This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d3/7fa943-9ea6-4068-b6ae-a4d413d7f89c/1/qtFDXfqFUBLJDQBHvKu-Ftisy3I.roa File: qtFDXfqFUBLJDQBHvKu-Ftisy3I.roa (raw, json) Hash identifier: qvGoNoCRQntmYEg+0c4U7acM5ZfQZI3DoYIhNNGSNp4= Subject key identifier: AA:D1:43:5D:FA:85:50:12:C9:0D:00:47:BC:AB:BE:16:D8:AC:CB:72 Certificate issuer: /CN=93ece780dfda43ab4a841727eb20d71fc76528bc Certificate serial: 019B7A5A9F8641EB30705B6D93E6CADFAA84 Authority key identifier: 93:EC:E7:80:DF:DA:43:AB:4A:84:17:27:EB:20:D7:1F:C7:65:28:BC Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/k-zngN_aQ6tKhBcn6yDXH8dlKLw.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d3/7fa943-9ea6-4068-b6ae-a4d413d7f89c/1/qtFDXfqFUBLJDQBHvKu-Ftisy3I.roa Signing time: Thu 01 Jan 2026 16:18:38 +0000 ROA not before: Thu 01 Jan 2026 16:18:38 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 214438 IP address blocks: 62.169.158.0/23 maxlen: 24 69.19.137.0/24 maxlen: 24 69.19.138.0/24 maxlen: 24 69.19.140.0/24 maxlen: 24 185.216.20.0/24 maxlen: 24 185.216.21.0/24 maxlen: 24 185.216.22.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d3/7fa943-9ea6-4068-b6ae-a4d413d7f89c/1/k-zngN_aQ6tKhBcn6yDXH8dlKLw.crl rsync://rpki.ripe.net/repository/DEFAULT/d3/7fa943-9ea6-4068-b6ae-a4d413d7f89c/1/k-zngN_aQ6tKhBcn6yDXH8dlKLw.mft rsync://rpki.ripe.net/repository/DEFAULT/k-zngN_aQ6tKhBcn6yDXH8dlKLw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 12 Jan 2026 07:52:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7a:5a:9f:86:41:eb:30:70:5b:6d:93:e6:ca:df:aa:84 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=93ece780dfda43ab4a841727eb20d71fc76528bc Validity Not Before: Jan 1 16:18:38 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=aad1435dfa855012c90d0047bcabbe16d8accb72 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:f7:98:51:7a:64:95:24:27:99:54:f7:d7:d7: c0:b9:b1:24:46:da:a5:84:62:4f:6a:ee:dd:43:fb: e9:92:9d:e8:66:f1:f7:c2:b1:8d:11:fe:8a:2b:79: 06:02:c7:b8:cb:b3:64:cf:59:6c:2d:38:65:d9:4b: cb:a6:db:81:7f:5f:a2:5b:cd:f4:6d:63:7f:c0:c9: 76:50:c8:05:b7:11:89:fe:e4:63:c6:df:a9:05:63: c8:cf:1d:99:90:3d:d2:dc:a5:57:a9:f6:d2:e8:9d: 01:e3:36:32:b2:d2:2b:d7:0f:4a:de:f5:54:ef:20: 7b:57:f1:ce:21:58:af:7a:b9:38:50:68:36:3e:73: 63:73:93:2a:ec:4f:79:17:ca:9d:26:e0:a3:57:92: 0e:11:85:e5:41:f4:d1:81:f8:e4:77:ee:86:52:4a: 8f:8c:1b:a5:15:08:41:84:4d:f6:9a:9c:93:10:4f: bc:94:89:c7:8d:f7:a8:15:e1:95:42:b8:4b:c8:cf: a4:3b:40:a0:0f:a5:ff:42:56:df:e1:d2:81:1a:90: b9:3e:5c:04:00:b3:2e:ea:4e:20:ba:06:1d:34:d7: e3:91:fb:33:b1:72:6c:b7:4e:b9:d3:71:0b:23:4f: 0d:24:51:c0:46:48:e5:d3:44:1d:31:e6:6f:f3:14: 00:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AA:D1:43:5D:FA:85:50:12:C9:0D:00:47:BC:AB:BE:16:D8:AC:CB:72 X509v3 Authority Key Identifier: keyid:93:EC:E7:80:DF:DA:43:AB:4A:84:17:27:EB:20:D7:1F:C7:65:28:BC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/k-zngN_aQ6tKhBcn6yDXH8dlKLw.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/7fa943-9ea6-4068-b6ae-a4d413d7f89c/1/qtFDXfqFUBLJDQBHvKu-Ftisy3I.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/7fa943-9ea6-4068-b6ae-a4d413d7f89c/1/k-zngN_aQ6tKhBcn6yDXH8dlKLw.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 62.169.158.0/23 69.19.137.0-69.19.138.255 69.19.140.0/24 185.216.20.0-185.216.22.255 Signature Algorithm: sha256WithRSAEncryption 95:d5:c4:c6:06:5e:3f:70:a0:98:15:3e:3c:11:c4:ce:fe:96: 5e:d9:7d:1e:ba:79:20:48:5f:a5:6e:56:1b:e6:d2:e3:b3:8e: 78:82:17:69:bc:46:96:b3:46:07:83:f4:73:0e:0e:95:58:23: 7e:2a:85:41:a6:16:9b:43:35:db:1b:64:7a:29:96:a8:66:92: 52:60:e9:15:10:18:a9:94:13:85:e5:ad:f3:b5:ef:17:ed:b3: 5a:b3:6f:6d:78:97:fd:a1:89:11:c1:0d:db:26:7c:84:63:5f: f2:2a:c4:8c:ea:ef:84:cf:d1:96:12:ed:7b:3f:fa:6d:6c:9e: d3:ec:07:18:e2:93:fc:4d:04:1a:eb:85:3d:fa:6f:36:ad:25: e5:f7:42:b7:05:2b:3f:a8:d9:71:78:cb:dc:d9:b5:7b:83:04: ce:f7:9f:a3:61:1c:7b:4c:9f:66:50:5a:43:41:80:1c:f5:11: fc:95:1c:f8:be:22:73:c3:25:f7:ae:9e:d9:6b:79:85:fb:d9: e8:c5:0c:a7:68:5a:8d:c0:16:da:7d:75:0e:d0:fe:c6:40:b3: 5e:7e:8c:fa:f7:87:03:28:31:43:09:2a:16:ed:2f:8f:f0:0c: 4b:bb:df:7b:15:a9:36:30:01:8e:26:5d:0d:f6:83:25:65:30: ef:d0:ae:86 -----BEGIN CERTIFICATE----- MIIFHzCCBAegAwIBAgISAZt6Wp+GQeswcFttk+bK36qEMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDkzZWNlNzgwZGZkYTQzYWI0YTg0MTcyN2ViMjBkNzFmYzc2 NTI4YmMwHhcNMjYwMTAxMTYxODM4WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhhYWQxNDM1ZGZhODU1MDEyYzkwZDAwNDdiY2FiYmUxNmQ4YWNjYjcyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAu/eYUXpklSQnmVT319fAubEkRtql hGJPau7dQ/vpkp3oZvH3wrGNEf6KK3kGAse4y7Nkz1lsLThl2UvLptuBf1+iW830 bWN/wMl2UMgFtxGJ/uRjxt+pBWPIzx2ZkD3S3KVXqfbS6J0B4zYystIr1w9K3vVU 7yB7V/HOIViverk4UGg2PnNjc5Mq7E95F8qdJuCjV5IOEYXlQfTRgfjkd+6GUkqP jBulFQhBhE32mpyTEE+8lInHjfeoFeGVQrhLyM+kO0CgD6X/Qlbf4dKBGpC5PlwE ALMu6k4gugYdNNfjkfszsXJst06503ELI08NJFHARkjl00QdMeZv8xQA1QIDAQAB o4ICKzCCAicwHQYDVR0OBBYEFKrRQ136hVASyQ0AR7yrvhbYrMtyMB8GA1UdIwQY MBaAFJPs54Df2kOrSoQXJ+sg1x/HZSi8MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvay16bmdOX2FRNnRLaEJjbjZ5RFhIOGRsS0x3LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kMy83ZmE5NDMtOWVhNi00MDY4LWI2YWUt YTRkNDEzZDdmODljLzEvcXRGRFhmcUZVQkxKRFFCSHZLdS1GdGlzeTNJLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kMy83ZmE5NDMtOWVhNi00MDY4LWI2YWUtYTRkNDEzZDdmODlj LzEvay16bmdOX2FRNnRLaEJjbjZ5RFhIOGRsS0x3LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMEEGCCsGAQUFBwEHAQH/BDIwMDAuBAIAATAoAwQBPqmeMAwD BABFE4kDBABFE4oDBABFE4wwDAMEArnYFAMEALnYFjANBgkqhkiG9w0BAQsFAAOC AQEAldXExgZeP3CgmBU+PBHEzv6WXtl9Hrp5IEhfpW5WG+bS47OOeIIXabxGlrNG B4P0cw4OlVgjfiqFQaYWm0M12xtkeimWqGaSUmDpFRAYqZQTheWt87XvF+2zWrNv bXiX/aGJEcEN2yZ8hGNf8irEjOrvhM/RlhLtez/6bWye0+wHGOKT/E0EGuuFPfpv Nq0l5fdCtwUrP6jZcXjL3Nm1e4MEzvefo2Ece0yfZlBaQ0GAHPUR/JUc+L4ic8Ml 966e2Wt5hfvZ6MUMp2hajcAW2n11DtD+xkCzXn6M+veHAygxQwkqFu0vj/AMS7vf exWpNjABjiZdDfaDJWUw79Cuhg== -----END CERTIFICATE-----Generated at Sun Jan 11 14:55:19 2026 by rpki-client