This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f5/376f5a-c026-4bae-8847-2b1d439b2227/1/QRYnwPzgKp-9B5SCFgwsSF3VtLI.roa File: QRYnwPzgKp-9B5SCFgwsSF3VtLI.roa (raw, json) Hash identifier: g+/BMJPy7LXVieQvJddQ3qFl3eA3wSZtRhRO6IBuRQ0= Subject key identifier: 41:16:27:C0:FC:E0:2A:9F:BD:07:94:82:16:0C:2C:48:5D:D5:B4:B2 Certificate issuer: /CN=07d3c0c115328c3d28c0f5721b00982b2cd4215e Certificate serial: 019B7C12508EE28BF6E33E9E4BC2D2EACCD5 Authority key identifier: 07:D3:C0:C1:15:32:8C:3D:28:C0:F5:72:1B:00:98:2B:2C:D4:21:5E Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/B9PAwRUyjD0owPVyGwCYKyzUIV4.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f5/376f5a-c026-4bae-8847-2b1d439b2227/1/QRYnwPzgKp-9B5SCFgwsSF3VtLI.roa Signing time: Fri 02 Jan 2026 00:18:53 +0000 ROA not before: Fri 02 Jan 2026 00:18:53 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 197763 IP address blocks: 195.22.120.0/24 maxlen: 24 2001:67c:2f00::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f5/376f5a-c026-4bae-8847-2b1d439b2227/1/B9PAwRUyjD0owPVyGwCYKyzUIV4.crl rsync://rpki.ripe.net/repository/DEFAULT/f5/376f5a-c026-4bae-8847-2b1d439b2227/1/B9PAwRUyjD0owPVyGwCYKyzUIV4.mft rsync://rpki.ripe.net/repository/DEFAULT/B9PAwRUyjD0owPVyGwCYKyzUIV4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 06:00:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7c:12:50:8e:e2:8b:f6:e3:3e:9e:4b:c2:d2:ea:cc:d5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=07d3c0c115328c3d28c0f5721b00982b2cd4215e Validity Not Before: Jan 2 00:18:53 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=411627c0fce02a9fbd079482160c2c485dd5b4b2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e5:3b:78:72:55:28:69:5e:25:c7:bf:8c:7f:37: e6:77:94:63:ed:78:e8:9f:40:b7:01:af:c6:5f:e9: b0:f4:9f:6e:53:87:f9:26:82:8c:97:e1:7e:94:6d: 8d:e4:ec:91:de:15:35:40:29:bd:e7:f7:4d:24:c9: 55:c1:61:ff:c2:11:0e:21:61:c1:b8:aa:cd:97:fa: ab:01:6f:d8:0f:39:6a:a2:e8:88:1c:b4:ef:38:51: b1:3d:0f:e1:84:49:03:88:28:f1:4f:f6:41:4b:26: bf:7c:d6:00:7e:c7:cb:52:db:25:75:4e:80:8b:f3: da:d1:23:c1:46:15:4c:e2:b0:48:47:7e:7a:ab:38: 52:dc:24:27:4c:a1:c1:dd:ec:07:3d:29:a9:b9:4e: 89:2a:e4:9c:e0:7f:04:09:28:1a:ec:5c:5a:82:f0: 72:52:97:32:9e:dc:6e:e2:65:b8:0e:77:26:99:12: 3a:48:23:4b:73:00:b2:4a:13:7f:17:bd:25:c5:7c: f2:97:84:f4:5c:9b:59:dd:e1:7a:89:c5:cc:da:ef: 03:22:98:3f:44:20:0e:20:1a:d2:30:24:3b:eb:55: db:4c:bd:1f:00:48:79:7f:67:79:b7:a0:a1:1f:75: 81:3a:4b:25:81:84:1a:5e:a9:0d:ee:ea:50:f5:f6: b1:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 41:16:27:C0:FC:E0:2A:9F:BD:07:94:82:16:0C:2C:48:5D:D5:B4:B2 X509v3 Authority Key Identifier: keyid:07:D3:C0:C1:15:32:8C:3D:28:C0:F5:72:1B:00:98:2B:2C:D4:21:5E X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/B9PAwRUyjD0owPVyGwCYKyzUIV4.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f5/376f5a-c026-4bae-8847-2b1d439b2227/1/QRYnwPzgKp-9B5SCFgwsSF3VtLI.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/f5/376f5a-c026-4bae-8847-2b1d439b2227/1/B9PAwRUyjD0owPVyGwCYKyzUIV4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 195.22.120.0/24 IPv6: 2001:67c:2f00::/48 Signature Algorithm: sha256WithRSAEncryption 3e:45:cf:ce:0d:99:d2:75:33:a1:6c:37:51:3a:24:10:37:05: e2:81:ff:5f:0e:0d:cc:05:f1:e6:24:46:2b:ee:63:1b:49:60: 4d:f9:a5:b4:01:db:67:35:4c:b1:d9:21:c8:17:b1:2d:91:19: 97:26:78:62:51:6d:41:b5:13:b8:83:5b:15:cb:88:c0:eb:fe: e5:88:e5:35:0b:5d:06:57:5d:ae:f5:5d:7c:87:08:25:24:b8: 9b:2f:c5:b5:f6:41:b8:44:21:06:8d:fe:72:e8:dc:53:00:f7: 11:5d:1a:29:c5:bd:20:b0:37:aa:f2:56:80:f4:0f:5f:66:78: 41:c1:48:32:07:0d:b9:16:cf:56:49:68:8d:d8:38:df:c4:4d: fb:d9:3d:eb:55:c4:19:9e:63:36:63:b0:c7:1e:b7:f1:de:a2: b2:29:90:44:5c:c7:45:de:17:61:db:b2:5d:7c:3c:6b:18:f4: cb:0a:c1:0c:5b:2e:a1:52:af:29:95:0a:73:47:2c:4f:f4:cf: c6:a4:e6:6a:de:87:47:e8:90:20:da:04:8a:d2:d6:04:ec:19: 24:36:17:a9:a5:69:a9:60:fe:11:eb:8f:b9:ad:6c:1d:15:6e: 66:ee:cf:28:3d:8c:bc:93:26:36:37:65:1d:ea:7e:58:5d:18: 61:67:3b:07 -----BEGIN CERTIFICATE----- MIIFDjCCA/agAwIBAgISAZt8ElCO4ov24z6eS8LS6szVMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDA3ZDNjMGMxMTUzMjhjM2QyOGMwZjU3MjFiMDA5ODJiMmNk NDIxNWUwHhcNMjYwMTAyMDAxODUzWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg0MTE2MjdjMGZjZTAyYTlmYmQwNzk0ODIxNjBjMmM0ODVkZDViNGIyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA5Tt4clUoaV4lx7+Mfzfmd5Rj7Xjo n0C3Aa/GX+mw9J9uU4f5JoKMl+F+lG2N5OyR3hU1QCm95/dNJMlVwWH/whEOIWHB uKrNl/qrAW/YDzlqouiIHLTvOFGxPQ/hhEkDiCjxT/ZBSya/fNYAfsfLUtsldU6A i/Pa0SPBRhVM4rBIR356qzhS3CQnTKHB3ewHPSmpuU6JKuSc4H8ECSga7FxagvBy Upcyntxu4mW4DncmmRI6SCNLcwCyShN/F70lxXzyl4T0XJtZ3eF6icXM2u8DIpg/ RCAOIBrSMCQ761XbTL0fAEh5f2d5t6ChH3WBOkslgYQaXqkN7upQ9fax+wIDAQAB o4ICGjCCAhYwHQYDVR0OBBYEFEEWJ8D84CqfvQeUghYMLEhd1bSyMB8GA1UdIwQY MBaAFAfTwMEVMow9KMD1chsAmCss1CFeMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvQjlQQXdSVXlqRDBvd1BWeUd3Q1lLeXpVSVY0LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mNS8zNzZmNWEtYzAyNi00YmFlLTg4NDct MmIxZDQzOWIyMjI3LzEvUVJZbndQemdLcC05QjVTQ0Znd3NTRjNWdExJLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9mNS8zNzZmNWEtYzAyNi00YmFlLTg4NDctMmIxZDQzOWIyMjI3 LzEvQjlQQXdSVXlqRDBvd1BWeUd3Q1lLeXpVSVY0LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMDAGCCsGAQUFBwEHAQH/BCEwHzAMBAIAATAGAwQAwxZ4MA8E AgACMAkDBwAgAQZ8LwAwDQYJKoZIhvcNAQELBQADggEBAD5Fz84NmdJ1M6FsN1E6 JBA3BeKB/18ODcwF8eYkRivuYxtJYE35pbQB22c1TLHZIcgXsS2RGZcmeGJRbUG1 E7iDWxXLiMDr/uWI5TULXQZXXa71XXyHCCUkuJsvxbX2QbhEIQaN/nLo3FMA9xFd GinFvSCwN6ryVoD0D19meEHBSDIHDbkWz1ZJaI3YON/ETfvZPetVxBmeYzZjsMce t/HeorIpkERcx0XeF2Hbsl18PGsY9MsKwQxbLqFSrymVCnNHLE/0z8ak5mreh0fo kCDaBIrS1gTsGSQ2F6mlaalg/hHrj7mtbB0Vbmbuzyg9jLyTJjY3ZR3qflhdGGFn Owc= -----END CERTIFICATE-----Generated at Sun Jan 25 15:29:08 2026 by rpki-client