This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/41/ad603f-8fea-4849-9edb-c3668b503a1c/1/SRqia6YfXXJ2UoukZVUrTxtqyEQ.roa File: SRqia6YfXXJ2UoukZVUrTxtqyEQ.roa (raw, json) Hash identifier: nPbXswUrrFqKL4mXICqBgwismUWqPb6a8TY0i6MyF08= Subject key identifier: 49:1A:A2:6B:A6:1F:5D:72:76:52:8B:A4:65:55:2B:4F:1B:6A:C8:44 Certificate issuer: /CN=41251342e05d58b3b7fc93a15cba1eb71e542385 Certificate serial: 019B7910BFAD81AEB4BF4B8F9B8F82057F72 Authority key identifier: 41:25:13:42:E0:5D:58:B3:B7:FC:93:A1:5C:BA:1E:B7:1E:54:23:85 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QSUTQuBdWLO3_JOhXLoetx5UI4U.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/41/ad603f-8fea-4849-9edb-c3668b503a1c/1/SRqia6YfXXJ2UoukZVUrTxtqyEQ.roa Signing time: Thu 01 Jan 2026 10:18:19 +0000 ROA not before: Thu 01 Jan 2026 10:18:19 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 64434 IP address blocks: 185.165.28.0/24 maxlen: 24 185.165.30.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/41/ad603f-8fea-4849-9edb-c3668b503a1c/1/QSUTQuBdWLO3_JOhXLoetx5UI4U.crl rsync://rpki.ripe.net/repository/DEFAULT/41/ad603f-8fea-4849-9edb-c3668b503a1c/1/QSUTQuBdWLO3_JOhXLoetx5UI4U.mft rsync://rpki.ripe.net/repository/DEFAULT/QSUTQuBdWLO3_JOhXLoetx5UI4U.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 22:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:79:10:bf:ad:81:ae:b4:bf:4b:8f:9b:8f:82:05:7f:72 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=41251342e05d58b3b7fc93a15cba1eb71e542385 Validity Not Before: Jan 1 10:18:19 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=491aa26ba61f5d7276528ba465552b4f1b6ac844 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:84:1c:68:16:62:6e:10:4c:d6:b8:2c:34:93: 12:22:fc:bf:32:86:b0:5c:44:d6:06:f9:7b:bf:39: 25:9a:f8:6f:df:9d:81:03:79:fb:87:e2:cb:68:a3: 94:11:f9:bf:c1:00:c6:9b:31:dc:14:be:4b:dd:50: 47:a7:2b:2e:3d:93:58:57:89:d3:71:dc:74:58:2b: f0:98:fc:6d:81:21:dc:55:c3:36:4e:82:ca:28:c3: 73:bb:a3:61:d1:9a:6e:f2:fa:8b:27:94:cd:d8:00: 7e:08:56:36:3e:c6:6d:db:76:cd:ce:6a:33:40:bf: 1c:88:71:b2:10:2a:a4:24:ca:a0:96:52:3d:e7:7d: 40:25:cf:2d:25:67:ff:bd:0a:fb:d3:b5:62:fd:f2: 78:84:ec:b0:93:43:00:ab:9c:d0:d1:db:8d:69:c0: c1:99:07:2d:34:a8:be:2f:b9:a3:4e:aa:d3:89:79: 0f:fc:74:62:86:f7:4e:fb:7b:e7:0f:b3:91:94:50: 69:2f:75:41:53:e6:09:0b:80:68:37:dc:8e:27:28: 94:ab:e7:e3:d5:53:f5:eb:9d:aa:13:91:41:ac:41: 35:de:a2:d2:be:9b:a8:5c:3e:57:da:ab:ab:3e:b5: 10:78:6b:3b:58:96:47:37:04:b6:5c:48:4f:46:e9: d4:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 49:1A:A2:6B:A6:1F:5D:72:76:52:8B:A4:65:55:2B:4F:1B:6A:C8:44 X509v3 Authority Key Identifier: keyid:41:25:13:42:E0:5D:58:B3:B7:FC:93:A1:5C:BA:1E:B7:1E:54:23:85 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QSUTQuBdWLO3_JOhXLoetx5UI4U.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/41/ad603f-8fea-4849-9edb-c3668b503a1c/1/SRqia6YfXXJ2UoukZVUrTxtqyEQ.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/41/ad603f-8fea-4849-9edb-c3668b503a1c/1/QSUTQuBdWLO3_JOhXLoetx5UI4U.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.165.28.0/24 185.165.30.0/24 Signature Algorithm: sha256WithRSAEncryption 4d:39:01:af:26:1b:01:48:60:64:09:77:84:ae:6e:cc:ce:a4: 8f:14:c8:40:85:64:73:77:1b:c0:0e:67:ea:06:07:83:91:e1: 7e:8e:25:0e:70:69:84:d4:29:5a:88:f3:86:6f:d7:1d:04:bf: 71:b6:ff:2d:46:6a:69:1b:c9:d1:6f:59:f2:37:25:0c:44:1e: 5a:ca:3c:48:00:fc:04:67:3f:dd:e5:26:ba:14:45:1d:5d:bf: 68:39:da:d7:c5:90:6b:c6:19:01:8e:20:3e:19:39:83:0a:ba: 3d:53:30:61:b5:01:5d:bd:31:e0:f8:3a:0d:27:93:50:97:b8: 5b:8e:67:2c:3b:ee:be:b2:90:7f:a7:78:33:88:01:23:87:31: 63:88:06:79:8c:7f:5e:be:5f:c1:52:4b:1d:46:b1:af:e0:fc: 76:45:3d:24:2a:41:b9:37:46:b7:2a:04:6d:18:29:e8:09:2d: 5e:d3:96:46:03:6c:1a:2d:96:87:66:dc:36:00:9a:ea:05:2d: 6f:3c:0c:0f:7e:49:24:ec:2b:1a:93:8b:d0:05:5b:09:e7:08: 75:c3:16:c8:ca:ec:1b:26:63:05:d1:90:b7:21:c1:f8:d1:89: d8:b5:46:b6:dd:93:5f:f9:4e:b0:52:d7:9b:23:81:35:f8:de: aa:23:2f:3a -----BEGIN CERTIFICATE----- MIIFAzCCA+ugAwIBAgISAZt5EL+tga60v0uPm4+CBX9yMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDQxMjUxMzQyZTA1ZDU4YjNiN2ZjOTNhMTVjYmExZWI3MWU1 NDIzODUwHhcNMjYwMTAxMTAxODE5WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg0OTFhYTI2YmE2MWY1ZDcyNzY1MjhiYTQ2NTU1MmI0ZjFiNmFjODQ0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqIQcaBZibhBM1rgsNJMSIvy/Moaw XETWBvl7vzklmvhv352BA3n7h+LLaKOUEfm/wQDGmzHcFL5L3VBHpysuPZNYV4nT cdx0WCvwmPxtgSHcVcM2ToLKKMNzu6Nh0Zpu8vqLJ5TN2AB+CFY2PsZt23bNzmoz QL8ciHGyECqkJMqgllI9531AJc8tJWf/vQr707Vi/fJ4hOywk0MAq5zQ0duNacDB mQctNKi+L7mjTqrTiXkP/HRihvdO+3vnD7ORlFBpL3VBU+YJC4BoN9yOJyiUq+fj 1VP1652qE5FBrEE13qLSvpuoXD5X2qurPrUQeGs7WJZHNwS2XEhPRunUhQIDAQAB o4ICDzCCAgswHQYDVR0OBBYEFEkaomumH11ydlKLpGVVK08bashEMB8GA1UdIwQY MBaAFEElE0LgXVizt/yToVy6HrceVCOFMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvUVNVVFF1QmRXTE8zX0pPaFhMb2V0eDVVSTRVLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80MS9hZDYwM2YtOGZlYS00ODQ5LTllZGIt YzM2NjhiNTAzYTFjLzEvU1JxaWE2WWZYWEoyVW91a1pWVXJUeHRxeUVRLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC80MS9hZDYwM2YtOGZlYS00ODQ5LTllZGItYzM2NjhiNTAzYTFj LzEvUVNVVFF1QmRXTE8zX0pPaFhMb2V0eDVVSTRVLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQAuaUcAwQA uaUeMA0GCSqGSIb3DQEBCwUAA4IBAQBNOQGvJhsBSGBkCXeErm7MzqSPFMhAhWRz dxvADmfqBgeDkeF+jiUOcGmE1ClaiPOGb9cdBL9xtv8tRmppG8nRb1nyNyUMRB5a yjxIAPwEZz/d5Sa6FEUdXb9oOdrXxZBrxhkBjiA+GTmDCro9UzBhtQFdvTHg+DoN J5NQl7hbjmcsO+6+spB/p3gziAEjhzFjiAZ5jH9evl/BUksdRrGv4Px2RT0kKkG5 N0a3KgRtGCnoCS1e05ZGA2waLZaHZtw2AJrqBS1vPAwPfkkk7Csak4vQBVsJ5wh1 wxbIyuwbJmMF0ZC3IcH40YnYtUa23ZNf+U6wUtebI4E1+N6qIy86 -----END CERTIFICATE-----Generated at Mon Jan 26 07:23:41 2026 by rpki-client