This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/14/529e84-fea1-4429-83b2-df823e4db1ea/1/qnWwXhhJcnVpMqzX0sS_LBIgc-Y.roa File: qnWwXhhJcnVpMqzX0sS_LBIgc-Y.roa (raw, json) Hash identifier: fSr8iYHzRyz3og2XeC386xHwKA+y9giY/k8ghEC9Tks= Subject key identifier: AA:75:B0:5E:18:49:72:75:69:32:AC:D7:D2:C4:BF:2C:12:20:73:E6 Certificate issuer: /CN=9ef27fae1530ea7167070cf12c486811d8e0bac5 Certificate serial: 019B7CED11AFA5C52D6F587D4D24CF56A164 Authority key identifier: 9E:F2:7F:AE:15:30:EA:71:67:07:0C:F1:2C:48:68:11:D8:E0:BA:C5 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nvJ_rhUw6nFnBwzxLEhoEdjgusU.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/14/529e84-fea1-4429-83b2-df823e4db1ea/1/qnWwXhhJcnVpMqzX0sS_LBIgc-Y.roa Signing time: Fri 02 Jan 2026 04:17:49 +0000 ROA not before: Fri 02 Jan 2026 04:17:49 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 61090 IP address blocks: 185.152.12.0/24 maxlen: 24 185.152.13.0/24 maxlen: 24 185.152.14.0/24 maxlen: 24 185.152.15.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/14/529e84-fea1-4429-83b2-df823e4db1ea/1/nvJ_rhUw6nFnBwzxLEhoEdjgusU.crl rsync://rpki.ripe.net/repository/DEFAULT/14/529e84-fea1-4429-83b2-df823e4db1ea/1/nvJ_rhUw6nFnBwzxLEhoEdjgusU.mft rsync://rpki.ripe.net/repository/DEFAULT/nvJ_rhUw6nFnBwzxLEhoEdjgusU.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7c:ed:11:af:a5:c5:2d:6f:58:7d:4d:24:cf:56:a1:64 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9ef27fae1530ea7167070cf12c486811d8e0bac5 Validity Not Before: Jan 2 04:17:49 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=aa75b05e184972756932acd7d2c4bf2c122073e6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:a2:f3:21:a0:82:98:f1:f1:ee:97:81:74:26: 7e:68:14:e1:78:24:0f:52:21:67:db:23:51:fb:fc: 44:7b:2e:3e:6e:e0:da:e5:29:95:11:af:54:2a:f5: be:4b:7f:cd:9c:b4:1a:21:b3:9e:aa:1e:ef:80:5d: d1:ec:2e:28:c8:73:30:1a:45:c8:2d:b8:55:81:7d: bf:c8:12:bd:d2:9c:0b:86:5c:5c:31:1e:11:55:6f: 95:70:ae:d0:4b:8d:1c:f3:d6:29:0f:98:fd:a5:5a: 86:8b:07:e0:91:38:03:86:db:79:4a:d9:b1:d6:63: 93:2d:3c:08:f7:6f:92:9e:26:c5:64:4b:62:90:0c: f3:54:f6:56:02:52:46:a7:9a:df:b8:c3:5e:81:96: 73:c0:e1:1f:c0:2a:f4:53:ce:9f:92:a7:35:b6:9f: 3b:47:99:c3:63:63:39:22:5c:4c:f4:08:8f:e9:29: 35:04:95:2a:56:d6:c0:4a:d2:c9:0f:5a:3b:60:11: 23:f0:7e:84:f3:5c:5f:04:0f:87:7d:6c:78:31:21: a8:51:7d:bd:e1:90:5e:29:62:a6:a7:ea:45:e2:24: 5f:f3:cb:89:5c:64:7f:39:74:7a:b8:69:6e:eb:8f: fe:9d:fb:36:06:9c:67:f8:ab:7a:a6:78:79:15:25: 9f:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AA:75:B0:5E:18:49:72:75:69:32:AC:D7:D2:C4:BF:2C:12:20:73:E6 X509v3 Authority Key Identifier: keyid:9E:F2:7F:AE:15:30:EA:71:67:07:0C:F1:2C:48:68:11:D8:E0:BA:C5 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nvJ_rhUw6nFnBwzxLEhoEdjgusU.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/14/529e84-fea1-4429-83b2-df823e4db1ea/1/qnWwXhhJcnVpMqzX0sS_LBIgc-Y.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/14/529e84-fea1-4429-83b2-df823e4db1ea/1/nvJ_rhUw6nFnBwzxLEhoEdjgusU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.152.12.0/22 Signature Algorithm: sha256WithRSAEncryption 61:5e:55:99:5a:6b:9f:e1:55:64:6e:ef:43:8f:94:d4:fc:8d: 66:4f:00:ab:60:70:8b:cb:a0:00:e0:76:60:8b:02:71:25:a2: e2:4f:5a:46:fa:5f:d8:80:1f:24:22:5e:23:7c:f9:93:f1:4f: 0c:f3:9c:6a:bc:40:48:c9:26:8e:13:0d:af:af:88:e6:fc:1f: 71:af:e9:0f:b5:08:f5:2c:aa:e1:1f:37:f7:d2:eb:0d:93:11: 0b:96:1a:bf:e2:b4:fb:a0:29:19:04:a5:8a:54:21:e5:5e:cc: ac:f1:0b:13:76:37:7a:45:71:15:bb:f6:b1:7f:42:c3:11:eb: 3d:03:57:06:55:8b:ac:93:4b:29:59:33:ca:f4:83:25:76:77: 71:2f:9b:19:1b:b9:75:80:0e:6a:d2:97:0c:84:a4:6d:19:11: b6:ab:54:fa:c3:4f:2f:9f:e8:82:8f:0a:ed:46:85:13:be:88: 25:31:b7:93:2b:93:6f:e0:bc:f1:d2:ac:62:77:0c:43:d1:6d: b4:38:45:96:41:c7:98:09:b5:b8:ae:6c:e5:d5:6b:84:bf:9c: 53:d7:62:7c:3d:25:a9:fd:d7:2e:f6:55:a9:2a:c4:f6:b8:71: 51:1b:34:3c:be:06:21:38:7a:07:84:53:7b:b9:1c:6c:58:1e: 0b:30:56:5a -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt87RGvpcUtb1h9TSTPVqFkMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDllZjI3ZmFlMTUzMGVhNzE2NzA3MGNmMTJjNDg2ODExZDhl MGJhYzUwHhcNMjYwMTAyMDQxNzQ5WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhhYTc1YjA1ZTE4NDk3Mjc1NjkzMmFjZDdkMmM0YmYyYzEyMjA3M2U2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtaLzIaCCmPHx7peBdCZ+aBTheCQP UiFn2yNR+/xEey4+buDa5SmVEa9UKvW+S3/NnLQaIbOeqh7vgF3R7C4oyHMwGkXI LbhVgX2/yBK90pwLhlxcMR4RVW+VcK7QS40c89YpD5j9pVqGiwfgkTgDhtt5Stmx 1mOTLTwI92+SnibFZEtikAzzVPZWAlJGp5rfuMNegZZzwOEfwCr0U86fkqc1tp87 R5nDY2M5IlxM9AiP6Sk1BJUqVtbAStLJD1o7YBEj8H6E81xfBA+HfWx4MSGoUX29 4ZBeKWKmp+pF4iRf88uJXGR/OXR6uGlu64/+nfs2Bpxn+Kt6pnh5FSWfSwIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFKp1sF4YSXJ1aTKs19LEvywSIHPmMB8GA1UdIwQY MBaAFJ7yf64VMOpxZwcM8SxIaBHY4LrFMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvbnZKX3JoVXc2bkZuQnd6eExFaG9FZGpndXNVLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xNC81MjllODQtZmVhMS00NDI5LTgzYjIt ZGY4MjNlNGRiMWVhLzEvcW5Xd1hoaEpjblZwTXF6WDBzU19MQklnYy1ZLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xNC81MjllODQtZmVhMS00NDI5LTgzYjItZGY4MjNlNGRiMWVh LzEvbnZKX3JoVXc2bkZuQnd6eExFaG9FZGpndXNVLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCuZgMMA0G CSqGSIb3DQEBCwUAA4IBAQBhXlWZWmuf4VVkbu9Dj5TU/I1mTwCrYHCLy6AA4HZg iwJxJaLiT1pG+l/YgB8kIl4jfPmT8U8M85xqvEBIySaOEw2vr4jm/B9xr+kPtQj1 LKrhHzf30usNkxELlhq/4rT7oCkZBKWKVCHlXsys8QsTdjd6RXEVu/axf0LDEes9 A1cGVYusk0spWTPK9IMldndxL5sZG7l1gA5q0pcMhKRtGRG2q1T6w08vn+iCjwrt RoUTvoglMbeTK5Nv4Lzx0qxidwxD0W20OEWWQceYCbW4rmzl1WuEv5xT12J8PSWp /dcu9lWpKsT2uHFRGzQ8vgYhOHoHhFN7uRxsWB4LMFZa -----END CERTIFICATE-----Generated at Tue Feb 10 00:09:03 2026 by rpki-client