This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/64/4f8444-2c3d-4592-9458-801d89d7366d/1/Qd96EibuUMUl47bpcNIQg2lzdXM.roa File: Qd96EibuUMUl47bpcNIQg2lzdXM.roa (raw, json) Hash identifier: bfpu3e5a3SbtwnPEBP2TMhw1nW2Ik4salWdsyYywAxI= Subject key identifier: 41:DF:7A:12:26:EE:50:C5:25:E3:B6:E9:70:D2:10:83:69:73:75:73 Certificate issuer: /CN=c74da21da8038a820542b3afafbeaaaa666b7b27 Certificate serial: 019B7B35B1D5B72AAE5D5200ED0486FC88EB Authority key identifier: C7:4D:A2:1D:A8:03:8A:82:05:42:B3:AF:AF:BE:AA:AA:66:6B:7B:27 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/x02iHagDioIFQrOvr76qqmZreyc.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/64/4f8444-2c3d-4592-9458-801d89d7366d/1/Qd96EibuUMUl47bpcNIQg2lzdXM.roa Signing time: Thu 01 Jan 2026 20:17:55 +0000 ROA not before: Thu 01 Jan 2026 20:17:55 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 6799 IP address blocks: 195.43.132.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/64/4f8444-2c3d-4592-9458-801d89d7366d/1/x02iHagDioIFQrOvr76qqmZreyc.crl rsync://rpki.ripe.net/repository/DEFAULT/64/4f8444-2c3d-4592-9458-801d89d7366d/1/x02iHagDioIFQrOvr76qqmZreyc.mft rsync://rpki.ripe.net/repository/DEFAULT/x02iHagDioIFQrOvr76qqmZreyc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 27 Jan 2026 10:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7b:35:b1:d5:b7:2a:ae:5d:52:00:ed:04:86:fc:88:eb Signature Algorithm: sha256WithRSAEncryption Issuer: CN=c74da21da8038a820542b3afafbeaaaa666b7b27 Validity Not Before: Jan 1 20:17:55 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=41df7a1226ee50c525e3b6e970d2108369737573 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:e3:c5:38:3e:76:be:c6:2e:0c:3c:5c:14:c3: 9f:53:5b:5b:71:73:54:ef:2f:0e:1f:20:ae:23:02: fb:63:8b:cd:f5:40:1e:b1:4a:f7:37:db:df:5c:87: eb:ee:93:a9:64:c2:c3:52:b9:00:1b:d7:b2:e9:dd: cd:55:e9:83:1b:23:86:4f:16:c2:aa:61:3b:0f:b1: f5:af:51:74:08:8c:be:5b:a2:b1:d8:c8:99:06:69: 70:08:03:c2:42:e0:b3:c3:44:a0:a2:12:5d:97:4f: 68:8d:f8:50:47:01:84:5f:f4:36:8f:08:94:9f:b3: 2c:11:13:c9:9e:17:59:9e:e2:20:f6:5b:c8:58:fd: 73:8c:98:7e:32:56:0b:ae:ed:d6:ee:bd:ad:66:b6: 43:04:e8:75:23:5e:1e:36:75:55:e3:29:01:7a:74: a8:76:6e:f4:65:d0:b9:47:ec:a4:11:39:95:21:6b: bd:25:4a:df:81:e5:50:00:f9:24:4e:61:ee:79:f5: ac:59:30:ad:08:d5:af:0b:7a:f0:21:f8:2a:59:4e: a1:ad:77:b8:93:6d:1f:81:56:9b:70:99:96:e5:2f: 6c:37:60:f8:82:58:8b:65:48:4c:16:68:49:30:01: 16:ff:55:0a:c7:96:bf:07:0c:b6:15:43:93:9c:a6: f9:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 41:DF:7A:12:26:EE:50:C5:25:E3:B6:E9:70:D2:10:83:69:73:75:73 X509v3 Authority Key Identifier: keyid:C7:4D:A2:1D:A8:03:8A:82:05:42:B3:AF:AF:BE:AA:AA:66:6B:7B:27 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/x02iHagDioIFQrOvr76qqmZreyc.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/64/4f8444-2c3d-4592-9458-801d89d7366d/1/Qd96EibuUMUl47bpcNIQg2lzdXM.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/64/4f8444-2c3d-4592-9458-801d89d7366d/1/x02iHagDioIFQrOvr76qqmZreyc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 195.43.132.0/24 Signature Algorithm: sha256WithRSAEncryption 91:1d:98:ec:5f:75:f1:d2:f7:ba:9d:38:90:1a:af:88:1d:c4: b3:ed:f5:18:e0:9a:3a:23:87:e2:19:fe:29:07:36:3b:43:74: 37:35:1a:8e:f3:e4:78:cb:e1:ee:4d:50:c3:dd:1d:7c:df:5f: 0b:11:89:f7:00:31:d9:e1:b3:69:9a:69:b1:b6:0b:ad:3c:1e: 70:82:66:8b:3b:e1:fd:14:b4:e8:70:8e:59:54:13:1e:e4:05: 19:d7:ce:41:a2:29:54:b6:a1:3a:e8:fa:4d:1a:a2:24:02:84: 46:6d:fc:48:d9:70:0e:c9:fa:5e:db:20:31:49:e1:cb:47:5a: da:77:7f:85:ff:a8:38:2d:7b:c9:cb:12:4c:08:81:f1:27:98: 68:d1:50:1e:9f:bc:39:15:91:26:15:3d:00:b6:da:37:0d:9a: 55:85:62:ab:02:60:94:1c:0f:65:03:dc:8a:76:65:8f:9c:8a: d4:61:1e:8e:76:53:7b:08:0e:ba:45:49:bc:eb:c8:47:56:c0: d1:b0:a7:22:b3:fb:9c:b7:b7:54:ca:79:ea:cd:dc:40:2a:2b: ac:68:a6:18:2d:0f:c2:96:57:78:bd:ad:8e:08:9f:a7:e8:ab: a6:94:fc:87:f5:5d:78:b6:d7:e3:b3:4a:cc:ba:69:e8:8a:aa: f4:89:1f:49 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt7NbHVtyquXVIA7QSG/IjrMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGM3NGRhMjFkYTgwMzhhODIwNTQyYjNhZmFmYmVhYWFhNjY2 YjdiMjcwHhcNMjYwMTAxMjAxNzU1WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg0MWRmN2ExMjI2ZWU1MGM1MjVlM2I2ZTk3MGQyMTA4MzY5NzM3NTczMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAruPFOD52vsYuDDxcFMOfU1tbcXNU 7y8OHyCuIwL7Y4vN9UAesUr3N9vfXIfr7pOpZMLDUrkAG9ey6d3NVemDGyOGTxbC qmE7D7H1r1F0CIy+W6Kx2MiZBmlwCAPCQuCzw0SgohJdl09ojfhQRwGEX/Q2jwiU n7MsERPJnhdZnuIg9lvIWP1zjJh+MlYLru3W7r2tZrZDBOh1I14eNnVV4ykBenSo dm70ZdC5R+ykETmVIWu9JUrfgeVQAPkkTmHuefWsWTCtCNWvC3rwIfgqWU6hrXe4 k20fgVabcJmW5S9sN2D4gliLZUhMFmhJMAEW/1UKx5a/Bwy2FUOTnKb59QIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFEHfehIm7lDFJeO26XDSEINpc3VzMB8GA1UdIwQY MBaAFMdNoh2oA4qCBUKzr6++qqpma3snMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQveDAyaUhhZ0Rpb0lGUXJPdnI3NnFxbVpyZXljLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82NC80Zjg0NDQtMmMzZC00NTkyLTk0NTgt ODAxZDg5ZDczNjZkLzEvUWQ5NkVpYnVVTVVsNDdicGNOSVFnMmx6ZFhNLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC82NC80Zjg0NDQtMmMzZC00NTkyLTk0NTgtODAxZDg5ZDczNjZk LzEveDAyaUhhZ0Rpb0lGUXJPdnI3NnFxbVpyZXljLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAwyuEMA0G CSqGSIb3DQEBCwUAA4IBAQCRHZjsX3Xx0ve6nTiQGq+IHcSz7fUY4Jo6I4fiGf4p BzY7Q3Q3NRqO8+R4y+HuTVDD3R18318LEYn3ADHZ4bNpmmmxtgutPB5wgmaLO+H9 FLTocI5ZVBMe5AUZ185BoilUtqE66PpNGqIkAoRGbfxI2XAOyfpe2yAxSeHLR1ra d3+F/6g4LXvJyxJMCIHxJ5ho0VAen7w5FZEmFT0Atto3DZpVhWKrAmCUHA9lA9yK dmWPnIrUYR6OdlN7CA66RUm868hHVsDRsKcis/uct7dUynnqzdxAKiusaKYYLQ/C lld4va2OCJ+n6KumlPyH9V14ttfjs0rMumnoiqr0iR9J -----END CERTIFICATE-----Generated at Mon Jan 26 16:23:29 2026 by rpki-client