This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cb/b8219e-346a-43b9-b823-938a73b6f7c2/1/CQEv-b3iodOi-uISHBHPc-tgjWM.roa File: CQEv-b3iodOi-uISHBHPc-tgjWM.roa (raw, json) Hash identifier: JlM8b1SZjaRGm+HCIhtTTaWtpKsBolYmdJxakSZag0A= Subject key identifier: 09:01:2F:F9:BD:E2:A1:D3:A2:FA:E2:12:1C:11:CF:73:EB:60:8D:63 Certificate issuer: /CN=85b4f875e99d35b14204693eee11ca9b6aafe4ae Certificate serial: 019C3F1650E431079E4B495243C5ECA81941 Authority key identifier: 85:B4:F8:75:E9:9D:35:B1:42:04:69:3E:EE:11:CA:9B:6A:AF:E4:AE Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hbT4demdNbFCBGk-7hHKm2qv5K4.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cb/b8219e-346a-43b9-b823-938a73b6f7c2/1/CQEv-b3iodOi-uISHBHPc-tgjWM.roa Signing time: Sun 08 Feb 2026 21:09:13 +0000 ROA not before: Sun 08 Feb 2026 21:09:13 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 208226 IP address blocks: 5.42.158.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/cb/b8219e-346a-43b9-b823-938a73b6f7c2/1/hbT4demdNbFCBGk-7hHKm2qv5K4.crl rsync://rpki.ripe.net/repository/DEFAULT/cb/b8219e-346a-43b9-b823-938a73b6f7c2/1/hbT4demdNbFCBGk-7hHKm2qv5K4.mft rsync://rpki.ripe.net/repository/DEFAULT/hbT4demdNbFCBGk-7hHKm2qv5K4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:3f:16:50:e4:31:07:9e:4b:49:52:43:c5:ec:a8:19:41 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=85b4f875e99d35b14204693eee11ca9b6aafe4ae Validity Not Before: Feb 8 21:09:13 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=09012ff9bde2a1d3a2fae2121c11cf73eb608d63 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:40:3b:8c:ca:eb:32:13:75:82:e9:72:31:03: d2:d0:67:77:31:59:bd:28:81:1c:3f:01:5d:56:a7: 47:c5:79:6b:9b:60:21:ad:d3:b1:ea:44:60:3c:e2: 58:09:fa:fa:43:d7:42:ab:39:2a:da:f4:6a:c2:ff: b0:ef:84:15:94:58:76:6c:12:b8:e5:42:6f:d7:cc: 02:28:4a:d1:bd:8d:f7:8d:e3:c4:f7:41:ef:db:0a: 8f:56:2b:77:da:8c:5f:ca:19:1a:a4:a5:76:de:f6: 0e:06:1d:ed:d5:5b:65:ff:b1:73:a6:5d:74:94:bb: 4a:6f:8a:4d:64:d2:57:5f:b7:ec:86:3a:c7:af:39: 10:9b:5b:17:2f:09:1d:4b:43:ae:a1:c4:a0:52:a6: 4d:83:00:77:34:26:9c:7e:6c:53:a2:b8:df:4f:10: 26:9d:9c:d7:ff:0e:84:3b:72:0b:92:be:93:f5:dc: 2e:0a:52:e7:fb:89:ea:8f:cb:5b:36:cd:27:e1:0e: 16:8e:6b:90:2d:54:54:05:97:c6:6b:1d:3b:2e:76: ee:e9:e1:ef:27:0a:48:a9:83:e8:8b:45:ab:5b:c4: ce:71:a2:4e:8e:41:12:0c:39:c0:e5:13:17:ab:2f: 7c:e0:84:91:ac:03:57:38:11:a1:a9:5b:eb:eb:78: ba:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 09:01:2F:F9:BD:E2:A1:D3:A2:FA:E2:12:1C:11:CF:73:EB:60:8D:63 X509v3 Authority Key Identifier: keyid:85:B4:F8:75:E9:9D:35:B1:42:04:69:3E:EE:11:CA:9B:6A:AF:E4:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hbT4demdNbFCBGk-7hHKm2qv5K4.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cb/b8219e-346a-43b9-b823-938a73b6f7c2/1/CQEv-b3iodOi-uISHBHPc-tgjWM.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/cb/b8219e-346a-43b9-b823-938a73b6f7c2/1/hbT4demdNbFCBGk-7hHKm2qv5K4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 5.42.158.0/24 Signature Algorithm: sha256WithRSAEncryption 01:1c:ae:81:d4:e1:80:04:88:a4:db:6f:1f:6d:5e:6f:e1:84: cd:f5:c1:8b:78:15:67:52:a1:f0:47:0e:14:9a:82:17:ed:51: f8:73:59:f9:e7:76:89:b1:20:b6:33:e6:28:ad:2b:72:66:08: 56:58:c2:0a:e5:2a:9e:cd:50:c3:d1:0a:5c:a1:7c:5c:16:f0: a9:dc:c2:3a:f3:ca:37:9a:47:3a:f7:11:25:73:28:9b:f1:ea: 48:50:9d:ee:e4:7f:89:55:92:02:88:8b:18:26:e5:5d:84:ea: 6f:c0:98:82:29:53:06:48:4b:ed:85:64:e9:59:a9:d3:7e:29: 3a:e2:59:b9:ca:cb:09:1b:7e:d1:c8:65:ff:4b:27:1a:e2:49: 6c:83:87:0a:91:6b:d3:46:3e:7a:30:60:79:9b:a4:5d:31:5e: e4:42:b1:d4:cd:98:e1:57:f9:8c:a2:c1:1d:47:89:fd:bc:fb: c9:88:1a:e4:bb:b6:03:e1:94:35:1c:70:40:6c:f3:80:9c:fc: c6:db:cd:3a:76:9b:ba:6f:f2:e8:13:90:c7:d7:c4:f0:00:65: 1f:88:bd:9e:8d:64:b3:bd:84:4e:34:0f:be:88:c1:44:62:5f: a4:a2:dc:12:0a:a3:e0:e1:2c:7c:08:b3:59:5e:ba:23:26:ad: cf:77:b7:df -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZw/FlDkMQeeS0lSQ8XsqBlBMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDg1YjRmODc1ZTk5ZDM1YjE0MjA0NjkzZWVlMTFjYTliNmFh ZmU0YWUwHhcNMjYwMjA4MjEwOTEzWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygwOTAxMmZmOWJkZTJhMWQzYTJmYWUyMTIxYzExY2Y3M2ViNjA4ZDYzMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwEA7jMrrMhN1gulyMQPS0Gd3MVm9 KIEcPwFdVqdHxXlrm2AhrdOx6kRgPOJYCfr6Q9dCqzkq2vRqwv+w74QVlFh2bBK4 5UJv18wCKErRvY33jePE90Hv2wqPVit32oxfyhkapKV23vYOBh3t1Vtl/7Fzpl10 lLtKb4pNZNJXX7fshjrHrzkQm1sXLwkdS0OuocSgUqZNgwB3NCacfmxTorjfTxAm nZzX/w6EO3ILkr6T9dwuClLn+4nqj8tbNs0n4Q4WjmuQLVRUBZfGax07Lnbu6eHv JwpIqYPoi0WrW8TOcaJOjkESDDnA5RMXqy984ISRrANXOBGhqVvr63i6mQIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFAkBL/m94qHTovriEhwRz3PrYI1jMB8GA1UdIwQY MBaAFIW0+HXpnTWxQgRpPu4Ryptqr+SuMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvaGJUNGRlbWROYkZDQkdrLTdoSEttMnF2NUs0LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jYi9iODIxOWUtMzQ2YS00M2I5LWI4MjMt OTM4YTczYjZmN2MyLzEvQ1FFdi1iM2lvZE9pLXVJU0hCSFBjLXRnaldNLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9jYi9iODIxOWUtMzQ2YS00M2I5LWI4MjMtOTM4YTczYjZmN2My LzEvaGJUNGRlbWROYkZDQkdrLTdoSEttMnF2NUs0LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQABSqeMA0G CSqGSIb3DQEBCwUAA4IBAQABHK6B1OGABIik228fbV5v4YTN9cGLeBVnUqHwRw4U moIX7VH4c1n553aJsSC2M+YorStyZghWWMIK5SqezVDD0QpcoXxcFvCp3MI688o3 mkc69xElcyib8epIUJ3u5H+JVZICiIsYJuVdhOpvwJiCKVMGSEvthWTpWanTfik6 4lm5yssJG37RyGX/Syca4klsg4cKkWvTRj56MGB5m6RdMV7kQrHUzZjhV/mMosEd R4n9vPvJiBrku7YD4ZQ1HHBAbPOAnPzG2806dpu6b/LoE5DH18TwAGUfiL2ejWSz vYRONA++iMFEYl+kotwSCqPg4Sx8CLNZXrojJq3Pd7ff -----END CERTIFICATE-----Generated at Mon Feb 9 23:54:44 2026 by rpki-client