This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4d/3798d2-28f2-4b18-a17c-cb86db350931/1/qQXczGpLv7J7hq-BXv0MunRxV1c.roa File: qQXczGpLv7J7hq-BXv0MunRxV1c.roa (raw, json) Hash identifier: Ujrg8dmMYkyioyqFyW+i5iP0MRcs5Kuh6E+0SAn8NNs= Subject key identifier: A9:05:DC:CC:6A:4B:BF:B2:7B:86:AF:81:5E:FD:0C:BA:74:71:57:57 Certificate issuer: /CN=2d58b6be9c6c033b3b126f277d02bc054499fcfb Certificate serial: 019B7CED762DA5925F113B66809E24B532E0 Authority key identifier: 2D:58:B6:BE:9C:6C:03:3B:3B:12:6F:27:7D:02:BC:05:44:99:FC:FB Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/LVi2vpxsAzs7Em8nfQK8BUSZ_Ps.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4d/3798d2-28f2-4b18-a17c-cb86db350931/1/qQXczGpLv7J7hq-BXv0MunRxV1c.roa Signing time: Fri 02 Jan 2026 04:18:15 +0000 ROA not before: Fri 02 Jan 2026 04:18:15 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 12480 IP address blocks: 194.174.11.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4d/3798d2-28f2-4b18-a17c-cb86db350931/1/LVi2vpxsAzs7Em8nfQK8BUSZ_Ps.crl rsync://rpki.ripe.net/repository/DEFAULT/4d/3798d2-28f2-4b18-a17c-cb86db350931/1/LVi2vpxsAzs7Em8nfQK8BUSZ_Ps.mft rsync://rpki.ripe.net/repository/DEFAULT/LVi2vpxsAzs7Em8nfQK8BUSZ_Ps.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 10:01:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7c:ed:76:2d:a5:92:5f:11:3b:66:80:9e:24:b5:32:e0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2d58b6be9c6c033b3b126f277d02bc054499fcfb Validity Not Before: Jan 2 04:18:15 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=a905dccc6a4bbfb27b86af815efd0cba74715757 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ec:38:1a:ce:66:15:46:5c:8c:f6:b5:18:c2:d1: a9:43:18:5a:a5:94:23:ff:38:7d:b9:2a:08:50:1f: 0d:7b:0c:8c:66:d3:b6:ad:a8:2e:a5:46:4b:8e:07: 13:d0:46:6c:2f:02:f4:a6:cb:4c:15:31:3b:cf:e3: f2:9c:cc:31:db:06:bd:d4:1c:15:0f:4b:d0:73:40: 9a:7b:cc:c6:7f:a8:7f:6d:61:8f:56:61:e9:3e:d6: d9:66:3e:7f:2e:77:42:67:fc:2b:f9:ab:7a:2b:a7: 2b:4a:8c:c1:36:6a:cd:6e:19:fa:b5:68:d7:60:13: 97:39:cd:02:8a:af:38:0a:5b:a0:fd:9c:55:25:c8: d0:e0:9a:41:8a:06:97:c3:33:45:28:92:8f:9c:7f: 23:53:d5:50:a8:76:7c:c2:86:45:2a:c1:f0:dc:70: 37:89:8e:db:aa:f6:82:50:92:ab:9d:66:b5:4e:7c: fd:00:b6:57:dd:a1:e1:18:96:3f:fa:96:76:77:14: db:a5:84:7c:fd:f7:18:7b:49:06:f2:74:1b:4e:60: af:17:f1:1d:90:70:cc:3f:02:7a:cc:27:bf:53:73: d3:a7:be:ce:b4:e0:2e:f5:bb:21:19:c6:a6:0c:27: ff:85:4c:1f:b4:61:43:a9:d8:91:10:ee:59:a4:b1: 05:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A9:05:DC:CC:6A:4B:BF:B2:7B:86:AF:81:5E:FD:0C:BA:74:71:57:57 X509v3 Authority Key Identifier: keyid:2D:58:B6:BE:9C:6C:03:3B:3B:12:6F:27:7D:02:BC:05:44:99:FC:FB X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/LVi2vpxsAzs7Em8nfQK8BUSZ_Ps.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/3798d2-28f2-4b18-a17c-cb86db350931/1/qQXczGpLv7J7hq-BXv0MunRxV1c.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/3798d2-28f2-4b18-a17c-cb86db350931/1/LVi2vpxsAzs7Em8nfQK8BUSZ_Ps.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 194.174.11.0/24 Signature Algorithm: sha256WithRSAEncryption 67:27:14:53:0f:48:4b:3f:46:1e:ae:4a:12:b2:e1:3c:33:58: 02:5c:ab:43:2f:ed:8f:9c:e9:06:19:6e:ec:49:06:1c:32:17: 7e:e7:a3:80:e2:58:42:62:18:12:f7:50:80:f1:fa:46:16:de: ae:71:8d:7a:e8:cd:72:f6:fd:3c:af:87:96:f9:b4:14:56:a0: 5a:e6:53:c1:ad:ff:4e:ec:04:75:a9:b3:6b:93:81:6f:1d:db: ee:9e:a2:2d:1a:84:6d:6b:a0:c9:8a:47:bd:1b:e4:a0:de:97: bc:84:af:84:04:22:e5:78:a2:90:50:6f:24:cf:88:6f:d3:0f: 72:a5:dc:b9:e8:67:ea:dd:ba:bd:18:26:0d:21:4f:54:49:4a: 0b:d0:72:ca:c2:9a:ec:98:21:4b:d5:c3:d0:f9:c0:d6:e7:4e: f7:57:f5:a2:a7:f3:82:5f:a3:e3:b9:6f:fe:78:20:5e:cf:fe: 8f:e5:42:1c:c3:6e:31:e2:36:db:e3:48:a2:2b:04:e0:b7:63: dc:9b:6e:f9:71:30:ab:52:20:68:d1:68:81:e5:7c:71:be:50: e3:ad:6d:0c:f8:02:cc:39:09:25:c5:92:60:16:e2:72:00:ad: 83:9f:99:eb:ab:be:5e:40:71:4c:25:44:88:a8:d4:20:56:62: 3e:11:26:4e -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt87XYtpZJfETtmgJ4ktTLgMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJkNThiNmJlOWM2YzAzM2IzYjEyNmYyNzdkMDJiYzA1NDQ5 OWZjZmIwHhcNMjYwMTAyMDQxODE1WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhhOTA1ZGNjYzZhNGJiZmIyN2I4NmFmODE1ZWZkMGNiYTc0NzE1NzU3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA7DgazmYVRlyM9rUYwtGpQxhapZQj /zh9uSoIUB8NewyMZtO2ragupUZLjgcT0EZsLwL0pstMFTE7z+PynMwx2wa91BwV D0vQc0Cae8zGf6h/bWGPVmHpPtbZZj5/LndCZ/wr+at6K6crSozBNmrNbhn6tWjX YBOXOc0Ciq84Clug/ZxVJcjQ4JpBigaXwzNFKJKPnH8jU9VQqHZ8woZFKsHw3HA3 iY7bqvaCUJKrnWa1Tnz9ALZX3aHhGJY/+pZ2dxTbpYR8/fcYe0kG8nQbTmCvF/Ed kHDMPwJ6zCe/U3PTp77OtOAu9bshGcamDCf/hUwftGFDqdiREO5ZpLEFmwIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFKkF3MxqS7+ye4avgV79DLp0cVdXMB8GA1UdIwQY MBaAFC1Ytr6cbAM7OxJvJ30CvAVEmfz7MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvTFZpMnZweHNBenM3RW04bmZRSzhCVVNaX1BzLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80ZC8zNzk4ZDItMjhmMi00YjE4LWExN2Mt Y2I4NmRiMzUwOTMxLzEvcVFYY3pHcEx2N0o3aHEtQlh2ME11blJ4VjFjLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC80ZC8zNzk4ZDItMjhmMi00YjE4LWExN2MtY2I4NmRiMzUwOTMx LzEvTFZpMnZweHNBenM3RW04bmZRSzhCVVNaX1BzLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAwq4LMA0G CSqGSIb3DQEBCwUAA4IBAQBnJxRTD0hLP0YerkoSsuE8M1gCXKtDL+2PnOkGGW7s SQYcMhd+56OA4lhCYhgS91CA8fpGFt6ucY166M1y9v08r4eW+bQUVqBa5lPBrf9O 7AR1qbNrk4FvHdvunqItGoRta6DJike9G+Sg3pe8hK+EBCLleKKQUG8kz4hv0w9y pdy56Gfq3bq9GCYNIU9USUoL0HLKwprsmCFL1cPQ+cDW5073V/Wip/OCX6PjuW/+ eCBez/6P5UIcw24x4jbb40iiKwTgt2Pcm275cTCrUiBo0WiB5XxxvlDjrW0M+ALM OQklxZJgFuJyAK2Dn5nrq75eQHFMJUSIqNQgVmI+ESZO -----END CERTIFICATE-----Generated at Sun Jan 25 20:49:07 2026 by rpki-client