This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a8/c6929d-ac53-48f0-9afe-2c9679ace9b1/1/Qu5Uc6FGCB6Uw3VbbjAKqmFxNlI.roa File: Qu5Uc6FGCB6Uw3VbbjAKqmFxNlI.roa (raw, json) Hash identifier: bpE3q+0F77eucA0rQszJF+sVUPQwfiSRj3/qDaiDMq8= Subject key identifier: 42:EE:54:73:A1:46:08:1E:94:C3:75:5B:6E:30:0A:AA:61:71:36:52 Certificate issuer: /CN=e0e1bf53ebed7b548086f4af68034540f20a78ec Certificate serial: 019B7B35B8688421AD6614116ED9E6D328C9 Authority key identifier: E0:E1:BF:53:EB:ED:7B:54:80:86:F4:AF:68:03:45:40:F2:0A:78:EC Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4OG_U-vte1SAhvSvaANFQPIKeOw.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a8/c6929d-ac53-48f0-9afe-2c9679ace9b1/1/Qu5Uc6FGCB6Uw3VbbjAKqmFxNlI.roa Signing time: Thu 01 Jan 2026 20:17:56 +0000 ROA not before: Thu 01 Jan 2026 20:17:56 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 786 IP address blocks: 129.67.0.0/16 maxlen: 16 163.1.0.0/16 maxlen: 16 192.76.6.0/23 maxlen: 23 192.76.8.0/21 maxlen: 21 192.76.16.0/20 maxlen: 20 192.76.32.0/22 maxlen: 22 2a0a:200::/29 maxlen: 29 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a8/c6929d-ac53-48f0-9afe-2c9679ace9b1/1/4OG_U-vte1SAhvSvaANFQPIKeOw.crl rsync://rpki.ripe.net/repository/DEFAULT/a8/c6929d-ac53-48f0-9afe-2c9679ace9b1/1/4OG_U-vte1SAhvSvaANFQPIKeOw.mft rsync://rpki.ripe.net/repository/DEFAULT/4OG_U-vte1SAhvSvaANFQPIKeOw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 20:01:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7b:35:b8:68:84:21:ad:66:14:11:6e:d9:e6:d3:28:c9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=e0e1bf53ebed7b548086f4af68034540f20a78ec Validity Not Before: Jan 1 20:17:56 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=42ee5473a146081e94c3755b6e300aaa61713652 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:25:2d:b8:ca:79:0a:53:ab:ab:a1:1f:53:eb: 41:92:4e:a9:47:16:7d:fa:f1:8a:64:b9:2b:f3:94: f9:bd:e8:49:02:31:f9:90:ad:27:37:7e:19:ca:27: 18:70:1d:15:30:c3:12:da:08:d9:54:fd:85:48:bd: d9:ea:bf:58:4e:6d:9f:cd:d0:9b:e7:7c:06:d8:e4: 53:5e:8a:8f:1c:ab:cc:99:23:ce:68:7c:fc:4e:2f: 70:1d:e1:be:89:ce:38:a0:39:6c:1f:c4:2e:fe:99: 70:51:47:8d:4e:b1:32:a6:45:6e:01:c1:ea:f8:7e: 85:35:90:82:8a:82:11:1d:74:86:16:91:3c:7a:a7: 18:2c:51:94:5d:fd:16:d1:67:14:3a:aa:32:9b:ff: 93:84:31:10:8a:0e:bf:10:d1:9f:0a:ed:40:af:18: 56:40:e1:d1:34:ae:f8:ca:51:a4:22:d0:8e:70:f3: 19:cf:8a:d9:88:51:a8:77:11:ee:90:56:50:de:1e: 53:d6:a2:af:a8:4b:30:f6:86:77:33:4e:97:ee:02: 1f:76:27:cb:32:2b:95:02:00:fe:a0:04:4f:d0:d2: 27:49:37:6e:6e:cf:78:de:f6:51:22:8a:a0:8e:a4: 82:e2:2a:6d:8e:98:f4:d5:40:75:01:a6:17:6f:19: e9:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 42:EE:54:73:A1:46:08:1E:94:C3:75:5B:6E:30:0A:AA:61:71:36:52 X509v3 Authority Key Identifier: keyid:E0:E1:BF:53:EB:ED:7B:54:80:86:F4:AF:68:03:45:40:F2:0A:78:EC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4OG_U-vte1SAhvSvaANFQPIKeOw.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a8/c6929d-ac53-48f0-9afe-2c9679ace9b1/1/Qu5Uc6FGCB6Uw3VbbjAKqmFxNlI.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/a8/c6929d-ac53-48f0-9afe-2c9679ace9b1/1/4OG_U-vte1SAhvSvaANFQPIKeOw.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 129.67.0.0/16 163.1.0.0/16 192.76.6.0-192.76.35.255 IPv6: 2a0a:200::/29 Signature Algorithm: sha256WithRSAEncryption 61:5d:f5:3b:37:27:7e:de:e2:83:40:c2:0c:63:f5:2e:76:d6: a4:c7:52:0e:fd:7f:5c:69:f8:c0:d9:58:a7:20:1d:16:00:99: f0:4b:7e:59:60:a6:8b:3c:7c:42:ff:08:d5:10:0d:95:76:a1: c3:e9:f2:5d:b8:ee:5a:f1:8b:de:7f:1f:06:57:9b:a8:3b:d7: f7:85:6d:f6:ef:19:fd:ce:0c:28:de:35:de:d9:a0:91:80:74: 9a:d3:8b:48:26:6a:53:28:f9:52:b4:3c:a7:39:81:b3:c1:a6: 8c:61:c1:8d:e9:92:a6:59:fc:d9:d5:3e:ad:de:96:c7:f8:aa: 68:f2:c7:48:ad:49:2c:d3:d0:0d:9c:5d:9f:31:f9:3b:1d:63: c4:a5:7d:b0:f8:6a:52:e4:fa:f2:19:68:e5:2a:a9:58:9d:53: a5:31:7c:4e:fb:5b:0e:79:a9:eb:76:4f:e1:74:0a:86:c3:4e: 7c:93:7b:ab:f1:52:49:0a:40:97:0d:a2:4f:d5:9c:7e:19:92: 0f:22:17:94:9e:b5:14:5d:5d:d1:e0:83:41:77:40:db:57:e7: 86:5e:ec:d0:a5:17:11:c7:b3:6b:c0:22:d7:a2:36:fe:bc:66: a8:26:87:5d:2d:49:27:b0:cb:14:13:f1:4b:20:2a:51:c2:c7: d7:f8:ea:12 -----BEGIN CERTIFICATE----- MIIFHjCCBAagAwIBAgISAZt7NbhohCGtZhQRbtnm0yjJMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGUwZTFiZjUzZWJlZDdiNTQ4MDg2ZjRhZjY4MDM0NTQwZjIw YTc4ZWMwHhcNMjYwMTAxMjAxNzU2WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg0MmVlNTQ3M2ExNDYwODFlOTRjMzc1NWI2ZTMwMGFhYTYxNzEzNjUyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwSUtuMp5ClOrq6EfU+tBkk6pRxZ9 +vGKZLkr85T5vehJAjH5kK0nN34ZyicYcB0VMMMS2gjZVP2FSL3Z6r9YTm2fzdCb 53wG2ORTXoqPHKvMmSPOaHz8Ti9wHeG+ic44oDlsH8Qu/plwUUeNTrEypkVuAcHq +H6FNZCCioIRHXSGFpE8eqcYLFGUXf0W0WcUOqoym/+ThDEQig6/ENGfCu1ArxhW QOHRNK74ylGkItCOcPMZz4rZiFGodxHukFZQ3h5T1qKvqEsw9oZ3M06X7gIfdifL MiuVAgD+oARP0NInSTdubs943vZRIoqgjqSC4iptjpj01UB1AaYXbxnp5QIDAQAB o4ICKjCCAiYwHQYDVR0OBBYEFELuVHOhRggelMN1W24wCqphcTZSMB8GA1UdIwQY MBaAFODhv1Pr7XtUgIb0r2gDRUDyCnjsMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvNE9HX1UtdnRlMVNBaHZTdmFBTkZRUElLZU93LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hOC9jNjkyOWQtYWM1My00OGYwLTlhZmUt MmM5Njc5YWNlOWIxLzEvUXU1VWM2RkdDQjZVdzNWYmJqQUtxbUZ4TmxJLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9hOC9jNjkyOWQtYWM1My00OGYwLTlhZmUtMmM5Njc5YWNlOWIx LzEvNE9HX1UtdnRlMVNBaHZTdmFBTkZRUElLZU93LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMEAGCCsGAQUFBwEHAQH/BDEwLzAeBAIAATAYAwMAgUMDAwCj ATAMAwQBwEwGAwQCwEwgMA0EAgACMAcDBQMqCgIAMA0GCSqGSIb3DQEBCwUAA4IB AQBhXfU7Nyd+3uKDQMIMY/Uudtakx1IO/X9cafjA2VinIB0WAJnwS35ZYKaLPHxC /wjVEA2VdqHD6fJduO5a8Yvefx8GV5uoO9f3hW327xn9zgwo3jXe2aCRgHSa04tI JmpTKPlStDynOYGzwaaMYcGN6ZKmWfzZ1T6t3pbH+Kpo8sdIrUks09ANnF2fMfk7 HWPEpX2w+GpS5PryGWjlKqlYnVOlMXxO+1sOeanrdk/hdAqGw058k3ur8VJJCkCX DaJP1Zx+GZIPIheUnrUUXV3R4INBd0DbV+eGXuzQpRcRx7NrwCLXojb+vGaoJodd LUknsMsUE/FLICpRwsfX+OoS -----END CERTIFICATE-----Generated at Mon Jan 26 06:03:20 2026 by rpki-client