This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/QtTUo1r01P286pWzdLaJqvlyPLQ.roa File: QtTUo1r01P286pWzdLaJqvlyPLQ.roa (raw, json) Hash identifier: rRifhcFkP4AMYtRZosJQhPidGeyjbIDymvwzCPCqGaI= Subject key identifier: 42:D4:D4:A3:5A:F4:D4:FD:BC:EA:95:B3:74:B6:89:AA:F9:72:3C:B4 Certificate issuer: /CN=0ce851b6dd5d364ee19e0b38201b3e8df2624bcb Certificate serial: 019AA017D03305F15AB99B066FB46A41E068 Authority key identifier: 0C:E8:51:B6:DD:5D:36:4E:E1:9E:0B:38:20:1B:3E:8D:F2:62:4B:CB Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DOhRtt1dNk7hngs4IBs-jfJiS8s.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/QtTUo1r01P286pWzdLaJqvlyPLQ.roa Signing time: Thu 20 Nov 2025 07:08:26 +0000 ROA not before: Thu 20 Nov 2025 07:08:26 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 9304 IP address blocks: 163.5.28.0/24 maxlen: 24 163.5.119.0/24 maxlen: 24 163.5.136.0/24 maxlen: 24 163.5.161.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/DOhRtt1dNk7hngs4IBs-jfJiS8s.crl rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/DOhRtt1dNk7hngs4IBs-jfJiS8s.mft rsync://rpki.ripe.net/repository/DEFAULT/DOhRtt1dNk7hngs4IBs-jfJiS8s.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 04 Dec 2025 21:00:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:a0:17:d0:33:05:f1:5a:b9:9b:06:6f:b4:6a:41:e0:68 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0ce851b6dd5d364ee19e0b38201b3e8df2624bcb Validity Not Before: Nov 20 07:08:26 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=42d4d4a35af4d4fdbcea95b374b689aaf9723cb4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:2b:8e:74:04:54:20:70:74:47:9a:4d:ec:4e: 9c:a6:ab:bb:26:45:54:a8:a5:07:d6:bb:62:94:f8: 5d:96:b5:98:e7:d8:a1:40:46:44:c6:65:63:ef:76: f2:4a:1b:76:69:fe:71:36:03:a3:b1:81:37:2a:e3: ea:a4:c6:9c:ca:53:b7:ca:15:f5:2e:9f:39:74:de: 72:2c:95:16:ca:a2:1a:f5:96:bf:b6:2c:65:be:de: 68:28:af:42:54:59:2b:ee:ce:6d:48:01:1d:82:27: 0d:46:5b:7b:9e:a9:44:5a:06:f9:fe:d2:42:c3:e9: 77:54:42:eb:c8:1e:e5:4e:c0:e2:37:0e:b3:20:81: a8:f9:93:e4:bb:cb:1a:dc:33:c3:bd:8c:77:0a:0b: 34:12:e6:b4:20:6d:cf:03:29:9d:61:17:66:41:0e: ad:70:c3:96:2e:d0:bf:f4:19:c7:a9:e4:76:1a:4a: a2:0c:a9:2e:a4:ef:dc:c0:30:d7:04:82:b0:ec:ec: 0b:8d:06:ee:8c:d7:ca:61:bf:08:4e:6c:71:69:e1: ff:fb:6a:d2:9f:e2:fb:95:9f:05:c5:6f:de:f2:b7: 5e:39:18:23:c4:7e:e9:e5:f1:13:99:2c:8d:b3:47: c5:39:fb:26:d2:14:d8:8a:9c:b0:2f:57:9e:88:03: b7:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 42:D4:D4:A3:5A:F4:D4:FD:BC:EA:95:B3:74:B6:89:AA:F9:72:3C:B4 X509v3 Authority Key Identifier: keyid:0C:E8:51:B6:DD:5D:36:4E:E1:9E:0B:38:20:1B:3E:8D:F2:62:4B:CB X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DOhRtt1dNk7hngs4IBs-jfJiS8s.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/QtTUo1r01P286pWzdLaJqvlyPLQ.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/DOhRtt1dNk7hngs4IBs-jfJiS8s.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 163.5.28.0/24 163.5.119.0/24 163.5.136.0/24 163.5.161.0/24 Signature Algorithm: sha256WithRSAEncryption 37:77:78:84:e5:e1:92:92:1f:96:47:81:94:0c:d6:99:f8:c7: fd:cb:d9:e4:5c:95:b9:34:bd:b3:68:c8:53:f4:a9:ba:9f:55: c0:61:e3:7f:35:d0:13:fd:96:fe:15:f7:8c:58:d5:f2:d1:f1: 1e:a0:13:c2:8b:e9:fa:a5:22:1d:b1:c9:88:cf:06:30:1a:c2: ee:fa:da:30:14:f3:5b:f6:4f:ce:82:28:e6:27:57:12:63:99: 19:52:a0:c2:28:1e:9c:52:d7:54:6b:0d:6f:52:61:d8:6d:50: 54:bc:c3:d2:51:dc:e8:92:b9:5c:69:48:ac:67:23:c0:89:82: 7f:2a:40:dc:1f:3f:35:c6:d9:d8:1a:8c:4a:02:ec:31:11:e9: b6:62:e8:52:f0:35:54:b8:e2:c1:d7:5c:4d:92:55:ba:9a:7a: ac:fd:e8:de:90:29:43:c0:41:18:6b:67:21:d8:af:54:53:b1: 8c:a4:b0:a9:28:5a:0b:0f:15:0d:ae:bc:83:c8:63:f7:04:f4: 6b:6c:b2:49:b3:4e:55:f2:d9:26:5a:ee:dc:13:6d:14:71:3e: ee:a3:6e:a5:ea:f5:aa:c4:7b:34:00:56:c7:4a:75:4d:eb:43: a1:9b:c2:a2:f4:aa:cc:1c:9d:31:f2:7e:21:ab:6c:87:b9:0a: 52:37:be:ff -----BEGIN CERTIFICATE----- MIIFDzCCA/egAwIBAgISAZqgF9AzBfFauZsGb7RqQeBoMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDBjZTg1MWI2ZGQ1ZDM2NGVlMTllMGIzODIwMWIzZThkZjI2 MjRiY2IwHhcNMjUxMTIwMDcwODI2WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg0MmQ0ZDRhMzVhZjRkNGZkYmNlYTk1YjM3NGI2ODlhYWY5NzIzY2I0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAoyuOdARUIHB0R5pN7E6cpqu7JkVU qKUH1rtilPhdlrWY59ihQEZExmVj73bySht2af5xNgOjsYE3KuPqpMacylO3yhX1 Lp85dN5yLJUWyqIa9Za/tixlvt5oKK9CVFkr7s5tSAEdgicNRlt7nqlEWgb5/tJC w+l3VELryB7lTsDiNw6zIIGo+ZPku8sa3DPDvYx3Cgs0Eua0IG3PAymdYRdmQQ6t cMOWLtC/9BnHqeR2GkqiDKkupO/cwDDXBIKw7OwLjQbujNfKYb8ITmxxaeH/+2rS n+L7lZ8FxW/e8rdeORgjxH7p5fETmSyNs0fFOfsm0hTYipywL1eeiAO39wIDAQAB o4ICGzCCAhcwHQYDVR0OBBYEFELU1KNa9NT9vOqVs3S2iar5cjy0MB8GA1UdIwQY MBaAFAzoUbbdXTZO4Z4LOCAbPo3yYkvLMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvRE9oUnR0MWROazdobmdzNElCcy1qZkppUzhzLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xMy9kMDJkZmItOTY3My00OWE4LTk3MWMt OWZlOTQxMDhmZjAxLzEvUXRUVW8xcjAxUDI4NnBXemRMYUpxdmx5UExRLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xMy9kMDJkZmItOTY3My00OWE4LTk3MWMtOWZlOTQxMDhmZjAx LzEvRE9oUnR0MWROazdobmdzNElCcy1qZkppUzhzLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMDEGCCsGAQUFBwEHAQH/BCIwIDAeBAIAATAYAwQAowUcAwQA owV3AwQAowWIAwQAowWhMA0GCSqGSIb3DQEBCwUAA4IBAQA3d3iE5eGSkh+WR4GU DNaZ+Mf9y9nkXJW5NL2zaMhT9Km6n1XAYeN/NdAT/Zb+FfeMWNXy0fEeoBPCi+n6 pSIdscmIzwYwGsLu+towFPNb9k/OgijmJ1cSY5kZUqDCKB6cUtdUaw1vUmHYbVBU vMPSUdzokrlcaUisZyPAiYJ/KkDcHz81xtnYGoxKAuwxEem2YuhS8DVUuOLB11xN klW6mnqs/ejekClDwEEYa2ch2K9UU7GMpLCpKFoLDxUNrryDyGP3BPRrbLJJs05V 8tkmWu7cE20UcT7uo26l6vWqxHs0AFbHSnVN60Ohm8Ki9KrMHJ0x8n4hq2yHuQpS N77/ -----END CERTIFICATE-----Generated at Thu Dec 4 04:21:37 2025 by rpki-client