This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5e/a7ddf6-2394-48d3-bfa1-6d655cd94468/1/QpYzfBnkNKh1yttKF2r35caalhE.roa File: QpYzfBnkNKh1yttKF2r35caalhE.roa (raw, json) Hash identifier: ErOSkBHWiEYZj20zKnAchEbhylp7yOAjTawscXS8Sqw= Subject key identifier: 42:96:33:7C:19:E4:34:A8:75:CA:DB:4A:17:6A:F7:E5:C6:9A:96:11 Certificate issuer: /CN=d513872512f1f2d037b401c2603ca8994e721e55 Certificate serial: 019B7EA74E90D7420EB29CCBB348BBDEE61A Authority key identifier: D5:13:87:25:12:F1:F2:D0:37:B4:01:C2:60:3C:A8:99:4E:72:1E:55 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1ROHJRLx8tA3tAHCYDyomU5yHlU.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5e/a7ddf6-2394-48d3-bfa1-6d655cd94468/1/QpYzfBnkNKh1yttKF2r35caalhE.roa Signing time: Fri 02 Jan 2026 12:20:52 +0000 ROA not before: Fri 02 Jan 2026 12:20:52 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 49367 IP address blocks: 83.136.104.0/21 maxlen: 24 94.198.96.0/21 maxlen: 24 94.198.101.0/24 maxlen: 24 95.141.32.0/20 maxlen: 24 158.58.168.0/21 maxlen: 24 158.58.172.0/23 maxlen: 24 2a02:29e0:2::/48 maxlen: 48 2a02:29e2::/32 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5e/a7ddf6-2394-48d3-bfa1-6d655cd94468/1/1ROHJRLx8tA3tAHCYDyomU5yHlU.crl rsync://rpki.ripe.net/repository/DEFAULT/5e/a7ddf6-2394-48d3-bfa1-6d655cd94468/1/1ROHJRLx8tA3tAHCYDyomU5yHlU.mft rsync://rpki.ripe.net/repository/DEFAULT/1ROHJRLx8tA3tAHCYDyomU5yHlU.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 27 Jan 2026 12:00:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7e:a7:4e:90:d7:42:0e:b2:9c:cb:b3:48:bb:de:e6:1a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d513872512f1f2d037b401c2603ca8994e721e55 Validity Not Before: Jan 2 12:20:52 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=4296337c19e434a875cadb4a176af7e5c69a9611 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:fd:19:39:7b:79:6a:56:9d:eb:74:d2:97:16: 8d:5e:95:14:23:e5:53:32:f9:1a:80:15:d1:25:4d: df:74:e8:2e:08:30:e1:00:a1:c2:02:8e:f8:77:62: cf:71:a2:f4:a2:ca:d9:ea:57:5c:01:2c:36:4d:84: 8a:84:19:90:63:7a:4c:36:dd:c2:23:dd:2a:27:15: e7:46:0e:a1:4a:40:f3:39:95:9f:5b:05:cd:88:88: 92:f8:c6:c2:16:61:85:49:d5:b2:77:98:c1:79:27: 2e:80:15:82:a8:61:66:b0:8c:a6:84:87:31:34:7f: e3:f4:b7:04:d3:1e:c2:d9:2e:30:f0:51:fb:04:33: d9:17:48:e7:71:7b:49:b7:9d:ed:86:40:bb:d3:41: 1a:64:1c:11:2d:63:5b:58:38:5c:4d:03:70:9f:61: 7e:2f:20:39:9b:14:e8:a9:f1:d0:63:99:de:fc:15: 5a:66:70:66:fb:da:cb:46:0e:7f:c5:25:d4:a2:52: d6:b2:4a:bc:ca:74:b3:ef:2c:cb:0c:59:bd:b7:87: 37:cc:0a:fd:c1:a5:54:df:02:0f:ba:8d:ee:0a:91: d1:c3:32:44:3a:6c:20:8b:50:b1:ee:14:86:b9:8c: 58:24:c2:b5:ab:51:76:3b:b9:82:a6:4e:6b:b3:09: cb:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 42:96:33:7C:19:E4:34:A8:75:CA:DB:4A:17:6A:F7:E5:C6:9A:96:11 X509v3 Authority Key Identifier: keyid:D5:13:87:25:12:F1:F2:D0:37:B4:01:C2:60:3C:A8:99:4E:72:1E:55 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1ROHJRLx8tA3tAHCYDyomU5yHlU.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/a7ddf6-2394-48d3-bfa1-6d655cd94468/1/QpYzfBnkNKh1yttKF2r35caalhE.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/a7ddf6-2394-48d3-bfa1-6d655cd94468/1/1ROHJRLx8tA3tAHCYDyomU5yHlU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 83.136.104.0/21 94.198.96.0/21 95.141.32.0/20 158.58.168.0/21 IPv6: 2a02:29e0:2::/48 2a02:29e2::/32 Signature Algorithm: sha256WithRSAEncryption 75:49:34:c1:73:a7:b7:7e:39:4a:70:9b:4f:18:cd:d6:ee:58: 5c:ae:53:b9:a0:57:38:1b:ce:c1:18:1f:61:79:6f:2c:22:85: 33:d8:eb:8c:ff:ba:48:dc:66:2d:b2:d1:e7:6e:64:8e:ee:2f: 8b:68:bf:b9:0c:b5:fa:d0:77:bf:6f:83:73:19:ea:f0:fd:c5: 50:dc:0e:db:62:b2:5b:f6:f9:da:f3:13:d1:e9:95:e2:32:2e: 14:c4:6b:99:0b:21:18:73:c9:45:70:e2:12:2c:ea:50:21:e8: c2:a6:bb:53:f7:82:cd:50:3e:d7:43:4a:58:a5:27:b5:9e:5f: ed:70:8f:82:2b:35:30:b6:82:e0:3f:40:42:84:66:3b:41:59: 21:70:3d:fe:b2:33:5d:fb:ef:fe:f2:a2:85:22:12:d7:6d:34: 7e:4b:1a:a6:29:fb:9e:62:ad:6e:e9:7a:ff:7c:c1:bd:17:47: 09:a7:ef:f9:28:d0:e9:39:1c:37:56:55:b3:39:6a:81:aa:38: 49:5c:13:75:da:b2:39:38:08:30:b0:e0:48:c6:28:01:a3:55: c0:9b:ea:e7:53:38:17:92:77:f7:5d:38:ce:de:c8:04:b9:fe: 63:8f:91:88:51:cc:63:c1:2f:24:2c:6d:bf:f5:5f:09:97:a2: 92:64:76:5b -----BEGIN CERTIFICATE----- MIIFJzCCBA+gAwIBAgISAZt+p06Q10IOspzLs0i73uYaMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGQ1MTM4NzI1MTJmMWYyZDAzN2I0MDFjMjYwM2NhODk5NGU3 MjFlNTUwHhcNMjYwMTAyMTIyMDUyWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg0Mjk2MzM3YzE5ZTQzNGE4NzVjYWRiNGExNzZhZjdlNWM2OWE5NjExMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAw/0ZOXt5alad63TSlxaNXpUUI+VT MvkagBXRJU3fdOguCDDhAKHCAo74d2LPcaL0osrZ6ldcASw2TYSKhBmQY3pMNt3C I90qJxXnRg6hSkDzOZWfWwXNiIiS+MbCFmGFSdWyd5jBeScugBWCqGFmsIymhIcx NH/j9LcE0x7C2S4w8FH7BDPZF0jncXtJt53thkC700EaZBwRLWNbWDhcTQNwn2F+ LyA5mxToqfHQY5ne/BVaZnBm+9rLRg5/xSXUolLWskq8ynSz7yzLDFm9t4c3zAr9 waVU3wIPuo3uCpHRwzJEOmwgi1Cx7hSGuYxYJMK1q1F2O7mCpk5rswnL/QIDAQAB o4ICMzCCAi8wHQYDVR0OBBYEFEKWM3wZ5DSodcrbShdq9+XGmpYRMB8GA1UdIwQY MBaAFNUThyUS8fLQN7QBwmA8qJlOch5VMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvMVJPSEpSTHg4dEEzdEFIQ1lEeW9tVTV5SGxVLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81ZS9hN2RkZjYtMjM5NC00OGQzLWJmYTEt NmQ2NTVjZDk0NDY4LzEvUXBZemZCbmtOS2gxeXR0S0YycjM1Y2FhbGhFLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81ZS9hN2RkZjYtMjM5NC00OGQzLWJmYTEtNmQ2NTVjZDk0NDY4 LzEvMVJPSEpSTHg4dEEzdEFIQ1lEeW9tVTV5SGxVLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMEkGCCsGAQUFBwEHAQH/BDowODAeBAIAATAYAwQDU4hoAwQD XsZgAwQEX40gAwQDnjqoMBYEAgACMBADBwAqAingAAIDBQAqAiniMA0GCSqGSIb3 DQEBCwUAA4IBAQB1STTBc6e3fjlKcJtPGM3W7lhcrlO5oFc4G87BGB9heW8sIoUz 2OuM/7pI3GYtstHnbmSO7i+LaL+5DLX60He/b4NzGerw/cVQ3A7bYrJb9vna8xPR 6ZXiMi4UxGuZCyEYc8lFcOISLOpQIejCprtT94LNUD7XQ0pYpSe1nl/tcI+CKzUw toLgP0BChGY7QVkhcD3+sjNd++/+8qKFIhLXbTR+SxqmKfueYq1u6Xr/fMG9F0cJ p+/5KNDpORw3VlWzOWqBqjhJXBN12rI5OAgwsOBIxigBo1XAm+rnUzgXknf3XTjO 3sgEuf5jj5GIUcxjwS8kLG2/9V8Jl6KSZHZb -----END CERTIFICATE-----Generated at Mon Jan 26 19:34:55 2026 by rpki-client