This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0d/dd8096-14cc-488d-9257-c515f354cc5a/1/qltZRt6yv2xmd-YFzKK4-T95t70.roa File: qltZRt6yv2xmd-YFzKK4-T95t70.roa (raw, json) Hash identifier: ouYg4rusjDVFIksWY2y+Jv/jtKdXu+HEE/CHgFLthz4= Subject key identifier: AA:5B:59:46:DE:B2:BF:6C:66:77:E6:05:CC:A2:B8:F9:3F:79:B7:BD Certificate issuer: /CN=ad0da43b4a5d3db78ba3f774e5b31b77037202d5 Certificate serial: 019B7B35E9CE4F378A2A9FD1C07F13766FE9 Authority key identifier: AD:0D:A4:3B:4A:5D:3D:B7:8B:A3:F7:74:E5:B3:1B:77:03:72:02:D5 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rQ2kO0pdPbeLo_d05bMbdwNyAtU.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0d/dd8096-14cc-488d-9257-c515f354cc5a/1/qltZRt6yv2xmd-YFzKK4-T95t70.roa Signing time: Thu 01 Jan 2026 20:18:09 +0000 ROA not before: Thu 01 Jan 2026 20:18:09 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 57844 IP address blocks: 45.10.150.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0d/dd8096-14cc-488d-9257-c515f354cc5a/1/rQ2kO0pdPbeLo_d05bMbdwNyAtU.crl rsync://rpki.ripe.net/repository/DEFAULT/0d/dd8096-14cc-488d-9257-c515f354cc5a/1/rQ2kO0pdPbeLo_d05bMbdwNyAtU.mft rsync://rpki.ripe.net/repository/DEFAULT/rQ2kO0pdPbeLo_d05bMbdwNyAtU.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 22 Jan 2026 08:01:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7b:35:e9:ce:4f:37:8a:2a:9f:d1:c0:7f:13:76:6f:e9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ad0da43b4a5d3db78ba3f774e5b31b77037202d5 Validity Not Before: Jan 1 20:18:09 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=aa5b5946deb2bf6c6677e605cca2b8f93f79b7bd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f8:dd:17:74:28:33:0b:d8:2b:da:93:dd:61:40: f5:20:87:0c:d9:95:e9:1b:72:25:be:e9:b3:30:12: 5f:f3:9a:fc:6d:c4:52:b8:bf:16:34:fe:3f:18:e1: 07:e4:3b:50:7b:91:40:ec:e5:3e:89:8e:b9:65:3a: d1:58:8f:7e:f5:c3:e4:6c:2c:41:26:c4:dc:74:41: dc:94:95:7b:17:f9:e4:c7:e4:83:50:38:78:ed:1d: ea:b3:85:b8:17:8e:fc:70:e1:2d:25:e8:68:b7:9d: a5:a8:8e:24:a1:a2:56:bc:e2:4e:79:2b:d9:21:ba: 29:d5:2d:1d:54:f9:62:0c:05:2f:36:5c:95:fb:58: a0:e1:f8:e0:92:bd:ff:33:b1:e3:10:a4:78:bc:87: 55:b8:b2:ac:fe:ac:4e:24:82:5a:97:bb:bd:ec:b2: e4:62:24:28:26:3b:22:32:58:fc:47:0f:80:67:c1: 86:72:c5:6e:e8:de:55:59:89:4f:3d:03:60:20:72: 43:62:f7:23:6e:8f:e2:98:5e:76:d3:fb:3e:86:1c: b2:99:8d:6d:22:a9:95:2e:b2:6b:fa:ca:a3:0e:44: 5f:33:e1:13:0c:85:99:54:63:ad:f9:a9:e2:20:a8: 3d:99:5d:7c:61:28:d8:0e:af:4c:f0:24:ea:0d:64: d3:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AA:5B:59:46:DE:B2:BF:6C:66:77:E6:05:CC:A2:B8:F9:3F:79:B7:BD X509v3 Authority Key Identifier: keyid:AD:0D:A4:3B:4A:5D:3D:B7:8B:A3:F7:74:E5:B3:1B:77:03:72:02:D5 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rQ2kO0pdPbeLo_d05bMbdwNyAtU.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/dd8096-14cc-488d-9257-c515f354cc5a/1/qltZRt6yv2xmd-YFzKK4-T95t70.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/dd8096-14cc-488d-9257-c515f354cc5a/1/rQ2kO0pdPbeLo_d05bMbdwNyAtU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 45.10.150.0/24 Signature Algorithm: sha256WithRSAEncryption 96:3d:e3:b3:d2:83:21:0b:f4:65:2d:38:92:c7:72:5a:c4:ab: 9d:1e:59:6c:ce:f8:c2:c3:ff:67:32:f6:d4:85:d5:ea:54:76: 20:75:70:8f:0f:cb:e2:e5:1a:d4:46:42:1a:d0:68:87:c3:c0: a8:7e:0f:08:76:3d:12:59:70:7e:e4:cb:ac:43:6b:c7:87:7e: f9:3f:3d:d9:8e:66:e3:d7:6c:fd:6b:c4:20:f9:6f:93:ee:42: 35:11:6e:88:a0:75:b9:3a:1d:83:1b:35:5c:10:d8:a8:49:d0: dd:b4:e1:a0:29:82:eb:df:bd:88:68:76:bc:f4:1c:27:69:89: 84:22:0c:54:ed:67:87:7d:13:43:77:98:60:9d:e8:23:6e:45: e5:f5:69:2a:2c:98:22:6c:a8:90:20:9d:fc:b9:95:91:c5:4e: bf:e6:6e:00:5e:f6:f1:51:8c:06:42:85:5e:9c:63:bd:32:db: 59:3e:65:c0:60:54:ad:95:ae:d5:5f:a5:ef:65:24:dc:be:e5: 79:5a:b4:db:93:dd:17:d5:f6:f6:ab:ee:5d:5d:90:7d:cf:18: a1:1f:fa:54:d9:91:c0:80:42:09:b1:4c:7b:71:67:74:8c:93: fd:95:87:67:ec:a6:88:c6:6d:4e:f4:80:4d:1c:22:38:e4:3c: 39:75:36:0d -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt7NenOTzeKKp/RwH8Tdm/pMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGFkMGRhNDNiNGE1ZDNkYjc4YmEzZjc3NGU1YjMxYjc3MDM3 MjAyZDUwHhcNMjYwMTAxMjAxODA5WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhhYTViNTk0NmRlYjJiZjZjNjY3N2U2MDVjY2EyYjhmOTNmNzliN2JkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA+N0XdCgzC9gr2pPdYUD1IIcM2ZXp G3IlvumzMBJf85r8bcRSuL8WNP4/GOEH5DtQe5FA7OU+iY65ZTrRWI9+9cPkbCxB JsTcdEHclJV7F/nkx+SDUDh47R3qs4W4F478cOEtJehot52lqI4koaJWvOJOeSvZ Ibop1S0dVPliDAUvNlyV+1ig4fjgkr3/M7HjEKR4vIdVuLKs/qxOJIJal7u97LLk YiQoJjsiMlj8Rw+AZ8GGcsVu6N5VWYlPPQNgIHJDYvcjbo/imF520/s+hhyymY1t IqmVLrJr+sqjDkRfM+ETDIWZVGOt+aniIKg9mV18YSjYDq9M8CTqDWTTYwIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFKpbWUbesr9sZnfmBcyiuPk/ebe9MB8GA1UdIwQY MBaAFK0NpDtKXT23i6P3dOWzG3cDcgLVMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvclEya08wcGRQYmVMb19kMDViTWJkd055QXRVLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wZC9kZDgwOTYtMTRjYy00ODhkLTkyNTct YzUxNWYzNTRjYzVhLzEvcWx0WlJ0Nnl2MnhtZC1ZRnpLSzQtVDk1dDcwLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wZC9kZDgwOTYtMTRjYy00ODhkLTkyNTctYzUxNWYzNTRjYzVh LzEvclEya08wcGRQYmVMb19kMDViTWJkd055QXRVLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQALQqWMA0G CSqGSIb3DQEBCwUAA4IBAQCWPeOz0oMhC/RlLTiSx3JaxKudHllszvjCw/9nMvbU hdXqVHYgdXCPD8vi5RrURkIa0GiHw8Cofg8Idj0SWXB+5MusQ2vHh375Pz3Zjmbj 12z9a8Qg+W+T7kI1EW6IoHW5Oh2DGzVcENioSdDdtOGgKYLr372IaHa89BwnaYmE IgxU7WeHfRNDd5hgnegjbkXl9WkqLJgibKiQIJ38uZWRxU6/5m4AXvbxUYwGQoVe nGO9MttZPmXAYFStla7VX6XvZSTcvuV5WrTbk90X1fb2q+5dXZB9zxihH/pU2ZHA gEIJsUx7cWd0jJP9lYdn7KaIxm1O9IBNHCI45Dw5dTYN -----END CERTIFICATE-----Generated at Wed Jan 21 15:38:16 2026 by rpki-client