This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1e/3caa51-7a21-499d-a545-bafbdfc8132a/1/qMndKwMJzTR8aJXanNwSQJhSGPY.roa File: qMndKwMJzTR8aJXanNwSQJhSGPY.roa (raw, json) Hash identifier: sGlomNIGgryvARhdDU6wj96UzT1VM2wK2Eig8ZM+e2o= Subject key identifier: A8:C9:DD:2B:03:09:CD:34:7C:68:95:DA:9C:DC:12:40:98:52:18:F6 Certificate issuer: /CN=4f14112d05e9d876149d2778d48edaaa324db0a5 Certificate serial: 019B7EA758869A8D18EAE2D06CB9ACD9E4CF Authority key identifier: 4F:14:11:2D:05:E9:D8:76:14:9D:27:78:D4:8E:DA:AA:32:4D:B0:A5 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TxQRLQXp2HYUnSd41I7aqjJNsKU.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1e/3caa51-7a21-499d-a545-bafbdfc8132a/1/qMndKwMJzTR8aJXanNwSQJhSGPY.roa Signing time: Fri 02 Jan 2026 12:20:54 +0000 ROA not before: Fri 02 Jan 2026 12:20:54 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 20860 IP address blocks: 193.37.72.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1e/3caa51-7a21-499d-a545-bafbdfc8132a/1/TxQRLQXp2HYUnSd41I7aqjJNsKU.crl rsync://rpki.ripe.net/repository/DEFAULT/1e/3caa51-7a21-499d-a545-bafbdfc8132a/1/TxQRLQXp2HYUnSd41I7aqjJNsKU.mft rsync://rpki.ripe.net/repository/DEFAULT/TxQRLQXp2HYUnSd41I7aqjJNsKU.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 04 Jan 2026 15:00:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7e:a7:58:86:9a:8d:18:ea:e2:d0:6c:b9:ac:d9:e4:cf Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4f14112d05e9d876149d2778d48edaaa324db0a5 Validity Not Before: Jan 2 12:20:54 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=a8c9dd2b0309cd347c6895da9cdc1240985218f6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:f7:66:d9:95:31:ca:52:3f:87:ff:19:03:26: 12:af:86:7d:04:db:39:e5:cf:95:b0:98:03:cc:39: 00:23:8d:cb:57:3e:64:fb:81:db:08:17:d1:7a:9c: b4:0c:62:54:32:51:4c:13:ca:bc:4f:b8:ee:77:10: ae:89:45:25:95:df:77:8b:5c:34:37:7e:72:b5:3f: 5f:33:a5:b0:9f:b1:c9:7a:f7:47:30:97:d1:c3:aa: 9f:53:3f:ff:1f:5a:f1:6d:9e:bd:69:4b:62:b2:b6: 51:99:06:1a:db:87:e1:4c:3a:36:3c:eb:41:46:3b: 4e:d7:8b:9d:d9:d5:f3:fa:8c:84:cf:1f:d4:f7:21: 09:ab:08:60:57:50:24:c5:44:59:9d:41:ea:bf:fe: 7f:4b:6f:67:d3:96:7d:63:03:18:22:a8:16:e9:1c: 4d:91:a5:be:bb:00:30:3c:ef:b9:32:5e:c6:b3:81: ea:8a:f1:2d:a8:33:9b:f3:35:fc:04:33:56:cd:32: a0:a1:b4:10:53:32:69:07:bc:af:cb:a4:66:b9:dc: bb:65:22:13:ee:80:7b:ea:07:2a:a7:0b:56:63:cd: e9:12:fb:00:03:28:fb:c0:f6:43:46:47:4f:a0:c6: e4:41:33:ba:71:30:a7:ae:26:c0:82:6c:b8:0d:48: f4:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A8:C9:DD:2B:03:09:CD:34:7C:68:95:DA:9C:DC:12:40:98:52:18:F6 X509v3 Authority Key Identifier: keyid:4F:14:11:2D:05:E9:D8:76:14:9D:27:78:D4:8E:DA:AA:32:4D:B0:A5 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TxQRLQXp2HYUnSd41I7aqjJNsKU.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1e/3caa51-7a21-499d-a545-bafbdfc8132a/1/qMndKwMJzTR8aJXanNwSQJhSGPY.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/1e/3caa51-7a21-499d-a545-bafbdfc8132a/1/TxQRLQXp2HYUnSd41I7aqjJNsKU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 193.37.72.0/22 Signature Algorithm: sha256WithRSAEncryption 1a:da:b7:03:50:db:81:8a:4d:89:97:45:eb:cd:5b:25:20:7e: d5:3f:25:5d:48:69:5a:95:3d:80:e1:1e:ff:cd:18:c8:4f:9a: 54:95:5d:45:8a:da:7b:bf:74:d1:a3:c5:94:08:71:0f:52:e6: 84:db:47:c7:b1:b8:1e:8a:3f:bd:55:81:0f:c3:41:6e:ff:d5: ce:97:54:ed:06:de:19:c2:d5:c1:9c:38:7a:b5:07:b1:4d:d3: 1d:ae:2e:3d:7a:f1:40:71:b5:f1:e8:1d:74:8f:75:dc:ab:ce: 53:28:74:e4:5c:82:69:3b:91:4f:69:05:0c:92:95:5f:62:39: 21:a0:59:63:d9:a9:bf:77:7a:b0:e3:b7:19:15:05:e2:2c:3f: f2:5f:3f:21:03:fb:31:14:50:46:3a:d3:98:2a:11:14:f8:60: c8:e8:c3:aa:de:e1:01:67:93:2e:77:4b:3c:4e:35:90:d7:64: 36:4a:11:83:7d:0a:2c:42:2d:ce:d8:36:5f:4d:94:ea:69:a0: 7f:f6:7c:0c:75:a5:0c:22:68:9d:4d:9c:c2:fa:a9:07:84:2d: 67:69:8c:1b:eb:65:5a:ed:b5:1c:75:f9:3d:32:9a:88:b6:ef: 0a:5e:81:ca:47:0d:56:5b:70:5b:9f:54:c6:8a:e8:40:68:76: 5e:b0:9f:51 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt+p1iGmo0Y6uLQbLms2eTPMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDRmMTQxMTJkMDVlOWQ4NzYxNDlkMjc3OGQ0OGVkYWFhMzI0 ZGIwYTUwHhcNMjYwMTAyMTIyMDU0WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhhOGM5ZGQyYjAzMDljZDM0N2M2ODk1ZGE5Y2RjMTI0MDk4NTIxOGY2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsfdm2ZUxylI/h/8ZAyYSr4Z9BNs5 5c+VsJgDzDkAI43LVz5k+4HbCBfRepy0DGJUMlFME8q8T7judxCuiUUlld93i1w0 N35ytT9fM6Wwn7HJevdHMJfRw6qfUz//H1rxbZ69aUtisrZRmQYa24fhTDo2POtB RjtO14ud2dXz+oyEzx/U9yEJqwhgV1AkxURZnUHqv/5/S29n05Z9YwMYIqgW6RxN kaW+uwAwPO+5Ml7Gs4HqivEtqDOb8zX8BDNWzTKgobQQUzJpB7yvy6Rmudy7ZSIT 7oB76gcqpwtWY83pEvsAAyj7wPZDRkdPoMbkQTO6cTCnribAgmy4DUj0yQIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFKjJ3SsDCc00fGiV2pzcEkCYUhj2MB8GA1UdIwQY MBaAFE8UES0F6dh2FJ0neNSO2qoyTbClMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvVHhRUkxRWHAySFlVblNkNDFJN2FxakpOc0tVLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xZS8zY2FhNTEtN2EyMS00OTlkLWE1NDUt YmFmYmRmYzgxMzJhLzEvcU1uZEt3TUp6VFI4YUpYYW5Od1NRSmhTR1BZLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xZS8zY2FhNTEtN2EyMS00OTlkLWE1NDUtYmFmYmRmYzgxMzJh LzEvVHhRUkxRWHAySFlVblNkNDFJN2FxakpOc0tVLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCwSVIMA0G CSqGSIb3DQEBCwUAA4IBAQAa2rcDUNuBik2Jl0XrzVslIH7VPyVdSGlalT2A4R7/ zRjIT5pUlV1Fitp7v3TRo8WUCHEPUuaE20fHsbgeij+9VYEPw0Fu/9XOl1TtBt4Z wtXBnDh6tQexTdMdri49evFAcbXx6B10j3Xcq85TKHTkXIJpO5FPaQUMkpVfYjkh oFlj2am/d3qw47cZFQXiLD/yXz8hA/sxFFBGOtOYKhEU+GDI6MOq3uEBZ5Mud0s8 TjWQ12Q2ShGDfQosQi3O2DZfTZTqaaB/9nwMdaUMImidTZzC+qkHhC1naYwb62Va 7bUcdfk9MpqItu8KXoHKRw1WW3Bbn1TGiuhAaHZesJ9R -----END CERTIFICATE-----Generated at Sat Jan 3 19:00:01 2026 by rpki-client