This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/12/8ef740-1052-49ec-a409-e615493117d2/1/QakAbn2qL6zC8DUBjSIVZLBbpXc.roa File: QakAbn2qL6zC8DUBjSIVZLBbpXc.roa (raw, json) Hash identifier: 6xvVEYi0a4GqVQ6WMVJR2REYvzQK/KHG+c6HRFsJwKk= Subject key identifier: 41:A9:00:6E:7D:AA:2F:AC:C2:F0:35:01:8D:22:15:64:B0:5B:A5:77 Certificate issuer: /CN=3befe50a40fb1732541e8a97450ab5de774771d8 Certificate serial: 019B7F156FC2B6928EC31E6D5762C6D2645C Authority key identifier: 3B:EF:E5:0A:40:FB:17:32:54:1E:8A:97:45:0A:B5:DE:77:47:71:D8 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/O-_lCkD7FzJUHoqXRQq13ndHcdg.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/12/8ef740-1052-49ec-a409-e615493117d2/1/QakAbn2qL6zC8DUBjSIVZLBbpXc.roa Signing time: Fri 02 Jan 2026 14:21:09 +0000 ROA not before: Fri 02 Jan 2026 14:21:09 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 210727 IP address blocks: 91.238.194.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/12/8ef740-1052-49ec-a409-e615493117d2/1/O-_lCkD7FzJUHoqXRQq13ndHcdg.crl rsync://rpki.ripe.net/repository/DEFAULT/12/8ef740-1052-49ec-a409-e615493117d2/1/O-_lCkD7FzJUHoqXRQq13ndHcdg.mft rsync://rpki.ripe.net/repository/DEFAULT/O-_lCkD7FzJUHoqXRQq13ndHcdg.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 20:01:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7f:15:6f:c2:b6:92:8e:c3:1e:6d:57:62:c6:d2:64:5c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3befe50a40fb1732541e8a97450ab5de774771d8 Validity Not Before: Jan 2 14:21:09 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=41a9006e7daa2facc2f035018d221564b05ba577 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:b8:26:30:6d:dd:e9:01:81:c0:52:80:a1:e8: c3:c6:e5:f5:7f:66:af:9a:3c:d0:2d:3e:ab:3f:7f: be:57:e6:b0:7d:a2:8b:48:7a:07:25:49:ef:bb:3a: 90:f7:82:6f:47:56:97:ff:32:35:60:f1:47:11:ea: 5b:80:4e:70:1a:55:3d:cc:59:55:ae:35:9c:1c:50: 53:73:e1:61:fc:45:5f:82:53:6a:8e:0d:06:29:76: 3f:da:12:af:52:85:14:fd:0a:da:86:0e:0d:ba:8a: fc:5a:c5:15:d4:82:84:da:e6:9d:28:67:1e:6b:9a: 4a:8c:c9:3c:62:fe:12:02:7a:6d:08:65:62:44:14: 75:b3:b6:1a:53:26:a1:63:d8:5f:4e:73:b9:11:6d: 58:50:b8:59:8c:7f:8b:51:8c:d1:2e:48:28:6c:fc: 66:0a:94:af:45:94:cd:e6:5a:6d:dc:4c:5c:8d:39: 22:94:d9:60:90:5a:1d:4c:6d:6a:50:b0:95:6c:25: 66:89:c4:91:ca:1d:e1:51:44:ba:06:d1:07:3f:88: a2:2e:0e:6f:ce:80:ee:22:aa:4f:89:f9:36:fc:0f: d7:92:23:83:75:75:de:74:2f:a5:4f:45:a4:90:d5: 15:7a:db:67:2e:b1:34:3e:f6:49:5a:07:49:9b:bf: ba:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 41:A9:00:6E:7D:AA:2F:AC:C2:F0:35:01:8D:22:15:64:B0:5B:A5:77 X509v3 Authority Key Identifier: keyid:3B:EF:E5:0A:40:FB:17:32:54:1E:8A:97:45:0A:B5:DE:77:47:71:D8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/O-_lCkD7FzJUHoqXRQq13ndHcdg.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/12/8ef740-1052-49ec-a409-e615493117d2/1/QakAbn2qL6zC8DUBjSIVZLBbpXc.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/12/8ef740-1052-49ec-a409-e615493117d2/1/O-_lCkD7FzJUHoqXRQq13ndHcdg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 91.238.194.0/24 Signature Algorithm: sha256WithRSAEncryption 21:62:f3:3a:2d:24:77:b4:db:48:b6:d9:bd:2c:71:57:eb:6e: e4:63:08:aa:7e:47:af:6c:e0:9e:21:af:72:ba:8a:b5:48:89: c8:63:af:e6:b0:e6:21:5a:44:43:2e:b1:6c:e2:42:4a:57:06: ac:15:b2:e0:8f:11:42:2e:7f:a3:52:73:e9:4a:60:55:9d:17: ce:3d:a5:53:69:4a:a0:33:aa:a4:d8:10:14:7c:36:37:90:84: cb:fc:b8:fe:87:74:19:99:39:57:a2:22:6e:05:32:fe:f9:62: 6c:96:b6:2f:f6:3a:d2:85:0a:c2:6e:6f:e2:2b:52:da:09:63: 93:06:e3:58:87:78:4b:94:4b:cc:97:af:8c:0e:a4:a1:0c:b8: 76:d4:c2:a8:44:66:17:b2:d7:73:6c:23:02:93:cf:3e:0d:3b: 4e:4c:f0:d4:b0:ba:68:08:fb:0e:2a:4d:a8:b5:e4:b0:f8:c0: 65:10:67:f0:c0:23:e1:92:8a:6e:49:9d:79:5c:83:46:da:83: be:b1:c6:9a:61:73:62:19:fe:0d:5f:19:0f:9e:6d:19:29:21: 0a:83:a7:57:60:3a:5e:c5:04:ae:6e:6d:44:7e:2d:34:1e:1d: fc:be:61:e3:c0:ad:e3:1e:a6:c8:c7:50:e3:2e:4e:6f:11:7f: b7:e4:fd:ff -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt/FW/CtpKOwx5tV2LG0mRcMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDNiZWZlNTBhNDBmYjE3MzI1NDFlOGE5NzQ1MGFiNWRlNzc0 NzcxZDgwHhcNMjYwMTAyMTQyMTA5WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg0MWE5MDA2ZTdkYWEyZmFjYzJmMDM1MDE4ZDIyMTU2NGIwNWJhNTc3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAn7gmMG3d6QGBwFKAoejDxuX1f2av mjzQLT6rP3++V+awfaKLSHoHJUnvuzqQ94JvR1aX/zI1YPFHEepbgE5wGlU9zFlV rjWcHFBTc+Fh/EVfglNqjg0GKXY/2hKvUoUU/Qrahg4Nuor8WsUV1IKE2uadKGce a5pKjMk8Yv4SAnptCGViRBR1s7YaUyahY9hfTnO5EW1YULhZjH+LUYzRLkgobPxm CpSvRZTN5lpt3ExcjTkilNlgkFodTG1qULCVbCVmicSRyh3hUUS6BtEHP4iiLg5v zoDuIqpPifk2/A/XkiODdXXedC+lT0WkkNUVettnLrE0PvZJWgdJm7+6twIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFEGpAG59qi+swvA1AY0iFWSwW6V3MB8GA1UdIwQY MBaAFDvv5QpA+xcyVB6Kl0UKtd53R3HYMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvTy1fbENrRDdGekpVSG9xWFJRcTEzbmRIY2RnLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xMi84ZWY3NDAtMTA1Mi00OWVjLWE0MDkt ZTYxNTQ5MzExN2QyLzEvUWFrQWJuMnFMNnpDOERVQmpTSVZaTEJicFhjLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xMi84ZWY3NDAtMTA1Mi00OWVjLWE0MDktZTYxNTQ5MzExN2Qy LzEvTy1fbENrRDdGekpVSG9xWFJRcTEzbmRIY2RnLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAW+7CMA0G CSqGSIb3DQEBCwUAA4IBAQAhYvM6LSR3tNtIttm9LHFX627kYwiqfkevbOCeIa9y uoq1SInIY6/msOYhWkRDLrFs4kJKVwasFbLgjxFCLn+jUnPpSmBVnRfOPaVTaUqg M6qk2BAUfDY3kITL/Lj+h3QZmTlXoiJuBTL++WJslrYv9jrShQrCbm/iK1LaCWOT BuNYh3hLlEvMl6+MDqShDLh21MKoRGYXstdzbCMCk88+DTtOTPDUsLpoCPsOKk2o teSw+MBlEGfwwCPhkopuSZ15XING2oO+scaaYXNiGf4NXxkPnm0ZKSEKg6dXYDpe xQSubm1Efi00Hh38vmHjwK3jHqbIx1DjLk5vEX+35P3/ -----END CERTIFICATE-----Generated at Mon Jan 26 04:55:01 2026 by rpki-client