This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/qdGPNbBmnAM8z0omgisn-NhPKpA.roa File: qdGPNbBmnAM8z0omgisn-NhPKpA.roa (raw, json) Hash identifier: 3NDG6wCTAphd2uzorT9U/9XRUNGx7idNXLuXTy+VqOk= Subject key identifier: A9:D1:8F:35:B0:66:9C:03:3C:CF:4A:26:82:2B:27:F8:D8:4F:2A:90 Certificate issuer: /CN=22c4ac3e3c43d70d05349c815baadd38ad775e9d Certificate serial: 019B78A2EEA99FB50740FA9A172E0A54DF93 Authority key identifier: 22:C4:AC:3E:3C:43:D7:0D:05:34:9C:81:5B:AA:DD:38:AD:77:5E:9D Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/qdGPNbBmnAM8z0omgisn-NhPKpA.roa Signing time: Thu 01 Jan 2026 08:18:22 +0000 ROA not before: Thu 01 Jan 2026 08:18:22 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 31898 IP address blocks: 2.59.252.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/IsSsPjxD1w0FNJyBW6rdOK13Xp0.crl rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/IsSsPjxD1w0FNJyBW6rdOK13Xp0.mft rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 03 Jan 2026 02:00:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:78:a2:ee:a9:9f:b5:07:40:fa:9a:17:2e:0a:54:df:93 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=22c4ac3e3c43d70d05349c815baadd38ad775e9d Validity Not Before: Jan 1 08:18:22 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=a9d18f35b0669c033ccf4a26822b27f8d84f2a90 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:94:78:5f:44:78:fa:28:4f:33:73:1f:dd:dd:3c: 0a:34:18:74:5d:df:a8:f6:85:ee:9f:96:cf:ea:4a: 33:47:af:cf:02:a4:14:ea:60:e4:25:eb:61:ab:a6: cb:42:cd:c8:05:97:68:fb:e9:4c:21:57:66:48:48: eb:9f:4f:7d:c9:4e:97:36:be:84:23:f7:e0:ae:23: 4e:2a:a8:6c:c5:35:6f:ac:9e:27:f4:84:d4:af:3f: 46:8b:d5:33:a8:4c:01:7f:ca:6f:ad:6d:9a:23:92: 62:17:75:fd:69:5b:d3:13:b9:1f:ac:1f:d9:7a:cb: 12:2f:b6:15:bf:1f:4c:88:44:0d:25:5b:22:48:98: ad:2e:c8:ec:d3:c3:fc:50:a9:42:e9:c1:8a:19:97: 31:e4:e3:85:e8:cd:83:36:08:b4:de:f4:eb:35:4f: 0d:a3:41:7d:05:a0:15:f2:7e:0d:27:af:20:a6:90: 93:58:41:ea:d7:a6:ae:ae:78:6a:7d:b5:aa:72:5d: 9c:3d:97:4d:12:70:67:a8:16:ed:cc:99:eb:94:07: 29:c3:7a:56:27:c4:0b:2d:7a:6b:10:f1:7f:dd:f1: bc:da:45:31:66:05:b1:29:60:3f:42:72:06:40:4d: f3:31:15:e0:1d:93:d8:4f:37:31:59:d7:c3:43:9e: 5c:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A9:D1:8F:35:B0:66:9C:03:3C:CF:4A:26:82:2B:27:F8:D8:4F:2A:90 X509v3 Authority Key Identifier: keyid:22:C4:AC:3E:3C:43:D7:0D:05:34:9C:81:5B:AA:DD:38:AD:77:5E:9D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/qdGPNbBmnAM8z0omgisn-NhPKpA.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/IsSsPjxD1w0FNJyBW6rdOK13Xp0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 2.59.252.0/24 Signature Algorithm: sha256WithRSAEncryption 3f:5f:d0:a2:75:67:3f:f6:2f:3f:95:9c:e4:e7:f4:28:55:79: 06:d4:40:d5:5d:0f:8f:64:fd:18:52:2b:ff:59:15:04:ee:c7: 4d:95:91:43:b2:d9:b7:57:a4:97:85:59:2b:6e:06:58:f9:56: dd:06:50:34:5f:75:87:6a:c4:ce:a3:05:17:49:63:dd:33:04: 1c:c2:84:f0:2c:54:f4:51:b5:87:4f:4e:b1:21:0e:47:24:4c: d0:5c:2b:cb:e8:2d:0d:db:20:d6:fc:23:21:76:b1:b6:2b:cf: 01:58:80:40:9f:ba:5b:42:1d:f1:87:96:02:09:b0:6b:08:ba: 56:9c:ea:65:27:0a:98:13:8f:b1:78:be:06:ba:c5:83:3a:f8: a4:6e:b7:fb:e3:a5:eb:9d:a2:39:c1:7f:0c:31:fa:57:ce:15: b0:00:1f:e0:99:53:69:da:cc:04:af:84:74:df:97:cb:10:fe: 30:45:4a:1f:a6:7b:a7:03:a8:c4:f0:a2:14:76:61:2f:bc:32: 42:73:22:0b:fb:86:f2:89:f4:7b:26:af:9d:a1:98:79:ed:5a: a1:11:10:24:88:b2:8a:ae:46:6e:3d:71:52:07:31:12:37:56: 31:4b:31:9e:61:91:8e:c0:6e:d1:b5:f4:e5:9d:8d:50:96:bc: 25:68:04:19 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt4ou6pn7UHQPqaFy4KVN+TMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDIyYzRhYzNlM2M0M2Q3MGQwNTM0OWM4MTViYWFkZDM4YWQ3 NzVlOWQwHhcNMjYwMTAxMDgxODIyWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhhOWQxOGYzNWIwNjY5YzAzM2NjZjRhMjY4MjJiMjdmOGQ4NGYyYTkwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAlHhfRHj6KE8zcx/d3TwKNBh0Xd+o 9oXun5bP6kozR6/PAqQU6mDkJethq6bLQs3IBZdo++lMIVdmSEjrn099yU6XNr6E I/fgriNOKqhsxTVvrJ4n9ITUrz9Gi9UzqEwBf8pvrW2aI5JiF3X9aVvTE7kfrB/Z essSL7YVvx9MiEQNJVsiSJitLsjs08P8UKlC6cGKGZcx5OOF6M2DNgi03vTrNU8N o0F9BaAV8n4NJ68gppCTWEHq16aurnhqfbWqcl2cPZdNEnBnqBbtzJnrlAcpw3pW J8QLLXprEPF/3fG82kUxZgWxKWA/QnIGQE3zMRXgHZPYTzcxWdfDQ55c2QIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFKnRjzWwZpwDPM9KJoIrJ/jYTyqQMB8GA1UdIwQY MBaAFCLErD48Q9cNBTScgVuq3Titd16dMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSXNTc1BqeEQxdzBGTkp5Qlc2cmRPSzEzWHAwLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wMy85MTNhM2EtZjU1MC00NmYwLWFjYzct Y2QzY2E1OTc1NzEyLzEvcWRHUE5iQm1uQU04ejBvbWdpc24tTmhQS3BBLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wMy85MTNhM2EtZjU1MC00NmYwLWFjYzctY2QzY2E1OTc1NzEy LzEvSXNTc1BqeEQxdzBGTkp5Qlc2cmRPSzEzWHAwLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAAjv8MA0G CSqGSIb3DQEBCwUAA4IBAQA/X9CidWc/9i8/lZzk5/QoVXkG1EDVXQ+PZP0YUiv/ WRUE7sdNlZFDstm3V6SXhVkrbgZY+VbdBlA0X3WHasTOowUXSWPdMwQcwoTwLFT0 UbWHT06xIQ5HJEzQXCvL6C0N2yDW/CMhdrG2K88BWIBAn7pbQh3xh5YCCbBrCLpW nOplJwqYE4+xeL4GusWDOvikbrf746XrnaI5wX8MMfpXzhWwAB/gmVNp2swEr4R0 35fLEP4wRUofpnunA6jE8KIUdmEvvDJCcyIL+4byifR7Jq+doZh57VqhERAkiLKK rkZuPXFSBzESN1YxSzGeYZGOwG7RtfTlnY1QlrwlaAQZ -----END CERTIFICATE-----Generated at Fri Jan 2 12:07:50 2026 by rpki-client