This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a7/5a3cd1-8109-4c66-8324-4828d65104e1/1/qHkKc6qThO5LVCCZnqTx59tVQVQ.roa File: qHkKc6qThO5LVCCZnqTx59tVQVQ.roa (raw, json) Hash identifier: hYX8MCTn1ruNTten5OGMYptvMIuzTBWfYXGAUvW3g24= Subject key identifier: A8:79:0A:73:AA:93:84:EE:4B:54:20:99:9E:A4:F1:E7:DB:55:41:54 Certificate issuer: /CN=4ad17171aea8576c431c637418691c9c1f557516 Certificate serial: 019B79ED1B987BADCE5C32F2AC8B9737E569 Authority key identifier: 4A:D1:71:71:AE:A8:57:6C:43:1C:63:74:18:69:1C:9C:1F:55:75:16 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/StFxca6oV2xDHGN0GGkcnB9VdRY.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a7/5a3cd1-8109-4c66-8324-4828d65104e1/1/qHkKc6qThO5LVCCZnqTx59tVQVQ.roa Signing time: Thu 01 Jan 2026 14:19:00 +0000 ROA not before: Thu 01 Jan 2026 14:19:00 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 216287 IP address blocks: 95.130.231.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a7/5a3cd1-8109-4c66-8324-4828d65104e1/1/StFxca6oV2xDHGN0GGkcnB9VdRY.crl rsync://rpki.ripe.net/repository/DEFAULT/a7/5a3cd1-8109-4c66-8324-4828d65104e1/1/StFxca6oV2xDHGN0GGkcnB9VdRY.mft rsync://rpki.ripe.net/repository/DEFAULT/StFxca6oV2xDHGN0GGkcnB9VdRY.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 14:00:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:79:ed:1b:98:7b:ad:ce:5c:32:f2:ac:8b:97:37:e5:69 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4ad17171aea8576c431c637418691c9c1f557516 Validity Not Before: Jan 1 14:19:00 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=a8790a73aa9384ee4b5420999ea4f1e7db554154 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:36:7a:81:d8:d3:fd:8a:2e:94:88:07:21:4f: 57:a2:ce:c0:78:83:79:f5:72:45:69:6e:ba:bc:ce: 36:a7:a1:fe:60:d5:a4:68:fe:8b:1f:78:8d:b8:b3: e1:47:fd:a5:20:43:91:8c:1a:b3:ed:82:85:a4:8d: 59:57:d3:bd:12:6a:67:a3:0c:58:bd:be:3c:c2:2f: fa:df:16:0c:4d:9a:df:f3:a2:0f:b0:00:22:86:6e: 3f:1f:3b:9c:cd:59:26:71:54:71:0a:79:1d:7d:21: fc:b9:50:c0:64:6e:c0:19:81:8a:6a:57:0d:4d:d6: 14:40:0d:a7:d5:06:e0:bc:10:a4:77:2b:55:c3:d4: 43:d1:c5:8b:3b:01:3d:8f:43:6d:f8:c9:68:90:47: 96:d6:c6:75:c5:e7:82:bf:ca:91:8b:b2:1f:90:44: 0d:66:58:e4:a4:20:a5:63:79:f8:ef:3b:d4:e4:e5: c6:e2:a1:38:07:ff:dd:3e:eb:5e:ea:2f:62:1a:9d: da:c3:eb:90:3b:76:e0:ac:c3:1d:78:1d:03:09:f6: 56:80:4b:db:1a:2d:cf:7d:43:33:22:91:fa:ef:b0: 93:68:96:95:7e:7d:7e:e3:b3:08:c4:16:9e:94:63: d6:c1:f6:9d:d5:61:25:c6:eb:38:44:e6:1b:95:0c: 10:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A8:79:0A:73:AA:93:84:EE:4B:54:20:99:9E:A4:F1:E7:DB:55:41:54 X509v3 Authority Key Identifier: keyid:4A:D1:71:71:AE:A8:57:6C:43:1C:63:74:18:69:1C:9C:1F:55:75:16 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/StFxca6oV2xDHGN0GGkcnB9VdRY.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/5a3cd1-8109-4c66-8324-4828d65104e1/1/qHkKc6qThO5LVCCZnqTx59tVQVQ.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/5a3cd1-8109-4c66-8324-4828d65104e1/1/StFxca6oV2xDHGN0GGkcnB9VdRY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 95.130.231.0/24 Signature Algorithm: sha256WithRSAEncryption a7:0c:d4:d3:c8:5f:d9:6c:cd:24:63:34:7e:45:b8:28:8f:2d: 9f:66:da:ef:fc:b6:39:6a:c1:63:b1:f1:11:90:c4:43:df:0d: d5:d1:05:9d:7b:ee:f8:72:51:f1:16:b7:21:9d:61:45:50:f7: 74:22:b0:f0:5b:cd:08:7d:be:17:28:cd:d1:25:26:dc:94:36: 72:4f:be:ad:17:4b:fe:e6:99:f4:ac:01:fa:36:66:ec:ae:ef: 29:33:6f:14:99:62:66:a4:ea:5b:a6:c8:af:75:dc:85:fe:8a: e1:7d:24:f2:38:b2:64:82:6e:56:86:43:93:50:cc:5e:f8:4d: 03:e5:16:cb:25:d6:a4:d1:b0:c5:22:ad:35:ac:e7:6a:a7:ae: 5a:1b:f5:0d:f8:d0:be:94:58:e5:69:4a:fb:c3:37:ea:66:ce: e3:2e:48:0c:b4:62:20:16:8d:a5:8e:d8:98:1e:af:3f:cc:5d: 72:fb:88:92:a4:0b:7f:58:77:57:2c:e1:9d:2e:d5:8b:18:59: 31:ea:07:47:29:f3:56:c6:58:a2:a2:7f:56:26:4e:6e:77:da: 50:20:87:76:a6:3a:bb:7f:85:6b:38:e0:18:e7:b1:7a:c5:d5: 5a:51:a9:f8:45:9b:a4:31:33:7c:a2:0c:d3:3e:a8:79:d7:f9: 42:5c:98:f3 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt57RuYe63OXDLyrIuXN+VpMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDRhZDE3MTcxYWVhODU3NmM0MzFjNjM3NDE4NjkxYzljMWY1 NTc1MTYwHhcNMjYwMTAxMTQxOTAwWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhhODc5MGE3M2FhOTM4NGVlNGI1NDIwOTk5ZWE0ZjFlN2RiNTU0MTU0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxzZ6gdjT/YoulIgHIU9Xos7AeIN5 9XJFaW66vM42p6H+YNWkaP6LH3iNuLPhR/2lIEORjBqz7YKFpI1ZV9O9EmpnowxY vb48wi/63xYMTZrf86IPsAAihm4/HzuczVkmcVRxCnkdfSH8uVDAZG7AGYGKalcN TdYUQA2n1QbgvBCkdytVw9RD0cWLOwE9j0Nt+MlokEeW1sZ1xeeCv8qRi7IfkEQN ZljkpCClY3n47zvU5OXG4qE4B//dPute6i9iGp3aw+uQO3bgrMMdeB0DCfZWgEvb Gi3PfUMzIpH677CTaJaVfn1+47MIxBaelGPWwfad1WElxus4ROYblQwQ0wIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFKh5CnOqk4TuS1QgmZ6k8efbVUFUMB8GA1UdIwQY MBaAFErRcXGuqFdsQxxjdBhpHJwfVXUWMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvU3RGeGNhNm9WMnhESEdOMEdHa2NuQjlWZFJZLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hNy81YTNjZDEtODEwOS00YzY2LTgzMjQt NDgyOGQ2NTEwNGUxLzEvcUhrS2M2cVRoTzVMVkNDWm5xVHg1OXRWUVZRLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9hNy81YTNjZDEtODEwOS00YzY2LTgzMjQtNDgyOGQ2NTEwNGUx LzEvU3RGeGNhNm9WMnhESEdOMEdHa2NuQjlWZFJZLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAX4LnMA0G CSqGSIb3DQEBCwUAA4IBAQCnDNTTyF/ZbM0kYzR+Rbgojy2fZtrv/LY5asFjsfER kMRD3w3V0QWde+74clHxFrchnWFFUPd0IrDwW80Ifb4XKM3RJSbclDZyT76tF0v+ 5pn0rAH6Nmbsru8pM28UmWJmpOpbpsivddyF/orhfSTyOLJkgm5WhkOTUMxe+E0D 5RbLJdak0bDFIq01rOdqp65aG/UN+NC+lFjlaUr7wzfqZs7jLkgMtGIgFo2ljtiY Hq8/zF1y+4iSpAt/WHdXLOGdLtWLGFkx6gdHKfNWxliion9WJk5ud9pQIId2pjq7 f4VrOOAY57F6xdVaUan4RZukMTN8ogzTPqh51/lCXJjz -----END CERTIFICATE-----Generated at Mon Feb 9 18:23:04 2026 by rpki-client