This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bb/f80ef3-9f0b-4bd1-8018-59671920fb60/1/qYT1lK9TKcXREDGysvCStyVZoVM.roa File: qYT1lK9TKcXREDGysvCStyVZoVM.roa (raw, json) Hash identifier: HV21dCEh4WPHo/n/QApiPaUdx//e/gqwbQPEK+93u+0= Subject key identifier: A9:84:F5:94:AF:53:29:C5:D1:10:31:B2:B2:F0:92:B7:25:59:A1:53 Certificate issuer: /CN=37518d180923a7f3c00653ec12bc702b95aab907 Certificate serial: 019B7C12396E660CC728C23389EBBFE8DEBB Authority key identifier: 37:51:8D:18:09:23:A7:F3:C0:06:53:EC:12:BC:70:2B:95:AA:B9:07 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/N1GNGAkjp_PABlPsErxwK5WquQc.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bb/f80ef3-9f0b-4bd1-8018-59671920fb60/1/qYT1lK9TKcXREDGysvCStyVZoVM.roa Signing time: Fri 02 Jan 2026 00:18:47 +0000 ROA not before: Fri 02 Jan 2026 00:18:47 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 207263 IP address blocks: 193.140.72.0/22 maxlen: 24 193.140.87.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bb/f80ef3-9f0b-4bd1-8018-59671920fb60/1/N1GNGAkjp_PABlPsErxwK5WquQc.crl rsync://rpki.ripe.net/repository/DEFAULT/bb/f80ef3-9f0b-4bd1-8018-59671920fb60/1/N1GNGAkjp_PABlPsErxwK5WquQc.mft rsync://rpki.ripe.net/repository/DEFAULT/N1GNGAkjp_PABlPsErxwK5WquQc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 27 Jan 2026 00:00:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7c:12:39:6e:66:0c:c7:28:c2:33:89:eb:bf:e8:de:bb Signature Algorithm: sha256WithRSAEncryption Issuer: CN=37518d180923a7f3c00653ec12bc702b95aab907 Validity Not Before: Jan 2 00:18:47 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=a984f594af5329c5d11031b2b2f092b72559a153 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:b8:3b:c4:aa:36:ad:e9:e3:dc:83:4e:70:da: 54:bf:55:9e:82:d8:25:a8:c0:5c:47:96:12:d0:be: e6:f4:f7:0b:c0:8c:15:56:fb:d2:06:24:db:c5:d7: b3:d7:82:58:04:65:dc:09:19:59:b5:13:06:78:4b: ba:13:dd:31:bb:8f:31:81:37:18:db:ef:e6:2d:fe: 49:90:3e:2e:ab:5e:1c:54:b9:77:40:50:90:3f:2c: ce:d3:ea:71:71:62:b1:2b:7f:a1:fd:11:c8:cf:c3: 94:67:24:3d:d5:58:12:e6:7c:44:8c:20:50:6b:9f: 9b:15:2b:92:9a:70:db:dd:e4:3f:8b:02:c9:e8:d0: df:e6:bc:aa:0e:41:99:cb:8d:0e:b8:9d:01:ca:08: 63:f1:42:b7:65:97:fa:c0:91:a9:e4:4f:9c:cb:99: ca:f4:2d:4d:2f:be:a8:d2:dd:f9:90:e4:55:53:0b: a2:ab:a3:79:a5:83:39:b4:5d:a3:e0:34:b0:7f:61: 00:b4:2f:ef:5e:60:4a:ad:81:a9:66:49:a9:a1:30: 80:3e:7e:b9:35:78:5a:4c:99:47:63:98:8f:1d:b4: de:6a:7f:0a:de:4d:d3:04:c3:43:2d:c2:b0:ff:fe: ff:1b:2a:77:1a:95:51:52:ed:97:48:b9:26:2e:d0: 96:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A9:84:F5:94:AF:53:29:C5:D1:10:31:B2:B2:F0:92:B7:25:59:A1:53 X509v3 Authority Key Identifier: keyid:37:51:8D:18:09:23:A7:F3:C0:06:53:EC:12:BC:70:2B:95:AA:B9:07 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/N1GNGAkjp_PABlPsErxwK5WquQc.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bb/f80ef3-9f0b-4bd1-8018-59671920fb60/1/qYT1lK9TKcXREDGysvCStyVZoVM.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/bb/f80ef3-9f0b-4bd1-8018-59671920fb60/1/N1GNGAkjp_PABlPsErxwK5WquQc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 193.140.72.0/22 193.140.87.0/24 Signature Algorithm: sha256WithRSAEncryption 3a:e6:65:13:68:90:1f:bb:40:db:6b:77:73:89:76:84:21:9e: 70:f2:23:f2:80:bf:77:7e:b0:e3:e3:e4:3a:26:79:8a:8d:9d: f4:b4:6d:ef:2b:00:d8:26:6d:42:7f:a9:ab:43:c0:1b:a8:85: 78:41:88:c0:ed:95:fd:39:78:c0:cd:a9:f3:8a:4d:1b:54:60: 05:67:e8:b3:b8:1b:bc:22:5c:6f:b9:2c:8c:2b:3a:ea:1f:a5: f8:12:a4:8f:92:ea:9b:64:a1:6b:43:67:b5:1a:a8:51:bd:a8: 7e:eb:8a:09:44:6a:4c:e2:36:11:29:1d:19:73:5c:9f:31:fe: 47:9f:24:28:c6:dc:3a:13:2a:bf:c4:3a:1d:1c:7b:8a:f1:b8: a3:a4:a7:66:c5:6c:11:23:81:b0:bc:42:36:7f:3b:0a:02:1f: b5:b6:16:58:28:e1:18:dd:e8:fa:20:28:ff:61:01:67:22:40: 7f:9f:78:97:80:2c:3e:42:b5:2c:ac:47:81:33:b4:3b:ea:e7: 65:fe:66:e7:d3:d1:53:7d:05:65:60:85:04:ff:00:2f:10:30: 0b:6c:c9:af:08:9f:97:9e:98:7f:a3:dd:8d:5e:8c:4d:a3:e1: b2:49:4f:35:86:0d:53:97:65:b7:b5:54:ac:72:43:c4:06:fd: 2d:c7:42:84 -----BEGIN CERTIFICATE----- MIIFAzCCA+ugAwIBAgISAZt8EjluZgzHKMIzieu/6N67MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDM3NTE4ZDE4MDkyM2E3ZjNjMDA2NTNlYzEyYmM3MDJiOTVh YWI5MDcwHhcNMjYwMTAyMDAxODQ3WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhhOTg0ZjU5NGFmNTMyOWM1ZDExMDMxYjJiMmYwOTJiNzI1NTlhMTUzMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArLg7xKo2renj3INOcNpUv1Wegtgl qMBcR5YS0L7m9PcLwIwVVvvSBiTbxdez14JYBGXcCRlZtRMGeEu6E90xu48xgTcY 2+/mLf5JkD4uq14cVLl3QFCQPyzO0+pxcWKxK3+h/RHIz8OUZyQ91VgS5nxEjCBQ a5+bFSuSmnDb3eQ/iwLJ6NDf5ryqDkGZy40OuJ0Byghj8UK3ZZf6wJGp5E+cy5nK 9C1NL76o0t35kORVUwuiq6N5pYM5tF2j4DSwf2EAtC/vXmBKrYGpZkmpoTCAPn65 NXhaTJlHY5iPHbTean8K3k3TBMNDLcKw//7/Gyp3GpVRUu2XSLkmLtCWlQIDAQAB o4ICDzCCAgswHQYDVR0OBBYEFKmE9ZSvUynF0RAxsrLwkrclWaFTMB8GA1UdIwQY MBaAFDdRjRgJI6fzwAZT7BK8cCuVqrkHMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvTjFHTkdBa2pwX1BBQmxQc0VyeHdLNVdxdVFjLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iYi9mODBlZjMtOWYwYi00YmQxLTgwMTgt NTk2NzE5MjBmYjYwLzEvcVlUMWxLOVRLY1hSRURHeXN2Q1N0eVZab1ZNLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iYi9mODBlZjMtOWYwYi00YmQxLTgwMTgtNTk2NzE5MjBmYjYw LzEvTjFHTkdBa2pwX1BBQmxQc0VyeHdLNVdxdVFjLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQCwYxIAwQA wYxXMA0GCSqGSIb3DQEBCwUAA4IBAQA65mUTaJAfu0Dba3dziXaEIZ5w8iPygL93 frDj4+Q6JnmKjZ30tG3vKwDYJm1Cf6mrQ8AbqIV4QYjA7ZX9OXjAzanzik0bVGAF Z+izuBu8IlxvuSyMKzrqH6X4EqSPkuqbZKFrQ2e1GqhRvah+64oJRGpM4jYRKR0Z c1yfMf5HnyQoxtw6Eyq/xDodHHuK8bijpKdmxWwRI4GwvEI2fzsKAh+1thZYKOEY 3ej6ICj/YQFnIkB/n3iXgCw+QrUsrEeBM7Q76udl/mbn09FTfQVlYIUE/wAvEDAL bMmvCJ+Xnph/o92NXoxNo+GySU81hg1Tl2W3tVSsckPEBv0tx0KE -----END CERTIFICATE-----Generated at Mon Jan 26 11:04:32 2026 by rpki-client