This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/QfzwJ9zZ4_Yy5itclO74aRE3Vyw.roa File: QfzwJ9zZ4_Yy5itclO74aRE3Vyw.roa (raw, json) Hash identifier: E+h2lSYMuUA+dUxrDKiFwRe0QJWA1zrIznvk1K8xBqE= Subject key identifier: 41:FC:F0:27:DC:D9:E3:F6:32:E6:2B:5C:94:EE:F8:69:11:37:57:2C Certificate issuer: /CN=0ce851b6dd5d364ee19e0b38201b3e8df2624bcb Certificate serial: 019B7E391D4DD6A4A18739EB7EE76DF9F8FE Authority key identifier: 0C:E8:51:B6:DD:5D:36:4E:E1:9E:0B:38:20:1B:3E:8D:F2:62:4B:CB Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DOhRtt1dNk7hngs4IBs-jfJiS8s.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/QfzwJ9zZ4_Yy5itclO74aRE3Vyw.roa Signing time: Fri 02 Jan 2026 10:20:30 +0000 ROA not before: Fri 02 Jan 2026 10:20:30 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 25369 IP address blocks: 163.5.177.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/DOhRtt1dNk7hngs4IBs-jfJiS8s.crl rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/DOhRtt1dNk7hngs4IBs-jfJiS8s.mft rsync://rpki.ripe.net/repository/DEFAULT/DOhRtt1dNk7hngs4IBs-jfJiS8s.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 20 Jan 2026 09:01:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7e:39:1d:4d:d6:a4:a1:87:39:eb:7e:e7:6d:f9:f8:fe Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0ce851b6dd5d364ee19e0b38201b3e8df2624bcb Validity Not Before: Jan 2 10:20:30 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=41fcf027dcd9e3f632e62b5c94eef8691137572c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:0e:4a:d5:9a:c0:ce:36:6a:27:8c:67:39:4e: 92:b7:0b:de:c5:7c:e5:9b:bc:85:05:cb:4d:fe:eb: b5:a0:e5:6e:e2:74:d2:b9:45:0b:a6:96:84:04:8f: 98:2a:0c:96:fa:c0:54:57:67:1d:59:c5:5a:11:dd: a1:85:b1:53:f1:b1:56:ed:68:3d:08:d7:55:7a:5d: 99:d0:6b:c1:19:97:77:ca:e5:5d:36:f6:82:05:c8: df:3c:c9:01:e1:1c:85:1b:32:83:41:46:2f:ab:17: e3:ed:b8:1e:a3:a6:ae:7e:7b:21:7f:28:e8:d4:24: f2:bd:de:25:ff:d4:34:76:91:88:87:7e:fd:84:1b: ce:20:48:69:77:18:61:da:ed:db:f0:b3:26:b8:8f: 34:15:b6:ff:19:56:b1:e9:ed:27:3a:7f:fc:72:d3: e6:fb:49:ef:e8:87:fe:80:e5:e5:0c:9b:62:1a:90: f3:17:fb:72:44:56:89:fc:72:7b:c3:63:81:92:a8: cd:0b:06:b8:29:15:46:01:38:aa:87:ee:8b:4e:27: 79:33:87:92:46:de:b0:11:00:b8:2f:eb:93:98:52: 7c:3f:b3:83:e6:9c:41:df:a8:ea:d5:cc:4b:0c:d4: ed:c5:17:d2:e1:89:a9:94:35:24:e3:66:57:6e:4f: 13:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 41:FC:F0:27:DC:D9:E3:F6:32:E6:2B:5C:94:EE:F8:69:11:37:57:2C X509v3 Authority Key Identifier: keyid:0C:E8:51:B6:DD:5D:36:4E:E1:9E:0B:38:20:1B:3E:8D:F2:62:4B:CB X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DOhRtt1dNk7hngs4IBs-jfJiS8s.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/QfzwJ9zZ4_Yy5itclO74aRE3Vyw.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/DOhRtt1dNk7hngs4IBs-jfJiS8s.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 163.5.177.0/24 Signature Algorithm: sha256WithRSAEncryption 9a:a8:61:2e:3e:e1:5c:7c:c8:34:2f:59:86:bc:42:36:d8:85: e0:a8:10:e4:6d:c6:19:ee:64:55:20:6e:d4:3c:3c:dd:f8:d8: 43:ca:c2:2e:58:4e:7a:ea:4d:80:b2:54:f3:e1:0c:fb:3c:a3: c5:29:60:c4:f3:c1:72:bb:8e:b2:be:84:23:d2:47:b4:49:1e: 69:ab:8f:63:34:c8:34:76:db:1e:ae:32:1c:69:66:cc:ef:84: bf:05:f6:d5:55:8c:5c:28:ca:cc:39:e5:db:bb:90:50:de:17: fc:05:3f:78:ea:3b:8b:46:41:c0:7d:5c:cc:10:e5:06:68:c3: bf:d5:03:6a:34:6c:eb:ab:6b:62:78:c2:34:8f:8c:90:ff:60: 1e:41:c5:15:71:b8:a9:f8:9a:d1:20:95:68:31:66:60:d1:2e: 1b:a0:3d:68:9a:01:b4:6e:a6:ed:8f:64:28:a2:8d:9a:2c:29: 83:94:75:0a:03:db:bd:cb:7c:33:a3:aa:f8:ab:1b:d7:b7:26: 2d:84:f0:76:49:30:4b:9c:10:17:be:fb:05:7f:3f:2e:09:10: d8:f9:6c:8a:2d:86:d7:a2:df:c7:a9:78:d6:a1:91:f6:d2:05: eb:a4:d0:1b:13:b1:11:5b:42:b4:bc:b0:f4:b4:3d:4a:d8:00: c9:78:8f:c9 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt+OR1N1qShhznrfudt+fj+MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDBjZTg1MWI2ZGQ1ZDM2NGVlMTllMGIzODIwMWIzZThkZjI2 MjRiY2IwHhcNMjYwMTAyMTAyMDMwWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg0MWZjZjAyN2RjZDllM2Y2MzJlNjJiNWM5NGVlZjg2OTExMzc1NzJjMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuA5K1ZrAzjZqJ4xnOU6StwvexXzl m7yFBctN/uu1oOVu4nTSuUULppaEBI+YKgyW+sBUV2cdWcVaEd2hhbFT8bFW7Wg9 CNdVel2Z0GvBGZd3yuVdNvaCBcjfPMkB4RyFGzKDQUYvqxfj7bgeo6aufnshfyjo 1CTyvd4l/9Q0dpGIh379hBvOIEhpdxhh2u3b8LMmuI80Fbb/GVax6e0nOn/8ctPm +0nv6If+gOXlDJtiGpDzF/tyRFaJ/HJ7w2OBkqjNCwa4KRVGATiqh+6LTid5M4eS Rt6wEQC4L+uTmFJ8P7OD5pxB36jq1cxLDNTtxRfS4YmplDUk42ZXbk8T8wIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFEH88Cfc2eP2MuYrXJTu+GkRN1csMB8GA1UdIwQY MBaAFAzoUbbdXTZO4Z4LOCAbPo3yYkvLMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvRE9oUnR0MWROazdobmdzNElCcy1qZkppUzhzLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xMy9kMDJkZmItOTY3My00OWE4LTk3MWMt OWZlOTQxMDhmZjAxLzEvUWZ6d0o5elo0X1l5NWl0Y2xPNzRhUkUzVnl3LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xMy9kMDJkZmItOTY3My00OWE4LTk3MWMtOWZlOTQxMDhmZjAx LzEvRE9oUnR0MWROazdobmdzNElCcy1qZkppUzhzLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAowWxMA0G CSqGSIb3DQEBCwUAA4IBAQCaqGEuPuFcfMg0L1mGvEI22IXgqBDkbcYZ7mRVIG7U PDzd+NhDysIuWE566k2AslTz4Qz7PKPFKWDE88Fyu46yvoQj0ke0SR5pq49jNMg0 dtserjIcaWbM74S/BfbVVYxcKMrMOeXbu5BQ3hf8BT946juLRkHAfVzMEOUGaMO/ 1QNqNGzrq2tieMI0j4yQ/2AeQcUVcbip+JrRIJVoMWZg0S4boD1omgG0bqbtj2Qo oo2aLCmDlHUKA9u9y3wzo6r4qxvXtyYthPB2STBLnBAXvvsFfz8uCRDY+WyKLYbX ot/HqXjWoZH20gXrpNAbE7ERW0K0vLD0tD1K2ADJeI/J -----END CERTIFICATE-----Generated at Mon Jan 19 17:05:58 2026 by rpki-client