This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5a/fdd633-c658-49c5-9e8f-fb07955f3aaa/1/QqWz2E7TpOypUB27k5HzB5U08q0.roa File: QqWz2E7TpOypUB27k5HzB5U08q0.roa (raw, json) Hash identifier: 31tcotfqt5hZZhOGcNM9rpKDGp3MYusboo83jHH7oUE= Subject key identifier: 42:A5:B3:D8:4E:D3:A4:EC:A9:50:1D:BB:93:91:F3:07:95:34:F2:AD Certificate issuer: /CN=60581e673d80f7474936b21337eafcc1bdc385e9 Certificate serial: 019B79113B95A8B786F61B97CEA4EB7CDB98 Authority key identifier: 60:58:1E:67:3D:80:F7:47:49:36:B2:13:37:EA:FC:C1:BD:C3:85:E9 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YFgeZz2A90dJNrITN-r8wb3Dhek.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5a/fdd633-c658-49c5-9e8f-fb07955f3aaa/1/QqWz2E7TpOypUB27k5HzB5U08q0.roa Signing time: Thu 01 Jan 2026 10:18:51 +0000 ROA not before: Thu 01 Jan 2026 10:18:51 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 8881 IP address blocks: 104.233.59.0/24 maxlen: 24 104.239.56.0/24 maxlen: 24 104.249.48.0/24 maxlen: 24 104.249.49.0/24 maxlen: 24 104.249.51.0/24 maxlen: 24 104.249.52.0/24 maxlen: 24 104.249.53.0/24 maxlen: 24 104.249.54.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5a/fdd633-c658-49c5-9e8f-fb07955f3aaa/1/YFgeZz2A90dJNrITN-r8wb3Dhek.crl rsync://rpki.ripe.net/repository/DEFAULT/5a/fdd633-c658-49c5-9e8f-fb07955f3aaa/1/YFgeZz2A90dJNrITN-r8wb3Dhek.mft rsync://rpki.ripe.net/repository/DEFAULT/YFgeZz2A90dJNrITN-r8wb3Dhek.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 02 Jan 2026 18:00:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:79:11:3b:95:a8:b7:86:f6:1b:97:ce:a4:eb:7c:db:98 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=60581e673d80f7474936b21337eafcc1bdc385e9 Validity Not Before: Jan 1 10:18:51 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=42a5b3d84ed3a4eca9501dbb9391f3079534f2ad Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:65:f1:a4:3e:62:3d:b4:85:28:d6:a0:c4:3e: 12:43:0e:5a:d7:07:c7:b7:ae:c5:c7:fb:09:0a:4a: 3e:b2:ed:da:89:2e:ed:1a:55:e5:8a:93:83:21:ed: 83:b6:b4:57:2d:4d:9a:89:e9:f3:77:3a:12:25:d7: 56:1f:d5:26:a6:4c:f7:6a:5e:44:1e:7c:3c:f9:fa: 6d:7f:b6:82:47:31:30:06:09:b5:23:e9:d2:46:21: 7a:20:d7:1b:c5:3f:05:74:72:1e:01:0a:53:8f:19: 7b:9d:31:7b:3c:20:fa:12:92:cf:bf:b2:20:cf:dc: 6a:65:e8:54:b8:94:f2:af:1f:1c:dc:16:a8:26:85: aa:38:34:89:80:6e:1a:a5:7b:9f:68:4f:eb:8e:5c: cb:65:b8:32:18:64:c1:f6:5e:3f:b0:02:14:2b:f4: 74:4a:e7:5c:13:ab:e2:d4:bc:23:d0:5d:ee:e6:55: 27:29:e8:7c:3e:24:20:47:50:08:38:92:c6:6b:e9: da:b8:c6:8e:70:8f:76:0c:4e:e9:ec:aa:d9:0f:26: 74:28:a6:1a:04:6e:5e:95:60:c7:63:29:8f:07:a2: 00:20:8c:38:47:73:2d:4a:65:cb:c9:e8:f1:64:11: bf:10:f2:a6:09:73:bc:18:94:e5:e0:a4:86:5e:5f: a8:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 42:A5:B3:D8:4E:D3:A4:EC:A9:50:1D:BB:93:91:F3:07:95:34:F2:AD X509v3 Authority Key Identifier: keyid:60:58:1E:67:3D:80:F7:47:49:36:B2:13:37:EA:FC:C1:BD:C3:85:E9 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YFgeZz2A90dJNrITN-r8wb3Dhek.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/fdd633-c658-49c5-9e8f-fb07955f3aaa/1/QqWz2E7TpOypUB27k5HzB5U08q0.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/fdd633-c658-49c5-9e8f-fb07955f3aaa/1/YFgeZz2A90dJNrITN-r8wb3Dhek.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 104.233.59.0/24 104.239.56.0/24 104.249.48.0/23 104.249.51.0-104.249.54.255 Signature Algorithm: sha256WithRSAEncryption 1d:c6:f7:23:db:a1:71:aa:48:3f:ec:4c:a4:00:cf:8d:9f:95: a4:1e:4a:09:d5:59:a1:c5:ce:ec:95:41:96:d3:b4:dc:55:89: 10:20:9f:d6:e4:bb:b6:b8:7d:59:c5:a4:ab:0a:68:52:f8:03: 6d:d2:4a:30:b8:4d:27:90:52:50:ac:d1:6d:93:8a:2e:43:99: 7f:46:b4:42:a8:73:95:5b:bc:a1:fa:1c:9f:fd:d1:eb:6c:dc: a2:72:bb:c0:66:d4:57:a3:0e:e3:34:a6:42:f6:50:54:79:11: ee:60:af:70:60:a1:f1:16:6f:ed:40:10:37:2d:84:6b:ee:e6: a3:50:94:7b:27:b1:7a:b1:0f:b2:84:c4:d7:18:df:b0:dd:96: bf:a6:0a:1a:45:69:e9:e5:c1:02:ac:d3:f5:1f:c7:f4:49:1a: ad:0b:86:4b:fc:65:2d:80:6a:21:56:2f:0a:71:fd:83:e5:53: e1:56:b1:72:e9:be:1e:c9:01:be:a9:2c:2c:ef:05:84:3a:bd: 0b:c2:23:15:d0:de:ad:f7:07:d3:36:a4:ec:93:a7:da:fa:4e: 21:af:23:88:2a:d2:40:b8:b0:46:f6:40:8e:34:3a:14:3f:5a: 46:5f:c8:1f:f8:38:83:30:61:82:ad:26:9c:6c:da:63:d3:77: 9d:32:d3:b4 -----BEGIN CERTIFICATE----- MIIFFzCCA/+gAwIBAgISAZt5ETuVqLeG9huXzqTrfNuYMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDYwNTgxZTY3M2Q4MGY3NDc0OTM2YjIxMzM3ZWFmY2MxYmRj Mzg1ZTkwHhcNMjYwMTAxMTAxODUxWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg0MmE1YjNkODRlZDNhNGVjYTk1MDFkYmI5MzkxZjMwNzk1MzRmMmFkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnmXxpD5iPbSFKNagxD4SQw5a1wfH t67Fx/sJCko+su3aiS7tGlXlipODIe2DtrRXLU2aienzdzoSJddWH9Umpkz3al5E Hnw8+fptf7aCRzEwBgm1I+nSRiF6INcbxT8FdHIeAQpTjxl7nTF7PCD6EpLPv7Ig z9xqZehUuJTyrx8c3BaoJoWqODSJgG4apXufaE/rjlzLZbgyGGTB9l4/sAIUK/R0 SudcE6vi1Lwj0F3u5lUnKeh8PiQgR1AIOJLGa+nauMaOcI92DE7p7KrZDyZ0KKYa BG5elWDHYymPB6IAIIw4R3MtSmXLyejxZBG/EPKmCXO8GJTl4KSGXl+o6wIDAQAB o4ICIzCCAh8wHQYDVR0OBBYEFEKls9hO06TsqVAdu5OR8weVNPKtMB8GA1UdIwQY MBaAFGBYHmc9gPdHSTayEzfq/MG9w4XpMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvWUZnZVp6MkE5MGRKTnJJVE4tcjh3YjNEaGVrLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81YS9mZGQ2MzMtYzY1OC00OWM1LTllOGYt ZmIwNzk1NWYzYWFhLzEvUXFXejJFN1RwT3lwVUIyN2s1SHpCNVUwOHEwLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81YS9mZGQ2MzMtYzY1OC00OWM1LTllOGYtZmIwNzk1NWYzYWFh LzEvWUZnZVp6MkE5MGRKTnJJVE4tcjh3YjNEaGVrLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMDkGCCsGAQUFBwEHAQH/BCowKDAmBAIAATAgAwQAaOk7AwQA aO84AwQBaPkwMAwDBABo+TMDBABo+TYwDQYJKoZIhvcNAQELBQADggEBAB3G9yPb oXGqSD/sTKQAz42flaQeSgnVWaHFzuyVQZbTtNxViRAgn9bku7a4fVnFpKsKaFL4 A23SSjC4TSeQUlCs0W2Tii5DmX9GtEKoc5VbvKH6HJ/90ets3KJyu8Bm1FejDuM0 pkL2UFR5Ee5gr3BgofEWb+1AEDcthGvu5qNQlHsnsXqxD7KExNcY37Ddlr+mChpF aenlwQKs0/Ufx/RJGq0Lhkv8ZS2AaiFWLwpx/YPlU+FWsXLpvh7JAb6pLCzvBYQ6 vQvCIxXQ3q33B9M2pOyTp9r6TiGvI4gq0kC4sEb2QI40OhQ/WkZfyB/4OIMwYYKt Jpxs2mPTd50y07Q= -----END CERTIFICATE-----Generated at Fri Jan 2 02:42:39 2026 by rpki-client