This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/07/821152-9f13-4c09-9dcd-45bbb23a15d8/1/qsejt5iw_nC2cpa2gTFa-6x-D30.roa File: qsejt5iw_nC2cpa2gTFa-6x-D30.roa (raw, json) Hash identifier: OQehKpZjdvH5fT9tftK+VPDJxCO7SZpTNsO/1LiDTxg= Subject key identifier: AA:C7:A3:B7:98:B0:FE:70:B6:72:96:B6:81:31:5A:FB:AC:7E:0F:7D Certificate issuer: /CN=2e1620890f700f012b0ba60172314e3c85919513 Certificate serial: 019B7F1589A96E3F69CF885058E89607B476 Authority key identifier: 2E:16:20:89:0F:70:0F:01:2B:0B:A6:01:72:31:4E:3C:85:91:95:13 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/LhYgiQ9wDwErC6YBcjFOPIWRlRM.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/07/821152-9f13-4c09-9dcd-45bbb23a15d8/1/qsejt5iw_nC2cpa2gTFa-6x-D30.roa Signing time: Fri 02 Jan 2026 14:21:16 +0000 ROA not before: Fri 02 Jan 2026 14:21:16 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 24634 IP address blocks: 80.81.144.0/20 maxlen: 24 92.62.160.0/20 maxlen: 24 141.105.80.0/20 maxlen: 24 185.3.20.0/22 maxlen: 24 195.112.192.0/19 maxlen: 24 195.112.205.0/24 maxlen: 24 212.28.224.0/19 maxlen: 24 2a00:16e8::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/07/821152-9f13-4c09-9dcd-45bbb23a15d8/1/LhYgiQ9wDwErC6YBcjFOPIWRlRM.crl rsync://rpki.ripe.net/repository/DEFAULT/07/821152-9f13-4c09-9dcd-45bbb23a15d8/1/LhYgiQ9wDwErC6YBcjFOPIWRlRM.mft rsync://rpki.ripe.net/repository/DEFAULT/LhYgiQ9wDwErC6YBcjFOPIWRlRM.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 22:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7f:15:89:a9:6e:3f:69:cf:88:50:58:e8:96:07:b4:76 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2e1620890f700f012b0ba60172314e3c85919513 Validity Not Before: Jan 2 14:21:16 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=aac7a3b798b0fe70b67296b681315afbac7e0f7d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:39:70:ff:2d:05:c1:bc:a0:72:89:9b:76:f8: dc:ba:00:05:8d:ed:5f:10:27:1d:72:45:ce:ff:d6: a9:42:7f:4d:3b:ed:cf:d6:f7:7e:e1:44:a7:22:72: 26:db:fd:21:7e:8e:05:6d:bb:13:e4:82:e1:d5:64: f3:11:ce:68:17:c5:e4:03:ff:df:26:25:da:c7:1d: 55:b1:22:89:ee:e2:6c:4d:f3:ec:2e:ca:36:36:e7: 74:e4:f3:eb:8d:07:4f:49:ff:9a:c0:0b:be:a5:e1: 14:5e:f6:1f:56:52:d2:c2:49:cc:18:43:98:01:05: b4:be:48:08:1f:3d:15:8e:4f:77:3e:b7:14:fc:2c: 9c:5a:35:91:18:9b:86:8c:d0:0e:d9:4a:14:3a:61: 93:6f:c5:3b:47:53:79:6b:25:bc:30:d8:1c:cf:d8: 32:f6:7b:d4:80:00:41:9f:cd:9a:f0:23:19:1c:80: fe:ae:b3:8e:bf:ce:2b:d8:68:63:da:e4:58:d9:9a: 92:b6:d2:48:c0:cc:f0:de:7e:05:5c:ed:66:92:c2: 22:4a:8b:23:c7:f2:d7:b9:a4:2f:e9:91:bc:3a:73: a0:c1:cb:d6:02:45:76:06:3c:a4:ca:52:e7:15:4a: c4:11:82:68:4e:e9:9f:b5:12:4f:6e:54:0e:ea:fc: da:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AA:C7:A3:B7:98:B0:FE:70:B6:72:96:B6:81:31:5A:FB:AC:7E:0F:7D X509v3 Authority Key Identifier: keyid:2E:16:20:89:0F:70:0F:01:2B:0B:A6:01:72:31:4E:3C:85:91:95:13 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/LhYgiQ9wDwErC6YBcjFOPIWRlRM.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/07/821152-9f13-4c09-9dcd-45bbb23a15d8/1/qsejt5iw_nC2cpa2gTFa-6x-D30.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/07/821152-9f13-4c09-9dcd-45bbb23a15d8/1/LhYgiQ9wDwErC6YBcjFOPIWRlRM.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 80.81.144.0/20 92.62.160.0/20 141.105.80.0/20 185.3.20.0/22 195.112.192.0/19 212.28.224.0/19 IPv6: 2a00:16e8::/32 Signature Algorithm: sha256WithRSAEncryption 59:a7:d1:7f:8a:37:7f:d2:45:a8:d5:40:b6:54:cc:c2:d9:74: 80:f3:f2:4f:9c:14:c5:26:4f:0d:00:1f:ef:59:d3:13:c4:c8: a8:48:0e:01:5b:eb:d0:e3:92:2b:75:5b:f2:35:18:13:ee:88: 0a:a2:cc:5c:84:97:f7:88:09:bc:72:6a:d9:66:1f:f8:01:17: a6:69:92:d5:ef:c2:3a:fb:78:a3:61:a3:8c:b8:d7:59:59:7e: f1:32:c9:9b:ec:be:96:b6:dd:d7:e2:2b:73:a8:66:b3:01:fb: 67:2d:bb:0a:0a:8d:6f:00:d9:70:db:8d:db:41:fd:a8:95:1d: b9:4f:8d:f5:93:e1:7f:0a:48:a7:e9:52:60:db:cb:b7:77:de: f9:83:24:21:06:18:58:43:98:74:b3:3f:e3:c1:49:67:13:80: a4:80:fc:3b:e2:4d:27:2f:88:35:e9:78:27:9f:45:94:01:75: 1b:90:f1:db:93:53:aa:f2:31:92:de:79:14:6a:d5:12:80:1c: eb:02:b6:bf:a7:a0:76:9e:1c:6a:56:b0:f4:61:49:8e:6d:9e: 1b:11:33:17:ca:5d:31:75:8c:00:7b:28:c8:66:2d:cd:6a:8d: 59:87:05:4f:55:0d:2b:40:15:bc:c3:f8:10:59:75:8d:16:ca: 1d:b0:4a:1d -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgISAZt/FYmpbj9pz4hQWOiWB7R2MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJlMTYyMDg5MGY3MDBmMDEyYjBiYTYwMTcyMzE0ZTNjODU5 MTk1MTMwHhcNMjYwMTAyMTQyMTE2WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhhYWM3YTNiNzk4YjBmZTcwYjY3Mjk2YjY4MTMxNWFmYmFjN2UwZjdkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArzlw/y0FwbygcombdvjcugAFje1f ECcdckXO/9apQn9NO+3P1vd+4USnInIm2/0hfo4FbbsT5ILh1WTzEc5oF8XkA//f JiXaxx1VsSKJ7uJsTfPsLso2Nud05PPrjQdPSf+awAu+peEUXvYfVlLSwknMGEOY AQW0vkgIHz0Vjk93PrcU/CycWjWRGJuGjNAO2UoUOmGTb8U7R1N5ayW8MNgcz9gy 9nvUgABBn82a8CMZHID+rrOOv84r2Ghj2uRY2ZqSttJIwMzw3n4FXO1mksIiSosj x/LXuaQv6ZG8OnOgwcvWAkV2BjykylLnFUrEEYJoTumftRJPblQO6vza0wIDAQAB o4ICNjCCAjIwHQYDVR0OBBYEFKrHo7eYsP5wtnKWtoExWvusfg99MB8GA1UdIwQY MBaAFC4WIIkPcA8BKwumAXIxTjyFkZUTMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvTGhZZ2lROXdEd0VyQzZZQmNqRk9QSVdSbFJNLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wNy84MjExNTItOWYxMy00YzA5LTlkY2Qt NDViYmIyM2ExNWQ4LzEvcXNlanQ1aXdfbkMyY3BhMmdURmEtNngtRDMwLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wNy84MjExNTItOWYxMy00YzA5LTlkY2QtNDViYmIyM2ExNWQ4 LzEvTGhZZ2lROXdEd0VyQzZZQmNqRk9QSVdSbFJNLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMEwGCCsGAQUFBwEHAQH/BD0wOzAqBAIAATAkAwQEUFGQAwQE XD6gAwQEjWlQAwQCuQMUAwQFw3DAAwQF1BzgMA0EAgACMAcDBQAqABboMA0GCSqG SIb3DQEBCwUAA4IBAQBZp9F/ijd/0kWo1UC2VMzC2XSA8/JPnBTFJk8NAB/vWdMT xMioSA4BW+vQ45IrdVvyNRgT7ogKosxchJf3iAm8cmrZZh/4ARemaZLV78I6+3ij YaOMuNdZWX7xMsmb7L6Wtt3X4itzqGazAftnLbsKCo1vANlw243bQf2olR25T431 k+F/Ckin6VJg28u3d975gyQhBhhYQ5h0sz/jwUlnE4CkgPw74k0nL4g16Xgnn0WU AXUbkPHbk1Oq8jGS3nkUatUSgBzrAra/p6B2nhxqVrD0YUmObZ4bETMXyl0xdYwA eyjIZi3Nao1ZhwVPVQ0rQBW8w/gQWXWNFsodsEod -----END CERTIFICATE-----Generated at Mon Jan 26 07:42:46 2026 by rpki-client