This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/01/627e60-00a6-4d26-b93a-ef73b7b4ca3c/1/kq1xYxFloxajo4ocaHFVoXWbLDY.roa File: kq1xYxFloxajo4ocaHFVoXWbLDY.roa (raw, json) Hash identifier: 5lt2etlP+aPgpUw9DddCPVJWXAZYWqwLCkqKVkNEao4= Subject key identifier: 92:AD:71:63:11:65:A3:16:A3:A3:8A:1C:68:71:55:A1:75:9B:2C:36 Certificate issuer: /CN=b9b350a0ae32e73e660c416c3f1406edd3615f82 Certificate serial: 019B7BA521ADC1E23A493CBF3F3D72800FA6 Authority key identifier: B9:B3:50:A0:AE:32:E7:3E:66:0C:41:6C:3F:14:06:ED:D3:61:5F:82 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ubNQoK4y5z5mDEFsPxQG7dNhX4I.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/01/627e60-00a6-4d26-b93a-ef73b7b4ca3c/1/kq1xYxFloxajo4ocaHFVoXWbLDY.roa Signing time: Thu 01 Jan 2026 22:19:38 +0000 ROA not before: Thu 01 Jan 2026 22:19:38 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 51275 IP address blocks: 89.107.249.0/24 maxlen: 24 109.232.200.0/21 maxlen: 21 109.232.200.0/24 maxlen: 24 109.232.201.0/24 maxlen: 24 109.232.202.0/24 maxlen: 24 193.23.138.0/24 maxlen: 24 193.23.139.0/24 maxlen: 24 2a00:1608::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/01/627e60-00a6-4d26-b93a-ef73b7b4ca3c/1/ubNQoK4y5z5mDEFsPxQG7dNhX4I.crl rsync://rpki.ripe.net/repository/DEFAULT/01/627e60-00a6-4d26-b93a-ef73b7b4ca3c/1/ubNQoK4y5z5mDEFsPxQG7dNhX4I.mft rsync://rpki.ripe.net/repository/DEFAULT/ubNQoK4y5z5mDEFsPxQG7dNhX4I.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 16:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7b:a5:21:ad:c1:e2:3a:49:3c:bf:3f:3d:72:80:0f:a6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b9b350a0ae32e73e660c416c3f1406edd3615f82 Validity Not Before: Jan 1 22:19:38 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=92ad71631165a316a3a38a1c687155a1759b2c36 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:c6:df:a9:3e:c2:dd:b7:2c:01:cc:b9:35:6b: 0f:19:4c:32:91:ec:c2:36:0d:ef:a7:00:51:82:b3: 83:42:01:06:09:45:8f:a3:61:10:fd:63:9f:51:60: 46:8f:db:f0:f5:8a:68:03:95:42:a2:57:b8:9f:6b: 66:f4:1f:2a:7d:2b:ad:23:f4:19:a1:65:39:8b:17: cc:6f:25:6e:06:2a:d5:54:34:f8:56:3f:3c:3d:9a: 24:22:9e:ab:74:ab:3e:f8:54:0e:c1:5b:9b:b2:20: 5a:66:30:a0:c6:9a:39:7b:78:5e:d7:18:9a:83:25: b3:24:08:7c:98:23:25:81:0e:6d:8f:bd:d5:f8:60: 50:fa:1e:d6:ea:fd:5a:89:1a:d2:ee:c2:25:62:c6: 4b:db:98:35:ee:af:83:6a:e6:be:3f:68:f7:cc:50: 7d:8b:de:c5:75:fb:3c:b2:f2:d4:74:09:ab:4b:63: 57:93:75:61:d2:10:2f:ea:1d:d9:b9:5a:a7:a8:8d: f4:e4:c3:1a:61:c1:61:7c:38:95:b3:99:82:ab:cd: f1:e5:6f:77:0c:45:10:a2:70:2b:72:67:b8:23:2f: 71:47:fe:c3:17:2d:00:62:ff:3d:ab:3e:a4:3a:3d: 92:1d:af:ec:fa:93:1a:80:e1:fe:b0:90:a0:1e:14: 76:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 92:AD:71:63:11:65:A3:16:A3:A3:8A:1C:68:71:55:A1:75:9B:2C:36 X509v3 Authority Key Identifier: keyid:B9:B3:50:A0:AE:32:E7:3E:66:0C:41:6C:3F:14:06:ED:D3:61:5F:82 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ubNQoK4y5z5mDEFsPxQG7dNhX4I.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/01/627e60-00a6-4d26-b93a-ef73b7b4ca3c/1/kq1xYxFloxajo4ocaHFVoXWbLDY.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/01/627e60-00a6-4d26-b93a-ef73b7b4ca3c/1/ubNQoK4y5z5mDEFsPxQG7dNhX4I.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 89.107.249.0/24 109.232.200.0/21 193.23.138.0/23 IPv6: 2a00:1608::/32 Signature Algorithm: sha256WithRSAEncryption 5e:49:5f:ef:d5:2d:cd:fe:4e:f4:17:85:f0:da:0a:f0:7c:de: 3e:f8:c5:00:bb:d5:c6:07:18:39:b4:ce:f3:cf:60:5e:6b:85: fe:e4:8e:c0:75:e6:ca:20:50:b5:95:6b:c3:bd:de:7d:1d:51: ee:9a:ec:8e:a3:db:43:02:5b:cc:d2:7c:b8:a9:ca:b7:c2:b5: 16:74:a9:d1:ae:01:54:4f:20:4c:78:fe:08:81:b0:5e:fb:11: 89:ed:7c:05:de:f0:6e:ab:3a:00:b3:be:74:9b:53:d0:e5:e8: d7:5b:33:3b:af:e3:b5:5f:62:16:a1:6d:0c:37:13:b2:ff:20: fd:d8:18:f3:f5:a8:c8:c0:a1:4e:e0:3c:52:77:bb:26:85:d7: ac:f2:b0:93:cc:ed:64:a3:1f:b9:10:52:f5:58:e4:2d:13:55: 7b:eb:61:ec:f3:04:b4:0e:09:9e:cf:f4:6c:19:12:8a:26:68: 56:59:0b:5d:28:a5:d0:2b:dc:16:5b:34:75:96:db:a3:9f:07: 64:06:46:a9:7e:b6:82:8d:67:d3:51:99:1d:64:19:e5:ab:d5: aa:97:e5:fc:51:5f:d5:d6:da:8d:66:76:f1:00:a9:eb:58:02: 40:7a:3b:01:13:97:76:28:98:83:71:0e:c9:2f:e7:91:af:1c: 57:86:18:0a -----BEGIN CERTIFICATE----- MIIFGDCCBACgAwIBAgISAZt7pSGtweI6STy/Pz1ygA+mMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGI5YjM1MGEwYWUzMmU3M2U2NjBjNDE2YzNmMTQwNmVkZDM2 MTVmODIwHhcNMjYwMTAxMjIxOTM4WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg5MmFkNzE2MzExNjVhMzE2YTNhMzhhMWM2ODcxNTVhMTc1OWIyYzM2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAn8bfqT7C3bcsAcy5NWsPGUwykezC Ng3vpwBRgrODQgEGCUWPo2EQ/WOfUWBGj9vw9YpoA5VCole4n2tm9B8qfSutI/QZ oWU5ixfMbyVuBirVVDT4Vj88PZokIp6rdKs++FQOwVubsiBaZjCgxpo5e3he1xia gyWzJAh8mCMlgQ5tj73V+GBQ+h7W6v1aiRrS7sIlYsZL25g17q+Daua+P2j3zFB9 i97Fdfs8svLUdAmrS2NXk3Vh0hAv6h3ZuVqnqI305MMaYcFhfDiVs5mCq83x5W93 DEUQonArcme4Iy9xR/7DFy0AYv89qz6kOj2SHa/s+pMagOH+sJCgHhR29wIDAQAB o4ICJDCCAiAwHQYDVR0OBBYEFJKtcWMRZaMWo6OKHGhxVaF1myw2MB8GA1UdIwQY MBaAFLmzUKCuMuc+ZgxBbD8UBu3TYV+CMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvdWJOUW9LNHk1ejVtREVGc1B4UUc3ZE5oWDRJLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wMS82MjdlNjAtMDBhNi00ZDI2LWI5M2Et ZWY3M2I3YjRjYTNjLzEva3ExeFl4RmxveGFqbzRvY2FIRlZvWFdiTERZLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wMS82MjdlNjAtMDBhNi00ZDI2LWI5M2EtZWY3M2I3YjRjYTNj LzEvdWJOUW9LNHk1ejVtREVGc1B4UUc3ZE5oWDRJLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMDoGCCsGAQUFBwEHAQH/BCswKTAYBAIAATASAwQAWWv5AwQD bejIAwQBwReKMA0EAgACMAcDBQAqABYIMA0GCSqGSIb3DQEBCwUAA4IBAQBeSV/v 1S3N/k70F4Xw2grwfN4++MUAu9XGBxg5tM7zz2Bea4X+5I7AdebKIFC1lWvDvd59 HVHumuyOo9tDAlvM0ny4qcq3wrUWdKnRrgFUTyBMeP4IgbBe+xGJ7XwF3vBuqzoA s750m1PQ5ejXWzM7r+O1X2IWoW0MNxOy/yD92Bjz9ajIwKFO4DxSd7smhdes8rCT zO1kox+5EFL1WOQtE1V762Hs8wS0Dgmez/RsGRKKJmhWWQtdKKXQK9wWWzR1ltuj nwdkBkapfraCjWfTUZkdZBnlq9Wql+X8UV/V1tqNZnbxAKnrWAJAejsBE5d2KJiD cQ7JL+eRrxxXhhgK -----END CERTIFICATE-----Generated at Mon Jan 26 01:00:32 2026 by rpki-client