This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/74/ca1667-de8f-45dc-9007-5afe0c42cf77/1/qGufgpnXsdA505UL9rLMl_XkECY.roa File: qGufgpnXsdA505UL9rLMl_XkECY.roa (raw, json) Hash identifier: J3gwk0cVtFF6iJ602SqYnRybno+t/W1jMS3C5xgfXqk= Subject key identifier: A8:6B:9F:82:99:D7:B1:D0:39:D3:95:0B:F6:B2:CC:97:F5:E4:10:26 Certificate issuer: /CN=8794d564360a521db598aee6e6a2f8d66921b6c5 Certificate serial: 019B7C112063FEB16F58155CC7A91F21A321 Authority key identifier: 87:94:D5:64:36:0A:52:1D:B5:98:AE:E6:E6:A2:F8:D6:69:21:B6:C5 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/h5TVZDYKUh21mK7m5qL41mkhtsU.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/74/ca1667-de8f-45dc-9007-5afe0c42cf77/1/qGufgpnXsdA505UL9rLMl_XkECY.roa Signing time: Fri 02 Jan 2026 00:17:35 +0000 ROA not before: Fri 02 Jan 2026 00:17:35 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 208137 IP address blocks: 213.177.179.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/74/ca1667-de8f-45dc-9007-5afe0c42cf77/1/h5TVZDYKUh21mK7m5qL41mkhtsU.crl rsync://rpki.ripe.net/repository/DEFAULT/74/ca1667-de8f-45dc-9007-5afe0c42cf77/1/h5TVZDYKUh21mK7m5qL41mkhtsU.mft rsync://rpki.ripe.net/repository/DEFAULT/h5TVZDYKUh21mK7m5qL41mkhtsU.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 13:21:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7c:11:20:63:fe:b1:6f:58:15:5c:c7:a9:1f:21:a3:21 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8794d564360a521db598aee6e6a2f8d66921b6c5 Validity Not Before: Jan 2 00:17:35 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=a86b9f8299d7b1d039d3950bf6b2cc97f5e41026 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:56:f1:09:99:04:79:c0:99:20:52:4c:51:3a: 45:9e:78:ec:a2:16:7e:bd:b4:fc:e3:d9:5d:ab:de: 8b:47:96:ad:95:e6:ba:7e:5f:db:ea:f1:be:53:0f: 5b:12:04:89:a9:c8:36:de:21:dc:06:d5:b0:40:66: 68:41:45:44:6b:6a:e5:15:8e:70:dc:a9:c9:f1:dc: 75:21:49:a8:3b:ad:b8:71:56:72:25:98:64:97:77: e5:27:57:57:f5:f9:bb:41:83:0e:e1:f3:10:12:9c: a6:4f:c9:74:e7:58:ee:90:9e:fb:e2:ef:f0:55:53: a8:a6:21:6b:b8:de:0f:0b:79:62:d0:1f:13:e6:f9: dc:13:a3:01:84:ae:8d:c0:16:9e:25:a5:f3:fc:b3: f8:3a:80:83:7d:f4:57:71:a5:23:2a:91:2d:2e:ca: 11:e0:2a:a6:87:70:4d:56:d6:2a:06:30:95:93:5d: 29:39:c8:ed:d5:94:77:5c:e0:40:50:55:e5:e4:47: 87:a8:83:4e:f0:c7:78:41:a6:9d:1a:f5:bd:e6:91: f0:28:d2:e8:4a:d9:cf:e5:6f:b6:94:f2:7c:f9:9e: f4:88:97:f1:89:d6:17:1c:7a:d3:3e:22:70:d2:ce: 5b:39:85:96:17:35:9a:ea:1c:ed:a7:d3:f3:63:ed: 8b:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A8:6B:9F:82:99:D7:B1:D0:39:D3:95:0B:F6:B2:CC:97:F5:E4:10:26 X509v3 Authority Key Identifier: keyid:87:94:D5:64:36:0A:52:1D:B5:98:AE:E6:E6:A2:F8:D6:69:21:B6:C5 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/h5TVZDYKUh21mK7m5qL41mkhtsU.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/74/ca1667-de8f-45dc-9007-5afe0c42cf77/1/qGufgpnXsdA505UL9rLMl_XkECY.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/74/ca1667-de8f-45dc-9007-5afe0c42cf77/1/h5TVZDYKUh21mK7m5qL41mkhtsU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 213.177.179.0/24 Signature Algorithm: sha256WithRSAEncryption 73:3a:cd:6f:2d:65:f8:d6:fd:cb:9b:50:f9:da:d8:48:13:fc: 7b:28:a4:08:7a:a9:a6:ab:2b:03:f8:dc:fe:78:88:ea:10:da: f5:4a:87:cb:1a:8d:29:8f:fb:e8:49:d7:e7:e1:b1:81:91:d7: 42:52:8d:02:3f:46:54:e2:23:09:d5:0d:b4:c1:ff:8c:28:61: 8f:ce:21:1d:bf:43:6f:e4:3c:07:2d:e5:34:48:45:cb:93:03: 40:ec:25:ed:80:ea:d7:de:e7:84:e4:2f:91:4a:6a:01:55:d2: 59:ac:17:0d:4a:59:c7:fb:27:21:55:7e:87:d0:05:ec:b8:fb: 01:6e:da:a8:a3:a0:f1:1d:79:d9:31:63:cc:ae:98:5f:0e:49: 34:56:d3:dd:a9:91:e1:1c:83:e0:a2:3c:df:71:7c:3b:c9:d5: 87:d3:79:7b:1a:ba:62:ad:16:3a:53:e3:e9:15:8e:e3:96:2f: a6:88:b8:49:14:6d:86:52:b8:e7:2a:e4:2d:8c:ba:a3:0c:f2: 8f:6c:ff:d0:54:a1:c2:e4:30:c2:e7:a2:6a:96:d5:08:c8:86: 7a:df:eb:ea:1c:91:0f:73:41:05:54:65:a5:75:dc:8a:88:7f: 60:44:58:a5:72:d0:d7:12:f9:a5:ae:50:70:82:e4:d0:cf:04: f1:50:c3:f4 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt8ESBj/rFvWBVcx6kfIaMhMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDg3OTRkNTY0MzYwYTUyMWRiNTk4YWVlNmU2YTJmOGQ2Njky MWI2YzUwHhcNMjYwMTAyMDAxNzM1WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhhODZiOWY4Mjk5ZDdiMWQwMzlkMzk1MGJmNmIyY2M5N2Y1ZTQxMDI2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwlbxCZkEecCZIFJMUTpFnnjsohZ+ vbT849ldq96LR5atlea6fl/b6vG+Uw9bEgSJqcg23iHcBtWwQGZoQUVEa2rlFY5w 3KnJ8dx1IUmoO624cVZyJZhkl3flJ1dX9fm7QYMO4fMQEpymT8l051jukJ774u/w VVOopiFruN4PC3li0B8T5vncE6MBhK6NwBaeJaXz/LP4OoCDffRXcaUjKpEtLsoR 4Cqmh3BNVtYqBjCVk10pOcjt1ZR3XOBAUFXl5EeHqINO8Md4QaadGvW95pHwKNLo StnP5W+2lPJ8+Z70iJfxidYXHHrTPiJw0s5bOYWWFzWa6hztp9PzY+2L9QIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFKhrn4KZ17HQOdOVC/ayzJf15BAmMB8GA1UdIwQY MBaAFIeU1WQ2ClIdtZiu5uai+NZpIbbFMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvaDVUVlpEWUtVaDIxbUs3bTVxTDQxbWtodHNVLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83NC9jYTE2NjctZGU4Zi00NWRjLTkwMDct NWFmZTBjNDJjZjc3LzEvcUd1ZmdwblhzZEE1MDVVTDlyTE1sX1hrRUNZLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC83NC9jYTE2NjctZGU4Zi00NWRjLTkwMDctNWFmZTBjNDJjZjc3 LzEvaDVUVlpEWUtVaDIxbUs3bTVxTDQxbWtodHNVLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQA1bGzMA0G CSqGSIb3DQEBCwUAA4IBAQBzOs1vLWX41v3Lm1D52thIE/x7KKQIeqmmqysD+Nz+ eIjqENr1SofLGo0pj/voSdfn4bGBkddCUo0CP0ZU4iMJ1Q20wf+MKGGPziEdv0Nv 5DwHLeU0SEXLkwNA7CXtgOrX3ueE5C+RSmoBVdJZrBcNSlnH+ychVX6H0AXsuPsB btqoo6DxHXnZMWPMrphfDkk0VtPdqZHhHIPgojzfcXw7ydWH03l7GrpirRY6U+Pp FY7jli+miLhJFG2GUrjnKuQtjLqjDPKPbP/QVKHC5DDC56JqltUIyIZ63+vqHJEP c0EFVGWlddyKiH9gRFilctDXEvmlrlBwguTQzwTxUMP0 -----END CERTIFICATE-----Generated at Sun Jan 25 21:06:01 2026 by rpki-client