This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/74/01bf96-81b6-4e4c-ab80-e0bc41078426/1/QVJESyUgcIDmNN8KuNewhKTn8O8.roa File: QVJESyUgcIDmNN8KuNewhKTn8O8.roa (raw, json) Hash identifier: rsPEgVBQN8qb3Gf6bi1+pSFcHaV0wEFs/DT4FZ8+49I= Subject key identifier: 41:52:44:4B:25:20:70:80:E6:34:DF:0A:B8:D7:B0:84:A4:E7:F0:EF Certificate issuer: /CN=dc0f9ea04636d7e71418b93091ccd0e57015be49 Certificate serial: 019B7BA4F8BF7D665B2C5ED122CF946C8C2E Authority key identifier: DC:0F:9E:A0:46:36:D7:E7:14:18:B9:30:91:CC:D0:E5:70:15:BE:49 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3A-eoEY21-cUGLkwkczQ5XAVvkk.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/74/01bf96-81b6-4e4c-ab80-e0bc41078426/1/QVJESyUgcIDmNN8KuNewhKTn8O8.roa Signing time: Thu 01 Jan 2026 22:19:27 +0000 ROA not before: Thu 01 Jan 2026 22:19:27 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 41026 IP address blocks: 185.56.244.0/22 maxlen: 22 2a02:5660::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/74/01bf96-81b6-4e4c-ab80-e0bc41078426/1/3A-eoEY21-cUGLkwkczQ5XAVvkk.crl rsync://rpki.ripe.net/repository/DEFAULT/74/01bf96-81b6-4e4c-ab80-e0bc41078426/1/3A-eoEY21-cUGLkwkczQ5XAVvkk.mft rsync://rpki.ripe.net/repository/DEFAULT/3A-eoEY21-cUGLkwkczQ5XAVvkk.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 13:00:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7b:a4:f8:bf:7d:66:5b:2c:5e:d1:22:cf:94:6c:8c:2e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=dc0f9ea04636d7e71418b93091ccd0e57015be49 Validity Not Before: Jan 1 22:19:27 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=4152444b25207080e634df0ab8d7b084a4e7f0ef Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:7b:40:9a:94:c9:01:18:ad:7b:26:69:3a:73: 49:ad:fb:bf:d9:4e:87:38:31:6d:17:33:f7:11:5a: 16:78:7d:0d:6c:11:38:7c:92:69:aa:b5:7d:8b:9c: b5:71:4d:62:9c:d9:03:b3:39:20:e6:78:55:10:cf: f9:91:70:15:7d:43:d6:2c:50:86:ec:c1:e4:53:c1: 8e:bf:ba:b3:e5:10:be:1c:a9:d2:61:6b:c4:c6:73: f5:9a:4b:e4:e9:78:62:dc:2c:e1:db:41:77:64:3f: 38:26:f8:cc:76:76:63:10:08:2d:16:15:0d:68:5d: 8d:72:2b:12:0a:3e:63:6d:31:4b:01:2a:56:2e:e0: 10:73:cd:98:64:46:af:4c:f3:2f:40:63:cb:ed:d4: 49:8f:8f:2f:64:37:bd:7d:b4:d8:e8:2d:7b:7f:57: 40:54:68:ff:82:a5:b3:e3:d7:3a:a1:8a:69:70:f1: fa:d8:37:bc:63:dc:a0:fe:73:a4:6b:2a:36:80:48: 6f:fa:e3:bc:68:18:e3:a1:18:2d:76:27:71:d0:11: 8b:ca:ea:96:ee:e3:9d:ac:c0:23:07:8d:83:df:50: 5d:c1:7f:d6:b9:a2:26:d4:10:10:bb:34:79:f3:fd: ce:b3:91:2d:a4:ca:3b:4f:57:1a:e4:e8:60:d0:60: 2e:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 41:52:44:4B:25:20:70:80:E6:34:DF:0A:B8:D7:B0:84:A4:E7:F0:EF X509v3 Authority Key Identifier: keyid:DC:0F:9E:A0:46:36:D7:E7:14:18:B9:30:91:CC:D0:E5:70:15:BE:49 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3A-eoEY21-cUGLkwkczQ5XAVvkk.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/74/01bf96-81b6-4e4c-ab80-e0bc41078426/1/QVJESyUgcIDmNN8KuNewhKTn8O8.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/74/01bf96-81b6-4e4c-ab80-e0bc41078426/1/3A-eoEY21-cUGLkwkczQ5XAVvkk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.56.244.0/22 IPv6: 2a02:5660::/32 Signature Algorithm: sha256WithRSAEncryption 33:20:ca:b9:26:1b:41:a5:ab:5f:e6:16:78:0e:40:3d:30:a9: b2:fe:08:c8:4a:91:f8:12:0e:75:97:cb:1f:58:84:e3:be:24: ba:40:5a:dd:bb:51:29:53:2b:8b:cc:cf:fa:a2:9d:16:3d:6f: e0:c8:22:15:d3:da:a7:2c:2f:a2:d9:9c:69:be:9d:32:86:67: 9f:19:79:2c:9e:9a:e8:41:a7:b7:fb:9f:4f:0f:eb:91:03:80: 39:dc:83:f7:2a:df:61:81:f8:38:ab:e7:24:17:c7:7a:77:e2: 7b:b2:01:3a:77:8c:22:32:3e:61:69:1a:db:df:1c:63:23:08: 42:27:43:1e:40:04:cf:4c:19:c0:aa:11:0d:53:92:e6:fc:82: 03:8e:6b:52:dc:0d:5a:d5:4b:0c:32:1f:c7:72:31:84:6f:db: b5:a7:e6:5b:25:66:b8:e0:3a:85:9b:8f:e6:ea:64:3b:29:c6: 47:50:36:1c:d8:47:f4:8c:9a:69:0b:97:23:e0:5d:bc:e5:60: 7f:28:f5:83:b9:fa:e1:9f:3d:14:f5:00:2f:ce:87:31:41:f5: 40:5f:29:f3:0b:c2:16:27:95:cb:72:ed:e9:db:1e:0b:68:b4: 2e:f3:5c:31:b1:b0:df:54:2c:5a:58:a5:b5:65:cd:9a:fc:b1: 83:fd:78:d6 -----BEGIN CERTIFICATE----- MIIFDDCCA/SgAwIBAgISAZt7pPi/fWZbLF7RIs+UbIwuMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGRjMGY5ZWEwNDYzNmQ3ZTcxNDE4YjkzMDkxY2NkMGU1NzAx NWJlNDkwHhcNMjYwMTAxMjIxOTI3WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg0MTUyNDQ0YjI1MjA3MDgwZTYzNGRmMGFiOGQ3YjA4NGE0ZTdmMGVmMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAoHtAmpTJARiteyZpOnNJrfu/2U6H ODFtFzP3EVoWeH0NbBE4fJJpqrV9i5y1cU1inNkDszkg5nhVEM/5kXAVfUPWLFCG 7MHkU8GOv7qz5RC+HKnSYWvExnP1mkvk6Xhi3Czh20F3ZD84JvjMdnZjEAgtFhUN aF2NcisSCj5jbTFLASpWLuAQc82YZEavTPMvQGPL7dRJj48vZDe9fbTY6C17f1dA VGj/gqWz49c6oYppcPH62De8Y9yg/nOkayo2gEhv+uO8aBjjoRgtdidx0BGLyuqW 7uOdrMAjB42D31BdwX/WuaIm1BAQuzR58/3Os5EtpMo7T1ca5Ohg0GAuAQIDAQAB o4ICGDCCAhQwHQYDVR0OBBYEFEFSREslIHCA5jTfCrjXsISk5/DvMB8GA1UdIwQY MBaAFNwPnqBGNtfnFBi5MJHM0OVwFb5JMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvM0EtZW9FWTIxLWNVR0xrd2tjelE1WEFWdmtrLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83NC8wMWJmOTYtODFiNi00ZTRjLWFiODAt ZTBiYzQxMDc4NDI2LzEvUVZKRVN5VWdjSURtTk44S3VOZXdoS1RuOE84LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC83NC8wMWJmOTYtODFiNi00ZTRjLWFiODAtZTBiYzQxMDc4NDI2 LzEvM0EtZW9FWTIxLWNVR0xrd2tjelE1WEFWdmtrLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMC4GCCsGAQUFBwEHAQH/BB8wHTAMBAIAATAGAwQCuTj0MA0E AgACMAcDBQAqAlZgMA0GCSqGSIb3DQEBCwUAA4IBAQAzIMq5JhtBpatf5hZ4DkA9 MKmy/gjISpH4Eg51l8sfWITjviS6QFrdu1EpUyuLzM/6op0WPW/gyCIV09qnLC+i 2Zxpvp0yhmefGXksnproQae3+59PD+uRA4A53IP3Kt9hgfg4q+ckF8d6d+J7sgE6 d4wiMj5haRrb3xxjIwhCJ0MeQATPTBnAqhENU5Lm/IIDjmtS3A1a1UsMMh/HcjGE b9u1p+ZbJWa44DqFm4/m6mQ7KcZHUDYc2Ef0jJppC5cj4F285WB/KPWDufrhnz0U 9QAvzocxQfVAXynzC8IWJ5XLcu3p2x4LaLQu81wxsbDfVCxaWKW1Zc2a/LGD/XjW -----END CERTIFICATE-----Generated at Mon Feb 9 22:31:56 2026 by rpki-client