This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f0/2e9677-c5dd-4a31-a8e7-168f21508c74/1/QUUpppZp8zDauROlkLTIxTpgwLI.roa File: QUUpppZp8zDauROlkLTIxTpgwLI.roa (raw, json) Hash identifier: vNvKmsocx19OQxUrXw+Gpw/TAekcVNyvpJWdw+KQgl4= Subject key identifier: 41:45:29:A6:96:69:F3:30:DA:B9:13:A5:90:B4:C8:C5:3A:60:C0:B2 Certificate issuer: /CN=22acf66f0019c556331bef9ecd8df652782a63f8 Certificate serial: 019B76EB389848A993270DC578F37399DC92 Authority key identifier: 22:AC:F6:6F:00:19:C5:56:33:1B:EF:9E:CD:8D:F6:52:78:2A:63:F8 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Iqz2bwAZxVYzG--ezY32UngqY_g.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f0/2e9677-c5dd-4a31-a8e7-168f21508c74/1/QUUpppZp8zDauROlkLTIxTpgwLI.roa Signing time: Thu 01 Jan 2026 00:18:05 +0000 ROA not before: Thu 01 Jan 2026 00:18:05 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 62321 IP address blocks: 45.89.8.0/24 maxlen: 24 2a0e:b40::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f0/2e9677-c5dd-4a31-a8e7-168f21508c74/1/Iqz2bwAZxVYzG--ezY32UngqY_g.crl rsync://rpki.ripe.net/repository/DEFAULT/f0/2e9677-c5dd-4a31-a8e7-168f21508c74/1/Iqz2bwAZxVYzG--ezY32UngqY_g.mft rsync://rpki.ripe.net/repository/DEFAULT/Iqz2bwAZxVYzG--ezY32UngqY_g.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:76:eb:38:98:48:a9:93:27:0d:c5:78:f3:73:99:dc:92 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=22acf66f0019c556331bef9ecd8df652782a63f8 Validity Not Before: Jan 1 00:18:05 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=414529a69669f330dab913a590b4c8c53a60c0b2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:1a:fa:3c:a3:ae:81:97:c3:5f:ba:c3:39:ea: 50:86:6b:23:d8:78:f4:6f:ff:e3:da:f9:9f:63:86: 24:fc:d6:89:d6:af:fa:16:56:ad:ba:45:16:fa:90: 76:3b:64:22:6d:61:74:34:0a:25:67:c1:14:86:e0: ac:e2:3b:a9:55:0d:93:a4:ec:d9:46:83:76:40:24: 70:fc:53:9c:e2:a3:d6:0f:a1:b5:17:b4:39:08:58: c3:1a:af:69:9f:60:46:e9:94:5f:97:29:28:94:d2: f6:ce:3f:7b:d1:d0:37:d2:53:cf:4a:f5:07:31:21: 63:3d:38:2d:dd:d9:da:80:ce:3b:0c:7a:7e:8a:7b: 81:a9:5c:3e:06:46:3a:dd:55:0c:ee:81:a6:20:06: a3:50:f7:00:49:20:d0:73:4c:4d:fd:3a:16:a0:99: 17:ad:1b:56:68:e2:4e:b4:4a:89:d6:10:0f:15:c1: 51:27:50:a6:34:f2:6a:52:54:38:1d:cb:81:55:a1: 8a:00:af:6a:a4:2f:f4:61:95:b1:50:8c:e7:33:6a: ce:66:55:90:25:c7:6c:80:4c:ef:4d:ea:02:b2:44: 62:88:68:c3:2c:71:f6:eb:f2:4b:13:1c:22:b1:e3: 68:53:18:4d:d5:ce:64:1e:b7:d9:77:7f:dd:a2:83: 04:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 41:45:29:A6:96:69:F3:30:DA:B9:13:A5:90:B4:C8:C5:3A:60:C0:B2 X509v3 Authority Key Identifier: keyid:22:AC:F6:6F:00:19:C5:56:33:1B:EF:9E:CD:8D:F6:52:78:2A:63:F8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Iqz2bwAZxVYzG--ezY32UngqY_g.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f0/2e9677-c5dd-4a31-a8e7-168f21508c74/1/QUUpppZp8zDauROlkLTIxTpgwLI.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/f0/2e9677-c5dd-4a31-a8e7-168f21508c74/1/Iqz2bwAZxVYzG--ezY32UngqY_g.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 45.89.8.0/24 IPv6: 2a0e:b40::/48 Signature Algorithm: sha256WithRSAEncryption 39:89:d8:0d:ef:bd:92:09:3c:8f:38:0b:f7:54:9f:ea:86:40: fe:df:f8:21:19:be:50:8f:8e:4a:58:fc:9a:b7:81:b7:fb:d9: b8:2f:58:2e:6d:71:56:c1:67:51:5c:66:69:41:d2:a8:4b:77: 6c:79:30:e3:d8:58:a1:dc:cf:d6:47:8f:54:9f:6c:cc:db:ed: ff:ad:c3:32:70:75:9e:8d:76:a5:b1:51:b6:af:02:3f:56:1f: e8:dc:9c:68:bd:e5:7d:fc:5a:1c:6a:6e:59:7f:73:7c:34:c1: 8b:d8:1b:f5:df:0a:f0:8e:95:e5:09:4b:26:47:f9:95:68:3e: c2:21:86:64:b7:67:31:34:ee:ee:37:01:58:67:39:ef:24:73: d9:86:db:13:2d:a0:74:e9:e0:eb:e3:44:52:a8:b9:29:e6:3c: da:18:97:91:3d:61:62:89:7d:95:f9:a2:03:7c:c9:ef:c7:27: a2:84:a1:af:bc:9d:99:3d:6c:07:3c:bf:af:30:6a:39:3e:d2: 94:c4:9c:75:14:b5:de:08:bd:e1:51:95:dd:57:a5:ca:12:cb: b1:89:ab:7d:dc:88:5b:eb:9f:bc:81:6d:10:01:d5:38:60:fc: 84:c2:b6:e2:76:56:fb:ff:68:04:fe:16:64:2e:a3:c2:9f:4c: 97:8f:76:f7 -----BEGIN CERTIFICATE----- MIIFDjCCA/agAwIBAgISAZt26ziYSKmTJw3FePNzmdySMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDIyYWNmNjZmMDAxOWM1NTYzMzFiZWY5ZWNkOGRmNjUyNzgy YTYzZjgwHhcNMjYwMTAxMDAxODA1WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg0MTQ1MjlhNjk2NjlmMzMwZGFiOTEzYTU5MGI0YzhjNTNhNjBjMGIyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuhr6PKOugZfDX7rDOepQhmsj2Hj0 b//j2vmfY4Yk/NaJ1q/6FlatukUW+pB2O2QibWF0NAolZ8EUhuCs4jupVQ2TpOzZ RoN2QCRw/FOc4qPWD6G1F7Q5CFjDGq9pn2BG6ZRflykolNL2zj970dA30lPPSvUH MSFjPTgt3dnagM47DHp+inuBqVw+BkY63VUM7oGmIAajUPcASSDQc0xN/ToWoJkX rRtWaOJOtEqJ1hAPFcFRJ1CmNPJqUlQ4HcuBVaGKAK9qpC/0YZWxUIznM2rOZlWQ JcdsgEzvTeoCskRiiGjDLHH26/JLExwiseNoUxhN1c5kHrfZd3/dooMEmwIDAQAB o4ICGjCCAhYwHQYDVR0OBBYEFEFFKaaWafMw2rkTpZC0yMU6YMCyMB8GA1UdIwQY MBaAFCKs9m8AGcVWMxvvns2N9lJ4KmP4MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSXF6MmJ3QVp4Vll6Ry0tZXpZMzJVbmdxWV9nLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mMC8yZTk2NzctYzVkZC00YTMxLWE4ZTct MTY4ZjIxNTA4Yzc0LzEvUVVVcHBwWnA4ekRhdVJPbGtMVEl4VHBnd0xJLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9mMC8yZTk2NzctYzVkZC00YTMxLWE4ZTctMTY4ZjIxNTA4Yzc0 LzEvSXF6MmJ3QVp4Vll6Ry0tZXpZMzJVbmdxWV9nLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMDAGCCsGAQUFBwEHAQH/BCEwHzAMBAIAATAGAwQALVkIMA8E AgACMAkDBwAqDgtAAAAwDQYJKoZIhvcNAQELBQADggEBADmJ2A3vvZIJPI84C/dU n+qGQP7f+CEZvlCPjkpY/Jq3gbf72bgvWC5tcVbBZ1FcZmlB0qhLd2x5MOPYWKHc z9ZHj1SfbMzb7f+twzJwdZ6NdqWxUbavAj9WH+jcnGi95X38Whxqbll/c3w0wYvY G/XfCvCOleUJSyZH+ZVoPsIhhmS3ZzE07u43AVhnOe8kc9mG2xMtoHTp4OvjRFKo uSnmPNoYl5E9YWKJfZX5ogN8ye/HJ6KEoa+8nZk9bAc8v68wajk+0pTEnHUUtd4I veFRld1XpcoSy7GJq33ciFvrn7yBbRAB1Thg/ITCtuJ2Vvv/aAT+FmQuo8KfTJeP dvc= -----END CERTIFICATE-----Generated at Mon Feb 9 21:01:29 2026 by rpki-client