This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a9/cbfa9b-0291-48e3-805c-43d66a0331ec/1/QPcZtk0DXKyMJbNEz2ZuJuMfm00.roa File: QPcZtk0DXKyMJbNEz2ZuJuMfm00.roa (raw, json) Hash identifier: umOLljeZUfmplY2DajwQdgANFJvFzfTBHi6UK1dXAg0= Subject key identifier: 40:F7:19:B6:4D:03:5C:AC:8C:25:B3:44:CF:66:6E:26:E3:1F:9B:4D Certificate issuer: /CN=2bc8695772f0e64f3b9a1621733cc02506f74702 Certificate serial: 019B791148DD988D6D81217C70A472184390 Authority key identifier: 2B:C8:69:57:72:F0:E6:4F:3B:9A:16:21:73:3C:C0:25:06:F7:47:02 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/K8hpV3Lw5k87mhYhczzAJQb3RwI.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a9/cbfa9b-0291-48e3-805c-43d66a0331ec/1/QPcZtk0DXKyMJbNEz2ZuJuMfm00.roa Signing time: Thu 01 Jan 2026 10:18:54 +0000 ROA not before: Thu 01 Jan 2026 10:18:54 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 35732 IP address blocks: 91.188.208.0/24 maxlen: 24 91.188.208.80/28 maxlen: 28 91.188.209.0/24 maxlen: 24 91.188.210.0/24 maxlen: 24 91.188.211.0/24 maxlen: 24 2a0f:b1c0::/32 maxlen: 32 2a0f:b1c1::/32 maxlen: 32 2a0f:b1c2::/48 maxlen: 48 2a0f:b1c2:1::/48 maxlen: 48 2a0f:b1c2:2::/48 maxlen: 48 2a0f:b1c2:3::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a9/cbfa9b-0291-48e3-805c-43d66a0331ec/1/K8hpV3Lw5k87mhYhczzAJQb3RwI.crl rsync://rpki.ripe.net/repository/DEFAULT/a9/cbfa9b-0291-48e3-805c-43d66a0331ec/1/K8hpV3Lw5k87mhYhczzAJQb3RwI.mft rsync://rpki.ripe.net/repository/DEFAULT/K8hpV3Lw5k87mhYhczzAJQb3RwI.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 22:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:79:11:48:dd:98:8d:6d:81:21:7c:70:a4:72:18:43:90 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2bc8695772f0e64f3b9a1621733cc02506f74702 Validity Not Before: Jan 1 10:18:54 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=40f719b64d035cac8c25b344cf666e26e31f9b4d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:99:6f:f6:ab:29:91:e6:4e:a8:49:4d:2e:f1:10: 0b:42:f6:48:13:1a:bf:29:c6:1e:5d:7f:d8:51:2e: 6d:9f:d4:49:19:6a:dc:9e:a6:c5:34:8c:2a:5b:a1: 93:ad:e6:82:4e:cc:9d:fa:68:2f:61:d8:a1:30:fc: 14:de:b9:cf:a3:5b:01:72:0b:6d:9c:24:45:1e:da: 8f:88:d7:0f:85:03:3a:7d:35:e2:5c:6a:48:29:92: 61:38:12:c3:c4:e9:a6:d2:cc:3f:40:ae:08:a2:7a: b1:5a:ae:77:88:fd:fd:17:a2:75:e4:d0:92:5a:2d: e6:78:aa:c0:13:2b:d4:aa:19:15:48:fc:da:40:38: 9f:23:86:ef:5b:cd:41:9f:87:c3:14:48:70:b1:7d: 7d:ae:55:c0:df:48:f9:0c:79:15:13:87:81:13:00: c5:60:36:d2:bc:8b:a6:fd:55:b0:f1:60:2b:3f:67: a7:db:8e:f3:3b:5e:9f:e3:26:cb:c5:e9:10:13:58: 98:ce:35:ec:e3:3d:97:aa:16:3d:79:3d:7e:fe:e4: 2b:71:af:4b:d9:c9:0b:e6:dc:9a:5b:d1:1e:e3:d0: 59:92:0b:b3:de:70:7b:bd:36:ea:83:6d:82:ec:71: bc:10:f6:30:f3:1d:47:2e:59:09:d7:bc:42:f3:45: 75:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 40:F7:19:B6:4D:03:5C:AC:8C:25:B3:44:CF:66:6E:26:E3:1F:9B:4D X509v3 Authority Key Identifier: keyid:2B:C8:69:57:72:F0:E6:4F:3B:9A:16:21:73:3C:C0:25:06:F7:47:02 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/K8hpV3Lw5k87mhYhczzAJQb3RwI.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a9/cbfa9b-0291-48e3-805c-43d66a0331ec/1/QPcZtk0DXKyMJbNEz2ZuJuMfm00.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/a9/cbfa9b-0291-48e3-805c-43d66a0331ec/1/K8hpV3Lw5k87mhYhczzAJQb3RwI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 91.188.208.0/22 IPv6: 2a0f:b1c0::-2a0f:b1c2:3:ffff:ffff:ffff:ffff:ffff Signature Algorithm: sha256WithRSAEncryption 99:c8:66:0b:2e:b9:3b:d3:f7:3e:3a:b3:68:59:84:30:64:70: d6:ed:0c:8a:01:d3:27:af:fe:cc:e2:ea:b8:ed:b1:76:a2:fe: 49:3f:45:44:d7:3d:20:b8:2a:bb:e5:89:2d:a3:24:44:9e:c3: 33:5f:04:c3:90:1c:5b:ab:43:ad:ce:07:d6:2d:6c:62:87:0c: 17:d7:ee:db:99:92:aa:63:96:0e:24:c4:08:3c:cc:48:81:bb: 8c:86:a9:1a:dd:38:25:b4:e2:c1:2c:56:4a:a8:5e:26:d3:4f: 6a:bc:57:45:32:d7:0e:e6:43:9e:f4:63:e9:2d:1c:0f:d3:8c: c0:67:52:39:a5:a5:77:a8:81:62:3f:53:40:86:3c:02:9a:ba: c6:47:e6:b5:2b:b9:a6:87:15:8d:f2:04:43:62:09:62:dc:23: 9f:21:95:7d:54:78:c0:78:a0:17:0d:ca:a9:d3:8d:12:6c:72: 2d:92:6b:30:77:15:ac:de:58:80:b7:07:02:24:f4:04:a1:0b: 20:4a:27:73:e9:ff:2f:f3:b0:a8:c8:67:51:9e:fb:92:3e:7e: 02:2d:35:c4:66:80:fd:c9:f5:da:81:1f:d6:e2:7f:02:0a:51: f4:a0:a2:ff:78:f7:d2:e4:e3:31:12:fc:28:2a:d7:f4:18:58: 21:11:2b:03 -----BEGIN CERTIFICATE----- MIIFFzCCA/+gAwIBAgISAZt5EUjdmI1tgSF8cKRyGEOQMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJiYzg2OTU3NzJmMGU2NGYzYjlhMTYyMTczM2NjMDI1MDZm NzQ3MDIwHhcNMjYwMTAxMTAxODU0WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg0MGY3MTliNjRkMDM1Y2FjOGMyNWIzNDRjZjY2NmUyNmUzMWY5YjRkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmW/2qymR5k6oSU0u8RALQvZIExq/ KcYeXX/YUS5tn9RJGWrcnqbFNIwqW6GTreaCTsyd+mgvYdihMPwU3rnPo1sBcgtt nCRFHtqPiNcPhQM6fTXiXGpIKZJhOBLDxOmm0sw/QK4IonqxWq53iP39F6J15NCS Wi3meKrAEyvUqhkVSPzaQDifI4bvW81Bn4fDFEhwsX19rlXA30j5DHkVE4eBEwDF YDbSvIum/VWw8WArP2en247zO16f4ybLxekQE1iYzjXs4z2XqhY9eT1+/uQrca9L 2ckL5tyaW9Ee49BZkguz3nB7vTbqg22C7HG8EPYw8x1HLlkJ17xC80V1RQIDAQAB o4ICIzCCAh8wHQYDVR0OBBYEFED3GbZNA1ysjCWzRM9mbibjH5tNMB8GA1UdIwQY MBaAFCvIaVdy8OZPO5oWIXM8wCUG90cCMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSzhocFYzTHc1azg3bWhZaGN6ekFKUWIzUndJLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hOS9jYmZhOWItMDI5MS00OGUzLTgwNWMt NDNkNjZhMDMzMWVjLzEvUVBjWnRrMERYS3lNSmJORXoyWnVKdU1mbTAwLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9hOS9jYmZhOWItMDI5MS00OGUzLTgwNWMtNDNkNjZhMDMzMWVj LzEvSzhocFYzTHc1azg3bWhZaGN6ekFKUWIzUndJLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMDkGCCsGAQUFBwEHAQH/BCowKDAMBAIAATAGAwQCW7zQMBgE AgACMBIwEAMFBioPscADBwIqD7HCAAAwDQYJKoZIhvcNAQELBQADggEBAJnIZgsu uTvT9z46s2hZhDBkcNbtDIoB0yev/szi6rjtsXai/kk/RUTXPSC4KrvliS2jJESe wzNfBMOQHFurQ63OB9YtbGKHDBfX7tuZkqpjlg4kxAg8zEiBu4yGqRrdOCW04sEs VkqoXibTT2q8V0Uy1w7mQ570Y+ktHA/TjMBnUjmlpXeogWI/U0CGPAKausZH5rUr uaaHFY3yBENiCWLcI58hlX1UeMB4oBcNyqnTjRJsci2SazB3FazeWIC3BwIk9ASh CyBKJ3Pp/y/zsKjIZ1Ge+5I+fgItNcRmgP3J9dqBH9bifwIKUfSgov9499Lk4zES /Cgq1/QYWCERKwM= -----END CERTIFICATE-----Generated at Mon Jan 26 07:40:19 2026 by rpki-client