This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/70/745bdb-104b-49c7-99d5-cec33ba1bdf5/1/cqQ13TfAA2f3o1iYd5u_zHjR1og.roa File: cqQ13TfAA2f3o1iYd5u_zHjR1og.roa (raw, json) Hash identifier: PPVmtCcOrF5jhwXK7aADjsl4uaCgfyEm1Gbo+31zhCo= Subject key identifier: 72:A4:35:DD:37:C0:03:67:F7:A3:58:98:77:9B:BF:CC:78:D1:D6:88 Certificate issuer: /CN=9d5de490ff874e9689cecf726cbb4e2f51f6c731 Certificate serial: 019B7D5D1AEFDA85BCB31791135D0319BADE Authority key identifier: 9D:5D:E4:90:FF:87:4E:96:89:CE:CF:72:6C:BB:4E:2F:51:F6:C7:31 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nV3kkP-HTpaJzs9ybLtOL1H2xzE.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/70/745bdb-104b-49c7-99d5-cec33ba1bdf5/1/cqQ13TfAA2f3o1iYd5u_zHjR1og.roa Signing time: Fri 02 Jan 2026 06:20:12 +0000 ROA not before: Fri 02 Jan 2026 06:20:12 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 24989 IP address blocks: 194.8.123.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/70/745bdb-104b-49c7-99d5-cec33ba1bdf5/1/nV3kkP-HTpaJzs9ybLtOL1H2xzE.crl rsync://rpki.ripe.net/repository/DEFAULT/70/745bdb-104b-49c7-99d5-cec33ba1bdf5/1/nV3kkP-HTpaJzs9ybLtOL1H2xzE.mft rsync://rpki.ripe.net/repository/DEFAULT/nV3kkP-HTpaJzs9ybLtOL1H2xzE.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 21:00:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7d:5d:1a:ef:da:85:bc:b3:17:91:13:5d:03:19:ba:de Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9d5de490ff874e9689cecf726cbb4e2f51f6c731 Validity Not Before: Jan 2 06:20:12 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=72a435dd37c00367f7a35898779bbfcc78d1d688 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:bb:a1:34:66:c8:48:86:de:f8:79:31:96:01: 56:0a:41:90:29:dc:12:2f:46:67:ea:9e:cb:80:84: 8b:63:1f:d1:27:8e:35:f1:0a:84:29:d1:ac:60:09: b7:40:86:14:34:44:44:64:c8:53:2c:53:03:48:93: ea:6b:0a:a4:41:fb:a6:63:de:a6:13:b5:2c:c7:4f: b5:39:9e:c8:8c:c6:01:6d:52:10:4f:29:8e:56:58: 80:73:b1:8e:76:56:74:aa:64:56:46:48:cc:e1:df: b5:79:a0:ce:bc:ec:23:fd:59:0e:41:4b:42:7a:e5: 86:90:06:3f:dc:3d:bf:37:ca:b3:e6:df:1e:b2:e0: a1:7f:96:15:e9:dd:d0:de:18:e6:a8:d5:10:ba:0c: 18:0e:d1:eb:a8:02:59:f9:9b:84:ad:9d:3c:77:8b: c3:d1:b4:e3:8e:6d:c8:17:44:86:4a:8e:ef:a0:62: 9e:fb:11:bc:3a:92:14:c1:d3:f0:74:76:27:22:fe: 56:7f:14:40:80:1d:9a:e0:98:5b:7d:7b:3b:49:c8: 47:36:e4:23:aa:f1:a0:e0:c4:b7:57:41:46:a6:24: f2:8a:9b:1b:de:5c:32:cd:86:78:bd:c1:31:07:51: 07:ba:09:47:22:62:92:ce:8a:33:d6:6f:db:1e:3c: 83:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 72:A4:35:DD:37:C0:03:67:F7:A3:58:98:77:9B:BF:CC:78:D1:D6:88 X509v3 Authority Key Identifier: keyid:9D:5D:E4:90:FF:87:4E:96:89:CE:CF:72:6C:BB:4E:2F:51:F6:C7:31 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nV3kkP-HTpaJzs9ybLtOL1H2xzE.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/70/745bdb-104b-49c7-99d5-cec33ba1bdf5/1/cqQ13TfAA2f3o1iYd5u_zHjR1og.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/70/745bdb-104b-49c7-99d5-cec33ba1bdf5/1/nV3kkP-HTpaJzs9ybLtOL1H2xzE.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 194.8.123.0/24 Signature Algorithm: sha256WithRSAEncryption 2c:74:50:5c:11:94:37:5b:cb:8d:8f:eb:be:22:3a:99:f2:72: fb:27:3e:7e:71:b6:b7:01:1b:59:16:cf:63:f4:53:e6:c3:ec: 02:e2:85:be:4e:21:0c:8b:47:08:99:23:2e:a9:80:ff:ac:85: 46:e0:02:d8:72:ef:dd:f6:59:da:9b:f1:a7:29:31:54:8b:b1: 95:0f:0e:85:f5:57:27:4b:5f:f6:a5:22:e6:f4:bc:fb:e6:2c: ef:a8:f1:62:91:63:90:94:a4:2c:75:f9:2b:3b:15:96:ea:12: f1:1e:fb:67:31:c3:90:39:0c:e3:af:da:fc:5d:5d:50:e0:87: 08:06:22:83:ae:1a:4d:ce:83:aa:9e:1c:cb:58:a2:58:e4:0f: 08:f0:8b:c7:55:b4:f5:57:76:d7:ec:09:0c:9a:49:b2:10:43: f0:45:47:e3:f0:f2:6d:9b:7e:d7:69:37:89:2c:a5:38:23:57: 60:86:bf:51:d0:49:16:b2:aa:73:8c:72:bc:ff:a3:10:43:18: 3e:89:dc:8d:45:3e:03:cd:9a:50:7d:c6:a4:7a:1c:e3:54:f9: 2e:c4:a0:e1:19:ab:e6:f8:82:90:39:26:cb:f6:37:a0:6c:cb: eb:7f:21:15:1b:d6:04:6c:12:ba:1c:22:50:5d:a8:0f:71:7b: 7e:ee:6a:43 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt9XRrv2oW8sxeRE10DGbreMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDlkNWRlNDkwZmY4NzRlOTY4OWNlY2Y3MjZjYmI0ZTJmNTFm NmM3MzEwHhcNMjYwMTAyMDYyMDEyWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg3MmE0MzVkZDM3YzAwMzY3ZjdhMzU4OTg3NzliYmZjYzc4ZDFkNjg4MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnbuhNGbISIbe+HkxlgFWCkGQKdwS L0Zn6p7LgISLYx/RJ4418QqEKdGsYAm3QIYUNEREZMhTLFMDSJPqawqkQfumY96m E7Usx0+1OZ7IjMYBbVIQTymOVliAc7GOdlZ0qmRWRkjM4d+1eaDOvOwj/VkOQUtC euWGkAY/3D2/N8qz5t8esuChf5YV6d3Q3hjmqNUQugwYDtHrqAJZ+ZuErZ08d4vD 0bTjjm3IF0SGSo7voGKe+xG8OpIUwdPwdHYnIv5WfxRAgB2a4JhbfXs7SchHNuQj qvGg4MS3V0FGpiTyipsb3lwyzYZ4vcExB1EHuglHImKSzooz1m/bHjyD2wIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFHKkNd03wANn96NYmHebv8x40daIMB8GA1UdIwQY MBaAFJ1d5JD/h06Wic7Pcmy7Ti9R9scxMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvblYza2tQLUhUcGFKenM5eWJMdE9MMUgyeHpFLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83MC83NDViZGItMTA0Yi00OWM3LTk5ZDUt Y2VjMzNiYTFiZGY1LzEvY3FRMTNUZkFBMmYzbzFpWWQ1dV96SGpSMW9nLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC83MC83NDViZGItMTA0Yi00OWM3LTk5ZDUtY2VjMzNiYTFiZGY1 LzEvblYza2tQLUhUcGFKenM5eWJMdE9MMUgyeHpFLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAwgh7MA0G CSqGSIb3DQEBCwUAA4IBAQAsdFBcEZQ3W8uNj+u+IjqZ8nL7Jz5+cba3ARtZFs9j 9FPmw+wC4oW+TiEMi0cImSMuqYD/rIVG4ALYcu/d9lnam/GnKTFUi7GVDw6F9Vcn S1/2pSLm9Lz75izvqPFikWOQlKQsdfkrOxWW6hLxHvtnMcOQOQzjr9r8XV1Q4IcI BiKDrhpNzoOqnhzLWKJY5A8I8IvHVbT1V3bX7AkMmkmyEEPwRUfj8PJtm37XaTeJ LKU4I1dghr9R0EkWsqpzjHK8/6MQQxg+idyNRT4DzZpQfcakehzjVPkuxKDhGavm +IKQOSbL9jegbMvrfyEVG9YEbBK6HCJQXagPcXt+7mpD -----END CERTIFICATE-----Generated at Mon Jan 26 03:07:47 2026 by rpki-client