This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/be/c37497-6376-461e-93c6-9778674edc97/1/qB15O1-jns9cCJruWrN8kl5vYPI.roa File: qB15O1-jns9cCJruWrN8kl5vYPI.roa (raw, json) Hash identifier: sCMQ1QDWGule+jMAKLoXn+v3opLMdZQ1xTIi9AoaLA0= Subject key identifier: A8:1D:79:3B:5F:A3:9E:CF:5C:08:9A:EE:5A:B3:7C:92:5E:6F:60:F2 Certificate issuer: /CN=7df132df13e4be53d8250c8c48420264eef6c14c Certificate serial: 019B7B360A5886D79590B8E50E5D4902C647 Authority key identifier: 7D:F1:32:DF:13:E4:BE:53:D8:25:0C:8C:48:42:02:64:EE:F6:C1:4C Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ffEy3xPkvlPYJQyMSEICZO72wUw.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/be/c37497-6376-461e-93c6-9778674edc97/1/qB15O1-jns9cCJruWrN8kl5vYPI.roa Signing time: Thu 01 Jan 2026 20:18:17 +0000 ROA not before: Thu 01 Jan 2026 20:18:17 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 44277 IP address blocks: 85.204.23.0/24 maxlen: 24 86.106.99.0/24 maxlen: 24 89.35.115.0/24 maxlen: 24 89.43.61.0/24 maxlen: 24 93.118.39.0/24 maxlen: 24 188.214.226.0/24 maxlen: 24 188.240.198.0/23 maxlen: 23 188.241.108.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/be/c37497-6376-461e-93c6-9778674edc97/1/ffEy3xPkvlPYJQyMSEICZO72wUw.crl rsync://rpki.ripe.net/repository/DEFAULT/be/c37497-6376-461e-93c6-9778674edc97/1/ffEy3xPkvlPYJQyMSEICZO72wUw.mft rsync://rpki.ripe.net/repository/DEFAULT/ffEy3xPkvlPYJQyMSEICZO72wUw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 11:01:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7b:36:0a:58:86:d7:95:90:b8:e5:0e:5d:49:02:c6:47 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7df132df13e4be53d8250c8c48420264eef6c14c Validity Not Before: Jan 1 20:18:17 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=a81d793b5fa39ecf5c089aee5ab37c925e6f60f2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e6:94:73:e3:b9:e0:95:2f:88:7c:4a:07:8d:ba: 71:3c:de:67:20:d9:06:fb:8c:d0:94:93:31:3d:4b: e0:65:f9:2f:0e:26:69:1e:c5:7e:90:d5:58:7e:5e: e5:a3:9c:50:d5:0d:0a:d4:c2:8e:e6:f2:d6:8d:1f: 2d:fa:5b:6a:ee:bf:76:56:56:ff:20:b3:4a:48:08: 14:16:cb:20:ba:e4:b0:70:93:6f:8c:8c:83:4f:2b: bb:be:d5:a3:ca:85:9a:03:4d:2b:3c:50:cf:28:b4: 4a:02:be:5e:cb:54:98:09:07:24:b3:0d:a3:ac:60: 44:a5:75:c0:7a:1c:a5:33:ad:ac:ad:77:e9:30:17: 22:5f:8e:22:9d:45:ed:3b:eb:d2:cf:fe:a6:5c:7b: c7:7f:8b:63:de:de:17:fd:00:45:41:d4:fc:21:de: ca:34:01:2d:cc:c2:4c:a8:38:11:f4:33:25:42:3a: c0:cd:f1:fc:5f:d2:37:9d:45:d3:87:7d:22:30:e2: f9:81:7e:ca:e0:94:5d:da:1a:22:a6:b7:1c:2a:48: 67:46:69:04:2b:fe:20:96:98:a1:7e:e6:0d:a1:4d: 22:e1:a9:57:ab:4f:3d:1d:02:ed:7d:bb:ce:b9:da: c5:6c:54:8d:40:6a:8e:6c:33:1a:f6:39:29:ad:1a: dd:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A8:1D:79:3B:5F:A3:9E:CF:5C:08:9A:EE:5A:B3:7C:92:5E:6F:60:F2 X509v3 Authority Key Identifier: keyid:7D:F1:32:DF:13:E4:BE:53:D8:25:0C:8C:48:42:02:64:EE:F6:C1:4C X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ffEy3xPkvlPYJQyMSEICZO72wUw.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/be/c37497-6376-461e-93c6-9778674edc97/1/qB15O1-jns9cCJruWrN8kl5vYPI.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/be/c37497-6376-461e-93c6-9778674edc97/1/ffEy3xPkvlPYJQyMSEICZO72wUw.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 85.204.23.0/24 86.106.99.0/24 89.35.115.0/24 89.43.61.0/24 93.118.39.0/24 188.214.226.0/24 188.240.198.0/23 188.241.108.0/24 Signature Algorithm: sha256WithRSAEncryption 16:4f:4f:2e:6b:db:68:1e:9c:19:ea:4a:39:db:be:45:e0:58: 10:2c:67:2a:0d:84:d7:57:e3:1b:99:1c:70:ed:b1:5d:67:ca: 3a:de:0b:99:53:86:46:78:04:a9:23:08:22:8f:19:a1:b4:45: bd:08:ad:bc:1a:df:63:51:b6:66:6c:2b:2d:67:8b:80:db:94: 6f:1a:ac:32:80:6c:80:bb:0f:f5:97:7d:8f:5d:b7:8c:97:09: 4e:dc:9f:d0:bc:42:e9:62:4c:21:50:65:bf:99:13:0e:8c:ea: 8d:96:c5:87:dc:37:ae:7f:7b:03:e5:80:59:a8:17:41:59:2b: 1a:bf:28:3c:41:49:1c:38:a6:d7:e4:6f:d0:77:53:f0:cb:ec: 52:d3:a0:da:6e:d5:42:79:77:66:80:3a:b8:34:08:af:47:51: 30:55:ba:8b:ac:86:3d:b9:8f:27:45:9b:e2:05:25:7e:2d:5a: d0:e3:7e:01:ed:65:00:6d:18:6b:1b:e0:a1:ef:bb:69:1f:15: cb:15:a1:96:d8:11:e0:a3:ae:84:a7:65:df:91:ff:fc:77:e6: 4f:74:49:4a:ae:91:86:b3:ed:b7:36:0d:56:c4:07:87:d4:60: 28:8a:d8:da:b2:8e:17:b7:62:56:38:bf:71:c1:22:93:a2:88: 8c:22:ba:8c -----BEGIN CERTIFICATE----- MIIFJzCCBA+gAwIBAgISAZt7NgpYhteVkLjlDl1JAsZHMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDdkZjEzMmRmMTNlNGJlNTNkODI1MGM4YzQ4NDIwMjY0ZWVm NmMxNGMwHhcNMjYwMTAxMjAxODE3WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhhODFkNzkzYjVmYTM5ZWNmNWMwODlhZWU1YWIzN2M5MjVlNmY2MGYyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA5pRz47nglS+IfEoHjbpxPN5nINkG +4zQlJMxPUvgZfkvDiZpHsV+kNVYfl7lo5xQ1Q0K1MKO5vLWjR8t+ltq7r92Vlb/ ILNKSAgUFssguuSwcJNvjIyDTyu7vtWjyoWaA00rPFDPKLRKAr5ey1SYCQcksw2j rGBEpXXAehylM62srXfpMBciX44inUXtO+vSz/6mXHvHf4tj3t4X/QBFQdT8Id7K NAEtzMJMqDgR9DMlQjrAzfH8X9I3nUXTh30iMOL5gX7K4JRd2hoiprccKkhnRmkE K/4glpihfuYNoU0i4alXq089HQLtfbvOudrFbFSNQGqObDMa9jkprRrdpwIDAQAB o4ICMzCCAi8wHQYDVR0OBBYEFKgdeTtfo57PXAia7lqzfJJeb2DyMB8GA1UdIwQY MBaAFH3xMt8T5L5T2CUMjEhCAmTu9sFMMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvZmZFeTN4UGt2bFBZSlF5TVNFSUNaTzcyd1V3LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iZS9jMzc0OTctNjM3Ni00NjFlLTkzYzYt OTc3ODY3NGVkYzk3LzEvcUIxNU8xLWpuczljQ0pydVdyTjhrbDV2WVBJLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iZS9jMzc0OTctNjM3Ni00NjFlLTkzYzYtOTc3ODY3NGVkYzk3 LzEvZmZFeTN4UGt2bFBZSlF5TVNFSUNaTzcyd1V3LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMEkGCCsGAQUFBwEHAQH/BDowODA2BAIAATAwAwQAVcwXAwQA VmpjAwQAWSNzAwQAWSs9AwQAXXYnAwQAvNbiAwQBvPDGAwQAvPFsMA0GCSqGSIb3 DQEBCwUAA4IBAQAWT08ua9toHpwZ6ko5275F4FgQLGcqDYTXV+MbmRxw7bFdZ8o6 3guZU4ZGeASpIwgijxmhtEW9CK28Gt9jUbZmbCstZ4uA25RvGqwygGyAuw/1l32P XbeMlwlO3J/QvELpYkwhUGW/mRMOjOqNlsWH3Deuf3sD5YBZqBdBWSsavyg8QUkc OKbX5G/Qd1Pwy+xS06DabtVCeXdmgDq4NAivR1EwVbqLrIY9uY8nRZviBSV+LVrQ 434B7WUAbRhrG+Ch77tpHxXLFaGW2BHgo66Ep2Xfkf/8d+ZPdElKrpGGs+23Ng1W xAeH1GAoitjaso4Xt2JWOL9xwSKTooiMIrqM -----END CERTIFICATE-----Generated at Sun Jan 25 21:19:37 2026 by rpki-client