This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/98/8a6f72-c822-451f-a5c5-a7fd6c8e70fd/1/tQNl5CjDO3ZARJTcVpIioYV-514.roa File: tQNl5CjDO3ZARJTcVpIioYV-514.roa (raw, json) Hash identifier: T4bTHyUb2JZxHiZAVND95b0PREmzMxQnsDgvl4ssm/o= Subject key identifier: B5:03:65:E4:28:C3:3B:76:40:44:94:DC:56:92:22:A1:85:7E:E7:5E Certificate issuer: /CN=ed800950a31dcdacaac56adb936a42beb845e24b Certificate serial: 019B7C1147DCFF0683181B54805A4C9229E8 Authority key identifier: ED:80:09:50:A3:1D:CD:AC:AA:C5:6A:DB:93:6A:42:BE:B8:45:E2:4B Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/7YAJUKMdzayqxWrbk2pCvrhF4ks.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/98/8a6f72-c822-451f-a5c5-a7fd6c8e70fd/1/tQNl5CjDO3ZARJTcVpIioYV-514.roa Signing time: Fri 02 Jan 2026 00:17:45 +0000 ROA not before: Fri 02 Jan 2026 00:17:45 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 63023 IP address blocks: 185.221.219.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/98/8a6f72-c822-451f-a5c5-a7fd6c8e70fd/1/7YAJUKMdzayqxWrbk2pCvrhF4ks.crl rsync://rpki.ripe.net/repository/DEFAULT/98/8a6f72-c822-451f-a5c5-a7fd6c8e70fd/1/7YAJUKMdzayqxWrbk2pCvrhF4ks.mft rsync://rpki.ripe.net/repository/DEFAULT/7YAJUKMdzayqxWrbk2pCvrhF4ks.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 20 Jan 2026 09:01:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7c:11:47:dc:ff:06:83:18:1b:54:80:5a:4c:92:29:e8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ed800950a31dcdacaac56adb936a42beb845e24b Validity Not Before: Jan 2 00:17:45 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=b50365e428c33b76404494dc569222a1857ee75e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:86:e4:5b:35:be:02:ba:4a:81:f4:13:eb:42: ac:a5:2b:a4:62:1d:90:d9:c3:98:8e:cc:49:0d:51: 53:f9:2b:38:89:f8:50:f6:c5:b1:1a:7e:32:73:ce: 04:b0:e7:3f:f2:79:48:0c:6d:a9:06:10:d0:e9:28: bd:b6:cd:8f:a3:c4:93:ea:27:aa:fa:6e:0e:f6:47: fb:81:37:50:f9:22:78:10:ce:ce:47:3d:83:2c:57: bf:b7:d2:0c:c7:14:f3:27:37:d4:f2:0b:ee:38:2c: 99:0e:d8:82:e2:fd:63:da:6c:34:27:52:1d:94:87: 54:ff:c9:8e:5e:97:32:c7:93:b2:39:b4:9a:02:70: 29:5f:ff:04:ca:1b:e9:c9:fd:74:15:a4:a4:29:f3: 41:0f:2f:12:9f:73:21:7b:84:6c:f5:7f:23:4e:42: 8b:d1:7c:0a:87:d5:66:04:c9:4a:c5:27:58:83:79: 73:6c:ab:11:a6:88:cf:ef:29:4b:6e:a2:57:b6:08: bf:98:c5:a4:45:b0:b8:5d:02:74:a9:81:bc:05:4e: e9:33:b0:26:a8:65:cf:26:f5:4c:dc:bf:70:8e:79: a9:09:9a:ea:4b:7f:d3:44:80:fa:e7:53:70:27:ee: d5:61:27:a6:3f:c2:d0:e2:a8:06:1a:79:29:78:84: f3:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B5:03:65:E4:28:C3:3B:76:40:44:94:DC:56:92:22:A1:85:7E:E7:5E X509v3 Authority Key Identifier: keyid:ED:80:09:50:A3:1D:CD:AC:AA:C5:6A:DB:93:6A:42:BE:B8:45:E2:4B X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/7YAJUKMdzayqxWrbk2pCvrhF4ks.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/98/8a6f72-c822-451f-a5c5-a7fd6c8e70fd/1/tQNl5CjDO3ZARJTcVpIioYV-514.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/98/8a6f72-c822-451f-a5c5-a7fd6c8e70fd/1/7YAJUKMdzayqxWrbk2pCvrhF4ks.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.221.219.0/24 Signature Algorithm: sha256WithRSAEncryption 5e:f1:c7:6f:65:00:7e:97:6c:52:c3:91:c1:a2:6e:a3:c9:af: c8:b2:ce:3b:51:f3:02:63:ed:39:a9:78:ed:2e:05:d5:5a:3b: 04:25:1d:85:7f:98:42:6f:28:5b:ac:de:e2:86:17:4b:1e:36: d7:5a:dd:dc:bc:4e:2e:62:3a:8b:82:56:ab:35:cd:65:29:44: 7c:96:5a:54:1b:2e:60:83:4a:06:dc:56:2b:df:2e:a1:c9:58: dd:60:d9:6d:ba:5d:cc:84:68:ae:a8:29:a0:6e:75:b1:c0:e0: 26:ac:27:a0:70:06:bb:5b:41:c4:27:dd:ef:7c:e2:aa:75:4f: f0:e9:18:5e:fd:54:97:a5:7a:60:1d:9a:2c:4c:20:c9:a2:1c: 2f:a9:13:d0:70:11:6a:a5:bb:70:68:ad:d4:8b:ea:e4:22:d1: ae:d3:83:02:01:49:1d:69:c7:e7:23:41:6f:25:ac:23:fa:19: 34:d6:00:b1:29:47:8d:74:07:e9:3f:c3:f1:f7:6e:a6:0d:52: d8:4f:b2:95:ab:6d:3d:e6:b2:af:ad:30:4b:8d:44:55:2a:e3: 29:77:b1:c2:c2:bd:f3:41:6f:aa:c5:ad:4d:7f:cd:24:1d:36: ec:ad:c4:eb:7e:36:29:77:07:55:32:bf:a9:6f:53:50:b7:4b: 2e:9c:39:6e -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt8EUfc/waDGBtUgFpMkinoMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGVkODAwOTUwYTMxZGNkYWNhYWM1NmFkYjkzNmE0MmJlYjg0 NWUyNGIwHhcNMjYwMTAyMDAxNzQ1WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhiNTAzNjVlNDI4YzMzYjc2NDA0NDk0ZGM1NjkyMjJhMTg1N2VlNzVlMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAt4bkWzW+ArpKgfQT60KspSukYh2Q 2cOYjsxJDVFT+Ss4ifhQ9sWxGn4yc84EsOc/8nlIDG2pBhDQ6Si9ts2Po8ST6ieq +m4O9kf7gTdQ+SJ4EM7ORz2DLFe/t9IMxxTzJzfU8gvuOCyZDtiC4v1j2mw0J1Id lIdU/8mOXpcyx5OyObSaAnApX/8Eyhvpyf10FaSkKfNBDy8Sn3Mhe4Rs9X8jTkKL 0XwKh9VmBMlKxSdYg3lzbKsRpojP7ylLbqJXtgi/mMWkRbC4XQJ0qYG8BU7pM7Am qGXPJvVM3L9wjnmpCZrqS3/TRID651NwJ+7VYSemP8LQ4qgGGnkpeITzSQIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFLUDZeQowzt2QESU3FaSIqGFfudeMB8GA1UdIwQY MBaAFO2ACVCjHc2sqsVq25NqQr64ReJLMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvN1lBSlVLTWR6YXlxeFdyYmsycEN2cmhGNGtzLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85OC84YTZmNzItYzgyMi00NTFmLWE1YzUt YTdmZDZjOGU3MGZkLzEvdFFObDVDakRPM1pBUkpUY1ZwSWlvWVYtNTE0LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC85OC84YTZmNzItYzgyMi00NTFmLWE1YzUtYTdmZDZjOGU3MGZk LzEvN1lBSlVLTWR6YXlxeFdyYmsycEN2cmhGNGtzLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAud3bMA0G CSqGSIb3DQEBCwUAA4IBAQBe8cdvZQB+l2xSw5HBom6jya/Iss47UfMCY+05qXjt LgXVWjsEJR2Ff5hCbyhbrN7ihhdLHjbXWt3cvE4uYjqLglarNc1lKUR8llpUGy5g g0oG3FYr3y6hyVjdYNltul3MhGiuqCmgbnWxwOAmrCegcAa7W0HEJ93vfOKqdU/w 6Rhe/VSXpXpgHZosTCDJohwvqRPQcBFqpbtwaK3Ui+rkItGu04MCAUkdacfnI0Fv Jawj+hk01gCxKUeNdAfpP8Px926mDVLYT7KVq2095rKvrTBLjURVKuMpd7HCwr3z QW+qxa1Nf80kHTbsrcTrfjYpdwdVMr+pb1NQt0sunDlu -----END CERTIFICATE-----Generated at Mon Jan 19 18:01:34 2026 by rpki-client