This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9c/71a97c-35f4-4f21-a43a-7396e42b1830/1/qxHzPA9O-8GpBxVTvr_9Ai6EB2w.roa File: qxHzPA9O-8GpBxVTvr_9Ai6EB2w.roa (raw, json) Hash identifier: GWiMwB08/vtuFeBPkac8MF40YEUg4abdNc1TrrvX9Is= Subject key identifier: AB:11:F3:3C:0F:4E:FB:C1:A9:07:15:53:BE:BF:FD:02:2E:84:07:6C Certificate issuer: /CN=a18f02d5ebc9e8b9521af7132b12cb6bb65693c6 Certificate serial: 019B7BA352147D5B55D81275D78F6607B433 Authority key identifier: A1:8F:02:D5:EB:C9:E8:B9:52:1A:F7:13:2B:12:CB:6B:B6:56:93:C6 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oY8C1evJ6LlSGvcTKxLLa7ZWk8Y.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9c/71a97c-35f4-4f21-a43a-7396e42b1830/1/qxHzPA9O-8GpBxVTvr_9Ai6EB2w.roa Signing time: Thu 01 Jan 2026 22:17:39 +0000 ROA not before: Thu 01 Jan 2026 22:17:39 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 31034 IP address blocks: 195.191.251.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9c/71a97c-35f4-4f21-a43a-7396e42b1830/1/oY8C1evJ6LlSGvcTKxLLa7ZWk8Y.crl rsync://rpki.ripe.net/repository/DEFAULT/9c/71a97c-35f4-4f21-a43a-7396e42b1830/1/oY8C1evJ6LlSGvcTKxLLa7ZWk8Y.mft rsync://rpki.ripe.net/repository/DEFAULT/oY8C1evJ6LlSGvcTKxLLa7ZWk8Y.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 13:00:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7b:a3:52:14:7d:5b:55:d8:12:75:d7:8f:66:07:b4:33 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=a18f02d5ebc9e8b9521af7132b12cb6bb65693c6 Validity Not Before: Jan 1 22:17:39 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=ab11f33c0f4efbc1a9071553bebffd022e84076c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:71:22:7e:99:90:26:3b:96:3b:66:97:e1:98: 99:bb:5a:5a:00:71:b4:b8:70:be:a9:24:b4:e7:82: ab:fe:f9:1b:24:d3:39:bf:31:69:e4:1b:2e:90:0d: f2:0f:e7:c5:aa:60:cf:58:e6:e1:0b:d8:35:e4:61: 5c:bd:9a:86:66:f2:db:11:22:a8:f3:89:b3:e7:2e: 01:f2:34:7a:fd:d5:67:16:3a:67:6e:91:95:18:65: fe:f8:46:4e:20:4a:9e:1b:54:c6:78:6c:e8:b0:36: a4:9e:bd:fd:aa:4f:05:17:15:1f:23:5e:b8:b9:ec: 8f:26:d4:de:0d:f1:93:b3:d5:96:f6:4c:c4:b8:d7: d8:fb:56:db:6d:5b:c3:60:03:9b:16:14:fd:22:d2: 15:72:a2:dd:04:65:47:c3:9f:ba:4e:e9:47:e9:7a: 5e:13:0d:08:58:31:f6:fe:4b:aa:f3:9f:c5:28:32: df:b3:87:6b:7c:e4:63:c8:fc:2d:62:4c:47:ac:64: cc:ad:97:2b:48:d1:91:a9:88:9c:d3:36:32:25:6f: b7:d9:c0:13:e6:ab:44:73:de:25:f7:ed:ca:70:c7: 26:ff:03:1d:fb:b5:65:73:0e:cf:3b:54:25:f2:30: 97:c0:c7:3c:c7:fa:7b:c0:a7:ad:cd:39:61:c4:7a: fe:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AB:11:F3:3C:0F:4E:FB:C1:A9:07:15:53:BE:BF:FD:02:2E:84:07:6C X509v3 Authority Key Identifier: keyid:A1:8F:02:D5:EB:C9:E8:B9:52:1A:F7:13:2B:12:CB:6B:B6:56:93:C6 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oY8C1evJ6LlSGvcTKxLLa7ZWk8Y.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9c/71a97c-35f4-4f21-a43a-7396e42b1830/1/qxHzPA9O-8GpBxVTvr_9Ai6EB2w.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/9c/71a97c-35f4-4f21-a43a-7396e42b1830/1/oY8C1evJ6LlSGvcTKxLLa7ZWk8Y.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 195.191.251.0/24 Signature Algorithm: sha256WithRSAEncryption 7d:d1:a7:84:1c:cb:69:e1:80:9a:43:ad:4e:ac:1a:a4:5a:c0: af:5b:95:0e:33:fe:de:5e:3f:3a:14:5d:f3:9a:d3:88:6c:bf: 9f:0c:10:cb:14:2e:3c:c1:bd:c5:fe:33:dc:ef:50:18:12:f2: 28:54:87:c6:b7:05:04:2e:cc:89:41:01:ca:db:e4:71:2b:7d: fd:c8:02:9c:a6:3e:d2:1e:0b:28:8b:32:3f:65:43:16:79:f3: f8:1d:d5:24:4e:8a:57:93:97:cf:2a:af:3c:04:ab:a1:05:a2: c4:c4:ad:64:f0:a8:dd:34:e1:74:d8:e8:32:a1:9d:eb:17:5b: 30:72:08:bd:22:52:62:26:8e:a5:86:25:a9:f6:d1:67:f1:f8: 76:6a:e4:24:00:a7:a8:29:fb:34:68:35:97:3a:33:e6:e2:a6: c7:e5:cc:17:d6:c5:02:e0:7c:4f:06:e1:73:ba:3a:c1:26:73: c0:0f:b4:a3:4a:dc:c7:29:09:ee:b2:a6:7d:cc:dc:02:fb:3e: 22:a7:68:9d:83:fa:03:63:88:78:82:2f:3f:93:8c:a5:f0:a4: 67:e4:50:a7:e3:01:7f:31:17:f5:2d:83:f3:62:59:f7:e8:b6: a4:93:0b:a9:40:2d:18:3c:e3:33:67:da:5a:17:a9:cd:0a:f4: 6b:b1:5d:26 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt7o1IUfVtV2BJ1149mB7QzMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGExOGYwMmQ1ZWJjOWU4Yjk1MjFhZjcxMzJiMTJjYjZiYjY1 NjkzYzYwHhcNMjYwMTAxMjIxNzM5WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhhYjExZjMzYzBmNGVmYmMxYTkwNzE1NTNiZWJmZmQwMjJlODQwNzZjMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAo3EifpmQJjuWO2aX4ZiZu1paAHG0 uHC+qSS054Kr/vkbJNM5vzFp5BsukA3yD+fFqmDPWObhC9g15GFcvZqGZvLbESKo 84mz5y4B8jR6/dVnFjpnbpGVGGX++EZOIEqeG1TGeGzosDaknr39qk8FFxUfI164 ueyPJtTeDfGTs9WW9kzEuNfY+1bbbVvDYAObFhT9ItIVcqLdBGVHw5+6TulH6Xpe Ew0IWDH2/kuq85/FKDLfs4drfORjyPwtYkxHrGTMrZcrSNGRqYic0zYyJW+32cAT 5qtEc94l9+3KcMcm/wMd+7Vlcw7PO1Ql8jCXwMc8x/p7wKetzTlhxHr+PwIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFKsR8zwPTvvBqQcVU76//QIuhAdsMB8GA1UdIwQY MBaAFKGPAtXryei5Uhr3EysSy2u2VpPGMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvb1k4QzFldko2TGxTR3ZjVEt4TExhN1pXazhZLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85Yy83MWE5N2MtMzVmNC00ZjIxLWE0M2Et NzM5NmU0MmIxODMwLzEvcXhIelBBOU8tOEdwQnhWVHZyXzlBaTZFQjJ3LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC85Yy83MWE5N2MtMzVmNC00ZjIxLWE0M2EtNzM5NmU0MmIxODMw LzEvb1k4QzFldko2TGxTR3ZjVEt4TExhN1pXazhZLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAw7/7MA0G CSqGSIb3DQEBCwUAA4IBAQB90aeEHMtp4YCaQ61OrBqkWsCvW5UOM/7eXj86FF3z mtOIbL+fDBDLFC48wb3F/jPc71AYEvIoVIfGtwUELsyJQQHK2+RxK339yAKcpj7S HgsoizI/ZUMWefP4HdUkTopXk5fPKq88BKuhBaLExK1k8KjdNOF02OgyoZ3rF1sw cgi9IlJiJo6lhiWp9tFn8fh2auQkAKeoKfs0aDWXOjPm4qbH5cwX1sUC4HxPBuFz ujrBJnPAD7SjStzHKQnusqZ9zNwC+z4ip2idg/oDY4h4gi8/k4yl8KRn5FCn4wF/ MRf1LYPzYln36LakkwupQC0YPOMzZ9paF6nNCvRrsV0m -----END CERTIFICATE-----Generated at Sun Jan 25 20:48:48 2026 by rpki-client