This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a7/4cac6b-8e05-448a-83f7-6835852158d8/1/Q6q5ifTmogwJicn2e4z2f5_1UN8.roa File: Q6q5ifTmogwJicn2e4z2f5_1UN8.roa (raw, json) Hash identifier: ZCT+LPivkmFqXHHIYRE3kEHzKOk9mVM2bvW0OtpppFg= Subject key identifier: 43:AA:B9:89:F4:E6:A2:0C:09:89:C9:F6:7B:8C:F6:7F:9F:F5:50:DF Certificate issuer: /CN=c6d11b64ffe18efa42f43a6c765639dee38d027e Certificate serial: 019B7F157083660D4EA25A32747E13A51CBE Authority key identifier: C6:D1:1B:64:FF:E1:8E:FA:42:F4:3A:6C:76:56:39:DE:E3:8D:02:7E Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xtEbZP_hjvpC9DpsdlY53uONAn4.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a7/4cac6b-8e05-448a-83f7-6835852158d8/1/Q6q5ifTmogwJicn2e4z2f5_1UN8.roa Signing time: Fri 02 Jan 2026 14:21:09 +0000 ROA not before: Fri 02 Jan 2026 14:21:09 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 15404 IP address blocks: 193.73.113.0/24 maxlen: 24 193.135.254.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a7/4cac6b-8e05-448a-83f7-6835852158d8/1/xtEbZP_hjvpC9DpsdlY53uONAn4.crl rsync://rpki.ripe.net/repository/DEFAULT/a7/4cac6b-8e05-448a-83f7-6835852158d8/1/xtEbZP_hjvpC9DpsdlY53uONAn4.mft rsync://rpki.ripe.net/repository/DEFAULT/xtEbZP_hjvpC9DpsdlY53uONAn4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 22 Jan 2026 08:01:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7f:15:70:83:66:0d:4e:a2:5a:32:74:7e:13:a5:1c:be Signature Algorithm: sha256WithRSAEncryption Issuer: CN=c6d11b64ffe18efa42f43a6c765639dee38d027e Validity Not Before: Jan 2 14:21:09 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=43aab989f4e6a20c0989c9f67b8cf67f9ff550df Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:5e:17:78:38:9f:54:59:49:ed:0f:46:23:92: e4:12:cd:ba:92:4b:10:da:97:c8:ca:ad:6a:55:15: 2d:5d:a0:d8:f3:a4:9a:3d:76:3b:77:1b:4e:5a:bf: d5:8e:ec:c7:b8:50:89:fe:53:be:8a:36:0e:a5:5e: a5:cf:00:59:34:40:81:86:6f:40:65:d3:e3:09:10: 33:41:ac:d9:c4:6f:b9:62:ee:07:dc:81:7f:88:18: 60:9d:24:da:69:88:58:1c:99:94:79:77:9a:b8:48: 1d:5d:8f:c3:e6:42:5e:36:2f:92:7a:39:5c:7b:8d: 7e:39:1a:4f:90:da:02:63:d5:8a:f5:62:0a:7d:df: df:e8:fd:e4:1b:9f:f6:4e:48:6f:89:66:90:82:3b: 91:e5:30:16:1a:90:7a:04:0d:99:05:af:4b:83:6a: 5d:e7:8b:27:0e:c8:22:4f:a3:37:88:f0:64:db:c8: 3a:de:c1:ab:16:e4:f9:ce:ea:71:1c:89:5c:92:5a: 06:b9:c6:eb:27:c7:6d:f4:ce:60:8f:14:14:b9:da: 39:34:bf:69:22:df:27:14:7d:ae:67:f8:92:53:12: 87:1b:d3:04:fc:43:a0:d9:40:64:47:5c:0a:d2:29: 0a:7f:a3:86:80:79:a5:26:7b:27:b5:20:59:fb:e8: 3e:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 43:AA:B9:89:F4:E6:A2:0C:09:89:C9:F6:7B:8C:F6:7F:9F:F5:50:DF X509v3 Authority Key Identifier: keyid:C6:D1:1B:64:FF:E1:8E:FA:42:F4:3A:6C:76:56:39:DE:E3:8D:02:7E X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xtEbZP_hjvpC9DpsdlY53uONAn4.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/4cac6b-8e05-448a-83f7-6835852158d8/1/Q6q5ifTmogwJicn2e4z2f5_1UN8.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/4cac6b-8e05-448a-83f7-6835852158d8/1/xtEbZP_hjvpC9DpsdlY53uONAn4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 193.73.113.0/24 193.135.254.0/24 Signature Algorithm: sha256WithRSAEncryption 56:d9:f4:65:40:7a:a5:b3:66:68:e8:51:a9:5a:10:8f:01:71: 72:c1:4e:c2:6f:08:10:23:3e:65:a2:a0:79:4d:31:5f:79:74: 53:1c:58:88:0b:0b:34:b6:d7:24:05:70:0b:9f:d7:99:c4:7f: 5b:da:ef:fa:24:fe:fc:ac:b6:c1:20:3a:3f:09:e7:8f:de:bb: 7c:a2:6c:fe:96:c6:88:c8:92:48:52:61:24:2b:39:11:73:88: da:0c:d8:93:9e:f7:32:63:65:7e:a9:3e:e5:b3:51:cc:84:3b: 56:1f:33:3b:6f:43:d0:ea:6e:74:42:ab:2c:67:88:39:f0:eb: 27:a6:11:63:98:db:7b:f2:f7:02:e6:8e:15:69:b0:5d:16:f9: 01:e7:fd:b0:c4:d0:7b:a2:44:e5:5e:ab:5f:c1:3c:37:f8:5b: 9d:a9:15:0c:1d:54:d5:27:bd:21:6c:73:94:6b:0e:8b:1b:0a: 41:c0:f9:76:2a:6c:46:6b:16:4f:1f:a5:c5:3b:dd:d5:38:42: 21:62:4f:b6:8f:b6:46:03:95:2f:37:07:ac:18:54:e5:d3:d4: c3:72:ec:b4:3a:04:9d:ec:30:39:a5:d3:41:32:2b:32:47:26: 63:be:df:46:62:0c:e8:13:5d:99:81:59:0b:14:c6:97:d7:3b: 7d:eb:6b:58 -----BEGIN CERTIFICATE----- MIIFAzCCA+ugAwIBAgISAZt/FXCDZg1OoloydH4TpRy+MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGM2ZDExYjY0ZmZlMThlZmE0MmY0M2E2Yzc2NTYzOWRlZTM4 ZDAyN2UwHhcNMjYwMTAyMTQyMTA5WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg0M2FhYjk4OWY0ZTZhMjBjMDk4OWM5ZjY3YjhjZjY3ZjlmZjU1MGRmMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAoV4XeDifVFlJ7Q9GI5LkEs26kksQ 2pfIyq1qVRUtXaDY86SaPXY7dxtOWr/VjuzHuFCJ/lO+ijYOpV6lzwBZNECBhm9A ZdPjCRAzQazZxG+5Yu4H3IF/iBhgnSTaaYhYHJmUeXeauEgdXY/D5kJeNi+Sejlc e41+ORpPkNoCY9WK9WIKfd/f6P3kG5/2TkhviWaQgjuR5TAWGpB6BA2ZBa9Lg2pd 54snDsgiT6M3iPBk28g63sGrFuT5zupxHIlckloGucbrJ8dt9M5gjxQUudo5NL9p It8nFH2uZ/iSUxKHG9ME/EOg2UBkR1wK0ikKf6OGgHmlJnsntSBZ++g+WQIDAQAB o4ICDzCCAgswHQYDVR0OBBYEFEOquYn05qIMCYnJ9nuM9n+f9VDfMB8GA1UdIwQY MBaAFMbRG2T/4Y76QvQ6bHZWOd7jjQJ+MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQveHRFYlpQX2hqdnBDOURwc2RsWTUzdU9OQW40LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hNy80Y2FjNmItOGUwNS00NDhhLTgzZjct NjgzNTg1MjE1OGQ4LzEvUTZxNWlmVG1vZ3dKaWNuMmU0ejJmNV8xVU44LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9hNy80Y2FjNmItOGUwNS00NDhhLTgzZjctNjgzNTg1MjE1OGQ4 LzEveHRFYlpQX2hqdnBDOURwc2RsWTUzdU9OQW40LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQAwUlxAwQA wYf+MA0GCSqGSIb3DQEBCwUAA4IBAQBW2fRlQHqls2Zo6FGpWhCPAXFywU7CbwgQ Iz5loqB5TTFfeXRTHFiICws0ttckBXALn9eZxH9b2u/6JP78rLbBIDo/CeeP3rt8 omz+lsaIyJJIUmEkKzkRc4jaDNiTnvcyY2V+qT7ls1HMhDtWHzM7b0PQ6m50Qqss Z4g58OsnphFjmNt78vcC5o4VabBdFvkB5/2wxNB7okTlXqtfwTw3+FudqRUMHVTV J70hbHOUaw6LGwpBwPl2KmxGaxZPH6XFO93VOEIhYk+2j7ZGA5UvNwesGFTl09TD cuy0OgSd7DA5pdNBMisyRyZjvt9GYgzoE12ZgVkLFMaX1zt962tY -----END CERTIFICATE-----Generated at Wed Jan 21 13:17:48 2026 by rpki-client