This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c0/b70658-e1dc-4944-a06b-1c680adf7a26/1/lQGqNWtAEeW1v0ZoaLS6zM2cAKg.roa File: lQGqNWtAEeW1v0ZoaLS6zM2cAKg.roa (raw, json) Hash identifier: CWDgSSnIsyWB1Z7WNe/hpRHqTHPu2VcJNOHIRuOk0WE= Subject key identifier: 95:01:AA:35:6B:40:11:E5:B5:BF:46:68:68:B4:BA:CC:CD:9C:00:A8 Certificate issuer: /CN=d3600cbafd26fee5064fc89f301dfc8e3c1d3ca5 Certificate serial: 019B7E3854B6C22D477AF488EE5D096814EC Authority key identifier: D3:60:0C:BA:FD:26:FE:E5:06:4F:C8:9F:30:1D:FC:8E:3C:1D:3C:A5 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/02AMuv0m_uUGT8ifMB38jjwdPKU.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c0/b70658-e1dc-4944-a06b-1c680adf7a26/1/lQGqNWtAEeW1v0ZoaLS6zM2cAKg.roa Signing time: Fri 02 Jan 2026 10:19:39 +0000 ROA not before: Fri 02 Jan 2026 10:19:39 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 56910 IP address blocks: 31.177.56.0/21 maxlen: 24 86.106.173.0/24 maxlen: 24 185.4.236.0/24 maxlen: 24 185.36.232.0/22 maxlen: 24 185.109.16.0/22 maxlen: 24 188.214.127.0/24 maxlen: 24 2a04:3e00::/29 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c0/b70658-e1dc-4944-a06b-1c680adf7a26/1/02AMuv0m_uUGT8ifMB38jjwdPKU.crl rsync://rpki.ripe.net/repository/DEFAULT/c0/b70658-e1dc-4944-a06b-1c680adf7a26/1/02AMuv0m_uUGT8ifMB38jjwdPKU.mft rsync://rpki.ripe.net/repository/DEFAULT/02AMuv0m_uUGT8ifMB38jjwdPKU.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 13:21:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7e:38:54:b6:c2:2d:47:7a:f4:88:ee:5d:09:68:14:ec Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d3600cbafd26fee5064fc89f301dfc8e3c1d3ca5 Validity Not Before: Jan 2 10:19:39 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=9501aa356b4011e5b5bf466868b4bacccd9c00a8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:88:03:40:f6:2d:cc:52:ff:7a:00:04:91:f0:72: 6b:1b:2a:26:ca:62:eb:0e:25:be:93:66:02:14:00: 47:1a:cc:c8:79:71:80:43:1c:64:09:cb:ca:9a:38: 55:3c:a8:79:26:44:25:b3:d6:df:97:99:73:ce:d8: 32:2e:f9:11:a6:f0:cf:36:25:ab:7d:3e:53:99:c2: 90:8e:41:99:92:69:d3:22:80:45:87:12:e1:60:52: 49:a3:21:5a:cb:51:2a:08:5b:13:e5:e7:9c:6e:5a: c4:fd:44:4e:a6:e3:6e:81:48:43:c5:5e:b5:4c:d0: 5f:82:53:8f:69:24:ee:a3:39:68:c8:dc:d7:b6:9c: fc:6b:9d:eb:b6:c8:a1:19:e8:c3:c7:1a:68:91:06: 1f:2d:36:27:9c:c5:3f:e2:c6:f5:b2:57:46:47:78: f4:2e:f6:47:52:d9:21:99:e4:62:3a:d0:97:f5:cb: bc:cb:31:4d:cd:b2:e5:f7:dd:cb:97:e6:12:31:93: 7e:a1:34:38:0f:a3:b2:0a:8f:e7:f0:c7:ee:80:4c: b8:c4:47:da:b3:4a:54:7f:6f:73:68:d7:1c:d3:d5: dd:31:84:ab:92:de:65:4c:d1:82:44:43:50:c7:85: 9a:05:fb:24:96:8f:8e:57:12:0c:03:41:66:ef:2f: 1c:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 95:01:AA:35:6B:40:11:E5:B5:BF:46:68:68:B4:BA:CC:CD:9C:00:A8 X509v3 Authority Key Identifier: keyid:D3:60:0C:BA:FD:26:FE:E5:06:4F:C8:9F:30:1D:FC:8E:3C:1D:3C:A5 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/02AMuv0m_uUGT8ifMB38jjwdPKU.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/b70658-e1dc-4944-a06b-1c680adf7a26/1/lQGqNWtAEeW1v0ZoaLS6zM2cAKg.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/b70658-e1dc-4944-a06b-1c680adf7a26/1/02AMuv0m_uUGT8ifMB38jjwdPKU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 31.177.56.0/21 86.106.173.0/24 185.4.236.0/24 185.36.232.0/22 185.109.16.0/22 188.214.127.0/24 IPv6: 2a04:3e00::/29 Signature Algorithm: sha256WithRSAEncryption 36:2f:ee:76:fe:de:3f:8d:e6:01:f5:69:b5:31:6d:37:98:af: 0b:42:10:d2:b8:ba:e4:94:3f:dc:8b:3f:3d:82:8d:da:85:77: 02:72:62:a4:4e:24:a8:67:8b:65:1e:b0:ed:f9:87:3f:0c:3c: 5a:c0:89:b3:98:af:9f:ab:b6:c7:88:68:d6:91:5d:f6:46:de: 3a:79:85:26:a2:2a:3c:76:a6:fb:85:52:74:5d:ee:3b:84:63: 4f:47:5d:fa:7f:75:5e:e8:3e:50:92:1a:e2:c1:ac:05:3b:bc: 1c:39:19:f7:95:da:8a:da:8b:9b:26:99:72:1b:0f:28:04:b2: f9:21:03:93:88:c4:7a:9d:af:dc:18:39:93:49:a9:a9:1d:cd: 7c:8e:ac:3c:2f:5c:13:87:f4:de:74:eb:83:45:8f:54:d8:a4: 79:9a:f2:a8:ac:a7:a5:f4:e8:38:48:5d:ed:4e:be:8d:c7:bc: f0:8d:48:16:e5:95:38:d2:53:25:7f:45:51:fa:a6:24:41:24: 3c:36:52:11:d7:c3:6a:58:7e:fd:f5:bd:16:c4:f4:b0:e0:ea: c6:d9:c4:48:3e:42:91:56:80:bf:b7:aa:20:3d:cd:6e:6c:08: 3b:cf:08:d4:9c:4c:4d:e7:9e:07:22:3d:c8:e0:20:52:b8:30: 5c:71:78:b1 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgISAZt+OFS2wi1HevSI7l0JaBTsMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGQzNjAwY2JhZmQyNmZlZTUwNjRmYzg5ZjMwMWRmYzhlM2Mx ZDNjYTUwHhcNMjYwMTAyMTAxOTM5WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg5NTAxYWEzNTZiNDAxMWU1YjViZjQ2Njg2OGI0YmFjY2NkOWMwMGE4MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAiANA9i3MUv96AASR8HJrGyomymLr DiW+k2YCFABHGszIeXGAQxxkCcvKmjhVPKh5JkQls9bfl5lzztgyLvkRpvDPNiWr fT5TmcKQjkGZkmnTIoBFhxLhYFJJoyFay1EqCFsT5eecblrE/UROpuNugUhDxV61 TNBfglOPaSTuozloyNzXtpz8a53rtsihGejDxxpokQYfLTYnnMU/4sb1sldGR3j0 LvZHUtkhmeRiOtCX9cu8yzFNzbLl993Ll+YSMZN+oTQ4D6OyCo/n8MfugEy4xEfa s0pUf29zaNcc09XdMYSrkt5lTNGCRENQx4WaBfsklo+OVxIMA0Fm7y8cEwIDAQAB o4ICNjCCAjIwHQYDVR0OBBYEFJUBqjVrQBHltb9GaGi0uszNnACoMB8GA1UdIwQY MBaAFNNgDLr9Jv7lBk/InzAd/I48HTylMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvMDJBTXV2MG1fdVVHVDhpZk1CMzhqandkUEtVLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jMC9iNzA2NTgtZTFkYy00OTQ0LWEwNmIt MWM2ODBhZGY3YTI2LzEvbFFHcU5XdEFFZVcxdjBab2FMUzZ6TTJjQUtnLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9jMC9iNzA2NTgtZTFkYy00OTQ0LWEwNmItMWM2ODBhZGY3YTI2 LzEvMDJBTXV2MG1fdVVHVDhpZk1CMzhqandkUEtVLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMEwGCCsGAQUFBwEHAQH/BD0wOzAqBAIAATAkAwQDH7E4AwQA VmqtAwQAuQTsAwQCuSToAwQCuW0QAwQAvNZ/MA0EAgACMAcDBQMqBD4AMA0GCSqG SIb3DQEBCwUAA4IBAQA2L+52/t4/jeYB9Wm1MW03mK8LQhDSuLrklD/ciz89go3a hXcCcmKkTiSoZ4tlHrDt+Yc/DDxawImzmK+fq7bHiGjWkV32Rt46eYUmoio8dqb7 hVJ0Xe47hGNPR136f3Ve6D5QkhriwawFO7wcORn3ldqK2oubJplyGw8oBLL5IQOT iMR6na/cGDmTSampHc18jqw8L1wTh/TedOuDRY9U2KR5mvKorKel9Og4SF3tTr6N x7zwjUgW5ZU40lMlf0VR+qYkQSQ8NlIR18NqWH799b0WxPSw4OrG2cRIPkKRVoC/ t6ogPc1ubAg7zwjUnExN554HIj3I4CBSuDBccXix -----END CERTIFICATE-----Generated at Sun Jan 25 22:41:45 2026 by rpki-client