This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d3/9afd23-d280-495c-b252-f600317b1978/1/q3u9GktXoLgCZIQQoRw88D77rK0.roa File: q3u9GktXoLgCZIQQoRw88D77rK0.roa (raw, json) Hash identifier: Wq1luHTlsjej4HJm0sE4531JEh3otjUKEdcgSuym7L0= Subject key identifier: AB:7B:BD:1A:4B:57:A0:B8:02:64:84:10:A1:1C:3C:F0:3E:FB:AC:AD Certificate issuer: /CN=c07081a6f721a37a9e1d799315bb3ea2758b8877 Certificate serial: 019B7BA3A5C3FC2A9C4052B2CD518BB7DA86 Authority key identifier: C0:70:81:A6:F7:21:A3:7A:9E:1D:79:93:15:BB:3E:A2:75:8B:88:77 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/wHCBpvcho3qeHXmTFbs-onWLiHc.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d3/9afd23-d280-495c-b252-f600317b1978/1/q3u9GktXoLgCZIQQoRw88D77rK0.roa Signing time: Thu 01 Jan 2026 22:18:01 +0000 ROA not before: Thu 01 Jan 2026 22:18:01 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 209531 IP address blocks: 147.78.168.0/22 maxlen: 22 147.78.168.0/23 maxlen: 23 147.78.170.0/23 maxlen: 23 194.110.119.0/24 maxlen: 24 2a09:27c0::/29 maxlen: 29 2a09:27c0::/30 maxlen: 30 2a09:27c4::/30 maxlen: 30 2a14:5980::/29 maxlen: 29 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d3/9afd23-d280-495c-b252-f600317b1978/1/wHCBpvcho3qeHXmTFbs-onWLiHc.crl rsync://rpki.ripe.net/repository/DEFAULT/d3/9afd23-d280-495c-b252-f600317b1978/1/wHCBpvcho3qeHXmTFbs-onWLiHc.mft rsync://rpki.ripe.net/repository/DEFAULT/wHCBpvcho3qeHXmTFbs-onWLiHc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 21:05:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7b:a3:a5:c3:fc:2a:9c:40:52:b2:cd:51:8b:b7:da:86 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=c07081a6f721a37a9e1d799315bb3ea2758b8877 Validity Not Before: Jan 1 22:18:01 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=ab7bbd1a4b57a0b802648410a11c3cf03efbacad Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f7:b1:2c:58:5a:c6:52:ef:c2:fa:3d:82:a4:66: 7a:ec:db:18:85:25:c2:b5:e4:83:ad:82:cb:c3:56: 1a:8d:5c:92:81:2c:d8:e6:aa:57:d0:50:46:e0:de: c1:bb:03:32:08:c1:26:20:5e:18:d1:e7:80:cb:0c: 57:dd:be:e3:c0:94:0c:57:7d:a8:9b:b4:d1:a4:06: f5:61:59:58:d1:44:d0:ba:9e:9c:8b:56:60:f5:b8: ae:17:c2:12:b1:76:95:2d:c3:7d:ee:dd:91:d7:ff: 21:55:c1:64:29:73:ff:ae:40:04:e2:57:00:48:57: c5:20:19:42:f5:52:a6:9d:03:9c:c2:1e:56:a2:de: 7b:33:7c:83:75:8b:0a:11:0e:eb:05:a9:e7:6c:b4: 13:e3:0d:8b:ce:e6:4a:3e:45:88:46:4b:e1:fd:a9: e6:89:05:f5:59:49:06:cf:ed:e8:5a:bc:de:80:68: 46:e6:7a:a7:16:93:fa:aa:de:a1:7f:10:ac:f0:f6: 2b:67:9c:57:16:1a:01:dc:93:1d:f0:3e:82:64:70: d6:c1:74:d6:4b:13:cd:d7:b4:03:1a:b1:c2:58:c3: 84:36:e6:d7:c6:5b:e9:81:5a:91:6b:e6:91:c5:59: f5:99:d7:95:71:7a:98:31:93:22:48:7e:43:ab:16: 59:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AB:7B:BD:1A:4B:57:A0:B8:02:64:84:10:A1:1C:3C:F0:3E:FB:AC:AD X509v3 Authority Key Identifier: keyid:C0:70:81:A6:F7:21:A3:7A:9E:1D:79:93:15:BB:3E:A2:75:8B:88:77 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/wHCBpvcho3qeHXmTFbs-onWLiHc.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/9afd23-d280-495c-b252-f600317b1978/1/q3u9GktXoLgCZIQQoRw88D77rK0.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/9afd23-d280-495c-b252-f600317b1978/1/wHCBpvcho3qeHXmTFbs-onWLiHc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 147.78.168.0/22 194.110.119.0/24 IPv6: 2a09:27c0::/29 2a14:5980::/29 Signature Algorithm: sha256WithRSAEncryption 89:96:92:45:80:03:a5:8e:2b:d6:11:b8:01:c1:fa:fd:eb:db: ba:a0:ff:e0:a6:87:c7:29:76:94:6a:7a:a0:eb:2f:6a:10:aa: 48:da:bd:fa:76:cd:db:fa:e1:b0:a6:83:4d:17:87:99:a6:49: 61:50:e9:5f:a0:9a:e0:25:fe:49:35:d3:1b:36:8d:76:cd:28: 8e:74:ae:d7:1e:ee:35:e0:bb:77:76:48:54:7b:9c:3b:24:4f: 05:40:9c:ce:a9:91:68:61:b2:04:95:61:b1:9a:a7:5d:56:ad: 0a:bc:0e:ee:a2:0f:ef:3f:39:cd:57:7f:df:6a:64:c1:7a:22: 0e:a7:c6:69:98:84:e7:3c:f1:ba:b6:63:63:92:16:8a:39:7c: f1:fb:e2:f3:e6:74:e6:98:5e:7c:6b:d0:ca:16:6c:b4:81:f8: fe:c0:7d:ac:18:22:64:cf:76:9e:ed:b2:e2:e4:7b:39:21:44: 1f:87:53:21:31:a5:bc:c4:fc:0e:7d:b8:2d:b1:3c:b9:2b:77: d3:6f:10:58:73:39:e9:46:bc:30:7a:f5:73:cc:37:15:b2:21: 05:2d:18:a9:c8:64:d5:fa:77:67:17:a8:fa:36:31:c4:5e:c2: 27:86:6f:f0:cd:f1:6a:ad:2d:c6:d4:8d:9f:b3:94:94:a8:df: c7:f6:ed:11 -----BEGIN CERTIFICATE----- MIIFGTCCBAGgAwIBAgISAZt7o6XD/CqcQFKyzVGLt9qGMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGMwNzA4MWE2ZjcyMWEzN2E5ZTFkNzk5MzE1YmIzZWEyNzU4 Yjg4NzcwHhcNMjYwMTAxMjIxODAxWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhhYjdiYmQxYTRiNTdhMGI4MDI2NDg0MTBhMTFjM2NmMDNlZmJhY2FkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA97EsWFrGUu/C+j2CpGZ67NsYhSXC teSDrYLLw1YajVySgSzY5qpX0FBG4N7BuwMyCMEmIF4Y0eeAywxX3b7jwJQMV32o m7TRpAb1YVlY0UTQup6ci1Zg9biuF8ISsXaVLcN97t2R1/8hVcFkKXP/rkAE4lcA SFfFIBlC9VKmnQOcwh5Wot57M3yDdYsKEQ7rBannbLQT4w2LzuZKPkWIRkvh/anm iQX1WUkGz+3oWrzegGhG5nqnFpP6qt6hfxCs8PYrZ5xXFhoB3JMd8D6CZHDWwXTW SxPN17QDGrHCWMOENubXxlvpgVqRa+aRxVn1mdeVcXqYMZMiSH5DqxZZ2wIDAQAB o4ICJTCCAiEwHQYDVR0OBBYEFKt7vRpLV6C4AmSEEKEcPPA++6ytMB8GA1UdIwQY MBaAFMBwgab3IaN6nh15kxW7PqJ1i4h3MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvd0hDQnB2Y2hvM3FlSFhtVEZicy1vbldMaUhjLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kMy85YWZkMjMtZDI4MC00OTVjLWIyNTIt ZjYwMDMxN2IxOTc4LzEvcTN1OUdrdFhvTGdDWklRUW9Sdzg4RDc3ckswLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kMy85YWZkMjMtZDI4MC00OTVjLWIyNTItZjYwMDMxN2IxOTc4 LzEvd0hDQnB2Y2hvM3FlSFhtVEZicy1vbldMaUhjLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMDsGCCsGAQUFBwEHAQH/BCwwKjASBAIAATAMAwQCk06oAwQA wm53MBQEAgACMA4DBQMqCSfAAwUDKhRZgDANBgkqhkiG9w0BAQsFAAOCAQEAiZaS RYADpY4r1hG4AcH6/evbuqD/4KaHxyl2lGp6oOsvahCqSNq9+nbN2/rhsKaDTReH maZJYVDpX6Ca4CX+STXTGzaNds0ojnSu1x7uNeC7d3ZIVHucOyRPBUCczqmRaGGy BJVhsZqnXVatCrwO7qIP7z85zVd/32pkwXoiDqfGaZiE5zzxurZjY5IWijl88fvi 8+Z05phefGvQyhZstIH4/sB9rBgiZM92nu2y4uR7OSFEH4dTITGlvMT8Dn24LbE8 uSt3028QWHM56Ua8MHr1c8w3FbIhBS0Yqchk1fp3Zxeo+jYxxF7CJ4Zv8M3xaq0t xtSNn7OUlKjfx/btEQ== -----END CERTIFICATE-----Generated at Tue Feb 10 01:24:26 2026 by rpki-client