This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bb/32109e-24c9-4c88-a8e8-fdf6638d2c04/1/qkO3HWUjh2SeVz2kOfBJ3fz48jY.roa File: qkO3HWUjh2SeVz2kOfBJ3fz48jY.roa (raw, json) Hash identifier: /yTAZn/rmLrDKLc8NDsiQRU6zHvgZlDcdPO4KfqzKvE= Subject key identifier: AA:43:B7:1D:65:23:87:64:9E:57:3D:A4:39:F0:49:DD:FC:F8:F2:36 Certificate issuer: /CN=6bc5de7d7255b7d58260c65a120b164ef10ef903 Certificate serial: 019B77C7260FAB3176E6A3E5D70146E928BC Authority key identifier: 6B:C5:DE:7D:72:55:B7:D5:82:60:C6:5A:12:0B:16:4E:F1:0E:F9:03 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/a8XefXJVt9WCYMZaEgsWTvEO-QM.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bb/32109e-24c9-4c88-a8e8-fdf6638d2c04/1/qkO3HWUjh2SeVz2kOfBJ3fz48jY.roa Signing time: Thu 01 Jan 2026 04:18:18 +0000 ROA not before: Thu 01 Jan 2026 04:18:18 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 50926 IP address blocks: 37.252.96.0/24 maxlen: 24 89.44.32.0/24 maxlen: 24 158.255.238.0/24 maxlen: 24 185.66.175.0/24 maxlen: 24 185.76.77.0/24 maxlen: 24 185.86.210.0/24 maxlen: 24 185.104.152.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bb/32109e-24c9-4c88-a8e8-fdf6638d2c04/1/a8XefXJVt9WCYMZaEgsWTvEO-QM.crl rsync://rpki.ripe.net/repository/DEFAULT/bb/32109e-24c9-4c88-a8e8-fdf6638d2c04/1/a8XefXJVt9WCYMZaEgsWTvEO-QM.mft rsync://rpki.ripe.net/repository/DEFAULT/a8XefXJVt9WCYMZaEgsWTvEO-QM.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 06:00:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:77:c7:26:0f:ab:31:76:e6:a3:e5:d7:01:46:e9:28:bc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6bc5de7d7255b7d58260c65a120b164ef10ef903 Validity Not Before: Jan 1 04:18:18 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=aa43b71d652387649e573da439f049ddfcf8f236 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:87:de:6d:11:b4:9b:88:1a:df:4a:7c:d0:5f: 8b:b0:53:54:db:80:a2:fe:56:bd:09:5c:39:26:f8: 56:eb:8f:d2:33:39:49:26:a6:44:de:c3:e9:cf:89: 87:9b:9a:50:60:ff:f9:5a:aa:da:30:e6:cb:f5:59: f9:16:8f:d7:49:f1:f3:7e:b0:6e:21:63:da:97:26: b1:bc:69:d3:09:b5:71:8d:1a:99:4c:0b:d3:7c:e1: f6:71:77:d1:ce:d1:6c:4a:72:a2:a8:99:8e:ba:5a: 05:52:9f:f8:3c:d5:72:e1:a6:39:ba:07:0e:e5:f4: cd:ff:7c:c4:a0:c0:99:4c:dd:c0:d2:6e:fc:34:57: a2:8f:e1:27:b8:33:2e:e9:da:5e:0d:e5:7e:40:c7: d4:c4:0c:d7:86:13:32:ae:ae:08:30:97:69:6c:f1: a9:ad:0c:26:79:2d:79:3e:7b:0f:b1:fc:2c:1a:2f: 6e:9d:54:e1:f8:ff:54:e6:a1:8a:1c:b5:c8:c5:81: 6c:9d:2f:a7:c9:ee:58:ed:79:db:8d:c1:37:8a:be: 91:e3:d3:d4:b4:d7:55:7b:4f:82:9d:1c:89:d8:31: fc:d2:0f:eb:5b:b8:96:c7:4e:ed:00:8b:99:07:52: 39:3f:a7:37:4e:20:d9:0a:c7:b0:3a:92:d5:13:3f: 3a:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AA:43:B7:1D:65:23:87:64:9E:57:3D:A4:39:F0:49:DD:FC:F8:F2:36 X509v3 Authority Key Identifier: keyid:6B:C5:DE:7D:72:55:B7:D5:82:60:C6:5A:12:0B:16:4E:F1:0E:F9:03 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/a8XefXJVt9WCYMZaEgsWTvEO-QM.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bb/32109e-24c9-4c88-a8e8-fdf6638d2c04/1/qkO3HWUjh2SeVz2kOfBJ3fz48jY.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/bb/32109e-24c9-4c88-a8e8-fdf6638d2c04/1/a8XefXJVt9WCYMZaEgsWTvEO-QM.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 37.252.96.0/24 89.44.32.0/24 158.255.238.0/24 185.66.175.0/24 185.76.77.0/24 185.86.210.0/24 185.104.152.0/24 Signature Algorithm: sha256WithRSAEncryption 5c:db:6f:07:af:97:b2:c4:31:91:55:2b:2d:58:3d:2d:22:ce: 02:26:af:e2:51:87:45:8b:8a:ea:e4:ed:d7:51:e3:92:3c:35: 40:66:79:f4:95:d8:32:ee:22:31:ed:f4:86:37:8e:9d:1f:38: e8:ef:c9:aa:73:e6:6d:fd:23:88:be:5c:f1:55:c7:7c:72:e0: 87:3e:98:63:7a:ce:ee:9a:b4:10:9a:46:ba:17:16:31:7d:3f: 7b:71:1b:b7:65:be:fd:72:39:ba:42:58:d1:54:44:9c:79:3d: 46:1d:02:54:d6:d2:f1:2e:27:da:0e:4d:2a:29:18:ba:34:d5: b6:ed:46:17:de:83:bd:cc:2a:ff:71:a2:9e:28:92:b3:ef:6a: 6f:01:76:de:8c:89:5b:aa:ac:e1:a6:c8:62:1f:c0:a8:a5:03: 7a:45:22:52:69:5a:08:9b:a3:c1:f3:93:f7:33:a9:5b:74:e4: 94:a9:5b:eb:e3:3a:a1:55:c2:5c:3c:90:32:e7:a4:6f:bc:55: 0a:24:a8:f8:8e:9a:4c:fb:7b:68:87:6f:90:8d:86:ed:59:63: bb:fd:68:f8:6d:b9:95:cc:be:bb:ea:74:d9:ef:ca:52:c0:8d: 8c:7e:10:0e:25:b6:f3:6a:49:f3:ad:b1:44:95:de:ce:7e:2f: a9:52:14:2e -----BEGIN CERTIFICATE----- MIIFITCCBAmgAwIBAgISAZt3xyYPqzF25qPl1wFG6Si8MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDZiYzVkZTdkNzI1NWI3ZDU4MjYwYzY1YTEyMGIxNjRlZjEw ZWY5MDMwHhcNMjYwMTAxMDQxODE4WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhhYTQzYjcxZDY1MjM4NzY0OWU1NzNkYTQzOWYwNDlkZGZjZjhmMjM2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzofebRG0m4ga30p80F+LsFNU24Ci /la9CVw5JvhW64/SMzlJJqZE3sPpz4mHm5pQYP/5WqraMObL9Vn5Fo/XSfHzfrBu IWPalyaxvGnTCbVxjRqZTAvTfOH2cXfRztFsSnKiqJmOuloFUp/4PNVy4aY5ugcO 5fTN/3zEoMCZTN3A0m78NFeij+EnuDMu6dpeDeV+QMfUxAzXhhMyrq4IMJdpbPGp rQwmeS15PnsPsfwsGi9unVTh+P9U5qGKHLXIxYFsnS+nye5Y7XnbjcE3ir6R49PU tNdVe0+CnRyJ2DH80g/rW7iWx07tAIuZB1I5P6c3TiDZCsewOpLVEz86eQIDAQAB o4ICLTCCAikwHQYDVR0OBBYEFKpDtx1lI4dknlc9pDnwSd38+PI2MB8GA1UdIwQY MBaAFGvF3n1yVbfVgmDGWhILFk7xDvkDMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvYThYZWZYSlZ0OVdDWU1aYUVnc1dUdkVPLVFNLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iYi8zMjEwOWUtMjRjOS00Yzg4LWE4ZTgt ZmRmNjYzOGQyYzA0LzEvcWtPM0hXVWpoMlNlVnoya09mQkozZno0OGpZLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iYi8zMjEwOWUtMjRjOS00Yzg4LWE4ZTgtZmRmNjYzOGQyYzA0 LzEvYThYZWZYSlZ0OVdDWU1aYUVnc1dUdkVPLVFNLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMEMGCCsGAQUFBwEHAQH/BDQwMjAwBAIAATAqAwQAJfxgAwQA WSwgAwQAnv/uAwQAuUKvAwQAuUxNAwQAuVbSAwQAuWiYMA0GCSqGSIb3DQEBCwUA A4IBAQBc228Hr5eyxDGRVSstWD0tIs4CJq/iUYdFi4rq5O3XUeOSPDVAZnn0ldgy 7iIx7fSGN46dHzjo78mqc+Zt/SOIvlzxVcd8cuCHPphjes7umrQQmka6FxYxfT97 cRu3Zb79cjm6QljRVESceT1GHQJU1tLxLifaDk0qKRi6NNW27UYX3oO9zCr/caKe KJKz72pvAXbejIlbqqzhpshiH8CopQN6RSJSaVoIm6PB85P3M6lbdOSUqVvr4zqh VcJcPJAy56RvvFUKJKj4jppM+3toh2+QjYbtWWO7/Wj4bbmVzL676nTZ78pSwI2M fhAOJbbzaknzrbFEld7Ofi+pUhQu -----END CERTIFICATE-----Generated at Sun Jan 25 16:27:34 2026 by rpki-client