This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/17/b429aa-0461-4136-90cd-52a7b925b224/1/qh-sD6kOkExAEQOZYjnoqxx9DpY.roa File: qh-sD6kOkExAEQOZYjnoqxx9DpY.roa (raw, json) Hash identifier: 5t8eLCXvC3atBWqULd/nurDvBUxx1v91TFam4vLNrJs= Subject key identifier: AA:1F:AC:0F:A9:0E:90:4C:40:11:03:99:62:39:E8:AB:1C:7D:0E:96 Certificate issuer: /CN=04e604a45677be77313969ad17aec69ce97c43ce Certificate serial: 019B7CED105E39265EFF70740B3701533715 Authority key identifier: 04:E6:04:A4:56:77:BE:77:31:39:69:AD:17:AE:C6:9C:E9:7C:43:CE Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BOYEpFZ3vncxOWmtF67GnOl8Q84.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/17/b429aa-0461-4136-90cd-52a7b925b224/1/qh-sD6kOkExAEQOZYjnoqxx9DpY.roa Signing time: Fri 02 Jan 2026 04:17:49 +0000 ROA not before: Fri 02 Jan 2026 04:17:49 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 59767 IP address blocks: 45.135.156.0/22 maxlen: 22 212.89.32.0/20 maxlen: 20 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/17/b429aa-0461-4136-90cd-52a7b925b224/1/BOYEpFZ3vncxOWmtF67GnOl8Q84.crl rsync://rpki.ripe.net/repository/DEFAULT/17/b429aa-0461-4136-90cd-52a7b925b224/1/BOYEpFZ3vncxOWmtF67GnOl8Q84.mft rsync://rpki.ripe.net/repository/DEFAULT/BOYEpFZ3vncxOWmtF67GnOl8Q84.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7c:ed:10:5e:39:26:5e:ff:70:74:0b:37:01:53:37:15 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=04e604a45677be77313969ad17aec69ce97c43ce Validity Not Before: Jan 2 04:17:49 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=aa1fac0fa90e904c401103996239e8ab1c7d0e96 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:05:e1:b5:6e:f3:dd:d6:19:39:69:42:8d:c1: c9:91:32:07:3d:41:bb:75:22:05:8e:fd:7c:13:2f: c1:8e:22:ad:eb:77:a4:1f:7a:a2:f9:82:ae:db:8e: 56:87:2f:da:94:a7:6d:fe:83:db:b8:d6:87:d9:99: 12:87:1a:12:65:d5:e9:cb:15:3f:f9:20:d5:c6:50: 2a:a5:15:66:c7:32:9e:48:d3:e2:d6:5f:8e:13:b9: 08:18:d6:87:39:e4:b4:38:8f:96:3e:5d:32:48:83: fe:b0:c7:ec:48:02:58:14:4b:eb:dc:07:fa:2f:85: 8d:40:89:c0:93:88:58:02:bd:69:a7:05:d4:de:fe: a9:a3:08:de:25:3b:12:8b:47:23:16:4e:5b:28:74: 33:6e:52:f9:73:f9:15:45:5a:55:20:73:1e:2c:a0: d0:7e:43:fc:8b:db:5e:6d:b7:2b:02:d6:ea:40:21: 15:e5:85:72:d7:4a:1d:d8:32:96:14:5d:da:1f:25: 4b:e6:96:df:da:7b:26:f9:c8:cb:d7:08:04:62:6e: 6f:7e:67:71:29:90:3c:d8:cb:51:8e:34:5e:f0:c0: 14:26:81:0e:ca:1b:9b:37:46:06:6b:e0:ec:c1:aa: fb:d5:77:01:8e:6f:10:08:ed:fd:60:96:cc:d4:cb: df:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AA:1F:AC:0F:A9:0E:90:4C:40:11:03:99:62:39:E8:AB:1C:7D:0E:96 X509v3 Authority Key Identifier: keyid:04:E6:04:A4:56:77:BE:77:31:39:69:AD:17:AE:C6:9C:E9:7C:43:CE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BOYEpFZ3vncxOWmtF67GnOl8Q84.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/17/b429aa-0461-4136-90cd-52a7b925b224/1/qh-sD6kOkExAEQOZYjnoqxx9DpY.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/17/b429aa-0461-4136-90cd-52a7b925b224/1/BOYEpFZ3vncxOWmtF67GnOl8Q84.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 45.135.156.0/22 212.89.32.0/20 Signature Algorithm: sha256WithRSAEncryption 4d:a9:54:d6:56:2d:13:c7:d3:9a:49:56:46:94:ce:93:81:77: 16:80:05:17:85:1e:3a:d6:f6:e9:64:69:a6:33:63:fe:23:31: 92:91:cb:d7:e4:a9:fa:e4:88:d1:b5:2a:4f:8d:a6:8e:60:fd: de:f3:63:3d:8a:63:f4:7f:fe:47:e1:e4:40:98:79:d0:29:36: e3:34:4b:27:a6:d7:e0:86:f1:5d:09:50:d3:22:ab:33:95:0b: 74:35:82:ed:d6:4c:7d:0f:28:4b:35:d4:69:fb:dc:83:0b:9b: 23:56:5b:e5:31:11:a3:f4:4b:f5:47:ea:2f:04:5d:22:ba:4e: 1f:ed:50:d6:87:7b:e5:18:c0:2d:d2:54:02:73:bf:60:82:c6: 0a:7c:cc:44:8d:e3:58:f3:a5:21:3b:74:4f:99:4f:32:33:26: 02:ce:06:f9:7b:8b:b4:b7:5e:77:d3:d2:2a:ff:6f:44:a4:78: 52:c6:6a:25:2a:1f:1e:46:ce:1c:c8:c4:41:40:10:5e:54:8a: 02:24:bd:66:ba:4a:88:51:57:57:c2:9a:cb:33:79:a3:4b:83: 29:99:23:0c:33:b8:17:5f:d9:d4:ab:cc:c4:dc:fc:f1:a8:0c: a8:c5:b3:24:1c:0e:ba:57:39:5f:be:94:be:78:1d:f0:21:12: cb:1f:f8:26 -----BEGIN CERTIFICATE----- MIIFAzCCA+ugAwIBAgISAZt87RBeOSZe/3B0CzcBUzcVMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDA0ZTYwNGE0NTY3N2JlNzczMTM5NjlhZDE3YWVjNjljZTk3 YzQzY2UwHhcNMjYwMTAyMDQxNzQ5WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhhYTFmYWMwZmE5MGU5MDRjNDAxMTAzOTk2MjM5ZThhYjFjN2QwZTk2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtgXhtW7z3dYZOWlCjcHJkTIHPUG7 dSIFjv18Ey/BjiKt63ekH3qi+YKu245Why/alKdt/oPbuNaH2ZkShxoSZdXpyxU/ +SDVxlAqpRVmxzKeSNPi1l+OE7kIGNaHOeS0OI+WPl0ySIP+sMfsSAJYFEvr3Af6 L4WNQInAk4hYAr1ppwXU3v6powjeJTsSi0cjFk5bKHQzblL5c/kVRVpVIHMeLKDQ fkP8i9tebbcrAtbqQCEV5YVy10od2DKWFF3aHyVL5pbf2nsm+cjL1wgEYm5vfmdx KZA82MtRjjRe8MAUJoEOyhubN0YGa+Dswar71XcBjm8QCO39YJbM1MvfqQIDAQAB o4ICDzCCAgswHQYDVR0OBBYEFKofrA+pDpBMQBEDmWI56KscfQ6WMB8GA1UdIwQY MBaAFATmBKRWd753MTlprReuxpzpfEPOMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvQk9ZRXBGWjN2bmN4T1dtdEY2N0duT2w4UTg0LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xNy9iNDI5YWEtMDQ2MS00MTM2LTkwY2Qt NTJhN2I5MjViMjI0LzEvcWgtc0Q2a09rRXhBRVFPWllqbm9xeHg5RHBZLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xNy9iNDI5YWEtMDQ2MS00MTM2LTkwY2QtNTJhN2I5MjViMjI0 LzEvQk9ZRXBGWjN2bmN4T1dtdEY2N0duT2w4UTg0LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQCLYecAwQE 1FkgMA0GCSqGSIb3DQEBCwUAA4IBAQBNqVTWVi0Tx9OaSVZGlM6TgXcWgAUXhR46 1vbpZGmmM2P+IzGSkcvX5Kn65IjRtSpPjaaOYP3e82M9imP0f/5H4eRAmHnQKTbj NEsnptfghvFdCVDTIqszlQt0NYLt1kx9DyhLNdRp+9yDC5sjVlvlMRGj9Ev1R+ov BF0iuk4f7VDWh3vlGMAt0lQCc79ggsYKfMxEjeNY86UhO3RPmU8yMyYCzgb5e4u0 t15309Iq/29EpHhSxmolKh8eRs4cyMRBQBBeVIoCJL1mukqIUVdXwprLM3mjS4Mp mSMMM7gXX9nUq8zE3PzxqAyoxbMkHA66VzlfvpS+eB3wIRLLH/gm -----END CERTIFICATE-----Generated at Mon Feb 9 22:30:45 2026 by rpki-client