This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fc/b5b4e7-8a68-466d-9fc5-075dc4604aef/1/q4elAfSV3pyfkYrBN_lZOQLkI4k.roa File: q4elAfSV3pyfkYrBN_lZOQLkI4k.roa (raw, json) Hash identifier: r+8++4MhJRSapDrpwTS15Xt4KYpfzjt0/BUoTi0KaP4= Subject key identifier: AB:87:A5:01:F4:95:DE:9C:9F:91:8A:C1:37:F9:59:39:02:E4:23:89 Certificate issuer: /CN=da834df1dafa7fe6ead360b3ee75a2931af1ffe9 Certificate serial: 019B7E378EDD6C3F152076F1C51E9F287FE9 Authority key identifier: DA:83:4D:F1:DA:FA:7F:E6:EA:D3:60:B3:EE:75:A2:93:1A:F1:FF:E9 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2oNN8dr6f-bq02Cz7nWikxrx_-k.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fc/b5b4e7-8a68-466d-9fc5-075dc4604aef/1/q4elAfSV3pyfkYrBN_lZOQLkI4k.roa Signing time: Fri 02 Jan 2026 10:18:48 +0000 ROA not before: Fri 02 Jan 2026 10:18:48 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 42216 IP address blocks: 185.195.230.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fc/b5b4e7-8a68-466d-9fc5-075dc4604aef/1/2oNN8dr6f-bq02Cz7nWikxrx_-k.crl rsync://rpki.ripe.net/repository/DEFAULT/fc/b5b4e7-8a68-466d-9fc5-075dc4604aef/1/2oNN8dr6f-bq02Cz7nWikxrx_-k.mft rsync://rpki.ripe.net/repository/DEFAULT/2oNN8dr6f-bq02Cz7nWikxrx_-k.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 22:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7e:37:8e:dd:6c:3f:15:20:76:f1:c5:1e:9f:28:7f:e9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=da834df1dafa7fe6ead360b3ee75a2931af1ffe9 Validity Not Before: Jan 2 10:18:48 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=ab87a501f495de9c9f918ac137f9593902e42389 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e5:45:23:10:78:b2:e9:51:9d:d5:60:ce:43:35: 27:7d:36:d4:7b:45:c6:a6:88:f7:cb:10:a3:51:db: f1:31:9c:a3:49:98:9a:5b:a8:f7:dd:2e:f9:90:56: 67:99:41:f0:c1:ae:f9:d2:05:06:07:e6:39:ea:d4: db:13:98:a9:ca:a4:a6:90:d6:c7:31:6b:aa:34:69: ae:5f:21:e8:60:06:77:9e:e9:62:2f:65:09:5f:41: c2:5e:6b:79:4e:e0:82:32:de:fd:6b:48:7d:59:b1: 45:04:a2:de:a4:2f:3d:3e:d8:c2:9c:16:9c:b1:8e: f7:68:fd:40:2e:73:58:89:c9:3f:8a:a5:5d:76:8a: 00:58:3f:81:8a:6b:64:b3:3d:d9:35:cf:a6:99:90: 17:9c:f6:32:c1:66:16:ad:8e:6b:55:e1:6f:ba:12: 36:2f:d8:e9:2b:8a:31:4b:37:e2:f0:c6:02:8a:0c: a3:a3:a5:2d:c0:48:36:ea:ea:f3:ae:a0:72:9c:ad: 39:da:e3:99:2c:da:58:ae:e0:6a:7c:d3:df:30:bf: 67:8b:67:af:a9:77:5d:90:22:2c:97:db:c4:dc:97: 1b:50:24:d2:c0:97:8e:88:66:e9:59:49:3b:a9:d9: d6:1f:62:98:f7:9a:bf:db:48:9c:19:20:4d:23:0b: d6:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AB:87:A5:01:F4:95:DE:9C:9F:91:8A:C1:37:F9:59:39:02:E4:23:89 X509v3 Authority Key Identifier: keyid:DA:83:4D:F1:DA:FA:7F:E6:EA:D3:60:B3:EE:75:A2:93:1A:F1:FF:E9 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2oNN8dr6f-bq02Cz7nWikxrx_-k.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fc/b5b4e7-8a68-466d-9fc5-075dc4604aef/1/q4elAfSV3pyfkYrBN_lZOQLkI4k.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/fc/b5b4e7-8a68-466d-9fc5-075dc4604aef/1/2oNN8dr6f-bq02Cz7nWikxrx_-k.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.195.230.0/24 Signature Algorithm: sha256WithRSAEncryption 3f:20:a2:f6:b1:28:8a:d8:7e:ee:23:08:30:07:c6:43:c8:b0: 3e:5b:be:00:e2:2b:36:f6:95:e5:0a:07:fa:9c:db:68:9e:79: 0c:6d:61:84:96:66:a1:37:2e:69:68:07:1f:77:1c:31:d5:c5: 27:14:56:a3:e8:df:2c:7e:31:79:4a:58:b7:79:79:8e:7e:c0: 71:ba:b7:27:22:e8:8e:cc:4d:d3:61:52:2f:e0:09:3b:8d:14: 44:f6:68:fc:2e:14:d7:cf:ec:ef:fa:4b:12:af:2c:65:1a:c2: 6e:90:1a:da:ea:c5:ab:be:7f:c5:e5:4f:44:da:33:19:56:57: 4e:5d:1d:96:c8:f3:ee:36:99:f0:2e:b6:59:02:c3:4f:af:5c: 14:5e:55:7b:f5:0a:c9:d1:11:9a:63:c9:a9:3a:92:7a:54:03: 77:36:f8:cf:56:4f:b8:97:f9:35:d8:7f:b2:64:82:0e:46:7a: 5d:8b:27:50:38:c3:22:f8:67:b1:0d:2e:4c:09:7d:76:fb:7a: 24:32:65:af:93:d3:e3:d3:5a:f4:65:30:49:7e:6d:f8:36:a8: 55:aa:f3:b0:97:52:90:e9:91:66:77:0d:64:e0:32:c5:6c:e2: 3a:fa:21:3d:76:18:d5:c3:b1:af:2d:18:aa:0e:f1:17:be:a2: da:37:88:3c -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt+N47dbD8VIHbxxR6fKH/pMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGRhODM0ZGYxZGFmYTdmZTZlYWQzNjBiM2VlNzVhMjkzMWFm MWZmZTkwHhcNMjYwMTAyMTAxODQ4WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhhYjg3YTUwMWY0OTVkZTljOWY5MThhYzEzN2Y5NTkzOTAyZTQyMzg5MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA5UUjEHiy6VGd1WDOQzUnfTbUe0XG poj3yxCjUdvxMZyjSZiaW6j33S75kFZnmUHwwa750gUGB+Y56tTbE5ipyqSmkNbH MWuqNGmuXyHoYAZ3nuliL2UJX0HCXmt5TuCCMt79a0h9WbFFBKLepC89PtjCnBac sY73aP1ALnNYick/iqVddooAWD+Bimtksz3ZNc+mmZAXnPYywWYWrY5rVeFvuhI2 L9jpK4oxSzfi8MYCigyjo6UtwEg26urzrqBynK052uOZLNpYruBqfNPfML9ni2ev qXddkCIsl9vE3JcbUCTSwJeOiGbpWUk7qdnWH2KY95q/20icGSBNIwvWUwIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFKuHpQH0ld6cn5GKwTf5WTkC5COJMB8GA1UdIwQY MBaAFNqDTfHa+n/m6tNgs+51opMa8f/pMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvMm9OTjhkcjZmLWJxMDJDejduV2lreHJ4Xy1rLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mYy9iNWI0ZTctOGE2OC00NjZkLTlmYzUt MDc1ZGM0NjA0YWVmLzEvcTRlbEFmU1YzcHlma1lyQk5fbFpPUUxrSTRrLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9mYy9iNWI0ZTctOGE2OC00NjZkLTlmYzUtMDc1ZGM0NjA0YWVm LzEvMm9OTjhkcjZmLWJxMDJDejduV2lreHJ4Xy1rLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAucPmMA0G CSqGSIb3DQEBCwUAA4IBAQA/IKL2sSiK2H7uIwgwB8ZDyLA+W74A4is29pXlCgf6 nNtonnkMbWGElmahNy5paAcfdxwx1cUnFFaj6N8sfjF5Sli3eXmOfsBxurcnIuiO zE3TYVIv4Ak7jRRE9mj8LhTXz+zv+ksSryxlGsJukBra6sWrvn/F5U9E2jMZVldO XR2WyPPuNpnwLrZZAsNPr1wUXlV79QrJ0RGaY8mpOpJ6VAN3NvjPVk+4l/k12H+y ZIIORnpdiydQOMMi+GexDS5MCX12+3okMmWvk9Pj01r0ZTBJfm34NqhVqvOwl1KQ 6ZFmdw1k4DLFbOI6+iE9dhjVw7GvLRiqDvEXvqLaN4g8 -----END CERTIFICATE-----Generated at Mon Jan 26 03:57:02 2026 by rpki-client