This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/qQDYyvDtA7R44TF110RdPg5YR44.roa File: qQDYyvDtA7R44TF110RdPg5YR44.roa (raw, json) Hash identifier: ZRTiSxHscz4ZP0/F6Q7DQ1f6ph2HpNwibC/jvM9bD28= Subject key identifier: A9:00:D8:CA:F0:ED:03:B4:78:E1:31:75:D7:44:5D:3E:0E:58:47:8E Certificate issuer: /CN=749122c35438a4eb26233fdc6e4bb1df2daaef42 Certificate serial: 019B7F8518C7288A0E8803325B2B01DA3D7A Authority key identifier: 74:91:22:C3:54:38:A4:EB:26:23:3F:DC:6E:4B:B1:DF:2D:AA:EF:42 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dJEiw1Q4pOsmIz_cbkux3y2q70I.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/qQDYyvDtA7R44TF110RdPg5YR44.roa Signing time: Fri 02 Jan 2026 16:23:07 +0000 ROA not before: Fri 02 Jan 2026 16:23:07 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 213624 IP address blocks: 146.120.200.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/dJEiw1Q4pOsmIz_cbkux3y2q70I.crl rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/dJEiw1Q4pOsmIz_cbkux3y2q70I.mft rsync://rpki.ripe.net/repository/DEFAULT/dJEiw1Q4pOsmIz_cbkux3y2q70I.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 13:01:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7f:85:18:c7:28:8a:0e:88:03:32:5b:2b:01:da:3d:7a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=749122c35438a4eb26233fdc6e4bb1df2daaef42 Validity Not Before: Jan 2 16:23:07 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=a900d8caf0ed03b478e13175d7445d3e0e58478e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:28:81:e2:e8:38:c9:4c:94:fd:a5:70:73:06: ad:c8:5e:5f:0a:c2:2d:0c:21:21:da:89:2d:eb:54: 1a:2d:b7:c2:51:5c:b7:83:c0:43:13:16:c8:76:1b: 67:23:5e:d0:c9:2d:95:99:02:9b:d6:ac:21:bc:c1: 7d:1c:b7:b3:60:e1:9c:cc:17:ec:47:eb:4b:d9:97: de:74:e7:51:bf:c4:49:d5:b8:94:9e:e9:d2:24:24: 86:a3:de:ec:cb:b7:8c:99:1b:d7:b4:95:27:5f:c7: ff:ab:90:6f:fa:e2:ed:62:6d:ce:8e:ca:72:ab:3f: 6c:35:42:3e:af:70:05:5e:a3:e6:b1:c8:81:a8:3e: 70:83:db:bf:d1:82:8c:a9:c6:55:3e:a3:7a:83:2e: 30:ca:bc:61:3c:3c:2b:c1:14:86:16:9b:37:be:6e: 81:a0:75:1c:84:ef:28:af:48:e4:31:d8:21:58:57: 50:5f:64:32:58:1c:b8:81:4c:1e:b5:a6:09:ee:71: f0:c1:e3:17:e6:59:95:0f:43:60:47:be:fc:1e:9b: eb:29:80:29:b9:cd:00:08:3a:a6:b2:5b:f6:97:3b: 15:8b:d2:aa:74:84:27:d3:b0:f4:b2:20:61:87:dc: c4:ab:1f:a6:7a:05:fe:44:b5:79:46:b7:6c:68:02: 22:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A9:00:D8:CA:F0:ED:03:B4:78:E1:31:75:D7:44:5D:3E:0E:58:47:8E X509v3 Authority Key Identifier: keyid:74:91:22:C3:54:38:A4:EB:26:23:3F:DC:6E:4B:B1:DF:2D:AA:EF:42 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dJEiw1Q4pOsmIz_cbkux3y2q70I.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/qQDYyvDtA7R44TF110RdPg5YR44.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/dJEiw1Q4pOsmIz_cbkux3y2q70I.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 146.120.200.0/22 Signature Algorithm: sha256WithRSAEncryption 4b:a5:69:07:d1:8b:83:cd:15:54:83:5c:eb:73:df:f5:a2:5a: 16:18:9b:83:37:61:77:c9:35:a0:75:4e:26:5c:ec:6f:19:d1: 87:f2:9a:9c:fb:61:a5:15:d0:ff:8c:bc:a2:e1:48:56:fd:24: 16:02:55:9c:ad:76:ab:ae:6d:30:71:ab:50:4b:b5:a5:dd:a5: 4a:67:6d:c4:8c:65:cf:bb:2e:52:7e:a7:a9:5b:fb:7d:13:d6: 84:92:b6:3b:54:17:7e:6a:17:3a:64:73:f9:2f:e4:96:de:c6: 53:d8:ac:81:48:a5:bf:db:61:9e:a2:f0:e8:3e:fc:3b:95:9a: 73:07:4d:95:c1:58:83:13:77:00:0b:51:c7:2f:20:11:8e:46: fa:a3:02:09:ca:81:2e:81:f4:72:84:d3:59:6a:2e:e6:30:de: 7c:95:d6:1a:c7:cb:af:fd:8f:bd:08:70:96:92:89:e7:f1:2b: 5b:25:22:e9:44:13:c8:03:bb:4d:eb:78:cc:da:f4:05:9b:86: 5a:0b:b1:40:ca:ce:73:0e:5e:ee:b3:bb:77:90:3a:ed:8b:37: ea:d9:3d:1e:cd:f7:2c:29:cb:70:a5:82:ad:ed:b5:90:5e:13: 0a:a5:98:d7:34:e8:d4:fe:12:e7:57:0a:f3:e1:3c:3f:4a:8e: 84:be:35:4d -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt/hRjHKIoOiAMyWysB2j16MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDc0OTEyMmMzNTQzOGE0ZWIyNjIzM2ZkYzZlNGJiMWRmMmRh YWVmNDIwHhcNMjYwMTAyMTYyMzA3WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhhOTAwZDhjYWYwZWQwM2I0NzhlMTMxNzVkNzQ0NWQzZTBlNTg0NzhlMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvyiB4ug4yUyU/aVwcwatyF5fCsIt DCEh2okt61QaLbfCUVy3g8BDExbIdhtnI17QyS2VmQKb1qwhvMF9HLezYOGczBfs R+tL2ZfedOdRv8RJ1biUnunSJCSGo97sy7eMmRvXtJUnX8f/q5Bv+uLtYm3Ojspy qz9sNUI+r3AFXqPmsciBqD5wg9u/0YKMqcZVPqN6gy4wyrxhPDwrwRSGFps3vm6B oHUchO8or0jkMdghWFdQX2QyWBy4gUwetaYJ7nHwweMX5lmVD0NgR778HpvrKYAp uc0ACDqmslv2lzsVi9KqdIQn07D0siBhh9zEqx+megX+RLV5RrdsaAIiUQIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFKkA2Mrw7QO0eOExdddEXT4OWEeOMB8GA1UdIwQY MBaAFHSRIsNUOKTrJiM/3G5Lsd8tqu9CMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvZEpFaXcxUTRwT3NtSXpfY2JrdXgzeTJxNzBJLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81OC8xOGE5MWMtMGU3Ny00NWM5LThjYzQt MDYyYzY5MzNhYmVkLzEvcVFEWXl2RHRBN1I0NFRGMTEwUmRQZzVZUjQ0LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81OC8xOGE5MWMtMGU3Ny00NWM5LThjYzQtMDYyYzY5MzNhYmVk LzEvZEpFaXcxUTRwT3NtSXpfY2JrdXgzeTJxNzBJLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCknjIMA0G CSqGSIb3DQEBCwUAA4IBAQBLpWkH0YuDzRVUg1zrc9/1oloWGJuDN2F3yTWgdU4m XOxvGdGH8pqc+2GlFdD/jLyi4UhW/SQWAlWcrXarrm0wcatQS7Wl3aVKZ23EjGXP uy5SfqepW/t9E9aEkrY7VBd+ahc6ZHP5L+SW3sZT2KyBSKW/22GeovDoPvw7lZpz B02VwViDE3cAC1HHLyARjkb6owIJyoEugfRyhNNZai7mMN58ldYax8uv/Y+9CHCW konn8StbJSLpRBPIA7tN63jM2vQFm4ZaC7FAys5zDl7us7t3kDrtizfq2T0ezfcs KctwpYKt7bWQXhMKpZjXNOjU/hLnVwrz4Tw/So6EvjVN -----END CERTIFICATE-----Generated at Sun Jan 25 19:16:44 2026 by rpki-client