This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/36/ddf8b3-1c08-495c-8ddf-fae5dbed3b1b/1/qIl2HZzJRygv7uwkOEbWbyEo4EQ.roa File: qIl2HZzJRygv7uwkOEbWbyEo4EQ.roa (raw, json) Hash identifier: WThZ2PRw7uxcfhv+44A7nqXeOJUwpshVHOrLKowp1FU= Subject key identifier: A8:89:76:1D:9C:C9:47:28:2F:EE:EC:24:38:46:D6:6F:21:28:E0:44 Certificate issuer: /CN=6f84e4738a70ea39c08cef210432ae399ec7e915 Certificate serial: 019B797ED3CE0250C6079637D0EDFCCE1B39 Authority key identifier: 6F:84:E4:73:8A:70:EA:39:C0:8C:EF:21:04:32:AE:39:9E:C7:E9:15 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/b4Tkc4pw6jnAjO8hBDKuOZ7H6RU.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/36/ddf8b3-1c08-495c-8ddf-fae5dbed3b1b/1/qIl2HZzJRygv7uwkOEbWbyEo4EQ.roa Signing time: Thu 01 Jan 2026 12:18:33 +0000 ROA not before: Thu 01 Jan 2026 12:18:33 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 202673 IP address blocks: 178.253.224.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/36/ddf8b3-1c08-495c-8ddf-fae5dbed3b1b/1/b4Tkc4pw6jnAjO8hBDKuOZ7H6RU.crl rsync://rpki.ripe.net/repository/DEFAULT/36/ddf8b3-1c08-495c-8ddf-fae5dbed3b1b/1/b4Tkc4pw6jnAjO8hBDKuOZ7H6RU.mft rsync://rpki.ripe.net/repository/DEFAULT/b4Tkc4pw6jnAjO8hBDKuOZ7H6RU.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 20 Jan 2026 08:17:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:79:7e:d3:ce:02:50:c6:07:96:37:d0:ed:fc:ce:1b:39 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6f84e4738a70ea39c08cef210432ae399ec7e915 Validity Not Before: Jan 1 12:18:33 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=a889761d9cc947282feeec243846d66f2128e044 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:6c:f2:7f:88:e1:9c:fa:a5:8e:ab:0f:86:4a: ae:a1:1e:16:69:f5:f6:2d:b1:95:0e:ec:66:f6:32: ef:e8:da:cc:b2:ce:75:d0:54:0e:45:c7:72:c6:07: 79:65:f0:5b:58:60:02:7b:9c:07:68:c8:f5:00:91: 24:29:37:33:5c:8c:f0:40:ae:0c:87:13:bf:68:e1: 92:a7:99:f5:5b:a8:0d:a1:53:f0:12:d1:14:d1:fb: fb:1f:d1:4c:19:0b:d4:65:dc:1f:df:87:3d:be:bc: 96:41:94:7b:5f:59:ee:21:5a:f7:6c:77:61:f6:85: a7:c0:e5:f3:21:18:ee:28:84:8c:2d:6b:60:ce:5d: 24:d3:d6:26:1c:4e:1e:c3:94:d1:22:06:e1:4d:08: f3:91:9b:d3:67:2a:d6:a2:ff:1f:4e:28:e1:75:06: a7:4d:42:46:9f:0e:8f:51:50:36:63:ad:06:5f:ab: 17:8d:ff:f0:61:78:89:0e:3e:af:85:4c:40:db:e7: 1f:04:8b:fc:95:09:2e:cc:43:1e:35:2a:6c:2e:85: 2c:a9:de:e8:af:14:96:7d:27:63:a6:01:50:9c:8f: 81:00:be:24:f0:02:15:db:10:a2:43:53:b3:9f:81: fb:81:fd:c7:d9:2f:db:73:f1:44:1d:f9:e6:73:13: 7c:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A8:89:76:1D:9C:C9:47:28:2F:EE:EC:24:38:46:D6:6F:21:28:E0:44 X509v3 Authority Key Identifier: keyid:6F:84:E4:73:8A:70:EA:39:C0:8C:EF:21:04:32:AE:39:9E:C7:E9:15 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/b4Tkc4pw6jnAjO8hBDKuOZ7H6RU.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/36/ddf8b3-1c08-495c-8ddf-fae5dbed3b1b/1/qIl2HZzJRygv7uwkOEbWbyEo4EQ.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/36/ddf8b3-1c08-495c-8ddf-fae5dbed3b1b/1/b4Tkc4pw6jnAjO8hBDKuOZ7H6RU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 178.253.224.0/24 Signature Algorithm: sha256WithRSAEncryption 29:b3:1d:b4:0d:38:3f:d4:a9:6d:3f:47:96:e4:ef:d2:c1:c3: 48:42:b0:b7:3e:42:74:40:ba:2c:c8:e6:69:e3:6f:cb:da:fa: c1:eb:30:90:57:c1:ad:98:bb:00:9d:80:d0:b3:83:d6:8e:58: d6:98:b9:7d:a7:07:52:f7:5f:1d:a1:2d:78:48:a6:ed:6a:b4: d0:46:24:27:32:07:d9:e5:93:e0:51:27:01:f8:7a:06:8f:8e: 3a:03:a2:fe:e0:72:04:05:dd:46:05:e1:f1:63:88:30:21:86: 40:59:67:ed:2c:9e:70:be:ff:fa:97:23:21:10:be:cc:b4:c0: fa:89:4c:fc:ea:d5:ac:fb:c3:ac:33:02:30:02:47:58:35:aa: 40:31:da:38:1e:59:99:d1:bb:38:d9:68:8e:d2:87:a5:f5:a7: 33:e5:5e:ca:e9:eb:c0:5c:eb:76:b6:cc:41:da:35:80:02:3a: 4b:30:f6:f6:47:db:22:52:fb:c8:d5:27:ea:86:54:9d:ac:59: bc:d8:04:cb:10:28:4e:2b:f0:4d:f2:88:bf:f9:e8:36:f7:4b: 18:fa:b0:86:5e:22:06:c8:4c:8e:86:f2:73:d8:2b:2b:45:7a: f9:7b:ff:b0:8e:9b:b5:03:0c:28:15:7a:45:18:4f:e1:35:eb: 36:ba:e2:5a -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt5ftPOAlDGB5Y30O38zhs5MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDZmODRlNDczOGE3MGVhMzljMDhjZWYyMTA0MzJhZTM5OWVj N2U5MTUwHhcNMjYwMTAxMTIxODMzWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhhODg5NzYxZDljYzk0NzI4MmZlZWVjMjQzODQ2ZDY2ZjIxMjhlMDQ0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsWzyf4jhnPqljqsPhkquoR4WafX2 LbGVDuxm9jLv6NrMss510FQORcdyxgd5ZfBbWGACe5wHaMj1AJEkKTczXIzwQK4M hxO/aOGSp5n1W6gNoVPwEtEU0fv7H9FMGQvUZdwf34c9vryWQZR7X1nuIVr3bHdh 9oWnwOXzIRjuKISMLWtgzl0k09YmHE4ew5TRIgbhTQjzkZvTZyrWov8fTijhdQan TUJGnw6PUVA2Y60GX6sXjf/wYXiJDj6vhUxA2+cfBIv8lQkuzEMeNSpsLoUsqd7o rxSWfSdjpgFQnI+BAL4k8AIV2xCiQ1Ozn4H7gf3H2S/bc/FEHfnmcxN8kwIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFKiJdh2cyUcoL+7sJDhG1m8hKOBEMB8GA1UdIwQY MBaAFG+E5HOKcOo5wIzvIQQyrjmex+kVMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvYjRUa2M0cHc2am5Bak84aEJES3VPWjdINlJVLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zNi9kZGY4YjMtMWMwOC00OTVjLThkZGYt ZmFlNWRiZWQzYjFiLzEvcUlsMkhaekpSeWd2N3V3a09FYldieUVvNEVRLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zNi9kZGY4YjMtMWMwOC00OTVjLThkZGYtZmFlNWRiZWQzYjFi LzEvYjRUa2M0cHc2am5Bak84aEJES3VPWjdINlJVLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAsv3gMA0G CSqGSIb3DQEBCwUAA4IBAQApsx20DTg/1KltP0eW5O/SwcNIQrC3PkJ0QLosyOZp 42/L2vrB6zCQV8GtmLsAnYDQs4PWjljWmLl9pwdS918doS14SKbtarTQRiQnMgfZ 5ZPgUScB+HoGj446A6L+4HIEBd1GBeHxY4gwIYZAWWftLJ5wvv/6lyMhEL7MtMD6 iUz86tWs+8OsMwIwAkdYNapAMdo4HlmZ0bs42WiO0oel9acz5V7K6evAXOt2tsxB 2jWAAjpLMPb2R9siUvvI1SfqhlSdrFm82ATLEChOK/BN8oi/+eg290sY+rCGXiIG yEyOhvJz2CsrRXr5e/+wjpu1AwwoFXpFGE/hNes2uuJa -----END CERTIFICATE-----Generated at Mon Jan 19 13:54:14 2026 by rpki-client