This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4c/77a9f1-f1fb-485f-923f-7c3789405bd6/1/QKjP2N8r4nDoEM9cPJ71JOp2ddU.roa File: QKjP2N8r4nDoEM9cPJ71JOp2ddU.roa (raw, json) Hash identifier: W/BKNtYHRWaJtO1Nu7XJOX8Q45kPzU4r+lT7o1huThQ= Subject key identifier: 40:A8:CF:D8:DF:2B:E2:70:E8:10:CF:5C:3C:9E:F5:24:EA:76:75:D5 Certificate issuer: /CN=535ef40faf483433b3e33698e4d1ee95f3c94bec Certificate serial: 019B77C6E74875A06E97A9A0035737C554EF Authority key identifier: 53:5E:F4:0F:AF:48:34:33:B3:E3:36:98:E4:D1:EE:95:F3:C9:4B:EC Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/U170D69INDOz4zaY5NHulfPJS-w.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4c/77a9f1-f1fb-485f-923f-7c3789405bd6/1/QKjP2N8r4nDoEM9cPJ71JOp2ddU.roa Signing time: Thu 01 Jan 2026 04:18:02 +0000 ROA not before: Thu 01 Jan 2026 04:18:02 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 209966 IP address blocks: 78.41.52.0/24 maxlen: 24 78.41.53.0/24 maxlen: 24 78.41.54.0/24 maxlen: 24 78.41.55.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4c/77a9f1-f1fb-485f-923f-7c3789405bd6/1/U170D69INDOz4zaY5NHulfPJS-w.crl rsync://rpki.ripe.net/repository/DEFAULT/4c/77a9f1-f1fb-485f-923f-7c3789405bd6/1/U170D69INDOz4zaY5NHulfPJS-w.mft rsync://rpki.ripe.net/repository/DEFAULT/U170D69INDOz4zaY5NHulfPJS-w.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 21:05:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:77:c6:e7:48:75:a0:6e:97:a9:a0:03:57:37:c5:54:ef Signature Algorithm: sha256WithRSAEncryption Issuer: CN=535ef40faf483433b3e33698e4d1ee95f3c94bec Validity Not Before: Jan 1 04:18:02 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=40a8cfd8df2be270e810cf5c3c9ef524ea7675d5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:86:5e:f0:ea:c7:53:34:87:da:ef:88:05:c8:56: 26:e5:50:96:2e:c4:a5:39:b9:28:2e:43:93:07:a6: 76:20:4a:2b:83:b0:2d:b8:87:32:b1:6e:b2:af:21: 08:b5:84:bc:30:13:3d:40:6e:c7:1f:1e:6b:00:bd: b3:21:79:42:61:8d:eb:c3:80:5e:48:57:c1:13:15: a3:c8:d9:0f:1d:b8:ce:dd:42:a2:61:9d:ee:99:40: da:39:9b:bf:4c:67:a5:66:b5:91:9f:57:23:c9:4a: 69:86:1c:83:bf:6d:6f:be:c2:8c:59:23:21:41:be: 17:b3:fc:a9:69:4c:ff:4f:1a:1b:f2:e7:d9:04:e2: 97:c1:52:97:61:c7:ef:c2:13:2d:06:b2:b4:35:e3: 56:9a:2d:97:9f:5b:5b:86:35:45:42:b6:f8:2c:9d: 38:26:55:03:e0:e2:4c:f3:05:cb:c0:52:8d:24:ec: 45:66:48:83:d1:d7:e6:2f:9c:f7:b2:09:7d:86:35: 80:dc:a1:78:00:9d:9b:ae:d3:fa:c8:11:8c:bd:21: c5:24:8f:5e:49:9a:09:a0:d3:99:c9:d4:3a:1d:d3: 10:c9:d4:84:e6:96:d5:77:c4:3c:89:a9:d7:1e:13: af:28:f4:41:a6:4a:b9:c0:80:94:1e:b0:93:39:dd: ab:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 40:A8:CF:D8:DF:2B:E2:70:E8:10:CF:5C:3C:9E:F5:24:EA:76:75:D5 X509v3 Authority Key Identifier: keyid:53:5E:F4:0F:AF:48:34:33:B3:E3:36:98:E4:D1:EE:95:F3:C9:4B:EC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/U170D69INDOz4zaY5NHulfPJS-w.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/77a9f1-f1fb-485f-923f-7c3789405bd6/1/QKjP2N8r4nDoEM9cPJ71JOp2ddU.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/77a9f1-f1fb-485f-923f-7c3789405bd6/1/U170D69INDOz4zaY5NHulfPJS-w.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 78.41.52.0/22 Signature Algorithm: sha256WithRSAEncryption c3:87:05:af:c3:e5:07:68:06:86:04:c9:33:4f:b4:aa:ca:c3: c0:6d:7d:71:e3:0a:c1:c2:be:0f:4f:7b:7b:65:e1:44:22:45: a2:c2:8e:05:9a:47:80:5b:6e:45:b4:89:93:78:9c:4d:9d:35: 45:d4:96:e0:08:e3:8d:cc:34:73:dc:68:71:b0:9f:c3:6f:ae: 29:45:4d:7c:26:70:7f:d8:ef:a8:ef:06:b9:2d:04:58:0d:c8: b9:00:80:90:9b:03:e3:46:10:0f:df:fe:d9:4b:9b:36:1f:f1: e3:42:b0:fb:f5:10:de:63:da:88:3d:29:e3:41:a8:5f:65:f7: 4a:6b:22:02:90:e3:81:cd:d9:38:da:40:39:23:e8:9e:b2:fb: 29:76:03:6f:aa:c0:4d:5f:33:d0:0f:a8:fa:c9:7f:3e:ad:65: 83:0b:2a:7a:3e:19:b6:ad:e6:46:79:f9:99:c2:c6:0f:36:50: c7:52:2e:cf:cd:ad:3e:67:f9:0f:45:38:2d:c6:bd:bc:af:f8: 6d:46:85:d9:0b:a8:08:a4:40:52:f6:3d:33:ce:67:58:b0:08: f6:28:12:d2:c5:d0:cd:eb:63:5a:38:13:a4:a2:2e:3f:58:25: 42:f2:79:2f:99:69:28:3e:41:4d:d5:dc:16:be:4a:13:ff:90: 48:68:47:b7 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt3xudIdaBul6mgA1c3xVTvMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDUzNWVmNDBmYWY0ODM0MzNiM2UzMzY5OGU0ZDFlZTk1ZjNj OTRiZWMwHhcNMjYwMTAxMDQxODAyWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg0MGE4Y2ZkOGRmMmJlMjcwZTgxMGNmNWMzYzllZjUyNGVhNzY3NWQ1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAhl7w6sdTNIfa74gFyFYm5VCWLsSl ObkoLkOTB6Z2IEorg7AtuIcysW6yryEItYS8MBM9QG7HHx5rAL2zIXlCYY3rw4Be SFfBExWjyNkPHbjO3UKiYZ3umUDaOZu/TGelZrWRn1cjyUpphhyDv21vvsKMWSMh Qb4Xs/ypaUz/Txob8ufZBOKXwVKXYcfvwhMtBrK0NeNWmi2Xn1tbhjVFQrb4LJ04 JlUD4OJM8wXLwFKNJOxFZkiD0dfmL5z3sgl9hjWA3KF4AJ2brtP6yBGMvSHFJI9e SZoJoNOZydQ6HdMQydSE5pbVd8Q8ianXHhOvKPRBpkq5wICUHrCTOd2rtQIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFECoz9jfK+Jw6BDPXDye9STqdnXVMB8GA1UdIwQY MBaAFFNe9A+vSDQzs+M2mOTR7pXzyUvsMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvVTE3MEQ2OUlORE96NHphWTVOSHVsZlBKUy13LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80Yy83N2E5ZjEtZjFmYi00ODVmLTkyM2Yt N2MzNzg5NDA1YmQ2LzEvUUtqUDJOOHI0bkRvRU05Y1BKNzFKT3AyZGRVLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC80Yy83N2E5ZjEtZjFmYi00ODVmLTkyM2YtN2MzNzg5NDA1YmQ2 LzEvVTE3MEQ2OUlORE96NHphWTVOSHVsZlBKUy13LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCTik0MA0G CSqGSIb3DQEBCwUAA4IBAQDDhwWvw+UHaAaGBMkzT7SqysPAbX1x4wrBwr4PT3t7 ZeFEIkWiwo4FmkeAW25FtImTeJxNnTVF1JbgCOONzDRz3GhxsJ/Db64pRU18JnB/ 2O+o7wa5LQRYDci5AICQmwPjRhAP3/7ZS5s2H/HjQrD79RDeY9qIPSnjQahfZfdK ayICkOOBzdk42kA5I+iesvspdgNvqsBNXzPQD6j6yX8+rWWDCyp6Phm2reZGefmZ wsYPNlDHUi7Pza0+Z/kPRTgtxr28r/htRoXZC6gIpEBS9j0zzmdYsAj2KBLSxdDN 62NaOBOkoi4/WCVC8nkvmWkoPkFN1dwWvkoT/5BIaEe3 -----END CERTIFICATE-----Generated at Tue Feb 10 05:47:26 2026 by rpki-client