This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/65/999b97-c731-4192-85f1-573701c84833/1/cQH0svByABR3Py1DZwIjFPFcOkw.roa File: cQH0svByABR3Py1DZwIjFPFcOkw.roa (raw, json) Hash identifier: mJYz+BYV9j4Rl3VmoHkgo2HtMT66ycwQT4WcfXk8bCw= Subject key identifier: 71:01:F4:B2:F0:72:00:14:77:3F:2D:43:67:02:23:14:F1:5C:3A:4C Certificate issuer: /CN=6222e1c2a5315334b66d80f78d5b50b42e480b9c Certificate serial: 019B7AC7A17EEEC11694A034268DD3D2319F Authority key identifier: 62:22:E1:C2:A5:31:53:34:B6:6D:80:F7:8D:5B:50:B4:2E:48:0B:9C Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YiLhwqUxUzS2bYD3jVtQtC5IC5w.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/65/999b97-c731-4192-85f1-573701c84833/1/cQH0svByABR3Py1DZwIjFPFcOkw.roa Signing time: Thu 01 Jan 2026 18:17:41 +0000 ROA not before: Thu 01 Jan 2026 18:17:41 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 210976 IP address blocks: 185.196.117.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/65/999b97-c731-4192-85f1-573701c84833/1/YiLhwqUxUzS2bYD3jVtQtC5IC5w.crl rsync://rpki.ripe.net/repository/DEFAULT/65/999b97-c731-4192-85f1-573701c84833/1/YiLhwqUxUzS2bYD3jVtQtC5IC5w.mft rsync://rpki.ripe.net/repository/DEFAULT/YiLhwqUxUzS2bYD3jVtQtC5IC5w.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 20 Jan 2026 18:00:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7a:c7:a1:7e:ee:c1:16:94:a0:34:26:8d:d3:d2:31:9f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6222e1c2a5315334b66d80f78d5b50b42e480b9c Validity Not Before: Jan 1 18:17:41 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=7101f4b2f0720014773f2d4367022314f15c3a4c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:52:fe:01:40:9c:7b:cf:d1:f3:3c:69:21:11: 5a:9b:08:19:29:74:3f:1c:d5:16:c9:72:13:49:93: fa:b4:1d:ce:65:97:40:19:d4:c6:6d:37:11:b5:e8: db:9a:6c:6e:dd:bf:31:40:1d:17:6f:f5:82:32:d1: fc:48:a7:f1:7e:c6:65:0d:13:b8:00:9b:28:52:7a: 98:9c:10:98:23:28:3a:d3:e2:d2:59:9f:11:c7:eb: ef:55:72:38:f6:21:cd:ef:31:e4:2a:b0:e0:24:a9: 01:8a:53:28:13:5d:10:e8:ee:11:41:ff:59:2b:86: d6:31:5d:0f:60:e3:4d:07:83:31:31:00:b4:2b:c5: c2:1f:60:c9:36:8a:14:2e:81:05:4e:a8:b5:20:01: 91:66:e3:26:71:d1:05:53:58:8c:3f:ac:26:db:ed: 11:90:30:60:6f:36:ae:6a:6f:cf:68:e7:6a:77:da: 4b:fc:77:84:50:2e:ab:1f:57:c2:48:b6:c0:23:76: f2:38:87:3b:ae:54:3a:51:c3:49:f9:79:98:f6:1b: 8f:20:03:f6:ca:39:d6:9b:07:43:2d:a7:0c:83:93: 26:9e:53:e4:16:d8:d8:74:b9:7a:ea:6c:ca:9c:d0: 3d:27:bf:42:2d:eb:8e:1d:cb:4d:01:53:4b:32:cf: ae:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 71:01:F4:B2:F0:72:00:14:77:3F:2D:43:67:02:23:14:F1:5C:3A:4C X509v3 Authority Key Identifier: keyid:62:22:E1:C2:A5:31:53:34:B6:6D:80:F7:8D:5B:50:B4:2E:48:0B:9C X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YiLhwqUxUzS2bYD3jVtQtC5IC5w.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/65/999b97-c731-4192-85f1-573701c84833/1/cQH0svByABR3Py1DZwIjFPFcOkw.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/65/999b97-c731-4192-85f1-573701c84833/1/YiLhwqUxUzS2bYD3jVtQtC5IC5w.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.196.117.0/24 Signature Algorithm: sha256WithRSAEncryption 21:5a:4f:fd:6a:a5:95:5b:23:c3:5c:ce:d5:36:96:ee:16:b0: e2:29:64:f3:63:9e:49:d5:25:ce:bb:20:5b:37:f7:36:a1:0f: 84:fa:20:f3:62:5f:b4:34:72:b0:2b:1c:16:e6:c4:f0:42:4c: 06:c9:e9:df:b6:85:d6:ab:d9:8f:1b:e4:ca:39:e7:8b:3e:18: d3:fe:e9:ad:38:86:76:7f:2c:7d:d1:81:e1:33:32:e4:2b:e0: b2:b7:2d:5e:13:95:6b:77:92:12:7f:17:fe:7a:ff:e9:b7:77: 61:54:66:9e:ee:15:84:f4:43:5a:a1:a6:70:7f:60:15:f8:1d: 21:3b:53:63:32:0b:4b:12:59:9b:c5:8a:d5:36:d0:b0:c7:7d: ce:de:fd:2d:e8:8e:11:dd:b5:54:a9:b0:31:cf:45:99:74:65: 1c:e8:7e:a2:df:2f:85:e6:b8:8d:d3:fe:34:56:b6:5a:76:1e: f7:6d:99:fc:5e:2f:a3:7e:3b:b9:b5:2d:84:7d:cd:d8:76:37: 99:7a:88:52:ef:b4:29:f7:68:7b:8b:70:f0:b3:9e:db:d9:6e: cf:d9:34:9c:72:c4:4a:94:f7:5e:1d:79:76:77:3b:c9:38:05: 09:50:16:c7:55:c8:3f:c6:40:7f:3e:fd:25:31:1c:96:94:9c: 94:9c:4f:10 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt6x6F+7sEWlKA0Jo3T0jGfMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDYyMjJlMWMyYTUzMTUzMzRiNjZkODBmNzhkNWI1MGI0MmU0 ODBiOWMwHhcNMjYwMTAxMTgxNzQxWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg3MTAxZjRiMmYwNzIwMDE0NzczZjJkNDM2NzAyMjMxNGYxNWMzYTRjMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA31L+AUCce8/R8zxpIRFamwgZKXQ/ HNUWyXITSZP6tB3OZZdAGdTGbTcRtejbmmxu3b8xQB0Xb/WCMtH8SKfxfsZlDRO4 AJsoUnqYnBCYIyg60+LSWZ8Rx+vvVXI49iHN7zHkKrDgJKkBilMoE10Q6O4RQf9Z K4bWMV0PYONNB4MxMQC0K8XCH2DJNooULoEFTqi1IAGRZuMmcdEFU1iMP6wm2+0R kDBgbzauam/PaOdqd9pL/HeEUC6rH1fCSLbAI3byOIc7rlQ6UcNJ+XmY9huPIAP2 yjnWmwdDLacMg5MmnlPkFtjYdLl66mzKnNA9J79CLeuOHctNAVNLMs+ujQIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFHEB9LLwcgAUdz8tQ2cCIxTxXDpMMB8GA1UdIwQY MBaAFGIi4cKlMVM0tm2A941bULQuSAucMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvWWlMaHdxVXhVelMyYllEM2pWdFF0QzVJQzV3LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82NS85OTliOTctYzczMS00MTkyLTg1ZjEt NTczNzAxYzg0ODMzLzEvY1FIMHN2QnlBQlIzUHkxRFp3SWpGUEZjT2t3LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC82NS85OTliOTctYzczMS00MTkyLTg1ZjEtNTczNzAxYzg0ODMz LzEvWWlMaHdxVXhVelMyYllEM2pWdFF0QzVJQzV3LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAucR1MA0G CSqGSIb3DQEBCwUAA4IBAQAhWk/9aqWVWyPDXM7VNpbuFrDiKWTzY55J1SXOuyBb N/c2oQ+E+iDzYl+0NHKwKxwW5sTwQkwGyenftoXWq9mPG+TKOeeLPhjT/umtOIZ2 fyx90YHhMzLkK+Cyty1eE5Vrd5ISfxf+ev/pt3dhVGae7hWE9ENaoaZwf2AV+B0h O1NjMgtLElmbxYrVNtCwx33O3v0t6I4R3bVUqbAxz0WZdGUc6H6i3y+F5riN0/40 VrZadh73bZn8Xi+jfju5tS2Efc3YdjeZeohS77Qp92h7i3Dws57b2W7P2TSccsRK lPdeHXl2dzvJOAUJUBbHVcg/xkB/Pv0lMRyWlJyUnE8Q -----END CERTIFICATE-----Generated at Mon Jan 19 20:34:50 2026 by rpki-client