This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c8/a9c6da-8ea0-46b7-a1a6-99acb99ce754/1/qeMEQq5mjVyLDKGOkTIG-4qgJh4.roa File: qeMEQq5mjVyLDKGOkTIG-4qgJh4.roa (raw, json) Hash identifier: JB0yLutFPlTAHm0qtRBdGmzvyjdgQXRn5jXVkQE0VpI= Subject key identifier: A9:E3:04:42:AE:66:8D:5C:8B:0C:A1:8E:91:32:06:FB:8A:A0:26:1E Certificate issuer: /CN=93677d7cb9271ce361256e9833cc7b14fd023ebe Certificate serial: 019B7F15C71748DF043F08B21F5D7B273438 Authority key identifier: 93:67:7D:7C:B9:27:1C:E3:61:25:6E:98:33:CC:7B:14:FD:02:3E:BE Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/k2d9fLknHONhJW6YM8x7FP0CPr4.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c8/a9c6da-8ea0-46b7-a1a6-99acb99ce754/1/qeMEQq5mjVyLDKGOkTIG-4qgJh4.roa Signing time: Fri 02 Jan 2026 14:21:32 +0000 ROA not before: Fri 02 Jan 2026 14:21:32 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 209043 IP address blocks: 45.9.155.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c8/a9c6da-8ea0-46b7-a1a6-99acb99ce754/1/k2d9fLknHONhJW6YM8x7FP0CPr4.crl rsync://rpki.ripe.net/repository/DEFAULT/c8/a9c6da-8ea0-46b7-a1a6-99acb99ce754/1/k2d9fLknHONhJW6YM8x7FP0CPr4.mft rsync://rpki.ripe.net/repository/DEFAULT/k2d9fLknHONhJW6YM8x7FP0CPr4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 20 Jan 2026 14:01:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7f:15:c7:17:48:df:04:3f:08:b2:1f:5d:7b:27:34:38 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=93677d7cb9271ce361256e9833cc7b14fd023ebe Validity Not Before: Jan 2 14:21:32 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=a9e30442ae668d5c8b0ca18e913206fb8aa0261e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:0d:bb:01:2d:23:17:66:da:1e:0c:90:8f:bc: 54:78:62:c3:1e:1b:93:4a:5d:3c:0d:c4:07:97:3e: 8d:b3:da:28:24:68:0c:3f:73:ba:68:5e:ee:ab:8a: 4f:0a:4f:eb:e7:bc:7d:43:6d:03:76:9d:36:9e:23: 85:b7:23:c8:e0:f6:6b:4e:56:dc:7c:6f:a0:32:ec: 67:2a:f9:bc:d6:9b:a1:15:6d:2e:9e:d0:54:b3:24: 99:e6:1f:43:52:c7:dd:1f:27:a8:f1:9b:2d:2e:d3: 80:03:1e:dc:ad:46:83:c5:b9:a8:1b:be:be:84:15: 2d:ea:bf:5d:35:6c:34:dd:52:3b:24:45:16:e5:d9: 9d:ad:43:9f:73:a7:89:00:0a:1f:85:bf:5c:10:aa: b4:c5:d5:3c:c9:8f:f3:6f:cb:aa:cf:c4:b1:ae:61: f7:e7:b9:27:43:50:60:9d:7c:b5:63:4a:15:3e:95: 20:58:5b:e4:d0:0f:e7:ee:91:e5:bf:bd:10:c4:e7: 42:88:e4:64:6d:53:56:29:e3:da:54:24:e0:3f:cc: 20:c0:bf:0e:eb:85:92:a6:0d:b6:e9:f3:92:0c:78: 8c:8e:db:b5:18:61:b6:06:4e:72:c3:5f:a9:d8:93: 73:0b:81:35:68:45:d1:fd:0f:ab:8d:0c:08:f2:db: 0c:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A9:E3:04:42:AE:66:8D:5C:8B:0C:A1:8E:91:32:06:FB:8A:A0:26:1E X509v3 Authority Key Identifier: keyid:93:67:7D:7C:B9:27:1C:E3:61:25:6E:98:33:CC:7B:14:FD:02:3E:BE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/k2d9fLknHONhJW6YM8x7FP0CPr4.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/a9c6da-8ea0-46b7-a1a6-99acb99ce754/1/qeMEQq5mjVyLDKGOkTIG-4qgJh4.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/a9c6da-8ea0-46b7-a1a6-99acb99ce754/1/k2d9fLknHONhJW6YM8x7FP0CPr4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 45.9.155.0/24 Signature Algorithm: sha256WithRSAEncryption 0a:ac:7f:54:87:06:bb:63:94:05:a3:00:db:e2:a8:66:70:d8: 8f:9d:b3:a1:50:81:d6:cc:58:88:84:45:9a:9a:30:72:3d:21: 25:48:e3:63:6d:6c:ac:2b:ca:6c:56:b2:e6:cf:84:cf:c1:ad: 1a:1a:5d:6e:2f:b1:94:e3:a5:a7:46:13:a8:ac:6d:3f:a2:8d: 9a:43:75:7a:df:7e:a5:65:2b:0d:e4:b6:5e:c0:69:40:fc:b6: 79:91:ce:30:7e:54:59:46:15:9c:d0:d9:ea:58:67:55:60:1b: 1f:c7:98:2f:e6:79:20:b5:e1:53:18:ce:3e:98:a4:56:6e:16: 5d:7a:88:b6:73:e1:a2:e0:54:a8:fe:bd:3f:14:c6:1d:ef:e8: de:7f:c4:4f:f4:50:0e:59:e8:8e:af:dc:61:48:a9:9b:ec:46: ac:71:de:8b:6e:c2:77:6c:63:ff:4e:d6:45:6a:15:a8:24:df: e8:eb:59:62:87:20:39:1b:4c:80:12:43:55:25:fb:d3:04:8e: 77:64:5e:12:ce:84:70:68:f9:67:20:e4:48:5d:33:e1:af:83: 8e:57:e6:dd:f3:c3:d4:4a:ce:cb:7a:88:f5:e7:5a:76:0c:0e: 1b:5f:6e:ee:06:c2:6e:00:9b:56:cb:09:fb:b9:c0:45:30:65: 38:2d:aa:e9 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt/FccXSN8EPwiyH117JzQ4MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDkzNjc3ZDdjYjkyNzFjZTM2MTI1NmU5ODMzY2M3YjE0ZmQw MjNlYmUwHhcNMjYwMTAyMTQyMTMyWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhhOWUzMDQ0MmFlNjY4ZDVjOGIwY2ExOGU5MTMyMDZmYjhhYTAyNjFlMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsA27AS0jF2baHgyQj7xUeGLDHhuT Sl08DcQHlz6Ns9ooJGgMP3O6aF7uq4pPCk/r57x9Q20Ddp02niOFtyPI4PZrTlbc fG+gMuxnKvm81puhFW0untBUsySZ5h9DUsfdHyeo8ZstLtOAAx7crUaDxbmoG76+ hBUt6r9dNWw03VI7JEUW5dmdrUOfc6eJAAofhb9cEKq0xdU8yY/zb8uqz8SxrmH3 57knQ1BgnXy1Y0oVPpUgWFvk0A/n7pHlv70QxOdCiORkbVNWKePaVCTgP8wgwL8O 64WSpg226fOSDHiMjtu1GGG2Bk5yw1+p2JNzC4E1aEXR/Q+rjQwI8tsMSQIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFKnjBEKuZo1ciwyhjpEyBvuKoCYeMB8GA1UdIwQY MBaAFJNnfXy5JxzjYSVumDPMexT9Aj6+MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvazJkOWZMa25IT05oSlc2WU04eDdGUDBDUHI0LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jOC9hOWM2ZGEtOGVhMC00NmI3LWExYTYt OTlhY2I5OWNlNzU0LzEvcWVNRVFxNW1qVnlMREtHT2tUSUctNHFnSmg0LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9jOC9hOWM2ZGEtOGVhMC00NmI3LWExYTYtOTlhY2I5OWNlNzU0 LzEvazJkOWZMa25IT05oSlc2WU04eDdGUDBDUHI0LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQALQmbMA0G CSqGSIb3DQEBCwUAA4IBAQAKrH9Uhwa7Y5QFowDb4qhmcNiPnbOhUIHWzFiIhEWa mjByPSElSONjbWysK8psVrLmz4TPwa0aGl1uL7GU46WnRhOorG0/oo2aQ3V6336l ZSsN5LZewGlA/LZ5kc4wflRZRhWc0NnqWGdVYBsfx5gv5nkgteFTGM4+mKRWbhZd eoi2c+Gi4FSo/r0/FMYd7+jef8RP9FAOWeiOr9xhSKmb7Eascd6LbsJ3bGP/TtZF ahWoJN/o61lihyA5G0yAEkNVJfvTBI53ZF4SzoRwaPlnIORIXTPhr4OOV+bd88PU Ss7Leoj151p2DA4bX27uBsJuAJtWywn7ucBFMGU4Larp -----END CERTIFICATE-----Generated at Mon Jan 19 23:22:08 2026 by rpki-client