This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0f/5b0702-16e7-4627-ae19-4b3b1b63b6ab/1/Q03PdSGrQJ1a3WGfZ-bc5I0qaws.roa File: Q03PdSGrQJ1a3WGfZ-bc5I0qaws.roa (raw, json) Hash identifier: 2OnqRPuaN0v+Zan9ND6ygbAA1lh/p4DcTNqdYBIoSGo= Subject key identifier: 43:4D:CF:75:21:AB:40:9D:5A:DD:61:9F:67:E6:DC:E4:8D:2A:6B:0B Certificate issuer: /CN=ed30a131718560a34ab3493884e858ec431f6ad1 Certificate serial: 019B7B3622EC713007D12DD0FE9A2451DC4E Authority key identifier: ED:30:A1:31:71:85:60:A3:4A:B3:49:38:84:E8:58:EC:43:1F:6A:D1 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/7TChMXGFYKNKs0k4hOhY7EMfatE.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0f/5b0702-16e7-4627-ae19-4b3b1b63b6ab/1/Q03PdSGrQJ1a3WGfZ-bc5I0qaws.roa Signing time: Thu 01 Jan 2026 20:18:24 +0000 ROA not before: Thu 01 Jan 2026 20:18:24 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 60631 IP address blocks: 45.139.10.0/24 maxlen: 24 45.139.11.0/24 maxlen: 24 185.105.239.0/24 maxlen: 24 185.231.112.0/24 maxlen: 24 185.231.115.0/24 maxlen: 24 194.147.142.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0f/5b0702-16e7-4627-ae19-4b3b1b63b6ab/1/7TChMXGFYKNKs0k4hOhY7EMfatE.crl rsync://rpki.ripe.net/repository/DEFAULT/0f/5b0702-16e7-4627-ae19-4b3b1b63b6ab/1/7TChMXGFYKNKs0k4hOhY7EMfatE.mft rsync://rpki.ripe.net/repository/DEFAULT/7TChMXGFYKNKs0k4hOhY7EMfatE.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 11:00:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7b:36:22:ec:71:30:07:d1:2d:d0:fe:9a:24:51:dc:4e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ed30a131718560a34ab3493884e858ec431f6ad1 Validity Not Before: Jan 1 20:18:24 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=434dcf7521ab409d5add619f67e6dce48d2a6b0b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:04:57:9d:ec:36:e5:b1:e1:ca:ea:c7:0b:f0: 2a:1e:7b:92:61:3e:26:0c:b8:f7:22:84:c5:04:a7: d4:2d:fd:60:02:d7:45:cc:e7:d5:14:6a:da:d5:e3: 19:f1:02:9b:94:9d:77:03:6c:86:35:b0:99:4e:1e: 71:d7:6e:cd:69:a4:98:2d:1b:f1:0e:18:c7:74:7f: 71:a1:8c:4f:54:27:d4:83:7e:d9:5d:d1:e5:1e:b5: 78:a2:83:81:c9:b7:8c:79:2d:ba:92:2f:c8:40:8d: d3:ae:42:89:db:88:be:75:24:60:16:87:a6:87:2a: c1:45:b8:9f:97:a6:2d:77:b5:f3:69:cd:bc:f1:0a: 51:f3:e5:bc:a7:03:ca:40:8e:32:ab:7d:d9:ae:85: e8:bd:78:ae:38:b2:82:ed:05:a7:6a:7f:82:ab:3c: 3b:4e:d1:f4:58:26:92:d8:6e:81:7e:5f:d3:91:bf: c2:7c:83:ce:bd:11:56:ea:2d:cd:26:04:28:6a:99: 29:cb:3f:cd:e7:a6:24:d2:9a:c3:56:1b:3b:39:3d: 7b:42:9e:b2:14:cc:0a:e7:ad:6d:4f:79:c1:a8:b6: 67:1b:88:f7:dd:a6:2e:2f:85:8d:d3:96:90:99:56: 59:83:0d:7e:40:8a:a0:00:5a:7a:e1:f7:50:a2:0c: 15:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 43:4D:CF:75:21:AB:40:9D:5A:DD:61:9F:67:E6:DC:E4:8D:2A:6B:0B X509v3 Authority Key Identifier: keyid:ED:30:A1:31:71:85:60:A3:4A:B3:49:38:84:E8:58:EC:43:1F:6A:D1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/7TChMXGFYKNKs0k4hOhY7EMfatE.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0f/5b0702-16e7-4627-ae19-4b3b1b63b6ab/1/Q03PdSGrQJ1a3WGfZ-bc5I0qaws.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/0f/5b0702-16e7-4627-ae19-4b3b1b63b6ab/1/7TChMXGFYKNKs0k4hOhY7EMfatE.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 45.139.10.0/23 185.105.239.0/24 185.231.112.0/24 185.231.115.0/24 194.147.142.0/24 Signature Algorithm: sha256WithRSAEncryption ae:b3:e8:e8:b8:60:89:66:24:b7:e4:1d:5d:fa:f9:40:2b:f5: 4b:9d:17:20:e8:84:a1:5e:74:9e:ae:78:ac:79:00:70:3d:70: 40:fa:bb:dd:96:c2:da:76:ad:7c:c7:a2:88:58:02:34:0b:4a: 6d:69:31:f0:eb:cf:0f:36:60:a6:68:4e:e1:b5:1d:ec:be:59: 74:dd:02:6d:8c:55:39:ab:89:64:37:97:77:7d:c0:b1:d3:a8: ef:f5:68:2e:63:da:5c:8e:fb:f2:6d:39:de:64:4e:b7:ce:3c: e5:63:af:d3:5a:98:93:f2:4d:be:04:36:9d:f9:4d:e1:1d:1d: f2:f6:bf:16:16:84:65:9e:9d:79:99:9c:db:cc:a7:56:71:0e: 6d:24:29:ac:f3:bd:e6:c1:fe:d6:62:6d:a7:10:8e:97:4f:57: 3d:80:49:d3:d1:8c:92:ae:64:cc:9c:c8:94:80:b2:81:c9:ba: 0f:54:1c:32:b4:3a:27:4c:70:6c:6b:0c:70:32:c8:48:a6:74: c2:ed:50:ef:6e:40:ea:66:26:93:fb:c2:cc:35:6f:18:30:98: f9:48:35:37:ce:8c:74:cc:fd:89:84:59:1a:fe:6a:c5:6e:23: 6f:73:64:79:5e:e1:29:e7:1b:a0:2c:cc:4b:e2:62:e9:56:eb: c4:59:3f:a6 -----BEGIN CERTIFICATE----- MIIFFTCCA/2gAwIBAgISAZt7NiLscTAH0S3Q/pokUdxOMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGVkMzBhMTMxNzE4NTYwYTM0YWIzNDkzODg0ZTg1OGVjNDMx ZjZhZDEwHhcNMjYwMTAxMjAxODI0WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg0MzRkY2Y3NTIxYWI0MDlkNWFkZDYxOWY2N2U2ZGNlNDhkMmE2YjBiMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxARXnew25bHhyurHC/AqHnuSYT4m DLj3IoTFBKfULf1gAtdFzOfVFGra1eMZ8QKblJ13A2yGNbCZTh5x127NaaSYLRvx DhjHdH9xoYxPVCfUg37ZXdHlHrV4ooOBybeMeS26ki/IQI3TrkKJ24i+dSRgFoem hyrBRbifl6Ytd7Xzac288QpR8+W8pwPKQI4yq33ZroXovXiuOLKC7QWnan+Cqzw7 TtH0WCaS2G6Bfl/Tkb/CfIPOvRFW6i3NJgQoapkpyz/N56Yk0prDVhs7OT17Qp6y FMwK561tT3nBqLZnG4j33aYuL4WN05aQmVZZgw1+QIqgAFp64fdQogwViwIDAQAB o4ICITCCAh0wHQYDVR0OBBYEFENNz3Uhq0CdWt1hn2fm3OSNKmsLMB8GA1UdIwQY MBaAFO0woTFxhWCjSrNJOIToWOxDH2rRMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvN1RDaE1YR0ZZS05LczBrNGhPaFk3RU1mYXRFLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wZi81YjA3MDItMTZlNy00NjI3LWFlMTkt NGIzYjFiNjNiNmFiLzEvUTAzUGRTR3JRSjFhM1dHZlotYmM1STBxYXdzLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wZi81YjA3MDItMTZlNy00NjI3LWFlMTktNGIzYjFiNjNiNmFi LzEvN1RDaE1YR0ZZS05LczBrNGhPaFk3RU1mYXRFLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMDcGCCsGAQUFBwEHAQH/BCgwJjAkBAIAATAeAwQBLYsKAwQA uWnvAwQAuedwAwQAuedzAwQAwpOOMA0GCSqGSIb3DQEBCwUAA4IBAQCus+jouGCJ ZiS35B1d+vlAK/VLnRcg6IShXnSerniseQBwPXBA+rvdlsLadq18x6KIWAI0C0pt aTHw688PNmCmaE7htR3svll03QJtjFU5q4lkN5d3fcCx06jv9WguY9pcjvvybTne ZE63zjzlY6/TWpiT8k2+BDad+U3hHR3y9r8WFoRlnp15mZzbzKdWcQ5tJCms873m wf7WYm2nEI6XT1c9gEnT0YySrmTMnMiUgLKByboPVBwytDonTHBsawxwMshIpnTC 7VDvbkDqZiaT+8LMNW8YMJj5SDU3zox0zP2JhFka/mrFbiNvc2R5XuEp5xugLMxL 4mLpVuvEWT+m -----END CERTIFICATE-----Generated at Sun Jan 25 19:17:41 2026 by rpki-client