This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/18/e0f2f6-3a8a-4daa-8271-5d665e998f6a/1/RQqyDE8zd239mf1H8_XY8djBBx0.roa File: RQqyDE8zd239mf1H8_XY8djBBx0.roa (raw, json) Hash identifier: +X5XgZLp2kPWRB5qiOj5VR6GFar1wlF+xxvOiH16Rso= Subject key identifier: 45:0A:B2:0C:4F:33:77:6D:FD:99:FD:47:F3:F5:D8:F1:D8:C1:07:1D Certificate issuer: /CN=68c510fc9b865d96e3afc7c56056efad9a330c5b Certificate serial: 019B7C7F523D97E18D3C9426244BB4AB317D Authority key identifier: 68:C5:10:FC:9B:86:5D:96:E3:AF:C7:C5:60:56:EF:AD:9A:33:0C:5B Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aMUQ_JuGXZbjr8fFYFbvrZozDFs.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/18/e0f2f6-3a8a-4daa-8271-5d665e998f6a/1/RQqyDE8zd239mf1H8_XY8djBBx0.roa Signing time: Fri 02 Jan 2026 02:17:57 +0000 ROA not before: Fri 02 Jan 2026 02:17:57 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 34342 IP address blocks: 77.79.225.0/25 maxlen: 25 77.79.244.0/22 maxlen: 22 85.232.248.0/24 maxlen: 24 128.204.220.0/23 maxlen: 23 185.2.112.0/22 maxlen: 22 195.167.156.0/24 maxlen: 24 195.167.157.0/24 maxlen: 24 2001:1a68:19:400::/54 maxlen: 54 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/18/e0f2f6-3a8a-4daa-8271-5d665e998f6a/1/aMUQ_JuGXZbjr8fFYFbvrZozDFs.crl rsync://rpki.ripe.net/repository/DEFAULT/18/e0f2f6-3a8a-4daa-8271-5d665e998f6a/1/aMUQ_JuGXZbjr8fFYFbvrZozDFs.mft rsync://rpki.ripe.net/repository/DEFAULT/aMUQ_JuGXZbjr8fFYFbvrZozDFs.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 13:21:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7c:7f:52:3d:97:e1:8d:3c:94:26:24:4b:b4:ab:31:7d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=68c510fc9b865d96e3afc7c56056efad9a330c5b Validity Not Before: Jan 2 02:17:57 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=450ab20c4f33776dfd99fd47f3f5d8f1d8c1071d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:c4:ea:e7:e1:08:ed:c9:b3:f0:36:27:bc:d4: cc:c1:f1:0d:4a:08:10:23:d3:68:05:54:27:ed:31: d5:72:21:01:9b:79:c7:00:d5:39:6a:42:26:d2:f5: 91:2d:54:bd:28:ef:eb:62:a4:69:c1:84:f0:5d:ab: e0:3c:d5:e3:dd:1b:a3:72:b8:0b:72:9e:b9:24:4f: 00:c9:d8:8d:97:73:01:82:5b:8b:81:cb:13:2f:7f: 1c:43:cd:e5:7b:aa:94:5c:a5:c4:ca:b5:9b:e9:4d: 23:ca:c3:bf:67:aa:83:17:59:03:ae:4e:e8:ba:90: 0e:68:68:ca:49:02:db:9e:27:a5:65:56:08:fd:36: 44:a0:cc:f8:28:97:18:a6:85:ca:39:ab:e7:86:f1: b5:29:9d:97:ec:10:0b:75:8d:fa:69:90:a1:19:a0: 3b:8c:62:30:81:a4:09:08:bc:75:7f:49:31:99:89: 5c:99:5c:5c:44:2a:c0:62:2e:eb:11:85:aa:8c:86: ee:81:2f:00:5f:9b:b4:19:fd:5d:ae:f3:8c:85:c1: cc:9d:ca:f3:eb:5c:0d:45:7e:1c:13:49:ab:de:0d: aa:b2:1c:64:d4:2e:2d:44:d0:3c:01:c5:50:fc:7f: 12:95:c5:a2:de:5f:69:60:ee:83:49:24:d6:e4:4d: 9a:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 45:0A:B2:0C:4F:33:77:6D:FD:99:FD:47:F3:F5:D8:F1:D8:C1:07:1D X509v3 Authority Key Identifier: keyid:68:C5:10:FC:9B:86:5D:96:E3:AF:C7:C5:60:56:EF:AD:9A:33:0C:5B X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aMUQ_JuGXZbjr8fFYFbvrZozDFs.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/18/e0f2f6-3a8a-4daa-8271-5d665e998f6a/1/RQqyDE8zd239mf1H8_XY8djBBx0.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/18/e0f2f6-3a8a-4daa-8271-5d665e998f6a/1/aMUQ_JuGXZbjr8fFYFbvrZozDFs.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 77.79.225.0/25 77.79.244.0/22 85.232.248.0/24 128.204.220.0/23 185.2.112.0/22 195.167.156.0/23 IPv6: 2001:1a68:19:400::/54 Signature Algorithm: sha256WithRSAEncryption 97:ce:29:9a:80:57:29:35:98:dc:97:64:b9:c8:a1:07:e1:4b: af:94:97:be:d3:fd:cb:61:3f:a8:7b:77:15:d2:82:80:a6:02: 74:2b:91:5a:b3:2a:e6:54:1f:cf:b2:88:60:8e:b2:60:6c:03: dd:fd:b0:b5:fb:96:fa:7a:98:43:08:71:58:16:0a:fd:4e:62: 20:0c:8c:c9:c2:83:64:6f:66:54:83:0c:eb:df:37:91:7b:7b: dc:09:91:0f:ef:02:d1:92:74:8b:24:a1:37:a6:0a:7d:0c:5a: 5e:db:5f:fe:e6:5a:27:d3:33:00:2f:38:36:b2:69:3f:e4:58: f7:35:b0:80:1a:28:34:28:af:23:d1:89:a3:24:1e:91:c8:b5: 6b:58:82:14:c3:63:16:4a:1e:fc:e5:ed:15:d8:83:80:29:47: e0:53:0e:4c:ba:22:a5:a1:7b:fb:b7:e4:e5:53:cd:d1:e0:4b: 52:62:aa:c0:86:f8:7e:f7:4b:d3:48:ae:c6:87:15:e1:5c:31: 3c:35:4a:32:2d:0e:62:93:03:9f:06:d6:0d:24:bb:fc:e4:d4: 6a:7e:c7:9d:19:fd:50:39:99:97:ce:e3:3c:f4:26:9f:00:03: 3e:74:c5:71:6f:66:e5:b9:ac:07:3f:c8:e8:1d:8b:69:f7:ab: 0b:8b:8f:a5 -----BEGIN CERTIFICATE----- MIIFLjCCBBagAwIBAgISAZt8f1I9l+GNPJQmJEu0qzF9MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDY4YzUxMGZjOWI4NjVkOTZlM2FmYzdjNTYwNTZlZmFkOWEz MzBjNWIwHhcNMjYwMTAyMDIxNzU3WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg0NTBhYjIwYzRmMzM3NzZkZmQ5OWZkNDdmM2Y1ZDhmMWQ4YzEwNzFkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0cTq5+EI7cmz8DYnvNTMwfENSggQ I9NoBVQn7THVciEBm3nHANU5akIm0vWRLVS9KO/rYqRpwYTwXavgPNXj3RujcrgL cp65JE8AydiNl3MBgluLgcsTL38cQ83le6qUXKXEyrWb6U0jysO/Z6qDF1kDrk7o upAOaGjKSQLbnielZVYI/TZEoMz4KJcYpoXKOavnhvG1KZ2X7BALdY36aZChGaA7 jGIwgaQJCLx1f0kxmYlcmVxcRCrAYi7rEYWqjIbugS8AX5u0Gf1drvOMhcHMncrz 61wNRX4cE0mr3g2qshxk1C4tRNA8AcVQ/H8SlcWi3l9pYO6DSSTW5E2aUwIDAQAB o4ICOjCCAjYwHQYDVR0OBBYEFEUKsgxPM3dt/Zn9R/P12PHYwQcdMB8GA1UdIwQY MBaAFGjFEPybhl2W46/HxWBW762aMwxbMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvYU1VUV9KdUdYWmJqcjhmRllGYnZyWm96REZzLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xOC9lMGYyZjYtM2E4YS00ZGFhLTgyNzEt NWQ2NjVlOTk4ZjZhLzEvUlFxeURFOHpkMjM5bWYxSDhfWFk4ZGpCQngwLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xOC9lMGYyZjYtM2E4YS00ZGFhLTgyNzEtNWQ2NjVlOTk4ZjZh LzEvYU1VUV9KdUdYWmJqcjhmRllGYnZyWm96REZzLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMFAGCCsGAQUFBwEHAQH/BEEwPzArBAIAATAlAwUHTU/hAAME Ak1P9AMEAFXo+AMEAYDM3AMEArkCcAMEAcOnnDAQBAIAAjAKAwgCIAEaaAAZBDAN BgkqhkiG9w0BAQsFAAOCAQEAl84pmoBXKTWY3JdkucihB+FLr5SXvtP9y2E/qHt3 FdKCgKYCdCuRWrMq5lQfz7KIYI6yYGwD3f2wtfuW+nqYQwhxWBYK/U5iIAyMycKD ZG9mVIMM6983kXt73AmRD+8C0ZJ0iyShN6YKfQxaXttf/uZaJ9MzAC84NrJpP+RY 9zWwgBooNCivI9GJoyQekci1a1iCFMNjFkoe/OXtFdiDgClH4FMOTLoipaF7+7fk 5VPN0eBLUmKqwIb4fvdL00iuxocV4VwxPDVKMi0OYpMDnwbWDSS7/OTUan7HnRn9 UDmZl87jPPQmnwADPnTFcW9m5bmsBz/I6B2LaferC4uPpQ== -----END CERTIFICATE-----Generated at Sun Jan 25 22:14:20 2026 by rpki-client