This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5b/a0e08a-9ff0-44b4-bcc4-a10690a744e4/1/Qkt4P-3ZvRUFITOdiTeOKgCxrkw.roa File: Qkt4P-3ZvRUFITOdiTeOKgCxrkw.roa (raw, json) Hash identifier: 3rqF0FN3C+u7VPFtuecMJP1cP04f2T4s71febW5rYck= Subject key identifier: 42:4B:78:3F:ED:D9:BD:15:05:21:33:9D:89:37:8E:2A:00:B1:AE:4C Certificate issuer: /CN=25cf9d8d552cdc7d8c0dc6f649b301f2351409ee Certificate serial: 019B7834E1C2E61864574F8B37A171002E0B Authority key identifier: 25:CF:9D:8D:55:2C:DC:7D:8C:0D:C6:F6:49:B3:01:F2:35:14:09:EE Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Jc-djVUs3H2MDcb2SbMB8jUUCe4.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5b/a0e08a-9ff0-44b4-bcc4-a10690a744e4/1/Qkt4P-3ZvRUFITOdiTeOKgCxrkw.roa Signing time: Thu 01 Jan 2026 06:18:10 +0000 ROA not before: Thu 01 Jan 2026 06:18:10 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 49127 IP address blocks: 45.66.34.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5b/a0e08a-9ff0-44b4-bcc4-a10690a744e4/1/Jc-djVUs3H2MDcb2SbMB8jUUCe4.crl rsync://rpki.ripe.net/repository/DEFAULT/5b/a0e08a-9ff0-44b4-bcc4-a10690a744e4/1/Jc-djVUs3H2MDcb2SbMB8jUUCe4.mft rsync://rpki.ripe.net/repository/DEFAULT/Jc-djVUs3H2MDcb2SbMB8jUUCe4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 06:00:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:78:34:e1:c2:e6:18:64:57:4f:8b:37:a1:71:00:2e:0b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=25cf9d8d552cdc7d8c0dc6f649b301f2351409ee Validity Not Before: Jan 1 06:18:10 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=424b783fedd9bd150521339d89378e2a00b1ae4c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:65:41:9b:fc:2e:1c:e2:c7:85:9d:1a:eb:13: 69:a0:de:50:32:cc:34:74:9b:6c:78:18:0a:fb:74: b1:0e:6e:76:2c:16:26:f2:46:0a:87:37:aa:3f:a1: 97:22:57:4b:3c:7c:9d:8b:1d:27:5a:04:aa:b2:2d: 01:d9:9c:21:be:0e:01:7d:66:a9:95:13:14:f9:0d: eb:dd:d0:99:ab:1a:df:f8:46:b1:04:ae:2e:a7:d3: 62:fc:55:8b:46:f2:f8:5c:38:34:43:2a:6d:69:d9: 08:c9:73:8e:fb:66:fe:9e:09:f8:23:f7:5c:cf:5d: ab:83:f6:a7:72:b7:de:f4:b5:e7:b9:a2:ea:78:3e: 1e:68:dd:e9:9d:a6:e3:63:80:47:a1:a5:de:66:e5: cb:d4:62:62:6c:2c:ba:6b:e8:8f:22:d4:86:51:d8: cb:6a:41:f8:ad:1e:7e:4b:b0:7b:35:54:0f:8f:8e: b0:c4:e4:fe:7b:82:70:b4:87:4d:43:83:43:67:e8: ca:41:37:7b:14:c2:71:f8:70:3d:7f:af:47:55:95: d4:87:a1:c3:4e:fe:24:ae:a1:87:4d:28:79:6e:3c: ef:e6:59:97:7c:33:b5:eb:59:d3:c7:da:ee:6f:dd: dc:72:3a:dd:a8:9a:13:c1:1a:83:98:7d:1c:d5:11: 16:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 42:4B:78:3F:ED:D9:BD:15:05:21:33:9D:89:37:8E:2A:00:B1:AE:4C X509v3 Authority Key Identifier: keyid:25:CF:9D:8D:55:2C:DC:7D:8C:0D:C6:F6:49:B3:01:F2:35:14:09:EE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Jc-djVUs3H2MDcb2SbMB8jUUCe4.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/a0e08a-9ff0-44b4-bcc4-a10690a744e4/1/Qkt4P-3ZvRUFITOdiTeOKgCxrkw.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/a0e08a-9ff0-44b4-bcc4-a10690a744e4/1/Jc-djVUs3H2MDcb2SbMB8jUUCe4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 45.66.34.0/24 Signature Algorithm: sha256WithRSAEncryption 6e:b8:b4:4c:d1:31:3c:98:44:a4:88:e6:95:47:d2:52:ba:c7: 68:f0:a6:9c:7d:31:3c:d3:57:5a:b1:51:f6:5f:6f:ed:57:5f: ba:ea:a7:7b:61:a1:39:da:31:e4:97:09:99:8f:ac:94:e5:29: 4d:2d:0d:41:13:14:d5:76:0f:cf:f0:f4:53:4d:d9:a7:fe:df: 17:5b:78:52:cb:e1:2d:31:22:f7:17:91:c2:96:ab:ca:aa:f3: ff:d1:db:1d:dc:27:57:9f:6b:8b:be:b9:58:71:92:af:1e:b5: 31:d5:cc:a3:ae:0d:bc:0c:ad:c4:fe:f8:f7:ea:41:b2:2d:38: 5d:9b:93:af:7e:03:9d:01:fc:74:df:32:6b:67:e7:1d:c9:b5: dc:3b:64:9c:a5:44:8a:75:a8:c2:1d:06:d1:43:54:80:5b:cb: e7:e4:89:e0:7e:82:86:10:f0:13:ac:8a:0c:7a:2b:a5:5f:56: 8b:35:ed:dd:f1:4b:21:b9:d2:78:5e:ab:ad:dd:b4:fd:32:df: 0a:83:6f:e2:24:1f:b8:65:45:46:89:15:93:b8:01:0e:ad:34: 44:b4:a8:cf:16:78:f3:5c:7d:a6:16:19:c6:aa:63:af:ea:d4: 50:2f:5e:3e:62:7a:3b:91:eb:89:3f:58:aa:59:b3:48:be:64: 6e:8e:d3:f4 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt4NOHC5hhkV0+LN6FxAC4LMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDI1Y2Y5ZDhkNTUyY2RjN2Q4YzBkYzZmNjQ5YjMwMWYyMzUx NDA5ZWUwHhcNMjYwMTAxMDYxODEwWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg0MjRiNzgzZmVkZDliZDE1MDUyMTMzOWQ4OTM3OGUyYTAwYjFhZTRjMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArmVBm/wuHOLHhZ0a6xNpoN5QMsw0 dJtseBgK+3SxDm52LBYm8kYKhzeqP6GXIldLPHydix0nWgSqsi0B2Zwhvg4BfWap lRMU+Q3r3dCZqxrf+EaxBK4up9Ni/FWLRvL4XDg0QyptadkIyXOO+2b+ngn4I/dc z12rg/ancrfe9LXnuaLqeD4eaN3pnabjY4BHoaXeZuXL1GJibCy6a+iPItSGUdjL akH4rR5+S7B7NVQPj46wxOT+e4JwtIdNQ4NDZ+jKQTd7FMJx+HA9f69HVZXUh6HD Tv4krqGHTSh5bjzv5lmXfDO161nTx9rub93ccjrdqJoTwRqDmH0c1REWBQIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFEJLeD/t2b0VBSEznYk3jioAsa5MMB8GA1UdIwQY MBaAFCXPnY1VLNx9jA3G9kmzAfI1FAnuMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSmMtZGpWVXMzSDJNRGNiMlNiTUI4alVVQ2U0LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81Yi9hMGUwOGEtOWZmMC00NGI0LWJjYzQt YTEwNjkwYTc0NGU0LzEvUWt0NFAtM1p2UlVGSVRPZGlUZU9LZ0N4cmt3LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81Yi9hMGUwOGEtOWZmMC00NGI0LWJjYzQtYTEwNjkwYTc0NGU0 LzEvSmMtZGpWVXMzSDJNRGNiMlNiTUI4alVVQ2U0LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQALUIiMA0G CSqGSIb3DQEBCwUAA4IBAQBuuLRM0TE8mESkiOaVR9JSusdo8KacfTE801dasVH2 X2/tV1+66qd7YaE52jHklwmZj6yU5SlNLQ1BExTVdg/P8PRTTdmn/t8XW3hSy+Et MSL3F5HClqvKqvP/0dsd3CdXn2uLvrlYcZKvHrUx1cyjrg28DK3E/vj36kGyLThd m5OvfgOdAfx03zJrZ+cdybXcO2ScpUSKdajCHQbRQ1SAW8vn5IngfoKGEPATrIoM eiulX1aLNe3d8UshudJ4Xqut3bT9Mt8Kg2/iJB+4ZUVGiRWTuAEOrTREtKjPFnjz XH2mFhnGqmOv6tRQL14+Yno7keuJP1iqWbNIvmRujtP0 -----END CERTIFICATE-----Generated at Sun Jan 25 13:03:28 2026 by rpki-client