This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/69/1849a6-f921-4b50-915e-b66fa4f4763a/1/k09qltBTafYPaN8mKEjySL8ft6A.roa File: k09qltBTafYPaN8mKEjySL8ft6A.roa (raw, json) Hash identifier: MFuya8B+MwfIjFnhNi4ZBDH/cZzScHZPkCXENvMvREQ= Subject key identifier: 93:4F:6A:96:D0:53:69:F6:0F:68:DF:26:28:48:F2:48:BF:1F:B7:A0 Certificate issuer: /CN=5c64f9d04efd5a9fc2e23b42d5b51aefd9a50250 Certificate serial: 019B7A5B62E0B5D2DC3CFF68CF8D6A6C0D36 Authority key identifier: 5C:64:F9:D0:4E:FD:5A:9F:C2:E2:3B:42:D5:B5:1A:EF:D9:A5:02:50 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XGT50E79Wp_C4jtC1bUa79mlAlA.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/69/1849a6-f921-4b50-915e-b66fa4f4763a/1/k09qltBTafYPaN8mKEjySL8ft6A.roa Signing time: Thu 01 Jan 2026 16:19:27 +0000 ROA not before: Thu 01 Jan 2026 16:19:27 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 211692 IP address blocks: 176.124.19.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/69/1849a6-f921-4b50-915e-b66fa4f4763a/1/XGT50E79Wp_C4jtC1bUa79mlAlA.crl rsync://rpki.ripe.net/repository/DEFAULT/69/1849a6-f921-4b50-915e-b66fa4f4763a/1/XGT50E79Wp_C4jtC1bUa79mlAlA.mft rsync://rpki.ripe.net/repository/DEFAULT/XGT50E79Wp_C4jtC1bUa79mlAlA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 22:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7a:5b:62:e0:b5:d2:dc:3c:ff:68:cf:8d:6a:6c:0d:36 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5c64f9d04efd5a9fc2e23b42d5b51aefd9a50250 Validity Not Before: Jan 1 16:19:27 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=934f6a96d05369f60f68df262848f248bf1fb7a0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:3c:07:04:29:09:71:cb:8c:e1:25:1f:cc:09: 68:9f:5a:e9:d7:ca:6b:74:cb:c7:c7:27:82:0d:0e: 7f:cd:10:ac:b6:a6:e5:bb:b4:93:07:a8:01:52:66: bc:59:d7:89:a4:a9:94:e6:03:15:58:79:1a:14:ec: b7:4f:eb:c4:e9:9d:bd:13:f2:ae:0f:31:e4:d7:f1: 29:81:12:cc:41:06:f7:22:db:46:ce:f9:87:ef:53: e2:b4:a4:52:ab:96:7d:83:08:6d:7c:c5:fc:48:5e: c8:57:17:a3:85:ec:b0:b3:88:91:1b:63:1c:2e:26: da:38:0d:62:69:c4:8b:e0:ef:81:bc:76:bf:bf:56: 8a:6c:cf:5c:d4:34:13:8f:00:6c:08:fc:35:9d:3e: a8:09:e0:e8:16:9f:09:25:21:18:32:ca:e6:a6:7c: a4:ee:46:5a:d7:42:5d:f1:08:50:de:b2:03:09:d0: f4:34:a7:22:00:54:f4:3a:18:3e:9f:36:a2:40:92: 72:17:ed:5d:53:13:23:21:88:de:0f:88:9e:f3:0e: 1f:6f:90:7d:b9:fb:04:cf:39:4b:f9:1b:30:e0:1d: 09:58:0c:91:47:3c:91:2b:ea:76:7b:4a:68:91:f6: 6e:2f:f2:e5:6d:fe:95:03:65:bd:75:f0:37:f0:de: a1:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 93:4F:6A:96:D0:53:69:F6:0F:68:DF:26:28:48:F2:48:BF:1F:B7:A0 X509v3 Authority Key Identifier: keyid:5C:64:F9:D0:4E:FD:5A:9F:C2:E2:3B:42:D5:B5:1A:EF:D9:A5:02:50 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XGT50E79Wp_C4jtC1bUa79mlAlA.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/69/1849a6-f921-4b50-915e-b66fa4f4763a/1/k09qltBTafYPaN8mKEjySL8ft6A.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/69/1849a6-f921-4b50-915e-b66fa4f4763a/1/XGT50E79Wp_C4jtC1bUa79mlAlA.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 176.124.19.0/24 Signature Algorithm: sha256WithRSAEncryption 65:e3:23:7b:b9:48:0e:c0:90:9f:7f:9c:5c:ec:94:27:43:bf: 2c:7c:63:3d:d0:1d:f4:19:b3:c9:86:d7:ee:01:c3:0d:ff:37: 33:0e:b0:03:52:5b:56:33:df:50:2e:e7:93:cb:92:ab:09:2a: 14:9b:0b:30:3d:bd:8f:d5:ac:8c:f9:35:24:18:92:56:54:eb: 1d:4a:2d:c7:76:dc:99:52:88:72:ff:d8:2f:0a:fb:72:e8:6f: 3d:24:c5:d1:b8:a4:89:05:f9:b3:de:de:39:70:28:92:e0:29: ac:f0:e0:02:3a:c1:4f:2b:fd:5d:9a:59:f0:61:8c:df:fd:70: c5:9c:75:6c:02:ec:a6:e6:68:0e:0e:be:88:59:73:be:d9:41: 36:4f:84:2a:c7:2e:4a:16:bc:e0:ad:13:6f:1e:b4:e1:17:55: 71:50:68:02:ea:6d:d7:d3:66:75:69:60:dd:03:84:fd:a0:95: 24:21:3d:d0:85:88:19:cb:c9:39:56:9e:5b:12:ab:36:09:96: c7:3a:f0:54:09:2c:9e:4c:ea:7d:59:84:21:b7:6f:eb:e5:6e: 30:67:4a:e5:71:09:26:f7:e8:29:78:75:15:39:4a:32:94:b5: 77:4e:85:87:f9:51:05:42:af:c6:42:de:26:94:c8:15:20:54: b1:3e:fa:67 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt6W2LgtdLcPP9oz41qbA02MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDVjNjRmOWQwNGVmZDVhOWZjMmUyM2I0MmQ1YjUxYWVmZDlh NTAyNTAwHhcNMjYwMTAxMTYxOTI3WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg5MzRmNmE5NmQwNTM2OWY2MGY2OGRmMjYyODQ4ZjI0OGJmMWZiN2EwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1DwHBCkJccuM4SUfzAlon1rp18pr dMvHxyeCDQ5/zRCstqblu7STB6gBUma8WdeJpKmU5gMVWHkaFOy3T+vE6Z29E/Ku DzHk1/EpgRLMQQb3IttGzvmH71PitKRSq5Z9gwhtfMX8SF7IVxejheyws4iRG2Mc LibaOA1iacSL4O+BvHa/v1aKbM9c1DQTjwBsCPw1nT6oCeDoFp8JJSEYMsrmpnyk 7kZa10Jd8QhQ3rIDCdD0NKciAFT0Ohg+nzaiQJJyF+1dUxMjIYjeD4ie8w4fb5B9 ufsEzzlL+Rsw4B0JWAyRRzyRK+p2e0pokfZuL/Llbf6VA2W9dfA38N6hbwIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFJNPapbQU2n2D2jfJihI8ki/H7egMB8GA1UdIwQY MBaAFFxk+dBO/VqfwuI7QtW1Gu/ZpQJQMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvWEdUNTBFNzlXcF9DNGp0QzFiVWE3OW1sQWxBLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82OS8xODQ5YTYtZjkyMS00YjUwLTkxNWUt YjY2ZmE0ZjQ3NjNhLzEvazA5cWx0QlRhZllQYU44bUtFanlTTDhmdDZBLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC82OS8xODQ5YTYtZjkyMS00YjUwLTkxNWUtYjY2ZmE0ZjQ3NjNh LzEvWEdUNTBFNzlXcF9DNGp0QzFiVWE3OW1sQWxBLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAsHwTMA0G CSqGSIb3DQEBCwUAA4IBAQBl4yN7uUgOwJCff5xc7JQnQ78sfGM90B30GbPJhtfu AcMN/zczDrADUltWM99QLueTy5KrCSoUmwswPb2P1ayM+TUkGJJWVOsdSi3HdtyZ Uohy/9gvCvty6G89JMXRuKSJBfmz3t45cCiS4Cms8OACOsFPK/1dmlnwYYzf/XDF nHVsAuym5mgODr6IWXO+2UE2T4Qqxy5KFrzgrRNvHrThF1VxUGgC6m3X02Z1aWDd A4T9oJUkIT3QhYgZy8k5Vp5bEqs2CZbHOvBUCSyeTOp9WYQht2/r5W4wZ0rlcQkm 9+gpeHUVOUoylLV3ToWH+VEFQq/GQt4mlMgVIFSxPvpn -----END CERTIFICATE-----Generated at Mon Jan 26 04:56:17 2026 by rpki-client