This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/990bb5-fe42-4985-9caf-a096eecda793/1/qkYI2TpaHCn0Rl7Zcn2B5GIJgQM.roa File: qkYI2TpaHCn0Rl7Zcn2B5GIJgQM.roa (raw, json) Hash identifier: fcQ2Ei/HI72zlpQU19GPaQ5DdqwsBsYj6lbFhVkHW2w= Subject key identifier: AA:46:08:D9:3A:5A:1C:29:F4:46:5E:D9:72:7D:81:E4:62:09:81:03 Certificate issuer: /CN=000b4faac79bb19690c3af5a078c6cb14a91ad42 Certificate serial: 019B7D5C6DA58D53C218F77F9068C826729A Authority key identifier: 00:0B:4F:AA:C7:9B:B1:96:90:C3:AF:5A:07:8C:6C:B1:4A:91:AD:42 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AAtPqsebsZaQw69aB4xssUqRrUI.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/990bb5-fe42-4985-9caf-a096eecda793/1/qkYI2TpaHCn0Rl7Zcn2B5GIJgQM.roa Signing time: Fri 02 Jan 2026 06:19:27 +0000 ROA not before: Fri 02 Jan 2026 06:19:27 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 52054 IP address blocks: 185.156.192.0/23 maxlen: 23 185.156.194.0/24 maxlen: 24 185.156.195.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/51/990bb5-fe42-4985-9caf-a096eecda793/1/AAtPqsebsZaQw69aB4xssUqRrUI.crl rsync://rpki.ripe.net/repository/DEFAULT/51/990bb5-fe42-4985-9caf-a096eecda793/1/AAtPqsebsZaQw69aB4xssUqRrUI.mft rsync://rpki.ripe.net/repository/DEFAULT/AAtPqsebsZaQw69aB4xssUqRrUI.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7d:5c:6d:a5:8d:53:c2:18:f7:7f:90:68:c8:26:72:9a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=000b4faac79bb19690c3af5a078c6cb14a91ad42 Validity Not Before: Jan 2 06:19:27 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=aa4608d93a5a1c29f4465ed9727d81e462098103 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e5:18:d8:bd:ac:68:7d:a6:b7:e4:53:e7:a1:7d: 65:87:9d:d4:73:aa:37:01:d9:4e:02:a6:c8:5c:ca: 17:56:6d:14:2e:20:0a:29:7b:b4:85:d0:c7:c0:b4: ca:7e:00:05:9a:bc:5e:b3:1c:a1:10:0a:6f:a1:b9: a6:15:b3:e5:0d:81:ca:b9:ad:6e:7b:bb:ec:08:5e: 52:07:41:4b:2e:f2:e2:dc:1f:5b:c9:1e:26:d3:66: 7d:2a:63:fa:8f:ff:46:d0:9c:03:6c:27:f2:9d:49: 4c:27:20:92:28:d3:ac:c3:c0:bc:6e:0f:09:24:43: 9c:2e:97:cf:f4:25:16:b3:35:29:d0:a9:91:2d:15: 98:b3:1e:e6:14:88:a9:9e:2f:9f:f5:d3:82:ac:c5: 5c:a5:4a:1e:fc:7d:b8:62:fb:d7:63:46:95:d1:a4: fa:26:74:ea:5d:50:46:2b:f4:41:e0:c2:47:5f:31: 5b:fe:78:4b:91:36:e4:1e:ab:15:22:67:58:bb:0a: 62:a8:ef:67:dd:ce:30:56:c8:6b:3a:c0:0a:4d:a9: e8:a1:32:c8:12:1c:c9:e8:63:38:84:05:dd:20:45: 26:ae:e8:94:9c:97:91:61:b4:12:c0:b3:f7:53:e4: e8:d7:4d:49:cc:ad:4a:e7:9f:d2:a3:b0:4b:46:15: c4:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AA:46:08:D9:3A:5A:1C:29:F4:46:5E:D9:72:7D:81:E4:62:09:81:03 X509v3 Authority Key Identifier: keyid:00:0B:4F:AA:C7:9B:B1:96:90:C3:AF:5A:07:8C:6C:B1:4A:91:AD:42 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AAtPqsebsZaQw69aB4xssUqRrUI.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/990bb5-fe42-4985-9caf-a096eecda793/1/qkYI2TpaHCn0Rl7Zcn2B5GIJgQM.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/51/990bb5-fe42-4985-9caf-a096eecda793/1/AAtPqsebsZaQw69aB4xssUqRrUI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.156.192.0/22 Signature Algorithm: sha256WithRSAEncryption a4:b0:1c:38:e5:f1:76:a3:d6:4f:9f:b4:f0:09:8a:3d:76:72: 1b:72:77:c8:67:78:95:da:63:fd:ad:7d:b3:fa:59:fa:6b:8b: de:12:09:37:dd:b3:df:13:80:f9:bc:90:d9:01:b7:15:f2:21: dd:13:4c:de:db:2e:a7:f9:b5:b4:a9:27:d9:7f:d0:3f:91:fa: 19:7e:c1:37:5f:05:82:a8:63:7f:4d:41:ba:f6:d3:bb:bb:85: 35:71:ef:50:dc:ab:a2:c8:be:9e:59:c7:fa:0d:59:56:8c:6c: bd:ee:2e:ce:df:58:96:a4:f4:99:c3:c9:36:5a:d1:89:8f:a9: 77:04:c5:66:0e:f5:9a:b2:79:bb:5d:65:98:85:7c:32:3c:c4: 7c:4d:60:16:f7:99:e4:ce:7b:8d:73:9a:05:b7:6c:21:e3:57: 85:ec:f9:76:52:cb:7a:78:79:91:72:c1:81:25:f8:05:64:19: de:84:99:52:bb:87:33:f8:74:32:56:64:da:b3:68:6f:82:d6: cf:e6:e7:cf:04:6a:80:f8:ac:33:77:c7:c6:ef:5f:1b:f6:b2: 07:8a:ad:ed:92:71:80:cb:26:99:c4:47:eb:a4:a7:3a:f4:fa: 03:5d:e7:de:43:50:40:77:6b:84:04:2a:54:32:8a:6a:47:8e: b3:fc:10:8c -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt9XG2ljVPCGPd/kGjIJnKaMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDAwMGI0ZmFhYzc5YmIxOTY5MGMzYWY1YTA3OGM2Y2IxNGE5 MWFkNDIwHhcNMjYwMTAyMDYxOTI3WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhhYTQ2MDhkOTNhNWExYzI5ZjQ0NjVlZDk3MjdkODFlNDYyMDk4MTAzMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA5RjYvaxofaa35FPnoX1lh53Uc6o3 AdlOAqbIXMoXVm0ULiAKKXu0hdDHwLTKfgAFmrxesxyhEApvobmmFbPlDYHKua1u e7vsCF5SB0FLLvLi3B9byR4m02Z9KmP6j/9G0JwDbCfynUlMJyCSKNOsw8C8bg8J JEOcLpfP9CUWszUp0KmRLRWYsx7mFIipni+f9dOCrMVcpUoe/H24YvvXY0aV0aT6 JnTqXVBGK/RB4MJHXzFb/nhLkTbkHqsVImdYuwpiqO9n3c4wVshrOsAKTanooTLI EhzJ6GM4hAXdIEUmruiUnJeRYbQSwLP3U+To101JzK1K55/So7BLRhXEZwIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFKpGCNk6Whwp9EZe2XJ9geRiCYEDMB8GA1UdIwQY MBaAFAALT6rHm7GWkMOvWgeMbLFKka1CMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvQUF0UHFzZWJzWmFRdzY5YUI0eHNzVXFSclVJLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81MS85OTBiYjUtZmU0Mi00OTg1LTljYWYt YTA5NmVlY2RhNzkzLzEvcWtZSTJUcGFIQ24wUmw3WmNuMkI1R0lKZ1FNLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81MS85OTBiYjUtZmU0Mi00OTg1LTljYWYtYTA5NmVlY2RhNzkz LzEvQUF0UHFzZWJzWmFRdzY5YUI0eHNzVXFSclVJLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCuZzAMA0G CSqGSIb3DQEBCwUAA4IBAQCksBw45fF2o9ZPn7TwCYo9dnIbcnfIZ3iV2mP9rX2z +ln6a4veEgk33bPfE4D5vJDZAbcV8iHdE0ze2y6n+bW0qSfZf9A/kfoZfsE3XwWC qGN/TUG69tO7u4U1ce9Q3KuiyL6eWcf6DVlWjGy97i7O31iWpPSZw8k2WtGJj6l3 BMVmDvWasnm7XWWYhXwyPMR8TWAW95nkznuNc5oFt2wh41eF7Pl2Ust6eHmRcsGB JfgFZBnehJlSu4cz+HQyVmTas2hvgtbP5ufPBGqA+Kwzd8fG718b9rIHiq3tknGA yyaZxEfrpKc69PoDXefeQ1BAd2uEBCpUMopqR46z/BCM -----END CERTIFICATE-----Generated at Tue Feb 10 00:15:03 2026 by rpki-client