This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6f/8e7d77-89c8-452c-a9bf-bc5f897c724a/1/qKlROkZlk3DYFTmipBNFAH2SseM.roa File: qKlROkZlk3DYFTmipBNFAH2SseM.roa (raw, json) Hash identifier: 4ZEDkg/LHUGlc95hTTGad49qSD826UApgpQuVs6AZok= Subject key identifier: A8:A9:51:3A:46:65:93:70:D8:15:39:A2:A4:13:45:00:7D:92:B1:E3 Certificate issuer: /CN=d2d38f4597051b6c0ddf1bb866ae4e94703e155e Certificate serial: 019BD52792016FD17CE3DB2CB6723F8AB366 Authority key identifier: D2:D3:8F:45:97:05:1B:6C:0D:DF:1B:B8:66:AE:4E:94:70:3E:15:5E Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0tOPRZcFG2wN3xu4Zq5OlHA-FV4.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6f/8e7d77-89c8-452c-a9bf-bc5f897c724a/1/qKlROkZlk3DYFTmipBNFAH2SseM.roa Signing time: Mon 19 Jan 2026 07:28:18 +0000 ROA not before: Mon 19 Jan 2026 07:28:18 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 49724 IP address blocks: 91.215.220.0/22 maxlen: 22 91.215.220.0/24 maxlen: 24 91.215.221.0/24 maxlen: 24 91.215.222.0/23 maxlen: 23 157.22.216.0/22 maxlen: 22 157.22.216.0/24 maxlen: 24 157.22.217.0/24 maxlen: 24 157.22.218.0/24 maxlen: 24 157.22.219.0/24 maxlen: 24 188.0.160.0/19 maxlen: 19 188.0.160.0/20 maxlen: 20 188.0.162.0/24 maxlen: 24 188.0.166.0/23 maxlen: 23 188.0.169.0/24 maxlen: 24 188.0.174.0/24 maxlen: 24 188.0.175.0/24 maxlen: 24 188.0.176.0/21 maxlen: 21 188.0.178.0/24 maxlen: 24 188.0.179.0/24 maxlen: 24 188.0.180.0/24 maxlen: 24 188.0.183.0/24 maxlen: 24 188.0.184.0/22 maxlen: 22 188.0.186.0/24 maxlen: 24 188.0.188.0/24 maxlen: 24 188.0.189.0/24 maxlen: 24 188.0.190.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/6f/8e7d77-89c8-452c-a9bf-bc5f897c724a/1/0tOPRZcFG2wN3xu4Zq5OlHA-FV4.crl rsync://rpki.ripe.net/repository/DEFAULT/6f/8e7d77-89c8-452c-a9bf-bc5f897c724a/1/0tOPRZcFG2wN3xu4Zq5OlHA-FV4.mft rsync://rpki.ripe.net/repository/DEFAULT/0tOPRZcFG2wN3xu4Zq5OlHA-FV4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 21:05:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:d5:27:92:01:6f:d1:7c:e3:db:2c:b6:72:3f:8a:b3:66 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d2d38f4597051b6c0ddf1bb866ae4e94703e155e Validity Not Before: Jan 19 07:28:18 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=a8a9513a46659370d81539a2a41345007d92b1e3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:4f:35:ee:8d:c3:d7:75:86:fa:ab:da:8e:a9: ca:12:1d:2f:ad:45:9b:46:2d:68:eb:c6:c9:9c:72: ff:92:c1:3a:ca:aa:4b:d1:01:46:32:e8:c5:13:be: cf:83:a3:74:1a:fa:df:9f:68:13:21:a8:3e:7b:bc: a3:c0:80:a5:5d:af:c2:58:91:64:5c:0f:3f:12:10: 1c:44:19:7d:88:9c:13:18:81:cc:84:7e:34:05:76: 37:de:da:dd:e7:df:d4:2c:bd:65:fa:8d:69:2b:82: 81:e1:6c:c5:da:88:99:14:70:de:21:0d:52:1d:bf: e5:9c:6e:b0:65:7b:f5:8f:77:25:60:88:b6:ac:2f: 5a:f0:c1:44:2d:48:50:60:62:0b:6d:e0:10:58:ac: 76:7d:6d:5e:71:96:11:19:f2:44:0e:76:23:6c:a1: 56:7f:a8:f7:37:7e:9b:80:49:ff:62:f8:b1:42:54: 19:04:b0:60:5a:dc:40:43:fa:d0:12:ea:49:f1:de: c4:24:c3:08:5b:25:1f:2e:f6:24:c5:13:fe:a9:de: 62:33:9a:a4:41:08:67:3e:8e:45:29:4d:b0:6e:4c: 62:e1:3c:2a:9e:1a:60:f6:05:36:61:b3:bb:6d:a9: bf:16:5d:4d:ab:86:04:8e:da:9e:de:96:c1:2a:ec: 2d:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A8:A9:51:3A:46:65:93:70:D8:15:39:A2:A4:13:45:00:7D:92:B1:E3 X509v3 Authority Key Identifier: keyid:D2:D3:8F:45:97:05:1B:6C:0D:DF:1B:B8:66:AE:4E:94:70:3E:15:5E X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0tOPRZcFG2wN3xu4Zq5OlHA-FV4.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6f/8e7d77-89c8-452c-a9bf-bc5f897c724a/1/qKlROkZlk3DYFTmipBNFAH2SseM.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/6f/8e7d77-89c8-452c-a9bf-bc5f897c724a/1/0tOPRZcFG2wN3xu4Zq5OlHA-FV4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 91.215.220.0/22 157.22.216.0/22 188.0.160.0/19 Signature Algorithm: sha256WithRSAEncryption 59:58:c0:4c:83:94:ab:b9:b0:e3:a8:3e:67:a8:11:8e:31:81: 08:ff:6f:15:4c:6a:b9:b0:3c:7c:6a:4d:b7:d8:7f:c4:d3:a5: 78:6b:d1:11:20:b5:43:4c:02:d9:2a:42:bb:d0:57:de:1b:e3: 40:09:15:87:a2:de:01:90:b6:8c:28:7b:58:67:25:b2:63:2b: 3c:e6:32:d6:2e:62:cf:76:29:8f:1e:df:71:2e:da:03:c4:ee: 41:66:1d:7b:60:90:bf:42:b4:bf:49:41:ce:35:1d:26:26:5d: 27:a4:03:34:94:7f:4c:f3:cf:79:18:d5:8b:7e:9d:77:cd:f1: 6f:f7:78:12:18:7c:9c:22:64:d7:96:70:34:a0:ec:af:15:a4: 60:f5:90:a5:c1:fe:77:ca:4a:14:99:2e:15:4a:c9:68:a9:ef: 74:bb:03:c4:18:5e:e7:e1:6f:df:92:1b:7b:56:ad:50:0f:7c: 7c:14:1e:a0:b9:c6:2e:ff:06:e6:13:65:11:33:91:8a:4c:f3: 77:96:83:cd:2b:6e:9f:ff:87:6c:50:db:30:07:0a:1b:0e:08: 34:25:34:77:c8:4e:28:6f:bc:72:41:b1:41:17:df:20:60:c4: 4e:3d:57:d7:c7:49:12:65:df:d2:95:cc:7d:88:26:65:1c:13: 4f:77:67:05 -----BEGIN CERTIFICATE----- MIIFCTCCA/GgAwIBAgISAZvVJ5IBb9F849sstnI/irNmMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGQyZDM4ZjQ1OTcwNTFiNmMwZGRmMWJiODY2YWU0ZTk0NzAz ZTE1NWUwHhcNMjYwMTE5MDcyODE4WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhhOGE5NTEzYTQ2NjU5MzcwZDgxNTM5YTJhNDEzNDUwMDdkOTJiMWUzMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArE817o3D13WG+qvajqnKEh0vrUWb Ri1o68bJnHL/ksE6yqpL0QFGMujFE77Pg6N0Gvrfn2gTIag+e7yjwIClXa/CWJFk XA8/EhAcRBl9iJwTGIHMhH40BXY33trd59/ULL1l+o1pK4KB4WzF2oiZFHDeIQ1S Hb/lnG6wZXv1j3clYIi2rC9a8MFELUhQYGILbeAQWKx2fW1ecZYRGfJEDnYjbKFW f6j3N36bgEn/YvixQlQZBLBgWtxAQ/rQEupJ8d7EJMMIWyUfLvYkxRP+qd5iM5qk QQhnPo5FKU2wbkxi4Twqnhpg9gU2YbO7bam/Fl1Nq4YEjtqe3pbBKuwtjQIDAQAB o4ICFTCCAhEwHQYDVR0OBBYEFKipUTpGZZNw2BU5oqQTRQB9krHjMB8GA1UdIwQY MBaAFNLTj0WXBRtsDd8buGauTpRwPhVeMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvMHRPUFJaY0ZHMndOM3h1NFpxNU9sSEEtRlY0LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82Zi84ZTdkNzctODljOC00NTJjLWE5YmYt YmM1Zjg5N2M3MjRhLzEvcUtsUk9rWmxrM0RZRlRtaXBCTkZBSDJTc2VNLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC82Zi84ZTdkNzctODljOC00NTJjLWE5YmYtYmM1Zjg5N2M3MjRh LzEvMHRPUFJaY0ZHMndOM3h1NFpxNU9sSEEtRlY0LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCsGCCsGAQUFBwEHAQH/BBwwGjAYBAIAATASAwQCW9fcAwQC nRbYAwQFvACgMA0GCSqGSIb3DQEBCwUAA4IBAQBZWMBMg5SrubDjqD5nqBGOMYEI /28VTGq5sDx8ak232H/E06V4a9ERILVDTALZKkK70FfeG+NACRWHot4BkLaMKHtY ZyWyYys85jLWLmLPdimPHt9xLtoDxO5BZh17YJC/QrS/SUHONR0mJl0npAM0lH9M 8895GNWLfp13zfFv93gSGHycImTXlnA0oOyvFaRg9ZClwf53ykoUmS4VSsloqe90 uwPEGF7n4W/fkht7Vq1QD3x8FB6gucYu/wbmE2URM5GKTPN3loPNK26f/4dsUNsw BwobDgg0JTR3yE4ob7xyQbFBF98gYMROPVfXx0kSZd/Slcx9iCZlHBNPd2cF -----END CERTIFICATE-----Generated at Tue Feb 10 03:57:16 2026 by rpki-client