This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/29/d5d2b3-7c42-4785-9596-517481d0f850/1/qql6gI777A1gergrcYaN_jGizsg.roa File: qql6gI777A1gergrcYaN_jGizsg.roa (raw, json) Hash identifier: nvniz/deTAtTtE36BhXTJgk+6BLR6Hthi8M387vZVHc= Subject key identifier: AA:A9:7A:80:8E:FB:EC:0D:60:7A:B8:2B:71:86:8D:FE:31:A2:CE:C8 Certificate issuer: /CN=5ff7352d47db9785f49118092de8704a67f6520d Certificate serial: 019B78A2D9BD3D307323F2E2EB72CE72AE3E Authority key identifier: 5F:F7:35:2D:47:DB:97:85:F4:91:18:09:2D:E8:70:4A:67:F6:52:0D Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/X_c1LUfbl4X0kRgJLehwSmf2Ug0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/29/d5d2b3-7c42-4785-9596-517481d0f850/1/qql6gI777A1gergrcYaN_jGizsg.roa Signing time: Thu 01 Jan 2026 08:18:16 +0000 ROA not before: Thu 01 Jan 2026 08:18:16 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 204751 IP address blocks: 185.241.188.0/22 maxlen: 22 2a0c:b080::/29 maxlen: 29 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/29/d5d2b3-7c42-4785-9596-517481d0f850/1/X_c1LUfbl4X0kRgJLehwSmf2Ug0.crl rsync://rpki.ripe.net/repository/DEFAULT/29/d5d2b3-7c42-4785-9596-517481d0f850/1/X_c1LUfbl4X0kRgJLehwSmf2Ug0.mft rsync://rpki.ripe.net/repository/DEFAULT/X_c1LUfbl4X0kRgJLehwSmf2Ug0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 22:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:78:a2:d9:bd:3d:30:73:23:f2:e2:eb:72:ce:72:ae:3e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5ff7352d47db9785f49118092de8704a67f6520d Validity Not Before: Jan 1 08:18:16 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=aaa97a808efbec0d607ab82b71868dfe31a2cec8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:52:82:4b:05:1f:2a:c1:6e:f6:77:1e:42:68: 60:e3:6d:b4:47:ee:b1:4a:9a:0e:01:ee:73:01:ef: 43:4a:b0:a9:aa:a4:21:4d:ff:86:fb:bd:10:e5:2a: 43:3a:07:cf:57:a0:ef:ff:88:1c:a3:e5:2d:77:47: a3:49:a7:37:f0:08:a7:5f:8d:cd:b4:15:24:e5:60: 07:e6:31:0f:1c:18:38:fc:e2:8e:0b:83:ce:f8:f4: b9:c2:f9:48:98:fc:95:c9:6d:81:cb:88:9b:35:0a: c9:04:a7:c3:4c:e3:ff:11:3a:2d:d0:a9:3c:4e:0f: 4a:bc:b8:96:52:a0:67:d7:db:b6:25:fe:4e:82:77: b4:39:4a:0f:f7:cd:e4:92:5f:f6:30:ab:28:f0:32: 0d:a0:4a:8e:dc:ab:28:77:87:0d:69:93:74:12:20: e3:70:cc:14:ab:3b:8c:e3:0e:24:89:e5:fe:54:e1: 56:80:25:33:83:2a:3c:83:a2:0f:56:79:36:bf:28: d8:b3:82:a0:23:e7:68:ad:aa:64:a5:0c:74:9a:13: f7:16:87:ac:d1:72:90:5f:f6:8d:52:e6:b0:b5:a6: 99:67:3b:f6:66:eb:9c:f2:c8:2f:4d:2a:70:c2:48: b3:e6:7a:e2:8e:2f:0c:bc:f6:73:84:1c:18:ca:43: 6d:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AA:A9:7A:80:8E:FB:EC:0D:60:7A:B8:2B:71:86:8D:FE:31:A2:CE:C8 X509v3 Authority Key Identifier: keyid:5F:F7:35:2D:47:DB:97:85:F4:91:18:09:2D:E8:70:4A:67:F6:52:0D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/X_c1LUfbl4X0kRgJLehwSmf2Ug0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/29/d5d2b3-7c42-4785-9596-517481d0f850/1/qql6gI777A1gergrcYaN_jGizsg.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/29/d5d2b3-7c42-4785-9596-517481d0f850/1/X_c1LUfbl4X0kRgJLehwSmf2Ug0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.241.188.0/22 IPv6: 2a0c:b080::/29 Signature Algorithm: sha256WithRSAEncryption b0:49:f2:44:88:17:34:d7:66:f4:f3:bb:87:8f:ca:b5:7a:d8: da:ce:1d:8f:cd:12:d1:ac:c9:7a:19:35:fd:a0:db:44:42:45: 6f:ca:61:c5:03:ca:95:f6:29:ad:ea:22:86:1b:d0:ae:f1:21: 9a:7a:19:03:11:6b:87:af:fa:22:c6:ea:4d:79:86:ed:19:9a: b1:d9:e6:43:40:4c:85:d3:0d:94:c9:35:dc:86:b1:96:26:6e: de:73:0a:74:f8:3a:3f:e8:99:0c:46:6b:4b:63:7f:b4:74:6d: 65:2c:83:01:5a:1e:2c:f2:a9:37:42:e6:12:dc:0a:a0:d5:a1: ce:ab:4d:01:df:c7:69:f9:65:ef:85:54:c6:f0:30:68:44:6b: 4f:d9:e9:0b:b6:7a:33:b4:82:d7:05:89:be:8b:76:3f:40:b2: bd:1e:76:98:c1:11:d9:3d:71:f2:5d:c7:1d:aa:c4:8f:82:e5: df:12:8e:a8:66:6a:e9:f6:9d:7d:04:e6:89:42:42:da:8f:ab: 43:55:29:65:4f:5f:2f:2e:ed:99:88:dc:09:a7:54:af:7a:3e: 48:0a:f6:39:ae:1d:57:16:f3:f6:f0:ff:46:59:f5:78:10:4b: 5f:75:ea:b0:d4:12:75:85:4c:89:6d:42:7b:57:87:56:f1:34: aa:fc:3f:7d -----BEGIN CERTIFICATE----- MIIFDDCCA/SgAwIBAgISAZt4otm9PTBzI/Li63LOcq4+MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDVmZjczNTJkNDdkYjk3ODVmNDkxMTgwOTJkZTg3MDRhNjdm NjUyMGQwHhcNMjYwMTAxMDgxODE2WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhhYWE5N2E4MDhlZmJlYzBkNjA3YWI4MmI3MTg2OGRmZTMxYTJjZWM4MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA3FKCSwUfKsFu9nceQmhg4220R+6x SpoOAe5zAe9DSrCpqqQhTf+G+70Q5SpDOgfPV6Dv/4gco+Utd0ejSac38AinX43N tBUk5WAH5jEPHBg4/OKOC4PO+PS5wvlImPyVyW2By4ibNQrJBKfDTOP/ETot0Kk8 Tg9KvLiWUqBn19u2Jf5Ogne0OUoP983kkl/2MKso8DINoEqO3Ksod4cNaZN0EiDj cMwUqzuM4w4kieX+VOFWgCUzgyo8g6IPVnk2vyjYs4KgI+dorapkpQx0mhP3Foes 0XKQX/aNUuawtaaZZzv2Zuuc8sgvTSpwwkiz5nriji8MvPZzhBwYykNtRwIDAQAB o4ICGDCCAhQwHQYDVR0OBBYEFKqpeoCO++wNYHq4K3GGjf4xos7IMB8GA1UdIwQY MBaAFF/3NS1H25eF9JEYCS3ocEpn9lINMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvWF9jMUxVZmJsNFgwa1JnSkxlaHdTbWYyVWcwLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yOS9kNWQyYjMtN2M0Mi00Nzg1LTk1OTYt NTE3NDgxZDBmODUwLzEvcXFsNmdJNzc3QTFnZXJncmNZYU5fakdpenNnLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yOS9kNWQyYjMtN2M0Mi00Nzg1LTk1OTYtNTE3NDgxZDBmODUw LzEvWF9jMUxVZmJsNFgwa1JnSkxlaHdTbWYyVWcwLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMC4GCCsGAQUFBwEHAQH/BB8wHTAMBAIAATAGAwQCufG8MA0E AgACMAcDBQMqDLCAMA0GCSqGSIb3DQEBCwUAA4IBAQCwSfJEiBc012b087uHj8q1 etjazh2PzRLRrMl6GTX9oNtEQkVvymHFA8qV9imt6iKGG9Cu8SGaehkDEWuHr/oi xupNeYbtGZqx2eZDQEyF0w2UyTXchrGWJm7ecwp0+Do/6JkMRmtLY3+0dG1lLIMB Wh4s8qk3QuYS3Aqg1aHOq00B38dp+WXvhVTG8DBoRGtP2ekLtnoztILXBYm+i3Y/ QLK9HnaYwRHZPXHyXccdqsSPguXfEo6oZmrp9p19BOaJQkLaj6tDVSllT18vLu2Z iNwJp1Svej5ICvY5rh1XFvP28P9GWfV4EEtfdeqw1BJ1hUyJbUJ7V4dW8TSq/D99 -----END CERTIFICATE-----Generated at Mon Jan 26 08:39:58 2026 by rpki-client