This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/65/ce1c99-0abe-4277-aca2-fe1cf308a008/1/qXkw0QfrHcnGQSy5HSSgU96t89k.roa File: qXkw0QfrHcnGQSy5HSSgU96t89k.roa (raw, json) Hash identifier: 0wRXU7/knPguYz2PH2GBKtyb9XdxaFy8E6VNNqtVEPw= Subject key identifier: A9:79:30:D1:07:EB:1D:C9:C6:41:2C:B9:1D:24:A0:53:DE:AD:F3:D9 Certificate issuer: /CN=7913f8c13ba8290f60da63ba89e935b275893adb Certificate serial: 019B77C6A3879AE71471B3D1EA108B541163 Authority key identifier: 79:13:F8:C1:3B:A8:29:0F:60:DA:63:BA:89:E9:35:B2:75:89:3A:DB Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/eRP4wTuoKQ9g2mO6iek1snWJOts.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/65/ce1c99-0abe-4277-aca2-fe1cf308a008/1/qXkw0QfrHcnGQSy5HSSgU96t89k.roa Signing time: Thu 01 Jan 2026 04:17:45 +0000 ROA not before: Thu 01 Jan 2026 04:17:45 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 16509 IP address blocks: 185.78.200.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/65/ce1c99-0abe-4277-aca2-fe1cf308a008/1/eRP4wTuoKQ9g2mO6iek1snWJOts.crl rsync://rpki.ripe.net/repository/DEFAULT/65/ce1c99-0abe-4277-aca2-fe1cf308a008/1/eRP4wTuoKQ9g2mO6iek1snWJOts.mft rsync://rpki.ripe.net/repository/DEFAULT/eRP4wTuoKQ9g2mO6iek1snWJOts.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 03 Jan 2026 03:00:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:77:c6:a3:87:9a:e7:14:71:b3:d1:ea:10:8b:54:11:63 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7913f8c13ba8290f60da63ba89e935b275893adb Validity Not Before: Jan 1 04:17:45 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=a97930d107eb1dc9c6412cb91d24a053deadf3d9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:1a:8b:13:45:82:92:63:b2:74:15:30:c4:68: 7b:60:45:22:90:cf:cc:73:4e:38:19:3b:3b:ec:39: 42:46:4a:27:63:83:7b:7d:9a:4c:9c:c4:11:86:a6: f3:74:4f:67:94:22:6c:5a:81:bb:98:fa:38:b4:93: d7:d2:c9:27:f7:28:b9:52:55:cb:84:23:e4:18:92: f7:d9:6a:24:04:06:d1:99:03:c2:e4:b4:f9:81:fe: 3b:7d:8f:46:c5:44:e0:e1:1a:b0:9e:4b:a4:80:c4: ab:c4:4b:d7:6e:fe:28:c2:67:58:19:cf:e4:77:69: aa:15:a8:64:01:87:64:c1:a8:a6:43:8a:53:e2:76: fb:0b:30:ce:7c:48:09:dd:39:a0:1e:d5:2a:dd:7e: c6:4f:ae:4a:f5:b7:00:15:c2:87:2b:d7:d2:e1:8f: 29:85:48:91:ec:ab:57:5e:c6:3d:d7:b6:ad:50:ca: 14:40:55:9c:6d:59:b6:b2:d2:bd:37:4d:11:23:d1: 0f:b1:22:d6:c6:0f:31:d9:51:18:50:d4:5b:be:d9: f3:d4:bf:7e:f8:1e:53:d4:8c:ab:de:33:63:88:dc: b6:8c:68:93:44:6a:55:45:28:c5:44:50:c0:18:41: 03:ff:11:ba:02:f4:29:01:bb:ed:bd:76:07:0a:2f: c1:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A9:79:30:D1:07:EB:1D:C9:C6:41:2C:B9:1D:24:A0:53:DE:AD:F3:D9 X509v3 Authority Key Identifier: keyid:79:13:F8:C1:3B:A8:29:0F:60:DA:63:BA:89:E9:35:B2:75:89:3A:DB X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/eRP4wTuoKQ9g2mO6iek1snWJOts.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/65/ce1c99-0abe-4277-aca2-fe1cf308a008/1/qXkw0QfrHcnGQSy5HSSgU96t89k.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/65/ce1c99-0abe-4277-aca2-fe1cf308a008/1/eRP4wTuoKQ9g2mO6iek1snWJOts.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.78.200.0/22 Signature Algorithm: sha256WithRSAEncryption 91:bd:ad:9e:de:eb:8c:62:76:49:ed:ac:b5:7c:04:23:cc:75: b6:e5:f3:11:96:43:be:4b:59:5f:61:22:ff:f6:a9:e4:9b:01: 84:b0:97:26:49:85:0f:63:41:60:00:71:f1:91:44:90:d8:dc: 6a:3e:ac:3e:8d:28:d8:ba:6f:f8:6b:c6:cf:42:0d:7b:58:3e: 7c:62:d1:b5:b4:70:d0:2f:9b:91:97:07:37:65:26:6f:10:c5: 93:e7:3f:30:29:a6:11:76:3b:4a:b5:7c:55:26:65:cf:c0:e5: 7a:67:0f:36:7a:c0:2e:60:ee:0c:c8:25:63:dd:6e:d9:b1:8e: 7f:92:c9:ea:6c:0e:21:55:fd:10:4c:3f:18:13:95:fb:fe:d1: 7e:7c:94:15:1a:77:28:f2:5e:03:53:bf:3b:9a:88:18:f1:99: 94:f7:8b:e3:ba:a4:91:e7:f9:70:4c:13:83:6e:78:1f:39:13: 95:fc:01:65:74:28:da:5d:2b:20:49:eb:23:fe:86:79:1d:8c: f1:89:24:ab:fa:a6:2c:2b:a7:31:c9:7f:04:c4:26:e3:fc:4a: c3:bb:72:bf:56:fb:44:0a:1c:86:f1:8e:ef:0e:a3:3d:be:a3: 91:6d:91:a0:8d:4e:f7:6c:0d:86:a7:1b:d9:27:c9:b2:4f:6c: 47:d1:08:33 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt3xqOHmucUcbPR6hCLVBFjMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDc5MTNmOGMxM2JhODI5MGY2MGRhNjNiYTg5ZTkzNWIyNzU4 OTNhZGIwHhcNMjYwMTAxMDQxNzQ1WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhhOTc5MzBkMTA3ZWIxZGM5YzY0MTJjYjkxZDI0YTA1M2RlYWRmM2Q5MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAthqLE0WCkmOydBUwxGh7YEUikM/M c044GTs77DlCRkonY4N7fZpMnMQRhqbzdE9nlCJsWoG7mPo4tJPX0skn9yi5UlXL hCPkGJL32WokBAbRmQPC5LT5gf47fY9GxUTg4RqwnkukgMSrxEvXbv4owmdYGc/k d2mqFahkAYdkwaimQ4pT4nb7CzDOfEgJ3TmgHtUq3X7GT65K9bcAFcKHK9fS4Y8p hUiR7KtXXsY917atUMoUQFWcbVm2stK9N00RI9EPsSLWxg8x2VEYUNRbvtnz1L9+ +B5T1Iyr3jNjiNy2jGiTRGpVRSjFRFDAGEED/xG6AvQpAbvtvXYHCi/ByQIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFKl5MNEH6x3JxkEsuR0koFPerfPZMB8GA1UdIwQY MBaAFHkT+ME7qCkPYNpjuonpNbJ1iTrbMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvZVJQNHdUdW9LUTlnMm1PNmllazFzbldKT3RzLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82NS9jZTFjOTktMGFiZS00Mjc3LWFjYTIt ZmUxY2YzMDhhMDA4LzEvcVhrdzBRZnJIY25HUVN5NUhTU2dVOTZ0ODlrLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC82NS9jZTFjOTktMGFiZS00Mjc3LWFjYTItZmUxY2YzMDhhMDA4 LzEvZVJQNHdUdW9LUTlnMm1PNmllazFzbldKT3RzLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCuU7IMA0G CSqGSIb3DQEBCwUAA4IBAQCRva2e3uuMYnZJ7ay1fAQjzHW25fMRlkO+S1lfYSL/ 9qnkmwGEsJcmSYUPY0FgAHHxkUSQ2NxqPqw+jSjYum/4a8bPQg17WD58YtG1tHDQ L5uRlwc3ZSZvEMWT5z8wKaYRdjtKtXxVJmXPwOV6Zw82esAuYO4MyCVj3W7ZsY5/ ksnqbA4hVf0QTD8YE5X7/tF+fJQVGnco8l4DU787mogY8ZmU94vjuqSR5/lwTBOD bngfOROV/AFldCjaXSsgSesj/oZ5HYzxiSSr+qYsK6cxyX8ExCbj/ErDu3K/VvtE ChyG8Y7vDqM9vqORbZGgjU73bA2GpxvZJ8myT2xH0Qgz -----END CERTIFICATE-----Generated at Fri Jan 2 09:27:15 2026 by rpki-client