This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/83/5bba7b-daa7-4432-9270-ec5c7de7aae1/1/QAwwrbxhwHqZob00Jsa5Cjy2Lhk.roa File: QAwwrbxhwHqZob00Jsa5Cjy2Lhk.roa (raw, json) Hash identifier: qU0LPfBSzfyFQh7WeA13rtQNW4XzMc/LZcEBe2o1shw= Subject key identifier: 40:0C:30:AD:BC:61:C0:7A:99:A1:BD:34:26:C6:B9:0A:3C:B6:2E:19 Certificate issuer: /CN=c359390b2174aae22961a0f3c29fc402f1fe23c8 Certificate serial: 019B7D5C0DBC05142505D6C16EDBA7387BAF Authority key identifier: C3:59:39:0B:21:74:AA:E2:29:61:A0:F3:C2:9F:C4:02:F1:FE:23:C8 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/w1k5CyF0quIpYaDzwp_EAvH-I8g.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/83/5bba7b-daa7-4432-9270-ec5c7de7aae1/1/QAwwrbxhwHqZob00Jsa5Cjy2Lhk.roa Signing time: Fri 02 Jan 2026 06:19:03 +0000 ROA not before: Fri 02 Jan 2026 06:19:03 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 44486 IP address blocks: 185.229.248.0/24 maxlen: 24 2a10:b680::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/83/5bba7b-daa7-4432-9270-ec5c7de7aae1/1/w1k5CyF0quIpYaDzwp_EAvH-I8g.crl rsync://rpki.ripe.net/repository/DEFAULT/83/5bba7b-daa7-4432-9270-ec5c7de7aae1/1/w1k5CyF0quIpYaDzwp_EAvH-I8g.mft rsync://rpki.ripe.net/repository/DEFAULT/w1k5CyF0quIpYaDzwp_EAvH-I8g.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 19 Jan 2026 00:00:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7d:5c:0d:bc:05:14:25:05:d6:c1:6e:db:a7:38:7b:af Signature Algorithm: sha256WithRSAEncryption Issuer: CN=c359390b2174aae22961a0f3c29fc402f1fe23c8 Validity Not Before: Jan 2 06:19:03 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=400c30adbc61c07a99a1bd3426c6b90a3cb62e19 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:9d:a1:92:31:a3:37:17:df:52:dc:02:a6:83: 7b:08:2b:6f:56:6b:08:4b:c4:26:a5:7b:3e:86:4c: 75:52:e2:35:82:79:ff:7c:e4:0b:2e:80:a8:bf:ba: e1:67:e6:f3:c5:98:eb:ba:73:23:50:65:e7:35:88: 16:6d:11:ab:e4:75:86:6e:26:8e:e8:33:f8:cd:4a: ac:a1:c4:81:07:a8:9d:26:fd:7b:6e:b6:c2:1a:dc: db:40:1e:37:67:75:1a:69:2b:ac:19:06:07:0b:1e: ad:0d:26:a4:14:4b:7b:88:d7:36:61:d8:14:79:50: 02:40:02:3c:b5:34:84:fa:e3:7c:ed:18:c9:a5:62: d4:e9:3e:ee:e7:48:52:2c:c7:39:cd:ea:26:95:a5: 5e:b4:54:fa:db:bc:4c:2f:28:1c:bd:e6:1d:fc:40: 12:ff:5a:78:79:a7:23:03:98:48:08:ec:e7:0e:bc: 18:3d:19:59:ee:30:c3:ee:1a:3f:22:3e:c8:6b:d8: cd:c1:21:52:c4:ea:59:12:da:34:f9:74:91:d8:c2: 9b:c7:e6:56:da:e2:38:c3:05:2e:86:91:75:51:5e: 22:48:7e:17:44:17:ed:43:03:b8:01:66:23:8e:02: 28:38:bc:d7:79:45:3d:e2:8b:24:5e:7f:be:55:ad: 50:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 40:0C:30:AD:BC:61:C0:7A:99:A1:BD:34:26:C6:B9:0A:3C:B6:2E:19 X509v3 Authority Key Identifier: keyid:C3:59:39:0B:21:74:AA:E2:29:61:A0:F3:C2:9F:C4:02:F1:FE:23:C8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/w1k5CyF0quIpYaDzwp_EAvH-I8g.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/83/5bba7b-daa7-4432-9270-ec5c7de7aae1/1/QAwwrbxhwHqZob00Jsa5Cjy2Lhk.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/83/5bba7b-daa7-4432-9270-ec5c7de7aae1/1/w1k5CyF0quIpYaDzwp_EAvH-I8g.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.229.248.0/24 IPv6: 2a10:b680::/32 Signature Algorithm: sha256WithRSAEncryption 6b:9a:7f:4c:a1:82:66:b8:1c:eb:fa:73:82:ab:32:63:94:df: 02:29:6c:ce:d2:62:15:7c:7b:09:ee:bb:cc:0a:3e:e5:55:40: 95:29:ab:ce:c9:9b:bc:23:6a:29:9c:cf:a2:72:1e:29:9c:20: f6:ff:9f:2d:21:b7:30:a9:76:23:c2:4d:9c:07:10:74:37:ef: b8:9e:6d:69:26:53:d1:1c:4f:2d:ff:58:3a:d8:ae:28:a3:09: 14:82:7a:e8:2d:5d:66:cf:40:cc:65:33:9c:ea:37:3c:37:14: 60:8d:f0:04:4a:d9:2c:d5:15:8e:fc:76:3c:3d:f7:19:5f:0f: be:6e:69:82:46:2d:cb:3a:8f:fc:e5:d5:b6:d8:bd:16:4a:c9: 57:fa:af:ed:9c:37:50:71:73:1b:61:96:8b:e4:23:ae:15:ff: ec:63:1d:05:fb:cf:a3:a8:66:ef:42:da:74:95:45:17:19:a9: 3c:81:5b:ca:e8:13:25:8a:9f:ed:03:b7:4b:3c:5f:28:99:19: 2c:dd:5b:60:27:89:a4:0d:ce:32:b4:a8:0e:b8:d3:18:7f:f6: 90:6b:87:55:c9:3c:37:a0:0f:65:a9:fa:75:15:db:ed:7b:a5: 68:45:14:23:d4:de:7c:c2:f4:87:9f:f6:3d:2d:ea:9c:93:ad: 94:87:24:6c -----BEGIN CERTIFICATE----- MIIFDDCCA/SgAwIBAgISAZt9XA28BRQlBdbBbtunOHuvMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGMzNTkzOTBiMjE3NGFhZTIyOTYxYTBmM2MyOWZjNDAyZjFm ZTIzYzgwHhcNMjYwMTAyMDYxOTAzWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg0MDBjMzBhZGJjNjFjMDdhOTlhMWJkMzQyNmM2YjkwYTNjYjYyZTE5MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArZ2hkjGjNxffUtwCpoN7CCtvVmsI S8QmpXs+hkx1UuI1gnn/fOQLLoCov7rhZ+bzxZjrunMjUGXnNYgWbRGr5HWGbiaO 6DP4zUqsocSBB6idJv17brbCGtzbQB43Z3UaaSusGQYHCx6tDSakFEt7iNc2YdgU eVACQAI8tTSE+uN87RjJpWLU6T7u50hSLMc5zeomlaVetFT627xMLygcveYd/EAS /1p4eacjA5hICOznDrwYPRlZ7jDD7ho/Ij7Ia9jNwSFSxOpZEto0+XSR2MKbx+ZW 2uI4wwUuhpF1UV4iSH4XRBftQwO4AWYjjgIoOLzXeUU94oskXn++Va1QcwIDAQAB o4ICGDCCAhQwHQYDVR0OBBYEFEAMMK28YcB6maG9NCbGuQo8ti4ZMB8GA1UdIwQY MBaAFMNZOQshdKriKWGg88KfxALx/iPIMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvdzFrNUN5RjBxdUlwWWFEendwX0VBdkgtSThnLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84My81YmJhN2ItZGFhNy00NDMyLTkyNzAt ZWM1YzdkZTdhYWUxLzEvUUF3d3JieGh3SHFab2IwMEpzYTVDankyTGhrLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC84My81YmJhN2ItZGFhNy00NDMyLTkyNzAtZWM1YzdkZTdhYWUx LzEvdzFrNUN5RjBxdUlwWWFEendwX0VBdkgtSThnLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMC4GCCsGAQUFBwEHAQH/BB8wHTAMBAIAATAGAwQAueX4MA0E AgACMAcDBQAqELaAMA0GCSqGSIb3DQEBCwUAA4IBAQBrmn9MoYJmuBzr+nOCqzJj lN8CKWzO0mIVfHsJ7rvMCj7lVUCVKavOyZu8I2opnM+ich4pnCD2/58tIbcwqXYj wk2cBxB0N++4nm1pJlPRHE8t/1g62K4oowkUgnroLV1mz0DMZTOc6jc8NxRgjfAE Stks1RWO/HY8PfcZXw++bmmCRi3LOo/85dW22L0WSslX+q/tnDdQcXMbYZaL5COu Ff/sYx0F+8+jqGbvQtp0lUUXGak8gVvK6BMlip/tA7dLPF8omRks3VtgJ4mkDc4y tKgOuNMYf/aQa4dVyTw3oA9lqfp1Fdvte6VoRRQj1N58wvSHn/Y9Leqck62UhyRs -----END CERTIFICATE-----Generated at Sun Jan 18 08:35:27 2026 by rpki-client