This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ed/f89bf0-3d6f-4b4d-bf42-c78bd228a91d/1/QEvR43rn7DHOYyABuYA1eLNqIkA.roa File: QEvR43rn7DHOYyABuYA1eLNqIkA.roa (raw, json) Hash identifier: cUXOa6ZZg6M88CmsP7OWEFb4wJjhqPpZLujJtEhpcCc= Subject key identifier: 40:4B:D1:E3:7A:E7:EC:31:CE:63:20:01:B9:80:35:78:B3:6A:22:40 Certificate issuer: /CN=6fe3491042ef31dcc6e0ad8e55cbe149dd0c3182 Certificate serial: 019B7AC8F186406747E1C350234F676D2048 Authority key identifier: 6F:E3:49:10:42:EF:31:DC:C6:E0:AD:8E:55:CB:E1:49:DD:0C:31:82 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/b-NJEELvMdzG4K2OVcvhSd0MMYI.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ed/f89bf0-3d6f-4b4d-bf42-c78bd228a91d/1/QEvR43rn7DHOYyABuYA1eLNqIkA.roa Signing time: Thu 01 Jan 2026 18:19:07 +0000 ROA not before: Thu 01 Jan 2026 18:19:07 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 47748 IP address blocks: 31.13.215.0/24 maxlen: 24 31.13.228.0/24 maxlen: 24 31.13.229.0/24 maxlen: 24 37.60.137.0/24 maxlen: 24 87.120.9.0/24 maxlen: 24 87.120.90.0/24 maxlen: 24 87.121.4.0/24 maxlen: 24 87.121.5.0/24 maxlen: 24 87.121.120.0/24 maxlen: 24 93.123.21.0/24 maxlen: 24 93.123.103.0/24 maxlen: 24 94.156.9.0/24 maxlen: 24 94.156.13.0/24 maxlen: 24 94.156.46.0/24 maxlen: 24 94.156.47.0/24 maxlen: 24 178.211.146.0/24 maxlen: 24 2a05:140::/29 maxlen: 29 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ed/f89bf0-3d6f-4b4d-bf42-c78bd228a91d/1/b-NJEELvMdzG4K2OVcvhSd0MMYI.crl rsync://rpki.ripe.net/repository/DEFAULT/ed/f89bf0-3d6f-4b4d-bf42-c78bd228a91d/1/b-NJEELvMdzG4K2OVcvhSd0MMYI.mft rsync://rpki.ripe.net/repository/DEFAULT/b-NJEELvMdzG4K2OVcvhSd0MMYI.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 27 Jan 2026 20:39:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7a:c8:f1:86:40:67:47:e1:c3:50:23:4f:67:6d:20:48 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6fe3491042ef31dcc6e0ad8e55cbe149dd0c3182 Validity Not Before: Jan 1 18:19:07 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=404bd1e37ae7ec31ce632001b9803578b36a2240 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:95:72:ce:9f:27:1a:00:a0:22:c2:c6:40:eb:54: af:2c:60:4b:68:c3:30:6a:c3:5a:00:b5:32:de:12: d4:d4:55:a5:36:0e:7e:bc:b9:20:08:95:7b:1b:ac: f8:77:51:d4:cf:cd:a9:4d:5e:b9:0f:6b:07:cc:a6: 55:2d:88:e9:5c:67:70:80:d8:8a:61:00:0f:fa:2d: 6e:b3:57:46:e4:52:81:2b:13:3f:59:7e:74:a4:14: 5a:fe:40:0d:a4:02:44:20:11:fe:6c:09:1b:93:29: 62:fc:82:de:75:1b:21:0c:4c:13:53:17:30:1e:e0: 29:35:57:6e:3c:8c:eb:cf:d3:ed:68:bd:2c:c8:32: 23:2a:ff:82:40:97:5b:5f:91:02:70:56:7e:8b:3f: be:76:89:fc:f9:36:6f:73:dd:10:58:15:38:c5:73: 0c:98:65:80:9f:ea:f1:b3:46:87:57:46:f5:58:0f: 72:65:09:1c:c9:40:cd:7c:48:ef:a3:9d:a9:3c:4b: 9b:24:ca:0b:b3:34:41:d4:da:5e:9a:50:b3:04:17: 5b:ff:15:8e:44:1a:9c:2f:1b:eb:bc:97:54:48:fc: c2:17:f8:1d:c4:a5:b0:6d:4b:a4:50:6f:48:3e:6d: 8f:87:ce:49:5f:38:13:b8:88:3c:ed:b4:45:da:79: 10:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 40:4B:D1:E3:7A:E7:EC:31:CE:63:20:01:B9:80:35:78:B3:6A:22:40 X509v3 Authority Key Identifier: keyid:6F:E3:49:10:42:EF:31:DC:C6:E0:AD:8E:55:CB:E1:49:DD:0C:31:82 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/b-NJEELvMdzG4K2OVcvhSd0MMYI.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ed/f89bf0-3d6f-4b4d-bf42-c78bd228a91d/1/QEvR43rn7DHOYyABuYA1eLNqIkA.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/ed/f89bf0-3d6f-4b4d-bf42-c78bd228a91d/1/b-NJEELvMdzG4K2OVcvhSd0MMYI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 31.13.215.0/24 31.13.228.0/23 37.60.137.0/24 87.120.9.0/24 87.120.90.0/24 87.121.4.0/23 87.121.120.0/24 93.123.21.0/24 93.123.103.0/24 94.156.9.0/24 94.156.13.0/24 94.156.46.0/23 178.211.146.0/24 IPv6: 2a05:140::/29 Signature Algorithm: sha256WithRSAEncryption 27:c7:1a:d6:fa:1f:12:be:b1:50:e6:7d:a1:5a:c5:04:a3:20: 88:4c:e7:d7:bf:9a:c7:c4:57:df:2e:79:84:78:c3:7a:59:7a: 3a:69:a2:4e:c0:55:4b:4e:68:5e:42:22:13:62:70:ce:ae:23: 02:14:38:95:d6:c7:46:77:ff:b0:a8:60:f6:8d:87:ee:b0:f7: 0e:a7:f2:d0:fa:9d:53:f7:d9:ee:da:89:33:c8:6b:7a:88:4b: ce:09:99:ea:dd:8d:15:ed:18:6f:db:69:7b:f9:e6:0d:56:b8: 38:12:2b:4a:1f:3d:b6:25:d6:89:9c:16:3d:44:fe:f8:9c:32: 8f:1d:9c:a0:e3:b5:f9:d1:fb:b8:be:27:8b:59:01:80:b6:a3: fd:fa:e1:8a:aa:41:5f:d6:9b:fd:53:9d:92:ff:e6:c4:4d:3f: b6:ba:e3:5f:69:30:6e:d8:7c:b7:e8:4e:fd:34:fd:db:98:30: b1:c8:62:24:81:bd:8a:4a:20:ec:ad:9b:0c:b0:54:a9:ea:34: 51:f3:c4:dd:8f:11:88:f4:2e:f0:89:d1:0e:e2:b8:cb:03:36: 73:82:58:cd:1d:a7:ff:27:26:47:76:8d:0f:c2:9d:8e:5f:f7: a0:6e:08:fe:c8:4c:5f:64:b1:04:16:8d:b4:c4:c3:37:c2:9c: c3:6e:64:81 -----BEGIN CERTIFICATE----- MIIFVDCCBDygAwIBAgISAZt6yPGGQGdH4cNQI09nbSBIMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDZmZTM0OTEwNDJlZjMxZGNjNmUwYWQ4ZTU1Y2JlMTQ5ZGQw YzMxODIwHhcNMjYwMTAxMTgxOTA3WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg0MDRiZDFlMzdhZTdlYzMxY2U2MzIwMDFiOTgwMzU3OGIzNmEyMjQwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAlXLOnycaAKAiwsZA61SvLGBLaMMw asNaALUy3hLU1FWlNg5+vLkgCJV7G6z4d1HUz82pTV65D2sHzKZVLYjpXGdwgNiK YQAP+i1us1dG5FKBKxM/WX50pBRa/kANpAJEIBH+bAkbkyli/ILedRshDEwTUxcw HuApNVduPIzrz9PtaL0syDIjKv+CQJdbX5ECcFZ+iz++don8+TZvc90QWBU4xXMM mGWAn+rxs0aHV0b1WA9yZQkcyUDNfEjvo52pPEubJMoLszRB1NpemlCzBBdb/xWO RBqcLxvrvJdUSPzCF/gdxKWwbUukUG9IPm2Ph85JXzgTuIg87bRF2nkQfQIDAQAB o4ICYDCCAlwwHQYDVR0OBBYEFEBL0eN65+wxzmMgAbmANXizaiJAMB8GA1UdIwQY MBaAFG/jSRBC7zHcxuCtjlXL4UndDDGCMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvYi1OSkVFTHZNZHpHNEsyT1ZjdmhTZDBNTVlJLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lZC9mODliZjAtM2Q2Zi00YjRkLWJmNDIt Yzc4YmQyMjhhOTFkLzEvUUV2UjQzcm43REhPWXlBQnVZQTFlTE5xSWtBLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9lZC9mODliZjAtM2Q2Zi00YjRkLWJmNDItYzc4YmQyMjhhOTFk LzEvYi1OSkVFTHZNZHpHNEsyT1ZjdmhTZDBNTVlJLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMHYGCCsGAQUFBwEHAQH/BGcwZTBUBAIAATBOAwQAHw3XAwQB Hw3kAwQAJTyJAwQAV3gJAwQAV3haAwQBV3kEAwQAV3l4AwQAXXsVAwQAXXtnAwQA XpwJAwQAXpwNAwQBXpwuAwQAstOSMA0EAgACMAcDBQMqBQFAMA0GCSqGSIb3DQEB CwUAA4IBAQAnxxrW+h8SvrFQ5n2hWsUEoyCITOfXv5rHxFffLnmEeMN6WXo6aaJO wFVLTmheQiITYnDOriMCFDiV1sdGd/+wqGD2jYfusPcOp/LQ+p1T99nu2okzyGt6 iEvOCZnq3Y0V7Rhv22l7+eYNVrg4EitKHz22JdaJnBY9RP74nDKPHZyg47X50fu4 vieLWQGAtqP9+uGKqkFf1pv9U52S/+bETT+2uuNfaTBu2Hy36E79NP3bmDCxyGIk gb2KSiDsrZsMsFSp6jRR88TdjxGI9C7widEO4rjLAzZzgljNHaf/JyZHdo0Pwp2O X/egbgj+yExfZLEEFo20xMM3wpzDbmSB -----END CERTIFICATE-----Generated at Tue Jan 27 02:50:22 2026 by rpki-client