This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/78/da3398-6698-45f2-baae-92e25fe16331/1/qUbRkSqkZhGSxGjfVzX0WSSaqsI.roa File: qUbRkSqkZhGSxGjfVzX0WSSaqsI.roa (raw, json) Hash identifier: tQgQdrxwQHxHAeMcJPPEEhd2xQyPobx8Qrnn6LIOpOk= Subject key identifier: A9:46:D1:91:2A:A4:66:11:92:C4:68:DF:57:35:F4:59:24:9A:AA:C2 Certificate issuer: /CN=f8e62634e1bd5133a9de4512ae98cad1b2219b59 Certificate serial: 019B775947A9B3A1CB459B5E839EDFCF409F Authority key identifier: F8:E6:26:34:E1:BD:51:33:A9:DE:45:12:AE:98:CA:D1:B2:21:9B:59 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-OYmNOG9UTOp3kUSrpjK0bIhm1k.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/78/da3398-6698-45f2-baae-92e25fe16331/1/qUbRkSqkZhGSxGjfVzX0WSSaqsI.roa Signing time: Thu 01 Jan 2026 02:18:18 +0000 ROA not before: Thu 01 Jan 2026 02:18:18 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 39105 IP address blocks: 31.14.161.0/24 maxlen: 24 86.107.176.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/78/da3398-6698-45f2-baae-92e25fe16331/1/1-OYmNOG9UTOp3kUSrpjK0bIhm1k.crl rsync://rpki.ripe.net/repository/DEFAULT/78/da3398-6698-45f2-baae-92e25fe16331/1/1-OYmNOG9UTOp3kUSrpjK0bIhm1k.mft rsync://rpki.ripe.net/repository/DEFAULT/1-OYmNOG9UTOp3kUSrpjK0bIhm1k.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 07:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:77:59:47:a9:b3:a1:cb:45:9b:5e:83:9e:df:cf:40:9f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=f8e62634e1bd5133a9de4512ae98cad1b2219b59 Validity Not Before: Jan 1 02:18:18 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=a946d1912aa4661192c468df5735f459249aaac2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:99:e4:6f:4b:e1:6d:55:fd:e8:78:69:c7:9c:2e: 3f:fa:bf:ed:1d:98:47:e1:01:66:c2:98:69:77:b7: aa:81:b9:de:16:aa:fb:62:4e:9c:95:57:8e:ed:04: 63:2d:40:ba:e7:46:fe:7d:96:44:f7:18:33:45:46: a1:cb:58:79:6c:b4:26:52:31:29:e0:72:aa:84:d3: c3:f3:4c:12:79:b5:79:f4:45:3b:88:f9:01:cd:61: 11:bc:49:7e:80:79:e4:99:5a:78:c5:ac:c3:c0:ad: 67:b8:d8:30:54:0d:4a:4f:f6:7d:e3:dd:9a:2f:d2: d7:f3:8c:8c:bb:c7:f2:9e:f4:be:77:1a:45:17:5c: cc:a5:b6:a8:98:96:3d:21:ef:2e:3a:94:70:d8:7f: 12:d8:41:31:7b:c0:67:66:1b:a4:bd:f0:69:9f:d9: 40:94:2f:8f:6b:bb:64:e0:f3:05:3b:0b:fb:51:9a: cd:cf:9d:18:c5:bd:3b:c0:00:94:8a:71:92:00:d1: 2d:a4:5d:c9:7a:66:0b:37:c8:fe:1d:37:87:62:3b: 91:29:6d:bc:64:37:dc:a8:f7:68:2d:f9:80:0a:d4: 54:5e:78:ca:98:8d:2d:6f:fc:92:df:22:57:e9:23: 24:5f:cd:1c:93:b4:e7:9e:a6:10:ad:3a:cf:b8:61: 4a:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A9:46:D1:91:2A:A4:66:11:92:C4:68:DF:57:35:F4:59:24:9A:AA:C2 X509v3 Authority Key Identifier: keyid:F8:E6:26:34:E1:BD:51:33:A9:DE:45:12:AE:98:CA:D1:B2:21:9B:59 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-OYmNOG9UTOp3kUSrpjK0bIhm1k.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/78/da3398-6698-45f2-baae-92e25fe16331/1/qUbRkSqkZhGSxGjfVzX0WSSaqsI.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/78/da3398-6698-45f2-baae-92e25fe16331/1/1-OYmNOG9UTOp3kUSrpjK0bIhm1k.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 31.14.161.0/24 86.107.176.0/24 Signature Algorithm: sha256WithRSAEncryption 55:24:e0:9f:2f:83:c9:dd:50:04:5a:a9:95:ed:90:14:2d:58: e5:6c:a0:e7:8f:a1:4a:76:cd:66:71:c2:43:4f:cc:9b:a3:41: 29:3d:49:0e:ff:bb:d8:2f:ff:11:c5:3d:09:e8:68:18:f5:cb: 4f:9b:79:08:b3:4b:9e:f0:ce:db:84:fb:75:a4:41:aa:58:70: 98:ac:53:c4:ad:e2:c1:b2:15:66:9b:95:d6:fe:18:12:bf:e0: 3f:b3:07:8f:99:7e:36:64:32:2c:a9:5c:91:2b:e9:0c:e5:e3: 57:ef:a3:56:c0:ef:47:2f:fd:11:71:8b:88:85:db:81:95:9b: 9d:a6:2f:59:36:97:d3:d1:f3:4b:2a:86:b5:7e:96:be:9e:f0: 52:cb:42:f2:1d:c4:4e:4f:26:93:3a:36:20:87:77:1d:6e:a6: d0:8a:73:de:b6:f7:38:f0:30:fd:91:ba:1f:00:a0:21:5c:bb: 4d:a7:ed:50:1d:ba:c7:3c:e1:09:f0:7c:c8:52:9a:7f:da:ba: 50:c7:43:de:a6:f7:c9:9b:cd:9c:20:b3:2e:cf:bc:bd:d0:ba: 53:f5:13:9a:23:e5:c6:4e:1c:d3:3c:c1:3b:37:2e:85:bc:db: 41:4c:db:a5:c1:ff:e4:27:ef:c0:ae:c4:af:26:08:75:d7:b8: 11:9c:93:3b -----BEGIN CERTIFICATE----- MIIFBTCCA+2gAwIBAgISAZt3WUeps6HLRZteg57fz0CfMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGY4ZTYyNjM0ZTFiZDUxMzNhOWRlNDUxMmFlOThjYWQxYjIy MTliNTkwHhcNMjYwMTAxMDIxODE4WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhhOTQ2ZDE5MTJhYTQ2NjExOTJjNDY4ZGY1NzM1ZjQ1OTI0OWFhYWMyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmeRvS+FtVf3oeGnHnC4/+r/tHZhH 4QFmwphpd7eqgbneFqr7Yk6clVeO7QRjLUC650b+fZZE9xgzRUahy1h5bLQmUjEp 4HKqhNPD80wSebV59EU7iPkBzWERvEl+gHnkmVp4xazDwK1nuNgwVA1KT/Z9492a L9LX84yMu8fynvS+dxpFF1zMpbaomJY9Ie8uOpRw2H8S2EExe8BnZhukvfBpn9lA lC+Pa7tk4PMFOwv7UZrNz50Yxb07wACUinGSANEtpF3JemYLN8j+HTeHYjuRKW28 ZDfcqPdoLfmACtRUXnjKmI0tb/yS3yJX6SMkX80ck7TnnqYQrTrPuGFKowIDAQAB o4ICETCCAg0wHQYDVR0OBBYEFKlG0ZEqpGYRksRo31c19FkkmqrCMB8GA1UdIwQY MBaAFPjmJjThvVEzqd5FEq6YytGyIZtZMA4GA1UdDwEB/wQEAwIHgDBlBggrBgEF BQcBAQRZMFcwVQYIKwYBBQUHMAKGSXJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvMS1PWW1OT0c5VVRPcDNrVVNycGpLMGJJaG0xay5jZXIw gY0GCCsGAQUFBwELBIGAMH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBl Lm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNzgvZGEzMzk4LTY2OTgtNDVmMi1iYWFl LTkyZTI1ZmUxNjMzMS8xL3FVYlJrU3FrWmhHU3hHamZWelgwV1NTYXFzSS5yb2Ew gYIGA1UdHwR7MHkwd6B1oHOGcXJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0 b3J5L0RFRkFVTFQvNzgvZGEzMzk4LTY2OTgtNDVmMi1iYWFlLTkyZTI1ZmUxNjMz MS8xLzEtT1ltTk9HOVVUT3Aza1VTcnBqSzBiSWhtMWsuY3JsMBgGA1UdIAEB/wQO MAwwCgYIKwYBBQUHDgIwJQYIKwYBBQUHAQcBAf8EFjAUMBIEAgABMAwDBAAfDqED BABWa7AwDQYJKoZIhvcNAQELBQADggEBAFUk4J8vg8ndUARaqZXtkBQtWOVsoOeP oUp2zWZxwkNPzJujQSk9SQ7/u9gv/xHFPQnoaBj1y0+beQizS57wztuE+3WkQapY cJisU8St4sGyFWabldb+GBK/4D+zB4+ZfjZkMiypXJEr6Qzl41fvo1bA70cv/RFx i4iF24GVm52mL1k2l9PR80sqhrV+lr6e8FLLQvIdxE5PJpM6NiCHdx1uptCKc962 9zjwMP2Ruh8AoCFcu02n7VAdusc84QnwfMhSmn/aulDHQ96m98mbzZwgsy7PvL3Q ulP1E5oj5cZOHNM8wTs3LoW820FM26XB/+Qn78CuxK8mCHXXuBGckzs= -----END CERTIFICATE-----Generated at Sun Jan 25 13:03:36 2026 by rpki-client