6sAfkCY9IB++CZMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvVlNTeTRtM1RyOHhjSHF3Qi1RSmowZ0g3NEprLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mOS8xNDMzOTItZDg2OC00YTI2LTg1NDMt M2FhMjIyN2JhZGZlLzEvUTl2emtTZFFGMTRpb0IzR0F3OVA0amJqV1JNLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9mOS8xNDMzOTItZDg2OC00YTI2LTg1NDMtM2FhMjIyN2JhZGZl LzEvVlNTeTRtM1RyOHhjSHF3Qi1RSmowZ0g3NEprLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCAGCCsGAQUFBwEHAQH/BBEwDzANBAIAAjAHAwUDKhNKgDAN BgkqhkiG9w0BAQsFAAOCAQEAF+0aW0fwWbx9Ua4gkUndga4kUVNEp5huW8ouMa79 +KZecGhH0Vn98kvWbk+hynSMmudxzlxhNGegk6bQtTIewYJniu5M3rug/ixU+cCb vymXQpEEn1D4STEHnd8gYSB9I358Wjt7W+qjhRAy8RFtpS5n/FMYRmaP+WDXgrCo qMYIU/MZBEhUJV8RDJa8BoomQBTfFHdVxZj47ELm5eLxpwG6FFlic0F6v7reSUyH sl0aEcfCRwNXbR8Fl7x3L4/M1/gBuNCyGDwXze36W652+jfTr6n7S3ZH+mJSFH7B 8cYJSa7hGbqCCEpBWSQckY8qLo7PDx+Wvasa/n0rNC4whQ== -----END CERTIFICATE-----Generated at Sat Dec 6 17:18:07 2025 by rpki-client