This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/93/b681e4-fcf8-40af-aba3-cf3bdb32fd64/1/QPsr2i1RyOFWh9h0vLQW-AzMqTs.roa File: QPsr2i1RyOFWh9h0vLQW-AzMqTs.roa (raw, json) Hash identifier: fRTp8Q4JuvU4hBelJIWwwPHlYhJ0Jk+mXQELhbP//iI= Subject key identifier: 40:FB:2B:DA:2D:51:C8:E1:56:87:D8:74:BC:B4:16:F8:0C:CC:A9:3B Certificate issuer: /CN=f7f4cb8c5202cc535edafd20acb6a80502e4fd29 Certificate serial: 019B7E3781FC09DDF0A95CB4881155ABDAC2 Authority key identifier: F7:F4:CB:8C:52:02:CC:53:5E:DA:FD:20:AC:B6:A8:05:02:E4:FD:29 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/9_TLjFICzFNe2v0grLaoBQLk_Sk.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/93/b681e4-fcf8-40af-aba3-cf3bdb32fd64/1/QPsr2i1RyOFWh9h0vLQW-AzMqTs.roa Signing time: Fri 02 Jan 2026 10:18:45 +0000 ROA not before: Fri 02 Jan 2026 10:18:45 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 213402 IP address blocks: 195.216.230.0/24 maxlen: 24 2a02:e3c0::/29 maxlen: 29 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/93/b681e4-fcf8-40af-aba3-cf3bdb32fd64/1/9_TLjFICzFNe2v0grLaoBQLk_Sk.crl rsync://rpki.ripe.net/repository/DEFAULT/93/b681e4-fcf8-40af-aba3-cf3bdb32fd64/1/9_TLjFICzFNe2v0grLaoBQLk_Sk.mft rsync://rpki.ripe.net/repository/DEFAULT/9_TLjFICzFNe2v0grLaoBQLk_Sk.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 22:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7e:37:81:fc:09:dd:f0:a9:5c:b4:88:11:55:ab:da:c2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=f7f4cb8c5202cc535edafd20acb6a80502e4fd29 Validity Not Before: Jan 2 10:18:45 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=40fb2bda2d51c8e15687d874bcb416f80ccca93b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:a3:e7:a9:8d:f9:5c:8e:8a:9b:9d:d3:47:e8: 2a:3c:00:48:4e:13:32:a4:12:24:74:78:16:aa:81: ca:e9:f7:92:ce:da:a5:cc:6d:a4:d7:7d:87:27:c4: 55:e9:b2:02:8d:e9:e7:98:5c:c7:61:24:4d:e7:c4: bd:e2:dd:0e:0e:68:0e:28:30:6c:9d:d2:87:9a:6b: eb:76:aa:33:b9:4b:5e:6d:3d:22:05:bf:0c:24:1f: 86:37:16:ca:f2:33:02:b4:b7:0c:48:fe:87:9e:60: 89:a9:b2:12:68:aa:e3:60:36:d6:6c:4d:e6:d7:ba: be:7c:da:c3:42:b9:1b:dd:b3:5c:13:a0:18:bc:ee: b2:1d:2b:e9:1c:f2:e4:0b:ef:10:5d:df:5f:70:84: 6b:4f:a5:6e:73:10:8e:ad:7a:27:3d:08:d3:4b:a7: d7:40:52:ec:1b:81:8c:8e:8d:cd:4a:ce:5d:44:32: e9:b8:a5:6c:fd:41:25:6f:fe:4d:0b:f5:60:0f:49: ec:43:ea:ad:20:1c:46:17:5f:e1:53:bb:7f:fe:13: 8b:a3:da:84:ff:9c:cd:15:61:bc:38:54:f4:85:ff: ce:be:ce:0d:e8:f4:2b:87:ef:44:5e:fb:8f:7a:c3: 99:c7:0e:c9:07:99:24:c3:e3:d0:2f:bd:a9:43:12: 16:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 40:FB:2B:DA:2D:51:C8:E1:56:87:D8:74:BC:B4:16:F8:0C:CC:A9:3B X509v3 Authority Key Identifier: keyid:F7:F4:CB:8C:52:02:CC:53:5E:DA:FD:20:AC:B6:A8:05:02:E4:FD:29 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/9_TLjFICzFNe2v0grLaoBQLk_Sk.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/93/b681e4-fcf8-40af-aba3-cf3bdb32fd64/1/QPsr2i1RyOFWh9h0vLQW-AzMqTs.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/93/b681e4-fcf8-40af-aba3-cf3bdb32fd64/1/9_TLjFICzFNe2v0grLaoBQLk_Sk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 195.216.230.0/24 IPv6: 2a02:e3c0::/29 Signature Algorithm: sha256WithRSAEncryption 72:28:05:a3:19:f5:22:d6:43:fc:fa:89:c5:8d:ff:cb:ab:1d: 8a:b6:45:5f:f6:2c:66:23:03:d8:a7:6f:24:32:94:33:b7:b9: 07:fa:5b:6b:bd:44:a1:e9:ad:67:d4:92:48:b1:2e:bb:71:c4: d9:97:e8:49:c6:bf:c6:11:88:f5:35:2d:ef:b6:1a:e8:11:fe: 83:db:c6:2a:e1:18:e5:5f:4a:80:aa:dc:12:8d:18:76:7b:e1: 1f:db:13:ef:af:98:dd:a4:1c:5e:c4:bd:aa:bd:3d:a8:08:66: f6:3d:a5:42:99:86:1a:9a:e7:4d:fc:d1:4e:fe:98:dd:9e:52: 7b:5c:63:2d:a0:5d:c1:65:01:92:e5:9d:a0:a5:24:f3:c3:af: ea:96:07:d0:f1:27:4b:8c:2f:af:ca:b9:5f:18:59:57:11:8f: 90:01:ca:a9:7b:18:0c:7b:63:43:28:2a:56:75:3e:b7:86:c0: d5:d3:53:e3:fe:f9:f9:20:45:03:52:20:9c:2b:66:08:fa:f7: f3:d1:59:47:62:be:e9:79:8e:ed:7c:7b:48:a3:71:6c:9b:bb: a5:77:3c:06:43:a5:98:8c:2c:48:e8:a9:2d:7d:4b:5f:c7:af: f9:1d:75:b2:fa:28:4d:a0:31:da:e5:00:77:6e:07:13:ad:51: 12:55:02:4d -----BEGIN CERTIFICATE----- MIIFDDCCA/SgAwIBAgISAZt+N4H8Cd3wqVy0iBFVq9rCMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGY3ZjRjYjhjNTIwMmNjNTM1ZWRhZmQyMGFjYjZhODA1MDJl NGZkMjkwHhcNMjYwMTAyMTAxODQ1WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg0MGZiMmJkYTJkNTFjOGUxNTY4N2Q4NzRiY2I0MTZmODBjY2NhOTNiMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzKPnqY35XI6Km53TR+gqPABIThMy pBIkdHgWqoHK6feSztqlzG2k132HJ8RV6bICjennmFzHYSRN58S94t0ODmgOKDBs ndKHmmvrdqozuUtebT0iBb8MJB+GNxbK8jMCtLcMSP6HnmCJqbISaKrjYDbWbE3m 17q+fNrDQrkb3bNcE6AYvO6yHSvpHPLkC+8QXd9fcIRrT6VucxCOrXonPQjTS6fX QFLsG4GMjo3NSs5dRDLpuKVs/UElb/5NC/VgD0nsQ+qtIBxGF1/hU7t//hOLo9qE /5zNFWG8OFT0hf/Ovs4N6PQrh+9EXvuPesOZxw7JB5kkw+PQL72pQxIWwwIDAQAB o4ICGDCCAhQwHQYDVR0OBBYEFED7K9otUcjhVofYdLy0FvgMzKk7MB8GA1UdIwQY MBaAFPf0y4xSAsxTXtr9IKy2qAUC5P0pMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvOV9UTGpGSUN6Rk5lMnYwZ3JMYW9CUUxrX1NrLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85My9iNjgxZTQtZmNmOC00MGFmLWFiYTMt Y2YzYmRiMzJmZDY0LzEvUVBzcjJpMVJ5T0ZXaDloMHZMUVctQXpNcVRzLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC85My9iNjgxZTQtZmNmOC00MGFmLWFiYTMtY2YzYmRiMzJmZDY0 LzEvOV9UTGpGSUN6Rk5lMnYwZ3JMYW9CUUxrX1NrLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMC4GCCsGAQUFBwEHAQH/BB8wHTAMBAIAATAGAwQAw9jmMA0E AgACMAcDBQMqAuPAMA0GCSqGSIb3DQEBCwUAA4IBAQByKAWjGfUi1kP8+onFjf/L qx2KtkVf9ixmIwPYp28kMpQzt7kH+ltrvUSh6a1n1JJIsS67ccTZl+hJxr/GEYj1 NS3vthroEf6D28Yq4RjlX0qAqtwSjRh2e+Ef2xPvr5jdpBxexL2qvT2oCGb2PaVC mYYamudN/NFO/pjdnlJ7XGMtoF3BZQGS5Z2gpSTzw6/qlgfQ8SdLjC+vyrlfGFlX EY+QAcqpexgMe2NDKCpWdT63hsDV01Pj/vn5IEUDUiCcK2YI+vfz0VlHYr7peY7t fHtIo3Fsm7uldzwGQ6WYjCxI6KktfUtfx6/5HXWy+ihNoDHa5QB3bgcTrVESVQJN -----END CERTIFICATE-----Generated at Mon Jan 26 03:27:29 2026 by rpki-client