This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e9/2a2164-1656-44cb-9294-0b1dec375554/1/_QeltRwVrmIgCr-eo6LxBUwzpXY.roa File: _QeltRwVrmIgCr-eo6LxBUwzpXY.roa (raw, json) Hash identifier: q8bq7ENqcKxVLtJa6stK4wblRlHycCi1u+gxzHveo3E= Subject key identifier: FD:07:A5:B5:1C:15:AE:62:20:0A:BF:9E:A3:A2:F1:05:4C:33:A5:76 Certificate issuer: /CN=75c88b1c41fbeb5dabef743c57acdffc4fa74699 Certificate serial: 019B7EA7551CAE390C8A4F7BE0ABF68BD3C7 Authority key identifier: 75:C8:8B:1C:41:FB:EB:5D:AB:EF:74:3C:57:AC:DF:FC:4F:A7:46:99 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dciLHEH7612r73Q8V6zf_E-nRpk.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e9/2a2164-1656-44cb-9294-0b1dec375554/1/_QeltRwVrmIgCr-eo6LxBUwzpXY.roa Signing time: Fri 02 Jan 2026 12:20:54 +0000 ROA not before: Fri 02 Jan 2026 12:20:54 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 211694 IP address blocks: 185.244.237.0/24 maxlen: 24 2a10:a240::/29 maxlen: 29 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e9/2a2164-1656-44cb-9294-0b1dec375554/1/dciLHEH7612r73Q8V6zf_E-nRpk.crl rsync://rpki.ripe.net/repository/DEFAULT/e9/2a2164-1656-44cb-9294-0b1dec375554/1/dciLHEH7612r73Q8V6zf_E-nRpk.mft rsync://rpki.ripe.net/repository/DEFAULT/dciLHEH7612r73Q8V6zf_E-nRpk.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7e:a7:55:1c:ae:39:0c:8a:4f:7b:e0:ab:f6:8b:d3:c7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=75c88b1c41fbeb5dabef743c57acdffc4fa74699 Validity Not Before: Jan 2 12:20:54 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=fd07a5b51c15ae62200abf9ea3a2f1054c33a576 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:c3:da:9b:dc:ec:f6:f0:f8:45:6f:76:23:9f: d4:a2:c5:2e:78:a6:08:88:5a:c5:5d:ee:d4:95:6a: fb:e8:b9:fa:62:39:ac:5b:5e:3e:54:32:6b:d6:e1: 4e:f1:af:34:a3:a8:39:13:c3:0f:ac:1e:2d:7a:2a: 9f:ce:1c:da:51:6b:0f:5b:5f:fd:bc:54:86:be:7a: 90:e1:77:d2:5d:73:c6:76:8b:aa:e7:90:37:64:90: a8:44:a7:ae:c7:20:4b:e5:23:95:26:9e:67:f6:52: e8:3f:a3:ff:2a:05:af:b8:28:18:7a:3b:5c:53:d0: cb:6b:f9:be:2d:54:24:22:98:88:76:df:65:10:da: d7:3f:42:40:4e:77:20:cc:7f:a3:a2:81:cc:42:cd: f3:e0:1e:04:4e:03:04:ac:67:0a:97:0c:0b:f3:1a: 21:f8:cd:6a:92:56:27:ab:bf:b5:91:eb:bf:c2:d7: e4:fb:bc:63:67:ca:1e:cb:8d:64:5e:b4:2d:11:52: 4e:22:ce:8a:85:79:7b:77:0f:7d:ba:49:39:a8:9f: d7:00:3c:53:d6:6e:77:9c:17:46:65:29:ec:10:15: 2f:e6:63:46:69:db:f7:75:f1:ee:cc:9b:1b:f3:ab: 5f:cd:c9:94:51:6d:90:8f:ed:3d:30:55:74:c2:62: 46:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FD:07:A5:B5:1C:15:AE:62:20:0A:BF:9E:A3:A2:F1:05:4C:33:A5:76 X509v3 Authority Key Identifier: keyid:75:C8:8B:1C:41:FB:EB:5D:AB:EF:74:3C:57:AC:DF:FC:4F:A7:46:99 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dciLHEH7612r73Q8V6zf_E-nRpk.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e9/2a2164-1656-44cb-9294-0b1dec375554/1/_QeltRwVrmIgCr-eo6LxBUwzpXY.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/e9/2a2164-1656-44cb-9294-0b1dec375554/1/dciLHEH7612r73Q8V6zf_E-nRpk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.244.237.0/24 IPv6: 2a10:a240::/29 Signature Algorithm: sha256WithRSAEncryption 99:7a:03:2f:ac:7c:d1:63:db:c2:65:2a:87:e4:6c:8b:d1:bc: 3c:18:9d:d6:3c:56:af:0f:be:be:b4:68:89:cf:98:6d:da:89: 47:5f:53:a4:b7:3f:b7:04:73:de:fa:53:d3:5a:b9:65:10:40: 96:37:82:2c:0b:0d:8f:d7:e6:ab:9c:65:93:fd:06:af:d6:3c: fb:6a:e0:77:02:eb:21:ba:ad:62:b0:de:82:56:1e:eb:87:03: f0:3e:87:14:4f:8b:16:c3:14:28:a8:6f:3b:3a:37:af:b9:35: 7e:77:5b:4f:68:78:9d:ff:66:8f:a9:09:60:6c:64:df:b9:16: bf:6f:de:4c:1d:cc:b4:14:1c:a1:43:71:c4:71:aa:e6:6a:e4: 31:fc:f1:3e:9f:4d:eb:ba:b4:ff:16:be:e0:21:49:dd:c7:21: 28:40:66:f6:06:29:c0:2c:3c:41:86:bd:85:4a:0b:88:fc:4b: 60:ae:08:b5:f7:ea:cf:af:8a:d7:1d:70:71:2c:ef:1a:8b:d2: 5a:f4:d3:bf:27:7e:d0:92:94:8b:93:03:59:47:d5:80:01:c6: d7:8d:37:20:14:25:49:97:aa:a3:16:8b:9f:2a:c7:f7:1b:ff: 4f:12:c4:b8:57:0a:ba:23:b2:de:25:6e:ba:91:f8:e9:be:dc: 1a:c8:2a:5d -----BEGIN CERTIFICATE----- MIIFDDCCA/SgAwIBAgISAZt+p1UcrjkMik974Kv2i9PHMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDc1Yzg4YjFjNDFmYmViNWRhYmVmNzQzYzU3YWNkZmZjNGZh NzQ2OTkwHhcNMjYwMTAyMTIyMDU0WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhmZDA3YTViNTFjMTVhZTYyMjAwYWJmOWVhM2EyZjEwNTRjMzNhNTc2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwsPam9zs9vD4RW92I5/UosUueKYI iFrFXe7UlWr76Ln6YjmsW14+VDJr1uFO8a80o6g5E8MPrB4teiqfzhzaUWsPW1/9 vFSGvnqQ4XfSXXPGdouq55A3ZJCoRKeuxyBL5SOVJp5n9lLoP6P/KgWvuCgYejtc U9DLa/m+LVQkIpiIdt9lENrXP0JATncgzH+jooHMQs3z4B4ETgMErGcKlwwL8xoh +M1qklYnq7+1keu/wtfk+7xjZ8oey41kXrQtEVJOIs6KhXl7dw99ukk5qJ/XADxT 1m53nBdGZSnsEBUv5mNGadv3dfHuzJsb86tfzcmUUW2Qj+09MFV0wmJGzQIDAQAB o4ICGDCCAhQwHQYDVR0OBBYEFP0HpbUcFa5iIAq/nqOi8QVMM6V2MB8GA1UdIwQY MBaAFHXIixxB++tdq+90PFes3/xPp0aZMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvZGNpTEhFSDc2MTJyNzNROFY2emZfRS1uUnBrLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lOS8yYTIxNjQtMTY1Ni00NGNiLTkyOTQt MGIxZGVjMzc1NTU0LzEvX1FlbHRSd1ZybUlnQ3ItZW82THhCVXd6cFhZLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9lOS8yYTIxNjQtMTY1Ni00NGNiLTkyOTQtMGIxZGVjMzc1NTU0 LzEvZGNpTEhFSDc2MTJyNzNROFY2emZfRS1uUnBrLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMC4GCCsGAQUFBwEHAQH/BB8wHTAMBAIAATAGAwQAufTtMA0E AgACMAcDBQMqEKJAMA0GCSqGSIb3DQEBCwUAA4IBAQCZegMvrHzRY9vCZSqH5GyL 0bw8GJ3WPFavD76+tGiJz5ht2olHX1Oktz+3BHPe+lPTWrllEECWN4IsCw2P1+ar nGWT/Qav1jz7auB3Aushuq1isN6CVh7rhwPwPocUT4sWwxQoqG87OjevuTV+d1tP aHid/2aPqQlgbGTfuRa/b95MHcy0FByhQ3HEcarmauQx/PE+n03rurT/Fr7gIUnd xyEoQGb2BinALDxBhr2FSguI/Etgrgi19+rPr4rXHXBxLO8ai9Ja9NO/J37QkpSL kwNZR9WAAcbXjTcgFCVJl6qjFoufKsf3G/9PEsS4Vwq6I7LeJW66kfjpvtwayCpd -----END CERTIFICATE-----Generated at Mon Feb 9 20:11:13 2026 by rpki-client