This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c3/38f128-ea82-4555-b514-143967a8fe08/1/q-gxyIerHcPLyhOq2-WE5IWAaZ8.roa File: q-gxyIerHcPLyhOq2-WE5IWAaZ8.roa (raw, json) Hash identifier: Id0pzK0sFADwtpnNuSVbEHndzG17DsgJjY7tnOkPdoo= Subject key identifier: AB:E8:31:C8:87:AB:1D:C3:CB:CA:13:AA:DB:E5:84:E4:85:80:69:9F Certificate issuer: /CN=1c963e3d22847d466c262c20878c2780d8840003 Certificate serial: 019C10916784DA3C1EB962769D66D027FD56 Authority key identifier: 1C:96:3E:3D:22:84:7D:46:6C:26:2C:20:87:8C:27:80:D8:84:00:03 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HJY-PSKEfUZsJiwgh4wngNiEAAM.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c3/38f128-ea82-4555-b514-143967a8fe08/1/q-gxyIerHcPLyhOq2-WE5IWAaZ8.roa Signing time: Fri 30 Jan 2026 20:21:30 +0000 ROA not before: Fri 30 Jan 2026 20:21:30 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 215590 IP address blocks: 77.239.108.0/22 maxlen: 24 144.31.152.0/23 maxlen: 24 144.31.186.0/23 maxlen: 24 144.31.202.0/24 maxlen: 24 150.241.88.0/23 maxlen: 24 150.241.106.0/23 maxlen: 24 150.241.115.0/24 maxlen: 24 150.241.116.0/24 maxlen: 24 150.241.123.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c3/38f128-ea82-4555-b514-143967a8fe08/1/HJY-PSKEfUZsJiwgh4wngNiEAAM.crl rsync://rpki.ripe.net/repository/DEFAULT/c3/38f128-ea82-4555-b514-143967a8fe08/1/HJY-PSKEfUZsJiwgh4wngNiEAAM.mft rsync://rpki.ripe.net/repository/DEFAULT/HJY-PSKEfUZsJiwgh4wngNiEAAM.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 05 Feb 2026 00:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:10:91:67:84:da:3c:1e:b9:62:76:9d:66:d0:27:fd:56 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1c963e3d22847d466c262c20878c2780d8840003 Validity Not Before: Jan 30 20:21:30 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=abe831c887ab1dc3cbca13aadbe584e48580699f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e2:d9:cd:12:94:54:7d:d1:19:8b:a7:75:9f:fc: ff:b2:bd:31:c2:af:87:98:60:c4:8d:a2:92:e5:bc: 76:e1:05:9e:ee:75:b4:f9:3d:28:50:50:b4:28:25: a3:59:0b:bf:69:e9:8b:e6:6a:8d:e4:e8:00:55:d7: a5:37:41:a8:ba:a5:f9:c0:01:4c:30:cc:af:cb:44: 02:4e:1f:d1:be:21:47:bb:a1:91:c2:2a:0a:c6:9b: c4:e4:fb:f6:d3:2a:8a:fc:00:02:cf:38:5f:4f:cc: 39:f8:4b:15:9e:c5:90:4e:1c:cd:9e:fa:0b:16:ba: 65:d6:ab:b3:b9:23:17:66:98:48:b7:89:07:e3:a0: 5b:b6:ed:92:e8:6f:b8:01:bf:19:10:d9:9a:2d:15: b7:a8:20:93:62:cb:89:b5:b4:b5:59:41:eb:5e:a9: 08:e4:03:5a:3f:a1:44:0b:01:97:97:10:66:d7:ec: d9:e7:12:2e:61:f1:08:2a:b8:51:c7:5b:af:24:53: ac:db:51:c7:c8:75:ec:ce:25:d3:67:e8:60:0a:5e: 39:77:95:7d:54:b1:fd:74:af:0c:9d:0d:b7:3d:56: e6:cb:0f:96:65:67:dc:2d:e4:c2:23:70:04:19:e0: 2c:7b:e7:26:ca:bb:bf:c7:6c:96:5c:e2:c6:15:0a: ab:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AB:E8:31:C8:87:AB:1D:C3:CB:CA:13:AA:DB:E5:84:E4:85:80:69:9F X509v3 Authority Key Identifier: keyid:1C:96:3E:3D:22:84:7D:46:6C:26:2C:20:87:8C:27:80:D8:84:00:03 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HJY-PSKEfUZsJiwgh4wngNiEAAM.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c3/38f128-ea82-4555-b514-143967a8fe08/1/q-gxyIerHcPLyhOq2-WE5IWAaZ8.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/c3/38f128-ea82-4555-b514-143967a8fe08/1/HJY-PSKEfUZsJiwgh4wngNiEAAM.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 77.239.108.0/22 144.31.152.0/23 144.31.186.0/23 144.31.202.0/24 150.241.88.0/23 150.241.106.0/23 150.241.115.0-150.241.116.255 150.241.123.0/24 Signature Algorithm: sha256WithRSAEncryption 1b:30:cb:79:54:d4:96:84:92:3e:13:80:6d:d3:37:ee:9b:3d: d3:39:8d:60:f0:0a:a2:6d:a6:cc:d3:be:b8:1c:6a:be:6d:72: 2a:62:92:f9:98:ee:86:d7:1c:e1:fd:69:b2:26:5c:70:58:17: 62:4a:a1:82:e3:da:24:3d:d7:46:b9:7f:66:17:98:84:97:4c: fd:88:39:b1:6a:14:13:26:2a:4f:c8:64:6f:c5:f1:f2:b1:27: 61:51:77:ce:22:f0:cc:90:ea:d7:46:5a:09:f8:68:76:e8:78: 4a:c0:23:4c:b3:c3:a9:28:83:a4:7f:a1:92:29:88:4f:bc:98: 0b:7a:37:e8:58:36:37:9c:ee:96:95:de:ef:ed:fb:6e:b3:f0: 70:14:af:21:b2:d7:08:f3:9b:0a:13:da:cb:c1:8a:36:3e:57: 30:0f:09:fe:7f:d8:f6:31:7b:80:b5:88:9d:5b:25:a4:59:11: 55:43:8e:2e:59:74:d7:f9:68:39:60:14:33:32:6b:32:1c:80: a4:e8:95:ce:b7:2b:2d:72:92:e7:9c:6b:10:97:2c:98:81:27: 45:81:50:43:e3:2e:ec:34:4d:e6:09:20:9d:e8:04:0b:10:55: b1:1e:57:fd:94:74:e8:53:e8:9e:9b:94:94:e8:2a:7e:b8:59: 7c:64:c5:a6 -----BEGIN CERTIFICATE----- MIIFLzCCBBegAwIBAgISAZwQkWeE2jweuWJ2nWbQJ/1WMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDFjOTYzZTNkMjI4NDdkNDY2YzI2MmMyMDg3OGMyNzgwZDg4 NDAwMDMwHhcNMjYwMTMwMjAyMTMwWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhhYmU4MzFjODg3YWIxZGMzY2JjYTEzYWFkYmU1ODRlNDg1ODA2OTlmMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA4tnNEpRUfdEZi6d1n/z/sr0xwq+H mGDEjaKS5bx24QWe7nW0+T0oUFC0KCWjWQu/aemL5mqN5OgAVdelN0GouqX5wAFM MMyvy0QCTh/RviFHu6GRwioKxpvE5Pv20yqK/AACzzhfT8w5+EsVnsWQThzNnvoL Frpl1quzuSMXZphIt4kH46Bbtu2S6G+4Ab8ZENmaLRW3qCCTYsuJtbS1WUHrXqkI 5ANaP6FECwGXlxBm1+zZ5xIuYfEIKrhRx1uvJFOs21HHyHXsziXTZ+hgCl45d5V9 VLH9dK8MnQ23PVbmyw+WZWfcLeTCI3AEGeAse+cmyru/x2yWXOLGFQqrdwIDAQAB o4ICOzCCAjcwHQYDVR0OBBYEFKvoMciHqx3Dy8oTqtvlhOSFgGmfMB8GA1UdIwQY MBaAFByWPj0ihH1GbCYsIIeMJ4DYhAADMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSEpZLVBTS0VmVVpzSml3Z2g0d25nTmlFQUFNLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jMy8zOGYxMjgtZWE4Mi00NTU1LWI1MTQt MTQzOTY3YThmZTA4LzEvcS1neHlJZXJIY1BMeWhPcTItV0U1SVdBYVo4LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9jMy8zOGYxMjgtZWE4Mi00NTU1LWI1MTQtMTQzOTY3YThmZTA4 LzEvSEpZLVBTS0VmVVpzSml3Z2g0d25nTmlFQUFNLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMFEGCCsGAQUFBwEHAQH/BEIwQDA+BAIAATA4AwQCTe9sAwQB kB+YAwQBkB+6AwQAkB/KAwQBlvFYAwQBlvFqMAwDBACW8XMDBACW8XQDBACW8Xsw DQYJKoZIhvcNAQELBQADggEBABswy3lU1JaEkj4TgG3TN+6bPdM5jWDwCqJtpszT vrgcar5tcipikvmY7obXHOH9abImXHBYF2JKoYLj2iQ910a5f2YXmISXTP2IObFq FBMmKk/IZG/F8fKxJ2FRd84i8MyQ6tdGWgn4aHboeErAI0yzw6kog6R/oZIpiE+8 mAt6N+hYNjec7paV3u/t+26z8HAUryGy1wjzmwoT2svBijY+VzAPCf5/2PYxe4C1 iJ1bJaRZEVVDji5ZdNf5aDlgFDMyazIcgKTolc63Ky1ykuecaxCXLJiBJ0WBUEPj Luw0TeYJIJ3oBAsQVbEeV/2UdOhT6J6blJToKn64WXxkxaY= -----END CERTIFICATE-----Generated at Wed Feb 4 10:02:28 2026 by rpki-client