This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0e/3555fe-12cd-402a-a810-5554d6e1686f/1/kQJY4DUZryibaNQIAfD_kiKNlUk.roa File: kQJY4DUZryibaNQIAfD_kiKNlUk.roa (raw, json) Hash identifier: QaqpJ1XqKkczY9X6YMxGvGZLnjcKcr4XM2RgD00Su78= Subject key identifier: 91:02:58:E0:35:19:AF:28:9B:68:D4:08:01:F0:FF:92:22:8D:95:49 Certificate issuer: /CN=ab0952c8ba8dadb1d34de6c6a93864a609fc41ec Certificate serial: 019B7AC7D1B0B21DFE04653192BE28CDA4F3 Authority key identifier: AB:09:52:C8:BA:8D:AD:B1:D3:4D:E6:C6:A9:38:64:A6:09:FC:41:EC Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qwlSyLqNrbHTTebGqThkpgn8Qew.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0e/3555fe-12cd-402a-a810-5554d6e1686f/1/kQJY4DUZryibaNQIAfD_kiKNlUk.roa Signing time: Thu 01 Jan 2026 18:17:54 +0000 ROA not before: Thu 01 Jan 2026 18:17:54 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 50485 IP address blocks: 159.148.231.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0e/3555fe-12cd-402a-a810-5554d6e1686f/1/qwlSyLqNrbHTTebGqThkpgn8Qew.crl rsync://rpki.ripe.net/repository/DEFAULT/0e/3555fe-12cd-402a-a810-5554d6e1686f/1/qwlSyLqNrbHTTebGqThkpgn8Qew.mft rsync://rpki.ripe.net/repository/DEFAULT/qwlSyLqNrbHTTebGqThkpgn8Qew.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 20 Jan 2026 16:55:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7a:c7:d1:b0:b2:1d:fe:04:65:31:92:be:28:cd:a4:f3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ab0952c8ba8dadb1d34de6c6a93864a609fc41ec Validity Not Before: Jan 1 18:17:54 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=910258e03519af289b68d40801f0ff92228d9549 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9b:16:9e:28:5b:52:64:c1:ee:44:d1:27:71:49: 78:b1:4b:8c:81:ba:35:29:d4:c5:7b:c1:a9:97:f1: f1:b1:ff:67:5f:1e:32:d1:a8:28:c8:48:8d:6e:9d: 7f:b3:28:02:00:6e:a9:32:dd:20:07:b3:24:17:fd: 39:8b:49:13:fc:c1:69:f2:06:b5:da:70:98:8d:9f: 27:16:4c:4e:0f:c6:9f:3d:f2:87:d9:2c:94:84:07: 57:7c:fb:7f:a6:8b:41:3b:78:07:5a:6d:86:cc:80: 6d:7b:fb:75:d5:00:78:a4:74:29:97:9e:39:fc:67: 97:2f:19:32:25:e5:ea:39:ce:27:5c:3c:76:60:a7: ec:86:41:5f:92:fe:7c:f9:5a:5f:c4:eb:0f:2c:f6: e2:aa:d5:83:58:3e:47:30:97:54:bf:f2:5d:2d:4d: e2:c7:a0:0f:6c:af:1e:12:dc:de:b4:9d:46:a7:5c: 44:50:21:c6:28:8f:10:7b:b8:f9:84:ad:ba:d4:aa: 72:5c:4f:6e:0f:97:9e:40:84:b6:a1:2f:9b:cd:d3: ee:78:b8:c4:90:11:9f:01:67:0c:43:39:34:e3:6a: d2:1a:59:59:cf:3f:65:95:f7:b8:0e:12:04:18:af: 8e:eb:5e:9e:99:ca:cf:7f:e5:18:01:97:99:32:c0: 35:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 91:02:58:E0:35:19:AF:28:9B:68:D4:08:01:F0:FF:92:22:8D:95:49 X509v3 Authority Key Identifier: keyid:AB:09:52:C8:BA:8D:AD:B1:D3:4D:E6:C6:A9:38:64:A6:09:FC:41:EC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qwlSyLqNrbHTTebGqThkpgn8Qew.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0e/3555fe-12cd-402a-a810-5554d6e1686f/1/kQJY4DUZryibaNQIAfD_kiKNlUk.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/0e/3555fe-12cd-402a-a810-5554d6e1686f/1/qwlSyLqNrbHTTebGqThkpgn8Qew.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 159.148.231.0/24 Signature Algorithm: sha256WithRSAEncryption 82:04:a8:25:8d:56:63:f1:f5:e5:5c:57:bc:69:84:da:34:75: 19:2c:8d:e4:0f:18:f9:b6:fb:79:ec:08:87:4f:03:e5:49:cf: 21:9c:e1:7d:93:e5:7f:57:89:80:df:a8:cb:b5:b6:0d:0b:0e: f4:df:dc:26:67:f8:18:1e:8d:c1:d3:e8:ab:55:60:a2:da:52: 66:f5:16:1c:af:d0:98:55:9b:1a:46:b6:af:15:18:90:d7:ff: 47:09:cb:38:80:9a:ec:69:2f:29:c3:43:ff:e9:6b:12:b0:c7: 33:57:35:ee:f0:80:dc:ac:5b:37:35:dd:b5:32:2b:a9:24:7a: 12:1b:40:c4:36:15:9f:ea:35:bf:26:c7:01:88:ab:3d:b0:e3: d1:a0:a3:3c:28:a3:f0:b9:cb:55:bf:41:81:61:1b:13:bd:56: 8c:e3:3e:c3:b7:c4:8a:b6:29:21:a3:cc:3e:7a:ac:c9:5b:d9: b3:8d:82:ec:8d:f5:95:b7:ad:3d:ec:14:de:b4:fa:12:06:0d: 0a:cb:99:bf:ce:16:da:0a:1c:d3:08:59:3a:af:f1:2f:73:37: c1:e9:7f:62:d5:aa:0f:19:a8:3a:9b:c9:b7:a6:05:75:f9:2b: e9:98:d9:29:1e:9d:3d:71:58:81:bb:f1:09:46:ab:1c:52:4d: 6a:e6:e0:d7 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt6x9Gwsh3+BGUxkr4ozaTzMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGFiMDk1MmM4YmE4ZGFkYjFkMzRkZTZjNmE5Mzg2NGE2MDlm YzQxZWMwHhcNMjYwMTAxMTgxNzU0WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg5MTAyNThlMDM1MTlhZjI4OWI2OGQ0MDgwMWYwZmY5MjIyOGQ5NTQ5MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmxaeKFtSZMHuRNEncUl4sUuMgbo1 KdTFe8Gpl/Hxsf9nXx4y0agoyEiNbp1/sygCAG6pMt0gB7MkF/05i0kT/MFp8ga1 2nCYjZ8nFkxOD8afPfKH2SyUhAdXfPt/potBO3gHWm2GzIBte/t11QB4pHQpl545 /GeXLxkyJeXqOc4nXDx2YKfshkFfkv58+VpfxOsPLPbiqtWDWD5HMJdUv/JdLU3i x6APbK8eEtzetJ1Gp1xEUCHGKI8Qe7j5hK261KpyXE9uD5eeQIS2oS+bzdPueLjE kBGfAWcMQzk042rSGllZzz9llfe4DhIEGK+O616emcrPf+UYAZeZMsA18wIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFJECWOA1Ga8om2jUCAHw/5IijZVJMB8GA1UdIwQY MBaAFKsJUsi6ja2x003mxqk4ZKYJ/EHsMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvcXdsU3lMcU5yYkhUVGViR3FUaGtwZ244UWV3LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wZS8zNTU1ZmUtMTJjZC00MDJhLWE4MTAt NTU1NGQ2ZTE2ODZmLzEva1FKWTREVVpyeWliYU5RSUFmRF9raUtObFVrLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wZS8zNTU1ZmUtMTJjZC00MDJhLWE4MTAtNTU1NGQ2ZTE2ODZm LzEvcXdsU3lMcU5yYkhUVGViR3FUaGtwZ244UWV3LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAn5TnMA0G CSqGSIb3DQEBCwUAA4IBAQCCBKgljVZj8fXlXFe8aYTaNHUZLI3kDxj5tvt57AiH TwPlSc8hnOF9k+V/V4mA36jLtbYNCw7039wmZ/gYHo3B0+irVWCi2lJm9RYcr9CY VZsaRravFRiQ1/9HCcs4gJrsaS8pw0P/6WsSsMczVzXu8IDcrFs3Nd21MiupJHoS G0DENhWf6jW/JscBiKs9sOPRoKM8KKPwuctVv0GBYRsTvVaM4z7Dt8SKtikho8w+ eqzJW9mzjYLsjfWVt6097BTetPoSBg0Ky5m/zhbaChzTCFk6r/EvczfB6X9i1aoP Gag6m8m3pgV1+SvpmNkpHp09cViBu/EJRqscUk1q5uDX -----END CERTIFICATE-----Generated at Mon Jan 19 20:00:50 2026 by rpki-client