This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5a/664eb1-f220-4804-8c5a-9278840c4970/1/q3LGHpKLwXhUXQy5N3eUog7IGnE.roa File: q3LGHpKLwXhUXQy5N3eUog7IGnE.roa (raw, json) Hash identifier: ny31WBuWDPbRs/tDie0hbkT18Zoj64Zy4OoqbPqJ5zU= Subject key identifier: AB:72:C6:1E:92:8B:C1:78:54:5D:0C:B9:37:77:94:A2:0E:C8:1A:71 Certificate issuer: /CN=4432f61bbd3fd11d7facbb1543a751a65a3f64c3 Certificate serial: 019B7758B9A7216963155BCFF5A9DD2D04D2 Authority key identifier: 44:32:F6:1B:BD:3F:D1:1D:7F:AC:BB:15:43:A7:51:A6:5A:3F:64:C3 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/RDL2G70_0R1_rLsVQ6dRplo_ZMM.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5a/664eb1-f220-4804-8c5a-9278840c4970/1/q3LGHpKLwXhUXQy5N3eUog7IGnE.roa Signing time: Thu 01 Jan 2026 02:17:41 +0000 ROA not before: Thu 01 Jan 2026 02:17:41 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 29468 IP address blocks: 185.61.236.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5a/664eb1-f220-4804-8c5a-9278840c4970/1/RDL2G70_0R1_rLsVQ6dRplo_ZMM.crl rsync://rpki.ripe.net/repository/DEFAULT/5a/664eb1-f220-4804-8c5a-9278840c4970/1/RDL2G70_0R1_rLsVQ6dRplo_ZMM.mft rsync://rpki.ripe.net/repository/DEFAULT/RDL2G70_0R1_rLsVQ6dRplo_ZMM.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 20:01:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:77:58:b9:a7:21:69:63:15:5b:cf:f5:a9:dd:2d:04:d2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4432f61bbd3fd11d7facbb1543a751a65a3f64c3 Validity Not Before: Jan 1 02:17:41 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=ab72c61e928bc178545d0cb9377794a20ec81a71 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:cc:58:02:5c:43:cd:2b:47:32:a2:6f:fe:bd: 6c:60:bc:e2:7c:25:e2:08:45:66:d6:5c:d5:93:6d: 58:fc:5b:b6:b0:06:c4:2d:fd:a9:30:0d:1f:5d:5c: b1:79:c6:a7:61:62:a5:45:81:21:d9:79:8e:49:7b: 69:49:16:51:6f:dc:a1:c0:bb:90:1e:2b:fe:a8:83: ff:db:d5:f3:2f:3e:a8:d6:1d:87:2f:7d:92:de:ab: 82:48:82:d6:0f:30:82:5e:48:c7:d3:f9:40:35:e2: cb:2b:a8:f9:fa:89:48:ba:7e:e6:3a:71:50:82:c3: 85:a3:b2:cc:30:c1:f6:98:dd:19:df:93:0a:89:a0: 64:4a:26:d3:40:79:88:27:b1:68:4c:08:0d:37:26: a4:2f:e5:60:b5:8a:21:e7:dd:67:0c:63:69:da:c6: ec:fe:f2:19:ec:1d:bf:82:17:8f:ba:1a:18:8b:1d: bc:cd:12:3a:57:34:ae:b6:67:15:83:9f:59:10:53: 8e:b8:5b:4d:63:bf:df:a6:0d:1b:93:35:45:97:51: 0a:aa:f4:fe:24:c1:f9:47:6a:59:7c:c3:31:24:4a: dd:87:69:d5:57:75:1c:70:d7:a5:b3:02:91:c3:a4: 84:96:cb:34:29:20:02:11:93:be:4f:af:79:fc:b2: f4:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AB:72:C6:1E:92:8B:C1:78:54:5D:0C:B9:37:77:94:A2:0E:C8:1A:71 X509v3 Authority Key Identifier: keyid:44:32:F6:1B:BD:3F:D1:1D:7F:AC:BB:15:43:A7:51:A6:5A:3F:64:C3 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/RDL2G70_0R1_rLsVQ6dRplo_ZMM.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/664eb1-f220-4804-8c5a-9278840c4970/1/q3LGHpKLwXhUXQy5N3eUog7IGnE.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/664eb1-f220-4804-8c5a-9278840c4970/1/RDL2G70_0R1_rLsVQ6dRplo_ZMM.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.61.236.0/24 Signature Algorithm: sha256WithRSAEncryption 53:f1:6b:58:11:fa:f9:dd:53:c1:3f:fb:41:77:92:dc:bd:8a: 58:0a:98:9f:85:09:8c:f2:f5:74:31:04:39:5d:0d:20:21:76: 8b:d4:0d:ca:76:00:98:9d:6d:5a:3a:2d:7d:e9:65:08:8f:fc: 0d:35:8f:a3:1f:93:a4:21:9c:2e:0a:85:af:66:80:30:a6:83: 72:52:d9:d9:1a:f9:66:b5:2c:a9:aa:80:26:d5:d8:c1:51:78: 25:b8:3b:ab:3b:0d:6a:8a:0f:5c:73:b5:73:c7:15:23:34:4f: 09:c9:f5:78:17:fb:55:89:b2:1c:9f:8c:6e:3f:a4:72:f0:2c: e0:0c:66:54:74:61:0a:cb:1c:39:90:38:e6:77:d3:9b:fe:f9: 2a:67:f2:db:df:5d:d7:0a:7a:e5:d6:e8:df:8f:f9:2f:77:8a: 41:20:da:af:6f:23:f2:14:1f:6c:6a:13:b6:fc:fe:b2:05:ee: 75:08:f7:a6:45:f8:41:20:f3:44:d3:11:d2:3c:50:cb:83:9b: 12:8f:35:76:a0:76:0d:ad:89:c0:85:b8:1b:a1:db:76:3d:bc: ae:c3:6b:a0:6a:92:17:73:ed:4d:37:b3:6d:2a:94:c7:47:be: 74:3c:57:6e:87:ec:fb:86:9a:c3:67:8f:f4:cc:35:db:97:35: de:57:88:99 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt3WLmnIWljFVvP9andLQTSMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDQ0MzJmNjFiYmQzZmQxMWQ3ZmFjYmIxNTQzYTc1MWE2NWEz ZjY0YzMwHhcNMjYwMTAxMDIxNzQxWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhhYjcyYzYxZTkyOGJjMTc4NTQ1ZDBjYjkzNzc3OTRhMjBlYzgxYTcxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArcxYAlxDzStHMqJv/r1sYLzifCXi CEVm1lzVk21Y/Fu2sAbELf2pMA0fXVyxecanYWKlRYEh2XmOSXtpSRZRb9yhwLuQ Hiv+qIP/29XzLz6o1h2HL32S3quCSILWDzCCXkjH0/lANeLLK6j5+olIun7mOnFQ gsOFo7LMMMH2mN0Z35MKiaBkSibTQHmIJ7FoTAgNNyakL+VgtYoh591nDGNp2sbs /vIZ7B2/ghePuhoYix28zRI6VzSutmcVg59ZEFOOuFtNY7/fpg0bkzVFl1EKqvT+ JMH5R2pZfMMxJErdh2nVV3UccNelswKRw6SElss0KSACEZO+T695/LL0OwIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFKtyxh6Si8F4VF0MuTd3lKIOyBpxMB8GA1UdIwQY MBaAFEQy9hu9P9Edf6y7FUOnUaZaP2TDMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvUkRMMkc3MF8wUjFfckxzVlE2ZFJwbG9fWk1NLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81YS82NjRlYjEtZjIyMC00ODA0LThjNWEt OTI3ODg0MGM0OTcwLzEvcTNMR0hwS0x3WGhVWFF5NU4zZVVvZzdJR25FLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81YS82NjRlYjEtZjIyMC00ODA0LThjNWEtOTI3ODg0MGM0OTcw LzEvUkRMMkc3MF8wUjFfckxzVlE2ZFJwbG9fWk1NLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAuT3sMA0G CSqGSIb3DQEBCwUAA4IBAQBT8WtYEfr53VPBP/tBd5LcvYpYCpifhQmM8vV0MQQ5 XQ0gIXaL1A3KdgCYnW1aOi196WUIj/wNNY+jH5OkIZwuCoWvZoAwpoNyUtnZGvlm tSypqoAm1djBUXgluDurOw1qig9cc7VzxxUjNE8JyfV4F/tVibIcn4xuP6Ry8Czg DGZUdGEKyxw5kDjmd9Ob/vkqZ/Lb313XCnrl1ujfj/kvd4pBINqvbyPyFB9sahO2 /P6yBe51CPemRfhBIPNE0xHSPFDLg5sSjzV2oHYNrYnAhbgbodt2Pbyuw2ugapIX c+1NN7NtKpTHR750PFduh+z7hprDZ4/0zDXblzXeV4iZ -----END CERTIFICATE-----Generated at Tue Feb 10 04:32:21 2026 by rpki-client