This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/50/83cf73-b7ce-4440-a4ad-7c523b58decf/1/qAWpsleSdTKU2QK0ge-DYDJtKTg.roa File: qAWpsleSdTKU2QK0ge-DYDJtKTg.roa (raw, json) Hash identifier: hBYa6IMYEuL9W6YmuZd1vKmz/EkBj75T5fHCqH+FPYs= Subject key identifier: A8:05:A9:B2:57:92:75:32:94:D9:02:B4:81:EF:83:60:32:6D:29:38 Certificate issuer: /CN=53700731c5adc70bcb713e57a51a403e64ed91c8 Certificate serial: 019B79113E746C13CEEBEF257F3BF0DAC90E Authority key identifier: 53:70:07:31:C5:AD:C7:0B:CB:71:3E:57:A5:1A:40:3E:64:ED:91:C8 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/U3AHMcWtxwvLcT5XpRpAPmTtkcg.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/50/83cf73-b7ce-4440-a4ad-7c523b58decf/1/qAWpsleSdTKU2QK0ge-DYDJtKTg.roa Signing time: Thu 01 Jan 2026 10:18:51 +0000 ROA not before: Thu 01 Jan 2026 10:18:51 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 60022 IP address blocks: 45.133.160.0/22 maxlen: 24 185.62.68.0/22 maxlen: 24 2a03:60::/32 maxlen: 32 2a03:61::/32 maxlen: 32 2a03:62::/32 maxlen: 32 2a03:63::/32 maxlen: 32 2a03:64::/32 maxlen: 32 2a03:65::/32 maxlen: 32 2a03:66::/32 maxlen: 32 2a03:67::/32 maxlen: 32 2a0e:7640::/29 maxlen: 29 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/50/83cf73-b7ce-4440-a4ad-7c523b58decf/1/U3AHMcWtxwvLcT5XpRpAPmTtkcg.crl rsync://rpki.ripe.net/repository/DEFAULT/50/83cf73-b7ce-4440-a4ad-7c523b58decf/1/U3AHMcWtxwvLcT5XpRpAPmTtkcg.mft rsync://rpki.ripe.net/repository/DEFAULT/U3AHMcWtxwvLcT5XpRpAPmTtkcg.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 07:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:79:11:3e:74:6c:13:ce:eb:ef:25:7f:3b:f0:da:c9:0e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=53700731c5adc70bcb713e57a51a403e64ed91c8 Validity Not Before: Jan 1 10:18:51 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=a805a9b25792753294d902b481ef8360326d2938 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8b:45:bf:2f:85:fc:d0:1e:35:19:c3:0e:f7:b3: 67:38:71:3a:db:5e:b2:23:00:f6:6e:fe:dc:b0:da: 2e:85:b1:be:09:2e:9a:8b:ec:a0:f5:a1:05:06:cf: 9b:2c:9a:ee:f5:c9:15:e0:37:7d:e1:ad:70:ff:e3: 70:c9:c7:af:b2:62:8a:ff:17:e1:6d:f9:3c:77:7f: 0c:fa:ad:63:c7:04:03:f8:d1:12:d2:ee:31:19:f0: 86:57:3d:ff:aa:65:28:81:51:af:bb:a4:5b:2b:7a: 16:36:bf:ee:ca:61:ab:9f:a0:a2:18:4f:72:3c:53: 92:18:52:07:8d:d0:51:50:ba:2b:b4:84:f5:b1:e5: ab:d3:35:0d:54:0f:50:fd:11:66:9d:19:f2:f2:98: d9:ee:29:e3:03:a2:e0:ca:07:d7:aa:ac:7f:47:b6: 6e:f1:79:e9:12:7e:08:95:48:15:94:d1:79:14:34: 1e:dc:6d:b6:d4:fd:47:8e:b7:4b:d3:42:a0:ce:dc: 22:ce:b5:ff:0f:8b:08:ff:2d:62:c5:0f:cb:a4:1b: 27:f4:af:a6:f2:c0:b3:99:02:24:22:3f:bc:ac:26: 0d:b4:70:f6:0d:58:33:53:1f:37:35:78:da:b3:bf: 6a:a5:c0:53:a2:20:0a:e9:9d:4d:2d:47:f9:6c:5b: d9:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A8:05:A9:B2:57:92:75:32:94:D9:02:B4:81:EF:83:60:32:6D:29:38 X509v3 Authority Key Identifier: keyid:53:70:07:31:C5:AD:C7:0B:CB:71:3E:57:A5:1A:40:3E:64:ED:91:C8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/U3AHMcWtxwvLcT5XpRpAPmTtkcg.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/50/83cf73-b7ce-4440-a4ad-7c523b58decf/1/qAWpsleSdTKU2QK0ge-DYDJtKTg.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/50/83cf73-b7ce-4440-a4ad-7c523b58decf/1/U3AHMcWtxwvLcT5XpRpAPmTtkcg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 45.133.160.0/22 185.62.68.0/22 IPv6: 2a03:60::/29 2a0e:7640::/29 Signature Algorithm: sha256WithRSAEncryption 6e:32:34:2a:42:53:9e:b1:da:1c:47:db:ba:ce:63:21:92:8c: 9a:30:10:6d:92:98:b3:0c:a9:d5:d2:a5:96:c2:8f:eb:26:80: f6:f4:a5:a9:70:87:b3:23:7c:38:52:93:2a:88:ef:66:bd:f9: 62:43:c7:fb:b4:a5:90:e8:00:e2:e8:ef:24:9e:8e:1b:d5:33: f1:62:b3:04:51:98:9d:a3:af:11:ae:6f:f5:fd:85:ff:44:1e: dc:84:6d:dc:3c:85:44:9b:86:69:1b:22:b6:e5:70:e1:07:30: d4:3f:44:66:e4:2d:d6:61:66:08:5e:7a:05:15:9e:49:17:1a: 51:83:0b:a8:44:6e:87:00:40:7e:fe:d9:09:9d:a2:11:5f:23: 0a:1e:71:de:48:6d:38:07:2e:51:45:e5:a6:13:76:54:28:d4: 5f:8d:bf:04:2d:be:bd:61:66:6a:fa:58:b5:4c:05:48:1e:ff: 8a:02:8b:2b:1d:f5:45:66:14:59:02:b9:16:20:4c:f7:77:7a: 1a:d9:56:b8:ac:ab:61:33:c9:1b:1c:98:d2:1f:27:45:9c:8c: cf:63:8d:ef:4a:7f:6d:e4:29:e0:44:36:49:a7:17:e5:8b:14: b9:2f:a1:52:68:1a:84:ac:b5:59:b1:cb:ad:f3:6b:ce:1a:6d: 8d:c7:ab:83 -----BEGIN CERTIFICATE----- MIIFGTCCBAGgAwIBAgISAZt5ET50bBPO6+8lfzvw2skOMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDUzNzAwNzMxYzVhZGM3MGJjYjcxM2U1N2E1MWE0MDNlNjRl ZDkxYzgwHhcNMjYwMTAxMTAxODUxWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhhODA1YTliMjU3OTI3NTMyOTRkOTAyYjQ4MWVmODM2MDMyNmQyOTM4MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAi0W/L4X80B41GcMO97NnOHE6216y IwD2bv7csNouhbG+CS6ai+yg9aEFBs+bLJru9ckV4Dd94a1w/+NwycevsmKK/xfh bfk8d38M+q1jxwQD+NES0u4xGfCGVz3/qmUogVGvu6RbK3oWNr/uymGrn6CiGE9y PFOSGFIHjdBRULortIT1seWr0zUNVA9Q/RFmnRny8pjZ7injA6LgygfXqqx/R7Zu 8XnpEn4IlUgVlNF5FDQe3G221P1HjrdL00KgztwizrX/D4sI/y1ixQ/LpBsn9K+m 8sCzmQIkIj+8rCYNtHD2DVgzUx83NXjas79qpcBToiAK6Z1NLUf5bFvZ8QIDAQAB o4ICJTCCAiEwHQYDVR0OBBYEFKgFqbJXknUylNkCtIHvg2AybSk4MB8GA1UdIwQY MBaAFFNwBzHFrccLy3E+V6UaQD5k7ZHIMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvVTNBSE1jV3R4d3ZMY1Q1WHBScEFQbVR0a2NnLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81MC84M2NmNzMtYjdjZS00NDQwLWE0YWQt N2M1MjNiNThkZWNmLzEvcUFXcHNsZVNkVEtVMlFLMGdlLURZREp0S1RnLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81MC84M2NmNzMtYjdjZS00NDQwLWE0YWQtN2M1MjNiNThkZWNm LzEvVTNBSE1jV3R4d3ZMY1Q1WHBScEFQbVR0a2NnLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMDsGCCsGAQUFBwEHAQH/BCwwKjASBAIAATAMAwQCLYWgAwQC uT5EMBQEAgACMA4DBQMqAwBgAwUDKg52QDANBgkqhkiG9w0BAQsFAAOCAQEAbjI0 KkJTnrHaHEfbus5jIZKMmjAQbZKYswyp1dKllsKP6yaA9vSlqXCHsyN8OFKTKojv Zr35YkPH+7SlkOgA4ujvJJ6OG9Uz8WKzBFGYnaOvEa5v9f2F/0Qe3IRt3DyFRJuG aRsituVw4Qcw1D9EZuQt1mFmCF56BRWeSRcaUYMLqERuhwBAfv7ZCZ2iEV8jCh5x 3khtOAcuUUXlphN2VCjUX42/BC2+vWFmavpYtUwFSB7/igKLKx31RWYUWQK5FiBM 93d6GtlWuKyrYTPJGxyY0h8nRZyMz2ON70p/beQp4EQ2SacX5YsUuS+hUmgahKy1 WbHLrfNrzhptjcergw== -----END CERTIFICATE-----Generated at Sun Jan 25 17:22:20 2026 by rpki-client