This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/QtZb2iCfcJ6WZRKKmoHMz08190I.roa File: QtZb2iCfcJ6WZRKKmoHMz08190I.roa (raw, json) Hash identifier: 3TkKyK8QmlI6tJnqiOeVvJD2C/GVqtKr80YByGOoyoo= Subject key identifier: 42:D6:5B:DA:20:9F:70:9E:96:65:12:8A:9A:81:CC:CF:4F:35:F7:42 Certificate issuer: /CN=749122c35438a4eb26233fdc6e4bb1df2daaef42 Certificate serial: 019B7F85163852DD1186080C3FDDB7A197D3 Authority key identifier: 74:91:22:C3:54:38:A4:EB:26:23:3F:DC:6E:4B:B1:DF:2D:AA:EF:42 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dJEiw1Q4pOsmIz_cbkux3y2q70I.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/QtZb2iCfcJ6WZRKKmoHMz08190I.roa Signing time: Fri 02 Jan 2026 16:23:07 +0000 ROA not before: Fri 02 Jan 2026 16:23:07 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 212999 IP address blocks: 95.46.136.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/dJEiw1Q4pOsmIz_cbkux3y2q70I.crl rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/dJEiw1Q4pOsmIz_cbkux3y2q70I.mft rsync://rpki.ripe.net/repository/DEFAULT/dJEiw1Q4pOsmIz_cbkux3y2q70I.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 13:01:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7f:85:16:38:52:dd:11:86:08:0c:3f:dd:b7:a1:97:d3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=749122c35438a4eb26233fdc6e4bb1df2daaef42 Validity Not Before: Jan 2 16:23:07 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=42d65bda209f709e9665128a9a81cccf4f35f742 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:95:7e:12:7c:dd:1f:a8:71:9a:73:11:44:42:5c: 96:66:44:21:36:c2:c2:9d:c2:26:8e:3b:54:27:7e: 4f:d4:16:5e:43:e1:86:dc:2a:20:2f:25:f1:80:f0: a0:26:bb:3e:38:c9:3b:9a:e7:d9:a3:24:bd:60:df: 91:e3:2c:2b:2f:32:2b:0f:f8:1f:06:c3:2a:bb:04: fc:13:1e:27:b6:6a:a1:d1:28:e4:5d:dd:73:1f:e2: 95:d4:ca:c3:f5:65:7f:3c:45:8a:4b:40:94:74:3e: 42:15:69:c7:c6:ac:c3:e1:40:c7:04:24:7f:f3:81: a5:b1:7e:fe:66:3a:1e:2a:f4:83:93:f1:30:17:f8: d7:7d:8f:67:f5:48:4f:36:41:7d:36:e3:9e:5e:fe: 94:8b:06:ef:7f:77:72:67:a5:39:90:61:2b:3a:53: f8:dd:7a:ca:5d:eb:07:55:04:88:fe:54:0f:90:d2: 79:d8:70:9e:a8:fd:22:15:44:e7:76:82:ac:fa:22: 79:cf:01:45:a5:4b:71:15:e0:90:34:ae:f9:6f:e0: 71:02:17:b8:4d:c4:83:24:b6:e3:d7:42:cd:5a:dc: 45:60:c8:35:5e:b4:55:df:83:ad:e7:20:22:67:bd: ed:af:0e:eb:67:d9:89:32:e8:ff:be:64:c1:f2:69: d0:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 42:D6:5B:DA:20:9F:70:9E:96:65:12:8A:9A:81:CC:CF:4F:35:F7:42 X509v3 Authority Key Identifier: keyid:74:91:22:C3:54:38:A4:EB:26:23:3F:DC:6E:4B:B1:DF:2D:AA:EF:42 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dJEiw1Q4pOsmIz_cbkux3y2q70I.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/QtZb2iCfcJ6WZRKKmoHMz08190I.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/dJEiw1Q4pOsmIz_cbkux3y2q70I.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 95.46.136.0/22 Signature Algorithm: sha256WithRSAEncryption 74:62:bd:ae:f0:df:19:cf:f5:5d:be:e6:e2:22:9f:44:ef:1c: d3:79:68:b6:61:58:a1:cb:a5:74:fd:37:c2:f5:65:4a:21:1e: c9:02:65:63:3f:ad:50:e5:17:fb:16:95:a7:e1:78:d6:92:df: 78:9d:e9:92:e2:fe:78:43:97:e5:70:3f:2d:61:c6:18:05:c3: 9d:4a:92:df:ac:8d:08:76:9b:5a:70:15:61:bb:be:08:45:18: 0e:ce:21:7b:31:01:40:42:01:1b:21:3f:82:38:5d:2c:80:61: 0e:10:35:bc:a9:8f:4d:d2:85:08:f8:4c:3c:30:6b:59:2f:74: a9:a9:0a:02:90:03:cb:18:e0:a6:8d:f4:03:77:35:72:8d:d9: 12:31:8d:02:65:ea:38:bf:ee:6c:76:27:ba:36:4d:74:21:44: eb:09:09:e3:0c:6f:f9:33:2a:71:04:4d:c9:9c:da:9f:0b:11: 6a:4a:2f:c5:69:5d:28:cb:d7:d7:a3:a7:4b:22:57:14:d5:e1: 53:6b:ba:ca:eb:15:38:cb:ba:8c:5d:15:cb:b5:1c:c9:ff:bc: 7b:03:5f:e2:22:ee:d0:59:52:19:33:78:7a:5e:b3:5e:97:c0: 74:35:18:c6:0e:13:09:d5:6d:c5:a9:92:c5:d2:47:ad:86:13: 47:83:1e:16 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt/hRY4Ut0RhggMP923oZfTMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDc0OTEyMmMzNTQzOGE0ZWIyNjIzM2ZkYzZlNGJiMWRmMmRh YWVmNDIwHhcNMjYwMTAyMTYyMzA3WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg0MmQ2NWJkYTIwOWY3MDllOTY2NTEyOGE5YTgxY2NjZjRmMzVmNzQyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAlX4SfN0fqHGacxFEQlyWZkQhNsLC ncImjjtUJ35P1BZeQ+GG3CogLyXxgPCgJrs+OMk7mufZoyS9YN+R4ywrLzIrD/gf BsMquwT8Ex4ntmqh0SjkXd1zH+KV1MrD9WV/PEWKS0CUdD5CFWnHxqzD4UDHBCR/ 84GlsX7+ZjoeKvSDk/EwF/jXfY9n9UhPNkF9NuOeXv6Uiwbvf3dyZ6U5kGErOlP4 3XrKXesHVQSI/lQPkNJ52HCeqP0iFUTndoKs+iJ5zwFFpUtxFeCQNK75b+BxAhe4 TcSDJLbj10LNWtxFYMg1XrRV34Ot5yAiZ73trw7rZ9mJMuj/vmTB8mnQZQIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFELWW9ogn3CelmUSipqBzM9PNfdCMB8GA1UdIwQY MBaAFHSRIsNUOKTrJiM/3G5Lsd8tqu9CMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvZEpFaXcxUTRwT3NtSXpfY2JrdXgzeTJxNzBJLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81OC8xOGE5MWMtMGU3Ny00NWM5LThjYzQt MDYyYzY5MzNhYmVkLzEvUXRaYjJpQ2ZjSjZXWlJLS21vSE16MDgxOTBJLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81OC8xOGE5MWMtMGU3Ny00NWM5LThjYzQtMDYyYzY5MzNhYmVk LzEvZEpFaXcxUTRwT3NtSXpfY2JrdXgzeTJxNzBJLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCXy6IMA0G CSqGSIb3DQEBCwUAA4IBAQB0Yr2u8N8Zz/VdvubiIp9E7xzTeWi2YVihy6V0/TfC 9WVKIR7JAmVjP61Q5Rf7FpWn4XjWkt94nemS4v54Q5flcD8tYcYYBcOdSpLfrI0I dptacBVhu74IRRgOziF7MQFAQgEbIT+COF0sgGEOEDW8qY9N0oUI+Ew8MGtZL3Sp qQoCkAPLGOCmjfQDdzVyjdkSMY0CZeo4v+5sdie6Nk10IUTrCQnjDG/5MypxBE3J nNqfCxFqSi/FaV0oy9fXo6dLIlcU1eFTa7rK6xU4y7qMXRXLtRzJ/7x7A1/iIu7Q WVIZM3h6XrNel8B0NRjGDhMJ1W3FqZLF0kethhNHgx4W -----END CERTIFICATE-----Generated at Sun Jan 25 20:46:18 2026 by rpki-client