This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/99/e37b66-45a1-4956-9731-3496e48e5514/1/QZpcoFZ-mTdXgaU_KSl2tUqS-WA.roa File: QZpcoFZ-mTdXgaU_KSl2tUqS-WA.roa (raw, json) Hash identifier: kKgOgir5OcWMeFMyd0QfuGiJS19k1i7Dnvnix7dS1ZM= Subject key identifier: 41:9A:5C:A0:56:7E:99:37:57:81:A5:3F:29:29:76:B5:4A:92:F9:60 Certificate issuer: /CN=db140e069b31f2b84c5dbd213ed46773b0633e52 Certificate serial: 019C239BAB5DD5F040593013226A4753EF9C Authority key identifier: DB:14:0E:06:9B:31:F2:B8:4C:5D:BD:21:3E:D4:67:73:B0:63:3E:52 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2xQOBpsx8rhMXb0hPtRnc7BjPlI.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/99/e37b66-45a1-4956-9731-3496e48e5514/1/QZpcoFZ-mTdXgaU_KSl2tUqS-WA.roa Signing time: Tue 03 Feb 2026 13:05:30 +0000 ROA not before: Tue 03 Feb 2026 13:05:30 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 207953 IP address blocks: 45.159.24.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/99/e37b66-45a1-4956-9731-3496e48e5514/1/2xQOBpsx8rhMXb0hPtRnc7BjPlI.crl rsync://rpki.ripe.net/repository/DEFAULT/99/e37b66-45a1-4956-9731-3496e48e5514/1/2xQOBpsx8rhMXb0hPtRnc7BjPlI.mft rsync://rpki.ripe.net/repository/DEFAULT/2xQOBpsx8rhMXb0hPtRnc7BjPlI.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 13:01:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:23:9b:ab:5d:d5:f0:40:59:30:13:22:6a:47:53:ef:9c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=db140e069b31f2b84c5dbd213ed46773b0633e52 Validity Not Before: Feb 3 13:05:30 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=419a5ca0567e99375781a53f292976b54a92f960 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:e4:b7:cd:d8:d0:c4:a6:fe:d0:cf:71:9c:34: b1:fa:14:39:1d:9a:29:b9:76:38:fc:f6:40:d8:54: ff:65:09:32:b5:bf:f7:e0:70:16:69:ba:3d:f2:3d: d0:d6:9a:a8:b7:49:8f:08:db:bf:64:05:f0:cd:d8: 47:d9:98:08:5a:05:ab:4b:a6:c3:b2:f6:dc:76:22: 19:61:fa:34:94:61:e6:a3:e3:f1:94:b8:25:31:5b: 9a:e7:55:16:d2:f9:bb:41:be:c0:bb:74:56:6f:71: 89:94:c3:38:92:ed:f4:89:02:e6:34:ff:b5:69:97: f2:e8:e1:ce:48:a0:6f:d1:a9:11:a9:91:af:a9:fb: ae:37:83:2d:c5:d6:c7:12:eb:08:06:fc:40:51:c9: 5d:f9:48:75:3e:77:74:53:dd:3a:45:9e:b3:cf:c9: 41:26:64:c2:15:3d:e2:b3:1f:dc:8c:4f:6d:28:85: 3f:bd:26:a2:e9:ec:0c:7c:43:60:7f:fd:33:d5:80: dc:3f:c2:f0:7f:28:f3:95:c0:f7:86:3e:fd:ce:45: 2f:a3:1d:d3:79:c0:fe:30:01:65:ae:6f:c0:32:af: fd:87:d4:a3:66:60:76:5f:cc:8f:bd:3d:94:2c:51: f9:d8:d8:a9:61:dc:3a:6b:48:04:f0:b3:ca:9c:e1: 00:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 41:9A:5C:A0:56:7E:99:37:57:81:A5:3F:29:29:76:B5:4A:92:F9:60 X509v3 Authority Key Identifier: keyid:DB:14:0E:06:9B:31:F2:B8:4C:5D:BD:21:3E:D4:67:73:B0:63:3E:52 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2xQOBpsx8rhMXb0hPtRnc7BjPlI.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/99/e37b66-45a1-4956-9731-3496e48e5514/1/QZpcoFZ-mTdXgaU_KSl2tUqS-WA.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/99/e37b66-45a1-4956-9731-3496e48e5514/1/2xQOBpsx8rhMXb0hPtRnc7BjPlI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 45.159.24.0/22 Signature Algorithm: sha256WithRSAEncryption 49:09:1f:0e:fc:34:23:01:20:fa:cb:a1:55:63:7c:da:7e:f9: ea:f9:3e:e6:0d:0a:05:9b:8d:fc:75:d5:4b:23:7d:59:51:cb: 39:5e:cc:ea:57:3c:2e:12:d4:f0:f3:7a:6f:cd:0d:5d:5d:e1: 38:17:7f:82:9a:9f:df:19:fe:c1:90:d6:24:2a:ad:7f:8b:7c: db:b4:dc:5e:06:35:76:29:7c:dd:be:31:64:9b:90:3a:a8:e6: 0f:32:a7:33:11:27:4f:8f:84:89:ba:d7:23:4f:a1:60:de:4c: 0c:4b:86:9f:3a:e6:76:c6:a2:8a:44:16:4d:6f:0e:15:92:91: fb:00:fa:e6:18:8f:8d:e5:d6:4a:ed:25:0b:de:c3:07:f5:55: 0e:81:69:ee:9b:98:71:6c:46:ce:1f:3e:3a:ae:a1:ed:c9:08: 70:d7:93:f5:9c:83:be:f4:e7:c1:b1:9c:3d:77:e4:d0:4f:94: 50:44:5e:42:85:e7:5b:f0:c6:0b:40:36:cf:2e:1c:5b:25:9d: 01:d3:0d:fe:1f:8b:05:76:e5:fd:1f:0b:41:e1:4c:4f:ca:7a: 2e:e3:a8:b2:34:ee:5e:75:4f:e3:fb:b0:a3:03:ea:7c:3b:7f: d2:77:a5:68:4c:be:b3:ef:5a:e0:60:f9:a3:f7:3c:cb:c0:4f: bb:fb:ad:b5 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZwjm6td1fBAWTATImpHU++cMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGRiMTQwZTA2OWIzMWYyYjg0YzVkYmQyMTNlZDQ2NzczYjA2 MzNlNTIwHhcNMjYwMjAzMTMwNTMwWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg0MTlhNWNhMDU2N2U5OTM3NTc4MWE1M2YyOTI5NzZiNTRhOTJmOTYwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1+S3zdjQxKb+0M9xnDSx+hQ5HZop uXY4/PZA2FT/ZQkytb/34HAWabo98j3Q1pqot0mPCNu/ZAXwzdhH2ZgIWgWrS6bD svbcdiIZYfo0lGHmo+PxlLglMVua51UW0vm7Qb7Au3RWb3GJlMM4ku30iQLmNP+1 aZfy6OHOSKBv0akRqZGvqfuuN4MtxdbHEusIBvxAUcld+Uh1Pnd0U906RZ6zz8lB JmTCFT3isx/cjE9tKIU/vSai6ewMfENgf/0z1YDcP8LwfyjzlcD3hj79zkUvox3T ecD+MAFlrm/AMq/9h9SjZmB2X8yPvT2ULFH52NipYdw6a0gE8LPKnOEAWQIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFEGaXKBWfpk3V4GlPykpdrVKkvlgMB8GA1UdIwQY MBaAFNsUDgabMfK4TF29IT7UZ3OwYz5SMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvMnhRT0Jwc3g4cmhNWGIwaFB0Um5jN0JqUGxJLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85OS9lMzdiNjYtNDVhMS00OTU2LTk3MzEt MzQ5NmU0OGU1NTE0LzEvUVpwY29GWi1tVGRYZ2FVX0tTbDJ0VXFTLVdBLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC85OS9lMzdiNjYtNDVhMS00OTU2LTk3MzEtMzQ5NmU0OGU1NTE0 LzEvMnhRT0Jwc3g4cmhNWGIwaFB0Um5jN0JqUGxJLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCLZ8YMA0G CSqGSIb3DQEBCwUAA4IBAQBJCR8O/DQjASD6y6FVY3zafvnq+T7mDQoFm438ddVL I31ZUcs5XszqVzwuEtTw83pvzQ1dXeE4F3+Cmp/fGf7BkNYkKq1/i3zbtNxeBjV2 KXzdvjFkm5A6qOYPMqczESdPj4SJutcjT6Fg3kwMS4afOuZ2xqKKRBZNbw4VkpH7 APrmGI+N5dZK7SUL3sMH9VUOgWnum5hxbEbOHz46rqHtyQhw15P1nIO+9OfBsZw9 d+TQT5RQRF5Chedb8MYLQDbPLhxbJZ0B0w3+H4sFduX9HwtB4UxPynou46iyNO5e dU/j+7CjA+p8O3/Sd6VoTL6z71rgYPmj9zzLwE+7+621 -----END CERTIFICATE-----Generated at Mon Feb 9 19:39:55 2026 by rpki-client