This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cd/b8058e-4eba-4cc4-8c1d-9c84f2fdd8f0/1/Qtm2y6O9fQOxDLh4r9HUduXRJPk.roa File: Qtm2y6O9fQOxDLh4r9HUduXRJPk.roa (raw, json) Hash identifier: EeZqlsTqzdCbFC/CM71VpRuG30gKSOjHa90sXicLvG4= Subject key identifier: 42:D9:B6:CB:A3:BD:7D:03:B1:0C:B8:78:AF:D1:D4:76:E5:D1:24:F9 Certificate issuer: /CN=44c0f2a2a56007e4c45ccc71e7da092861305b20 Certificate serial: 019B79EBBE91A6D2536AFA60DB278E6EC049 Authority key identifier: 44:C0:F2:A2:A5:60:07:E4:C4:5C:CC:71:E7:DA:09:28:61:30:5B:20 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/RMDyoqVgB-TEXMxx59oJKGEwWyA.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cd/b8058e-4eba-4cc4-8c1d-9c84f2fdd8f0/1/Qtm2y6O9fQOxDLh4r9HUduXRJPk.roa Signing time: Thu 01 Jan 2026 14:17:31 +0000 ROA not before: Thu 01 Jan 2026 14:17:31 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 42525 IP address blocks: 185.19.232.0/22 maxlen: 22 213.146.64.0/19 maxlen: 19 2a00:4960::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/cd/b8058e-4eba-4cc4-8c1d-9c84f2fdd8f0/1/RMDyoqVgB-TEXMxx59oJKGEwWyA.crl rsync://rpki.ripe.net/repository/DEFAULT/cd/b8058e-4eba-4cc4-8c1d-9c84f2fdd8f0/1/RMDyoqVgB-TEXMxx59oJKGEwWyA.mft rsync://rpki.ripe.net/repository/DEFAULT/RMDyoqVgB-TEXMxx59oJKGEwWyA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 22:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:79:eb:be:91:a6:d2:53:6a:fa:60:db:27:8e:6e:c0:49 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=44c0f2a2a56007e4c45ccc71e7da092861305b20 Validity Not Before: Jan 1 14:17:31 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=42d9b6cba3bd7d03b10cb878afd1d476e5d124f9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:db:d7:2f:40:05:ea:ef:c4:02:36:83:0e:f5: 40:eb:5a:e9:7c:26:cd:1d:fd:cb:9c:8e:4b:b1:43: 38:82:8e:29:c0:95:68:77:09:b9:4c:ae:2f:83:82: bc:eb:29:ce:9f:2f:cf:92:49:26:2c:14:6b:5e:9b: df:6d:08:5d:92:a9:fa:97:60:7f:26:92:fa:d6:a0: 07:51:65:b1:82:e0:bb:3f:63:34:a1:e3:12:23:99: 7e:a6:bf:7b:69:50:15:47:b5:ec:3e:8e:0d:4f:b6: fe:5b:63:0b:a9:fa:7e:79:5f:11:36:b7:8e:d2:bd: ed:dd:70:42:a3:52:9a:47:c3:8f:b9:cf:8d:85:37: c7:0b:8e:ed:77:8e:8b:12:cf:3a:6c:2d:d4:d7:ed: 94:89:53:7c:dd:1e:a9:b4:86:be:f3:23:47:f4:39: c6:80:a5:75:02:bf:d2:56:89:69:65:e5:be:75:9b: 19:82:ac:b8:02:f1:49:fd:a9:84:fa:06:d3:15:8f: 72:de:31:59:0c:ab:b5:a2:c3:58:25:50:2b:0c:4e: 97:71:ef:8c:e6:f2:5a:ab:11:88:c7:0a:e3:c8:62: f6:23:52:52:49:21:3f:36:1b:54:63:cb:fe:04:30: b7:35:e6:aa:e6:b8:e7:89:3c:70:48:38:63:89:4b: db:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 42:D9:B6:CB:A3:BD:7D:03:B1:0C:B8:78:AF:D1:D4:76:E5:D1:24:F9 X509v3 Authority Key Identifier: keyid:44:C0:F2:A2:A5:60:07:E4:C4:5C:CC:71:E7:DA:09:28:61:30:5B:20 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/RMDyoqVgB-TEXMxx59oJKGEwWyA.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/b8058e-4eba-4cc4-8c1d-9c84f2fdd8f0/1/Qtm2y6O9fQOxDLh4r9HUduXRJPk.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/b8058e-4eba-4cc4-8c1d-9c84f2fdd8f0/1/RMDyoqVgB-TEXMxx59oJKGEwWyA.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.19.232.0/22 213.146.64.0/19 IPv6: 2a00:4960::/32 Signature Algorithm: sha256WithRSAEncryption 5d:28:d1:a3:4f:c8:cc:4d:2c:f0:21:76:27:fb:2d:ce:13:29: dd:ef:89:2f:da:ac:79:fd:7c:e2:fa:46:9b:aa:90:e7:15:fd: 7d:dc:f3:b8:d2:9b:16:ad:22:e5:ad:7b:24:6f:cc:5c:7e:49: 50:26:ef:b8:ac:b2:24:ee:2e:8a:2a:ab:b8:72:98:46:43:b6: 15:71:61:83:1f:51:6f:f1:0d:3f:39:66:fc:51:96:0d:ae:b0: 5e:47:29:d6:a3:d5:ae:23:8d:2e:5f:9d:79:21:1f:cb:33:b2: d2:71:51:1a:2b:89:d2:20:45:9f:88:af:53:20:26:8d:cd:5c: d7:15:6a:3b:0c:8f:0b:80:d9:36:de:0b:e8:38:4c:2b:25:5c: 73:b6:e4:0f:36:21:1a:d9:a5:ce:4f:7c:90:23:83:19:02:a3: c0:ba:83:a1:8b:34:0f:5c:f9:17:ff:65:b9:b1:ae:47:4a:7f: 79:86:b9:4b:37:55:d8:3d:e8:03:ae:a1:13:2f:9f:8d:33:b3: a5:1a:da:30:d4:c0:a9:81:56:b7:5a:d3:ef:9f:f7:bb:7b:c3: cb:83:96:b3:43:8f:be:d5:04:cf:17:f0:c4:d6:c3:55:aa:42: 7f:52:23:84:f6:a1:1a:da:fa:63:df:2f:e1:82:19:31:26:f2: 8d:9a:01:7d -----BEGIN CERTIFICATE----- MIIFEjCCA/qgAwIBAgISAZt5676RptJTavpg2yeObsBJMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDQ0YzBmMmEyYTU2MDA3ZTRjNDVjY2M3MWU3ZGEwOTI4NjEz MDViMjAwHhcNMjYwMTAxMTQxNzMxWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg0MmQ5YjZjYmEzYmQ3ZDAzYjEwY2I4NzhhZmQxZDQ3NmU1ZDEyNGY5MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuNvXL0AF6u/EAjaDDvVA61rpfCbN Hf3LnI5LsUM4go4pwJVodwm5TK4vg4K86ynOny/PkkkmLBRrXpvfbQhdkqn6l2B/ JpL61qAHUWWxguC7P2M0oeMSI5l+pr97aVAVR7XsPo4NT7b+W2MLqfp+eV8RNreO 0r3t3XBCo1KaR8OPuc+NhTfHC47td46LEs86bC3U1+2UiVN83R6ptIa+8yNH9DnG gKV1Ar/SVolpZeW+dZsZgqy4AvFJ/amE+gbTFY9y3jFZDKu1osNYJVArDE6Xce+M 5vJaqxGIxwrjyGL2I1JSSSE/NhtUY8v+BDC3Neaq5rjniTxwSDhjiUvb8wIDAQAB o4ICHjCCAhowHQYDVR0OBBYEFELZtsujvX0DsQy4eK/R1Hbl0ST5MB8GA1UdIwQY MBaAFETA8qKlYAfkxFzMcefaCShhMFsgMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvUk1EeW9xVmdCLVRFWE14eDU5b0pLR0V3V3lBLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jZC9iODA1OGUtNGViYS00Y2M0LThjMWQt OWM4NGYyZmRkOGYwLzEvUXRtMnk2TzlmUU94RExoNHI5SFVkdVhSSlBrLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9jZC9iODA1OGUtNGViYS00Y2M0LThjMWQtOWM4NGYyZmRkOGYw LzEvUk1EeW9xVmdCLVRFWE14eDU5b0pLR0V3V3lBLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMDQGCCsGAQUFBwEHAQH/BCUwIzASBAIAATAMAwQCuRPoAwQF 1ZJAMA0EAgACMAcDBQAqAElgMA0GCSqGSIb3DQEBCwUAA4IBAQBdKNGjT8jMTSzw IXYn+y3OEynd74kv2qx5/Xzi+kabqpDnFf193PO40psWrSLlrXskb8xcfklQJu+4 rLIk7i6KKqu4cphGQ7YVcWGDH1Fv8Q0/OWb8UZYNrrBeRynWo9WuI40uX515IR/L M7LScVEaK4nSIEWfiK9TICaNzVzXFWo7DI8LgNk23gvoOEwrJVxztuQPNiEa2aXO T3yQI4MZAqPAuoOhizQPXPkX/2W5sa5HSn95hrlLN1XYPegDrqETL5+NM7OlGtow 1MCpgVa3WtPvn/e7e8PLg5azQ4++1QTPF/DE1sNVqkJ/UiOE9qEa2vpj3y/hghkx JvKNmgF9 -----END CERTIFICATE-----Generated at Mon Jan 26 04:55:05 2026 by rpki-client