This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2d/448c85-a966-4df2-98e4-a5a5ad06eb43/1/Q2eq3vQ27LdqIhXEwPYKtKFxrj8.roa File: Q2eq3vQ27LdqIhXEwPYKtKFxrj8.roa (raw, json) Hash identifier: w/CxsU35XsDW4qiiMK3VW7xr1QGFT3WBU9iNjApYbmk= Subject key identifier: 43:67:AA:DE:F4:36:EC:B7:6A:22:15:C4:C0:F6:0A:B4:A1:71:AE:3F Certificate issuer: /CN=5e9b9bed8f8d3d579bb0552e4fc4b81986861e64 Certificate serial: 019B791139C16D73EB37822EC638B0772A4F Authority key identifier: 5E:9B:9B:ED:8F:8D:3D:57:9B:B0:55:2E:4F:C4:B8:19:86:86:1E:64 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Xpub7Y-NPVebsFUuT8S4GYaGHmQ.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2d/448c85-a966-4df2-98e4-a5a5ad06eb43/1/Q2eq3vQ27LdqIhXEwPYKtKFxrj8.roa Signing time: Thu 01 Jan 2026 10:18:50 +0000 ROA not before: Thu 01 Jan 2026 10:18:50 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 24836 IP address blocks: 193.111.163.0/24 maxlen: 24 2001:67c:2a1c::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2d/448c85-a966-4df2-98e4-a5a5ad06eb43/1/Xpub7Y-NPVebsFUuT8S4GYaGHmQ.crl rsync://rpki.ripe.net/repository/DEFAULT/2d/448c85-a966-4df2-98e4-a5a5ad06eb43/1/Xpub7Y-NPVebsFUuT8S4GYaGHmQ.mft rsync://rpki.ripe.net/repository/DEFAULT/Xpub7Y-NPVebsFUuT8S4GYaGHmQ.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:79:11:39:c1:6d:73:eb:37:82:2e:c6:38:b0:77:2a:4f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5e9b9bed8f8d3d579bb0552e4fc4b81986861e64 Validity Not Before: Jan 1 10:18:50 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=4367aadef436ecb76a2215c4c0f60ab4a171ae3f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:5a:4f:5d:59:bc:9f:b6:df:6f:2e:48:38:71: 1e:74:c5:b3:e9:b2:7a:59:ec:71:f2:a1:01:f1:49: 5e:5e:30:47:c4:fa:c5:71:a8:9a:eb:d7:66:10:bf: eb:50:b5:ad:ec:cd:96:39:f4:21:f3:61:9a:b4:bb: ea:82:17:8a:ef:1e:8f:75:c3:48:0a:69:19:ec:3c: 87:3f:a4:e2:d6:dc:41:f8:e8:11:bd:e5:bf:94:50: 75:20:8d:9f:52:f9:2e:69:8f:a4:b9:38:dc:01:96: ff:68:d9:e5:18:95:24:ed:63:52:de:16:4e:07:a3: 8c:8d:e8:06:99:35:39:5f:30:e3:dd:fb:e3:3f:c3: 69:eb:c8:12:91:11:a2:cf:f6:96:b7:ad:84:38:bf: 47:b5:a0:65:3d:0a:a0:da:3e:66:9b:7d:ac:0c:6d: e4:52:84:10:39:98:60:a1:98:78:e6:ff:bd:46:ff: e9:d3:e1:05:c4:f1:bc:bf:0c:38:01:12:28:b5:6c: 27:f9:34:54:04:51:33:22:e5:5f:24:0b:3a:1a:dc: b9:cc:aa:bb:ec:36:7f:3a:ed:5b:6c:21:77:42:4b: 7f:24:f4:ae:e8:05:49:3e:fc:24:91:25:0d:10:44: 37:5d:a7:ad:0a:95:ac:fd:00:13:4b:cb:50:6b:e6: c5:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 43:67:AA:DE:F4:36:EC:B7:6A:22:15:C4:C0:F6:0A:B4:A1:71:AE:3F X509v3 Authority Key Identifier: keyid:5E:9B:9B:ED:8F:8D:3D:57:9B:B0:55:2E:4F:C4:B8:19:86:86:1E:64 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Xpub7Y-NPVebsFUuT8S4GYaGHmQ.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/448c85-a966-4df2-98e4-a5a5ad06eb43/1/Q2eq3vQ27LdqIhXEwPYKtKFxrj8.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/448c85-a966-4df2-98e4-a5a5ad06eb43/1/Xpub7Y-NPVebsFUuT8S4GYaGHmQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 193.111.163.0/24 IPv6: 2001:67c:2a1c::/48 Signature Algorithm: sha256WithRSAEncryption 68:b4:f4:f2:0b:65:14:64:72:1a:93:3d:4e:3c:c6:f5:c9:ee: f9:ff:53:4e:71:72:18:ea:4a:a8:e4:79:93:34:07:57:bf:71: 01:fd:58:61:04:52:c6:5d:7a:d8:ab:5e:0d:6c:d4:e3:6c:5a: 91:93:48:f7:06:c6:7a:53:c3:de:c9:d4:61:b3:cb:3b:e0:04: eb:41:f4:ab:31:01:65:34:f8:e3:07:a0:5b:6e:03:72:67:a2: 2d:61:97:2a:75:a0:67:3e:10:40:35:6a:28:4d:5a:18:76:c4: d6:ac:65:80:4e:5c:95:49:fe:35:b7:5c:6f:49:ad:18:89:0d: 75:e2:25:c5:35:2c:fb:3b:73:bf:57:d3:fe:a1:59:dc:e5:ef: cf:9b:e3:a1:68:0f:34:a9:e3:be:ce:1a:4b:c5:4a:a3:69:0c: 36:87:c0:67:a6:1f:4c:2a:94:e9:25:5b:1c:b9:83:1e:2c:89: 91:81:37:1f:29:ca:1a:41:70:12:9f:ab:a7:5a:68:ad:65:da: 72:28:c1:c3:e7:81:7e:9e:4b:a2:73:ba:22:aa:26:28:ba:ec: 26:62:e4:72:8a:83:2c:2b:df:5d:66:0a:11:d3:67:31:49:cb: 38:5d:d5:49:91:0d:11:2c:f6:b6:2f:9c:f4:32:19:89:d4:21: a1:a7:1b:29 -----BEGIN CERTIFICATE----- MIIFDjCCA/agAwIBAgISAZt5ETnBbXPrN4IuxjiwdypPMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDVlOWI5YmVkOGY4ZDNkNTc5YmIwNTUyZTRmYzRiODE5ODY4 NjFlNjQwHhcNMjYwMTAxMTAxODUwWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg0MzY3YWFkZWY0MzZlY2I3NmEyMjE1YzRjMGY2MGFiNGExNzFhZTNmMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtlpPXVm8n7bfby5IOHEedMWz6bJ6 Wexx8qEB8UleXjBHxPrFcaia69dmEL/rULWt7M2WOfQh82GatLvqgheK7x6PdcNI CmkZ7DyHP6Ti1txB+OgRveW/lFB1II2fUvkuaY+kuTjcAZb/aNnlGJUk7WNS3hZO B6OMjegGmTU5XzDj3fvjP8Np68gSkRGiz/aWt62EOL9HtaBlPQqg2j5mm32sDG3k UoQQOZhgoZh45v+9Rv/p0+EFxPG8vww4ARIotWwn+TRUBFEzIuVfJAs6Gty5zKq7 7DZ/Ou1bbCF3Qkt/JPSu6AVJPvwkkSUNEEQ3XaetCpWs/QATS8tQa+bFRwIDAQAB o4ICGjCCAhYwHQYDVR0OBBYEFENnqt70Nuy3aiIVxMD2CrShca4/MB8GA1UdIwQY MBaAFF6bm+2PjT1Xm7BVLk/EuBmGhh5kMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvWHB1YjdZLU5QVmVic0ZVdVQ4UzRHWWFHSG1RLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yZC80NDhjODUtYTk2Ni00ZGYyLTk4ZTQt YTVhNWFkMDZlYjQzLzEvUTJlcTN2UTI3TGRxSWhYRXdQWUt0S0Z4cmo4LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yZC80NDhjODUtYTk2Ni00ZGYyLTk4ZTQtYTVhNWFkMDZlYjQz LzEvWHB1YjdZLU5QVmVic0ZVdVQ4UzRHWWFHSG1RLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMDAGCCsGAQUFBwEHAQH/BCEwHzAMBAIAATAGAwQAwW+jMA8E AgACMAkDBwAgAQZ8KhwwDQYJKoZIhvcNAQELBQADggEBAGi09PILZRRkchqTPU48 xvXJ7vn/U05xchjqSqjkeZM0B1e/cQH9WGEEUsZdetirXg1s1ONsWpGTSPcGxnpT w97J1GGzyzvgBOtB9KsxAWU0+OMHoFtuA3Jnoi1hlyp1oGc+EEA1aihNWhh2xNas ZYBOXJVJ/jW3XG9JrRiJDXXiJcU1LPs7c79X0/6hWdzl78+b46FoDzSp477OGkvF SqNpDDaHwGemH0wqlOklWxy5gx4siZGBNx8pyhpBcBKfq6daaK1l2nIowcPngX6e S6JzuiKqJii67CZi5HKKgywr311mChHTZzFJyzhd1UmRDREs9rYvnPQyGYnUIaGn Gyk= -----END CERTIFICATE-----Generated at Mon Feb 9 23:51:41 2026 by rpki-client