This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/07/e6f4e4-68bb-4496-90c7-aa859e192b16/1/QKB2yXBKCucZIik_NUkIUu-0gsU.roa File: QKB2yXBKCucZIik_NUkIUu-0gsU.roa (raw, json) Hash identifier: Az9ohs2u7S8Tz5MIQmRIq0++DK7ITljN4NySQ9ZLZEM= Subject key identifier: 40:A0:76:C9:70:4A:0A:E7:19:22:29:3F:35:49:08:52:EF:B4:82:C5 Certificate issuer: /CN=1056bcd426fd87cd6f4147e133216d03112b181b Certificate serial: 019B7A5B01B342E31BDDE50F87457AAFBD04 Authority key identifier: 10:56:BC:D4:26:FD:87:CD:6F:41:47:E1:33:21:6D:03:11:2B:18:1B Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/EFa81Cb9h81vQUfhMyFtAxErGBs.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/07/e6f4e4-68bb-4496-90c7-aa859e192b16/1/QKB2yXBKCucZIik_NUkIUu-0gsU.roa Signing time: Thu 01 Jan 2026 16:19:03 +0000 ROA not before: Thu 01 Jan 2026 16:19:03 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 149766 IP address blocks: 81.31.234.0/24 maxlen: 24 185.84.160.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/07/e6f4e4-68bb-4496-90c7-aa859e192b16/1/EFa81Cb9h81vQUfhMyFtAxErGBs.crl rsync://rpki.ripe.net/repository/DEFAULT/07/e6f4e4-68bb-4496-90c7-aa859e192b16/1/EFa81Cb9h81vQUfhMyFtAxErGBs.mft rsync://rpki.ripe.net/repository/DEFAULT/EFa81Cb9h81vQUfhMyFtAxErGBs.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 09 Jan 2026 09:00:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7a:5b:01:b3:42:e3:1b:dd:e5:0f:87:45:7a:af:bd:04 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1056bcd426fd87cd6f4147e133216d03112b181b Validity Not Before: Jan 1 16:19:03 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=40a076c9704a0ae71922293f35490852efb482c5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:4e:8b:e3:7d:dc:4d:d7:7e:61:fd:1e:b0:15: 33:59:d5:07:38:e2:f1:28:06:a4:0d:c6:d0:a5:08: 60:fa:27:2e:8d:6b:a8:9b:a7:22:6f:01:da:07:aa: d4:0d:71:72:49:c1:35:ba:e1:82:ed:69:c6:80:06: 4b:bb:a4:39:91:e8:64:b8:d3:86:fc:4d:82:cf:90: b6:b2:6b:75:c1:3b:72:a9:32:30:3b:51:36:ed:c7: 2a:d8:b4:62:d5:7a:ba:4f:03:52:08:04:fd:c2:a3: 4f:d8:1b:11:9f:1e:a0:9f:33:85:39:8d:5a:d5:54: 1d:c5:dc:49:0c:e2:2a:b7:c4:36:de:a7:64:cf:31: 91:cb:19:45:02:82:0b:db:bb:80:15:f3:d7:07:04: f6:96:81:c4:73:40:09:66:5f:40:05:b5:44:49:fd: fe:c7:75:27:25:67:a9:68:e7:a9:28:01:7b:44:1f: b9:77:1e:fc:8c:7c:ee:07:84:2e:31:1e:20:f8:36: 6a:b6:09:77:70:7f:65:26:38:c9:a2:b5:8b:b7:1a: 7f:be:99:72:05:f8:cc:33:fe:1a:61:b2:81:52:f4: eb:2b:e7:0e:df:3b:86:57:3b:15:8d:b3:4a:06:45: f8:09:09:ab:a6:ff:4c:12:1d:87:cb:db:b1:e0:30: fb:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 40:A0:76:C9:70:4A:0A:E7:19:22:29:3F:35:49:08:52:EF:B4:82:C5 X509v3 Authority Key Identifier: keyid:10:56:BC:D4:26:FD:87:CD:6F:41:47:E1:33:21:6D:03:11:2B:18:1B X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/EFa81Cb9h81vQUfhMyFtAxErGBs.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/07/e6f4e4-68bb-4496-90c7-aa859e192b16/1/QKB2yXBKCucZIik_NUkIUu-0gsU.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/07/e6f4e4-68bb-4496-90c7-aa859e192b16/1/EFa81Cb9h81vQUfhMyFtAxErGBs.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 81.31.234.0/24 185.84.160.0/23 Signature Algorithm: sha256WithRSAEncryption ce:fa:15:9b:17:cc:14:bc:74:07:09:60:65:6e:c1:e5:fc:a9: de:fc:b1:a3:d9:49:78:76:e2:72:e2:2d:7e:e4:70:52:2b:93: 68:aa:6c:23:a8:23:0f:8f:41:97:17:54:c5:e6:53:d2:26:b7: d8:c0:ba:95:17:23:88:f7:4a:45:86:74:9b:23:12:3b:a7:0a: 76:dd:87:1c:28:32:15:e5:e5:b8:3e:45:c9:60:a7:82:76:94: e4:b1:55:46:b3:44:f9:2d:5a:18:8f:7d:d4:ef:84:fe:12:dd: 9c:0c:a0:d6:a6:1b:7b:02:20:8c:dc:f2:ec:6a:7e:52:ac:6b: a5:77:6a:77:82:c1:bc:33:c3:3c:15:f0:6a:22:23:ab:d7:14: 3f:29:2a:74:9d:e6:2d:33:70:b3:05:9a:ff:36:c2:1f:b9:54: f4:1c:40:30:ae:a2:f0:96:71:13:ff:a5:69:2a:1d:91:9c:54: 0a:96:fb:c4:6b:3b:54:42:99:ef:b9:8b:e1:d2:f5:13:8a:9a: 4f:68:66:08:e6:b8:72:ce:f0:2b:fe:5f:7f:c7:03:5b:59:ef: 54:bc:65:e3:7a:26:f1:f0:d8:1c:01:2d:cb:2a:fd:06:8b:a3: 0f:03:30:7e:3a:f0:06:ef:8a:ff:bd:df:d4:32:35:b9:2b:04: 88:57:70:55 -----BEGIN CERTIFICATE----- MIIFAzCCA+ugAwIBAgISAZt6WwGzQuMb3eUPh0V6r70EMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDEwNTZiY2Q0MjZmZDg3Y2Q2ZjQxNDdlMTMzMjE2ZDAzMTEy YjE4MWIwHhcNMjYwMTAxMTYxOTAzWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg0MGEwNzZjOTcwNGEwYWU3MTkyMjI5M2YzNTQ5MDg1MmVmYjQ4MmM1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyE6L433cTdd+Yf0esBUzWdUHOOLx KAakDcbQpQhg+icujWuom6cibwHaB6rUDXFyScE1uuGC7WnGgAZLu6Q5kehkuNOG /E2Cz5C2smt1wTtyqTIwO1E27ccq2LRi1Xq6TwNSCAT9wqNP2BsRnx6gnzOFOY1a 1VQdxdxJDOIqt8Q23qdkzzGRyxlFAoIL27uAFfPXBwT2loHEc0AJZl9ABbVESf3+ x3UnJWepaOepKAF7RB+5dx78jHzuB4QuMR4g+DZqtgl3cH9lJjjJorWLtxp/vply BfjMM/4aYbKBUvTrK+cO3zuGVzsVjbNKBkX4CQmrpv9MEh2Hy9ux4DD7JwIDAQAB o4ICDzCCAgswHQYDVR0OBBYEFECgdslwSgrnGSIpPzVJCFLvtILFMB8GA1UdIwQY MBaAFBBWvNQm/YfNb0FH4TMhbQMRKxgbMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvRUZhODFDYjloODF2UVVmaE15RnRBeEVyR0JzLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wNy9lNmY0ZTQtNjhiYi00NDk2LTkwYzct YWE4NTllMTkyYjE2LzEvUUtCMnlYQktDdWNaSWlrX05Va0lVdS0wZ3NVLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wNy9lNmY0ZTQtNjhiYi00NDk2LTkwYzctYWE4NTllMTkyYjE2 LzEvRUZhODFDYjloODF2UVVmaE15RnRBeEVyR0JzLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQAUR/qAwQB uVSgMA0GCSqGSIb3DQEBCwUAA4IBAQDO+hWbF8wUvHQHCWBlbsHl/Kne/LGj2Ul4 duJy4i1+5HBSK5NoqmwjqCMPj0GXF1TF5lPSJrfYwLqVFyOI90pFhnSbIxI7pwp2 3YccKDIV5eW4PkXJYKeCdpTksVVGs0T5LVoYj33U74T+Et2cDKDWpht7AiCM3PLs an5SrGuld2p3gsG8M8M8FfBqIiOr1xQ/KSp0neYtM3CzBZr/NsIfuVT0HEAwrqLw lnET/6VpKh2RnFQKlvvEaztUQpnvuYvh0vUTippPaGYI5rhyzvAr/l9/xwNbWe9U vGXjeibx8NgcAS3LKv0Gi6MPAzB+OvAG74r/vd/UMjW5KwSIV3BV -----END CERTIFICATE-----Generated at Thu Jan 8 16:21:38 2026 by rpki-client