This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/QgHc_EeMhBvLs-mqeWr1hkPcb70.roa File: QgHc_EeMhBvLs-mqeWr1hkPcb70.roa (raw, json) Hash identifier: 2JrTSddPXfF0lXoxFbz15G5XhZzF0qP5WU6FRKjdXKs= Subject key identifier: 42:01:DC:FC:47:8C:84:1B:CB:B3:E9:AA:79:6A:F5:86:43:DC:6F:BD Certificate issuer: /CN=749122c35438a4eb26233fdc6e4bb1df2daaef42 Certificate serial: 019B7F84FB7D9FFD0BDAA3C0D9D2C8BD8067 Authority key identifier: 74:91:22:C3:54:38:A4:EB:26:23:3F:DC:6E:4B:B1:DF:2D:AA:EF:42 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dJEiw1Q4pOsmIz_cbkux3y2q70I.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/QgHc_EeMhBvLs-mqeWr1hkPcb70.roa Signing time: Fri 02 Jan 2026 16:23:00 +0000 ROA not before: Fri 02 Jan 2026 16:23:00 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 204875 IP address blocks: 146.120.248.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/dJEiw1Q4pOsmIz_cbkux3y2q70I.crl rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/dJEiw1Q4pOsmIz_cbkux3y2q70I.mft rsync://rpki.ripe.net/repository/DEFAULT/dJEiw1Q4pOsmIz_cbkux3y2q70I.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 13:01:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7f:84:fb:7d:9f:fd:0b:da:a3:c0:d9:d2:c8:bd:80:67 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=749122c35438a4eb26233fdc6e4bb1df2daaef42 Validity Not Before: Jan 2 16:23:00 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=4201dcfc478c841bcbb3e9aa796af58643dc6fbd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:02:2a:a7:ce:9c:5f:65:f7:e9:17:96:69:31: 94:ba:78:03:0e:49:9d:1c:65:bd:4b:3c:9f:0a:68: 48:60:a1:2a:ce:3b:2e:bb:c4:7c:7b:bc:9d:01:54: 18:ce:aa:d1:c7:26:99:03:73:71:98:e1:09:33:ea: d1:7a:49:5b:c6:dd:84:7d:67:55:b7:4b:22:87:f1: aa:8f:b0:10:51:fd:13:f2:c4:76:08:d8:89:35:61: 64:45:29:d4:ee:e2:b2:e5:54:61:a0:12:19:a9:70: e1:2a:c7:59:94:e4:33:27:36:8a:3d:73:bb:66:cf: 9e:de:49:5a:45:80:3a:2b:a6:15:7c:5a:93:44:cc: 74:37:91:b4:72:b2:59:63:1f:ae:a6:08:b4:28:59: 78:c3:af:17:74:77:c0:e4:2f:e3:59:8f:a2:79:f7: f5:6d:7c:35:c3:cb:74:13:0d:02:bb:6b:84:b0:2e: fb:48:4d:fd:a8:80:58:29:9d:16:7a:d2:d4:9b:78: 99:c4:34:30:b6:a1:36:64:1a:8f:04:cd:3a:23:17: d4:37:39:a3:63:98:36:e4:0f:67:70:9c:78:12:53: e6:ef:7e:32:60:4b:3f:b4:5b:eb:f7:77:3e:59:5f: a3:49:cc:40:47:95:c3:8a:30:0a:af:be:ed:21:f0: cb:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 42:01:DC:FC:47:8C:84:1B:CB:B3:E9:AA:79:6A:F5:86:43:DC:6F:BD X509v3 Authority Key Identifier: keyid:74:91:22:C3:54:38:A4:EB:26:23:3F:DC:6E:4B:B1:DF:2D:AA:EF:42 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dJEiw1Q4pOsmIz_cbkux3y2q70I.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/QgHc_EeMhBvLs-mqeWr1hkPcb70.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/dJEiw1Q4pOsmIz_cbkux3y2q70I.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 146.120.248.0/22 Signature Algorithm: sha256WithRSAEncryption 28:25:08:15:62:0f:6f:dd:1e:9b:c6:4d:31:3c:df:f4:ef:38: 16:13:47:54:5f:6d:61:4a:58:c7:4f:25:b2:2e:56:53:7e:f6: b5:80:64:3d:73:30:1d:b4:dd:e8:76:40:0d:1e:6a:59:dc:d6: 14:51:c9:02:98:9f:ec:aa:bc:1d:51:dd:d8:da:b7:33:a9:b4: 70:49:52:36:78:89:4e:ef:95:34:a1:34:1c:a2:1f:1d:a6:b8: 44:2c:77:28:dc:13:26:94:02:d6:d2:f8:ea:62:0a:2b:72:94: 5e:42:c5:ba:09:34:4f:a1:e1:05:42:ab:67:f1:9c:a9:6f:d8: 7c:05:46:e3:27:f6:bf:ed:b0:d2:7a:7a:86:99:b0:e0:60:30: 72:70:6b:e2:03:e5:50:e4:48:17:cd:7d:ee:a2:89:7b:85:1e: 8a:e1:a0:99:b5:07:b4:58:a1:cd:9e:96:72:ce:a6:a5:7e:ca: 78:81:3a:68:a5:69:ae:5d:da:e9:78:4b:af:c6:16:2b:9c:34: 70:3f:2d:3c:ec:dd:73:7b:cb:83:df:fa:d3:16:5c:95:fa:7a: 5b:1e:50:ac:75:ee:5c:ad:5d:74:fd:9e:d4:f1:29:af:5d:24: 54:c0:9e:50:4f:db:ce:1d:dc:c8:fc:c5:5d:58:b6:a8:16:93: ed:89:b4:96 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt/hPt9n/0L2qPA2dLIvYBnMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDc0OTEyMmMzNTQzOGE0ZWIyNjIzM2ZkYzZlNGJiMWRmMmRh YWVmNDIwHhcNMjYwMTAyMTYyMzAwWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg0MjAxZGNmYzQ3OGM4NDFiY2JiM2U5YWE3OTZhZjU4NjQzZGM2ZmJkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0AIqp86cX2X36ReWaTGUungDDkmd HGW9SzyfCmhIYKEqzjsuu8R8e7ydAVQYzqrRxyaZA3NxmOEJM+rReklbxt2EfWdV t0sih/Gqj7AQUf0T8sR2CNiJNWFkRSnU7uKy5VRhoBIZqXDhKsdZlOQzJzaKPXO7 Zs+e3klaRYA6K6YVfFqTRMx0N5G0crJZYx+upgi0KFl4w68XdHfA5C/jWY+ieff1 bXw1w8t0Ew0Cu2uEsC77SE39qIBYKZ0WetLUm3iZxDQwtqE2ZBqPBM06IxfUNzmj Y5g25A9ncJx4ElPm734yYEs/tFvr93c+WV+jScxAR5XDijAKr77tIfDLgQIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFEIB3PxHjIQby7Ppqnlq9YZD3G+9MB8GA1UdIwQY MBaAFHSRIsNUOKTrJiM/3G5Lsd8tqu9CMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvZEpFaXcxUTRwT3NtSXpfY2JrdXgzeTJxNzBJLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81OC8xOGE5MWMtMGU3Ny00NWM5LThjYzQt MDYyYzY5MzNhYmVkLzEvUWdIY19FZU1oQnZMcy1tcWVXcjFoa1BjYjcwLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81OC8xOGE5MWMtMGU3Ny00NWM5LThjYzQtMDYyYzY5MzNhYmVk LzEvZEpFaXcxUTRwT3NtSXpfY2JrdXgzeTJxNzBJLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCknj4MA0G CSqGSIb3DQEBCwUAA4IBAQAoJQgVYg9v3R6bxk0xPN/07zgWE0dUX21hSljHTyWy LlZTfva1gGQ9czAdtN3odkANHmpZ3NYUUckCmJ/sqrwdUd3Y2rczqbRwSVI2eIlO 75U0oTQcoh8dprhELHco3BMmlALW0vjqYgorcpReQsW6CTRPoeEFQqtn8Zypb9h8 BUbjJ/a/7bDSenqGmbDgYDBycGviA+VQ5EgXzX3uool7hR6K4aCZtQe0WKHNnpZy zqalfsp4gTpopWmuXdrpeEuvxhYrnDRwPy087N1ze8uD3/rTFlyV+npbHlCsde5c rV10/Z7U8SmvXSRUwJ5QT9vOHdzI/MVdWLaoFpPtibSW -----END CERTIFICATE-----Generated at Sun Jan 25 20:47:02 2026 by rpki-client