This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/49/1d33ca-8d1c-49c0-be97-ad8fbeaa8dd9/1/qrN-Uu0M-3HDr-76__U4MO8Jem0.roa File: qrN-Uu0M-3HDr-76__U4MO8Jem0.roa (raw, json) Hash identifier: F/0Bv+YLgCLY8hUXxBuIT6dqQV4aBe4yFDyDrHdklVY= Subject key identifier: AA:B3:7E:52:ED:0C:FB:71:C3:AF:EE:FA:FF:F5:38:30:EF:09:7A:6D Certificate issuer: /CN=76a75826e991225a429ff8a1e7ffdc80466420df Certificate serial: 019B9785AE9E81D3A1931FBB4C26CF720596 Authority key identifier: 76:A7:58:26:E9:91:22:5A:42:9F:F8:A1:E7:FF:DC:80:46:64:20:DF Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dqdYJumRIlpCn_ih5__cgEZkIN8.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/49/1d33ca-8d1c-49c0-be97-ad8fbeaa8dd9/1/qrN-Uu0M-3HDr-76__U4MO8Jem0.roa Signing time: Wed 07 Jan 2026 08:14:39 +0000 ROA not before: Wed 07 Jan 2026 08:14:39 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 9063 IP address blocks: 129.233.211.0/24 maxlen: 24 153.96.50.0/24 maxlen: 24 153.96.57.0/24 maxlen: 24 153.96.136.0/24 maxlen: 24 153.96.137.0/24 maxlen: 24 153.96.138.0/24 maxlen: 24 153.96.139.0/24 maxlen: 24 153.96.183.0/24 maxlen: 24 153.97.134.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/49/1d33ca-8d1c-49c0-be97-ad8fbeaa8dd9/1/dqdYJumRIlpCn_ih5__cgEZkIN8.crl rsync://rpki.ripe.net/repository/DEFAULT/49/1d33ca-8d1c-49c0-be97-ad8fbeaa8dd9/1/dqdYJumRIlpCn_ih5__cgEZkIN8.mft rsync://rpki.ripe.net/repository/DEFAULT/dqdYJumRIlpCn_ih5__cgEZkIN8.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 22 Jan 2026 05:00:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:97:85:ae:9e:81:d3:a1:93:1f:bb:4c:26:cf:72:05:96 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=76a75826e991225a429ff8a1e7ffdc80466420df Validity Not Before: Jan 7 08:14:39 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=aab37e52ed0cfb71c3afeefafff53830ef097a6d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:cf:f3:b5:eb:0f:4d:dc:ab:54:e7:93:f7:6b: e8:c6:05:8b:0e:30:f7:8c:e3:6c:51:dc:20:3f:89: ec:42:7c:ba:5c:2f:df:0f:13:ee:03:14:16:70:14: ca:f7:b2:8b:a4:76:fe:94:c2:ae:37:f2:be:33:36: 73:e6:61:43:f5:8d:4f:72:7e:a3:e8:37:6e:84:2e: 82:69:0f:a2:77:8e:d0:bd:9e:97:68:62:c7:c2:70: 00:5c:87:e6:60:5d:34:6f:34:26:a9:f5:0a:8e:dc: 6b:88:a7:db:a0:1d:8b:4a:9f:a3:20:be:97:ca:81: 1d:dc:1d:93:fa:83:2a:84:0f:a4:26:69:8b:c3:cc: 1a:23:e8:c6:a8:00:03:f4:bb:6c:cf:63:d0:27:2a: 44:9d:c0:29:62:26:63:88:19:a7:d1:17:70:c7:d8: 56:14:3c:22:d4:13:8f:16:82:eb:93:53:b3:54:72: 52:b4:e5:9d:ec:b7:3c:c3:06:7b:8e:eb:b3:55:4f: 98:e8:ca:3e:d6:74:ec:32:70:bd:dc:4d:71:84:b3: ed:4d:78:10:00:cb:08:f6:7d:b8:9e:93:22:ba:ba: b9:2c:96:52:ce:16:f8:a8:27:81:a0:f0:10:7a:de: 5b:a8:b6:7e:b2:40:80:87:6c:2b:b2:34:83:7d:05: 0f:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AA:B3:7E:52:ED:0C:FB:71:C3:AF:EE:FA:FF:F5:38:30:EF:09:7A:6D X509v3 Authority Key Identifier: keyid:76:A7:58:26:E9:91:22:5A:42:9F:F8:A1:E7:FF:DC:80:46:64:20:DF X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dqdYJumRIlpCn_ih5__cgEZkIN8.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/49/1d33ca-8d1c-49c0-be97-ad8fbeaa8dd9/1/qrN-Uu0M-3HDr-76__U4MO8Jem0.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/49/1d33ca-8d1c-49c0-be97-ad8fbeaa8dd9/1/dqdYJumRIlpCn_ih5__cgEZkIN8.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 129.233.211.0/24 153.96.50.0/24 153.96.57.0/24 153.96.136.0/22 153.96.183.0/24 153.97.134.0/24 Signature Algorithm: sha256WithRSAEncryption 84:a9:2d:f6:fb:91:8c:eb:cc:e1:03:36:3b:91:10:88:cf:3c: eb:c7:33:bf:48:70:26:87:5e:d2:4c:04:39:80:3e:04:09:89: 58:e3:4a:92:db:00:9f:f9:85:e9:0f:00:bd:78:83:ac:ea:8a: 50:24:d4:6d:2f:96:5a:7a:5c:73:4e:7f:00:b9:ef:ab:8b:90: 6c:70:5d:d5:d5:b7:b5:71:94:34:e0:7a:b7:00:da:84:cf:7e: 91:ee:20:ef:71:23:57:6a:fa:c3:7a:3d:79:24:49:84:49:2c: 5c:23:f6:66:de:b6:58:0f:86:fe:4e:0b:cd:94:34:5f:28:52: 29:43:c5:60:c2:2c:0d:b6:8a:1e:21:41:4d:b5:49:05:0e:1e: b5:08:0e:a9:d3:10:8a:11:13:e6:d2:0c:ac:f1:a7:b2:73:7c: 49:f0:4b:8c:3c:1b:ae:c5:7b:32:1e:ef:e6:5e:7e:b9:bc:0c: e1:3d:a5:d0:14:39:09:8e:ab:fd:8b:7f:73:fb:a9:c9:9f:30: 2c:b8:92:a6:46:2a:89:93:b0:a3:c9:72:3f:82:06:72:d0:18: cf:bd:1f:f4:ec:f9:4f:7c:ec:28:ef:39:1c:94:4b:d0:ef:bc: 4e:d5:b1:3b:52:91:f7:71:0c:c3:27:42:dc:4b:8a:2b:c3:e4: 97:b7:41:0e -----BEGIN CERTIFICATE----- MIIFGzCCBAOgAwIBAgISAZuXha6egdOhkx+7TCbPcgWWMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDc2YTc1ODI2ZTk5MTIyNWE0MjlmZjhhMWU3ZmZkYzgwNDY2 NDIwZGYwHhcNMjYwMTA3MDgxNDM5WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhhYWIzN2U1MmVkMGNmYjcxYzNhZmVlZmFmZmY1MzgzMGVmMDk3YTZkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuM/ztesPTdyrVOeT92voxgWLDjD3 jONsUdwgP4nsQny6XC/fDxPuAxQWcBTK97KLpHb+lMKuN/K+MzZz5mFD9Y1Pcn6j 6DduhC6CaQ+id47QvZ6XaGLHwnAAXIfmYF00bzQmqfUKjtxriKfboB2LSp+jIL6X yoEd3B2T+oMqhA+kJmmLw8waI+jGqAAD9Ltsz2PQJypEncApYiZjiBmn0Rdwx9hW FDwi1BOPFoLrk1OzVHJStOWd7Lc8wwZ7juuzVU+Y6Mo+1nTsMnC93E1xhLPtTXgQ AMsI9n24npMiurq5LJZSzhb4qCeBoPAQet5bqLZ+skCAh2wrsjSDfQUPSQIDAQAB o4ICJzCCAiMwHQYDVR0OBBYEFKqzflLtDPtxw6/u+v/1ODDvCXptMB8GA1UdIwQY MBaAFHanWCbpkSJaQp/4oef/3IBGZCDfMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvZHFkWUp1bVJJbHBDbl9paDVfX2NnRVprSU44LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80OS8xZDMzY2EtOGQxYy00OWMwLWJlOTct YWQ4ZmJlYWE4ZGQ5LzEvcXJOLVV1ME0tM0hEci03Nl9fVTRNTzhKZW0wLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC80OS8xZDMzY2EtOGQxYy00OWMwLWJlOTctYWQ4ZmJlYWE4ZGQ5 LzEvZHFkWUp1bVJJbHBDbl9paDVfX2NnRVprSU44LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMD0GCCsGAQUFBwEHAQH/BC4wLDAqBAIAATAkAwQAgenTAwQA mWAyAwQAmWA5AwQCmWCIAwQAmWC3AwQAmWGGMA0GCSqGSIb3DQEBCwUAA4IBAQCE qS32+5GM68zhAzY7kRCIzzzrxzO/SHAmh17STAQ5gD4ECYlY40qS2wCf+YXpDwC9 eIOs6opQJNRtL5ZaelxzTn8Aue+ri5BscF3V1be1cZQ04Hq3ANqEz36R7iDvcSNX avrDej15JEmESSxcI/Zm3rZYD4b+TgvNlDRfKFIpQ8VgwiwNtooeIUFNtUkFDh61 CA6p0xCKERPm0gys8aeyc3xJ8EuMPBuuxXsyHu/mXn65vAzhPaXQFDkJjqv9i39z +6nJnzAsuJKmRiqJk7CjyXI/ggZy0BjPvR/07PlPfOwo7zkclEvQ77xO1bE7UpH3 cQzDJ0LcS4orw+SXt0EO -----END CERTIFICATE-----Generated at Wed Jan 21 14:41:28 2026 by rpki-client