This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d6/1cc1fa-28dd-44d4-98a0-33e61bd912ea/1/Qqy0-T0gDvxo3rJUa6akV8GYo0o.roa File: Qqy0-T0gDvxo3rJUa6akV8GYo0o.roa (raw, json) Hash identifier: PE6/9z52FUfBIjZcWDEufdAntL9baKWuH5TFStusU9w= Subject key identifier: 42:AC:B4:F9:3D:20:0E:FC:68:DE:B2:54:6B:A6:A4:57:C1:98:A3:4A Certificate issuer: /CN=33b1b31396083ce9ed51e462898e294ed8215ae7 Certificate serial: 019B78A275378567D203D23B3EEAB2B54D76 Authority key identifier: 33:B1:B3:13:96:08:3C:E9:ED:51:E4:62:89:8E:29:4E:D8:21:5A:E7 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/M7GzE5YIPOntUeRiiY4pTtghWuc.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d6/1cc1fa-28dd-44d4-98a0-33e61bd912ea/1/Qqy0-T0gDvxo3rJUa6akV8GYo0o.roa Signing time: Thu 01 Jan 2026 08:17:51 +0000 ROA not before: Thu 01 Jan 2026 08:17:51 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 5392 IP address blocks: 195.36.0.0/18 maxlen: 18 2a00:1988::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d6/1cc1fa-28dd-44d4-98a0-33e61bd912ea/1/M7GzE5YIPOntUeRiiY4pTtghWuc.crl rsync://rpki.ripe.net/repository/DEFAULT/d6/1cc1fa-28dd-44d4-98a0-33e61bd912ea/1/M7GzE5YIPOntUeRiiY4pTtghWuc.mft rsync://rpki.ripe.net/repository/DEFAULT/M7GzE5YIPOntUeRiiY4pTtghWuc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 17:01:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:78:a2:75:37:85:67:d2:03:d2:3b:3e:ea:b2:b5:4d:76 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=33b1b31396083ce9ed51e462898e294ed8215ae7 Validity Not Before: Jan 1 08:17:51 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=42acb4f93d200efc68deb2546ba6a457c198a34a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f2:ef:e5:99:fd:0d:15:be:5d:c1:dc:53:80:2c: a4:ce:03:de:c7:ae:c5:a7:8e:c4:ec:18:04:88:7b: 74:78:a9:98:9a:c1:61:65:61:cf:48:99:45:26:9d: e0:3b:b7:14:10:c6:8c:26:80:24:87:5c:11:3f:34: 48:01:65:a2:65:49:23:64:77:20:46:be:a3:69:e2: 3b:ea:4f:cb:3f:1a:de:14:84:d8:58:d5:42:69:3a: 0b:af:74:1b:77:f5:e0:16:a3:0a:00:fb:56:ef:a5: 11:c1:61:29:00:6e:3a:0a:bc:17:10:98:37:fa:1c: 02:a3:2d:d0:ed:0a:8e:78:7d:54:57:0d:b7:14:14: 1b:22:63:30:1f:d3:75:f5:e7:df:3d:0a:e6:69:90: d2:c9:06:ef:21:b5:2a:d6:13:cb:b3:86:7f:2c:35: d7:f0:a9:7e:27:c4:d3:30:bd:01:28:1c:c1:5d:15: 20:28:a7:7d:3b:11:8f:25:25:4c:a2:62:37:b0:b6: d3:98:9f:55:07:5b:f0:d2:c2:92:22:5e:67:a3:44: 23:5f:b0:93:71:4a:ce:c8:88:1b:7c:ae:28:62:b0: 28:86:f9:37:11:8c:f3:74:84:19:86:6a:e9:ee:20: 27:e9:dc:28:e5:c5:c6:00:02:3b:6c:68:5c:2b:fd: 72:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 42:AC:B4:F9:3D:20:0E:FC:68:DE:B2:54:6B:A6:A4:57:C1:98:A3:4A X509v3 Authority Key Identifier: keyid:33:B1:B3:13:96:08:3C:E9:ED:51:E4:62:89:8E:29:4E:D8:21:5A:E7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/M7GzE5YIPOntUeRiiY4pTtghWuc.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d6/1cc1fa-28dd-44d4-98a0-33e61bd912ea/1/Qqy0-T0gDvxo3rJUa6akV8GYo0o.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/d6/1cc1fa-28dd-44d4-98a0-33e61bd912ea/1/M7GzE5YIPOntUeRiiY4pTtghWuc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 195.36.0.0/18 IPv6: 2a00:1988::/32 Signature Algorithm: sha256WithRSAEncryption 1b:89:ac:8c:60:8c:22:06:bd:13:91:e6:54:2f:f0:48:5c:5a: 64:a7:32:dd:e1:c7:0b:d0:c2:15:db:2a:67:92:c8:a0:ce:c1: 8b:22:ab:44:cd:0e:5e:21:df:cb:b3:e7:7f:96:3d:0e:db:bb: 72:c9:e5:91:82:24:ea:e1:6c:9e:1e:a4:a2:78:64:0c:3e:1f: f5:24:0f:eb:bc:52:03:97:44:c0:e8:0c:5d:f6:0f:dc:30:51: 5c:08:01:dc:44:ab:8d:2e:fa:34:5f:8f:46:d4:70:20:58:6e: f6:dc:4e:c1:0d:42:44:c6:03:59:7f:fa:ef:5e:b2:62:ca:69: f8:67:27:00:08:96:94:d9:86:2f:8c:b8:89:46:64:10:d6:c0: 9e:f8:28:71:6f:33:9b:c4:26:b0:44:dd:f5:fd:f6:93:6f:eb: 5c:a7:86:30:2c:63:9c:53:1d:56:cd:9d:12:7b:a1:67:21:eb: 6c:db:86:16:19:bc:8d:a7:92:fd:d6:31:b5:19:b7:3b:e6:26: a0:81:46:77:20:01:f7:0e:29:c8:36:f3:17:4c:7d:5e:c0:c0: 1f:b5:8f:c6:a7:8d:8b:c6:92:bb:74:04:0f:1c:ed:06:ae:12: 86:7b:e6:d8:5c:1c:60:83:bc:4e:0d:f0:85:97:17:39:a0:ca: a7:4a:fc:68 -----BEGIN CERTIFICATE----- MIIFDDCCA/SgAwIBAgISAZt4onU3hWfSA9I7PuqytU12MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDMzYjFiMzEzOTYwODNjZTllZDUxZTQ2Mjg5OGUyOTRlZDgy MTVhZTcwHhcNMjYwMTAxMDgxNzUxWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg0MmFjYjRmOTNkMjAwZWZjNjhkZWIyNTQ2YmE2YTQ1N2MxOThhMzRhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA8u/lmf0NFb5dwdxTgCykzgPex67F p47E7BgEiHt0eKmYmsFhZWHPSJlFJp3gO7cUEMaMJoAkh1wRPzRIAWWiZUkjZHcg Rr6jaeI76k/LPxreFITYWNVCaToLr3Qbd/XgFqMKAPtW76URwWEpAG46CrwXEJg3 +hwCoy3Q7QqOeH1UVw23FBQbImMwH9N19effPQrmaZDSyQbvIbUq1hPLs4Z/LDXX 8Kl+J8TTML0BKBzBXRUgKKd9OxGPJSVMomI3sLbTmJ9VB1vw0sKSIl5no0QjX7CT cUrOyIgbfK4oYrAohvk3EYzzdIQZhmrp7iAn6dwo5cXGAAI7bGhcK/1ynwIDAQAB o4ICGDCCAhQwHQYDVR0OBBYEFEKstPk9IA78aN6yVGumpFfBmKNKMB8GA1UdIwQY MBaAFDOxsxOWCDzp7VHkYomOKU7YIVrnMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvTTdHekU1WUlQT250VWVSaWlZNHBUdGdoV3VjLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kNi8xY2MxZmEtMjhkZC00NGQ0LTk4YTAt MzNlNjFiZDkxMmVhLzEvUXF5MC1UMGdEdnhvM3JKVWE2YWtWOEdZbzBvLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kNi8xY2MxZmEtMjhkZC00NGQ0LTk4YTAtMzNlNjFiZDkxMmVh LzEvTTdHekU1WUlQT250VWVSaWlZNHBUdGdoV3VjLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMC4GCCsGAQUFBwEHAQH/BB8wHTAMBAIAATAGAwQGwyQAMA0E AgACMAcDBQAqABmIMA0GCSqGSIb3DQEBCwUAA4IBAQAbiayMYIwiBr0TkeZUL/BI XFpkpzLd4ccL0MIV2ypnksigzsGLIqtEzQ5eId/Ls+d/lj0O27tyyeWRgiTq4Wye HqSieGQMPh/1JA/rvFIDl0TA6Axd9g/cMFFcCAHcRKuNLvo0X49G1HAgWG723E7B DUJExgNZf/rvXrJiymn4ZycACJaU2YYvjLiJRmQQ1sCe+ChxbzObxCawRN31/faT b+tcp4YwLGOcUx1WzZ0Se6FnIets24YWGbyNp5L91jG1Gbc75iaggUZ3IAH3DinI NvMXTH1ewMAftY/Gp42LxpK7dAQPHO0GrhKGe+bYXBxgg7xODfCFlxc5oMqnSvxo -----END CERTIFICATE-----Generated at Mon Jan 26 02:43:39 2026 by rpki-client