This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ba/8f5fae-da90-4314-bffc-d4ee1d389e0d/1/QWR2WLvntj14TOQgR2eKd7Aky68.roa File: QWR2WLvntj14TOQgR2eKd7Aky68.roa (raw, json) Hash identifier: FPdPdT6QhjV/WYrN+tdyaJZ6K8nDxhbJsT/trbbJT/M= Subject key identifier: 41:64:76:58:BB:E7:B6:3D:78:4C:E4:20:47:67:8A:77:B0:24:CB:AF Certificate issuer: /CN=e3be07cb1fd4f1e3c922303b670a881b82e61491 Certificate serial: 019B7AC8CEDF17DDCFFCFBB568FFEEA7D425 Authority key identifier: E3:BE:07:CB:1F:D4:F1:E3:C9:22:30:3B:67:0A:88:1B:82:E6:14:91 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/474Hyx_U8ePJIjA7ZwqIG4LmFJE.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ba/8f5fae-da90-4314-bffc-d4ee1d389e0d/1/QWR2WLvntj14TOQgR2eKd7Aky68.roa Signing time: Thu 01 Jan 2026 18:18:59 +0000 ROA not before: Thu 01 Jan 2026 18:18:59 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 211838 IP address blocks: 213.175.119.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ba/8f5fae-da90-4314-bffc-d4ee1d389e0d/1/474Hyx_U8ePJIjA7ZwqIG4LmFJE.crl rsync://rpki.ripe.net/repository/DEFAULT/ba/8f5fae-da90-4314-bffc-d4ee1d389e0d/1/474Hyx_U8ePJIjA7ZwqIG4LmFJE.mft rsync://rpki.ripe.net/repository/DEFAULT/474Hyx_U8ePJIjA7ZwqIG4LmFJE.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 20 Jan 2026 18:00:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7a:c8:ce:df:17:dd:cf:fc:fb:b5:68:ff:ee:a7:d4:25 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=e3be07cb1fd4f1e3c922303b670a881b82e61491 Validity Not Before: Jan 1 18:18:59 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=41647658bbe7b63d784ce42047678a77b024cbaf Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e1:db:e8:12:ac:1e:0b:99:cb:96:96:eb:85:de: 93:59:db:71:eb:b6:da:67:ed:14:35:88:eb:c0:1f: b4:e1:98:02:9e:34:61:43:98:8e:a7:a2:37:11:07: 80:b1:a4:dd:21:f2:0e:45:9b:18:f1:7d:63:0e:47: b9:40:92:06:af:c0:21:3a:f9:2b:2b:d6:1d:21:82: 17:e7:8c:4e:a9:6e:74:90:7e:2f:08:39:e2:17:40: 60:1a:2a:d7:d8:3e:f9:8c:13:a1:9f:b9:92:ac:98: b3:e8:7c:7e:c6:25:a8:31:22:36:12:30:c9:9e:76: a6:5b:68:83:0d:15:1c:c3:be:ca:e6:f2:a2:e5:b0: 20:e8:a0:0e:83:ad:b2:b5:9b:71:65:4a:00:59:6f: 50:30:3f:84:50:0d:63:7b:51:11:48:d3:5d:e8:82: 5e:82:c3:1a:aa:b2:e2:66:6c:9a:16:e1:6e:f9:d0: 05:69:3b:ee:fc:6c:b7:af:5d:49:c3:ee:0c:2b:30: e9:81:51:a6:5c:3b:9e:d4:8a:7a:68:5d:5e:3e:76: fa:bc:58:bc:99:b7:32:2a:48:2c:91:43:3c:49:b2: 75:bb:51:d0:10:90:41:ca:43:24:fc:ec:34:06:1f: 5e:6f:bb:13:2d:a7:eb:35:81:26:31:43:1e:0a:75: 3b:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 41:64:76:58:BB:E7:B6:3D:78:4C:E4:20:47:67:8A:77:B0:24:CB:AF X509v3 Authority Key Identifier: keyid:E3:BE:07:CB:1F:D4:F1:E3:C9:22:30:3B:67:0A:88:1B:82:E6:14:91 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/474Hyx_U8ePJIjA7ZwqIG4LmFJE.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ba/8f5fae-da90-4314-bffc-d4ee1d389e0d/1/QWR2WLvntj14TOQgR2eKd7Aky68.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/ba/8f5fae-da90-4314-bffc-d4ee1d389e0d/1/474Hyx_U8ePJIjA7ZwqIG4LmFJE.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 213.175.119.0/24 Signature Algorithm: sha256WithRSAEncryption 4c:02:cd:29:d0:05:21:8a:79:ef:ac:d4:87:03:22:ee:3b:1d: e6:a3:39:b8:d8:0c:43:8c:c3:57:92:4f:cb:be:06:f3:fe:91: b5:f5:75:75:aa:a7:9e:76:ce:c1:ba:ab:91:5a:a6:4a:96:56: 6f:49:e9:24:91:f1:2f:10:e8:56:57:1b:c3:57:e4:ce:ff:bf: 7f:09:9e:55:60:88:87:39:19:43:bb:18:29:cd:9e:54:d7:d4: c4:f4:8e:4c:4e:0e:6a:53:15:11:5c:e8:0e:0b:9d:f9:97:58: d5:53:26:cf:10:5a:be:38:27:64:24:f3:5c:a1:e0:a7:2f:24: 57:ef:9a:d6:c9:e3:70:54:d9:8a:77:4e:a0:65:e7:56:d0:f2: 3d:25:6e:46:12:9d:2d:24:67:52:30:7b:41:7e:30:b0:99:bc: 6c:3a:c1:fb:f5:20:51:ef:97:ab:7b:37:8b:6e:c1:3f:e4:b1: 66:a2:29:2f:5c:2f:95:6f:b1:eb:83:e8:73:67:15:64:67:2c: e9:2e:21:a5:62:1b:3f:9e:f5:7a:9b:0d:85:49:a3:6a:48:c7: e9:ec:b8:9a:a7:81:ae:f0:65:32:29:39:9e:32:1e:cf:6d:22: 5a:1b:a5:c6:8c:d6:31:13:f1:ab:0a:42:78:5e:3d:0e:0e:01: 5b:a9:e5:de -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt6yM7fF93P/Pu1aP/up9QlMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGUzYmUwN2NiMWZkNGYxZTNjOTIyMzAzYjY3MGE4ODFiODJl NjE0OTEwHhcNMjYwMTAxMTgxODU5WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg0MTY0NzY1OGJiZTdiNjNkNzg0Y2U0MjA0NzY3OGE3N2IwMjRjYmFmMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA4dvoEqweC5nLlpbrhd6TWdtx67ba Z+0UNYjrwB+04ZgCnjRhQ5iOp6I3EQeAsaTdIfIORZsY8X1jDke5QJIGr8AhOvkr K9YdIYIX54xOqW50kH4vCDniF0BgGirX2D75jBOhn7mSrJiz6Hx+xiWoMSI2EjDJ nnamW2iDDRUcw77K5vKi5bAg6KAOg62ytZtxZUoAWW9QMD+EUA1je1ERSNNd6IJe gsMaqrLiZmyaFuFu+dAFaTvu/Gy3r11Jw+4MKzDpgVGmXDue1Ip6aF1ePnb6vFi8 mbcyKkgskUM8SbJ1u1HQEJBBykMk/Ow0Bh9eb7sTLafrNYEmMUMeCnU73wIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFEFkdli757Y9eEzkIEdninewJMuvMB8GA1UdIwQY MBaAFOO+B8sf1PHjySIwO2cKiBuC5hSRMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvNDc0SHl4X1U4ZVBKSWpBN1p3cUlHNExtRkpFLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iYS84ZjVmYWUtZGE5MC00MzE0LWJmZmMt ZDRlZTFkMzg5ZTBkLzEvUVdSMldMdm50ajE0VE9RZ1IyZUtkN0FreTY4LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iYS84ZjVmYWUtZGE5MC00MzE0LWJmZmMtZDRlZTFkMzg5ZTBk LzEvNDc0SHl4X1U4ZVBKSWpBN1p3cUlHNExtRkpFLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQA1a93MA0G CSqGSIb3DQEBCwUAA4IBAQBMAs0p0AUhinnvrNSHAyLuOx3mozm42AxDjMNXkk/L vgbz/pG19XV1qqeeds7BuquRWqZKllZvSekkkfEvEOhWVxvDV+TO/79/CZ5VYIiH ORlDuxgpzZ5U19TE9I5MTg5qUxURXOgOC535l1jVUybPEFq+OCdkJPNcoeCnLyRX 75rWyeNwVNmKd06gZedW0PI9JW5GEp0tJGdSMHtBfjCwmbxsOsH79SBR75erezeL bsE/5LFmoikvXC+Vb7Hrg+hzZxVkZyzpLiGlYhs/nvV6mw2FSaNqSMfp7Liap4Gu 8GUyKTmeMh7PbSJaG6XGjNYxE/GrCkJ4Xj0ODgFbqeXe -----END CERTIFICATE-----Generated at Tue Jan 20 02:45:54 2026 by rpki-client