This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/17/cdad8f-b919-45d1-af18-63742d19a012/1/_QFYHtLUd5PrTEx3ytqrTgZXY4A.roa File: _QFYHtLUd5PrTEx3ytqrTgZXY4A.roa (raw, json) Hash identifier: IMcdfSBLxJMlJLL2pxyXtKfsGbWAEaXixakUAiVwCV8= Subject key identifier: FD:01:58:1E:D2:D4:77:93:EB:4C:4C:77:CA:DA:AB:4E:06:57:63:80 Certificate issuer: /CN=8fd26ad6f91ba4472814bae484a8df1f634c3341 Certificate serial: 019B7BA3BB68E3485071FB168B131AF3D57D Authority key identifier: 8F:D2:6A:D6:F9:1B:A4:47:28:14:BA:E4:84:A8:DF:1F:63:4C:33:41 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/j9Jq1vkbpEcoFLrkhKjfH2NMM0E.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/17/cdad8f-b919-45d1-af18-63742d19a012/1/_QFYHtLUd5PrTEx3ytqrTgZXY4A.roa Signing time: Thu 01 Jan 2026 22:18:06 +0000 ROA not before: Thu 01 Jan 2026 22:18:06 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 200019 IP address blocks: 176.123.0.0/21 maxlen: 21 176.123.0.0/24 maxlen: 24 176.123.1.0/24 maxlen: 24 176.123.2.0/24 maxlen: 24 176.123.3.0/24 maxlen: 24 176.123.4.0/24 maxlen: 24 176.123.5.0/24 maxlen: 24 176.123.6.0/24 maxlen: 24 176.123.7.0/24 maxlen: 24 176.123.8.0/22 maxlen: 22 176.123.8.0/24 maxlen: 24 176.123.9.0/24 maxlen: 24 176.123.10.0/24 maxlen: 24 176.123.11.0/24 maxlen: 24 2001:678:6d4::/48 maxlen: 48 2001:678:6d4:9990::/60 maxlen: 60 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/17/cdad8f-b919-45d1-af18-63742d19a012/1/j9Jq1vkbpEcoFLrkhKjfH2NMM0E.crl rsync://rpki.ripe.net/repository/DEFAULT/17/cdad8f-b919-45d1-af18-63742d19a012/1/j9Jq1vkbpEcoFLrkhKjfH2NMM0E.mft rsync://rpki.ripe.net/repository/DEFAULT/j9Jq1vkbpEcoFLrkhKjfH2NMM0E.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 20 Jan 2026 13:02:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7b:a3:bb:68:e3:48:50:71:fb:16:8b:13:1a:f3:d5:7d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8fd26ad6f91ba4472814bae484a8df1f634c3341 Validity Not Before: Jan 1 22:18:06 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=fd01581ed2d47793eb4c4c77cadaab4e06576380 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:85:af:58:53:02:2f:4c:2f:14:9c:90:b3:8e: aa:9c:42:f1:48:3f:fc:46:50:cf:6c:21:1d:28:f4: e2:b8:2b:d7:09:83:57:c4:7e:15:0c:63:12:76:ef: f0:0c:50:b1:9b:d7:23:36:f2:87:0d:09:23:83:82: 7d:65:e9:11:74:b2:f8:6d:1d:4e:b3:b2:ca:2f:ca: 09:e3:6c:97:38:97:11:d7:d6:06:a8:2a:cb:3d:46: b2:12:bb:70:9f:37:47:87:e3:a3:e0:58:03:b6:55: e9:f2:c5:7c:b6:5a:85:f4:21:66:50:a8:87:96:5b: 57:0e:8e:1d:1e:fe:c3:22:b0:e6:2d:69:0a:34:d1: 37:01:9f:64:b6:49:63:d7:74:ab:15:45:8b:83:90: 7a:6a:14:5c:b7:b1:3e:33:02:03:7d:23:47:c8:86: bd:53:7c:de:96:de:79:b4:5a:6e:b7:a9:eb:36:c6: 86:ae:51:2a:4f:74:d6:d7:43:70:f4:8e:0b:29:c3: 5d:27:e3:35:df:87:96:5a:1e:d0:a0:f0:19:e0:c4: f3:86:fd:44:a9:a4:06:b5:95:a2:a3:a8:f6:ee:c8: e1:bf:75:31:fc:28:59:64:11:10:ff:0e:e1:28:2b: 48:7a:c4:fb:4a:46:a4:20:fa:75:76:24:81:0c:59: 44:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FD:01:58:1E:D2:D4:77:93:EB:4C:4C:77:CA:DA:AB:4E:06:57:63:80 X509v3 Authority Key Identifier: keyid:8F:D2:6A:D6:F9:1B:A4:47:28:14:BA:E4:84:A8:DF:1F:63:4C:33:41 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/j9Jq1vkbpEcoFLrkhKjfH2NMM0E.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/17/cdad8f-b919-45d1-af18-63742d19a012/1/_QFYHtLUd5PrTEx3ytqrTgZXY4A.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/17/cdad8f-b919-45d1-af18-63742d19a012/1/j9Jq1vkbpEcoFLrkhKjfH2NMM0E.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 176.123.0.0-176.123.11.255 IPv6: 2001:678:6d4::/48 Signature Algorithm: sha256WithRSAEncryption 73:8e:7a:7e:ec:55:26:df:20:aa:24:d5:0e:f4:07:bc:10:46: 3f:e6:07:15:3c:99:7c:61:86:c6:b3:36:92:25:fd:b0:17:fa: 36:90:ae:37:9b:55:ad:be:7c:2b:e9:45:9c:bf:21:b0:ee:77: f0:82:e3:78:1c:45:8f:e8:4d:f9:78:68:2f:cd:2d:a4:83:2e: 41:93:78:68:a6:68:08:81:d8:a2:a6:80:d6:1e:d6:78:55:b4: 82:c2:86:f5:c6:bc:bf:80:21:9a:d3:43:33:9f:12:84:9d:18: f5:af:d9:74:7e:bf:5f:ae:61:39:7d:55:40:91:49:13:86:14: c5:31:ed:50:12:1e:99:b8:58:3f:47:37:dd:85:eb:18:0a:d9: 92:8b:fb:e7:29:63:a9:f6:54:0d:86:f4:fa:c3:81:da:66:9b: d8:9c:bd:36:24:93:0e:85:c2:b4:24:93:b2:92:3b:07:8d:f0: bf:89:e4:9c:69:0e:79:c5:03:1e:fe:21:15:e3:a4:d4:9c:7b: 84:a3:f7:3e:1d:da:04:58:3c:c1:2b:6d:20:e0:cd:23:c6:6a: 63:b1:23:0a:84:39:d6:3c:1a:b5:44:d4:4e:99:75:6f:ca:18: 92:f7:45:ca:49:e2:5f:ff:c2:02:d9:5b:f9:4a:da:17:ff:e3: 1d:22:cf:2f -----BEGIN CERTIFICATE----- MIIFFTCCA/2gAwIBAgISAZt7o7to40hQcfsWixMa89V9MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDhmZDI2YWQ2ZjkxYmE0NDcyODE0YmFlNDg0YThkZjFmNjM0 YzMzNDEwHhcNMjYwMTAxMjIxODA2WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhmZDAxNTgxZWQyZDQ3NzkzZWI0YzRjNzdjYWRhYWI0ZTA2NTc2MzgwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsYWvWFMCL0wvFJyQs46qnELxSD/8 RlDPbCEdKPTiuCvXCYNXxH4VDGMSdu/wDFCxm9cjNvKHDQkjg4J9ZekRdLL4bR1O s7LKL8oJ42yXOJcR19YGqCrLPUayErtwnzdHh+Oj4FgDtlXp8sV8tlqF9CFmUKiH lltXDo4dHv7DIrDmLWkKNNE3AZ9ktklj13SrFUWLg5B6ahRct7E+MwIDfSNHyIa9 U3zelt55tFput6nrNsaGrlEqT3TW10Nw9I4LKcNdJ+M134eWWh7QoPAZ4MTzhv1E qaQGtZWio6j27sjhv3Ux/ChZZBEQ/w7hKCtIesT7SkakIPp1diSBDFlEVwIDAQAB o4ICITCCAh0wHQYDVR0OBBYEFP0BWB7S1HeT60xMd8raq04GV2OAMB8GA1UdIwQY MBaAFI/Satb5G6RHKBS65ISo3x9jTDNBMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvajlKcTF2a2JwRWNvRkxya2hLamZIMk5NTTBFLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xNy9jZGFkOGYtYjkxOS00NWQxLWFmMTgt NjM3NDJkMTlhMDEyLzEvX1FGWUh0TFVkNVByVEV4M3l0cXJUZ1pYWTRBLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xNy9jZGFkOGYtYjkxOS00NWQxLWFmMTgtNjM3NDJkMTlhMDEy LzEvajlKcTF2a2JwRWNvRkxya2hLamZIMk5NTTBFLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMDcGCCsGAQUFBwEHAQH/BCgwJjATBAIAATANMAsDAwCwewME ArB7CDAPBAIAAjAJAwcAIAEGeAbUMA0GCSqGSIb3DQEBCwUAA4IBAQBzjnp+7FUm 3yCqJNUO9Ae8EEY/5gcVPJl8YYbGszaSJf2wF/o2kK43m1Wtvnwr6UWcvyGw7nfw guN4HEWP6E35eGgvzS2kgy5Bk3hopmgIgdiipoDWHtZ4VbSCwob1xry/gCGa00Mz nxKEnRj1r9l0fr9frmE5fVVAkUkThhTFMe1QEh6ZuFg/RzfdhesYCtmSi/vnKWOp 9lQNhvT6w4HaZpvYnL02JJMOhcK0JJOykjsHjfC/ieScaQ55xQMe/iEV46TUnHuE o/c+HdoEWDzBK20g4M0jxmpjsSMKhDnWPBq1RNROmXVvyhiS90XKSeJf/8IC2Vv5 StoX/+MdIs8v -----END CERTIFICATE-----Generated at Mon Jan 19 23:22:02 2026 by rpki-client