This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/82/7cb179-ad2c-4824-a1e5-ae07f32e4102/1/QiTXesEnDUMy1VzzXBZ1a1EV7ao.roa File: QiTXesEnDUMy1VzzXBZ1a1EV7ao.roa (raw, json) Hash identifier: AmaLGYuWMfv3G3fabRyFwE+8Jn7gj+JYPPZU6wIdzfM= Subject key identifier: 42:24:D7:7A:C1:27:0D:43:32:D5:5C:F3:5C:16:75:6B:51:15:ED:AA Certificate issuer: /CN=fc44297e9271c6edf064915f6180ae12690dda8b Certificate serial: 019B791053BCED2B16799CFF6F62D3915BF4 Authority key identifier: FC:44:29:7E:92:71:C6:ED:F0:64:91:5F:61:80:AE:12:69:0D:DA:8B Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_EQpfpJxxu3wZJFfYYCuEmkN2os.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/82/7cb179-ad2c-4824-a1e5-ae07f32e4102/1/QiTXesEnDUMy1VzzXBZ1a1EV7ao.roa Signing time: Thu 01 Jan 2026 10:17:51 +0000 ROA not before: Thu 01 Jan 2026 10:17:51 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 211239 IP address blocks: 213.169.156.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/82/7cb179-ad2c-4824-a1e5-ae07f32e4102/1/_EQpfpJxxu3wZJFfYYCuEmkN2os.crl rsync://rpki.ripe.net/repository/DEFAULT/82/7cb179-ad2c-4824-a1e5-ae07f32e4102/1/_EQpfpJxxu3wZJFfYYCuEmkN2os.mft rsync://rpki.ripe.net/repository/DEFAULT/_EQpfpJxxu3wZJFfYYCuEmkN2os.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 19:01:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:79:10:53:bc:ed:2b:16:79:9c:ff:6f:62:d3:91:5b:f4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=fc44297e9271c6edf064915f6180ae12690dda8b Validity Not Before: Jan 1 10:17:51 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=4224d77ac1270d4332d55cf35c16756b5115edaa Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:98:29:8f:4d:2e:ea:8c:d6:87:ee:49:e7:7e: df:d3:8e:9f:6a:5f:73:59:b2:15:87:90:05:99:b9: c7:33:db:09:52:69:6a:17:cc:d0:06:b1:2b:1c:fb: 2e:bf:74:b7:e0:a1:da:f0:40:88:53:e1:9c:53:68: 7e:60:66:a0:53:5e:97:96:6a:09:30:00:cf:ae:67: b7:d8:7a:2e:52:b1:f0:48:88:5f:4b:cb:23:98:18: 0d:01:7a:40:29:a0:06:b5:52:39:34:2c:9b:01:ea: b0:11:fd:d4:64:59:1c:87:fd:3f:d9:77:61:f6:23: de:b9:be:78:5c:42:b6:eb:44:26:de:67:8c:e2:0f: d1:8b:97:ae:ee:58:45:6c:ca:09:ff:61:fb:9e:49: c0:02:61:b6:95:24:7f:68:69:3e:e2:01:15:2a:71: 71:99:0e:95:de:48:1c:d5:11:58:1a:f5:01:c2:f6: b9:de:fa:ee:62:c4:62:c6:44:7a:86:e9:01:a3:11: 6f:09:7e:f8:50:7d:06:31:33:93:72:92:5d:3e:4c: c6:63:89:ee:8c:92:b4:7b:13:fd:f8:4d:c3:a3:a5: 3b:97:d5:65:35:4f:ee:48:d2:00:9b:fe:2c:83:b5: 6c:42:2b:01:88:4a:e0:3b:0c:4e:19:96:b1:67:6c: f7:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 42:24:D7:7A:C1:27:0D:43:32:D5:5C:F3:5C:16:75:6B:51:15:ED:AA X509v3 Authority Key Identifier: keyid:FC:44:29:7E:92:71:C6:ED:F0:64:91:5F:61:80:AE:12:69:0D:DA:8B X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_EQpfpJxxu3wZJFfYYCuEmkN2os.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/82/7cb179-ad2c-4824-a1e5-ae07f32e4102/1/QiTXesEnDUMy1VzzXBZ1a1EV7ao.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/82/7cb179-ad2c-4824-a1e5-ae07f32e4102/1/_EQpfpJxxu3wZJFfYYCuEmkN2os.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 213.169.156.0/24 Signature Algorithm: sha256WithRSAEncryption 73:0f:47:7a:31:00:c1:a8:81:8c:9b:e7:c7:62:46:b6:77:92: a6:87:55:3a:be:3d:d3:f0:1d:cd:61:2a:f2:6b:20:74:09:5e: 47:8b:67:be:bb:38:33:c3:6f:cb:cd:e8:58:e7:a7:03:32:61: 7a:21:5e:22:05:2d:db:b7:36:6b:81:93:ec:40:d3:35:0c:d4: e9:9d:16:64:1d:01:bf:7e:16:f3:ea:69:42:37:c1:d1:e4:26: 24:87:68:3b:d8:f2:81:f4:c2:85:0f:aa:27:7c:fd:b2:02:89: 9e:cf:b0:74:d2:d1:40:11:26:59:f5:b6:d6:bb:8c:2b:d6:16: 44:af:25:5b:b4:f7:0a:da:d4:cc:6f:54:b0:d0:d9:24:6e:61: 69:7f:f6:09:4c:65:d3:af:a5:e7:a6:51:8e:f8:0b:97:40:fa: 45:38:f5:15:b0:8a:28:38:1c:2b:40:12:02:46:f6:6a:e5:6c: 74:ef:62:ac:8a:8e:7b:2f:f8:7d:2f:b7:bc:9f:2c:2c:82:62: 40:8d:bb:79:fb:d8:ca:23:fd:db:e2:64:13:31:3b:d7:28:d0: 0e:51:dc:6b:b3:67:55:f8:3b:ef:97:2d:15:ee:c8:a6:aa:19: 85:ca:67:8d:66:ec:c7:29:d8:59:bf:2e:95:26:94:ea:1e:33: 67:d6:40:e7 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt5EFO87SsWeZz/b2LTkVv0MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGZjNDQyOTdlOTI3MWM2ZWRmMDY0OTE1ZjYxODBhZTEyNjkw ZGRhOGIwHhcNMjYwMTAxMTAxNzUxWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg0MjI0ZDc3YWMxMjcwZDQzMzJkNTVjZjM1YzE2NzU2YjUxMTVlZGFhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAp5gpj00u6ozWh+5J537f046fal9z WbIVh5AFmbnHM9sJUmlqF8zQBrErHPsuv3S34KHa8ECIU+GcU2h+YGagU16XlmoJ MADPrme32HouUrHwSIhfS8sjmBgNAXpAKaAGtVI5NCybAeqwEf3UZFkch/0/2Xdh 9iPeub54XEK260Qm3meM4g/Ri5eu7lhFbMoJ/2H7nknAAmG2lSR/aGk+4gEVKnFx mQ6V3kgc1RFYGvUBwva53vruYsRixkR6hukBoxFvCX74UH0GMTOTcpJdPkzGY4nu jJK0exP9+E3Do6U7l9VlNU/uSNIAm/4sg7VsQisBiErgOwxOGZaxZ2z3KwIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFEIk13rBJw1DMtVc81wWdWtRFe2qMB8GA1UdIwQY MBaAFPxEKX6Sccbt8GSRX2GArhJpDdqLMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvX0VRcGZwSnh4dTN3WkpGZllZQ3VFbWtOMm9zLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84Mi83Y2IxNzktYWQyYy00ODI0LWExZTUt YWUwN2YzMmU0MTAyLzEvUWlUWGVzRW5EVU15MVZ6elhCWjFhMUVWN2FvLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC84Mi83Y2IxNzktYWQyYy00ODI0LWExZTUtYWUwN2YzMmU0MTAy LzEvX0VRcGZwSnh4dTN3WkpGZllZQ3VFbWtOMm9zLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQA1amcMA0G CSqGSIb3DQEBCwUAA4IBAQBzD0d6MQDBqIGMm+fHYka2d5Kmh1U6vj3T8B3NYSry ayB0CV5Hi2e+uzgzw2/LzehY56cDMmF6IV4iBS3btzZrgZPsQNM1DNTpnRZkHQG/ fhbz6mlCN8HR5CYkh2g72PKB9MKFD6onfP2yAomez7B00tFAESZZ9bbWu4wr1hZE ryVbtPcK2tTMb1Sw0NkkbmFpf/YJTGXTr6XnplGO+AuXQPpFOPUVsIooOBwrQBIC RvZq5Wx072Ksio57L/h9L7e8nywsgmJAjbt5+9jKI/3b4mQTMTvXKNAOUdxrs2dV +Dvvly0V7simqhmFymeNZuzHKdhZvy6VJpTqHjNn1kDn -----END CERTIFICATE-----Generated at Mon Jan 26 04:40:58 2026 by rpki-client