This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c5/e251dc-8b2b-4f3d-b636-15422478800b/1/qHg9kZfw0I5hv9CIdWsG-YI_apk.roa File: qHg9kZfw0I5hv9CIdWsG-YI_apk.roa (raw, json) Hash identifier: y8UWvc5weC6/HbAA/bSDkFOftzrALK8JDpu2I4wTSTE= Subject key identifier: A8:78:3D:91:97:F0:D0:8E:61:BF:D0:88:75:6B:06:F9:82:3F:6A:99 Certificate issuer: /CN=204a096504cdbb9f2fb7fd0e66406d526fe10b5a Certificate serial: 019B7FF21315AE639B8E5D78C48636C7E47D Authority key identifier: 20:4A:09:65:04:CD:BB:9F:2F:B7:FD:0E:66:40:6D:52:6F:E1:0B:5A Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IEoJZQTNu58vt_0OZkBtUm_hC1o.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c5/e251dc-8b2b-4f3d-b636-15422478800b/1/qHg9kZfw0I5hv9CIdWsG-YI_apk.roa Signing time: Fri 02 Jan 2026 18:22:09 +0000 ROA not before: Fri 02 Jan 2026 18:22:09 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 47297 IP address blocks: 31.25.45.0/24 maxlen: 24 31.25.46.0/23 maxlen: 24 37.60.168.0/21 maxlen: 24 37.228.176.0/20 maxlen: 24 93.184.176.0/20 maxlen: 24 185.6.96.0/22 maxlen: 24 193.238.104.0/22 maxlen: 24 2a03:b880::/29 maxlen: 29 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c5/e251dc-8b2b-4f3d-b636-15422478800b/1/IEoJZQTNu58vt_0OZkBtUm_hC1o.crl rsync://rpki.ripe.net/repository/DEFAULT/c5/e251dc-8b2b-4f3d-b636-15422478800b/1/IEoJZQTNu58vt_0OZkBtUm_hC1o.mft rsync://rpki.ripe.net/repository/DEFAULT/IEoJZQTNu58vt_0OZkBtUm_hC1o.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 27 Jan 2026 00:01:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7f:f2:13:15:ae:63:9b:8e:5d:78:c4:86:36:c7:e4:7d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=204a096504cdbb9f2fb7fd0e66406d526fe10b5a Validity Not Before: Jan 2 18:22:09 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=a8783d9197f0d08e61bfd088756b06f9823f6a99 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:e2:be:1c:e2:c7:4a:02:5a:75:46:56:10:b7: ee:86:b3:91:a7:e5:92:0a:9c:2a:5f:4a:9e:45:90: c5:a6:e9:a9:1d:f6:1b:ec:6e:8e:83:c7:69:19:92: 75:0a:00:71:fe:0f:0f:3c:a2:43:57:04:b4:0f:95: ac:28:cd:6b:49:d6:fc:c5:e4:0d:97:27:35:2b:44: dd:73:05:9c:47:79:4c:b5:ba:c6:10:9e:99:76:9f: 4b:43:ba:01:7f:81:7d:04:2f:47:d5:05:40:d7:b2: 00:bc:51:90:ee:d4:68:6b:e1:61:3e:72:38:c2:37: 6d:0b:90:03:b7:d1:93:38:60:f4:00:c6:97:03:5a: 9b:4b:10:2c:a2:7c:1b:df:ea:ae:db:85:99:15:83: 85:89:30:4c:7f:b9:14:21:8d:ae:32:ee:7e:24:87: ac:a9:a6:b3:27:c6:fd:8e:01:3c:05:6b:74:79:6d: 6c:3a:a9:4d:fc:98:8f:9f:53:0d:30:d8:45:3b:ad: 88:fa:57:74:a1:e1:02:af:10:6c:95:0f:e7:b1:0c: c1:c7:aa:b0:a8:16:f4:d4:47:6d:db:38:5b:ad:85: 93:b0:ea:eb:ab:9d:b9:93:3c:06:bb:70:11:d5:eb: bf:36:29:1c:72:25:88:15:db:33:08:cc:15:9f:53: 22:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A8:78:3D:91:97:F0:D0:8E:61:BF:D0:88:75:6B:06:F9:82:3F:6A:99 X509v3 Authority Key Identifier: keyid:20:4A:09:65:04:CD:BB:9F:2F:B7:FD:0E:66:40:6D:52:6F:E1:0B:5A X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IEoJZQTNu58vt_0OZkBtUm_hC1o.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/e251dc-8b2b-4f3d-b636-15422478800b/1/qHg9kZfw0I5hv9CIdWsG-YI_apk.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/e251dc-8b2b-4f3d-b636-15422478800b/1/IEoJZQTNu58vt_0OZkBtUm_hC1o.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 31.25.45.0-31.25.47.255 37.60.168.0/21 37.228.176.0/20 93.184.176.0/20 185.6.96.0/22 193.238.104.0/22 IPv6: 2a03:b880::/29 Signature Algorithm: sha256WithRSAEncryption 1e:f8:50:ea:35:aa:7d:4e:0b:c9:bd:21:0c:b9:dd:a3:cb:9d: 3f:f3:c1:63:01:c8:c1:68:40:d0:be:d0:1a:8e:55:14:07:ea: 4a:e6:ab:ac:3b:36:98:d3:aa:3e:92:af:17:ed:c4:e9:04:2c: cb:d1:44:30:bc:dc:e4:12:09:b5:c7:aa:85:a0:95:db:77:39: 84:66:ea:9d:04:2e:f6:a8:c4:bd:24:b8:93:e4:b1:46:2b:54: 7d:de:89:be:f8:1f:2c:fd:45:e5:91:15:a3:28:48:51:ca:63: 33:5e:97:8f:09:10:e9:b1:b7:84:27:23:ab:a9:1d:b4:90:25: 34:3b:9a:ba:c3:b2:20:f2:e8:c0:3e:e0:aa:34:eb:5d:22:88: 56:d1:d3:6b:98:ac:91:55:98:31:92:35:0b:fd:10:78:7d:46: 2f:6e:f4:1e:41:e8:84:1c:0f:ed:90:6e:fa:ce:32:43:12:49: 7c:58:35:33:f6:ba:fd:c1:d7:65:d5:7f:16:9c:e3:87:db:8b: 25:ce:24:b9:4d:65:1b:31:cf:b8:0a:33:34:94:15:d2:b0:16: d4:23:d0:14:02:58:87:c8:0b:3a:e2:07:f5:38:b3:ee:f2:4c: 1b:84:02:b4:ad:ae:97:3f:7b:c2:ec:0f:31:2d:86:ba:1a:72: ea:92:96:4d -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgISAZt/8hMVrmObjl14xIY2x+R9MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDIwNGEwOTY1MDRjZGJiOWYyZmI3ZmQwZTY2NDA2ZDUyNmZl MTBiNWEwHhcNMjYwMTAyMTgyMjA5WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhhODc4M2Q5MTk3ZjBkMDhlNjFiZmQwODg3NTZiMDZmOTgyM2Y2YTk5MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArOK+HOLHSgJadUZWELfuhrORp+WS CpwqX0qeRZDFpumpHfYb7G6Og8dpGZJ1CgBx/g8PPKJDVwS0D5WsKM1rSdb8xeQN lyc1K0TdcwWcR3lMtbrGEJ6Zdp9LQ7oBf4F9BC9H1QVA17IAvFGQ7tRoa+FhPnI4 wjdtC5ADt9GTOGD0AMaXA1qbSxAsonwb3+qu24WZFYOFiTBMf7kUIY2uMu5+JIes qaazJ8b9jgE8BWt0eW1sOqlN/JiPn1MNMNhFO62I+ld0oeECrxBslQ/nsQzBx6qw qBb01Edt2zhbrYWTsOrrq525kzwGu3AR1eu/NikcciWIFdszCMwVn1MitwIDAQAB o4ICPjCCAjowHQYDVR0OBBYEFKh4PZGX8NCOYb/QiHVrBvmCP2qZMB8GA1UdIwQY MBaAFCBKCWUEzbufL7f9DmZAbVJv4QtaMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSUVvSlpRVE51NTh2dF8wT1prQnRVbV9oQzFvLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jNS9lMjUxZGMtOGIyYi00ZjNkLWI2MzYt MTU0MjI0Nzg4MDBiLzEvcUhnOWtaZncwSTVodjlDSWRXc0ctWUlfYXBrLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9jNS9lMjUxZGMtOGIyYi00ZjNkLWI2MzYtMTU0MjI0Nzg4MDBi LzEvSUVvSlpRVE51NTh2dF8wT1prQnRVbV9oQzFvLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMFQGCCsGAQUFBwEHAQH/BEUwQzAyBAIAATAsMAwDBAAfGS0D BAQfGSADBAMlPKgDBAQl5LADBARduLADBAK5BmADBALB7mgwDQQCAAIwBwMFAyoD uIAwDQYJKoZIhvcNAQELBQADggEBAB74UOo1qn1OC8m9IQy53aPLnT/zwWMByMFo QNC+0BqOVRQH6krmq6w7NpjTqj6SrxftxOkELMvRRDC83OQSCbXHqoWgldt3OYRm 6p0ELvaoxL0kuJPksUYrVH3eib74Hyz9ReWRFaMoSFHKYzNel48JEOmxt4QnI6up HbSQJTQ7mrrDsiDy6MA+4Ko0610iiFbR02uYrJFVmDGSNQv9EHh9Ri9u9B5B6IQc D+2QbvrOMkMSSXxYNTP2uv3B12XVfxac44fbiyXOJLlNZRsxz7gKMzSUFdKwFtQj 0BQCWIfICzriB/U4s+7yTBuEArStrpc/e8LsDzEthroacuqSlk0= -----END CERTIFICATE-----Generated at Mon Jan 26 11:06:04 2026 by rpki-client