This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/17/a764ce-12ae-41b5-81b6-02aba5d1b3a4/1/qlUMTY8f9xMZJf_wYNKsX0Jnm9o.roa File: qlUMTY8f9xMZJf_wYNKsX0Jnm9o.roa (raw, json) Hash identifier: 6TBYCzPo1M2XR2SlsB1vR5t4Ago4gsLphNAfezL8f1o= Subject key identifier: AA:55:0C:4D:8F:1F:F7:13:19:25:FF:F0:60:D2:AC:5F:42:67:9B:DA Certificate issuer: /CN=a01746cf6bbdc8bd5666f306811bdffd216b1aa6 Certificate serial: 019B77C679FEE0F3FABC68616A2D35C640A5 Authority key identifier: A0:17:46:CF:6B:BD:C8:BD:56:66:F3:06:81:1B:DF:FD:21:6B:1A:A6 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oBdGz2u9yL1WZvMGgRvf_SFrGqY.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/17/a764ce-12ae-41b5-81b6-02aba5d1b3a4/1/qlUMTY8f9xMZJf_wYNKsX0Jnm9o.roa Signing time: Thu 01 Jan 2026 04:17:34 +0000 ROA not before: Thu 01 Jan 2026 04:17:34 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 12935 IP address blocks: 185.173.4.0/22 maxlen: 22 213.179.0.0/19 maxlen: 19 213.179.0.0/20 maxlen: 20 213.179.16.0/21 maxlen: 21 213.179.28.0/22 maxlen: 22 2a02:6980::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/17/a764ce-12ae-41b5-81b6-02aba5d1b3a4/1/oBdGz2u9yL1WZvMGgRvf_SFrGqY.crl rsync://rpki.ripe.net/repository/DEFAULT/17/a764ce-12ae-41b5-81b6-02aba5d1b3a4/1/oBdGz2u9yL1WZvMGgRvf_SFrGqY.mft rsync://rpki.ripe.net/repository/DEFAULT/oBdGz2u9yL1WZvMGgRvf_SFrGqY.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 13:00:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:77:c6:79:fe:e0:f3:fa:bc:68:61:6a:2d:35:c6:40:a5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=a01746cf6bbdc8bd5666f306811bdffd216b1aa6 Validity Not Before: Jan 1 04:17:34 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=aa550c4d8f1ff7131925fff060d2ac5f42679bda Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:3b:1a:91:f0:0b:d9:6c:d7:9b:16:7f:b3:ff: 20:f3:16:c3:3a:d3:d7:fd:bf:26:cf:5f:f0:bc:eb: ef:fa:64:f7:37:8c:f3:9c:84:df:55:86:d4:d6:37: 92:c2:41:81:02:5a:fd:b5:12:5f:64:b1:ff:bb:00: 84:ad:b8:25:72:07:21:f9:f7:08:87:c1:c0:e1:b1: 00:c1:14:e5:99:55:41:66:63:a8:5d:d6:a8:a2:92: ff:96:6d:00:d6:fc:89:03:fc:7e:2d:10:51:e4:46: e0:d2:93:63:80:6c:54:2a:a2:33:51:af:05:c7:0d: 14:b1:02:8b:e2:b8:82:c3:0a:a9:31:0d:76:a3:3c: 7a:c3:1a:52:52:04:e3:61:a4:1d:7e:5d:23:f1:ff: dd:5b:fc:aa:74:42:3e:03:6a:7e:8a:2e:ca:f0:92: 2f:c2:48:1d:b2:9e:4c:bd:1c:b5:f8:15:60:26:cd: 6b:2a:2c:3d:54:b7:a6:c2:17:75:73:ba:57:01:9c: e6:e6:78:93:d0:c0:70:66:3a:41:68:5a:2b:cc:de: 87:de:ba:bd:6e:af:00:27:11:8f:a8:f0:01:6a:a7: a7:33:f2:da:a7:73:cd:e8:8d:02:7c:db:00:79:96: 9d:b0:58:98:05:aa:92:7f:ca:fa:df:d9:0d:9d:55: 48:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AA:55:0C:4D:8F:1F:F7:13:19:25:FF:F0:60:D2:AC:5F:42:67:9B:DA X509v3 Authority Key Identifier: keyid:A0:17:46:CF:6B:BD:C8:BD:56:66:F3:06:81:1B:DF:FD:21:6B:1A:A6 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oBdGz2u9yL1WZvMGgRvf_SFrGqY.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/17/a764ce-12ae-41b5-81b6-02aba5d1b3a4/1/qlUMTY8f9xMZJf_wYNKsX0Jnm9o.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/17/a764ce-12ae-41b5-81b6-02aba5d1b3a4/1/oBdGz2u9yL1WZvMGgRvf_SFrGqY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.173.4.0/22 213.179.0.0/19 IPv6: 2a02:6980::/32 Signature Algorithm: sha256WithRSAEncryption 1e:80:35:f1:65:07:3c:b8:66:c3:6d:d1:65:23:ef:3c:f4:0a: 30:ed:d7:eb:5d:2e:23:d1:3f:94:2f:64:6e:93:69:c0:79:54: a4:df:ad:47:21:f9:c6:2d:a7:be:36:f9:6b:04:e0:06:43:eb: 4f:bf:6b:5c:58:fc:fd:f9:b8:66:f0:aa:9a:6e:20:d7:20:af: b2:b0:c5:dd:ec:04:d9:3d:03:2d:8d:f6:9e:ee:87:ea:6a:97: b7:1a:77:6e:3c:ff:e9:89:e6:92:16:70:29:42:47:6e:8f:b0: 0d:56:2a:e6:f4:ce:3e:66:33:2a:e1:c4:54:17:c4:17:47:21: 98:b6:0b:53:03:8b:53:b6:7a:5c:25:3b:9a:15:7e:e3:8e:7d: 2c:72:4d:a5:de:08:75:6e:ba:7e:92:66:ea:84:7a:99:4f:08: bb:13:d3:aa:3b:98:88:64:2b:81:b9:1e:49:8c:12:e9:e9:34: d5:b6:03:d6:18:cd:88:97:3c:e3:f5:ab:87:3e:94:5a:f9:8c: 55:43:cb:b4:f6:4d:0a:95:1c:91:7b:a8:cb:92:80:3c:94:97: 19:56:2a:f7:2d:8e:42:ce:a9:42:06:81:69:c1:f2:c8:b1:5d: 90:65:2a:d4:85:3d:91:38:bb:f8:af:ef:e7:c8:35:05:3f:ef: 5f:1e:e1:fe -----BEGIN CERTIFICATE----- MIIFEjCCA/qgAwIBAgISAZt3xnn+4PP6vGhhai01xkClMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGEwMTc0NmNmNmJiZGM4YmQ1NjY2ZjMwNjgxMWJkZmZkMjE2 YjFhYTYwHhcNMjYwMTAxMDQxNzM0WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhhYTU1MGM0ZDhmMWZmNzEzMTkyNWZmZjA2MGQyYWM1ZjQyNjc5YmRhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAszsakfAL2WzXmxZ/s/8g8xbDOtPX /b8mz1/wvOvv+mT3N4zznITfVYbU1jeSwkGBAlr9tRJfZLH/uwCErbglcgch+fcI h8HA4bEAwRTlmVVBZmOoXdaoopL/lm0A1vyJA/x+LRBR5Ebg0pNjgGxUKqIzUa8F xw0UsQKL4riCwwqpMQ12ozx6wxpSUgTjYaQdfl0j8f/dW/yqdEI+A2p+ii7K8JIv wkgdsp5MvRy1+BVgJs1rKiw9VLemwhd1c7pXAZzm5niT0MBwZjpBaForzN6H3rq9 bq8AJxGPqPABaqenM/Lap3PN6I0CfNsAeZadsFiYBaqSf8r639kNnVVIswIDAQAB o4ICHjCCAhowHQYDVR0OBBYEFKpVDE2PH/cTGSX/8GDSrF9CZ5vaMB8GA1UdIwQY MBaAFKAXRs9rvci9VmbzBoEb3/0haxqmMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvb0JkR3oydTl5TDFXWnZNR2dSdmZfU0ZyR3FZLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xNy9hNzY0Y2UtMTJhZS00MWI1LTgxYjYt MDJhYmE1ZDFiM2E0LzEvcWxVTVRZOGY5eE1aSmZfd1lOS3NYMEpubTlvLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xNy9hNzY0Y2UtMTJhZS00MWI1LTgxYjYtMDJhYmE1ZDFiM2E0 LzEvb0JkR3oydTl5TDFXWnZNR2dSdmZfU0ZyR3FZLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMDQGCCsGAQUFBwEHAQH/BCUwIzASBAIAATAMAwQCua0EAwQF 1bMAMA0EAgACMAcDBQAqAmmAMA0GCSqGSIb3DQEBCwUAA4IBAQAegDXxZQc8uGbD bdFlI+889Aow7dfrXS4j0T+UL2Ruk2nAeVSk361HIfnGLae+NvlrBOAGQ+tPv2tc WPz9+bhm8KqabiDXIK+ysMXd7ATZPQMtjfae7ofqape3GnduPP/pieaSFnApQkdu j7ANVirm9M4+ZjMq4cRUF8QXRyGYtgtTA4tTtnpcJTuaFX7jjn0sck2l3gh1brp+ kmbqhHqZTwi7E9OqO5iIZCuBuR5JjBLp6TTVtgPWGM2Ilzzj9auHPpRa+YxVQ8u0 9k0KlRyRe6jLkoA8lJcZVir3LY5CzqlCBoFpwfLIsV2QZSrUhT2ROLv4r+/nyDUF P+9fHuH+ -----END CERTIFICATE-----Generated at Mon Feb 9 22:35:18 2026 by rpki-client