This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0c/ac58ea-c459-48ca-b82b-4dec4dafee49/1/qGH6yU4aIkOXLQKfcnJ1kJ2Unag.roa File: qGH6yU4aIkOXLQKfcnJ1kJ2Unag.roa (raw, json) Hash identifier: FOuKpD7NfgxxYtZ14sQq5svvBJrsCsJWTjWsl8yV8YQ= Subject key identifier: A8:61:FA:C9:4E:1A:22:43:97:2D:02:9F:72:72:75:90:9D:94:9D:A8 Certificate issuer: /CN=86d648bdba965461b1e8c11b9dd436c61382873c Certificate serial: 019B7F1449D62D1B8A3625782AD8DBD15DC9 Authority key identifier: 86:D6:48:BD:BA:96:54:61:B1:E8:C1:1B:9D:D4:36:C6:13:82:87:3C Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/htZIvbqWVGGx6MEbndQ2xhOChzw.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0c/ac58ea-c459-48ca-b82b-4dec4dafee49/1/qGH6yU4aIkOXLQKfcnJ1kJ2Unag.roa Signing time: Fri 02 Jan 2026 14:19:54 +0000 ROA not before: Fri 02 Jan 2026 14:19:54 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 48330 IP address blocks: 147.45.115.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0c/ac58ea-c459-48ca-b82b-4dec4dafee49/1/htZIvbqWVGGx6MEbndQ2xhOChzw.crl rsync://rpki.ripe.net/repository/DEFAULT/0c/ac58ea-c459-48ca-b82b-4dec4dafee49/1/htZIvbqWVGGx6MEbndQ2xhOChzw.mft rsync://rpki.ripe.net/repository/DEFAULT/htZIvbqWVGGx6MEbndQ2xhOChzw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 21 Jan 2026 03:00:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7f:14:49:d6:2d:1b:8a:36:25:78:2a:d8:db:d1:5d:c9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=86d648bdba965461b1e8c11b9dd436c61382873c Validity Not Before: Jan 2 14:19:54 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=a861fac94e1a2243972d029f727275909d949da8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:95:f1:b5:81:78:5b:1d:7b:d1:23:40:19:74:48: ad:16:84:d6:ca:a9:70:dc:b2:43:55:56:f9:c4:d0: 04:db:04:51:cd:60:f7:b5:9b:a2:f3:2e:1e:9a:4f: f9:c7:7d:35:a0:70:e5:4e:88:6a:b0:4a:f5:9c:f5: 05:cd:8e:c0:00:67:de:33:5f:07:f9:55:55:2f:03: e8:19:7d:9b:6f:b0:a5:5d:92:34:7a:38:f2:19:ad: 5d:d6:49:1d:fb:e1:0f:dd:1c:e5:b2:de:84:7a:de: 21:82:8d:21:c3:be:c7:3d:11:e2:36:e4:fe:ce:be: 73:fc:58:e7:c9:7a:70:d3:65:f6:98:a5:1c:3e:d3: b1:f5:de:cd:7f:9e:a7:45:65:73:46:5d:4d:a3:3f: 08:e7:ab:08:ea:4f:89:03:dd:33:d1:96:2e:75:e4: 71:96:bd:88:b4:60:f1:50:f7:6d:04:21:61:1a:2d: 2a:6c:f9:d2:cd:40:1a:79:f5:c0:e3:c8:20:c7:26: 88:ec:87:10:de:94:39:bd:f5:26:a9:db:b4:2e:c6: a8:83:e8:71:78:fc:5d:b0:2b:66:24:ad:91:ae:68: ac:e5:aa:70:b4:3c:fa:ea:90:c7:fb:22:f3:7e:fe: f8:de:bf:01:5a:ac:e4:1f:1c:28:8b:f1:b0:b6:b8: 94:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A8:61:FA:C9:4E:1A:22:43:97:2D:02:9F:72:72:75:90:9D:94:9D:A8 X509v3 Authority Key Identifier: keyid:86:D6:48:BD:BA:96:54:61:B1:E8:C1:1B:9D:D4:36:C6:13:82:87:3C X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/htZIvbqWVGGx6MEbndQ2xhOChzw.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/ac58ea-c459-48ca-b82b-4dec4dafee49/1/qGH6yU4aIkOXLQKfcnJ1kJ2Unag.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/ac58ea-c459-48ca-b82b-4dec4dafee49/1/htZIvbqWVGGx6MEbndQ2xhOChzw.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 147.45.115.0/24 Signature Algorithm: sha256WithRSAEncryption 4c:4e:8a:b0:01:3e:7e:e5:2d:58:d4:e9:65:6a:79:85:cc:f0: 8b:ba:08:65:f9:10:12:f8:6a:d4:21:db:4e:fd:e6:5f:24:c7: 36:47:60:95:a9:36:cb:c6:b5:86:64:ad:4a:e3:aa:77:80:4e: a8:4e:71:7a:24:5d:67:6e:ce:6d:57:63:ea:c6:2c:dd:1e:2a: bb:f4:d4:d4:6e:22:83:22:8f:fd:ba:25:41:78:d8:c8:6d:cb: 41:1e:d3:b4:36:5c:63:c9:40:ed:04:39:5f:b6:ba:fe:2f:f4: 43:09:aa:22:00:f8:4e:2b:40:36:09:b7:31:a6:80:50:18:0f: dd:5c:b7:05:79:d9:dd:fb:bb:34:67:3a:32:60:8e:d7:c2:27: 64:3f:f8:0f:0f:d5:e4:bd:e9:5a:5e:de:ff:2e:0b:91:fa:37: 5f:53:4a:9a:52:77:16:9e:ae:47:5b:66:c3:d6:88:01:31:a6: ee:51:92:23:97:18:43:4b:8f:28:11:10:b4:50:99:13:ce:e2: 38:4c:0e:8e:36:4a:b2:12:69:33:99:8d:b6:10:83:22:87:09: fd:a4:d3:a7:55:bb:69:dc:65:b3:49:58:61:93:c4:67:ad:b0: 6c:25:88:fc:d6:fd:75:8e:fa:e1:5f:54:ad:c1:46:12:13:cd: 07:17:2a:ca -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt/FEnWLRuKNiV4Ktjb0V3JMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDg2ZDY0OGJkYmE5NjU0NjFiMWU4YzExYjlkZDQzNmM2MTM4 Mjg3M2MwHhcNMjYwMTAyMTQxOTU0WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhhODYxZmFjOTRlMWEyMjQzOTcyZDAyOWY3MjcyNzU5MDlkOTQ5ZGE4MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAlfG1gXhbHXvRI0AZdEitFoTWyqlw 3LJDVVb5xNAE2wRRzWD3tZui8y4emk/5x301oHDlTohqsEr1nPUFzY7AAGfeM18H +VVVLwPoGX2bb7ClXZI0ejjyGa1d1kkd++EP3Rzlst6Eet4hgo0hw77HPRHiNuT+ zr5z/FjnyXpw02X2mKUcPtOx9d7Nf56nRWVzRl1Noz8I56sI6k+JA90z0ZYudeRx lr2ItGDxUPdtBCFhGi0qbPnSzUAaefXA48ggxyaI7IcQ3pQ5vfUmqdu0Lsaog+hx ePxdsCtmJK2Rrmis5apwtDz66pDH+yLzfv743r8BWqzkHxwoi/GwtriUEwIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFKhh+slOGiJDly0Cn3JydZCdlJ2oMB8GA1UdIwQY MBaAFIbWSL26llRhsejBG53UNsYTgoc8MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvaHRaSXZicVdWR0d4Nk1FYm5kUTJ4aE9DaHp3LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wYy9hYzU4ZWEtYzQ1OS00OGNhLWI4MmIt NGRlYzRkYWZlZTQ5LzEvcUdINnlVNGFJa09YTFFLZmNuSjFrSjJVbmFnLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wYy9hYzU4ZWEtYzQ1OS00OGNhLWI4MmItNGRlYzRkYWZlZTQ5 LzEvaHRaSXZicVdWR0d4Nk1FYm5kUTJ4aE9DaHp3LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAky1zMA0G CSqGSIb3DQEBCwUAA4IBAQBMToqwAT5+5S1Y1OllanmFzPCLughl+RAS+GrUIdtO /eZfJMc2R2CVqTbLxrWGZK1K46p3gE6oTnF6JF1nbs5tV2PqxizdHiq79NTUbiKD Io/9uiVBeNjIbctBHtO0NlxjyUDtBDlftrr+L/RDCaoiAPhOK0A2CbcxpoBQGA/d XLcFednd+7s0ZzoyYI7XwidkP/gPD9XkvelaXt7/LguR+jdfU0qaUncWnq5HW2bD 1ogBMabuUZIjlxhDS48oERC0UJkTzuI4TA6ONkqyEmkzmY22EIMihwn9pNOnVbtp 3GWzSVhhk8RnrbBsJYj81v11jvrhX1StwUYSE80HFyrK -----END CERTIFICATE-----Generated at Tue Jan 20 11:09:43 2026 by rpki-client