This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7b/2117bc-1f9e-4590-a550-4269b56bf7d4/1/QDM7_Y5EBYE8TYcDiOBRYoOlMHQ.roa File: QDM7_Y5EBYE8TYcDiOBRYoOlMHQ.roa (raw, json) Hash identifier: eSAzwk8uEQIkip6svw4TGkkfsYuedL00sODv3P8MCEc= Subject key identifier: 40:33:3B:FD:8E:44:05:81:3C:4D:87:03:88:E0:51:62:83:A5:30:74 Certificate issuer: /CN=62a15cc88659f578cc159c52b3a7e9ec5819fb20 Certificate serial: 019B7E38B63B2CA20B71AD1C8FD4E270C2BA Authority key identifier: 62:A1:5C:C8:86:59:F5:78:CC:15:9C:52:B3:A7:E9:EC:58:19:FB:20 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YqFcyIZZ9XjMFZxSs6fp7FgZ-yA.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7b/2117bc-1f9e-4590-a550-4269b56bf7d4/1/QDM7_Y5EBYE8TYcDiOBRYoOlMHQ.roa Signing time: Fri 02 Jan 2026 10:20:04 +0000 ROA not before: Fri 02 Jan 2026 10:20:04 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 401838 IP address blocks: 93.89.216.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/7b/2117bc-1f9e-4590-a550-4269b56bf7d4/1/YqFcyIZZ9XjMFZxSs6fp7FgZ-yA.crl rsync://rpki.ripe.net/repository/DEFAULT/7b/2117bc-1f9e-4590-a550-4269b56bf7d4/1/YqFcyIZZ9XjMFZxSs6fp7FgZ-yA.mft rsync://rpki.ripe.net/repository/DEFAULT/YqFcyIZZ9XjMFZxSs6fp7FgZ-yA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 21 Jan 2026 19:00:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7e:38:b6:3b:2c:a2:0b:71:ad:1c:8f:d4:e2:70:c2:ba Signature Algorithm: sha256WithRSAEncryption Issuer: CN=62a15cc88659f578cc159c52b3a7e9ec5819fb20 Validity Not Before: Jan 2 10:20:04 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=40333bfd8e4405813c4d870388e0516283a53074 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:a9:ba:f1:f4:70:5e:40:32:35:ed:74:a8:ee: 41:ef:55:21:6e:67:f8:79:4f:75:82:8f:5a:8d:5c: ed:cd:6e:29:05:d7:e2:b3:60:fe:ba:80:72:47:6a: 69:4d:48:40:23:92:c8:00:3e:82:97:35:0d:d4:34: a5:d2:31:10:0d:5d:48:bb:01:49:13:86:85:39:c4: 20:4f:49:20:a4:a2:ba:0a:ff:6d:f2:53:49:fb:85: 05:cd:81:1c:a6:50:1f:82:d9:d4:5a:61:6a:d5:a2: 1b:bf:84:c9:27:63:c2:42:41:46:d1:34:2d:29:d3: ca:4f:88:59:1e:1e:33:60:fa:ba:66:0c:ca:8f:34: 06:12:24:75:9d:ea:8a:1c:27:f2:f6:e0:3b:e7:a8: 26:55:03:af:0c:5c:4b:f1:b0:e2:1e:80:03:8b:d9: e1:fb:d6:88:5a:eb:40:7d:c8:b4:09:fe:a2:07:aa: 10:be:fd:bd:37:ae:32:48:91:84:5d:a0:7a:81:49: 82:97:02:5c:9f:39:13:05:00:59:3f:10:2a:f6:4f: 17:12:a0:cf:c9:d5:a9:1f:1e:94:4d:6f:6d:65:0b: 01:9e:dd:39:95:b8:4b:95:4d:7b:b0:17:c7:79:4f: de:d0:4e:e1:b6:2d:b3:c7:e2:59:3f:be:7a:70:46: c5:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 40:33:3B:FD:8E:44:05:81:3C:4D:87:03:88:E0:51:62:83:A5:30:74 X509v3 Authority Key Identifier: keyid:62:A1:5C:C8:86:59:F5:78:CC:15:9C:52:B3:A7:E9:EC:58:19:FB:20 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YqFcyIZZ9XjMFZxSs6fp7FgZ-yA.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7b/2117bc-1f9e-4590-a550-4269b56bf7d4/1/QDM7_Y5EBYE8TYcDiOBRYoOlMHQ.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/7b/2117bc-1f9e-4590-a550-4269b56bf7d4/1/YqFcyIZZ9XjMFZxSs6fp7FgZ-yA.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 93.89.216.0/24 Signature Algorithm: sha256WithRSAEncryption 0b:33:79:68:f8:98:37:d7:cf:29:04:4d:99:72:0f:6d:e9:da: 57:26:83:b7:9d:cf:3f:e6:54:74:23:9b:d1:20:95:df:f2:86: 84:1e:95:5b:ae:7e:1d:ea:07:a5:a9:06:96:ea:2c:67:42:1c: 30:87:bb:1f:d3:68:56:ca:c1:27:47:c4:51:38:50:b0:3d:65: 1a:24:59:d2:07:67:eb:a7:8e:a5:00:c1:ec:47:ef:9f:c8:cc: ce:9f:bf:be:7d:5c:95:ca:aa:78:54:3c:8a:12:31:00:61:df: fe:45:0f:54:cc:2e:ab:97:09:b5:aa:bf:f4:fa:df:bc:90:19: f8:06:3d:2c:34:a7:22:06:4d:8d:77:de:71:8c:8b:8d:74:e2: d8:cd:0a:59:a5:5d:00:6b:0d:96:5f:bb:89:8f:1b:e2:31:8a: 4e:05:11:05:f2:93:c9:ba:16:c9:55:3d:27:0c:e6:51:46:8e: ae:1f:48:b6:e4:2f:ea:18:a8:33:32:bf:0b:c8:6d:d0:a2:99: 86:4d:74:1d:d1:de:1e:ec:c5:bf:db:fb:09:aa:03:f3:4a:a9: 11:d4:81:fc:62:23:02:6b:46:2e:88:b2:a2:11:ab:32:d1:cd: 99:96:6f:0f:67:2d:b6:19:a7:99:a5:55:b8:f9:44:13:7f:d0: 0a:03:95:fb -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt+OLY7LKILca0cj9TicMK6MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDYyYTE1Y2M4ODY1OWY1NzhjYzE1OWM1MmIzYTdlOWVjNTgx OWZiMjAwHhcNMjYwMTAyMTAyMDA0WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg0MDMzM2JmZDhlNDQwNTgxM2M0ZDg3MDM4OGUwNTE2MjgzYTUzMDc0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxqm68fRwXkAyNe10qO5B71Uhbmf4 eU91go9ajVztzW4pBdfis2D+uoByR2ppTUhAI5LIAD6ClzUN1DSl0jEQDV1IuwFJ E4aFOcQgT0kgpKK6Cv9t8lNJ+4UFzYEcplAfgtnUWmFq1aIbv4TJJ2PCQkFG0TQt KdPKT4hZHh4zYPq6ZgzKjzQGEiR1neqKHCfy9uA756gmVQOvDFxL8bDiHoADi9nh +9aIWutAfci0Cf6iB6oQvv29N64ySJGEXaB6gUmClwJcnzkTBQBZPxAq9k8XEqDP ydWpHx6UTW9tZQsBnt05lbhLlU17sBfHeU/e0E7hti2zx+JZP756cEbFLwIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFEAzO/2ORAWBPE2HA4jgUWKDpTB0MB8GA1UdIwQY MBaAFGKhXMiGWfV4zBWcUrOn6exYGfsgMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvWXFGY3lJWlo5WGpNRlp4U3M2ZnA3RmdaLXlBLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83Yi8yMTE3YmMtMWY5ZS00NTkwLWE1NTAt NDI2OWI1NmJmN2Q0LzEvUURNN19ZNUVCWUU4VFljRGlPQlJZb09sTUhRLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC83Yi8yMTE3YmMtMWY5ZS00NTkwLWE1NTAtNDI2OWI1NmJmN2Q0 LzEvWXFGY3lJWlo5WGpNRlp4U3M2ZnA3RmdaLXlBLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAXVnYMA0G CSqGSIb3DQEBCwUAA4IBAQALM3lo+Jg3188pBE2Zcg9t6dpXJoO3nc8/5lR0I5vR IJXf8oaEHpVbrn4d6gelqQaW6ixnQhwwh7sf02hWysEnR8RROFCwPWUaJFnSB2fr p46lAMHsR++fyMzOn7++fVyVyqp4VDyKEjEAYd/+RQ9UzC6rlwm1qr/0+t+8kBn4 Bj0sNKciBk2Nd95xjIuNdOLYzQpZpV0Aaw2WX7uJjxviMYpOBREF8pPJuhbJVT0n DOZRRo6uH0i25C/qGKgzMr8LyG3QopmGTXQd0d4e7MW/2/sJqgPzSqkR1IH8YiMC a0YuiLKiEasy0c2Zlm8PZy22GaeZpVW4+UQTf9AKA5X7 -----END CERTIFICATE-----Generated at Wed Jan 21 05:19:21 2026 by rpki-client