This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bd/cbcf68-7cbf-47f0-82ee-5760efbcc654/1/qmoEJmDXHItBkRrR4CNCdNFXU5c.roa File: qmoEJmDXHItBkRrR4CNCdNFXU5c.roa (raw, json) Hash identifier: Za8kvJX7Ct2+gleepadRQ7a+MH3+z6fA5RKL0ksjJug= Subject key identifier: AA:6A:04:26:60:D7:1C:8B:41:91:1A:D1:E0:23:42:74:D1:57:53:97 Certificate issuer: /CN=b1af12f5ca75c922a4aa5dacb49c04a93237f4ed Certificate serial: 019B7D5D03373585547299BD988DF7CBF0A2 Authority key identifier: B1:AF:12:F5:CA:75:C9:22:A4:AA:5D:AC:B4:9C:04:A9:32:37:F4:ED Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sa8S9cp1ySKkql2stJwEqTI39O0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bd/cbcf68-7cbf-47f0-82ee-5760efbcc654/1/qmoEJmDXHItBkRrR4CNCdNFXU5c.roa Signing time: Fri 02 Jan 2026 06:20:06 +0000 ROA not before: Fri 02 Jan 2026 06:20:06 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 215540 IP address blocks: 45.143.200.0/24 maxlen: 24 185.156.72.0/24 maxlen: 24 185.193.89.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bd/cbcf68-7cbf-47f0-82ee-5760efbcc654/1/sa8S9cp1ySKkql2stJwEqTI39O0.crl rsync://rpki.ripe.net/repository/DEFAULT/bd/cbcf68-7cbf-47f0-82ee-5760efbcc654/1/sa8S9cp1ySKkql2stJwEqTI39O0.mft rsync://rpki.ripe.net/repository/DEFAULT/sa8S9cp1ySKkql2stJwEqTI39O0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 07:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7d:5d:03:37:35:85:54:72:99:bd:98:8d:f7:cb:f0:a2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b1af12f5ca75c922a4aa5dacb49c04a93237f4ed Validity Not Before: Jan 2 06:20:06 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=aa6a042660d71c8b41911ad1e0234274d1575397 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:90:e3:b5:83:af:82:09:47:a1:74:8e:3a:61:fa: de:6b:cd:29:f7:a7:14:4a:37:4b:6f:c5:71:a0:2a: 55:b5:c0:b2:60:a6:03:de:80:4a:95:fa:eb:4a:bd: bb:46:8d:60:5f:02:f5:2e:ce:da:85:42:9b:6e:05: 63:a6:8f:d9:1e:db:d7:9e:f2:3e:4a:7c:d8:ac:27: f6:df:c0:1f:8a:8c:be:7a:1e:87:e7:d3:c7:99:be: d0:dc:f9:a2:94:7a:ad:26:cf:90:4e:29:db:7a:6c: 65:bd:51:a0:08:7e:8e:b5:ad:a3:9b:4e:27:27:cf: 51:b1:c0:bf:05:6e:01:2c:9f:84:1b:7b:1e:37:67: 41:8d:4d:d1:47:c6:3b:8b:70:c7:5d:f0:96:67:de: c9:81:1a:05:24:99:56:01:5d:71:63:99:7f:a3:a6: 1d:37:00:76:57:da:09:1a:f8:fc:86:47:8b:77:72: 7a:26:d1:bc:7e:b9:f0:ad:5c:a0:d1:ec:b9:6a:66: 6e:f9:92:c9:90:d6:02:29:d2:33:2f:5c:ef:a9:1f: 31:0d:ab:4d:55:43:fa:bc:f6:fa:60:b6:ed:66:b6: 71:e1:bc:a2:8b:80:00:5f:ce:15:8d:9c:04:a2:17: d5:c0:9e:4d:77:1b:7e:af:7d:78:40:d5:62:5b:f2: ba:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AA:6A:04:26:60:D7:1C:8B:41:91:1A:D1:E0:23:42:74:D1:57:53:97 X509v3 Authority Key Identifier: keyid:B1:AF:12:F5:CA:75:C9:22:A4:AA:5D:AC:B4:9C:04:A9:32:37:F4:ED X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sa8S9cp1ySKkql2stJwEqTI39O0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/cbcf68-7cbf-47f0-82ee-5760efbcc654/1/qmoEJmDXHItBkRrR4CNCdNFXU5c.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/cbcf68-7cbf-47f0-82ee-5760efbcc654/1/sa8S9cp1ySKkql2stJwEqTI39O0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 45.143.200.0/24 185.156.72.0/24 185.193.89.0/24 Signature Algorithm: sha256WithRSAEncryption 04:cf:64:45:cf:ef:b6:e3:38:d6:5f:6c:61:bd:39:ba:5e:2c: 34:38:36:5e:d3:4c:43:63:df:c0:dc:53:ae:26:76:ab:8b:f0: c0:54:da:30:58:7a:d0:02:de:b6:5b:8c:3d:a3:3f:11:26:bb: 33:f9:f0:82:96:6c:9f:71:e8:ad:5d:c1:c4:20:72:56:d3:6f: 8e:df:f1:9d:0d:72:6c:39:74:50:85:4a:91:22:92:f5:c3:5c: bb:e0:d5:bd:65:d1:97:56:6f:04:dc:23:62:8f:ee:a6:8f:06: 11:a2:f0:67:39:f4:7f:a7:21:f1:45:9e:96:ae:40:69:ab:32: 81:50:da:2a:1f:b8:07:4b:26:e6:44:5f:a5:d8:05:16:97:47: c6:2e:fe:b1:49:9c:cc:a9:4e:ca:31:15:32:d9:53:33:9f:31: bd:d9:99:74:a6:56:5c:a8:fe:c4:1c:35:a7:a3:6c:e7:d1:22: a7:a3:e4:34:79:52:2d:31:42:65:aa:d0:c4:fc:fc:fa:a5:c8: a1:10:22:1c:12:01:c9:e7:b2:7b:7a:74:7f:18:3b:a6:42:62: c8:26:96:42:b8:6f:cd:f7:05:03:90:e4:94:16:df:24:6d:59: cc:73:6e:87:6a:9f:dc:38:ce:af:07:c4:c5:0a:f9:43:19:f5: 94:d0:d6:31 -----BEGIN CERTIFICATE----- MIIFCTCCA/GgAwIBAgISAZt9XQM3NYVUcpm9mI33y/CiMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGIxYWYxMmY1Y2E3NWM5MjJhNGFhNWRhY2I0OWMwNGE5MzIz N2Y0ZWQwHhcNMjYwMTAyMDYyMDA2WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhhYTZhMDQyNjYwZDcxYzhiNDE5MTFhZDFlMDIzNDI3NGQxNTc1Mzk3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAkOO1g6+CCUehdI46Yfrea80p96cU SjdLb8VxoCpVtcCyYKYD3oBKlfrrSr27Ro1gXwL1Ls7ahUKbbgVjpo/ZHtvXnvI+ SnzYrCf238Afioy+eh6H59PHmb7Q3PmilHqtJs+QTinbemxlvVGgCH6Ota2jm04n J89RscC/BW4BLJ+EG3seN2dBjU3RR8Y7i3DHXfCWZ97JgRoFJJlWAV1xY5l/o6Yd NwB2V9oJGvj8hkeLd3J6JtG8frnwrVyg0ey5amZu+ZLJkNYCKdIzL1zvqR8xDatN VUP6vPb6YLbtZrZx4byii4AAX84VjZwEohfVwJ5Ndxt+r314QNViW/K64QIDAQAB o4ICFTCCAhEwHQYDVR0OBBYEFKpqBCZg1xyLQZEa0eAjQnTRV1OXMB8GA1UdIwQY MBaAFLGvEvXKdckipKpdrLScBKkyN/TtMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvc2E4UzljcDF5U0trcWwyc3RKd0VxVEkzOU8wLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iZC9jYmNmNjgtN2NiZi00N2YwLTgyZWUt NTc2MGVmYmNjNjU0LzEvcW1vRUptRFhISXRCa1JyUjRDTkNkTkZYVTVjLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iZC9jYmNmNjgtN2NiZi00N2YwLTgyZWUtNTc2MGVmYmNjNjU0 LzEvc2E4UzljcDF5U0trcWwyc3RKd0VxVEkzOU8wLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCsGCCsGAQUFBwEHAQH/BBwwGjAYBAIAATASAwQALY/IAwQA uZxIAwQAucFZMA0GCSqGSIb3DQEBCwUAA4IBAQAEz2RFz++24zjWX2xhvTm6Xiw0 ODZe00xDY9/A3FOuJnari/DAVNowWHrQAt62W4w9oz8RJrsz+fCClmyfceitXcHE IHJW02+O3/GdDXJsOXRQhUqRIpL1w1y74NW9ZdGXVm8E3CNij+6mjwYRovBnOfR/ pyHxRZ6WrkBpqzKBUNoqH7gHSybmRF+l2AUWl0fGLv6xSZzMqU7KMRUy2VMznzG9 2Zl0plZcqP7EHDWno2zn0SKno+Q0eVItMUJlqtDE/Pz6pcihECIcEgHJ57J7enR/ GDumQmLIJpZCuG/N9wUDkOSUFt8kbVnMc26Hap/cOM6vB8TFCvlDGfWU0NYx -----END CERTIFICATE-----Generated at Sun Jan 25 15:12:16 2026 by rpki-client