This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/81/c38360-743a-428f-ab97-6369b17ff178/1/RqKPi2xz-dA9iWopa2S6eD63VNM.roa File: RqKPi2xz-dA9iWopa2S6eD63VNM.roa (raw, json) Hash identifier: sh/U5dfnaz+hJ1QK4InqZNRlbTTXVEErKQaPltkS37U= Subject key identifier: 46:A2:8F:8B:6C:73:F9:D0:3D:89:6A:29:6B:64:BA:78:3E:B7:54:D3 Certificate issuer: /CN=cd2d25f7691360878cbace985890b9f5efcf7d95 Certificate serial: 019B7A5B0C7A2C6EFD154455423D4FF638F2 Authority key identifier: CD:2D:25:F7:69:13:60:87:8C:BA:CE:98:58:90:B9:F5:EF:CF:7D:95 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zS0l92kTYIeMus6YWJC59e_PfZU.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/81/c38360-743a-428f-ab97-6369b17ff178/1/RqKPi2xz-dA9iWopa2S6eD63VNM.roa Signing time: Thu 01 Jan 2026 16:19:05 +0000 ROA not before: Thu 01 Jan 2026 16:19:05 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 9063 IP address blocks: 185.5.28.0/22 maxlen: 22 185.209.92.0/22 maxlen: 22 195.66.0.0/21 maxlen: 21 213.185.65.0/24 maxlen: 24 213.185.66.0/23 maxlen: 23 213.185.68.0/22 maxlen: 22 213.185.72.0/22 maxlen: 22 213.185.76.0/23 maxlen: 23 2a02:7940::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/81/c38360-743a-428f-ab97-6369b17ff178/1/zS0l92kTYIeMus6YWJC59e_PfZU.crl rsync://rpki.ripe.net/repository/DEFAULT/81/c38360-743a-428f-ab97-6369b17ff178/1/zS0l92kTYIeMus6YWJC59e_PfZU.mft rsync://rpki.ripe.net/repository/DEFAULT/zS0l92kTYIeMus6YWJC59e_PfZU.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 16:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7a:5b:0c:7a:2c:6e:fd:15:44:55:42:3d:4f:f6:38:f2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=cd2d25f7691360878cbace985890b9f5efcf7d95 Validity Not Before: Jan 1 16:19:05 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=46a28f8b6c73f9d03d896a296b64ba783eb754d3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:70:10:2f:35:2d:2d:3e:ba:ed:03:ea:8f:cc: 6b:73:79:f8:04:6d:86:49:f9:f5:cc:ae:99:fc:f7: 4d:2f:aa:cb:58:1a:8a:ea:8b:82:8f:cc:d3:8b:bc: 62:8d:b8:3f:fa:ba:83:66:71:c8:e9:cc:20:44:86: 29:8e:3e:93:be:af:97:11:b6:df:e9:4c:05:e0:6c: 8e:aa:c3:91:53:ed:4c:0a:c5:04:23:56:14:b5:da: 9d:da:b2:ed:c2:77:b1:98:60:97:30:97:05:be:39: 7d:04:76:73:11:37:58:23:40:7f:1c:d6:41:ac:2e: 0c:a9:3c:d4:5e:03:6a:f4:de:36:17:02:43:b5:53: 3c:46:16:4f:80:e7:8e:67:f5:43:e1:0e:40:bf:d3: 96:0a:cf:22:cb:5d:01:8e:a9:5f:53:09:e4:35:b9: b2:82:81:ff:1f:fa:93:51:63:bc:88:eb:35:28:07: a2:95:b7:6c:26:05:b7:a2:b0:0a:b8:2a:ff:ad:5f: 0a:de:94:03:cf:e1:eb:1d:32:9c:c5:8a:ef:82:96: b6:46:e6:48:10:e3:6d:30:e3:a6:8d:50:83:f8:29: 48:0c:b5:72:96:fa:23:d4:58:37:e1:4a:cf:5d:3b: 02:60:95:ad:f2:af:48:06:5a:e1:e7:49:26:76:09: c8:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 46:A2:8F:8B:6C:73:F9:D0:3D:89:6A:29:6B:64:BA:78:3E:B7:54:D3 X509v3 Authority Key Identifier: keyid:CD:2D:25:F7:69:13:60:87:8C:BA:CE:98:58:90:B9:F5:EF:CF:7D:95 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zS0l92kTYIeMus6YWJC59e_PfZU.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/81/c38360-743a-428f-ab97-6369b17ff178/1/RqKPi2xz-dA9iWopa2S6eD63VNM.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/81/c38360-743a-428f-ab97-6369b17ff178/1/zS0l92kTYIeMus6YWJC59e_PfZU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.5.28.0/22 185.209.92.0/22 195.66.0.0/21 213.185.65.0-213.185.77.255 IPv6: 2a02:7940::/32 Signature Algorithm: sha256WithRSAEncryption a1:0d:dc:3d:a3:6a:1e:25:88:51:6e:7c:6f:4d:42:71:b6:cf: 1a:61:1a:da:1c:b7:7f:9a:3e:d9:b3:a8:b6:11:02:a8:2a:6d: a9:58:c7:97:9e:d3:0f:e6:72:71:d7:e0:5d:95:82:ea:dd:7a: 9f:8e:6d:9f:5c:96:73:9e:42:9a:eb:08:dc:1a:8c:8d:17:52: 37:d4:c5:a1:00:b8:3e:2e:a3:3a:43:30:07:5f:05:f7:12:86: 60:55:8b:cd:d1:d5:58:5c:3b:98:e1:9e:36:cf:0d:3b:9b:9e: 9e:5f:f2:e9:dd:ec:73:0d:4b:41:b0:71:90:68:c5:2b:f3:e1: 6b:0b:67:a9:74:b8:d6:98:2f:b8:f9:f9:a0:4a:ad:76:7e:f8: 23:c0:08:15:00:d2:9e:39:17:84:22:11:7e:63:92:1a:a0:1c: f0:77:ba:b1:08:3a:da:95:fe:d9:c3:30:ba:78:f2:3b:3f:e1: 15:22:d2:08:08:79:f1:a2:a4:9c:fb:44:3c:a7:99:71:a4:52: a0:a2:4c:61:96:b0:be:3e:6a:06:43:49:48:78:6d:ea:53:ad: 99:d5:9f:be:19:bd:e4:32:e7:b0:1c:2f:69:ed:9a:3f:a5:9f: 64:0a:57:41:2a:f6:5b:2e:8f:bc:5e:a7:97:d1:34:ab:ca:9b: 5e:8e:a6:e9 -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgISAZt6Wwx6LG79FURVQj1P9jjyMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGNkMmQyNWY3NjkxMzYwODc4Y2JhY2U5ODU4OTBiOWY1ZWZj ZjdkOTUwHhcNMjYwMTAxMTYxOTA1WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg0NmEyOGY4YjZjNzNmOWQwM2Q4OTZhMjk2YjY0YmE3ODNlYjc1NGQzMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtnAQLzUtLT667QPqj8xrc3n4BG2G Sfn1zK6Z/PdNL6rLWBqK6ouCj8zTi7xijbg/+rqDZnHI6cwgRIYpjj6Tvq+XEbbf 6UwF4GyOqsORU+1MCsUEI1YUtdqd2rLtwnexmGCXMJcFvjl9BHZzETdYI0B/HNZB rC4MqTzUXgNq9N42FwJDtVM8RhZPgOeOZ/VD4Q5Av9OWCs8iy10BjqlfUwnkNbmy goH/H/qTUWO8iOs1KAeilbdsJgW3orAKuCr/rV8K3pQDz+HrHTKcxYrvgpa2RuZI EONtMOOmjVCD+ClIDLVylvoj1Fg34UrPXTsCYJWt8q9IBlrh50kmdgnIeQIDAQAB o4ICMjCCAi4wHQYDVR0OBBYEFEaij4tsc/nQPYlqKWtkung+t1TTMB8GA1UdIwQY MBaAFM0tJfdpE2CHjLrOmFiQufXvz32VMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvelMwbDkya1RZSWVNdXM2WVdKQzU5ZV9QZlpVLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84MS9jMzgzNjAtNzQzYS00MjhmLWFiOTct NjM2OWIxN2ZmMTc4LzEvUnFLUGkyeHotZEE5aVdvcGEyUzZlRDYzVk5NLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC84MS9jMzgzNjAtNzQzYS00MjhmLWFiOTctNjM2OWIxN2ZmMTc4 LzEvelMwbDkya1RZSWVNdXM2WVdKQzU5ZV9QZlpVLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMEgGCCsGAQUFBwEHAQH/BDkwNzAmBAIAATAgAwQCuQUcAwQC udFcAwQDw0IAMAwDBADVuUEDBAHVuUwwDQQCAAIwBwMFACoCeUAwDQYJKoZIhvcN AQELBQADggEBAKEN3D2jah4liFFufG9NQnG2zxphGtoct3+aPtmzqLYRAqgqbalY x5ee0w/mcnHX4F2Vgurdep+ObZ9clnOeQprrCNwajI0XUjfUxaEAuD4uozpDMAdf BfcShmBVi83R1VhcO5jhnjbPDTubnp5f8und7HMNS0GwcZBoxSvz4WsLZ6l0uNaY L7j5+aBKrXZ++CPACBUA0p45F4QiEX5jkhqgHPB3urEIOtqV/tnDMLp48js/4RUi 0ggIefGipJz7RDynmXGkUqCiTGGWsL4+agZDSUh4bepTrZnVn74ZveQy57AcL2nt mj+ln2QKV0Eq9lsuj7xep5fRNKvKm16Opuk= -----END CERTIFICATE-----Generated at Mon Jan 26 00:26:05 2026 by rpki-client