This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/492590-a02f-443e-aaa3-feac26eaecc2/1/QWDhAKxZ04S0w51oZv3dyXbCt5Y.roa File: QWDhAKxZ04S0w51oZv3dyXbCt5Y.roa (raw, json) Hash identifier: kZ4aE1I5q2jZn5blIZqO0XQU7apbo3oec9o2KU1za/U= Subject key identifier: 41:60:E1:00:AC:59:D3:84:B4:C3:9D:68:66:FD:DD:C9:76:C2:B7:96 Certificate issuer: /CN=6c8fd1a8ae5996c1e5692c1a8c42bfe9c3ba5745 Certificate serial: 019B797E26C4940C9124E860088FE1E2D39E Authority key identifier: 6C:8F:D1:A8:AE:59:96:C1:E5:69:2C:1A:8C:42:BF:E9:C3:BA:57:45 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bI_RqK5ZlsHlaSwajEK_6cO6V0U.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/492590-a02f-443e-aaa3-feac26eaecc2/1/QWDhAKxZ04S0w51oZv3dyXbCt5Y.roa Signing time: Thu 01 Jan 2026 12:17:49 +0000 ROA not before: Thu 01 Jan 2026 12:17:49 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 31898 IP address blocks: 185.238.241.0/24 maxlen: 32 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d0/492590-a02f-443e-aaa3-feac26eaecc2/1/bI_RqK5ZlsHlaSwajEK_6cO6V0U.crl rsync://rpki.ripe.net/repository/DEFAULT/d0/492590-a02f-443e-aaa3-feac26eaecc2/1/bI_RqK5ZlsHlaSwajEK_6cO6V0U.mft rsync://rpki.ripe.net/repository/DEFAULT/bI_RqK5ZlsHlaSwajEK_6cO6V0U.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 11 Jan 2026 12:01:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:79:7e:26:c4:94:0c:91:24:e8:60:08:8f:e1:e2:d3:9e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6c8fd1a8ae5996c1e5692c1a8c42bfe9c3ba5745 Validity Not Before: Jan 1 12:17:49 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=4160e100ac59d384b4c39d6866fdddc976c2b796 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:96:69:dd:dc:45:7d:09:20:8a:cb:0c:24:55: 0d:75:0a:29:03:d9:d7:7e:db:e6:17:d9:8b:fd:19: f9:b5:c2:31:07:e7:7a:7e:de:38:45:92:3b:a2:9f: d1:a6:cf:39:5e:1b:34:85:a3:b4:fb:39:7a:92:f8: 5a:b1:86:5f:ac:22:99:48:c2:9e:36:c3:69:a6:11: bd:a4:de:4b:d7:01:bd:76:d3:9b:e3:fb:c7:27:52: 38:df:20:c3:29:4e:a0:64:b8:73:49:88:00:36:f9: da:9a:7b:61:aa:69:04:d2:49:d9:49:51:33:5e:61: 46:6f:43:4c:bb:65:71:f6:b4:fb:53:9d:ae:e0:a3: 01:a7:eb:ad:c8:ea:fc:9a:67:19:ca:5f:90:5a:7b: fc:7a:74:d0:09:9c:a6:d4:fb:83:34:d9:76:9e:20: ab:0a:8a:18:fe:4b:2d:01:a4:57:04:29:3b:10:bc: 26:cd:9e:cb:d4:4e:49:3d:57:ee:2e:c4:5b:34:fc: e6:6c:50:7e:97:5d:23:79:84:85:ad:c8:db:69:14: 60:da:1a:f4:82:26:4e:ee:c7:2d:23:cc:81:d3:ac: cc:74:ef:fb:36:c5:13:bb:93:3e:ec:c5:f6:07:b6: aa:79:36:e3:a2:aa:c0:42:5d:61:98:34:51:7c:35: 90:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 41:60:E1:00:AC:59:D3:84:B4:C3:9D:68:66:FD:DD:C9:76:C2:B7:96 X509v3 Authority Key Identifier: keyid:6C:8F:D1:A8:AE:59:96:C1:E5:69:2C:1A:8C:42:BF:E9:C3:BA:57:45 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bI_RqK5ZlsHlaSwajEK_6cO6V0U.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/492590-a02f-443e-aaa3-feac26eaecc2/1/QWDhAKxZ04S0w51oZv3dyXbCt5Y.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/492590-a02f-443e-aaa3-feac26eaecc2/1/bI_RqK5ZlsHlaSwajEK_6cO6V0U.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.238.241.0/24 Signature Algorithm: sha256WithRSAEncryption 00:47:d7:6c:eb:1c:86:26:f7:e2:5a:3f:53:18:b2:ed:64:da: fd:7e:35:a8:23:d2:00:ca:52:dc:c1:aa:40:98:20:26:ed:cc: 22:5e:66:9b:60:56:93:5b:fd:f9:ee:84:a4:a7:1c:99:ad:95: 42:5e:c9:f8:6f:48:9a:0b:1a:3c:50:72:cf:aa:e9:f3:aa:bd: 31:74:1e:ec:a0:ce:c0:62:45:22:10:a4:e5:20:27:6e:02:bc: e8:72:48:45:6b:08:61:e6:26:7d:c7:fa:6b:04:30:9c:8d:cb: b8:02:44:d5:aa:1b:3a:56:04:8f:cc:79:9d:f3:20:87:b9:cc: 45:cf:1a:e7:c0:2e:35:9f:4a:8f:28:1b:c5:44:bb:8f:5b:e1: 07:92:4b:ce:5a:3a:df:77:96:80:57:24:a7:ef:de:c8:b3:7d: a4:84:35:c8:1e:ac:2d:16:02:70:c3:fa:52:6e:a6:fe:92:44: 89:69:bd:7e:a6:b0:3a:b2:22:69:27:c3:65:bf:8c:2b:91:75: 74:20:b5:a2:04:5f:31:70:50:37:d3:bf:8d:cf:08:b5:21:28: 31:c2:78:c5:f2:3d:17:2b:48:f9:a3:8b:bd:0c:ee:d5:08:71: 62:87:01:fb:68:98:d8:4e:98:be:ab:fa:4c:d4:d5:92:37:af: 53:7a:81:3e -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt5fibElAyRJOhgCI/h4tOeMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDZjOGZkMWE4YWU1OTk2YzFlNTY5MmMxYThjNDJiZmU5YzNi YTU3NDUwHhcNMjYwMTAxMTIxNzQ5WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg0MTYwZTEwMGFjNTlkMzg0YjRjMzlkNjg2NmZkZGRjOTc2YzJiNzk2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0JZp3dxFfQkgissMJFUNdQopA9nX ftvmF9mL/Rn5tcIxB+d6ft44RZI7op/Rps85Xhs0haO0+zl6kvhasYZfrCKZSMKe NsNpphG9pN5L1wG9dtOb4/vHJ1I43yDDKU6gZLhzSYgANvnamnthqmkE0knZSVEz XmFGb0NMu2Vx9rT7U52u4KMBp+utyOr8mmcZyl+QWnv8enTQCZym1PuDNNl2niCr CooY/kstAaRXBCk7ELwmzZ7L1E5JPVfuLsRbNPzmbFB+l10jeYSFrcjbaRRg2hr0 giZO7sctI8yB06zMdO/7NsUTu5M+7MX2B7aqeTbjoqrAQl1hmDRRfDWQ3QIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFEFg4QCsWdOEtMOdaGb93cl2wreWMB8GA1UdIwQY MBaAFGyP0aiuWZbB5WksGoxCv+nDuldFMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvYklfUnFLNVpsc0hsYVN3YWpFS182Y082VjBVLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kMC80OTI1OTAtYTAyZi00NDNlLWFhYTMt ZmVhYzI2ZWFlY2MyLzEvUVdEaEFLeFowNFMwdzUxb1p2M2R5WGJDdDVZLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kMC80OTI1OTAtYTAyZi00NDNlLWFhYTMtZmVhYzI2ZWFlY2My LzEvYklfUnFLNVpsc0hsYVN3YWpFS182Y082VjBVLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAue7xMA0G CSqGSIb3DQEBCwUAA4IBAQAAR9ds6xyGJvfiWj9TGLLtZNr9fjWoI9IAylLcwapA mCAm7cwiXmabYFaTW/357oSkpxyZrZVCXsn4b0iaCxo8UHLPqunzqr0xdB7soM7A YkUiEKTlICduArzockhFawhh5iZ9x/prBDCcjcu4AkTVqhs6VgSPzHmd8yCHucxF zxrnwC41n0qPKBvFRLuPW+EHkkvOWjrfd5aAVySn797Is32khDXIHqwtFgJww/pS bqb+kkSJab1+prA6siJpJ8Nlv4wrkXV0ILWiBF8xcFA307+Nzwi1ISgxwnjF8j0X K0j5o4u9DO7VCHFihwH7aJjYTpi+q/pM1NWSN69TeoE+ -----END CERTIFICATE-----Generated at Sat Jan 10 20:49:50 2026 by rpki-client