This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/76/11cd10-3ef7-4105-8248-ba51323db4e5/1/qPRMij18b3UBdhNaWj9X6XYBXVk.roa File: qPRMij18b3UBdhNaWj9X6XYBXVk.roa (raw, json) Hash identifier: FnJYS8FAenTkSU7Qc1cYhhd/LFBxGNSv7vOsAQbJDN8= Subject key identifier: A8:F4:4C:8A:3D:7C:6F:75:01:76:13:5A:5A:3F:57:E9:76:01:5D:59 Certificate issuer: /CN=bbf4e1fdb424a9120223b3a75c6ccc31b6f6224a Certificate serial: 019B79ED409CCD0E4F01B4E134DC7FF96FDA Authority key identifier: BB:F4:E1:FD:B4:24:A9:12:02:23:B3:A7:5C:6C:CC:31:B6:F6:22:4A Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/u_Th_bQkqRICI7OnXGzMMbb2Iko.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/76/11cd10-3ef7-4105-8248-ba51323db4e5/1/qPRMij18b3UBdhNaWj9X6XYBXVk.roa Signing time: Thu 01 Jan 2026 14:19:10 +0000 ROA not before: Thu 01 Jan 2026 14:19:10 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 41917 IP address blocks: 193.176.2.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/76/11cd10-3ef7-4105-8248-ba51323db4e5/1/u_Th_bQkqRICI7OnXGzMMbb2Iko.crl rsync://rpki.ripe.net/repository/DEFAULT/76/11cd10-3ef7-4105-8248-ba51323db4e5/1/u_Th_bQkqRICI7OnXGzMMbb2Iko.mft rsync://rpki.ripe.net/repository/DEFAULT/u_Th_bQkqRICI7OnXGzMMbb2Iko.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 13:21:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:79:ed:40:9c:cd:0e:4f:01:b4:e1:34:dc:7f:f9:6f:da Signature Algorithm: sha256WithRSAEncryption Issuer: CN=bbf4e1fdb424a9120223b3a75c6ccc31b6f6224a Validity Not Before: Jan 1 14:19:10 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=a8f44c8a3d7c6f750176135a5a3f57e976015d59 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:45:65:a1:c9:ad:a1:03:25:c3:f6:de:c0:c1: 42:ed:6a:8f:a3:cd:51:23:12:e4:8c:1a:68:c9:05: 97:8b:4b:11:3b:69:f2:e3:1e:9b:2a:b3:25:52:8d: 7d:b2:21:43:b9:fa:d3:80:77:12:4f:57:db:35:31: 02:90:9c:2a:7e:2f:d5:ac:2e:a8:60:c5:15:a2:79: 8e:b1:2a:c8:c0:6c:4a:0e:91:21:df:ce:d4:6d:4e: 87:53:2a:40:d1:c9:40:72:b3:13:42:17:5c:4b:c6: 81:31:cf:6d:56:4f:33:a8:bd:88:71:b1:3e:86:c3: 12:c3:c7:3a:d0:63:7d:63:2c:97:66:96:bf:aa:1c: 3a:07:b1:ee:c1:fe:41:d9:60:71:76:d9:6a:c1:79: 4c:86:b8:13:e5:ac:59:33:ed:27:3d:24:97:16:69: f5:87:9e:46:d4:2b:16:52:e1:ab:7e:2c:e5:1b:0d: a8:1d:04:c3:df:1d:ee:8c:57:d1:50:39:a8:5f:f5: 80:0c:ce:f7:a0:b6:56:eb:70:81:38:81:27:83:9f: 16:84:4f:f9:fa:10:ef:9b:1c:07:5b:2f:a1:5e:1b: 82:97:6c:0e:80:e0:55:ae:a6:2e:83:84:98:69:de: 12:62:80:c1:53:b6:9e:ff:2e:d8:e8:61:80:29:79: 2c:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A8:F4:4C:8A:3D:7C:6F:75:01:76:13:5A:5A:3F:57:E9:76:01:5D:59 X509v3 Authority Key Identifier: keyid:BB:F4:E1:FD:B4:24:A9:12:02:23:B3:A7:5C:6C:CC:31:B6:F6:22:4A X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/u_Th_bQkqRICI7OnXGzMMbb2Iko.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/76/11cd10-3ef7-4105-8248-ba51323db4e5/1/qPRMij18b3UBdhNaWj9X6XYBXVk.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/76/11cd10-3ef7-4105-8248-ba51323db4e5/1/u_Th_bQkqRICI7OnXGzMMbb2Iko.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 193.176.2.0/24 Signature Algorithm: sha256WithRSAEncryption 19:a8:f5:ba:7e:78:d7:45:ef:0a:a2:ca:d0:83:01:83:04:2f: 8d:e0:52:a9:e8:ca:e0:de:2a:98:77:4c:1d:62:5a:11:1a:83: 4c:05:c9:25:0d:61:e4:c8:e0:64:a5:83:87:59:ae:0c:94:d3: a0:d2:f9:2f:d3:f0:a1:bd:54:b4:68:d8:60:71:39:e9:aa:74: e6:cb:87:e6:dd:22:50:08:bc:ba:a9:be:1d:95:c7:49:ee:4f: 5c:64:ad:a3:10:2d:db:cc:57:85:1f:9c:ba:cd:b4:bf:a5:3e: f5:e7:ee:3e:6b:61:3c:97:c0:4b:76:90:80:b7:fb:d4:46:e2: 9a:e5:1a:98:22:48:b1:f4:08:ab:b5:39:28:24:90:1e:46:8e: cf:82:81:9b:25:6d:0e:2c:ac:f1:8d:7a:2b:6d:aa:fd:57:83: b8:f6:98:9e:4d:93:f1:79:b3:4f:61:82:13:b5:94:27:ae:8e: 79:1d:0b:0f:0a:bb:fe:86:ec:0b:a2:f8:3f:28:bb:7f:e4:2d: c6:ea:2d:dc:3f:48:a3:d5:fe:f6:8c:3d:6f:4b:40:79:55:d8: 15:4a:52:b2:f9:db:64:91:ed:51:62:1e:cc:de:68:30:a8:fe: 74:e9:09:32:23:c0:52:c6:36:71:99:f8:5c:12:0a:1c:e0:6f: 55:1b:ca:60 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt57UCczQ5PAbThNNx/+W/aMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGJiZjRlMWZkYjQyNGE5MTIwMjIzYjNhNzVjNmNjYzMxYjZm NjIyNGEwHhcNMjYwMTAxMTQxOTEwWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhhOGY0NGM4YTNkN2M2Zjc1MDE3NjEzNWE1YTNmNTdlOTc2MDE1ZDU5MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsUVlocmtoQMlw/bewMFC7WqPo81R IxLkjBpoyQWXi0sRO2ny4x6bKrMlUo19siFDufrTgHcST1fbNTECkJwqfi/VrC6o YMUVonmOsSrIwGxKDpEh387UbU6HUypA0clAcrMTQhdcS8aBMc9tVk8zqL2IcbE+ hsMSw8c60GN9YyyXZpa/qhw6B7Huwf5B2WBxdtlqwXlMhrgT5axZM+0nPSSXFmn1 h55G1CsWUuGrfizlGw2oHQTD3x3ujFfRUDmoX/WADM73oLZW63CBOIEng58WhE/5 +hDvmxwHWy+hXhuCl2wOgOBVrqYug4SYad4SYoDBU7ae/y7Y6GGAKXksSwIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFKj0TIo9fG91AXYTWlo/V+l2AV1ZMB8GA1UdIwQY MBaAFLv04f20JKkSAiOzp1xszDG29iJKMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvdV9UaF9iUWtxUklDSTdPblhHek1NYmIySWtvLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83Ni8xMWNkMTAtM2VmNy00MTA1LTgyNDgt YmE1MTMyM2RiNGU1LzEvcVBSTWlqMThiM1VCZGhOYVdqOVg2WFlCWFZrLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC83Ni8xMWNkMTAtM2VmNy00MTA1LTgyNDgtYmE1MTMyM2RiNGU1 LzEvdV9UaF9iUWtxUklDSTdPblhHek1NYmIySWtvLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAwbACMA0G CSqGSIb3DQEBCwUAA4IBAQAZqPW6fnjXRe8KosrQgwGDBC+N4FKp6Mrg3iqYd0wd YloRGoNMBcklDWHkyOBkpYOHWa4MlNOg0vkv0/ChvVS0aNhgcTnpqnTmy4fm3SJQ CLy6qb4dlcdJ7k9cZK2jEC3bzFeFH5y6zbS/pT715+4+a2E8l8BLdpCAt/vURuKa 5RqYIkix9AirtTkoJJAeRo7PgoGbJW0OLKzxjXorbar9V4O49pieTZPxebNPYYIT tZQnro55HQsPCrv+huwLovg/KLt/5C3G6i3cP0ij1f72jD1vS0B5VdgVSlKy+dtk ke1RYh7M3mgwqP506QkyI8BSxjZxmfhcEgoc4G9VG8pg -----END CERTIFICATE-----Generated at Sun Jan 25 22:15:15 2026 by rpki-client