This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dd/df1cb5-5f48-46a0-a76e-d3e2800bd640/1/qWLYkYyPF3Q56bkxOqfcbBNYfdI.roa File: qWLYkYyPF3Q56bkxOqfcbBNYfdI.roa (raw, json) Hash identifier: 87biHJSEFjMxu1mKJBdci0r1wjQAEsssYclG1CKrmJg= Subject key identifier: A9:62:D8:91:8C:8F:17:74:39:E9:B9:31:3A:A7:DC:6C:13:58:7D:D2 Certificate issuer: /CN=e9b1320fbc24d6f4366cb64fcf5ed2d7b1b6bdf7 Certificate serial: 019B7F8317B9FD1C5C8B023A9C0EADAE5BB4 Authority key identifier: E9:B1:32:0F:BC:24:D6:F4:36:6C:B6:4F:CF:5E:D2:D7:B1:B6:BD:F7 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6bEyD7wk1vQ2bLZPz17S17G2vfc.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/dd/df1cb5-5f48-46a0-a76e-d3e2800bd640/1/qWLYkYyPF3Q56bkxOqfcbBNYfdI.roa Signing time: Fri 02 Jan 2026 16:20:56 +0000 ROA not before: Fri 02 Jan 2026 16:20:56 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 41937 IP address blocks: 5.134.104.0/21 maxlen: 21 91.185.96.0/19 maxlen: 19 91.204.52.0/22 maxlen: 22 178.237.216.0/22 maxlen: 22 178.237.216.0/23 maxlen: 23 178.237.216.0/24 maxlen: 24 178.237.217.0/24 maxlen: 24 178.237.218.0/23 maxlen: 23 178.237.218.0/24 maxlen: 24 178.237.219.0/24 maxlen: 24 178.237.220.0/22 maxlen: 22 178.237.220.0/23 maxlen: 23 178.237.220.0/24 maxlen: 24 178.237.221.0/24 maxlen: 24 178.237.222.0/23 maxlen: 23 178.237.222.0/24 maxlen: 24 178.237.223.0/24 maxlen: 24 2a00:cf00::/32 maxlen: 48 2a06:63c0::/29 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/dd/df1cb5-5f48-46a0-a76e-d3e2800bd640/1/6bEyD7wk1vQ2bLZPz17S17G2vfc.crl rsync://rpki.ripe.net/repository/DEFAULT/dd/df1cb5-5f48-46a0-a76e-d3e2800bd640/1/6bEyD7wk1vQ2bLZPz17S17G2vfc.mft rsync://rpki.ripe.net/repository/DEFAULT/6bEyD7wk1vQ2bLZPz17S17G2vfc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 13:00:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7f:83:17:b9:fd:1c:5c:8b:02:3a:9c:0e:ad:ae:5b:b4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=e9b1320fbc24d6f4366cb64fcf5ed2d7b1b6bdf7 Validity Not Before: Jan 2 16:20:56 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=a962d8918c8f177439e9b9313aa7dc6c13587dd2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:69:1a:17:7e:82:94:68:d5:be:07:1a:e9:2b: a8:f4:b3:36:9a:f7:86:e5:67:6e:4f:4d:1e:35:da: 1f:d7:81:6f:27:4a:11:9b:9c:a4:6a:72:f8:91:06: fe:ee:f4:7a:a1:e6:35:ec:56:cd:d4:b6:09:ea:b8: 37:f8:aa:a2:0d:f4:25:32:1a:e0:23:25:86:82:7b: fd:54:3b:84:6e:ee:ef:bc:a4:0c:f1:31:0f:ee:6e: 81:dc:65:c6:9d:70:e1:d3:cd:0e:d6:23:b0:97:1c: 64:2a:67:49:2a:b6:c3:b8:8a:c8:a2:ed:2c:be:49: cd:e0:56:c7:07:e3:25:a6:1e:8b:25:5e:b4:5f:2d: fa:32:b7:e7:d4:b6:8a:6b:b7:51:1a:7c:cc:14:1a: 49:a9:31:49:0c:07:bc:e7:22:61:9e:f4:e4:d0:c7: 7a:6e:bb:da:1d:7b:13:46:28:61:ed:c9:bb:9f:7d: 74:b5:e3:07:2a:e5:29:35:af:0a:6d:0e:5e:f2:b6: 57:ca:57:53:f2:fd:df:2b:2b:90:87:61:a7:76:19: bf:3c:14:0c:a6:08:1b:1b:6e:a4:9f:f1:3d:ae:9b: c5:91:03:a1:7c:67:a7:1c:4f:45:97:e2:69:83:c1: 4f:06:c6:ef:86:30:e1:74:f6:80:96:60:7c:3d:87: 93:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A9:62:D8:91:8C:8F:17:74:39:E9:B9:31:3A:A7:DC:6C:13:58:7D:D2 X509v3 Authority Key Identifier: keyid:E9:B1:32:0F:BC:24:D6:F4:36:6C:B6:4F:CF:5E:D2:D7:B1:B6:BD:F7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6bEyD7wk1vQ2bLZPz17S17G2vfc.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/df1cb5-5f48-46a0-a76e-d3e2800bd640/1/qWLYkYyPF3Q56bkxOqfcbBNYfdI.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/df1cb5-5f48-46a0-a76e-d3e2800bd640/1/6bEyD7wk1vQ2bLZPz17S17G2vfc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 5.134.104.0/21 91.185.96.0/19 91.204.52.0/22 178.237.216.0/21 IPv6: 2a00:cf00::/32 2a06:63c0::/29 Signature Algorithm: sha256WithRSAEncryption 0d:71:b6:ef:ea:05:b2:da:f9:75:fd:dd:bf:ec:8e:20:ac:c2: 76:66:d7:aa:45:d3:96:95:4d:78:d6:28:26:b4:60:68:9d:3d: e8:92:0d:ae:51:20:f9:66:be:98:52:d2:a3:0d:c4:35:37:3c: fa:88:ce:aa:d3:83:31:b2:1e:9f:a6:94:99:00:1c:2e:f5:61: a3:6e:4a:ce:ea:de:98:60:6e:b2:b3:b5:38:4a:a2:4b:8e:c7: 92:a4:53:07:83:95:a0:d3:ff:e9:90:ac:08:1f:a6:fb:62:9c: 3f:b6:00:0e:c4:1b:d1:87:d4:dd:4a:3e:b2:1f:ec:89:e0:cb: a4:ce:57:5c:7b:1a:92:45:71:57:fd:67:38:5b:ce:b5:0b:e5: 37:bd:85:f7:f5:b9:84:69:f4:62:b7:02:86:a7:da:36:6e:c6: 5a:83:cf:9c:f2:74:0f:3c:41:3a:61:88:58:6c:50:28:02:e0: 79:a1:a1:b8:d2:25:33:a4:8f:7c:de:91:bc:83:6f:27:07:a1: 05:51:53:71:3f:b5:57:f3:d4:41:39:b0:44:d0:56:ce:b7:5f: 9d:68:d7:3a:fd:46:da:f5:84:f6:7d:4a:1d:bf:df:f4:c4:25: 99:8a:b6:a0:6a:d4:1a:f1:8b:c4:0d:13:ff:c6:81:eb:ee:67: 14:c0:1a:2c -----BEGIN CERTIFICATE----- MIIFJTCCBA2gAwIBAgISAZt/gxe5/RxciwI6nA6trlu0MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGU5YjEzMjBmYmMyNGQ2ZjQzNjZjYjY0ZmNmNWVkMmQ3YjFi NmJkZjcwHhcNMjYwMTAyMTYyMDU2WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhhOTYyZDg5MThjOGYxNzc0MzllOWI5MzEzYWE3ZGM2YzEzNTg3ZGQyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA3GkaF36ClGjVvgca6Suo9LM2mveG 5WduT00eNdof14FvJ0oRm5ykanL4kQb+7vR6oeY17FbN1LYJ6rg3+KqiDfQlMhrg IyWGgnv9VDuEbu7vvKQM8TEP7m6B3GXGnXDh080O1iOwlxxkKmdJKrbDuIrIou0s vknN4FbHB+Mlph6LJV60Xy36Mrfn1LaKa7dRGnzMFBpJqTFJDAe85yJhnvTk0Md6 brvaHXsTRihh7cm7n310teMHKuUpNa8KbQ5e8rZXyldT8v3fKyuQh2Gndhm/PBQM pggbG26kn/E9rpvFkQOhfGenHE9Fl+Jpg8FPBsbvhjDhdPaAlmB8PYeTrQIDAQAB o4ICMTCCAi0wHQYDVR0OBBYEFKli2JGMjxd0Oem5MTqn3GwTWH3SMB8GA1UdIwQY MBaAFOmxMg+8JNb0Nmy2T89e0textr33MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvNmJFeUQ3d2sxdlEyYkxaUHoxN1MxN0cydmZjLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kZC9kZjFjYjUtNWY0OC00NmEwLWE3NmUt ZDNlMjgwMGJkNjQwLzEvcVdMWWtZeVBGM1E1NmJreE9xZmNiQk5ZZmRJLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kZC9kZjFjYjUtNWY0OC00NmEwLWE3NmUtZDNlMjgwMGJkNjQw LzEvNmJFeUQ3d2sxdlEyYkxaUHoxN1MxN0cydmZjLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMEcGCCsGAQUFBwEHAQH/BDgwNjAeBAIAATAYAwQDBYZoAwQF W7lgAwQCW8w0AwQDsu3YMBQEAgACMA4DBQAqAM8AAwUDKgZjwDANBgkqhkiG9w0B AQsFAAOCAQEADXG27+oFstr5df3dv+yOIKzCdmbXqkXTlpVNeNYoJrRgaJ096JIN rlEg+Wa+mFLSow3ENTc8+ojOqtODMbIen6aUmQAcLvVho25KzuremGBusrO1OEqi S47HkqRTB4OVoNP/6ZCsCB+m+2KcP7YADsQb0YfU3Uo+sh/sieDLpM5XXHsakkVx V/1nOFvOtQvlN72F9/W5hGn0YrcChqfaNm7GWoPPnPJ0DzxBOmGIWGxQKALgeaGh uNIlM6SPfN6RvINvJwehBVFTcT+1V/PUQTmwRNBWzrdfnWjXOv1G2vWE9n1KHb/f 9MQlmYq2oGrUGvGLxA0T/8aB6+5nFMAaLA== -----END CERTIFICATE-----Generated at Sun Jan 25 22:28:42 2026 by rpki-client