This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/72/2391ed-f285-4286-af2f-d2551cdde4af/1/QfrHMiVpt3G-cJy_BbBREo-KTJ0.roa File: QfrHMiVpt3G-cJy_BbBREo-KTJ0.roa (raw, json) Hash identifier: LOQ7MtV866jGXGTdWHN/r/Nnuu+Qk3u4t0LPFc49Qt8= Subject key identifier: 41:FA:C7:32:25:69:B7:71:BE:70:9C:BF:05:B0:51:12:8F:8A:4C:9D Certificate issuer: /CN=18e2aed9af3a4be560aa19b92846c5fbe11c9b19 Certificate serial: 019B7BA453730F45FE45B6AC89A5A493C4BD Authority key identifier: 18:E2:AE:D9:AF:3A:4B:E5:60:AA:19:B9:28:46:C5:FB:E1:1C:9B:19 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GOKu2a86S-Vgqhm5KEbF--Ecmxk.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/72/2391ed-f285-4286-af2f-d2551cdde4af/1/QfrHMiVpt3G-cJy_BbBREo-KTJ0.roa Signing time: Thu 01 Jan 2026 22:18:45 +0000 ROA not before: Thu 01 Jan 2026 22:18:45 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 6762 IP address blocks: 78.40.62.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/72/2391ed-f285-4286-af2f-d2551cdde4af/1/GOKu2a86S-Vgqhm5KEbF--Ecmxk.crl rsync://rpki.ripe.net/repository/DEFAULT/72/2391ed-f285-4286-af2f-d2551cdde4af/1/GOKu2a86S-Vgqhm5KEbF--Ecmxk.mft rsync://rpki.ripe.net/repository/DEFAULT/GOKu2a86S-Vgqhm5KEbF--Ecmxk.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 21 Jan 2026 15:30:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7b:a4:53:73:0f:45:fe:45:b6:ac:89:a5:a4:93:c4:bd Signature Algorithm: sha256WithRSAEncryption Issuer: CN=18e2aed9af3a4be560aa19b92846c5fbe11c9b19 Validity Not Before: Jan 1 22:18:45 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=41fac7322569b771be709cbf05b051128f8a4c9d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:94:9c:a3:92:49:88:fa:bd:ca:7b:91:65:88:1f: b8:14:bd:33:c1:43:22:42:a4:28:75:8d:c3:01:ee: d3:9b:9a:13:d1:d7:b9:7f:05:21:d1:ca:3f:ed:dd: 94:b8:42:51:8b:d5:24:0c:80:c0:b3:ff:93:70:05: 12:fb:1d:c4:27:6e:3e:3a:05:77:ac:de:29:f5:fc: c9:a3:bf:ff:55:e7:96:69:39:cd:27:78:f2:cc:59: 89:ae:27:ce:1b:7e:10:31:39:71:41:67:36:e3:71: d7:78:aa:ca:ec:00:8a:e6:05:87:7f:c6:fe:27:17: 89:dd:2b:ad:ca:f8:40:5a:ff:a0:f7:31:6d:bf:39: 52:cd:5a:d5:29:14:fb:e4:a6:6b:74:79:69:68:e5: 60:e2:56:e7:f7:b6:5e:93:f5:63:9c:75:86:b3:49: 3a:4b:9b:53:d3:d0:0b:d3:24:e1:22:a5:78:a7:d4: 91:cc:42:0e:c9:fe:4c:0a:66:66:c7:ec:ab:c7:ae: ca:2c:1e:fe:e0:11:cd:01:98:e0:f5:ff:dd:ec:d4: 7b:eb:51:81:35:0d:13:7f:ea:22:a4:56:53:21:3a: f8:de:eb:ff:03:11:32:b2:64:06:79:16:f2:f5:d4: b6:d1:75:12:67:78:52:7f:1c:9c:99:d6:fb:e0:25: f2:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 41:FA:C7:32:25:69:B7:71:BE:70:9C:BF:05:B0:51:12:8F:8A:4C:9D X509v3 Authority Key Identifier: keyid:18:E2:AE:D9:AF:3A:4B:E5:60:AA:19:B9:28:46:C5:FB:E1:1C:9B:19 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GOKu2a86S-Vgqhm5KEbF--Ecmxk.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/72/2391ed-f285-4286-af2f-d2551cdde4af/1/QfrHMiVpt3G-cJy_BbBREo-KTJ0.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/72/2391ed-f285-4286-af2f-d2551cdde4af/1/GOKu2a86S-Vgqhm5KEbF--Ecmxk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 78.40.62.0/23 Signature Algorithm: sha256WithRSAEncryption 77:fa:a7:87:5c:24:98:a0:3a:98:6a:cb:f0:25:25:00:0c:39: 04:7c:17:60:01:79:6f:11:0c:ae:e4:e3:fb:8d:9e:43:cd:9f: 02:18:54:89:2c:e0:46:c3:6e:cf:21:76:85:9d:b5:5e:6f:29: 59:da:cd:6d:e9:1a:6c:e9:a4:a7:13:dd:40:b5:07:0e:5d:8f: d3:ae:a7:be:63:0f:84:26:bf:7a:f7:67:46:74:28:56:9b:f3: 3a:38:46:d6:10:3e:ee:80:12:fb:13:0a:93:3f:cf:37:a1:3f: 61:e4:b2:ef:1d:f9:7b:9b:5d:5f:24:87:2f:ea:3a:dc:b2:92: 33:b1:0d:31:b7:1e:38:db:ec:a2:8c:e7:44:af:b7:a6:f3:4b: 03:75:de:37:33:56:2f:fd:06:e8:a3:da:51:62:ad:33:64:e6: d8:ca:e5:24:5f:72:1a:2d:17:a6:61:a1:47:bc:65:ec:37:12: b8:17:c3:04:94:a7:ba:19:ed:ac:76:89:a7:04:63:e7:54:fd: cc:21:31:4d:9d:b5:77:f4:b9:5a:f4:e1:2c:98:46:bd:10:d4: ed:57:20:cc:6a:44:1f:2c:12:91:74:85:0a:28:68:6b:2b:36: f7:48:1a:bd:31:eb:ca:33:7c:f1:68:05:39:02:07:6e:72:8f: 24:ab:a9:2b -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt7pFNzD0X+RbasiaWkk8S9MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDE4ZTJhZWQ5YWYzYTRiZTU2MGFhMTliOTI4NDZjNWZiZTEx YzliMTkwHhcNMjYwMTAxMjIxODQ1WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg0MWZhYzczMjI1NjliNzcxYmU3MDljYmYwNWIwNTExMjhmOGE0YzlkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAlJyjkkmI+r3Ke5FliB+4FL0zwUMi QqQodY3DAe7Tm5oT0de5fwUh0co/7d2UuEJRi9UkDIDAs/+TcAUS+x3EJ24+OgV3 rN4p9fzJo7//VeeWaTnNJ3jyzFmJrifOG34QMTlxQWc243HXeKrK7ACK5gWHf8b+ JxeJ3SutyvhAWv+g9zFtvzlSzVrVKRT75KZrdHlpaOVg4lbn97Zek/VjnHWGs0k6 S5tT09AL0yThIqV4p9SRzEIOyf5MCmZmx+yrx67KLB7+4BHNAZjg9f/d7NR761GB NQ0Tf+oipFZTITr43uv/AxEysmQGeRby9dS20XUSZ3hSfxycmdb74CXytQIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFEH6xzIlabdxvnCcvwWwURKPikydMB8GA1UdIwQY MBaAFBjirtmvOkvlYKoZuShGxfvhHJsZMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvR09LdTJhODZTLVZncWhtNUtFYkYtLUVjbXhrLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83Mi8yMzkxZWQtZjI4NS00Mjg2LWFmMmYt ZDI1NTFjZGRlNGFmLzEvUWZySE1pVnB0M0ctY0p5X0JiQlJFby1LVEowLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC83Mi8yMzkxZWQtZjI4NS00Mjg2LWFmMmYtZDI1NTFjZGRlNGFm LzEvR09LdTJhODZTLVZncWhtNUtFYkYtLUVjbXhrLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBTig+MA0G CSqGSIb3DQEBCwUAA4IBAQB3+qeHXCSYoDqYasvwJSUADDkEfBdgAXlvEQyu5OP7 jZ5DzZ8CGFSJLOBGw27PIXaFnbVebylZ2s1t6Rps6aSnE91AtQcOXY/Trqe+Yw+E Jr9692dGdChWm/M6OEbWED7ugBL7EwqTP883oT9h5LLvHfl7m11fJIcv6jrcspIz sQ0xtx442+yijOdEr7em80sDdd43M1Yv/Qboo9pRYq0zZObYyuUkX3IaLRemYaFH vGXsNxK4F8MElKe6Ge2sdomnBGPnVP3MITFNnbV39Lla9OEsmEa9ENTtVyDMakQf LBKRdIUKKGhrKzb3SBq9MevKM3zxaAU5Agduco8kq6kr -----END CERTIFICATE-----Generated at Tue Jan 20 21:16:52 2026 by rpki-client