This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/18/725635-41fe-40d5-81ac-23442a14a5f7/1/qkFhtaRNkFQe2FJdCI5qu6080QY.roa File: qkFhtaRNkFQe2FJdCI5qu6080QY.roa (raw, json) Hash identifier: xC3MFctLYU5Sqy4pPIgPdmj9SR/syFEI+jQKydbsJRw= Subject key identifier: AA:41:61:B5:A4:4D:90:54:1E:D8:52:5D:08:8E:6A:BB:AD:3C:D1:06 Certificate issuer: /CN=e1d15e36cdb388276f04a606b02266260e2a19f8 Certificate serial: 019A781A8E806509064476C19E7974A63930 Authority key identifier: E1:D1:5E:36:CD:B3:88:27:6F:04:A6:06:B0:22:66:26:0E:2A:19:F8 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4dFeNs2ziCdvBKYGsCJmJg4qGfg.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/18/725635-41fe-40d5-81ac-23442a14a5f7/1/qkFhtaRNkFQe2FJdCI5qu6080QY.roa Signing time: Wed 12 Nov 2025 12:46:37 +0000 ROA not before: Wed 12 Nov 2025 12:46:37 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 62416 IP address blocks: 185.32.188.0/22 maxlen: 22 185.222.8.0/22 maxlen: 22 2a00:c560::/29 maxlen: 29 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/18/725635-41fe-40d5-81ac-23442a14a5f7/1/4dFeNs2ziCdvBKYGsCJmJg4qGfg.crl rsync://rpki.ripe.net/repository/DEFAULT/18/725635-41fe-40d5-81ac-23442a14a5f7/1/4dFeNs2ziCdvBKYGsCJmJg4qGfg.mft rsync://rpki.ripe.net/repository/DEFAULT/4dFeNs2ziCdvBKYGsCJmJg4qGfg.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 12:00:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:78:1a:8e:80:65:09:06:44:76:c1:9e:79:74:a6:39:30 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=e1d15e36cdb388276f04a606b02266260e2a19f8 Validity Not Before: Nov 12 12:46:37 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=aa4161b5a44d90541ed8525d088e6abbad3cd106 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:44:f9:63:f0:c0:b1:93:22:f3:63:a7:6c:29: 95:61:05:ca:26:11:63:88:fa:ff:73:55:95:f1:b0: 84:b7:69:9e:82:0b:7c:ad:af:47:7a:e8:e9:2d:8e: a5:4e:7d:7d:d2:df:66:cc:90:7f:7e:d6:53:fb:2d: f2:a7:d1:3a:66:1d:56:cd:bc:03:2a:36:fa:a7:0f: 80:cd:62:0b:ec:ec:a9:cf:ed:9b:45:c7:ce:d1:24: da:7e:5d:2d:6d:6e:45:41:73:75:fe:b6:63:99:99: 7a:61:47:57:31:c9:9e:3a:cb:9d:14:d4:00:15:d2: 2b:f0:73:36:49:e2:04:f4:cb:97:8a:25:a4:47:89: c6:24:15:86:ab:45:b2:ce:72:b2:6d:22:69:30:42: 9a:c7:6c:48:0a:b1:67:05:f9:df:16:f3:65:5c:2e: e6:d5:d4:40:be:10:c3:d3:c7:42:7b:d3:54:cc:6d: c5:bf:04:a5:9d:24:d9:68:78:46:97:59:95:96:76: fd:3b:57:48:3e:21:24:96:bd:a2:38:d4:59:f1:c9: 88:9c:e6:4f:5a:4f:ed:07:d1:c2:08:13:5a:ad:1e: 30:84:64:54:5f:46:c2:6c:b9:ae:8f:64:94:fc:38: d1:53:c0:ef:b7:08:9b:07:64:f3:6a:d6:41:97:16: 34:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AA:41:61:B5:A4:4D:90:54:1E:D8:52:5D:08:8E:6A:BB:AD:3C:D1:06 X509v3 Authority Key Identifier: keyid:E1:D1:5E:36:CD:B3:88:27:6F:04:A6:06:B0:22:66:26:0E:2A:19:F8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4dFeNs2ziCdvBKYGsCJmJg4qGfg.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/18/725635-41fe-40d5-81ac-23442a14a5f7/1/qkFhtaRNkFQe2FJdCI5qu6080QY.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/18/725635-41fe-40d5-81ac-23442a14a5f7/1/4dFeNs2ziCdvBKYGsCJmJg4qGfg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.32.188.0/22 185.222.8.0/22 IPv6: 2a00:c560::/29 Signature Algorithm: sha256WithRSAEncryption ae:d3:d0:87:bf:e0:70:46:63:00:82:a6:eb:f5:5d:e2:81:3e: ab:8e:3a:58:9b:5b:7f:0c:0a:f4:17:f8:1a:9c:f7:fd:ce:5f: d0:e7:c6:c5:9d:29:e0:13:7e:2f:ad:c7:1a:4b:2f:fc:21:be: 13:b8:1b:40:5d:86:45:1d:14:ce:b3:32:62:34:82:5f:59:4d: 02:74:3b:4c:41:d4:40:af:f4:05:28:df:4c:54:c3:db:3c:6e: 08:a3:86:4f:05:89:da:55:49:5b:fe:8f:b0:aa:ee:ea:26:98: 15:06:29:0b:34:30:d1:78:22:8c:c9:cb:1c:30:2d:de:13:0c: 68:44:f6:da:ee:36:b4:2d:1c:c1:c8:76:3e:9e:56:73:ec:83: 35:dd:32:7a:d6:c2:89:04:fc:f3:2d:b6:b1:64:ca:22:bd:0f: 32:b5:4e:25:aa:ee:7d:dc:40:8d:93:be:dd:dc:66:f1:06:96: b9:28:62:1b:ca:b8:4d:6b:66:7f:24:9c:04:31:c1:b5:68:82: 1c:e4:fa:01:a6:82:08:ed:92:88:52:10:7f:9b:3b:8b:5c:58: 38:af:6b:e4:97:08:c2:9c:34:b1:6d:16:4b:3d:e0:36:ee:6c: 5e:d1:58:ec:c7:75:ee:c2:5c:0a:c6:51:4a:0f:0d:49:7b:7e: 0c:17:7c:fb -----BEGIN CERTIFICATE----- MIIFEjCCA/qgAwIBAgISAZp4Go6AZQkGRHbBnnl0pjkwMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGUxZDE1ZTM2Y2RiMzg4Mjc2ZjA0YTYwNmIwMjI2NjI2MGUy YTE5ZjgwHhcNMjUxMTEyMTI0NjM3WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhhYTQxNjFiNWE0NGQ5MDU0MWVkODUyNWQwODhlNmFiYmFkM2NkMTA2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApUT5Y/DAsZMi82OnbCmVYQXKJhFj iPr/c1WV8bCEt2meggt8ra9HeujpLY6lTn190t9mzJB/ftZT+y3yp9E6Zh1WzbwD Kjb6pw+AzWIL7Oypz+2bRcfO0STafl0tbW5FQXN1/rZjmZl6YUdXMcmeOsudFNQA FdIr8HM2SeIE9MuXiiWkR4nGJBWGq0WyznKybSJpMEKax2xICrFnBfnfFvNlXC7m 1dRAvhDD08dCe9NUzG3FvwSlnSTZaHhGl1mVlnb9O1dIPiEklr2iONRZ8cmInOZP Wk/tB9HCCBNarR4whGRUX0bCbLmuj2SU/DjRU8DvtwibB2TzatZBlxY0qwIDAQAB o4ICHjCCAhowHQYDVR0OBBYEFKpBYbWkTZBUHthSXQiOarutPNEGMB8GA1UdIwQY MBaAFOHRXjbNs4gnbwSmBrAiZiYOKhn4MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvNGRGZU5zMnppQ2R2QktZR3NDSm1KZzRxR2ZnLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xOC83MjU2MzUtNDFmZS00MGQ1LTgxYWMt MjM0NDJhMTRhNWY3LzEvcWtGaHRhUk5rRlFlMkZKZENJNXF1NjA4MFFZLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xOC83MjU2MzUtNDFmZS00MGQ1LTgxYWMtMjM0NDJhMTRhNWY3 LzEvNGRGZU5zMnppQ2R2QktZR3NDSm1KZzRxR2ZnLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMDQGCCsGAQUFBwEHAQH/BCUwIzASBAIAATAMAwQCuSC8AwQC ud4IMA0EAgACMAcDBQMqAMVgMA0GCSqGSIb3DQEBCwUAA4IBAQCu09CHv+BwRmMA gqbr9V3igT6rjjpYm1t/DAr0F/ganPf9zl/Q58bFnSngE34vrccaSy/8Ib4TuBtA XYZFHRTOszJiNIJfWU0CdDtMQdRAr/QFKN9MVMPbPG4Io4ZPBYnaVUlb/o+wqu7q JpgVBikLNDDReCKMycscMC3eEwxoRPba7ja0LRzByHY+nlZz7IM13TJ61sKJBPzz LbaxZMoivQ8ytU4lqu593ECNk77d3GbxBpa5KGIbyrhNa2Z/JJwEMcG1aIIc5PoB poII7ZKIUhB/mzuLXFg4r2vklwjCnDSxbRZLPeA27mxe0Vjsx3XuwlwKxlFKDw1J e34MF3z7 -----END CERTIFICATE-----Generated at Sat Dec 6 17:15:00 2025 by rpki-client