This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/Qyj6izwEgT94jJ5vqpU7YxWaZHc.roa File: Qyj6izwEgT94jJ5vqpU7YxWaZHc.roa (raw, json) Hash identifier: kOndYWZy5RlUJkn7hBS+LnyjyGs7di9lcdno68Cggq4= Subject key identifier: 43:28:FA:8B:3C:04:81:3F:78:8C:9E:6F:AA:95:3B:63:15:9A:64:77 Certificate issuer: /CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7 Certificate serial: 019B7F854B1FF1EC78AA6619B513A16E82F0 Authority key identifier: 35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/Qyj6izwEgT94jJ5vqpU7YxWaZHc.roa Signing time: Fri 02 Jan 2026 16:23:20 +0000 ROA not before: Fri 02 Jan 2026 16:23:20 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 43641 IP address blocks: 194.58.222.0/24 maxlen: 24 194.87.1.0/24 maxlen: 24 194.87.153.0/24 maxlen: 24 195.58.57.0/24 maxlen: 24 212.193.16.0/24 maxlen: 24 212.193.17.0/24 maxlen: 24 212.193.19.0/24 maxlen: 24 212.193.21.0/24 maxlen: 24 212.193.22.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/NWkPXjLVyGrx4TSd_U6M7rcOGsc.crl rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/NWkPXjLVyGrx4TSd_U6M7rcOGsc.mft rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 20 Jan 2026 04:01:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7f:85:4b:1f:f1:ec:78:aa:66:19:b5:13:a1:6e:82:f0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7 Validity Not Before: Jan 2 16:23:20 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=4328fa8b3c04813f788c9e6faa953b63159a6477 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:94:ab:8a:1c:6a:a2:85:59:19:81:5b:8b:f0:d1: 83:0f:91:c1:f7:17:d7:71:80:20:8c:49:cd:e1:c2: df:83:89:bb:3f:31:b7:07:f3:42:a1:5b:48:e5:45: 41:a5:2c:1c:68:d5:df:11:e0:66:83:d0:cf:37:50: 95:8d:1b:92:c5:35:cc:75:e8:f6:a8:18:8f:d2:a3: 60:ff:8c:dc:11:2b:33:bd:7b:3a:2b:f5:71:cb:99: ac:2f:1d:34:cc:ca:2a:f3:e4:b9:87:f4:13:ee:ed: 22:ad:d7:52:6c:f0:aa:68:fa:46:e4:5d:9d:1b:4a: 72:ff:54:d9:4b:d9:ed:3e:13:bd:90:36:48:0c:b9: 56:36:c6:d4:bd:ca:75:74:b7:f8:10:7a:85:cf:b8: 2a:26:ac:e5:5f:63:7a:ec:4e:79:de:85:5a:d0:88: 32:32:ef:0a:e9:1b:96:2c:5f:c5:df:a8:0f:58:98: b8:21:1c:45:53:e5:dc:dd:3c:1a:28:0d:c3:53:69: 4b:27:31:c1:03:54:11:02:f5:06:ad:8e:f9:b8:17: 78:5c:03:63:da:16:a3:72:27:6b:fd:93:5a:a8:5f: 6e:2b:e4:6b:3f:ed:b9:c6:9d:3d:1c:78:ec:fb:72: 95:0d:a3:1c:26:06:48:06:97:40:6d:0d:3c:7b:62: 9a:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 43:28:FA:8B:3C:04:81:3F:78:8C:9E:6F:AA:95:3B:63:15:9A:64:77 X509v3 Authority Key Identifier: keyid:35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/Qyj6izwEgT94jJ5vqpU7YxWaZHc.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/NWkPXjLVyGrx4TSd_U6M7rcOGsc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 194.58.222.0/24 194.87.1.0/24 194.87.153.0/24 195.58.57.0/24 212.193.16.0/23 212.193.19.0/24 212.193.21.0-212.193.22.255 Signature Algorithm: sha256WithRSAEncryption 0c:45:62:af:1d:c1:50:87:6f:fb:f3:53:fc:8c:25:5b:17:46: cf:fa:4a:15:06:c3:93:d3:0f:7e:a3:23:d5:17:0c:03:35:7c: a5:93:36:a3:2e:0c:fc:c3:60:33:b6:23:e1:a4:45:0b:39:59: a9:e5:b2:8b:d6:23:e7:8e:0e:fa:ad:ec:4c:51:55:ae:fb:a8: 29:89:00:32:90:e5:5d:25:dd:91:77:48:ca:e4:1f:5a:86:82: e9:e4:33:3d:60:99:56:b2:e7:e0:47:d2:68:88:03:79:08:06: 40:f3:6b:99:57:64:2c:d3:f4:ad:fb:04:e0:3c:c2:b1:06:8d: 41:63:02:fb:fd:cc:cd:3b:ff:27:bc:f0:1a:d9:b6:91:c2:85: fc:4e:b3:03:6c:9b:05:c3:96:de:45:50:6a:38:26:aa:e3:a9: 0d:0a:2c:26:a4:6a:fc:a8:0b:47:a6:16:e0:13:cc:43:de:34: e8:e7:1a:28:8f:1f:09:76:0a:39:80:f6:ab:92:94:79:b8:0c: b4:48:0d:ac:0e:1c:4b:b6:cc:0d:e4:08:84:66:bf:f1:bd:5a: 88:79:c5:96:db:82:9c:33:05:98:d4:40:fd:e4:c5:f7:a9:be: 6c:65:c6:02:37:29:45:c0:11:24:0e:e3:fa:71:db:1f:fe:07: d1:c7:24:f1 -----BEGIN CERTIFICATE----- MIIFKTCCBBGgAwIBAgISAZt/hUsf8ex4qmYZtROhboLwMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDM1NjkwZjVlMzJkNWM4NmFmMWUxMzQ5ZGZkNGU4Y2VlYjcw ZTFhYzcwHhcNMjYwMTAyMTYyMzIwWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg0MzI4ZmE4YjNjMDQ4MTNmNzg4YzllNmZhYTk1M2I2MzE1OWE2NDc3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAlKuKHGqihVkZgVuL8NGDD5HB9xfX cYAgjEnN4cLfg4m7PzG3B/NCoVtI5UVBpSwcaNXfEeBmg9DPN1CVjRuSxTXMdej2 qBiP0qNg/4zcESszvXs6K/Vxy5msLx00zMoq8+S5h/QT7u0irddSbPCqaPpG5F2d G0py/1TZS9ntPhO9kDZIDLlWNsbUvcp1dLf4EHqFz7gqJqzlX2N67E553oVa0Igy Mu8K6RuWLF/F36gPWJi4IRxFU+Xc3TwaKA3DU2lLJzHBA1QRAvUGrY75uBd4XANj 2hajcidr/ZNaqF9uK+RrP+25xp09HHjs+3KVDaMcJgZIBpdAbQ08e2KaIQIDAQAB o4ICNTCCAjEwHQYDVR0OBBYEFEMo+os8BIE/eIyeb6qVO2MVmmR3MB8GA1UdIwQY MBaAFDVpD14y1chq8eE0nf1OjO63DhrHMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvTldrUFhqTFZ5R3J4NFRTZF9VNk03cmNPR3NjLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wMC9lMTQ0N2EtOGYxOC00YTgwLWE0MjIt NWE0MjQyOGYxMTQzLzEvUXlqNml6d0VnVDk0ako1dnFwVTdZeFdhWkhjLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wMC9lMTQ0N2EtOGYxOC00YTgwLWE0MjItNWE0MjQyOGYxMTQz LzEvTldrUFhqTFZ5R3J4NFRTZF9VNk03cmNPR3NjLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMEsGCCsGAQUFBwEHAQH/BDwwOjA4BAIAATAyAwQAwjreAwQA wlcBAwQAwleZAwQAwzo5AwQB1MEQAwQA1METMAwDBADUwRUDBADUwRYwDQYJKoZI hvcNAQELBQADggEBAAxFYq8dwVCHb/vzU/yMJVsXRs/6ShUGw5PTD36jI9UXDAM1 fKWTNqMuDPzDYDO2I+GkRQs5WanlsovWI+eODvqt7ExRVa77qCmJADKQ5V0l3ZF3 SMrkH1qGgunkMz1gmVay5+BH0miIA3kIBkDza5lXZCzT9K37BOA8wrEGjUFjAvv9 zM07/ye88BrZtpHChfxOswNsmwXDlt5FUGo4JqrjqQ0KLCakavyoC0emFuATzEPe NOjnGiiPHwl2CjmA9quSlHm4DLRIDawOHEu2zA3kCIRmv/G9Woh5xZbbgpwzBZjU QP3kxfepvmxlxgI3KUXAESQO4/px2x/+B9HHJPE= -----END CERTIFICATE-----Generated at Mon Jan 19 11:26:16 2026 by rpki-client