This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4d/13b0cd-5992-4561-9729-b30fe058d162/1/C2qg2Q6lbBzdlBnvS6yqtgeY3uk.roa File: C2qg2Q6lbBzdlBnvS6yqtgeY3uk.roa (raw, json) Hash identifier: ijJYNodWqQV5uQq7Q5J14Dvs1Q1uxMUsTbwAGiSXPAc= Subject key identifier: 0B:6A:A0:D9:0E:A5:6C:1C:DD:94:19:EF:4B:AC:AA:B6:07:98:DE:E9 Certificate issuer: /CN=92e0c2470eb0a69b4efa585b9cb2c067612b379e Certificate serial: 019B77594F0E5F4011A46EDC2511A9028C9E Authority key identifier: 92:E0:C2:47:0E:B0:A6:9B:4E:FA:58:5B:9C:B2:C0:67:61:2B:37:9E Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kuDCRw6wpptO-lhbnLLAZ2ErN54.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4d/13b0cd-5992-4561-9729-b30fe058d162/1/C2qg2Q6lbBzdlBnvS6yqtgeY3uk.roa Signing time: Thu 01 Jan 2026 02:18:20 +0000 ROA not before: Thu 01 Jan 2026 02:18:20 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 207411 IP address blocks: 2001:678:c38::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4d/13b0cd-5992-4561-9729-b30fe058d162/1/kuDCRw6wpptO-lhbnLLAZ2ErN54.crl rsync://rpki.ripe.net/repository/DEFAULT/4d/13b0cd-5992-4561-9729-b30fe058d162/1/kuDCRw6wpptO-lhbnLLAZ2ErN54.mft rsync://rpki.ripe.net/repository/DEFAULT/kuDCRw6wpptO-lhbnLLAZ2ErN54.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 12 Jan 2026 18:00:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:77:59:4f:0e:5f:40:11:a4:6e:dc:25:11:a9:02:8c:9e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=92e0c2470eb0a69b4efa585b9cb2c067612b379e Validity Not Before: Jan 1 02:18:20 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=0b6aa0d90ea56c1cdd9419ef4bacaab60798dee9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:96:50:cc:81:30:a2:a6:73:0e:fd:39:b0:a7: 77:c4:12:11:a0:df:78:6f:1d:31:a4:11:4b:9e:3f: 14:4e:af:e5:34:8f:92:93:a6:97:f7:02:49:93:fa: 89:5f:65:5b:2c:28:9b:81:32:b8:ce:3e:d8:5b:b0: 8b:7f:ea:55:cf:23:ea:0a:a9:85:d4:d1:ec:0a:26: 69:bf:09:18:e3:f6:58:67:e1:1e:01:9f:d8:8a:5e: 6a:37:05:0b:7e:7a:5d:a4:50:63:a7:2f:eb:01:44: 39:c9:61:06:8d:08:df:a6:fc:14:01:cc:02:8e:9a: 37:8c:a5:95:3c:e4:b3:44:3e:f6:ca:17:62:eb:5c: 21:a8:f9:b8:20:60:e3:5c:25:14:f0:4d:43:cf:bd: 53:96:f2:35:09:1e:17:ca:ef:fd:19:5b:ab:00:f9: 06:97:86:6b:9e:c7:88:d9:2d:16:c1:dd:ed:9d:d1: f3:fb:00:1f:7f:91:f8:f6:97:e6:b1:73:1a:fa:35: 27:30:45:e2:4d:aa:7f:00:40:93:50:27:4d:42:ce: 44:59:3e:0d:9d:0d:8e:77:56:40:ec:36:eb:81:46: 54:6c:4a:4a:06:24:be:ca:88:69:4f:35:ed:1d:e3: dd:e0:d0:af:ad:77:8f:3f:62:dc:74:5a:7d:7b:ca: 4e:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0B:6A:A0:D9:0E:A5:6C:1C:DD:94:19:EF:4B:AC:AA:B6:07:98:DE:E9 X509v3 Authority Key Identifier: keyid:92:E0:C2:47:0E:B0:A6:9B:4E:FA:58:5B:9C:B2:C0:67:61:2B:37:9E X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kuDCRw6wpptO-lhbnLLAZ2ErN54.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/13b0cd-5992-4561-9729-b30fe058d162/1/C2qg2Q6lbBzdlBnvS6yqtgeY3uk.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/13b0cd-5992-4561-9729-b30fe058d162/1/kuDCRw6wpptO-lhbnLLAZ2ErN54.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:678:c38::/48 Signature Algorithm: sha256WithRSAEncryption 02:8f:4c:da:0c:f8:3c:b2:8e:d6:d2:82:05:0a:12:51:17:83: 8d:fd:07:30:54:28:3e:dd:96:5c:0f:99:af:88:db:0a:4c:42: a5:2c:05:f5:0f:25:5b:04:34:e8:4c:9e:82:7e:d0:c7:60:3d: 69:84:91:1b:1f:0c:98:b5:5b:1e:f4:f6:bc:d3:19:15:3a:34: 45:63:a5:14:71:bf:88:33:83:35:d9:66:8d:dc:47:fa:fc:e5: b1:7d:97:2e:c4:b7:bd:26:e0:fe:d7:d3:c9:40:1e:2b:f3:5e: 85:07:a0:18:98:5d:17:be:39:b5:99:a6:8c:ee:cd:8b:15:b2: ca:15:96:0f:34:a9:25:27:c9:56:86:af:ee:c0:a9:ba:65:af: c7:79:84:d7:2a:a0:82:b0:d0:a0:69:37:9e:d7:1a:61:73:dc: d1:46:6a:eb:ab:c1:ea:fe:c0:02:9a:f7:da:9f:d8:80:4b:71: 6a:67:cb:04:79:0e:f2:26:2c:21:71:81:db:e7:ab:96:08:5d: dd:30:72:fa:f9:9c:a9:4a:f9:1b:de:10:c6:9b:61:be:aa:30: fb:cd:3a:4b:6b:74:d8:e8:05:8b:e9:d5:b6:c1:a7:15:17:a0: e2:fa:fc:00:b8:5a:e7:e7:dd:36:6a:34:60:eb:17:9f:0c:9b: 3b:ac:96:c0 -----BEGIN CERTIFICATE----- MIIFADCCA+igAwIBAgISAZt3WU8OX0ARpG7cJRGpAoyeMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDkyZTBjMjQ3MGViMGE2OWI0ZWZhNTg1YjljYjJjMDY3NjEy YjM3OWUwHhcNMjYwMTAxMDIxODIwWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygwYjZhYTBkOTBlYTU2YzFjZGQ5NDE5ZWY0YmFjYWFiNjA3OThkZWU5MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0pZQzIEwoqZzDv05sKd3xBIRoN94 bx0xpBFLnj8UTq/lNI+Sk6aX9wJJk/qJX2VbLCibgTK4zj7YW7CLf+pVzyPqCqmF 1NHsCiZpvwkY4/ZYZ+EeAZ/Yil5qNwULfnpdpFBjpy/rAUQ5yWEGjQjfpvwUAcwC jpo3jKWVPOSzRD72yhdi61whqPm4IGDjXCUU8E1Dz71TlvI1CR4Xyu/9GVurAPkG l4ZrnseI2S0Wwd3tndHz+wAff5H49pfmsXMa+jUnMEXiTap/AECTUCdNQs5EWT4N nQ2Od1ZA7DbrgUZUbEpKBiS+yohpTzXtHePd4NCvrXePP2LcdFp9e8pOeQIDAQAB o4ICDDCCAggwHQYDVR0OBBYEFAtqoNkOpWwc3ZQZ70usqrYHmN7pMB8GA1UdIwQY MBaAFJLgwkcOsKabTvpYW5yywGdhKzeeMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQva3VEQ1J3NndwcHRPLWxoYm5MTEFaMkVyTjU0LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80ZC8xM2IwY2QtNTk5Mi00NTYxLTk3Mjkt YjMwZmUwNThkMTYyLzEvQzJxZzJRNmxiQnpkbEJudlM2eXF0Z2VZM3VrLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC80ZC8xM2IwY2QtNTk5Mi00NTYxLTk3MjktYjMwZmUwNThkMTYy LzEva3VEQ1J3NndwcHRPLWxoYm5MTEFaMkVyTjU0LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAIAEGeAw4 MA0GCSqGSIb3DQEBCwUAA4IBAQACj0zaDPg8so7W0oIFChJRF4ON/QcwVCg+3ZZc D5mviNsKTEKlLAX1DyVbBDToTJ6CftDHYD1phJEbHwyYtVse9Pa80xkVOjRFY6UU cb+IM4M12WaN3Ef6/OWxfZcuxLe9JuD+19PJQB4r816FB6AYmF0Xvjm1maaM7s2L FbLKFZYPNKklJ8lWhq/uwKm6Za/HeYTXKqCCsNCgaTee1xphc9zRRmrrq8Hq/sAC mvfan9iAS3FqZ8sEeQ7yJiwhcYHb56uWCF3dMHL6+ZypSvkb3hDGm2G+qjD7zTpL a3TY6AWL6dW2wacVF6Di+vwAuFrn5902ajRg6xefDJs7rJbA -----END CERTIFICATE-----Generated at Mon Jan 12 02:17:19 2026 by rpki-client