This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/42/a99355-2d01-4da5-8e73-1bc552c00dd7/1/qloA7aGwDDMf0Ro9CGFQNJI5uVs.roa File: qloA7aGwDDMf0Ro9CGFQNJI5uVs.roa (raw, json) Hash identifier: GNTNvRk+NISvdL5uVY3h8ds7WhRg+ACYEl8vBkQaLDw= Subject key identifier: AA:5A:00:ED:A1:B0:0C:33:1F:D1:1A:3D:08:61:50:34:92:39:B9:5B Certificate issuer: /CN=10953e607670ff738eee6a6b577d8c8b2804e1e1 Certificate serial: 019B783524E8C48DE8560EB66639EF85B7B6 Authority key identifier: 10:95:3E:60:76:70:FF:73:8E:EE:6A:6B:57:7D:8C:8B:28:04:E1:E1 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/EJU-YHZw_3OO7mprV32MiygE4eE.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/42/a99355-2d01-4da5-8e73-1bc552c00dd7/1/qloA7aGwDDMf0Ro9CGFQNJI5uVs.roa Signing time: Thu 01 Jan 2026 06:18:27 +0000 ROA not before: Thu 01 Jan 2026 06:18:27 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 16509 IP address blocks: 176.124.224.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/42/a99355-2d01-4da5-8e73-1bc552c00dd7/1/EJU-YHZw_3OO7mprV32MiygE4eE.crl rsync://rpki.ripe.net/repository/DEFAULT/42/a99355-2d01-4da5-8e73-1bc552c00dd7/1/EJU-YHZw_3OO7mprV32MiygE4eE.mft rsync://rpki.ripe.net/repository/DEFAULT/EJU-YHZw_3OO7mprV32MiygE4eE.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 03 Jan 2026 00:00:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:78:35:24:e8:c4:8d:e8:56:0e:b6:66:39:ef:85:b7:b6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=10953e607670ff738eee6a6b577d8c8b2804e1e1 Validity Not Before: Jan 1 06:18:27 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=aa5a00eda1b00c331fd11a3d086150349239b95b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:bd:26:08:59:4a:78:99:ac:b2:d8:7c:b3:9c: 7e:aa:8c:38:c1:15:c6:55:a8:15:ee:9c:87:ca:32: 78:b4:2c:03:df:01:0d:be:18:30:82:08:be:69:13: 47:eb:36:71:7f:e5:35:69:72:a6:81:0d:ed:26:b9: 5d:32:b1:e9:ea:9c:44:ee:c0:d8:cd:f1:d8:dc:16: 23:b0:d7:13:25:e8:46:81:b4:7d:02:11:96:ce:14: e5:2d:90:a9:b9:9b:a1:63:52:a5:9b:4e:ca:e1:38: ab:df:d7:6d:9f:61:a7:52:ce:ea:42:d3:45:ae:ca: 17:af:7f:31:e1:fe:1d:cb:24:c1:54:49:aa:d7:4d: c7:13:e5:04:ab:aa:f6:ff:83:12:32:1b:3f:a3:2d: e5:6d:62:ae:f9:06:40:71:40:ba:bd:4b:a4:6b:2e: f6:57:00:b9:00:33:02:95:b1:f2:7a:8c:a1:f5:28: 34:43:fd:c5:56:30:f8:bf:59:d4:04:c5:08:f1:62: a5:dd:c5:d8:ec:43:ed:51:34:71:b3:a0:e0:d7:5c: 6f:13:d7:fa:46:bc:88:21:06:a4:9a:b7:a2:b5:8c: 2c:57:83:f7:78:86:ca:5b:3f:7c:88:1a:c8:57:00: 27:67:66:fd:a7:77:fd:23:04:18:5c:da:bc:f1:14: b9:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AA:5A:00:ED:A1:B0:0C:33:1F:D1:1A:3D:08:61:50:34:92:39:B9:5B X509v3 Authority Key Identifier: keyid:10:95:3E:60:76:70:FF:73:8E:EE:6A:6B:57:7D:8C:8B:28:04:E1:E1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/EJU-YHZw_3OO7mprV32MiygE4eE.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/42/a99355-2d01-4da5-8e73-1bc552c00dd7/1/qloA7aGwDDMf0Ro9CGFQNJI5uVs.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/42/a99355-2d01-4da5-8e73-1bc552c00dd7/1/EJU-YHZw_3OO7mprV32MiygE4eE.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 176.124.224.0/24 Signature Algorithm: sha256WithRSAEncryption 7c:fd:30:f0:fd:9f:5a:41:8d:b1:e0:52:11:91:d2:19:17:30: c6:fb:58:75:37:ed:3d:44:0f:ad:2d:80:17:fc:fa:53:a9:4c: 90:9c:03:dc:0d:52:a0:ab:c5:cd:bf:8d:35:5c:51:5d:6d:b2: e6:4c:7d:de:ee:58:cf:0e:b2:6d:8a:7f:aa:91:8c:4d:c7:5d: 6e:95:80:fc:54:a9:c7:b8:69:fa:c4:11:71:58:5d:b6:e0:94: 3b:b4:0a:8e:94:8f:c6:88:3a:71:74:56:75:50:f0:8d:f0:c5: fa:ee:46:e3:11:ee:da:e1:f6:8a:ce:d2:d7:23:30:58:21:20: 3a:81:2d:47:50:d6:6a:81:bd:e9:da:8b:07:be:a3:5c:64:e3: 73:64:2a:ee:35:36:a8:a2:b0:54:9e:d2:67:bc:eb:53:b8:a9: 4b:6a:bd:d9:ca:57:53:d0:63:d4:f4:87:bb:d8:ac:49:3c:77: ee:01:b0:13:ff:9e:05:f0:0d:18:0e:14:b2:70:b3:12:30:d3: a8:ce:89:fb:77:a0:66:56:6d:65:06:e8:be:83:81:4f:cb:f8: ad:17:42:b2:87:46:9e:8c:7d:58:ec:41:4d:11:dd:25:cf:f5: 8c:85:bb:d0:63:13:33:3d:09:0f:05:40:13:f7:e7:9e:c4:3d: 5e:6d:1d:c9 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt4NSToxI3oVg62Zjnvhbe2MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDEwOTUzZTYwNzY3MGZmNzM4ZWVlNmE2YjU3N2Q4YzhiMjgw NGUxZTEwHhcNMjYwMTAxMDYxODI3WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhhYTVhMDBlZGExYjAwYzMzMWZkMTFhM2QwODYxNTAzNDkyMzliOTViMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtL0mCFlKeJmssth8s5x+qow4wRXG VagV7pyHyjJ4tCwD3wENvhgwggi+aRNH6zZxf+U1aXKmgQ3tJrldMrHp6pxE7sDY zfHY3BYjsNcTJehGgbR9AhGWzhTlLZCpuZuhY1Klm07K4Tir39dtn2GnUs7qQtNF rsoXr38x4f4dyyTBVEmq103HE+UEq6r2/4MSMhs/oy3lbWKu+QZAcUC6vUukay72 VwC5ADMClbHyeoyh9Sg0Q/3FVjD4v1nUBMUI8WKl3cXY7EPtUTRxs6Dg11xvE9f6 RryIIQakmreitYwsV4P3eIbKWz98iBrIVwAnZ2b9p3f9IwQYXNq88RS5jQIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFKpaAO2hsAwzH9EaPQhhUDSSOblbMB8GA1UdIwQY MBaAFBCVPmB2cP9zju5qa1d9jIsoBOHhMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvRUpVLVlIWndfM09PN21wclYzMk1peWdFNGVFLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80Mi9hOTkzNTUtMmQwMS00ZGE1LThlNzMt MWJjNTUyYzAwZGQ3LzEvcWxvQTdhR3dERE1mMFJvOUNHRlFOSkk1dVZzLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC80Mi9hOTkzNTUtMmQwMS00ZGE1LThlNzMtMWJjNTUyYzAwZGQ3 LzEvRUpVLVlIWndfM09PN21wclYzMk1peWdFNGVFLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAsHzgMA0G CSqGSIb3DQEBCwUAA4IBAQB8/TDw/Z9aQY2x4FIRkdIZFzDG+1h1N+09RA+tLYAX /PpTqUyQnAPcDVKgq8XNv401XFFdbbLmTH3e7ljPDrJtin+qkYxNx11ulYD8VKnH uGn6xBFxWF224JQ7tAqOlI/GiDpxdFZ1UPCN8MX67kbjEe7a4faKztLXIzBYISA6 gS1HUNZqgb3p2osHvqNcZONzZCruNTaoorBUntJnvOtTuKlLar3ZyldT0GPU9Ie7 2KxJPHfuAbAT/54F8A0YDhSycLMSMNOozon7d6BmVm1lBui+g4FPy/itF0Kyh0ae jH1Y7EFNEd0lz/WMhbvQYxMzPQkPBUAT9+eexD1ebR3J -----END CERTIFICATE-----Generated at Fri Jan 2 09:29:40 2026 by rpki-client