This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cb/3cc848-7861-4ce1-870d-84b67b470b04/1/QuCrR_bjoB_It2DUQvw8IUQygKk.roa File: QuCrR_bjoB_It2DUQvw8IUQygKk.roa (raw, json) Hash identifier: 7nVdaBiWxDIxDsQSWWl/FQU6Hd/TLJPf0vW3diO5ZKg= Subject key identifier: 42:E0:AB:47:F6:E3:A0:1F:C8:B7:60:D4:42:FC:3C:21:44:32:80:A9 Certificate issuer: /CN=ad367bc19f066996490a206674c8da8f5ed2cd0e Certificate serial: 019B7EA44750F2B5500C68DD4064FEB49EC9 Authority key identifier: AD:36:7B:C1:9F:06:69:96:49:0A:20:66:74:C8:DA:8F:5E:D2:CD:0E Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rTZ7wZ8GaZZJCiBmdMjaj17SzQ4.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cb/3cc848-7861-4ce1-870d-84b67b470b04/1/QuCrR_bjoB_It2DUQvw8IUQygKk.roa Signing time: Fri 02 Jan 2026 12:17:33 +0000 ROA not before: Fri 02 Jan 2026 12:17:33 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 56322 IP address blocks: 91.219.236.0/22 maxlen: 22 91.219.236.0/24 maxlen: 24 91.219.237.0/24 maxlen: 24 91.219.238.0/24 maxlen: 24 91.219.239.0/24 maxlen: 24 185.163.204.0/24 maxlen: 24 2a10:c800::/48 maxlen: 48 2a10:c800:1::/48 maxlen: 48 2a10:c800:400::/48 maxlen: 48 2a10:c800:401::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/cb/3cc848-7861-4ce1-870d-84b67b470b04/1/rTZ7wZ8GaZZJCiBmdMjaj17SzQ4.crl rsync://rpki.ripe.net/repository/DEFAULT/cb/3cc848-7861-4ce1-870d-84b67b470b04/1/rTZ7wZ8GaZZJCiBmdMjaj17SzQ4.mft rsync://rpki.ripe.net/repository/DEFAULT/rTZ7wZ8GaZZJCiBmdMjaj17SzQ4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 27 Jan 2026 01:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7e:a4:47:50:f2:b5:50:0c:68:dd:40:64:fe:b4:9e:c9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ad367bc19f066996490a206674c8da8f5ed2cd0e Validity Not Before: Jan 2 12:17:33 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=42e0ab47f6e3a01fc8b760d442fc3c21443280a9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:78:93:73:58:04:bb:51:81:77:a7:c5:64:a5: e3:16:b3:5f:40:38:28:b6:59:cd:a2:80:e6:97:43: e2:ce:f5:9b:e5:2d:0a:c3:a1:bc:18:a3:c9:fa:13: 5b:5f:3e:07:e1:d2:70:91:57:9f:ac:4a:59:d0:57: 15:ff:75:93:70:dd:f1:b6:74:68:a6:13:a0:49:03: 19:54:ce:9c:10:61:5c:84:f2:a5:bb:fc:13:f5:44: 2d:88:46:4e:1f:97:2b:77:be:b3:80:f8:9c:47:4c: 96:f6:49:04:3d:92:07:5d:a2:e2:a5:46:9d:b3:ca: b6:81:8d:cb:88:3c:54:74:44:06:c7:54:1c:a2:a7: 4f:ec:a5:a1:58:2e:cf:82:bb:86:c3:4c:08:a1:fc: 9d:ce:c6:5b:cd:dc:a2:a9:7c:dc:6a:48:7b:0c:87: c7:c7:4f:c7:cb:a3:aa:e9:01:7c:52:a2:87:1a:1f: 90:cf:69:22:dd:01:04:61:a7:05:12:41:bf:ae:94: 96:2d:4e:ea:6c:ab:b8:ca:75:f3:91:fa:28:c1:21: 3b:08:c8:be:a6:ef:47:51:97:46:b4:26:06:94:22: 85:86:6c:1c:29:28:77:ec:55:71:f3:a2:0c:08:18: b9:84:2a:7a:57:8f:56:1b:5f:e3:8b:92:ba:1f:e6: bc:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 42:E0:AB:47:F6:E3:A0:1F:C8:B7:60:D4:42:FC:3C:21:44:32:80:A9 X509v3 Authority Key Identifier: keyid:AD:36:7B:C1:9F:06:69:96:49:0A:20:66:74:C8:DA:8F:5E:D2:CD:0E X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rTZ7wZ8GaZZJCiBmdMjaj17SzQ4.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cb/3cc848-7861-4ce1-870d-84b67b470b04/1/QuCrR_bjoB_It2DUQvw8IUQygKk.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/cb/3cc848-7861-4ce1-870d-84b67b470b04/1/rTZ7wZ8GaZZJCiBmdMjaj17SzQ4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 91.219.236.0/22 185.163.204.0/24 IPv6: 2a10:c800::/47 2a10:c800:400::/47 Signature Algorithm: sha256WithRSAEncryption 2e:05:7e:4f:11:7a:9b:5b:70:4f:29:c7:3b:1d:a2:4b:df:bf: fe:40:f1:1d:d9:87:0c:69:bc:2f:07:bb:46:f7:fe:e2:85:fe: 90:8c:55:3c:fc:16:02:dc:08:12:a1:9f:fa:01:2f:ca:50:61: b4:7a:8f:4f:b2:7f:3d:64:22:70:6d:59:5a:0c:fb:71:52:27: a0:8f:f6:d4:6e:56:23:06:85:34:31:47:43:b7:d1:6e:b4:4b: 60:7e:10:61:f6:fa:e4:77:29:b2:bf:35:19:81:03:33:06:76: 77:22:49:fb:46:1f:1d:6a:9d:d1:b3:44:b9:a9:37:3a:04:5a: bd:44:43:20:0b:0f:db:8d:b1:35:e4:c7:ac:99:77:b3:d6:56: 32:13:1b:3b:a6:40:c3:51:07:c9:60:b7:af:b5:fe:d5:fa:f0: b1:9c:25:63:a6:76:c3:5b:71:50:35:70:92:4c:0e:f3:97:f0: 8f:03:2d:4d:f2:62:3f:ea:a8:6e:dd:d0:25:ac:d0:a7:24:37: 2c:e2:15:22:ec:5d:1e:9c:cd:39:4e:19:e0:d3:e1:d9:a8:ec: 08:6b:6d:78:fc:9a:04:a7:f3:6d:c3:b6:d4:63:b5:e8:20:2e: e0:fd:0d:f9:08:40:f6:31:91:8b:ae:11:00:bd:f7:aa:d0:7c: 8c:a9:f1:da -----BEGIN CERTIFICATE----- MIIFHTCCBAWgAwIBAgISAZt+pEdQ8rVQDGjdQGT+tJ7JMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGFkMzY3YmMxOWYwNjY5OTY0OTBhMjA2Njc0YzhkYThmNWVk MmNkMGUwHhcNMjYwMTAyMTIxNzMzWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg0MmUwYWI0N2Y2ZTNhMDFmYzhiNzYwZDQ0MmZjM2MyMTQ0MzI4MGE5MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAn3iTc1gEu1GBd6fFZKXjFrNfQDgo tlnNooDml0PizvWb5S0Kw6G8GKPJ+hNbXz4H4dJwkVefrEpZ0FcV/3WTcN3xtnRo phOgSQMZVM6cEGFchPKlu/wT9UQtiEZOH5crd76zgPicR0yW9kkEPZIHXaLipUad s8q2gY3LiDxUdEQGx1QcoqdP7KWhWC7PgruGw0wIofydzsZbzdyiqXzcakh7DIfH x0/Hy6Oq6QF8UqKHGh+Qz2ki3QEEYacFEkG/rpSWLU7qbKu4ynXzkfoowSE7CMi+ pu9HUZdGtCYGlCKFhmwcKSh37FVx86IMCBi5hCp6V49WG1/ji5K6H+a8gwIDAQAB o4ICKTCCAiUwHQYDVR0OBBYEFELgq0f246AfyLdg1EL8PCFEMoCpMB8GA1UdIwQY MBaAFK02e8GfBmmWSQogZnTI2o9e0s0OMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvclRaN3daOEdhWlpKQ2lCbWRNamFqMTdTelE0LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jYi8zY2M4NDgtNzg2MS00Y2UxLTg3MGQt ODRiNjdiNDcwYjA0LzEvUXVDclJfYmpvQl9JdDJEVVF2dzhJVVF5Z0trLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9jYi8zY2M4NDgtNzg2MS00Y2UxLTg3MGQtODRiNjdiNDcwYjA0 LzEvclRaN3daOEdhWlpKQ2lCbWRNamFqMTdTelE0LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMD8GCCsGAQUFBwEHAQH/BDAwLjASBAIAATAMAwQCW9vsAwQA uaPMMBgEAgACMBIDBwEqEMgAAAADBwEqEMgABAAwDQYJKoZIhvcNAQELBQADggEB AC4Ffk8ReptbcE8pxzsdokvfv/5A8R3ZhwxpvC8Hu0b3/uKF/pCMVTz8FgLcCBKh n/oBL8pQYbR6j0+yfz1kInBtWVoM+3FSJ6CP9tRuViMGhTQxR0O30W60S2B+EGH2 +uR3KbK/NRmBAzMGdnciSftGHx1qndGzRLmpNzoEWr1EQyALD9uNsTXkx6yZd7PW VjITGzumQMNRB8lgt6+1/tX68LGcJWOmdsNbcVA1cJJMDvOX8I8DLU3yYj/qqG7d 0CWs0KckNyziFSLsXR6czTlOGeDT4dmo7AhrbXj8mgSn823DttRjteggLuD9DfkI QPYxkYuuEQC996rQfIyp8do= -----END CERTIFICATE-----Generated at Mon Jan 26 09:23:02 2026 by rpki-client