This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e7/d119f6-880d-4f5b-b079-5ddafb5954ba/1/qK3CTioRHIZv8tRs19l4YH3NK7Q.roa File: qK3CTioRHIZv8tRs19l4YH3NK7Q.roa (raw, json) Hash identifier: mYr/W0vsn5NqGep9nH2w5E2ZZ+X10OK8JIo9QGjsoSE= Subject key identifier: A8:AD:C2:4E:2A:11:1C:86:6F:F2:D4:6C:D7:D9:78:60:7D:CD:2B:B4 Certificate issuer: /CN=553f4bc416639a7e1b6c4f0199e02e3160a1e642 Certificate serial: 019B7F813D4804CB0F5C6F72BB503359197C Authority key identifier: 55:3F:4B:C4:16:63:9A:7E:1B:6C:4F:01:99:E0:2E:31:60:A1:E6:42 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VT9LxBZjmn4bbE8BmeAuMWCh5kI.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e7/d119f6-880d-4f5b-b079-5ddafb5954ba/1/qK3CTioRHIZv8tRs19l4YH3NK7Q.roa Signing time: Fri 02 Jan 2026 16:18:54 +0000 ROA not before: Fri 02 Jan 2026 16:18:54 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 60320 IP address blocks: 185.242.184.0/24 maxlen: 24 2a13:6000::/29 maxlen: 29 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e7/d119f6-880d-4f5b-b079-5ddafb5954ba/1/VT9LxBZjmn4bbE8BmeAuMWCh5kI.crl rsync://rpki.ripe.net/repository/DEFAULT/e7/d119f6-880d-4f5b-b079-5ddafb5954ba/1/VT9LxBZjmn4bbE8BmeAuMWCh5kI.mft rsync://rpki.ripe.net/repository/DEFAULT/VT9LxBZjmn4bbE8BmeAuMWCh5kI.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 13:01:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7f:81:3d:48:04:cb:0f:5c:6f:72:bb:50:33:59:19:7c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=553f4bc416639a7e1b6c4f0199e02e3160a1e642 Validity Not Before: Jan 2 16:18:54 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=a8adc24e2a111c866ff2d46cd7d978607dcd2bb4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:42:52:d3:bd:6f:55:bf:34:1b:30:f4:2b:3f: 89:d7:c6:89:c6:d3:6f:a0:0f:e2:1c:30:c3:6a:4f: 8b:cb:d6:f6:10:86:94:58:ae:1c:77:3c:81:a3:fd: 5e:6c:73:98:ec:43:28:d9:60:4d:4c:1a:c9:09:b8: fb:0a:70:ae:bc:d0:36:e8:db:fa:8d:15:7d:9c:7e: 36:78:ec:98:04:04:e1:fb:e1:4d:f5:de:b2:46:16: 56:d9:d6:f0:b9:c3:fe:c4:a4:a0:19:5c:f7:01:89: 8e:cb:3a:bf:22:61:96:bb:ae:51:02:e7:3a:23:12: 05:81:34:1e:38:c5:b0:3a:e5:31:d7:52:ad:dc:e7: 41:f9:20:df:ee:5c:a6:81:1b:4f:0c:af:5e:f1:8f: 08:98:71:7a:9a:2f:a3:ea:ec:a6:99:0e:fd:b3:9e: 0e:94:11:5b:3d:3f:a2:f3:3c:83:14:4a:90:d6:ec: 1a:4a:c2:41:be:44:e3:ca:7f:b9:ba:e1:23:87:d4: f2:f5:e4:aa:da:90:aa:99:e1:a5:af:f5:4f:16:81: 93:fb:34:59:62:d1:74:06:6d:bf:7f:32:3c:3b:39: fc:1f:08:af:df:64:a6:b5:52:39:cb:52:c2:3b:b3: 7c:c5:f6:ae:fa:04:ad:98:6e:3b:de:e7:fa:ab:28: 43:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A8:AD:C2:4E:2A:11:1C:86:6F:F2:D4:6C:D7:D9:78:60:7D:CD:2B:B4 X509v3 Authority Key Identifier: keyid:55:3F:4B:C4:16:63:9A:7E:1B:6C:4F:01:99:E0:2E:31:60:A1:E6:42 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VT9LxBZjmn4bbE8BmeAuMWCh5kI.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/d119f6-880d-4f5b-b079-5ddafb5954ba/1/qK3CTioRHIZv8tRs19l4YH3NK7Q.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/d119f6-880d-4f5b-b079-5ddafb5954ba/1/VT9LxBZjmn4bbE8BmeAuMWCh5kI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.242.184.0/24 IPv6: 2a13:6000::/29 Signature Algorithm: sha256WithRSAEncryption 51:45:0a:76:33:7e:ed:d7:38:e2:79:30:6c:70:09:89:fc:2a: 13:cf:dc:ee:15:f4:83:4a:82:87:7d:ff:7f:bc:32:7e:4c:66: 0d:9d:bd:be:8c:d3:8b:e2:77:a6:52:cb:cc:2b:29:35:61:e9: ca:5d:36:2f:17:10:18:dd:29:af:be:dd:e4:11:0b:27:9b:01: dc:45:3f:07:07:6d:c6:79:4c:13:52:7c:e9:95:d0:63:50:0b: 15:32:53:81:b2:df:06:58:56:b4:ef:29:fb:fd:6d:a0:ca:46: 52:7b:d8:63:8d:8f:e7:6f:0b:d0:e2:d4:09:ca:b5:0d:e1:9a: f7:8f:82:7d:2a:a5:a9:85:02:54:c0:3e:7f:69:d7:1a:a7:43: 12:5f:a1:aa:9a:1d:6f:18:8f:f1:66:57:58:ad:bf:2d:92:77: ec:b5:55:dd:17:e3:bf:b9:bc:1b:b4:10:3f:99:9a:92:21:8b: c1:12:67:15:61:0a:6b:d2:3a:91:7f:7b:c7:9c:83:6e:1d:d4: 3d:7e:31:26:f4:56:1a:b1:27:7a:2b:81:4a:4d:71:9a:a0:f3: 54:3f:3d:4b:14:93:37:3f:76:0a:92:94:94:93:a7:2a:0e:c5: 35:af:dc:c8:cd:fa:3a:56:58:8f:03:97:1e:5e:f9:81:12:33: 22:12:26:b6 -----BEGIN CERTIFICATE----- MIIFDDCCA/SgAwIBAgISAZt/gT1IBMsPXG9yu1AzWRl8MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDU1M2Y0YmM0MTY2MzlhN2UxYjZjNGYwMTk5ZTAyZTMxNjBh MWU2NDIwHhcNMjYwMTAyMTYxODU0WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhhOGFkYzI0ZTJhMTExYzg2NmZmMmQ0NmNkN2Q5Nzg2MDdkY2QyYmI0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqUJS071vVb80GzD0Kz+J18aJxtNv oA/iHDDDak+Ly9b2EIaUWK4cdzyBo/1ebHOY7EMo2WBNTBrJCbj7CnCuvNA26Nv6 jRV9nH42eOyYBATh++FN9d6yRhZW2dbwucP+xKSgGVz3AYmOyzq/ImGWu65RAuc6 IxIFgTQeOMWwOuUx11Kt3OdB+SDf7lymgRtPDK9e8Y8ImHF6mi+j6uymmQ79s54O lBFbPT+i8zyDFEqQ1uwaSsJBvkTjyn+5uuEjh9Ty9eSq2pCqmeGlr/VPFoGT+zRZ YtF0Bm2/fzI8Ozn8Hwiv32SmtVI5y1LCO7N8xfau+gStmG473uf6qyhDewIDAQAB o4ICGDCCAhQwHQYDVR0OBBYEFKitwk4qERyGb/LUbNfZeGB9zSu0MB8GA1UdIwQY MBaAFFU/S8QWY5p+G2xPAZngLjFgoeZCMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvVlQ5THhCWmptbjRiYkU4Qm1lQXVNV0NoNWtJLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lNy9kMTE5ZjYtODgwZC00ZjViLWIwNzkt NWRkYWZiNTk1NGJhLzEvcUszQ1Rpb1JISVp2OHRSczE5bDRZSDNOSzdRLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9lNy9kMTE5ZjYtODgwZC00ZjViLWIwNzktNWRkYWZiNTk1NGJh LzEvVlQ5THhCWmptbjRiYkU4Qm1lQXVNV0NoNWtJLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMC4GCCsGAQUFBwEHAQH/BB8wHTAMBAIAATAGAwQAufK4MA0E AgACMAcDBQMqE2AAMA0GCSqGSIb3DQEBCwUAA4IBAQBRRQp2M37t1zjieTBscAmJ /CoTz9zuFfSDSoKHff9/vDJ+TGYNnb2+jNOL4nemUsvMKyk1YenKXTYvFxAY3Smv vt3kEQsnmwHcRT8HB23GeUwTUnzpldBjUAsVMlOBst8GWFa07yn7/W2gykZSe9hj jY/nbwvQ4tQJyrUN4Zr3j4J9KqWphQJUwD5/adcap0MSX6Gqmh1vGI/xZldYrb8t knfstVXdF+O/ubwbtBA/mZqSIYvBEmcVYQpr0jqRf3vHnINuHdQ9fjEm9FYasSd6 K4FKTXGaoPNUPz1LFJM3P3YKkpSUk6cqDsU1r9zIzfo6VliPA5ceXvmBEjMiEia2 -----END CERTIFICATE-----Generated at Sun Jan 25 22:15:12 2026 by rpki-client