This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4b/6444d1-5f00-4e50-8019-1b6f750cf9a2/1/kQmmX2shYiBrgwj4WH6KjhEq6dk.roa File: kQmmX2shYiBrgwj4WH6KjhEq6dk.roa (raw, json) Hash identifier: 0WkUmsljE+3CRDhGKei4uM+g06ozmYAGysnQVZuM58Y= Subject key identifier: 91:09:A6:5F:6B:21:62:20:6B:83:08:F8:58:7E:8A:8E:11:2A:E9:D9 Certificate issuer: /CN=a865bae25778beed8880c08df2d3f37fc37abc1e Certificate serial: 019B7C122A7C3C8EBD2DBC89A0628E162A43 Authority key identifier: A8:65:BA:E2:57:78:BE:ED:88:80:C0:8D:F2:D3:F3:7F:C3:7A:BC:1E Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qGW64ld4vu2IgMCN8tPzf8N6vB4.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4b/6444d1-5f00-4e50-8019-1b6f750cf9a2/1/kQmmX2shYiBrgwj4WH6KjhEq6dk.roa Signing time: Fri 02 Jan 2026 00:18:43 +0000 ROA not before: Fri 02 Jan 2026 00:18:43 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 49223 IP address blocks: 212.79.116.0/22 maxlen: 22 212.79.120.0/23 maxlen: 23 212.87.160.0/21 maxlen: 21 212.87.172.0/22 maxlen: 22 212.87.176.0/22 maxlen: 22 212.87.182.0/23 maxlen: 23 212.87.184.0/22 maxlen: 22 212.87.188.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4b/6444d1-5f00-4e50-8019-1b6f750cf9a2/1/qGW64ld4vu2IgMCN8tPzf8N6vB4.crl rsync://rpki.ripe.net/repository/DEFAULT/4b/6444d1-5f00-4e50-8019-1b6f750cf9a2/1/qGW64ld4vu2IgMCN8tPzf8N6vB4.mft rsync://rpki.ripe.net/repository/DEFAULT/qGW64ld4vu2IgMCN8tPzf8N6vB4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 15:00:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7c:12:2a:7c:3c:8e:bd:2d:bc:89:a0:62:8e:16:2a:43 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=a865bae25778beed8880c08df2d3f37fc37abc1e Validity Not Before: Jan 2 00:18:43 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=9109a65f6b2162206b8308f8587e8a8e112ae9d9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:99:18:41:30:0f:5a:24:b1:14:e9:02:7d:95:5d: ef:2b:b7:c7:19:6e:57:fb:28:08:8a:a7:7f:ee:d6: 26:22:6c:85:0f:f5:02:6e:dd:25:28:b7:42:40:81: 73:ff:10:33:93:a9:48:0e:71:cd:c3:07:16:bf:13: 63:ce:02:3d:a0:5b:96:bc:4c:47:00:79:43:9d:70: 8c:9e:40:13:26:5c:c3:56:ba:c1:de:4b:e8:41:3a: 57:88:7e:d9:1d:15:b5:70:59:8d:a9:d5:11:9e:7b: ba:f3:0a:02:58:7b:32:b9:e2:b3:71:73:b7:69:cc: a7:c5:99:02:7a:99:c8:bf:67:6e:26:67:3b:e6:02: c8:2a:a4:01:ff:2d:a1:9e:1a:9a:30:af:09:cf:51: 30:ab:8d:24:56:86:2c:d8:ee:59:dc:28:d9:97:dc: 7f:4f:50:e3:8a:92:29:a2:6b:fc:41:7d:13:ec:97: ae:5b:26:ad:3f:b3:2b:00:87:bb:f9:5e:fa:ea:d6: cd:f3:62:91:3e:8a:a7:66:47:00:3c:ea:6e:8c:f8: ca:55:2e:68:18:40:ae:1d:85:55:a7:60:ce:e3:bc: ce:3b:80:25:92:8f:25:8a:bd:9a:1c:f3:f0:e0:03: 7d:83:b2:c2:4b:62:fb:4e:28:9f:af:14:02:cb:c6: f2:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 91:09:A6:5F:6B:21:62:20:6B:83:08:F8:58:7E:8A:8E:11:2A:E9:D9 X509v3 Authority Key Identifier: keyid:A8:65:BA:E2:57:78:BE:ED:88:80:C0:8D:F2:D3:F3:7F:C3:7A:BC:1E X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qGW64ld4vu2IgMCN8tPzf8N6vB4.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/6444d1-5f00-4e50-8019-1b6f750cf9a2/1/kQmmX2shYiBrgwj4WH6KjhEq6dk.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/6444d1-5f00-4e50-8019-1b6f750cf9a2/1/qGW64ld4vu2IgMCN8tPzf8N6vB4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 212.79.116.0-212.79.121.255 212.87.160.0/21 212.87.172.0-212.87.179.255 212.87.182.0-212.87.191.255 Signature Algorithm: sha256WithRSAEncryption 39:77:db:89:01:99:8e:f5:36:8e:65:d9:82:62:2b:61:cf:d3: 83:68:2b:8f:aa:a0:32:c3:93:5d:87:81:0b:1a:1d:2b:87:08: 6f:95:3b:52:5e:1e:4d:97:21:14:69:0c:ca:61:f7:9e:53:71: e2:dd:32:6d:29:99:71:52:d0:19:e6:3e:39:46:a1:f3:7e:bd: 09:74:20:6f:e6:dd:fb:45:0d:0d:93:b3:8d:27:15:6c:83:91: ca:d4:eb:81:ed:e9:4c:29:1a:f4:6e:3f:07:78:ec:b6:0f:e0: e2:25:64:62:2b:4e:5e:06:be:5e:67:49:c5:13:f6:2f:30:50: f5:14:0c:66:57:ff:47:5e:69:d5:01:ee:ee:f1:65:72:1c:1d: f1:7e:15:08:81:cc:8b:f3:03:77:ce:f0:dc:30:21:e8:26:12: c7:19:a6:b3:65:f1:5d:a2:7f:3b:0f:71:30:4c:02:d7:b1:58: e2:c2:ce:f8:6f:fa:1f:9a:b6:ad:04:fe:6a:72:e4:5c:9a:0f: fd:80:e3:23:3d:2c:97:df:1a:d0:84:43:4a:1b:33:a3:95:46: 7b:e6:18:93:4b:55:07:61:c3:2a:83:52:2b:f0:70:aa:bc:9f: b3:4f:ef:99:71:ac:f6:8a:cb:d8:47:fa:dd:3a:22:60:51:c7: fc:e1:35:38 -----BEGIN CERTIFICATE----- MIIFJzCCBA+gAwIBAgISAZt8Eip8PI69LbyJoGKOFipDMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGE4NjViYWUyNTc3OGJlZWQ4ODgwYzA4ZGYyZDNmMzdmYzM3 YWJjMWUwHhcNMjYwMTAyMDAxODQzWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg5MTA5YTY1ZjZiMjE2MjIwNmI4MzA4Zjg1ODdlOGE4ZTExMmFlOWQ5MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmRhBMA9aJLEU6QJ9lV3vK7fHGW5X +ygIiqd/7tYmImyFD/UCbt0lKLdCQIFz/xAzk6lIDnHNwwcWvxNjzgI9oFuWvExH AHlDnXCMnkATJlzDVrrB3kvoQTpXiH7ZHRW1cFmNqdURnnu68woCWHsyueKzcXO3 acynxZkCepnIv2duJmc75gLIKqQB/y2hnhqaMK8Jz1Ewq40kVoYs2O5Z3CjZl9x/ T1DjipIpomv8QX0T7JeuWyatP7MrAIe7+V766tbN82KRPoqnZkcAPOpujPjKVS5o GECuHYVVp2DO47zOO4Alko8lir2aHPPw4AN9g7LCS2L7TiifrxQCy8byWwIDAQAB o4ICMzCCAi8wHQYDVR0OBBYEFJEJpl9rIWIga4MI+Fh+io4RKunZMB8GA1UdIwQY MBaAFKhluuJXeL7tiIDAjfLT83/DerweMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvcUdXNjRsZDR2dTJJZ01DTjh0UHpmOE42dkI0LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80Yi82NDQ0ZDEtNWYwMC00ZTUwLTgwMTkt MWI2Zjc1MGNmOWEyLzEva1FtbVgyc2hZaUJyZ3dqNFdINktqaEVxNmRrLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC80Yi82NDQ0ZDEtNWYwMC00ZTUwLTgwMTktMWI2Zjc1MGNmOWEy LzEvcUdXNjRsZDR2dTJJZ01DTjh0UHpmOE42dkI0LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMEkGCCsGAQUFBwEHAQH/BDowODA2BAIAATAwMAwDBALUT3QD BAHUT3gDBAPUV6AwDAMEAtRXrAMEAtRXsDAMAwQB1Fe2AwQG1FeAMA0GCSqGSIb3 DQEBCwUAA4IBAQA5d9uJAZmO9TaOZdmCYithz9ODaCuPqqAyw5Ndh4ELGh0rhwhv lTtSXh5NlyEUaQzKYfeeU3Hi3TJtKZlxUtAZ5j45RqHzfr0JdCBv5t37RQ0Nk7ON JxVsg5HK1OuB7elMKRr0bj8HeOy2D+DiJWRiK05eBr5eZ0nFE/YvMFD1FAxmV/9H XmnVAe7u8WVyHB3xfhUIgcyL8wN3zvDcMCHoJhLHGaazZfFdon87D3EwTALXsVji ws74b/ofmratBP5qcuRcmg/9gOMjPSyX3xrQhENKGzOjlUZ75hiTS1UHYcMqg1Ir 8HCqvJ+zT++Zcaz2isvYR/rdOiJgUcf84TU4 -----END CERTIFICATE-----Generated at Mon Jan 26 01:22:01 2026 by rpki-client