This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/08/37ebe6-8bfe-4c1f-a183-83d648f79746/1/qWDaJi7-HtlVb3Xl5PxsvmKMB8k.roa File: qWDaJi7-HtlVb3Xl5PxsvmKMB8k.roa (raw, json) Hash identifier: 4xRLo8VKIVfI3IDuIP7QEpi/lDu2jak1ZGDJFKL7egg= Subject key identifier: A9:60:DA:26:2E:FE:1E:D9:55:6F:75:E5:E4:FC:6C:BE:62:8C:07:C9 Certificate issuer: /CN=568fe35cc962633a2757af10a0e6e8ab6d01f4c9 Certificate serial: 019B7E37F2CFCFE09770EE708E168A9B72CF Authority key identifier: 56:8F:E3:5C:C9:62:63:3A:27:57:AF:10:A0:E6:E8:AB:6D:01:F4:C9 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Vo_jXMliYzonV68QoOboq20B9Mk.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/08/37ebe6-8bfe-4c1f-a183-83d648f79746/1/qWDaJi7-HtlVb3Xl5PxsvmKMB8k.roa Signing time: Fri 02 Jan 2026 10:19:14 +0000 ROA not before: Fri 02 Jan 2026 10:19:14 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 65550 IP address blocks: 81.8.34.0/24 maxlen: 24 81.8.35.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/08/37ebe6-8bfe-4c1f-a183-83d648f79746/1/Vo_jXMliYzonV68QoOboq20B9Mk.crl rsync://rpki.ripe.net/repository/DEFAULT/08/37ebe6-8bfe-4c1f-a183-83d648f79746/1/Vo_jXMliYzonV68QoOboq20B9Mk.mft rsync://rpki.ripe.net/repository/DEFAULT/Vo_jXMliYzonV68QoOboq20B9Mk.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 13:21:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7e:37:f2:cf:cf:e0:97:70:ee:70:8e:16:8a:9b:72:cf Signature Algorithm: sha256WithRSAEncryption Issuer: CN=568fe35cc962633a2757af10a0e6e8ab6d01f4c9 Validity Not Before: Jan 2 10:19:14 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=a960da262efe1ed9556f75e5e4fc6cbe628c07c9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:4f:8e:b7:35:95:75:06:3c:e3:9b:fc:bb:54: 76:8d:0f:5c:c6:79:d2:67:59:3a:5a:22:93:9a:a9: 36:ea:31:f1:00:a4:70:c6:10:08:68:4e:d9:34:26: 4c:32:79:a9:5c:5c:30:ce:1a:e9:9b:62:83:8a:2c: e2:24:3c:37:86:bc:60:0e:69:02:73:04:9e:5f:e8: 0c:3b:fa:0b:0f:16:fe:ec:58:ae:c9:02:c7:cf:66: 86:ab:e0:da:61:79:7f:9c:b1:f4:3f:83:22:a4:bc: f7:bc:7b:3b:56:f0:6b:91:bc:92:b3:9a:c4:2e:c2: 36:90:60:a9:18:87:0f:60:c8:b6:9a:a3:42:9c:c6: af:98:c7:2c:e7:af:26:66:c1:3f:90:51:7a:0a:3e: b2:e5:83:e7:9b:7e:61:eb:65:cb:87:a6:47:76:fd: c9:0a:6e:78:94:d5:79:7b:6e:f9:e5:af:7b:15:8f: 36:db:4c:0c:9d:11:7b:c2:d1:32:68:24:0e:d6:f0: b2:22:96:21:f8:39:ea:a4:77:84:c2:d5:75:79:d7: 47:32:b4:e8:22:8c:87:64:7e:9c:ca:0c:b3:ba:bf: 02:7d:40:02:2f:3e:64:bf:e8:9c:77:93:1f:c2:f0: f9:70:f0:a8:77:95:46:dd:83:39:39:dd:57:a5:6f: 15:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A9:60:DA:26:2E:FE:1E:D9:55:6F:75:E5:E4:FC:6C:BE:62:8C:07:C9 X509v3 Authority Key Identifier: keyid:56:8F:E3:5C:C9:62:63:3A:27:57:AF:10:A0:E6:E8:AB:6D:01:F4:C9 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Vo_jXMliYzonV68QoOboq20B9Mk.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/08/37ebe6-8bfe-4c1f-a183-83d648f79746/1/qWDaJi7-HtlVb3Xl5PxsvmKMB8k.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/08/37ebe6-8bfe-4c1f-a183-83d648f79746/1/Vo_jXMliYzonV68QoOboq20B9Mk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 81.8.34.0/23 Signature Algorithm: sha256WithRSAEncryption 43:7d:4b:f4:31:d0:49:6b:97:9a:5d:57:aa:ab:ea:bf:27:7a: 9d:ba:69:77:44:66:93:2c:1b:84:bd:e9:90:cc:5d:89:49:aa: 33:0e:58:ce:ca:06:ad:e9:c8:d6:a1:02:64:2d:94:c5:77:41: 53:63:2a:53:ce:52:fc:d1:2f:ef:f5:e5:b5:12:03:0b:10:b3: fc:6c:3a:c1:12:42:1a:ba:1c:a1:b5:9b:3f:cd:e0:f1:7e:39: 91:f2:d1:69:b5:65:87:4b:a4:4d:d2:c8:76:a5:e5:c0:28:f4: cd:78:f2:79:27:29:e9:65:93:95:0f:11:bc:21:fb:a4:c8:5f: 69:e8:20:9b:c6:8d:91:48:a8:e2:4d:87:f0:b2:d2:56:71:f9: 70:4a:aa:60:26:0e:c3:06:09:c7:8d:14:cb:70:98:4c:1a:2d: eb:7d:bb:62:0b:39:70:80:d2:f1:00:ff:12:7b:90:f4:bb:23: b6:6d:a3:4e:c8:c3:21:9e:c2:e5:b4:ac:4d:fb:12:2d:0b:4b: b9:05:c5:ee:de:5b:69:a2:4b:be:94:53:34:31:e6:05:f6:2c: 93:fd:a2:9b:63:54:b8:d2:10:6a:17:a6:3f:62:a0:6b:70:de: d7:86:22:db:54:ac:ba:88:db:61:88:fb:76:5e:11:2e:73:05: 5b:0d:2a:0f -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt+N/LPz+CXcO5wjhaKm3LPMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDU2OGZlMzVjYzk2MjYzM2EyNzU3YWYxMGEwZTZlOGFiNmQw MWY0YzkwHhcNMjYwMTAyMTAxOTE0WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhhOTYwZGEyNjJlZmUxZWQ5NTU2Zjc1ZTVlNGZjNmNiZTYyOGMwN2M5MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwE+OtzWVdQY845v8u1R2jQ9cxnnS Z1k6WiKTmqk26jHxAKRwxhAIaE7ZNCZMMnmpXFwwzhrpm2KDiiziJDw3hrxgDmkC cwSeX+gMO/oLDxb+7FiuyQLHz2aGq+DaYXl/nLH0P4MipLz3vHs7VvBrkbySs5rE LsI2kGCpGIcPYMi2mqNCnMavmMcs568mZsE/kFF6Cj6y5YPnm35h62XLh6ZHdv3J Cm54lNV5e2755a97FY8220wMnRF7wtEyaCQO1vCyIpYh+DnqpHeEwtV1eddHMrTo IoyHZH6cygyzur8CfUACLz5kv+icd5MfwvD5cPCod5VG3YM5Od1XpW8VowIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFKlg2iYu/h7ZVW915eT8bL5ijAfJMB8GA1UdIwQY MBaAFFaP41zJYmM6J1evEKDm6KttAfTJMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvVm9falhNbGlZem9uVjY4UW9PYm9xMjBCOU1rLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wOC8zN2ViZTYtOGJmZS00YzFmLWExODMt ODNkNjQ4Zjc5NzQ2LzEvcVdEYUppNy1IdGxWYjNYbDVQeHN2bUtNQjhrLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wOC8zN2ViZTYtOGJmZS00YzFmLWExODMtODNkNjQ4Zjc5NzQ2 LzEvVm9falhNbGlZem9uVjY4UW9PYm9xMjBCOU1rLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBUQgiMA0G CSqGSIb3DQEBCwUAA4IBAQBDfUv0MdBJa5eaXVeqq+q/J3qduml3RGaTLBuEvemQ zF2JSaozDljOygat6cjWoQJkLZTFd0FTYypTzlL80S/v9eW1EgMLELP8bDrBEkIa uhyhtZs/zeDxfjmR8tFptWWHS6RN0sh2peXAKPTNePJ5JynpZZOVDxG8IfukyF9p 6CCbxo2RSKjiTYfwstJWcflwSqpgJg7DBgnHjRTLcJhMGi3rfbtiCzlwgNLxAP8S e5D0uyO2baNOyMMhnsLltKxN+xItC0u5BcXu3ltpoku+lFM0MeYF9iyT/aKbY1S4 0hBqF6Y/YqBrcN7XhiLbVKy6iNthiPt2XhEucwVbDSoP -----END CERTIFICATE-----Generated at Sun Jan 25 20:46:49 2026 by rpki-client