This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b7/1b66fe-699a-413b-a2fc-f511fd688eda/1/xQVJZ8XeKi_qZ897AqedzU_uyhs.roa File: xQVJZ8XeKi_qZ897AqedzU_uyhs.roa (raw, json) Hash identifier: XTuOm3CC6G0L/jW20RlJG4su70zRym46AnwfyGu3Vek= Subject key identifier: C5:05:49:67:C5:DE:2A:2F:EA:67:CF:7B:02:A7:9D:CD:4F:EE:CA:1B Certificate issuer: /CN=aa0f97e63508219b96cbb2106343f5e1b6dc5a4f Certificate serial: 019B7BA49F52568CE0E6A8FBA05A3B595DA5 Authority key identifier: AA:0F:97:E6:35:08:21:9B:96:CB:B2:10:63:43:F5:E1:B6:DC:5A:4F Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qg-X5jUIIZuWy7IQY0P14bbcWk8.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b7/1b66fe-699a-413b-a2fc-f511fd688eda/1/xQVJZ8XeKi_qZ897AqedzU_uyhs.roa Signing time: Thu 01 Jan 2026 22:19:04 +0000 ROA not before: Thu 01 Jan 2026 22:19:04 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 24740 IP address blocks: 91.223.171.0/24 maxlen: 24 185.59.160.0/23 maxlen: 23 185.59.162.0/23 maxlen: 23 185.227.228.0/24 maxlen: 24 185.227.229.0/24 maxlen: 24 185.227.230.0/24 maxlen: 24 185.227.231.0/24 maxlen: 24 193.111.22.0/23 maxlen: 23 2a04:b4c0::/29 maxlen: 29 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b7/1b66fe-699a-413b-a2fc-f511fd688eda/1/qg-X5jUIIZuWy7IQY0P14bbcWk8.crl rsync://rpki.ripe.net/repository/DEFAULT/b7/1b66fe-699a-413b-a2fc-f511fd688eda/1/qg-X5jUIIZuWy7IQY0P14bbcWk8.mft rsync://rpki.ripe.net/repository/DEFAULT/qg-X5jUIIZuWy7IQY0P14bbcWk8.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 13:00:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7b:a4:9f:52:56:8c:e0:e6:a8:fb:a0:5a:3b:59:5d:a5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=aa0f97e63508219b96cbb2106343f5e1b6dc5a4f Validity Not Before: Jan 1 22:19:04 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=c5054967c5de2a2fea67cf7b02a79dcd4feeca1b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:93:5d:6f:07:d4:ef:61:f2:88:64:60:be:47:23: 64:78:0d:4e:43:56:9f:e9:96:71:f7:c6:54:68:76: 12:84:d0:1a:c9:0c:05:e6:fa:5b:3e:ed:93:e6:45: ce:09:ff:24:d9:a8:f1:03:59:ff:d2:8b:fe:c3:1a: 1b:d3:66:de:e0:9c:a3:70:be:b9:3a:7e:cf:1f:8d: 64:00:29:2e:62:7f:6b:6e:ac:9f:38:f4:dd:22:41: 09:3c:8d:29:f3:2a:c9:6b:00:07:78:88:6a:1e:fc: c4:73:48:a1:04:91:74:44:be:01:29:13:77:18:6c: bf:f5:c6:d2:9b:c2:c8:6e:f8:4b:59:c9:e5:17:37: e4:e5:10:8d:c8:33:c7:18:41:b2:fc:78:f7:5c:19: ec:6b:07:3e:d6:18:32:ad:4f:75:9b:b7:ca:b4:d2: dc:a1:21:66:70:f3:2e:29:f8:66:fe:87:80:eb:1b: d0:fe:58:33:d9:62:73:b0:8e:b1:2c:2f:ed:2b:88: 07:9b:73:d0:0f:88:7f:0f:e2:ef:50:f7:74:f5:ed: 34:b2:2c:43:a7:35:82:3d:af:c6:c0:66:01:83:62: 2e:78:19:2a:5d:88:88:c1:1f:b8:62:47:f5:4c:53: a0:46:88:b9:25:8d:3c:ac:1d:be:0a:c8:91:27:dc: ad:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C5:05:49:67:C5:DE:2A:2F:EA:67:CF:7B:02:A7:9D:CD:4F:EE:CA:1B X509v3 Authority Key Identifier: keyid:AA:0F:97:E6:35:08:21:9B:96:CB:B2:10:63:43:F5:E1:B6:DC:5A:4F X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qg-X5jUIIZuWy7IQY0P14bbcWk8.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b7/1b66fe-699a-413b-a2fc-f511fd688eda/1/xQVJZ8XeKi_qZ897AqedzU_uyhs.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/b7/1b66fe-699a-413b-a2fc-f511fd688eda/1/qg-X5jUIIZuWy7IQY0P14bbcWk8.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 91.223.171.0/24 185.59.160.0/22 185.227.228.0/22 193.111.22.0/23 IPv6: 2a04:b4c0::/29 Signature Algorithm: sha256WithRSAEncryption 7c:19:c6:45:c1:8b:26:a2:f6:f3:e8:c1:29:45:d3:5b:5a:50: d4:99:e6:1c:12:e9:7c:94:0a:24:38:d3:24:d3:06:3c:ba:28: 74:ce:39:9b:dd:f6:54:6e:3f:7e:7e:6e:1c:36:36:38:7a:17: 5a:9d:d4:0c:4f:0f:ae:05:0e:ad:45:55:39:86:fb:10:df:17: 3e:1a:78:4e:f6:8f:f9:8b:24:cc:9e:50:bc:68:78:38:44:7c: 4e:a5:6b:d8:26:3a:f0:81:a0:d7:eb:bf:67:f0:e8:a2:76:b1: 4d:e1:64:73:28:f1:ff:bb:bf:b8:63:ef:65:8c:fc:70:23:e4: 22:62:73:d1:f7:15:b6:c9:d7:91:5b:a6:e0:7e:8c:4e:96:1f: 18:99:1c:b7:e6:04:bf:15:89:eb:ac:56:51:53:fa:e5:23:7b: 34:c1:21:bc:89:fa:ea:48:c1:27:53:30:ff:4e:3c:3f:27:ba: 98:df:41:1e:64:a2:03:74:b1:d2:0c:cc:8b:af:f1:3c:d5:c1: 47:aa:5a:ac:99:d7:c2:df:37:f3:59:42:b3:38:ec:9b:ec:6e: 3e:b3:af:57:19:96:41:32:73:58:ea:57:72:eb:0f:ab:6a:da: 38:11:d9:ec:bc:9a:3f:61:e0:8d:80:8b:0b:fc:cc:14:2c:28: 0d:3c:b1:ed -----BEGIN CERTIFICATE----- MIIFHjCCBAagAwIBAgISAZt7pJ9SVozg5qj7oFo7WV2lMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGFhMGY5N2U2MzUwODIxOWI5NmNiYjIxMDYzNDNmNWUxYjZk YzVhNGYwHhcNMjYwMTAxMjIxOTA0WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhjNTA1NDk2N2M1ZGUyYTJmZWE2N2NmN2IwMmE3OWRjZDRmZWVjYTFiMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAk11vB9TvYfKIZGC+RyNkeA1OQ1af 6ZZx98ZUaHYShNAayQwF5vpbPu2T5kXOCf8k2ajxA1n/0ov+wxob02be4JyjcL65 On7PH41kACkuYn9rbqyfOPTdIkEJPI0p8yrJawAHeIhqHvzEc0ihBJF0RL4BKRN3 GGy/9cbSm8LIbvhLWcnlFzfk5RCNyDPHGEGy/Hj3XBnsawc+1hgyrU91m7fKtNLc oSFmcPMuKfhm/oeA6xvQ/lgz2WJzsI6xLC/tK4gHm3PQD4h/D+LvUPd09e00sixD pzWCPa/GwGYBg2IueBkqXYiIwR+4Ykf1TFOgRoi5JY08rB2+CsiRJ9ytcwIDAQAB o4ICKjCCAiYwHQYDVR0OBBYEFMUFSWfF3iov6mfPewKnnc1P7sobMB8GA1UdIwQY MBaAFKoPl+Y1CCGblsuyEGND9eG23FpPMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvcWctWDVqVUlJWnVXeTdJUVkwUDE0YmJjV2s4LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iNy8xYjY2ZmUtNjk5YS00MTNiLWEyZmMt ZjUxMWZkNjg4ZWRhLzEveFFWSlo4WGVLaV9xWjg5N0FxZWR6VV91eWhzLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iNy8xYjY2ZmUtNjk5YS00MTNiLWEyZmMtZjUxMWZkNjg4ZWRh LzEvcWctWDVqVUlJWnVXeTdJUVkwUDE0YmJjV2s4LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMEAGCCsGAQUFBwEHAQH/BDEwLzAeBAIAATAYAwQAW9+rAwQC uTugAwQCuePkAwQBwW8WMA0EAgACMAcDBQMqBLTAMA0GCSqGSIb3DQEBCwUAA4IB AQB8GcZFwYsmovbz6MEpRdNbWlDUmeYcEul8lAokONMk0wY8uih0zjmb3fZUbj9+ fm4cNjY4ehdandQMTw+uBQ6tRVU5hvsQ3xc+GnhO9o/5iyTMnlC8aHg4RHxOpWvY JjrwgaDX679n8OiidrFN4WRzKPH/u7+4Y+9ljPxwI+QiYnPR9xW2ydeRW6bgfoxO lh8YmRy35gS/FYnrrFZRU/rlI3s0wSG8ifrqSMEnUzD/Tjw/J7qY30EeZKIDdLHS DMyLr/E81cFHqlqsmdfC3zfzWUKzOOyb7G4+s69XGZZBMnNY6ldy6w+rato4Edns vJo/YeCNgIsL/MwULCgNPLHt -----END CERTIFICATE-----Generated at Mon Feb 9 22:23:28 2026 by rpki-client