This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b8/404e64-f981-45b5-9cae-4fb4ef91a82f/1/Q-_VAhr_3KM6k7h05hr8GonF39M.roa File: Q-_VAhr_3KM6k7h05hr8GonF39M.roa (raw, json) Hash identifier: sBlSBxemwWOVZDZUFiQlhe/vEkuAulILbiLVu6l2Y+s= Subject key identifier: 43:EF:D5:02:1A:FF:DC:A3:3A:93:B8:74:E6:1A:FC:1A:89:C5:DF:D3 Certificate issuer: /CN=798e0da4f91007b224768acb4d131f12517d2b7a Certificate serial: 019B775928204489747FA995200AFD788746 Authority key identifier: 79:8E:0D:A4:F9:10:07:B2:24:76:8A:CB:4D:13:1F:12:51:7D:2B:7A Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/eY4NpPkQB7IkdorLTRMfElF9K3o.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b8/404e64-f981-45b5-9cae-4fb4ef91a82f/1/Q-_VAhr_3KM6k7h05hr8GonF39M.roa Signing time: Thu 01 Jan 2026 02:18:10 +0000 ROA not before: Thu 01 Jan 2026 02:18:10 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 200909 IP address blocks: 91.202.100.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b8/404e64-f981-45b5-9cae-4fb4ef91a82f/1/eY4NpPkQB7IkdorLTRMfElF9K3o.crl rsync://rpki.ripe.net/repository/DEFAULT/b8/404e64-f981-45b5-9cae-4fb4ef91a82f/1/eY4NpPkQB7IkdorLTRMfElF9K3o.mft rsync://rpki.ripe.net/repository/DEFAULT/eY4NpPkQB7IkdorLTRMfElF9K3o.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 19 Jan 2026 14:41:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:77:59:28:20:44:89:74:7f:a9:95:20:0a:fd:78:87:46 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=798e0da4f91007b224768acb4d131f12517d2b7a Validity Not Before: Jan 1 02:18:10 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=43efd5021affdca33a93b874e61afc1a89c5dfd3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:44:b9:56:b7:53:ec:3b:60:dd:76:c0:e0:64: 61:46:10:44:63:eb:05:cb:43:69:24:86:db:d1:f6: 8e:b2:5d:ef:30:56:57:5d:46:13:ee:21:ed:b8:9b: 1c:1f:9a:68:b6:c0:6d:2e:c5:c8:d3:01:6b:71:00: 46:15:ef:42:34:42:eb:50:01:ce:6c:85:e7:de:0c: 3e:da:8f:22:a6:99:94:24:92:4c:18:b9:9c:96:be: ad:69:b8:a4:c0:f4:89:32:98:8c:b0:70:33:a9:71: a3:e7:b2:cc:ee:a7:3a:58:52:0b:26:94:3e:9d:a7: f9:0c:75:fe:cd:92:d4:a6:92:bb:6c:1f:56:b9:ed: 11:87:74:4b:7a:e8:95:c3:4d:ab:7c:87:2b:be:85: 7d:52:fe:92:f8:91:ee:9d:ed:50:c1:61:9b:0b:13: 28:e8:8c:4a:82:8b:56:92:a4:d2:e1:38:78:74:e4: 99:33:e3:e1:d8:13:06:16:65:78:e4:eb:37:a6:dd: 26:6e:93:98:1e:29:3d:71:46:34:4f:46:17:3e:6c: ff:8f:73:c2:40:eb:30:a1:4d:68:00:84:52:d2:96: 56:cc:d6:5b:35:c6:3e:36:18:34:b6:07:b6:95:ea: 85:dc:03:7f:66:71:f6:7d:eb:bf:09:58:ca:03:11: 26:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 43:EF:D5:02:1A:FF:DC:A3:3A:93:B8:74:E6:1A:FC:1A:89:C5:DF:D3 X509v3 Authority Key Identifier: keyid:79:8E:0D:A4:F9:10:07:B2:24:76:8A:CB:4D:13:1F:12:51:7D:2B:7A X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/eY4NpPkQB7IkdorLTRMfElF9K3o.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b8/404e64-f981-45b5-9cae-4fb4ef91a82f/1/Q-_VAhr_3KM6k7h05hr8GonF39M.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/b8/404e64-f981-45b5-9cae-4fb4ef91a82f/1/eY4NpPkQB7IkdorLTRMfElF9K3o.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 91.202.100.0/22 Signature Algorithm: sha256WithRSAEncryption 79:b7:e2:30:eb:a4:6c:79:7a:d2:c4:e5:7b:f1:60:5a:4d:5c: 8f:5c:82:a2:3a:03:53:38:6a:6a:af:b6:0b:d2:dc:0e:be:51: 7a:87:98:f9:f4:62:d3:45:5f:c4:1c:67:1f:b9:76:70:24:dc: 66:61:34:6d:bd:6b:c7:ba:6c:c3:8d:95:b9:0f:15:e9:0d:d7: 67:8b:75:eb:cc:96:f9:8b:a1:cb:db:42:e0:f8:77:99:a1:36: 60:54:d7:69:fb:b5:ae:03:a2:b4:82:75:c0:ee:cd:90:85:b6: 65:5b:8b:ee:14:fc:b4:24:f5:b0:33:45:57:67:f2:d3:2a:ac: 91:6c:de:34:15:f8:0f:3f:25:d9:05:70:19:ee:d2:30:57:05: 5c:21:9f:03:9b:1e:98:34:4b:ac:3b:77:2f:7f:ec:4a:0c:89: 8d:a8:a8:60:a8:7a:2b:f3:b1:e4:77:91:81:80:61:14:ed:35: 72:99:08:30:25:bf:7b:57:d7:7e:81:c4:33:ea:35:5d:f0:9a: a1:db:9e:13:6f:60:f6:bb:bc:82:43:fb:ad:ff:38:89:63:72: 16:12:22:1e:56:e9:e3:7f:1a:e0:cb:6a:a4:60:36:a1:0a:d1: ea:97:d4:98:23:7b:0a:ed:85:c2:69:b9:df:ed:84:d2:b3:8e: 4a:37:d2:7e -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt3WSggRIl0f6mVIAr9eIdGMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDc5OGUwZGE0ZjkxMDA3YjIyNDc2OGFjYjRkMTMxZjEyNTE3 ZDJiN2EwHhcNMjYwMTAxMDIxODEwWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg0M2VmZDUwMjFhZmZkY2EzM2E5M2I4NzRlNjFhZmMxYTg5YzVkZmQzMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqUS5VrdT7Dtg3XbA4GRhRhBEY+sF y0NpJIbb0faOsl3vMFZXXUYT7iHtuJscH5potsBtLsXI0wFrcQBGFe9CNELrUAHO bIXn3gw+2o8ippmUJJJMGLmclr6tabikwPSJMpiMsHAzqXGj57LM7qc6WFILJpQ+ naf5DHX+zZLUppK7bB9Wue0Rh3RLeuiVw02rfIcrvoV9Uv6S+JHune1QwWGbCxMo 6IxKgotWkqTS4Th4dOSZM+Ph2BMGFmV45Os3pt0mbpOYHik9cUY0T0YXPmz/j3PC QOswoU1oAIRS0pZWzNZbNcY+Nhg0tge2leqF3AN/ZnH2feu/CVjKAxEm4wIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFEPv1QIa/9yjOpO4dOYa/BqJxd/TMB8GA1UdIwQY MBaAFHmODaT5EAeyJHaKy00THxJRfSt6MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvZVk0TnBQa1FCN0lrZG9yTFRSTWZFbEY5SzNvLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iOC80MDRlNjQtZjk4MS00NWI1LTljYWUt NGZiNGVmOTFhODJmLzEvUS1fVkFocl8zS002azdoMDVocjhHb25GMzlNLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iOC80MDRlNjQtZjk4MS00NWI1LTljYWUtNGZiNGVmOTFhODJm LzEvZVk0TnBQa1FCN0lrZG9yTFRSTWZFbEY5SzNvLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCW8pkMA0G CSqGSIb3DQEBCwUAA4IBAQB5t+Iw66RseXrSxOV78WBaTVyPXIKiOgNTOGpqr7YL 0twOvlF6h5j59GLTRV/EHGcfuXZwJNxmYTRtvWvHumzDjZW5DxXpDddni3XrzJb5 i6HL20Lg+HeZoTZgVNdp+7WuA6K0gnXA7s2QhbZlW4vuFPy0JPWwM0VXZ/LTKqyR bN40FfgPPyXZBXAZ7tIwVwVcIZ8Dmx6YNEusO3cvf+xKDImNqKhgqHor87Hkd5GB gGEU7TVymQgwJb97V9d+gcQz6jVd8Jqh254Tb2D2u7yCQ/ut/ziJY3IWEiIeVunj fxrgy2qkYDahCtHql9SYI3sK7YXCabnf7YTSs45KN9J+ -----END CERTIFICATE-----Generated at Sun Jan 18 19:25:26 2026 by rpki-client