This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/qwNwtKL3UumY5ahQFyeQqpA27hA.roa File: qwNwtKL3UumY5ahQFyeQqpA27hA.roa (raw, json) Hash identifier: j+k9JL+kcpaQarfsYLWuVVJo3IqY+CW4mA8npBK1FyU= Subject key identifier: AB:03:70:B4:A2:F7:52:E9:98:E5:A8:50:17:27:90:AA:90:36:EE:10 Certificate issuer: /CN=0ce851b6dd5d364ee19e0b38201b3e8df2624bcb Certificate serial: 019B7E391E11912CF7E0CBC4456DDF942636 Authority key identifier: 0C:E8:51:B6:DD:5D:36:4E:E1:9E:0B:38:20:1B:3E:8D:F2:62:4B:CB Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DOhRtt1dNk7hngs4IBs-jfJiS8s.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/qwNwtKL3UumY5ahQFyeQqpA27hA.roa Signing time: Fri 02 Jan 2026 10:20:30 +0000 ROA not before: Fri 02 Jan 2026 10:20:30 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 28708 IP address blocks: 163.5.49.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/DOhRtt1dNk7hngs4IBs-jfJiS8s.crl rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/DOhRtt1dNk7hngs4IBs-jfJiS8s.mft rsync://rpki.ripe.net/repository/DEFAULT/DOhRtt1dNk7hngs4IBs-jfJiS8s.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 20 Jan 2026 13:02:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7e:39:1e:11:91:2c:f7:e0:cb:c4:45:6d:df:94:26:36 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0ce851b6dd5d364ee19e0b38201b3e8df2624bcb Validity Not Before: Jan 2 10:20:30 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=ab0370b4a2f752e998e5a850172790aa9036ee10 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:c5:da:b7:af:a7:dc:e2:15:36:1f:cb:85:83: d3:a6:25:e4:58:e1:df:ca:3f:d7:0a:82:81:12:9a: f5:72:c8:98:b1:53:05:22:a2:6e:c9:43:44:8a:ef: ca:1c:aa:63:0b:ed:e5:c1:d5:35:e4:c8:b6:6e:32: 07:6c:4b:f3:47:5c:2e:ef:e8:3c:bc:39:54:61:64: b5:6b:80:85:ee:4e:15:02:89:53:18:97:59:a6:8d: cd:88:13:b2:a0:d7:72:75:ef:d5:f3:54:4b:41:7c: a7:6a:43:f0:58:e2:48:0f:06:94:a5:66:c8:f3:01: 7d:95:a7:23:6d:9a:41:bc:5f:c0:6f:47:53:49:ec: e1:3e:16:e6:3f:07:a8:68:80:e7:7b:dc:91:5d:9c: 33:78:a3:e9:26:e7:59:2f:36:50:84:a5:f6:4b:b2: b8:5b:01:e3:72:35:98:bd:25:2b:e3:52:95:98:cd: 5e:65:6f:0f:57:30:3f:c5:08:02:59:cd:52:09:9e: 83:40:06:7c:25:de:b1:f6:63:2e:33:fc:9e:b2:a4: 0e:8c:70:3f:97:a5:5b:33:30:6b:d7:00:24:2e:1d: 57:97:b4:81:a5:1e:bf:aa:2e:7a:99:68:b2:ab:59: ab:f7:e3:2c:07:2d:f6:8a:3b:c2:32:e3:a3:ae:d2: 34:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AB:03:70:B4:A2:F7:52:E9:98:E5:A8:50:17:27:90:AA:90:36:EE:10 X509v3 Authority Key Identifier: keyid:0C:E8:51:B6:DD:5D:36:4E:E1:9E:0B:38:20:1B:3E:8D:F2:62:4B:CB X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DOhRtt1dNk7hngs4IBs-jfJiS8s.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/qwNwtKL3UumY5ahQFyeQqpA27hA.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/DOhRtt1dNk7hngs4IBs-jfJiS8s.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 163.5.49.0/24 Signature Algorithm: sha256WithRSAEncryption 93:d8:1e:79:ae:d3:f8:ae:94:0e:87:1d:9a:4a:33:e0:8d:d5: f0:4c:91:f7:71:2b:05:12:4d:87:c1:d5:b3:7a:c8:49:bf:4a: f3:6d:df:6a:d6:11:a6:71:cc:43:e4:89:0b:8c:af:09:f6:a0: fa:d4:5f:0f:db:c6:65:57:00:6f:97:0d:4b:66:1b:5a:28:55: e6:34:00:31:51:41:5f:bc:66:75:90:5a:05:78:30:fb:0e:8d: a7:68:60:31:9d:32:be:50:1a:30:ef:05:eb:c0:36:a3:c9:cf: e7:a6:a5:d8:d4:30:0e:45:be:86:80:f8:04:d0:44:12:fe:a2: d1:55:c2:2b:80:9e:ab:3b:6e:8c:6c:b4:db:5f:75:fa:b1:5f: e6:48:06:3c:0f:e7:2d:5d:c4:47:e9:dc:12:7f:b1:f1:e6:2c: 6c:ad:ca:40:6d:ab:b7:ec:37:d9:bb:ab:1d:4d:fb:ad:ae:dd: 8a:58:02:ee:bd:10:c4:a8:b7:c7:f9:b6:b9:81:bd:83:29:ae: df:49:d9:48:13:f3:87:07:55:f5:25:0e:99:85:e3:4b:4b:ab: 2e:4e:81:db:85:61:4b:03:37:27:17:b5:57:5c:67:c3:bf:0d: d8:a7:8d:4c:83:01:06:f3:ea:33:ab:82:f6:21:04:98:e6:2a: c8:d6:0f:72 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt+OR4RkSz34MvERW3flCY2MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDBjZTg1MWI2ZGQ1ZDM2NGVlMTllMGIzODIwMWIzZThkZjI2 MjRiY2IwHhcNMjYwMTAyMTAyMDMwWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhhYjAzNzBiNGEyZjc1MmU5OThlNWE4NTAxNzI3OTBhYTkwMzZlZTEwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAs8Xat6+n3OIVNh/LhYPTpiXkWOHf yj/XCoKBEpr1csiYsVMFIqJuyUNEiu/KHKpjC+3lwdU15Mi2bjIHbEvzR1wu7+g8 vDlUYWS1a4CF7k4VAolTGJdZpo3NiBOyoNdyde/V81RLQXynakPwWOJIDwaUpWbI 8wF9lacjbZpBvF/Ab0dTSezhPhbmPweoaIDne9yRXZwzeKPpJudZLzZQhKX2S7K4 WwHjcjWYvSUr41KVmM1eZW8PVzA/xQgCWc1SCZ6DQAZ8Jd6x9mMuM/yesqQOjHA/ l6VbMzBr1wAkLh1Xl7SBpR6/qi56mWiyq1mr9+MsBy32ijvCMuOjrtI0pQIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFKsDcLSi91LpmOWoUBcnkKqQNu4QMB8GA1UdIwQY MBaAFAzoUbbdXTZO4Z4LOCAbPo3yYkvLMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvRE9oUnR0MWROazdobmdzNElCcy1qZkppUzhzLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xMy9kMDJkZmItOTY3My00OWE4LTk3MWMt OWZlOTQxMDhmZjAxLzEvcXdOd3RLTDNVdW1ZNWFoUUZ5ZVFxcEEyN2hBLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xMy9kMDJkZmItOTY3My00OWE4LTk3MWMtOWZlOTQxMDhmZjAx LzEvRE9oUnR0MWROazdobmdzNElCcy1qZkppUzhzLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAowUxMA0G CSqGSIb3DQEBCwUAA4IBAQCT2B55rtP4rpQOhx2aSjPgjdXwTJH3cSsFEk2HwdWz eshJv0rzbd9q1hGmccxD5IkLjK8J9qD61F8P28ZlVwBvlw1LZhtaKFXmNAAxUUFf vGZ1kFoFeDD7Do2naGAxnTK+UBow7wXrwDajyc/npqXY1DAORb6GgPgE0EQS/qLR VcIrgJ6rO26MbLTbX3X6sV/mSAY8D+ctXcRH6dwSf7Hx5ixsrcpAbau37DfZu6sd Tfutrt2KWALuvRDEqLfH+ba5gb2DKa7fSdlIE/OHB1X1JQ6ZheNLS6suToHbhWFL AzcnF7VXXGfDvw3Yp41MgwEG8+ozq4L2IQSY5irI1g9y -----END CERTIFICATE-----Generated at Mon Jan 19 20:00:45 2026 by rpki-client