This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/33/7656db-94a5-45be-9435-7061356bef1b/1/QZlonf94vrWyMPOp87JAm_NWNqo.roa File: QZlonf94vrWyMPOp87JAm_NWNqo.roa (raw, json) Hash identifier: w6YhRh8acabp1x77SswHpUR6bqnL4nDuqC2pTtKcfFs= Subject key identifier: 41:99:68:9D:FF:78:BE:B5:B2:30:F3:A9:F3:B2:40:9B:F3:56:36:AA Certificate issuer: /CN=a1d71853324eb060fbafc988233860499c96c53a Certificate serial: 019B77C6DEA806A69AA00CF7D7037B23DC03 Authority key identifier: A1:D7:18:53:32:4E:B0:60:FB:AF:C9:88:23:38:60:49:9C:96:C5:3A Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/odcYUzJOsGD7r8mIIzhgSZyWxTo.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/33/7656db-94a5-45be-9435-7061356bef1b/1/QZlonf94vrWyMPOp87JAm_NWNqo.roa Signing time: Thu 01 Jan 2026 04:18:00 +0000 ROA not before: Thu 01 Jan 2026 04:18:00 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 209642 IP address blocks: 45.148.133.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/33/7656db-94a5-45be-9435-7061356bef1b/1/odcYUzJOsGD7r8mIIzhgSZyWxTo.crl rsync://rpki.ripe.net/repository/DEFAULT/33/7656db-94a5-45be-9435-7061356bef1b/1/odcYUzJOsGD7r8mIIzhgSZyWxTo.mft rsync://rpki.ripe.net/repository/DEFAULT/odcYUzJOsGD7r8mIIzhgSZyWxTo.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 21 Jan 2026 15:30:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:77:c6:de:a8:06:a6:9a:a0:0c:f7:d7:03:7b:23:dc:03 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=a1d71853324eb060fbafc988233860499c96c53a Validity Not Before: Jan 1 04:18:00 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=4199689dff78beb5b230f3a9f3b2409bf35636aa Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:3d:8c:3e:18:ce:69:1e:7f:b7:76:b8:69:cb: 5a:42:d0:0b:e1:d2:71:87:60:bf:c4:01:0a:71:18: eb:6b:74:33:9d:aa:62:a6:fa:52:02:a3:49:0e:b1: 42:b3:99:56:96:a0:58:c5:aa:37:2b:9e:56:13:52: e0:d4:40:88:7f:db:18:8c:67:d6:47:6e:c3:68:84: b4:a9:42:b7:42:8b:00:1e:f3:03:6b:c6:27:bc:9c: b4:70:1a:77:de:17:78:e1:a1:2e:68:89:d9:ad:5a: 68:dd:eb:31:b9:98:90:52:3a:f7:90:96:4c:5d:c9: db:e7:06:2e:87:4f:9e:a2:f5:ef:8e:ed:8c:7f:5d: 78:28:38:c6:9e:bb:9d:fe:1e:0c:78:05:1f:7e:50: 35:f7:b2:84:87:22:15:d9:53:47:85:0c:d0:8d:ed: d4:6f:8f:2c:8a:0e:b0:5f:d2:d6:bc:d3:61:47:9b: 84:72:b3:90:8d:72:94:48:00:8b:d5:74:6f:2a:29: 75:e3:25:b8:ed:f3:ed:53:18:77:68:74:ea:cb:a9: d2:30:35:2a:66:b4:94:16:29:7e:02:91:50:7e:9e: 24:d6:09:d7:ca:f4:e8:ba:06:f1:a3:69:37:3c:77: e1:bd:a5:09:77:26:1c:e7:0c:1e:e7:bc:26:09:4d: b2:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 41:99:68:9D:FF:78:BE:B5:B2:30:F3:A9:F3:B2:40:9B:F3:56:36:AA X509v3 Authority Key Identifier: keyid:A1:D7:18:53:32:4E:B0:60:FB:AF:C9:88:23:38:60:49:9C:96:C5:3A X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/odcYUzJOsGD7r8mIIzhgSZyWxTo.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/33/7656db-94a5-45be-9435-7061356bef1b/1/QZlonf94vrWyMPOp87JAm_NWNqo.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/33/7656db-94a5-45be-9435-7061356bef1b/1/odcYUzJOsGD7r8mIIzhgSZyWxTo.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 45.148.133.0/24 Signature Algorithm: sha256WithRSAEncryption 3c:bc:25:fa:74:47:32:46:71:44:1f:dd:57:11:33:ea:86:82: 0d:54:26:f3:d4:8b:a8:d4:a2:c0:b1:e0:26:a4:19:61:26:c5: 57:11:2f:4f:de:7d:37:4c:e7:48:28:7f:ca:75:36:6b:19:d4: 36:dd:b3:1c:d4:ec:6b:9b:60:df:dc:86:f2:d7:22:12:e6:01: 2f:9f:2d:c9:1e:a6:0b:a2:b6:a9:a0:89:78:7f:77:00:50:34: 38:3c:76:ff:6d:ba:bc:6a:18:f2:d2:54:b9:9e:41:ad:5d:23: 8d:c1:4e:14:6b:40:eb:ca:26:51:e2:b4:ac:77:cc:7a:4f:53: 34:8b:ff:19:7c:b2:ba:af:63:70:ec:54:83:23:3c:c8:44:99: ad:76:ef:4c:54:9d:85:5b:10:ea:a6:3f:df:98:f0:2d:c4:92: 7b:35:70:d5:ee:ef:a9:89:3c:0c:f6:63:5e:d4:05:ee:59:22: d3:27:2d:0d:73:f6:bf:9d:ca:a4:c9:99:79:ad:eb:ec:ac:54: 60:97:b3:76:74:f0:3e:01:31:29:c4:25:23:f6:38:96:c0:dc: a6:4a:97:84:2f:f2:f7:6e:b8:9d:49:32:1c:8c:de:c5:b6:b1: 86:d6:6f:30:aa:b2:61:d0:25:92:56:e2:b7:c5:a7:11:dc:04: 30:c1:12:54 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt3xt6oBqaaoAz31wN7I9wDMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGExZDcxODUzMzI0ZWIwNjBmYmFmYzk4ODIzMzg2MDQ5OWM5 NmM1M2EwHhcNMjYwMTAxMDQxODAwWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg0MTk5Njg5ZGZmNzhiZWI1YjIzMGYzYTlmM2IyNDA5YmYzNTYzNmFhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA2T2MPhjOaR5/t3a4actaQtAL4dJx h2C/xAEKcRjra3QznapipvpSAqNJDrFCs5lWlqBYxao3K55WE1Lg1ECIf9sYjGfW R27DaIS0qUK3QosAHvMDa8YnvJy0cBp33hd44aEuaInZrVpo3esxuZiQUjr3kJZM Xcnb5wYuh0+eovXvju2Mf114KDjGnrud/h4MeAUfflA197KEhyIV2VNHhQzQje3U b48sig6wX9LWvNNhR5uEcrOQjXKUSACL1XRvKil14yW47fPtUxh3aHTqy6nSMDUq ZrSUFil+ApFQfp4k1gnXyvTougbxo2k3PHfhvaUJdyYc5wwe57wmCU2yIwIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFEGZaJ3/eL61sjDzqfOyQJvzVjaqMB8GA1UdIwQY MBaAFKHXGFMyTrBg+6/JiCM4YEmclsU6MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvb2RjWVV6Sk9zR0Q3cjhtSUl6aGdTWnlXeFRvLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zMy83NjU2ZGItOTRhNS00NWJlLTk0MzUt NzA2MTM1NmJlZjFiLzEvUVpsb25mOTR2cld5TVBPcDg3SkFtX05XTnFvLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zMy83NjU2ZGItOTRhNS00NWJlLTk0MzUtNzA2MTM1NmJlZjFi LzEvb2RjWVV6Sk9zR0Q3cjhtSUl6aGdTWnlXeFRvLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQALZSFMA0G CSqGSIb3DQEBCwUAA4IBAQA8vCX6dEcyRnFEH91XETPqhoINVCbz1Iuo1KLAseAm pBlhJsVXES9P3n03TOdIKH/KdTZrGdQ23bMc1Oxrm2Df3Iby1yIS5gEvny3JHqYL orapoIl4f3cAUDQ4PHb/bbq8ahjy0lS5nkGtXSONwU4Ua0DryiZR4rSsd8x6T1M0 i/8ZfLK6r2Nw7FSDIzzIRJmtdu9MVJ2FWxDqpj/fmPAtxJJ7NXDV7u+piTwM9mNe 1AXuWSLTJy0Nc/a/ncqkyZl5revsrFRgl7N2dPA+ATEpxCUj9jiWwNymSpeEL/L3 bridSTIcjN7FtrGG1m8wqrJh0CWSVuK3xacR3AQwwRJU -----END CERTIFICATE-----Generated at Tue Jan 20 22:47:17 2026 by rpki-client