This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9e/4ea4f7-d70e-42a2-afd7-3e3a188f49de/1/QpP9wNZKRxG9k6Ntc08UuWz_EyI.roa File: QpP9wNZKRxG9k6Ntc08UuWz_EyI.roa (raw, json) Hash identifier: zmEDhnP4RfO/cvO+VCbjkDF0OdxJduwnvwmzl7d6uWU= Subject key identifier: 42:93:FD:C0:D6:4A:47:11:BD:93:A3:6D:73:4F:14:B9:6C:FF:13:22 Certificate issuer: /CN=37915673b28bdfadb2c2019ac68d0464fd21b71a Certificate serial: 019B7A5AC1915536752E8332E601A8C7F566 Authority key identifier: 37:91:56:73:B2:8B:DF:AD:B2:C2:01:9A:C6:8D:04:64:FD:21:B7:1A Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/N5FWc7KL362ywgGaxo0EZP0htxo.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9e/4ea4f7-d70e-42a2-afd7-3e3a188f49de/1/QpP9wNZKRxG9k6Ntc08UuWz_EyI.roa Signing time: Thu 01 Jan 2026 16:18:46 +0000 ROA not before: Thu 01 Jan 2026 16:18:46 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 2830 IP address blocks: 145.32.100.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9e/4ea4f7-d70e-42a2-afd7-3e3a188f49de/1/N5FWc7KL362ywgGaxo0EZP0htxo.crl rsync://rpki.ripe.net/repository/DEFAULT/9e/4ea4f7-d70e-42a2-afd7-3e3a188f49de/1/N5FWc7KL362ywgGaxo0EZP0htxo.mft rsync://rpki.ripe.net/repository/DEFAULT/N5FWc7KL362ywgGaxo0EZP0htxo.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 13:21:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7a:5a:c1:91:55:36:75:2e:83:32:e6:01:a8:c7:f5:66 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=37915673b28bdfadb2c2019ac68d0464fd21b71a Validity Not Before: Jan 1 16:18:46 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=4293fdc0d64a4711bd93a36d734f14b96cff1322 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9a:58:76:0f:81:1c:5b:66:cf:82:0b:8d:c6:ed: 1a:5a:26:f4:a5:5d:66:9a:8f:bc:bd:24:2b:e9:04: 38:eb:a3:ee:dc:4c:bc:69:72:11:8b:e4:8c:d5:c8: 0b:cb:74:1c:ba:65:a1:9d:e6:a0:7c:b7:d7:96:97: 0d:14:5e:dd:8d:a9:52:93:0e:f6:e4:f8:fa:c4:c0: 40:b4:39:a7:1c:33:20:ef:ce:e8:5c:10:2b:58:7f: 28:24:d5:1c:94:ad:6d:93:73:a6:07:90:08:32:ec: bd:52:8d:73:ee:6e:c9:5c:bb:f2:3e:4d:32:38:01: 0f:68:18:1c:34:05:ec:cc:d7:c0:95:f8:80:56:e5: 0f:4c:43:2f:8e:fb:04:cc:10:9f:9c:0e:a8:df:1d: b1:9f:b3:17:0f:42:79:1e:ea:05:34:1e:c0:7a:89: 6a:0d:d2:10:54:e2:e0:ac:1a:ef:25:cf:3b:50:63: 83:b4:f2:d3:4d:99:9d:05:d9:b9:0a:87:c2:d4:8e: cf:1a:ea:99:ab:bc:6d:e2:00:79:8e:8e:94:48:91: 6f:2d:ac:28:77:ce:fd:4c:3e:07:41:a6:2b:7f:0d: 5c:31:ff:df:13:e7:93:33:fc:89:82:0b:59:69:a9: 89:0c:99:b3:82:c4:5d:fa:44:ca:d8:6f:9b:2e:aa: c2:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 42:93:FD:C0:D6:4A:47:11:BD:93:A3:6D:73:4F:14:B9:6C:FF:13:22 X509v3 Authority Key Identifier: keyid:37:91:56:73:B2:8B:DF:AD:B2:C2:01:9A:C6:8D:04:64:FD:21:B7:1A X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/N5FWc7KL362ywgGaxo0EZP0htxo.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9e/4ea4f7-d70e-42a2-afd7-3e3a188f49de/1/QpP9wNZKRxG9k6Ntc08UuWz_EyI.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/9e/4ea4f7-d70e-42a2-afd7-3e3a188f49de/1/N5FWc7KL362ywgGaxo0EZP0htxo.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 145.32.100.0/24 Signature Algorithm: sha256WithRSAEncryption 4d:17:18:8b:aa:b1:10:10:f7:7f:ea:43:ed:65:fa:f7:16:45: bf:64:57:8a:24:b9:fa:cd:95:ff:96:a3:dd:c8:47:ab:c1:4a: 11:19:61:cb:c0:10:c7:38:f8:70:c9:8e:37:b9:4b:eb:01:19: b8:4a:dd:84:4d:99:fb:f4:a4:2d:40:21:28:15:6e:65:5a:74: 41:85:e8:88:61:25:b7:cd:1f:fe:cd:82:b2:cc:cf:a7:ab:f2: e5:03:9e:7f:d8:90:c5:28:08:98:47:e3:39:60:78:55:e9:bf: 4c:67:e4:e5:0c:5d:f3:0f:b3:8f:16:8c:bb:f3:99:43:78:8a: 26:1c:8f:74:ee:d8:1e:76:a3:f5:2f:6f:71:a1:b2:39:42:e2: 49:a3:97:c8:a9:b5:64:eb:b2:82:bc:8c:a1:b7:7b:be:0b:07: 98:e6:bb:03:62:25:21:f2:9e:46:56:8f:17:2e:2d:42:a8:62: 3f:59:4c:89:4b:9b:f9:27:17:09:ae:bb:12:ec:f8:29:64:86: cd:6f:e8:cb:45:22:0f:d4:4b:b7:98:6b:f3:bd:74:4e:e3:fd: 1a:83:b2:77:52:96:0d:45:e1:e5:27:1b:37:57:55:4e:fc:06: 56:b6:27:1e:9b:b7:da:69:44:47:6e:60:07:80:c5:1d:2a:cf: 6d:eb:af:8c -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt6WsGRVTZ1LoMy5gGox/VmMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDM3OTE1NjczYjI4YmRmYWRiMmMyMDE5YWM2OGQwNDY0ZmQy MWI3MWEwHhcNMjYwMTAxMTYxODQ2WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg0MjkzZmRjMGQ2NGE0NzExYmQ5M2EzNmQ3MzRmMTRiOTZjZmYxMzIyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmlh2D4EcW2bPgguNxu0aWib0pV1m mo+8vSQr6QQ466Pu3Ey8aXIRi+SM1cgLy3QcumWhneagfLfXlpcNFF7djalSkw72 5Pj6xMBAtDmnHDMg787oXBArWH8oJNUclK1tk3OmB5AIMuy9Uo1z7m7JXLvyPk0y OAEPaBgcNAXszNfAlfiAVuUPTEMvjvsEzBCfnA6o3x2xn7MXD0J5HuoFNB7Aeolq DdIQVOLgrBrvJc87UGODtPLTTZmdBdm5CofC1I7PGuqZq7xt4gB5jo6USJFvLawo d879TD4HQaYrfw1cMf/fE+eTM/yJggtZaamJDJmzgsRd+kTK2G+bLqrCmQIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFEKT/cDWSkcRvZOjbXNPFLls/xMiMB8GA1UdIwQY MBaAFDeRVnOyi9+tssIBmsaNBGT9IbcaMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvTjVGV2M3S0wzNjJ5d2dHYXhvMEVaUDBodHhvLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85ZS80ZWE0ZjctZDcwZS00MmEyLWFmZDct M2UzYTE4OGY0OWRlLzEvUXBQOXdOWktSeEc5azZOdGMwOFV1V3pfRXlJLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC85ZS80ZWE0ZjctZDcwZS00MmEyLWFmZDctM2UzYTE4OGY0OWRl LzEvTjVGV2M3S0wzNjJ5d2dHYXhvMEVaUDBodHhvLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAkSBkMA0G CSqGSIb3DQEBCwUAA4IBAQBNFxiLqrEQEPd/6kPtZfr3FkW/ZFeKJLn6zZX/lqPd yEerwUoRGWHLwBDHOPhwyY43uUvrARm4St2ETZn79KQtQCEoFW5lWnRBheiIYSW3 zR/+zYKyzM+nq/LlA55/2JDFKAiYR+M5YHhV6b9MZ+TlDF3zD7OPFoy785lDeIom HI907tgedqP1L29xobI5QuJJo5fIqbVk67KCvIyht3u+CweY5rsDYiUh8p5GVo8X Li1CqGI/WUyJS5v5JxcJrrsS7PgpZIbNb+jLRSIP1Eu3mGvzvXRO4/0ag7J3UpYN ReHlJxs3V1VO/AZWticem7faaURHbmAHgMUdKs9t66+M -----END CERTIFICATE-----Generated at Sun Jan 25 18:07:44 2026 by rpki-client