This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c3/38f128-ea82-4555-b514-143967a8fe08/1/qCLZVGCoGFsz27qlRQZRHUSBXPI.roa File: qCLZVGCoGFsz27qlRQZRHUSBXPI.roa (raw, json) Hash identifier: hWhR7V0dJRq4pRk1UP0XbBxM7AitwjQqMT36t05LSgE= Subject key identifier: A8:22:D9:54:60:A8:18:5B:33:DB:BA:A5:45:06:51:1D:44:81:5C:F2 Certificate issuer: /CN=1c963e3d22847d466c262c20878c2780d8840003 Certificate serial: 019B79EC7C23305C754D8D9822B970F871FA Authority key identifier: 1C:96:3E:3D:22:84:7D:46:6C:26:2C:20:87:8C:27:80:D8:84:00:03 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HJY-PSKEfUZsJiwgh4wngNiEAAM.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c3/38f128-ea82-4555-b514-143967a8fe08/1/qCLZVGCoGFsz27qlRQZRHUSBXPI.roa Signing time: Thu 01 Jan 2026 14:18:19 +0000 ROA not before: Thu 01 Jan 2026 14:18:19 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 214891 IP address blocks: 144.31.190.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c3/38f128-ea82-4555-b514-143967a8fe08/1/HJY-PSKEfUZsJiwgh4wngNiEAAM.crl rsync://rpki.ripe.net/repository/DEFAULT/c3/38f128-ea82-4555-b514-143967a8fe08/1/HJY-PSKEfUZsJiwgh4wngNiEAAM.mft rsync://rpki.ripe.net/repository/DEFAULT/HJY-PSKEfUZsJiwgh4wngNiEAAM.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 25 Jan 2026 22:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:79:ec:7c:23:30:5c:75:4d:8d:98:22:b9:70:f8:71:fa Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1c963e3d22847d466c262c20878c2780d8840003 Validity Not Before: Jan 1 14:18:19 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=a822d95460a8185b33dbbaa54506511d44815cf2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:69:5f:7b:cf:6d:be:c0:78:94:d8:f6:7b:ef: ba:6c:e1:64:db:de:cd:51:67:4d:78:9f:7d:75:bb: 39:bc:9c:b2:61:e4:49:4e:8a:44:7a:8a:30:cc:34: fa:87:27:a8:1c:4f:2d:bd:60:4c:92:91:e1:d1:89: 10:f6:09:d8:14:2b:73:13:86:94:9e:8b:8c:d3:ce: 12:f2:90:4b:6c:f1:a9:9e:49:74:39:35:ff:33:07: 74:80:b1:ac:9f:d4:97:ea:db:fe:77:f5:3d:d2:32: 3a:66:60:08:46:c8:b6:7d:2d:9d:cb:c5:84:c2:a0: e3:64:52:f2:20:80:a6:50:7c:16:c7:cb:25:dd:1d: 75:c3:58:f8:c7:f1:ef:a9:63:a3:16:3c:8d:c1:01: 77:bb:56:70:b5:2f:56:4e:3a:aa:bb:f0:01:36:92: 62:9c:4d:87:27:cb:5d:f6:8c:e3:c6:5a:77:bc:0c: 68:59:1a:e2:2a:4d:cc:a7:e7:2a:0d:41:09:8d:49: 89:1a:45:33:82:35:96:63:83:76:9b:db:ca:96:ac: 19:cb:d5:30:3d:bb:3f:96:4f:0c:dc:0b:ed:63:03: 1b:7c:62:f7:ab:e5:06:02:03:38:de:f3:78:2d:27: c7:8b:bb:84:27:f7:31:e5:6e:a8:a2:38:53:d4:48: 76:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A8:22:D9:54:60:A8:18:5B:33:DB:BA:A5:45:06:51:1D:44:81:5C:F2 X509v3 Authority Key Identifier: keyid:1C:96:3E:3D:22:84:7D:46:6C:26:2C:20:87:8C:27:80:D8:84:00:03 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HJY-PSKEfUZsJiwgh4wngNiEAAM.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c3/38f128-ea82-4555-b514-143967a8fe08/1/qCLZVGCoGFsz27qlRQZRHUSBXPI.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/c3/38f128-ea82-4555-b514-143967a8fe08/1/HJY-PSKEfUZsJiwgh4wngNiEAAM.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 144.31.190.0/24 Signature Algorithm: sha256WithRSAEncryption 4a:45:ca:bd:b6:62:5d:66:68:19:5d:85:2e:7e:de:22:7a:92: 4e:a2:13:0d:0d:bb:e6:56:3c:05:1f:e5:c4:c0:ce:a1:6a:5a: 86:3b:3c:6f:53:8b:3e:ce:4d:8e:73:bb:bb:97:16:de:78:b9: ac:57:d4:56:c8:29:0a:53:d5:bb:cd:8b:5c:85:88:d3:ed:fe: ad:71:12:ca:22:d2:f2:06:d3:09:97:fd:e0:a6:d0:b1:44:9e: e0:83:06:e8:e1:de:fa:0b:35:a9:0b:61:84:25:aa:c7:f7:b4: ba:6f:1f:b0:7c:e5:36:ab:b1:0d:fe:84:f7:6e:d7:d9:57:35: 07:84:ae:3c:f8:48:fc:ab:d7:22:bd:95:57:17:c2:af:3c:cd: 43:2a:51:18:5f:8d:29:5a:88:a8:88:d1:0a:88:8f:ec:6e:49: 90:17:dd:a2:25:23:02:bb:dd:e7:b3:8b:94:a0:88:cb:85:68: 3b:40:60:f0:54:07:18:64:f5:cd:f1:82:f5:8d:d5:35:d2:d9: 0e:14:18:db:5d:a8:62:3f:f2:9b:7b:c6:bd:6b:d9:9c:99:05: 6d:d6:29:d2:d7:6e:61:93:4a:8f:84:90:d3:56:4d:74:fd:42: 84:7b:64:8b:38:66:cd:bb:87:74:d5:e9:86:43:58:a7:f3:64: b3:d8:2b:5e -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt57HwjMFx1TY2YIrlw+HH6MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDFjOTYzZTNkMjI4NDdkNDY2YzI2MmMyMDg3OGMyNzgwZDg4 NDAwMDMwHhcNMjYwMTAxMTQxODE5WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhhODIyZDk1NDYwYTgxODViMzNkYmJhYTU0NTA2NTExZDQ0ODE1Y2YyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxGlfe89tvsB4lNj2e++6bOFk297N UWdNeJ99dbs5vJyyYeRJTopEeoowzDT6hyeoHE8tvWBMkpHh0YkQ9gnYFCtzE4aU nouM084S8pBLbPGpnkl0OTX/Mwd0gLGsn9SX6tv+d/U90jI6ZmAIRsi2fS2dy8WE wqDjZFLyIICmUHwWx8sl3R11w1j4x/HvqWOjFjyNwQF3u1ZwtS9WTjqqu/ABNpJi nE2HJ8td9ozjxlp3vAxoWRriKk3Mp+cqDUEJjUmJGkUzgjWWY4N2m9vKlqwZy9Uw Pbs/lk8M3AvtYwMbfGL3q+UGAgM43vN4LSfHi7uEJ/cx5W6oojhT1Eh2fQIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFKgi2VRgqBhbM9u6pUUGUR1EgVzyMB8GA1UdIwQY MBaAFByWPj0ihH1GbCYsIIeMJ4DYhAADMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSEpZLVBTS0VmVVpzSml3Z2g0d25nTmlFQUFNLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jMy8zOGYxMjgtZWE4Mi00NTU1LWI1MTQt MTQzOTY3YThmZTA4LzEvcUNMWlZHQ29HRnN6MjdxbFJRWlJIVVNCWFBJLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9jMy8zOGYxMjgtZWE4Mi00NTU1LWI1MTQtMTQzOTY3YThmZTA4 LzEvSEpZLVBTS0VmVVpzSml3Z2g0d25nTmlFQUFNLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAkB++MA0G CSqGSIb3DQEBCwUAA4IBAQBKRcq9tmJdZmgZXYUuft4iepJOohMNDbvmVjwFH+XE wM6halqGOzxvU4s+zk2Oc7u7lxbeeLmsV9RWyCkKU9W7zYtchYjT7f6tcRLKItLy BtMJl/3gptCxRJ7ggwbo4d76CzWpC2GEJarH97S6bx+wfOU2q7EN/oT3btfZVzUH hK48+Ej8q9civZVXF8KvPM1DKlEYX40pWoioiNEKiI/sbkmQF92iJSMCu93ns4uU oIjLhWg7QGDwVAcYZPXN8YL1jdU10tkOFBjbXahiP/Kbe8a9a9mcmQVt1inS125h k0qPhJDTVk10/UKEe2SLOGbNu4d01emGQ1in82Sz2Cte -----END CERTIFICATE-----Generated at Sun Jan 25 07:25:47 2026 by rpki-client