This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/db/d09e34-cc11-4394-904d-840ccb34b3f5/1/QHyWqsk-H_U_C8FgB92VgJrEDYc.roa File: QHyWqsk-H_U_C8FgB92VgJrEDYc.roa (raw, json) Hash identifier: 2PrV5bBw8H3ip6Yld1QjjzmInJzdg74Uy0jZkkwlPFU= Subject key identifier: 40:7C:96:AA:C9:3E:1F:F5:3F:0B:C1:60:07:DD:95:80:9A:C4:0D:87 Certificate issuer: /CN=fe8199e8345567d8516b788fe2e1d397e27c73a4 Certificate serial: 019B7E37D1D12FAA9FC9102F062187D22423 Authority key identifier: FE:81:99:E8:34:55:67:D8:51:6B:78:8F:E2:E1:D3:97:E2:7C:73:A4 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_oGZ6DRVZ9hRa3iP4uHTl-J8c6Q.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/db/d09e34-cc11-4394-904d-840ccb34b3f5/1/QHyWqsk-H_U_C8FgB92VgJrEDYc.roa Signing time: Fri 02 Jan 2026 10:19:06 +0000 ROA not before: Fri 02 Jan 2026 10:19:06 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 51430 IP address blocks: 176.67.83.0/24 maxlen: 24 2a05:e9c0:2200::/40 maxlen: 40 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/db/d09e34-cc11-4394-904d-840ccb34b3f5/1/_oGZ6DRVZ9hRa3iP4uHTl-J8c6Q.crl rsync://rpki.ripe.net/repository/DEFAULT/db/d09e34-cc11-4394-904d-840ccb34b3f5/1/_oGZ6DRVZ9hRa3iP4uHTl-J8c6Q.mft rsync://rpki.ripe.net/repository/DEFAULT/_oGZ6DRVZ9hRa3iP4uHTl-J8c6Q.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 07:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7e:37:d1:d1:2f:aa:9f:c9:10:2f:06:21:87:d2:24:23 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=fe8199e8345567d8516b788fe2e1d397e27c73a4 Validity Not Before: Jan 2 10:19:06 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=407c96aac93e1ff53f0bc16007dd95809ac40d87 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:dd:ec:3c:e1:34:33:11:93:4e:7b:d2:a6:9c: 5d:9f:9e:10:e2:f3:3c:49:5c:fe:71:0f:b1:cc:88: c5:a4:93:3b:d0:3a:84:21:96:81:65:82:0b:af:ef: fd:36:3b:f4:d3:df:2d:8f:34:5a:c1:7a:e9:45:a3: 08:19:76:37:ed:b1:71:94:9a:d7:2d:a2:77:f0:48: cc:06:f1:7f:eb:30:85:bb:be:a9:4f:19:a3:5a:f3: 8e:4c:79:6a:df:a6:ed:3e:7d:02:0c:14:46:72:d9: 86:41:1a:01:88:ce:21:dc:c5:a4:37:38:1e:5f:86: 5e:be:86:22:a1:19:d1:ff:cd:6f:3b:e6:17:b2:b9: 9d:ce:41:b4:4e:05:a9:bb:63:73:3f:de:47:6d:49: 0c:f8:c5:e5:a3:cc:92:ed:c2:9f:e6:24:fb:4c:2a: 7d:bd:9b:87:f9:61:39:06:f8:76:3b:97:8f:e5:d1: 15:ea:3a:8c:d7:27:53:83:55:65:a5:fe:32:95:4a: bc:47:4c:9a:05:8b:91:54:80:b5:08:1a:f2:5d:12: d8:1b:21:c7:79:56:30:84:1f:38:6d:37:c9:4c:5d: 20:16:23:be:c6:7d:74:85:a2:e8:84:81:1f:90:88: 12:87:2d:d7:d2:6c:cc:78:36:2b:0f:1b:2f:49:29: a8:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 40:7C:96:AA:C9:3E:1F:F5:3F:0B:C1:60:07:DD:95:80:9A:C4:0D:87 X509v3 Authority Key Identifier: keyid:FE:81:99:E8:34:55:67:D8:51:6B:78:8F:E2:E1:D3:97:E2:7C:73:A4 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_oGZ6DRVZ9hRa3iP4uHTl-J8c6Q.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/db/d09e34-cc11-4394-904d-840ccb34b3f5/1/QHyWqsk-H_U_C8FgB92VgJrEDYc.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/db/d09e34-cc11-4394-904d-840ccb34b3f5/1/_oGZ6DRVZ9hRa3iP4uHTl-J8c6Q.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 176.67.83.0/24 IPv6: 2a05:e9c0:2200::/40 Signature Algorithm: sha256WithRSAEncryption a5:0d:83:ab:48:a9:c3:2c:9c:c1:9f:c7:3d:92:e9:0d:44:58: fc:3d:46:b3:3d:04:80:85:12:6e:b1:50:6e:3a:6a:4d:ff:f1: 99:de:87:64:65:0b:94:09:93:a2:61:38:90:55:ac:a6:91:b1: df:e2:02:8b:0b:de:97:1f:84:82:73:78:a4:db:3d:e7:30:72: a4:c5:2b:4b:02:1e:dd:fd:ca:ba:82:c2:31:f5:3c:b8:8b:3c: 5e:6f:03:dd:80:82:d3:b2:dd:9c:e6:16:f3:1a:3f:3f:a6:8e: cf:d1:d4:dc:81:e5:95:23:5f:c6:7f:2a:47:af:a3:b3:54:80: 3b:5a:f4:09:60:f8:77:35:99:b5:47:76:46:7f:f9:18:f2:69: 2a:2b:ae:8c:f8:f4:04:c9:44:a2:2e:4a:57:e0:82:c7:65:f4: d6:2e:d4:16:fb:6f:85:62:b7:d3:6e:01:91:9d:10:a8:23:46: f3:de:5f:c0:74:88:3a:48:45:4b:b3:6f:38:56:c5:05:12:a0: 74:1c:c2:e9:f0:f2:fb:69:ea:eb:9b:eb:7b:0a:b9:c2:a2:04: bc:27:2e:f6:8b:03:88:02:56:8f:27:e2:8d:1a:6a:d6:1f:1b: 3e:c1:f2:f7:4e:41:50:22:c9:63:83:97:bb:58:e3:07:97:47: 79:6d:e6:e0 -----BEGIN CERTIFICATE----- MIIFDTCCA/WgAwIBAgISAZt+N9HRL6qfyRAvBiGH0iQjMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGZlODE5OWU4MzQ1NTY3ZDg1MTZiNzg4ZmUyZTFkMzk3ZTI3 YzczYTQwHhcNMjYwMTAyMTAxOTA2WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg0MDdjOTZhYWM5M2UxZmY1M2YwYmMxNjAwN2RkOTU4MDlhYzQwZDg3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAw93sPOE0MxGTTnvSppxdn54Q4vM8 SVz+cQ+xzIjFpJM70DqEIZaBZYILr+/9Njv0098tjzRawXrpRaMIGXY37bFxlJrX LaJ38EjMBvF/6zCFu76pTxmjWvOOTHlq36btPn0CDBRGctmGQRoBiM4h3MWkNzge X4ZevoYioRnR/81vO+YXsrmdzkG0TgWpu2NzP95HbUkM+MXlo8yS7cKf5iT7TCp9 vZuH+WE5Bvh2O5eP5dEV6jqM1ydTg1Vlpf4ylUq8R0yaBYuRVIC1CBryXRLYGyHH eVYwhB84bTfJTF0gFiO+xn10haLohIEfkIgShy3X0mzMeDYrDxsvSSmo9QIDAQAB o4ICGTCCAhUwHQYDVR0OBBYEFEB8lqrJPh/1PwvBYAfdlYCaxA2HMB8GA1UdIwQY MBaAFP6Bmeg0VWfYUWt4j+Lh05fifHOkMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvX29HWjZEUlZaOWhSYTNpUDR1SFRsLUo4YzZRLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kYi9kMDllMzQtY2MxMS00Mzk0LTkwNGQt ODQwY2NiMzRiM2Y1LzEvUUh5V3Fzay1IX1VfQzhGZ0I5MlZnSnJFRFljLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kYi9kMDllMzQtY2MxMS00Mzk0LTkwNGQtODQwY2NiMzRiM2Y1 LzEvX29HWjZEUlZaOWhSYTNpUDR1SFRsLUo4YzZRLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMC8GCCsGAQUFBwEHAQH/BCAwHjAMBAIAATAGAwQAsENTMA4E AgACMAgDBgAqBenAIjANBgkqhkiG9w0BAQsFAAOCAQEApQ2Dq0ipwyycwZ/HPZLp DURY/D1Gsz0EgIUSbrFQbjpqTf/xmd6HZGULlAmTomE4kFWsppGx3+ICiwvelx+E gnN4pNs95zBypMUrSwIe3f3KuoLCMfU8uIs8Xm8D3YCC07LdnOYW8xo/P6aOz9HU 3IHllSNfxn8qR6+js1SAO1r0CWD4dzWZtUd2Rn/5GPJpKiuujPj0BMlEoi5KV+CC x2X01i7UFvtvhWK3024BkZ0QqCNG895fwHSIOkhFS7NvOFbFBRKgdBzC6fDy+2nq 65vrewq5wqIEvCcu9osDiAJWjyfijRpq1h8bPsHy905BUCLJY4OXu1jjB5dHeW3m 4A== -----END CERTIFICATE-----Generated at Sun Jan 25 16:55:22 2026 by rpki-client