This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9d/1bc0cb-dfa4-4151-a61b-335a7e4384b1/1/VQIQLar7HwcjhVGKE5MtajsCN6g.roa File: VQIQLar7HwcjhVGKE5MtajsCN6g.roa (raw, json) Hash identifier: SY7ZBqxQfy17eB+jMKdcaxNzW/pWzNXUCVDqxS62ZG4= Subject key identifier: 55:02:10:2D:AA:FB:1F:07:23:85:51:8A:13:93:2D:6A:3B:02:37:A8 Certificate issuer: /CN=5ad0c41fde99651b132906ff0602b47b5607a5be Certificate serial: 019B7E384FA3EA3E4168F51355F6064CD9B3 Authority key identifier: 5A:D0:C4:1F:DE:99:65:1B:13:29:06:FF:06:02:B4:7B:56:07:A5:BE Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/WtDEH96ZZRsTKQb_BgK0e1YHpb4.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9d/1bc0cb-dfa4-4151-a61b-335a7e4384b1/1/VQIQLar7HwcjhVGKE5MtajsCN6g.roa Signing time: Fri 02 Jan 2026 10:19:38 +0000 ROA not before: Fri 02 Jan 2026 10:19:38 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 3352 IP address blocks: 45.153.96.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9d/1bc0cb-dfa4-4151-a61b-335a7e4384b1/1/WtDEH96ZZRsTKQb_BgK0e1YHpb4.crl rsync://rpki.ripe.net/repository/DEFAULT/9d/1bc0cb-dfa4-4151-a61b-335a7e4384b1/1/WtDEH96ZZRsTKQb_BgK0e1YHpb4.mft rsync://rpki.ripe.net/repository/DEFAULT/WtDEH96ZZRsTKQb_BgK0e1YHpb4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 27 Jan 2026 20:39:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7e:38:4f:a3:ea:3e:41:68:f5:13:55:f6:06:4c:d9:b3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5ad0c41fde99651b132906ff0602b47b5607a5be Validity Not Before: Jan 2 10:19:38 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=5502102daafb1f072385518a13932d6a3b0237a8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:7a:28:44:f9:6e:ec:cd:f0:d5:e6:f1:84:d7: ff:b8:a8:24:33:93:cd:a4:81:2c:4a:31:81:8e:d7: 09:86:de:86:8a:30:55:5a:ce:6f:a7:9f:36:ec:13: ae:0f:c5:3d:52:08:a9:64:c8:e9:2a:d1:c9:b4:b2: c5:21:34:d2:ef:3f:1e:4c:0a:b2:98:b8:e4:5c:7e: bc:da:52:6d:0b:d6:db:b3:c4:7a:31:07:15:2c:2e: d2:f8:39:1a:5d:d0:14:66:d2:af:61:c1:47:0e:93: 1d:36:c1:d6:98:ad:ec:fc:ab:f2:a8:4c:59:71:f0: 7c:ca:fc:d7:51:cb:73:e9:fa:e1:79:d6:9c:98:58: fc:ca:63:c7:76:16:dc:b2:dd:14:d3:a9:cb:bc:6f: 7e:f9:fd:71:82:9b:2d:94:da:60:00:ae:bf:8f:72: 56:db:98:99:2a:f6:ca:3f:5d:bb:63:4f:cd:36:a5: 92:82:2c:81:25:a0:96:86:22:ca:f8:5d:8e:90:55: 02:a1:70:42:db:2f:f3:8f:9b:b7:d2:aa:9b:d7:f0: 33:89:8f:d4:81:25:2c:d0:05:f7:d8:bd:44:51:12: c5:61:9a:74:2a:36:ad:dd:48:68:ca:f1:66:2f:78: 81:a4:79:a0:b5:ac:67:8b:c1:57:8e:3d:a6:e8:dd: 18:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 55:02:10:2D:AA:FB:1F:07:23:85:51:8A:13:93:2D:6A:3B:02:37:A8 X509v3 Authority Key Identifier: keyid:5A:D0:C4:1F:DE:99:65:1B:13:29:06:FF:06:02:B4:7B:56:07:A5:BE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/WtDEH96ZZRsTKQb_BgK0e1YHpb4.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9d/1bc0cb-dfa4-4151-a61b-335a7e4384b1/1/VQIQLar7HwcjhVGKE5MtajsCN6g.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/9d/1bc0cb-dfa4-4151-a61b-335a7e4384b1/1/WtDEH96ZZRsTKQb_BgK0e1YHpb4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 45.153.96.0/22 Signature Algorithm: sha256WithRSAEncryption 1b:77:46:50:75:dc:fa:45:d1:cb:9d:4e:db:d0:46:4f:a2:39: fe:65:d4:e4:7d:52:19:97:15:f3:a6:0e:4b:67:c6:7b:54:70: 7e:81:9c:0d:3a:08:c1:53:0e:16:f1:2b:24:e0:13:e9:8b:6a: 40:1a:67:78:56:80:54:4a:bd:36:5c:06:4e:7a:56:6e:f8:a8: bf:57:0c:d8:76:12:94:b7:c4:67:22:30:6b:02:ca:bc:00:69: 7d:51:ad:8f:c2:98:5e:f0:8e:49:2e:46:a4:91:e5:a3:c7:cd: 2d:95:b0:cc:c9:23:7e:18:94:80:08:95:85:ce:1b:e9:c3:33: 46:8c:b9:f3:7d:8a:28:99:46:60:9c:02:45:57:a0:d5:65:cf: 50:6e:50:0d:80:9c:4d:8d:d1:08:5e:0a:76:ea:fc:8f:a3:69: 20:0b:58:48:12:ab:99:ad:b5:18:17:00:20:61:3c:0c:e3:99: d1:6d:e0:70:16:07:9f:a0:19:7e:18:f9:e8:92:c4:0b:c7:30: 05:d4:98:07:21:2e:5a:27:b1:f9:e3:ab:1f:c1:71:4c:12:d2: 13:03:ef:5f:f4:ef:45:da:0b:c2:c1:48:75:f0:43:ad:97:89: dc:cd:5c:13:0c:f2:19:ba:5e:fd:67:ed:83:f7:2f:69:fc:42: c1:57:61:39 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt+OE+j6j5BaPUTVfYGTNmzMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDVhZDBjNDFmZGU5OTY1MWIxMzI5MDZmZjA2MDJiNDdiNTYw N2E1YmUwHhcNMjYwMTAyMTAxOTM4WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg1NTAyMTAyZGFhZmIxZjA3MjM4NTUxOGExMzkzMmQ2YTNiMDIzN2E4MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAx3ooRPlu7M3w1ebxhNf/uKgkM5PN pIEsSjGBjtcJht6GijBVWs5vp5827BOuD8U9UgipZMjpKtHJtLLFITTS7z8eTAqy mLjkXH682lJtC9bbs8R6MQcVLC7S+DkaXdAUZtKvYcFHDpMdNsHWmK3s/KvyqExZ cfB8yvzXUctz6frhedacmFj8ymPHdhbcst0U06nLvG9++f1xgpstlNpgAK6/j3JW 25iZKvbKP127Y0/NNqWSgiyBJaCWhiLK+F2OkFUCoXBC2y/zj5u30qqb1/AziY/U gSUs0AX32L1EURLFYZp0Kjat3UhoyvFmL3iBpHmgtaxni8FXjj2m6N0YFQIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFFUCEC2q+x8HI4VRihOTLWo7AjeoMB8GA1UdIwQY MBaAFFrQxB/emWUbEykG/wYCtHtWB6W+MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvV3RERUg5NlpaUnNUS1FiX0JnSzBlMVlIcGI0LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85ZC8xYmMwY2ItZGZhNC00MTUxLWE2MWIt MzM1YTdlNDM4NGIxLzEvVlFJUUxhcjdId2NqaFZHS0U1TXRhanNDTjZnLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC85ZC8xYmMwY2ItZGZhNC00MTUxLWE2MWItMzM1YTdlNDM4NGIx LzEvV3RERUg5NlpaUnNUS1FiX0JnSzBlMVlIcGI0LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCLZlgMA0G CSqGSIb3DQEBCwUAA4IBAQAbd0ZQddz6RdHLnU7b0EZPojn+ZdTkfVIZlxXzpg5L Z8Z7VHB+gZwNOgjBUw4W8Ssk4BPpi2pAGmd4VoBUSr02XAZOelZu+Ki/VwzYdhKU t8RnIjBrAsq8AGl9Ua2Pwphe8I5JLkakkeWjx80tlbDMySN+GJSACJWFzhvpwzNG jLnzfYoomUZgnAJFV6DVZc9QblANgJxNjdEIXgp26vyPo2kgC1hIEquZrbUYFwAg YTwM45nRbeBwFgefoBl+GPnoksQLxzAF1JgHIS5aJ7H546sfwXFMEtITA+9f9O9F 2gvCwUh18EOtl4nczVwTDPIZul79Z+2D9y9p/ELBV2E5 -----END CERTIFICATE-----Generated at Tue Jan 27 06:37:38 2026 by rpki-client