This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/74/69c7d1-c43d-4bcd-8e6a-1593d4045cbc/1/qOJN9omToo0C3f14D69g26kolF0.roa File: qOJN9omToo0C3f14D69g26kolF0.roa (raw, json) Hash identifier: ID+RWAeZnySlCvlcenhMVT/bVoxf+6Y//DrxiQaW6/A= Subject key identifier: A8:E2:4D:F6:89:93:A2:8D:02:DD:FD:78:0F:AF:60:DB:A9:28:94:5D Certificate issuer: /CN=894928a39627cd5ee5f975bd897c2d775ab29940 Certificate serial: 019B7CEE4CA47A693E9AF051F54E366CFCB6 Authority key identifier: 89:49:28:A3:96:27:CD:5E:E5:F9:75:BD:89:7C:2D:77:5A:B2:99:40 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iUkoo5YnzV7l-XW9iXwtd1qymUA.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/74/69c7d1-c43d-4bcd-8e6a-1593d4045cbc/1/qOJN9omToo0C3f14D69g26kolF0.roa Signing time: Fri 02 Jan 2026 04:19:10 +0000 ROA not before: Fri 02 Jan 2026 04:19:10 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 142165 IP address blocks: 192.48.31.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/74/69c7d1-c43d-4bcd-8e6a-1593d4045cbc/1/iUkoo5YnzV7l-XW9iXwtd1qymUA.crl rsync://rpki.ripe.net/repository/DEFAULT/74/69c7d1-c43d-4bcd-8e6a-1593d4045cbc/1/iUkoo5YnzV7l-XW9iXwtd1qymUA.mft rsync://rpki.ripe.net/repository/DEFAULT/iUkoo5YnzV7l-XW9iXwtd1qymUA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 16:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7c:ee:4c:a4:7a:69:3e:9a:f0:51:f5:4e:36:6c:fc:b6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=894928a39627cd5ee5f975bd897c2d775ab29940 Validity Not Before: Jan 2 04:19:10 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=a8e24df68993a28d02ddfd780faf60dba928945d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:49:db:b7:f4:83:00:40:0f:52:72:1e:4a:a8: 28:81:d0:6f:8f:a9:15:c7:1a:8e:c4:d1:1b:66:b6: 6b:8c:2f:a4:dd:ba:3e:96:35:80:6d:0d:f3:be:b8: 2b:0f:03:23:a1:89:56:c3:39:fd:0b:f3:41:59:6b: 0f:62:d0:6f:31:f5:cf:ec:a9:bd:65:52:61:6c:eb: 3a:0a:c1:3b:fd:63:03:9a:86:f5:e1:35:15:07:78: 4d:db:00:98:eb:9a:d9:18:2d:ad:b9:db:28:78:f8: d2:52:4a:48:07:67:b4:ad:b8:5b:d4:8b:a8:b7:c0: 9a:43:d8:68:ea:7b:7c:fd:4c:28:91:cf:9a:e3:66: f0:d4:a6:88:c1:11:85:a8:e0:eb:89:17:41:08:b0: 73:c1:8f:0b:94:d0:e2:c0:7c:a7:3c:28:a8:bf:b6: 1c:f1:d8:33:04:a2:e4:5d:12:70:b1:87:0f:21:74: 31:7a:57:d1:83:46:6b:b9:95:28:32:82:b3:f7:4a: 6c:47:33:0d:48:9d:20:2b:85:f3:09:d6:63:9f:cf: a5:97:f2:cf:24:3e:4e:83:dd:fd:5c:97:d9:6c:36: 00:22:5c:85:57:bf:f8:3c:d1:d2:4e:db:d4:a8:b4: e2:8b:6a:bb:37:eb:e1:0d:2b:da:50:68:0c:18:42: 68:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A8:E2:4D:F6:89:93:A2:8D:02:DD:FD:78:0F:AF:60:DB:A9:28:94:5D X509v3 Authority Key Identifier: keyid:89:49:28:A3:96:27:CD:5E:E5:F9:75:BD:89:7C:2D:77:5A:B2:99:40 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iUkoo5YnzV7l-XW9iXwtd1qymUA.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/74/69c7d1-c43d-4bcd-8e6a-1593d4045cbc/1/qOJN9omToo0C3f14D69g26kolF0.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/74/69c7d1-c43d-4bcd-8e6a-1593d4045cbc/1/iUkoo5YnzV7l-XW9iXwtd1qymUA.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 192.48.31.0/24 Signature Algorithm: sha256WithRSAEncryption 14:34:63:98:99:58:8d:66:da:cb:1a:cb:3b:32:07:c6:ae:7b: 16:58:9d:92:df:ae:0d:42:db:60:4c:cc:18:c8:1f:d7:d8:56: 59:1b:5a:37:19:0a:be:21:b1:52:c9:78:c5:6b:78:ab:ee:63: e6:6b:7a:6c:4e:05:dd:77:4a:39:60:5c:c1:67:56:84:33:91: d7:58:27:d1:d8:1e:34:24:0a:44:85:c1:3d:91:93:97:56:f3: 05:45:f0:1f:37:fe:a1:a7:82:42:5a:dc:4c:d4:63:32:6b:59: fb:f2:5e:5c:4c:29:f5:5a:c6:2f:5d:16:d9:86:11:c8:ed:a8: 5e:46:e1:86:55:40:96:69:b2:2b:5d:01:10:00:d4:40:7f:9d: 63:d0:65:95:49:c0:4f:5a:44:d6:82:94:43:af:5e:fd:a6:86: b1:ce:cb:a6:35:97:3f:e6:fe:52:38:99:49:90:e9:36:7e:54: 6c:47:26:6f:41:54:04:aa:07:65:03:33:25:94:b6:ff:dd:99: 8a:a4:e3:04:ab:36:1f:7c:55:66:5a:d4:28:76:0e:c5:66:6e: 96:f9:74:17:54:95:04:83:f4:60:f1:b5:c1:ae:55:44:4c:e1: 2b:93:23:50:72:e4:91:8b:18:ba:d9:f3:51:52:75:a5:1b:5e: c7:21:68:86 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt87kykemk+mvBR9U42bPy2MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDg5NDkyOGEzOTYyN2NkNWVlNWY5NzViZDg5N2MyZDc3NWFi Mjk5NDAwHhcNMjYwMTAyMDQxOTEwWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhhOGUyNGRmNjg5OTNhMjhkMDJkZGZkNzgwZmFmNjBkYmE5Mjg5NDVkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnUnbt/SDAEAPUnIeSqgogdBvj6kV xxqOxNEbZrZrjC+k3bo+ljWAbQ3zvrgrDwMjoYlWwzn9C/NBWWsPYtBvMfXP7Km9 ZVJhbOs6CsE7/WMDmob14TUVB3hN2wCY65rZGC2tudsoePjSUkpIB2e0rbhb1Iuo t8CaQ9ho6nt8/Uwokc+a42bw1KaIwRGFqODriRdBCLBzwY8LlNDiwHynPCiov7Yc 8dgzBKLkXRJwsYcPIXQxelfRg0ZruZUoMoKz90psRzMNSJ0gK4XzCdZjn8+ll/LP JD5Og939XJfZbDYAIlyFV7/4PNHSTtvUqLTii2q7N+vhDSvaUGgMGEJoDwIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFKjiTfaJk6KNAt39eA+vYNupKJRdMB8GA1UdIwQY MBaAFIlJKKOWJ81e5fl1vYl8LXdasplAMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvaVVrb281WW56VjdsLVhXOWlYd3RkMXF5bVVBLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83NC82OWM3ZDEtYzQzZC00YmNkLThlNmEt MTU5M2Q0MDQ1Y2JjLzEvcU9KTjlvbVRvbzBDM2YxNEQ2OWcyNmtvbEYwLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC83NC82OWM3ZDEtYzQzZC00YmNkLThlNmEtMTU5M2Q0MDQ1Y2Jj LzEvaVVrb281WW56VjdsLVhXOWlYd3RkMXF5bVVBLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAwDAfMA0G CSqGSIb3DQEBCwUAA4IBAQAUNGOYmViNZtrLGss7MgfGrnsWWJ2S364NQttgTMwY yB/X2FZZG1o3GQq+IbFSyXjFa3ir7mPma3psTgXdd0o5YFzBZ1aEM5HXWCfR2B40 JApEhcE9kZOXVvMFRfAfN/6hp4JCWtxM1GMya1n78l5cTCn1WsYvXRbZhhHI7ahe RuGGVUCWabIrXQEQANRAf51j0GWVScBPWkTWgpRDr179poaxzsumNZc/5v5SOJlJ kOk2flRsRyZvQVQEqgdlAzMllLb/3ZmKpOMEqzYffFVmWtQodg7FZm6W+XQXVJUE g/Rg8bXBrlVETOErkyNQcuSRixi62fNRUnWlG17HIWiG -----END CERTIFICATE-----Generated at Mon Jan 26 02:01:35 2026 by rpki-client