This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ae/757fc5-8029-4828-8547-62e260313e4c/1/QkMzWLk5sTK1UV1ynfE6svHoE8U.roa File: QkMzWLk5sTK1UV1ynfE6svHoE8U.roa (raw, json) Hash identifier: CorPpj4zU1bBCQT6Z2Gb1cpT/IwtfHvCiSJfVqus6RE= Subject key identifier: 42:43:33:58:B9:39:B1:32:B5:51:5D:72:9D:F1:3A:B2:F1:E8:13:C5 Certificate issuer: /CN=9b89b8cf47f7c485d628d0a359a16a815cd004ab Certificate serial: 019B76EB66540D3184892ED5202077D944F1 Authority key identifier: 9B:89:B8:CF:47:F7:C4:85:D6:28:D0:A3:59:A1:6A:81:5C:D0:04:AB Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/m4m4z0f3xIXWKNCjWaFqgVzQBKs.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ae/757fc5-8029-4828-8547-62e260313e4c/1/QkMzWLk5sTK1UV1ynfE6svHoE8U.roa Signing time: Thu 01 Jan 2026 00:18:17 +0000 ROA not before: Thu 01 Jan 2026 00:18:17 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 51170 IP address blocks: 5.180.188.0/22 maxlen: 24 185.185.77.0/24 maxlen: 24 185.185.78.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ae/757fc5-8029-4828-8547-62e260313e4c/1/m4m4z0f3xIXWKNCjWaFqgVzQBKs.crl rsync://rpki.ripe.net/repository/DEFAULT/ae/757fc5-8029-4828-8547-62e260313e4c/1/m4m4z0f3xIXWKNCjWaFqgVzQBKs.mft rsync://rpki.ripe.net/repository/DEFAULT/m4m4z0f3xIXWKNCjWaFqgVzQBKs.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 00:01:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:76:eb:66:54:0d:31:84:89:2e:d5:20:20:77:d9:44:f1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9b89b8cf47f7c485d628d0a359a16a815cd004ab Validity Not Before: Jan 1 00:18:17 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=42433358b939b132b5515d729df13ab2f1e813c5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:5a:ae:c6:f4:3a:9d:d6:de:8b:e5:9b:32:f5: da:c6:2b:43:eb:3f:14:91:0e:f2:83:db:78:3b:a1: d9:d5:88:88:d7:e6:cf:67:59:a6:b4:78:6c:38:58: 5a:b6:6c:8f:4a:94:68:c0:ef:4f:12:5b:d6:aa:66: 03:03:c5:d6:1f:a1:7c:1d:cf:89:a2:b8:9b:9b:bf: 70:90:09:2d:70:01:35:2c:07:8d:1e:22:cb:f6:20: a2:be:9d:4d:4e:cf:59:12:71:a3:10:4f:28:e3:cb: 0f:fa:15:bd:70:e5:04:3c:20:20:c9:d1:f4:3d:00: a1:81:95:df:39:77:06:9d:ad:07:bf:78:1c:ab:86: 33:e8:1b:a6:5a:ae:90:73:11:27:96:4c:d2:8a:01: 20:8c:9f:a4:5b:be:c0:40:cd:98:bb:ad:07:be:d1: 8c:c1:2c:2b:5e:af:0f:2c:1b:97:cf:9a:48:b9:95: 9e:61:e9:4c:8b:bb:b2:c3:aa:27:57:5e:ec:75:55: 2a:93:1d:b1:cb:c9:16:ef:54:4e:57:07:c9:3d:6b: d2:ad:6f:ce:4b:e4:56:54:19:a7:98:1e:dd:ae:79: 0f:e4:17:22:90:18:12:22:6f:c2:c5:15:41:27:1d: ea:4f:0a:c6:3d:e3:26:01:f5:25:62:f1:b4:9c:c4: 00:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 42:43:33:58:B9:39:B1:32:B5:51:5D:72:9D:F1:3A:B2:F1:E8:13:C5 X509v3 Authority Key Identifier: keyid:9B:89:B8:CF:47:F7:C4:85:D6:28:D0:A3:59:A1:6A:81:5C:D0:04:AB X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/m4m4z0f3xIXWKNCjWaFqgVzQBKs.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ae/757fc5-8029-4828-8547-62e260313e4c/1/QkMzWLk5sTK1UV1ynfE6svHoE8U.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/ae/757fc5-8029-4828-8547-62e260313e4c/1/m4m4z0f3xIXWKNCjWaFqgVzQBKs.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 5.180.188.0/22 185.185.77.0-185.185.78.255 Signature Algorithm: sha256WithRSAEncryption 46:ca:5a:33:8e:dc:50:5b:3c:89:d2:e4:a4:df:11:53:91:78: 70:ca:7f:9b:c4:5e:b1:c8:97:79:ea:8d:1c:0e:b4:26:f6:52: cb:b8:ae:98:3a:0f:c3:a2:ae:93:09:66:3d:12:d5:b0:7b:10: 47:18:1f:3e:fa:b7:08:ff:f4:ad:a4:e4:8e:af:4d:34:75:d3: ab:9d:17:38:49:7f:77:01:18:2f:24:c2:8a:04:aa:83:d5:1d: b4:04:c5:18:14:d5:49:26:4a:32:4e:d1:fc:da:f6:b6:aa:42: fd:7e:d2:3c:8c:b2:be:72:66:b3:a9:cc:2b:3a:e7:2b:48:c7: 5d:ac:8f:3f:35:f6:46:da:00:da:79:9f:f0:ae:95:13:c6:ce: 3a:8d:3e:ca:75:8a:7f:39:c4:e2:1c:f4:21:5a:d3:5f:1f:37: 1d:fa:a4:cc:29:ce:cf:8c:64:50:eb:27:f8:5b:12:7a:45:72: 2f:67:71:99:48:72:66:30:b6:48:39:78:70:b9:eb:fc:02:78: 9e:7d:f8:9b:93:ab:d1:6d:ad:df:fe:40:44:a5:ff:cb:be:ff: 4a:c2:7e:84:d1:eb:94:b0:38:7c:fd:18:bd:56:68:97:20:ca: 21:5c:45:1d:8a:e6:a4:c5:db:5d:7a:65:2e:7b:e6:c3:7e:d8: 25:26:d9:e0 -----BEGIN CERTIFICATE----- MIIFCzCCA/OgAwIBAgISAZt262ZUDTGEiS7VICB32UTxMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDliODliOGNmNDdmN2M0ODVkNjI4ZDBhMzU5YTE2YTgxNWNk MDA0YWIwHhcNMjYwMTAxMDAxODE3WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg0MjQzMzM1OGI5MzliMTMyYjU1MTVkNzI5ZGYxM2FiMmYxZTgxM2M1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1FquxvQ6ndbei+WbMvXaxitD6z8U kQ7yg9t4O6HZ1YiI1+bPZ1mmtHhsOFhatmyPSpRowO9PElvWqmYDA8XWH6F8Hc+J oribm79wkAktcAE1LAeNHiLL9iCivp1NTs9ZEnGjEE8o48sP+hW9cOUEPCAgydH0 PQChgZXfOXcGna0Hv3gcq4Yz6BumWq6QcxEnlkzSigEgjJ+kW77AQM2Yu60HvtGM wSwrXq8PLBuXz5pIuZWeYelMi7uyw6onV17sdVUqkx2xy8kW71ROVwfJPWvSrW/O S+RWVBmnmB7drnkP5BcikBgSIm/CxRVBJx3qTwrGPeMmAfUlYvG0nMQAHQIDAQAB o4ICFzCCAhMwHQYDVR0OBBYEFEJDM1i5ObEytVFdcp3xOrLx6BPFMB8GA1UdIwQY MBaAFJuJuM9H98SF1ijQo1mhaoFc0ASrMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvbTRtNHowZjN4SVhXS05DaldhRnFnVnpRQktzLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hZS83NTdmYzUtODAyOS00ODI4LTg1NDct NjJlMjYwMzEzZTRjLzEvUWtNeldMazVzVEsxVVYxeW5mRTZzdkhvRThVLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9hZS83NTdmYzUtODAyOS00ODI4LTg1NDctNjJlMjYwMzEzZTRj LzEvbTRtNHowZjN4SVhXS05DaldhRnFnVnpRQktzLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMC0GCCsGAQUFBwEHAQH/BB4wHDAaBAIAATAUAwQCBbS8MAwD BAC5uU0DBAC5uU4wDQYJKoZIhvcNAQELBQADggEBAEbKWjOO3FBbPInS5KTfEVOR eHDKf5vEXrHIl3nqjRwOtCb2Usu4rpg6D8OirpMJZj0S1bB7EEcYHz76twj/9K2k 5I6vTTR106udFzhJf3cBGC8kwooEqoPVHbQExRgU1UkmSjJO0fza9raqQv1+0jyM sr5yZrOpzCs65ytIx12sjz819kbaANp5n/CulRPGzjqNPsp1in85xOIc9CFa018f Nx36pMwpzs+MZFDrJ/hbEnpFci9ncZlIcmYwtkg5eHC56/wCeJ59+JuTq9Ftrd/+ QESl/8u+/0rCfoTR65SwOHz9GL1WaJcgyiFcRR2K5qTF2116ZS575sN+2CUm2eA= -----END CERTIFICATE-----Generated at Sun Jan 25 11:17:03 2026 by rpki-client