This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/30/2c3316-efc7-4952-9efe-8c153965bac9/1/qG2nNWb8MqqDopUB1tVODEkVl6w.roa File: qG2nNWb8MqqDopUB1tVODEkVl6w.roa (raw, json) Hash identifier: cfGFab+OgFf7ubny/5LdmUqIORuyuUqS67/jyuUGkNM= Subject key identifier: A8:6D:A7:35:66:FC:32:AA:83:A2:95:01:D6:D5:4E:0C:49:15:97:AC Certificate issuer: /CN=0d2999042c5e2006bd5aeb7a05de1e96a5e73664 Certificate serial: 019B7A5B2D917215D58C8C74D8246593ABCB Authority key identifier: 0D:29:99:04:2C:5E:20:06:BD:5A:EB:7A:05:DE:1E:96:A5:E7:36:64 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DSmZBCxeIAa9Wut6Bd4elqXnNmQ.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/30/2c3316-efc7-4952-9efe-8c153965bac9/1/qG2nNWb8MqqDopUB1tVODEkVl6w.roa Signing time: Thu 01 Jan 2026 16:19:14 +0000 ROA not before: Thu 01 Jan 2026 16:19:14 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 9335 IP address blocks: 45.150.128.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/30/2c3316-efc7-4952-9efe-8c153965bac9/1/DSmZBCxeIAa9Wut6Bd4elqXnNmQ.crl rsync://rpki.ripe.net/repository/DEFAULT/30/2c3316-efc7-4952-9efe-8c153965bac9/1/DSmZBCxeIAa9Wut6Bd4elqXnNmQ.mft rsync://rpki.ripe.net/repository/DEFAULT/DSmZBCxeIAa9Wut6Bd4elqXnNmQ.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 20 Jan 2026 16:02:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7a:5b:2d:91:72:15:d5:8c:8c:74:d8:24:65:93:ab:cb Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0d2999042c5e2006bd5aeb7a05de1e96a5e73664 Validity Not Before: Jan 1 16:19:14 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=a86da73566fc32aa83a29501d6d54e0c491597ac Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:97:17:a0:b4:09:f7:6a:48:9f:7f:e8:b7:b1:c3: 7a:e9:f0:77:a4:b9:1b:ad:0a:f3:e5:5d:3e:5d:60: ef:4f:26:d9:b7:cf:12:d8:99:0c:04:fc:f6:16:0e: 54:cd:35:ad:65:9d:c0:3e:03:2c:86:af:37:e5:7f: 1b:91:7e:df:65:95:bd:71:8d:a1:49:bb:00:a1:b8: fd:9e:24:74:64:27:ce:55:20:e3:93:4d:09:2b:44: 3f:8a:e5:ae:5e:97:2f:ea:c6:9e:fc:65:b3:82:ce: e8:83:2e:c1:ab:5d:c5:a8:84:71:61:38:46:1d:34: ab:29:cf:34:58:6f:61:4a:51:c4:c9:c7:5d:c7:90: 73:a6:3b:5d:cd:b8:4d:cf:65:7b:9a:62:ea:46:fb: ae:ce:14:53:d7:0e:de:f4:cc:19:98:bc:fa:0b:9e: f1:5e:4c:d7:0b:66:84:10:19:04:e2:3c:5c:78:32: 47:0d:9b:5e:15:1e:f0:a5:d6:7e:db:b1:47:8b:ed: d3:51:31:3f:6c:ca:2c:05:4d:8c:9b:a9:3c:36:7d: 01:33:9b:dd:94:46:b1:02:ac:24:86:20:22:50:9e: 6a:2d:e8:74:6d:98:5a:52:7a:17:fa:ff:af:b8:49: 52:e2:8a:d7:56:8e:b8:17:eb:e5:6a:89:2c:4e:f0: 95:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A8:6D:A7:35:66:FC:32:AA:83:A2:95:01:D6:D5:4E:0C:49:15:97:AC X509v3 Authority Key Identifier: keyid:0D:29:99:04:2C:5E:20:06:BD:5A:EB:7A:05:DE:1E:96:A5:E7:36:64 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DSmZBCxeIAa9Wut6Bd4elqXnNmQ.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/30/2c3316-efc7-4952-9efe-8c153965bac9/1/qG2nNWb8MqqDopUB1tVODEkVl6w.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/30/2c3316-efc7-4952-9efe-8c153965bac9/1/DSmZBCxeIAa9Wut6Bd4elqXnNmQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 45.150.128.0/22 Signature Algorithm: sha256WithRSAEncryption 7c:5e:85:dc:5f:af:15:23:ea:75:71:e2:8e:ae:30:46:3a:0d: 1a:fa:f3:c1:aa:e9:f5:eb:9b:89:f6:60:d4:a7:e1:df:a4:d1: eb:9d:a5:0d:8a:74:35:48:b8:c7:9d:78:1f:82:4a:72:ae:5c: 19:df:d1:03:ce:21:5c:6f:b3:bc:83:02:91:24:7d:a7:38:fa: 17:9d:a6:4f:c7:6e:ad:3a:14:54:1e:31:64:07:eb:9e:e6:82: 65:57:f9:f7:23:b4:88:fc:84:42:12:3b:1e:0c:3e:3d:11:ea: d4:de:f8:52:78:fc:e1:74:44:a4:de:fa:28:ac:0e:20:df:05: 16:f7:ef:7b:2c:d3:ab:69:b4:8e:7a:29:55:a3:19:5e:53:78: aa:cb:7b:b5:b7:d3:29:8b:69:87:9b:fd:67:98:3e:66:3f:19: d8:56:00:25:9a:53:6c:60:e2:84:e8:bf:c2:c0:80:8b:42:89: 59:d5:db:93:65:15:61:cc:bc:b7:d9:0c:f1:7d:3e:96:e2:58: df:82:61:62:db:88:4a:25:bb:91:68:01:3b:38:6e:6f:6a:d1: 5d:ca:40:0e:06:2f:05:65:ac:98:c0:4e:bc:40:9e:97:1b:0a: 33:d1:32:7d:eb:44:bd:50:94:36:a9:68:db:22:36:13:f5:e2: 75:dd:3b:a2 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt6Wy2RchXVjIx02CRlk6vLMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDBkMjk5OTA0MmM1ZTIwMDZiZDVhZWI3YTA1ZGUxZTk2YTVl NzM2NjQwHhcNMjYwMTAxMTYxOTE0WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhhODZkYTczNTY2ZmMzMmFhODNhMjk1MDFkNmQ1NGUwYzQ5MTU5N2FjMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAlxegtAn3akiff+i3scN66fB3pLkb rQrz5V0+XWDvTybZt88S2JkMBPz2Fg5UzTWtZZ3APgMshq835X8bkX7fZZW9cY2h SbsAobj9niR0ZCfOVSDjk00JK0Q/iuWuXpcv6sae/GWzgs7ogy7Bq13FqIRxYThG HTSrKc80WG9hSlHEycddx5BzpjtdzbhNz2V7mmLqRvuuzhRT1w7e9MwZmLz6C57x XkzXC2aEEBkE4jxceDJHDZteFR7wpdZ+27FHi+3TUTE/bMosBU2Mm6k8Nn0BM5vd lEaxAqwkhiAiUJ5qLeh0bZhaUnoX+v+vuElS4orXVo64F+vlaoksTvCVywIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFKhtpzVm/DKqg6KVAdbVTgxJFZesMB8GA1UdIwQY MBaAFA0pmQQsXiAGvVrregXeHpal5zZkMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvRFNtWkJDeGVJQWE5V3V0NkJkNGVscVhuTm1RLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zMC8yYzMzMTYtZWZjNy00OTUyLTllZmUt OGMxNTM5NjViYWM5LzEvcUcybk5XYjhNcXFEb3BVQjF0Vk9ERWtWbDZ3LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zMC8yYzMzMTYtZWZjNy00OTUyLTllZmUtOGMxNTM5NjViYWM5 LzEvRFNtWkJDeGVJQWE5V3V0NkJkNGVscVhuTm1RLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCLZaAMA0G CSqGSIb3DQEBCwUAA4IBAQB8XoXcX68VI+p1ceKOrjBGOg0a+vPBqun165uJ9mDU p+HfpNHrnaUNinQ1SLjHnXgfgkpyrlwZ39EDziFcb7O8gwKRJH2nOPoXnaZPx26t OhRUHjFkB+ue5oJlV/n3I7SI/IRCEjseDD49EerU3vhSePzhdESk3voorA4g3wUW 9+97LNOrabSOeilVoxleU3iqy3u1t9Mpi2mHm/1nmD5mPxnYVgAlmlNsYOKE6L/C wICLQolZ1duTZRVhzLy32QzxfT6W4ljfgmFi24hKJbuRaAE7OG5vatFdykAOBi8F ZayYwE68QJ6XGwoz0TJ960S9UJQ2qWjbIjYT9eJ13Tui -----END CERTIFICATE-----Generated at Mon Jan 19 20:01:07 2026 by rpki-client