This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/59/d910d1-94c6-4412-8506-9cb51e51ff77/1/41UHcYawFZ6dwCf_FfKVxB6pAyA.roa File: 41UHcYawFZ6dwCf_FfKVxB6pAyA.roa (raw, json) Hash identifier: mxz0vZfXkFbrjS45D2R+Mi2lF9MSSxAbkahXO8KfBYc= Subject key identifier: E3:55:07:71:86:B0:15:9E:9D:C0:27:FF:15:F2:95:C4:1E:A9:03:20 Certificate issuer: /CN=40662733bc873d13e1f9f66e8dff75c820d5d2f7 Certificate serial: 019B79100F302CB4645E877AEC3BD0379FB1 Authority key identifier: 40:66:27:33:BC:87:3D:13:E1:F9:F6:6E:8D:FF:75:C8:20:D5:D2:F7 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QGYnM7yHPRPh-fZujf91yCDV0vc.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/59/d910d1-94c6-4412-8506-9cb51e51ff77/1/41UHcYawFZ6dwCf_FfKVxB6pAyA.roa Signing time: Thu 01 Jan 2026 10:17:34 +0000 ROA not before: Thu 01 Jan 2026 10:17:34 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 56488 IP address blocks: 217.28.136.0/24 maxlen: 24 2a12:2540::/29 maxlen: 33 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/59/d910d1-94c6-4412-8506-9cb51e51ff77/1/QGYnM7yHPRPh-fZujf91yCDV0vc.crl rsync://rpki.ripe.net/repository/DEFAULT/59/d910d1-94c6-4412-8506-9cb51e51ff77/1/QGYnM7yHPRPh-fZujf91yCDV0vc.mft rsync://rpki.ripe.net/repository/DEFAULT/QGYnM7yHPRPh-fZujf91yCDV0vc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 20 Jan 2026 18:00:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:79:10:0f:30:2c:b4:64:5e:87:7a:ec:3b:d0:37:9f:b1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=40662733bc873d13e1f9f66e8dff75c820d5d2f7 Validity Not Before: Jan 1 10:17:34 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=e355077186b0159e9dc027ff15f295c41ea90320 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:f5:a6:4a:17:2b:52:7f:77:5f:e4:41:87:22: 05:9a:9d:f8:b0:a3:27:8e:ac:ee:5a:36:da:df:e1: 8c:45:d5:4b:48:82:17:cb:6f:03:d2:4d:e5:e1:6b: f0:32:b3:0b:53:00:38:79:ef:6a:a5:94:30:b5:68: 30:b3:b4:84:4f:22:1b:7c:95:29:9f:cb:e5:c1:0a: 41:63:2c:80:f4:7f:bb:76:03:67:3e:33:f6:04:74: 7e:23:46:5e:b0:db:de:94:08:f3:fc:00:27:6c:be: 4a:23:3f:c0:ad:22:39:bc:75:a9:16:9e:a8:be:be: 93:fa:ec:c0:21:5c:e6:66:bf:67:86:ac:a9:ae:4f: 4c:c2:ac:36:6c:da:4d:f8:3a:54:85:ce:50:2d:5d: 1c:4f:b2:af:08:3c:e3:37:b0:d7:ce:72:c9:a0:08: 57:a5:13:9f:c3:40:db:4f:a1:e5:6b:36:f7:50:98: 44:d3:f3:2b:02:73:40:08:43:60:fa:df:f8:61:62: 69:a8:61:5c:c3:71:8d:ad:c2:f1:c1:88:e0:68:0a: c1:47:75:f5:31:da:40:67:24:3a:76:07:cc:74:54: f3:76:6b:2c:da:31:fa:6e:fe:72:8e:26:6a:cd:ed: 28:2c:9a:85:ea:ee:b1:86:55:68:10:27:ef:dd:ba: f6:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E3:55:07:71:86:B0:15:9E:9D:C0:27:FF:15:F2:95:C4:1E:A9:03:20 X509v3 Authority Key Identifier: keyid:40:66:27:33:BC:87:3D:13:E1:F9:F6:6E:8D:FF:75:C8:20:D5:D2:F7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QGYnM7yHPRPh-fZujf91yCDV0vc.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/59/d910d1-94c6-4412-8506-9cb51e51ff77/1/41UHcYawFZ6dwCf_FfKVxB6pAyA.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/59/d910d1-94c6-4412-8506-9cb51e51ff77/1/QGYnM7yHPRPh-fZujf91yCDV0vc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 217.28.136.0/24 IPv6: 2a12:2540::/29 Signature Algorithm: sha256WithRSAEncryption 27:fe:f7:e1:59:45:c0:e9:00:19:0c:f8:5c:1f:28:53:a6:f1: 38:17:f4:dd:94:83:ec:0c:17:2a:05:b0:94:a3:d6:3e:10:b9: a8:bb:5f:91:41:e5:dd:12:ce:80:90:14:87:86:01:cf:d1:e7: 9c:06:15:34:ae:be:cf:2a:ef:a4:8d:87:9a:d8:ae:29:57:aa: df:97:c4:00:8a:98:53:c5:da:42:0d:e8:3f:2f:c1:11:38:72: 22:f9:5f:48:a3:4f:7b:30:80:95:99:f2:d5:a9:02:09:44:a0: 54:22:e9:6d:4e:73:26:00:c4:26:e5:a5:3f:36:fc:7a:62:64: 1a:48:0f:4f:de:e1:50:84:e5:f7:30:3f:c3:3f:59:1c:8b:cf: d2:c7:28:1f:57:7e:3c:cc:23:90:a4:5f:b6:d8:8f:06:d1:91: 10:31:3d:04:08:15:49:dd:b0:e5:6e:5f:6c:f1:e4:65:f0:18: 76:e4:5c:b5:d6:96:35:9d:87:97:44:50:8e:04:ea:16:90:95: 3d:fc:75:2b:35:5f:5a:87:e3:4a:1e:cc:84:d0:27:63:e6:e2: a4:7b:93:b2:43:3e:08:bd:0b:be:d6:54:8d:88:27:c6:90:d9: 24:e7:9e:ac:b9:2e:c1:52:25:05:e5:88:7d:68:b5:79:81:ac: 9c:0d:f8:f0 -----BEGIN CERTIFICATE----- MIIFDDCCA/SgAwIBAgISAZt5EA8wLLRkXod67DvQN5+xMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDQwNjYyNzMzYmM4NzNkMTNlMWY5ZjY2ZThkZmY3NWM4MjBk NWQyZjcwHhcNMjYwMTAxMTAxNzM0WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhlMzU1MDc3MTg2YjAxNTllOWRjMDI3ZmYxNWYyOTVjNDFlYTkwMzIwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApPWmShcrUn93X+RBhyIFmp34sKMn jqzuWjba3+GMRdVLSIIXy28D0k3l4WvwMrMLUwA4ee9qpZQwtWgws7SETyIbfJUp n8vlwQpBYyyA9H+7dgNnPjP2BHR+I0ZesNvelAjz/AAnbL5KIz/ArSI5vHWpFp6o vr6T+uzAIVzmZr9nhqyprk9Mwqw2bNpN+DpUhc5QLV0cT7KvCDzjN7DXznLJoAhX pROfw0DbT6Hlazb3UJhE0/MrAnNACENg+t/4YWJpqGFcw3GNrcLxwYjgaArBR3X1 MdpAZyQ6dgfMdFTzdmss2jH6bv5yjiZqze0oLJqF6u6xhlVoECfv3br2kwIDAQAB o4ICGDCCAhQwHQYDVR0OBBYEFONVB3GGsBWencAn/xXylcQeqQMgMB8GA1UdIwQY MBaAFEBmJzO8hz0T4fn2bo3/dcgg1dL3MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvUUdZbk03eUhQUlBoLWZadWpmOTF5Q0RWMHZjLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81OS9kOTEwZDEtOTRjNi00NDEyLTg1MDYt OWNiNTFlNTFmZjc3LzEvNDFVSGNZYXdGWjZkd0NmX0ZmS1Z4QjZwQXlBLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81OS9kOTEwZDEtOTRjNi00NDEyLTg1MDYtOWNiNTFlNTFmZjc3 LzEvUUdZbk03eUhQUlBoLWZadWpmOTF5Q0RWMHZjLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMC4GCCsGAQUFBwEHAQH/BB8wHTAMBAIAATAGAwQA2RyIMA0E AgACMAcDBQMqEiVAMA0GCSqGSIb3DQEBCwUAA4IBAQAn/vfhWUXA6QAZDPhcHyhT pvE4F/TdlIPsDBcqBbCUo9Y+ELmou1+RQeXdEs6AkBSHhgHP0eecBhU0rr7PKu+k jYea2K4pV6rfl8QAiphTxdpCDeg/L8EROHIi+V9Io097MICVmfLVqQIJRKBUIult TnMmAMQm5aU/Nvx6YmQaSA9P3uFQhOX3MD/DP1kci8/SxygfV348zCOQpF+22I8G 0ZEQMT0ECBVJ3bDlbl9s8eRl8Bh25Fy11pY1nYeXRFCOBOoWkJU9/HUrNV9ah+NK HsyE0Cdj5uKke5OyQz4IvQu+1lSNiCfGkNkk556suS7BUiUF5Yh9aLV5gaycDfjw -----END CERTIFICATE-----Generated at Mon Jan 19 23:23:30 2026 by rpki-client