This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/25/f58ac8-53e9-4ca6-acb2-be57d7dfa0de/1/Q8ZPUdn-YmcTmBwAi_7GVX9YQUw.roa File: Q8ZPUdn-YmcTmBwAi_7GVX9YQUw.roa (raw, json) Hash identifier: kBU03x/ocDiC2CPd5HE27yOrt08fP6gCbdih5TdOqEQ= Subject key identifier: 43:C6:4F:51:D9:FE:62:67:13:98:1C:00:8B:FE:C6:55:7F:58:41:4C Certificate issuer: /CN=621310302018a387c692146a35efd33a6ed6b1ef Certificate serial: 019B797F1FB9D816884C08CDB76795F0B4B9 Authority key identifier: 62:13:10:30:20:18:A3:87:C6:92:14:6A:35:EF:D3:3A:6E:D6:B1:EF Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YhMQMCAYo4fGkhRqNe_TOm7Wse8.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/25/f58ac8-53e9-4ca6-acb2-be57d7dfa0de/1/Q8ZPUdn-YmcTmBwAi_7GVX9YQUw.roa Signing time: Thu 01 Jan 2026 12:18:52 +0000 ROA not before: Thu 01 Jan 2026 12:18:52 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 198100 IP address blocks: 185.151.146.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/25/f58ac8-53e9-4ca6-acb2-be57d7dfa0de/1/YhMQMCAYo4fGkhRqNe_TOm7Wse8.crl rsync://rpki.ripe.net/repository/DEFAULT/25/f58ac8-53e9-4ca6-acb2-be57d7dfa0de/1/YhMQMCAYo4fGkhRqNe_TOm7Wse8.mft rsync://rpki.ripe.net/repository/DEFAULT/YhMQMCAYo4fGkhRqNe_TOm7Wse8.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 22 Jan 2026 09:01:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:79:7f:1f:b9:d8:16:88:4c:08:cd:b7:67:95:f0:b4:b9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=621310302018a387c692146a35efd33a6ed6b1ef Validity Not Before: Jan 1 12:18:52 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=43c64f51d9fe626713981c008bfec6557f58414c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:06:c6:20:87:d7:fe:78:39:06:bf:df:06:de: bb:72:fb:a0:82:42:a7:c2:98:bd:47:65:78:19:2c: dd:22:70:31:fe:23:3a:7a:5a:d2:2c:be:b4:bc:1c: d9:01:b5:ac:f2:f2:6c:66:ba:d5:0b:14:97:cf:52: 5c:d4:78:b2:f5:bf:18:f8:2b:18:30:48:4c:55:66: 20:0e:51:51:37:38:48:5c:4b:6d:e3:88:e1:8e:6a: 86:d5:74:b7:5d:30:29:41:b5:d2:78:df:5e:53:d8: f2:5a:c3:ef:35:49:8c:64:c5:90:ec:ea:65:62:36: f2:57:4b:75:1c:92:6c:78:bc:65:f5:da:ec:b8:07: eb:40:00:1b:cf:1f:5a:e5:ec:36:c3:fa:fd:82:b1: be:33:d8:a2:e0:b1:fb:f7:f6:e6:b6:03:2a:29:97: 1a:c5:b5:ec:4f:a0:8c:67:a6:59:5c:9e:1a:46:06: c5:7b:89:a6:88:4b:25:cc:03:1c:13:9a:68:87:39: 9f:01:5a:38:94:46:db:da:38:39:2d:06:7a:4a:27: e6:f0:9e:06:72:52:76:c3:a5:9d:76:d1:9d:54:88: 44:97:e0:fe:9d:6f:b8:d6:96:ce:c4:fb:3b:38:2d: c1:44:f1:dc:3d:6a:cb:d3:20:7f:0c:c0:ab:26:ed: cd:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 43:C6:4F:51:D9:FE:62:67:13:98:1C:00:8B:FE:C6:55:7F:58:41:4C X509v3 Authority Key Identifier: keyid:62:13:10:30:20:18:A3:87:C6:92:14:6A:35:EF:D3:3A:6E:D6:B1:EF X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YhMQMCAYo4fGkhRqNe_TOm7Wse8.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/25/f58ac8-53e9-4ca6-acb2-be57d7dfa0de/1/Q8ZPUdn-YmcTmBwAi_7GVX9YQUw.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/25/f58ac8-53e9-4ca6-acb2-be57d7dfa0de/1/YhMQMCAYo4fGkhRqNe_TOm7Wse8.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.151.146.0/24 Signature Algorithm: sha256WithRSAEncryption 64:ec:7b:87:e9:4d:d5:3a:56:02:b3:cf:59:b7:d7:b2:6c:b6: 48:a1:c3:87:88:33:f7:26:c9:cf:1f:8f:37:03:83:ac:eb:63: de:4d:dc:0f:fa:fb:2d:18:07:b4:49:03:9e:ca:45:98:2d:36: 5c:2c:cf:33:b4:1b:8a:c0:da:1a:2a:30:80:c7:fd:8d:57:38: 61:87:3e:11:ee:96:cb:b0:da:9a:dd:2f:12:ff:10:b6:0b:05: 49:39:1d:24:02:a6:c6:76:71:dd:80:53:6c:6a:18:ac:6e:91: c0:07:fd:25:2a:c3:50:49:69:9a:f3:0a:af:89:5b:32:03:8c: b7:ba:bb:1d:18:dc:3c:18:b4:94:7d:40:4b:d1:b8:42:15:a1: 3b:a9:06:dc:f4:2c:a8:d8:ee:79:f6:6a:2e:32:7a:43:a9:d2: 0b:95:ac:f8:61:41:14:09:04:51:73:d6:c7:0d:69:4d:a8:55: 40:36:0d:a1:31:c6:01:1b:8e:f0:a4:a1:6a:ff:04:20:72:b7: ff:ec:03:73:79:15:9f:7d:ea:ff:69:e0:10:27:bf:66:4e:d6: e4:5f:30:e2:7c:12:8c:38:d1:00:4f:9b:b6:91:f4:ff:08:d7: a5:c3:1e:2b:9d:dc:33:f6:52:b7:50:e2:2f:ca:84:7a:15:b5: 25:71:5b:06 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt5fx+52BaITAjNt2eV8LS5MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDYyMTMxMDMwMjAxOGEzODdjNjkyMTQ2YTM1ZWZkMzNhNmVk NmIxZWYwHhcNMjYwMTAxMTIxODUyWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg0M2M2NGY1MWQ5ZmU2MjY3MTM5ODFjMDA4YmZlYzY1NTdmNTg0MTRjMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApAbGIIfX/ng5Br/fBt67cvuggkKn wpi9R2V4GSzdInAx/iM6elrSLL60vBzZAbWs8vJsZrrVCxSXz1Jc1Hiy9b8Y+CsY MEhMVWYgDlFRNzhIXEtt44jhjmqG1XS3XTApQbXSeN9eU9jyWsPvNUmMZMWQ7Opl YjbyV0t1HJJseLxl9drsuAfrQAAbzx9a5ew2w/r9grG+M9ii4LH79/bmtgMqKZca xbXsT6CMZ6ZZXJ4aRgbFe4mmiEslzAMcE5pohzmfAVo4lEbb2jg5LQZ6Sifm8J4G clJ2w6WddtGdVIhEl+D+nW+41pbOxPs7OC3BRPHcPWrL0yB/DMCrJu3N2wIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFEPGT1HZ/mJnE5gcAIv+xlV/WEFMMB8GA1UdIwQY MBaAFGITEDAgGKOHxpIUajXv0zpu1rHvMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvWWhNUU1DQVlvNGZHa2hScU5lX1RPbTdXc2U4LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yNS9mNThhYzgtNTNlOS00Y2E2LWFjYjIt YmU1N2Q3ZGZhMGRlLzEvUThaUFVkbi1ZbWNUbUJ3QWlfN0dWWDlZUVV3LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yNS9mNThhYzgtNTNlOS00Y2E2LWFjYjItYmU1N2Q3ZGZhMGRl LzEvWWhNUU1DQVlvNGZHa2hScU5lX1RPbTdXc2U4LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAuZeSMA0G CSqGSIb3DQEBCwUAA4IBAQBk7HuH6U3VOlYCs89Zt9eybLZIocOHiDP3JsnPH483 A4Os62PeTdwP+vstGAe0SQOeykWYLTZcLM8ztBuKwNoaKjCAx/2NVzhhhz4R7pbL sNqa3S8S/xC2CwVJOR0kAqbGdnHdgFNsahisbpHAB/0lKsNQSWma8wqviVsyA4y3 ursdGNw8GLSUfUBL0bhCFaE7qQbc9Cyo2O559mouMnpDqdILlaz4YUEUCQRRc9bH DWlNqFVANg2hMcYBG47wpKFq/wQgcrf/7ANzeRWffer/aeAQJ79mTtbkXzDifBKM ONEAT5u2kfT/CNelwx4rndwz9lK3UOIvyoR6FbUlcVsG -----END CERTIFICATE-----Generated at Wed Jan 21 19:43:03 2026 by rpki-client