This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fd/9a1d44-8609-4e5e-ba94-5a86c2757c1e/1/sIQZEA2Op0efpYzPecZEBuW6TaU.roa File: sIQZEA2Op0efpYzPecZEBuW6TaU.roa (raw, json) Hash identifier: q/DQLcBGq18fXNItdRYPm/yBU6K9HTyveGRpX/E+SKk= Subject key identifier: B0:84:19:10:0D:8E:A7:47:9F:A5:8C:CF:79:C6:44:06:E5:BA:4D:A5 Certificate issuer: /CN=5ee531b9ac2990d69a8a5c3023e72e6d841e6c09 Certificate serial: 019B7EA754869375D472B777B408CB86498A Authority key identifier: 5E:E5:31:B9:AC:29:90:D6:9A:8A:5C:30:23:E7:2E:6D:84:1E:6C:09 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XuUxuawpkNaailwwI-cubYQebAk.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fd/9a1d44-8609-4e5e-ba94-5a86c2757c1e/1/sIQZEA2Op0efpYzPecZEBuW6TaU.roa Signing time: Fri 02 Jan 2026 12:20:53 +0000 ROA not before: Fri 02 Jan 2026 12:20:53 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 6844 IP address blocks: 188.64.216.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fd/9a1d44-8609-4e5e-ba94-5a86c2757c1e/1/XuUxuawpkNaailwwI-cubYQebAk.crl rsync://rpki.ripe.net/repository/DEFAULT/fd/9a1d44-8609-4e5e-ba94-5a86c2757c1e/1/XuUxuawpkNaailwwI-cubYQebAk.mft rsync://rpki.ripe.net/repository/DEFAULT/XuUxuawpkNaailwwI-cubYQebAk.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 27 Jan 2026 00:00:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7e:a7:54:86:93:75:d4:72:b7:77:b4:08:cb:86:49:8a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5ee531b9ac2990d69a8a5c3023e72e6d841e6c09 Validity Not Before: Jan 2 12:20:53 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=b08419100d8ea7479fa58ccf79c64406e5ba4da5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:b6:68:a2:14:9d:02:d9:77:90:c9:01:ee:75: 5c:20:f9:f9:42:ef:74:c5:03:8e:d0:7f:7c:d4:7c: 60:46:df:4c:9c:ae:25:e0:29:d2:3c:78:49:ef:b4: f2:5e:4d:20:33:f0:5f:a8:04:07:2d:d5:a5:97:c6: 5c:9e:88:5c:89:63:08:2a:66:45:51:b2:a7:30:6b: 64:51:32:5b:bf:29:78:9b:92:63:39:3a:4a:7f:a0: 96:d6:b9:f5:9a:eb:51:b6:aa:45:41:4c:29:34:ac: 34:56:cc:bc:ca:c5:2a:b8:18:0a:03:c0:6b:69:6a: 61:72:a5:89:bf:98:21:e8:b4:74:97:29:45:bf:fa: 95:78:58:b8:de:8d:aa:09:a9:93:b1:fc:ac:99:70: 41:74:1a:e3:9f:64:6b:7d:6b:ca:f1:52:7a:4d:cf: 48:85:a1:57:81:9e:5a:71:bb:b4:5d:1e:e4:9f:4d: 7c:70:1b:a9:20:b1:ac:21:b4:81:5e:47:21:e9:3e: 89:74:4c:af:88:ff:e9:ba:d3:84:20:59:68:d4:5f: 46:1a:e2:24:38:8d:32:2f:e2:eb:dc:8e:8e:91:b4: e1:ab:43:26:16:bd:4f:bd:57:3a:76:86:5a:8e:b7: e6:04:24:43:c3:8e:1d:14:b6:91:ce:1a:5d:8d:9e: f1:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B0:84:19:10:0D:8E:A7:47:9F:A5:8C:CF:79:C6:44:06:E5:BA:4D:A5 X509v3 Authority Key Identifier: keyid:5E:E5:31:B9:AC:29:90:D6:9A:8A:5C:30:23:E7:2E:6D:84:1E:6C:09 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XuUxuawpkNaailwwI-cubYQebAk.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/9a1d44-8609-4e5e-ba94-5a86c2757c1e/1/sIQZEA2Op0efpYzPecZEBuW6TaU.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/9a1d44-8609-4e5e-ba94-5a86c2757c1e/1/XuUxuawpkNaailwwI-cubYQebAk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 188.64.216.0/21 Signature Algorithm: sha256WithRSAEncryption 2c:d1:d9:c6:aa:ac:c4:49:ce:69:15:00:78:17:ab:cd:6d:18: cd:4a:c4:30:41:fc:53:2a:9d:73:ef:00:d4:b0:d8:86:86:1a: e1:a8:30:11:8f:25:12:00:09:35:03:66:42:22:3b:a3:ac:2a: 3c:98:b8:db:d8:d5:9b:af:80:91:08:80:0b:2c:25:74:28:86: 3c:4b:be:f8:18:f4:ea:1e:ee:73:91:12:71:3e:d4:be:53:c2: 83:76:bd:55:9a:51:e6:a3:67:c0:d4:f8:ab:76:1e:d2:ba:96: d2:52:68:9f:45:3f:ba:86:e3:e7:64:d6:f4:18:f9:75:fb:92: 09:29:23:e7:ac:a1:7e:3b:7a:2a:6f:55:28:3b:da:ca:36:a6: 3f:af:c9:0b:0b:ac:9b:fe:58:2f:f4:e1:c9:b0:f4:7b:3b:34: 7d:49:3a:9b:26:63:5e:89:20:ac:e6:6e:e6:dc:02:f0:6a:16: d4:c1:ca:20:b6:ab:21:a6:ec:9f:d3:94:e3:4b:db:55:0b:a0: ff:8d:72:20:3e:a0:cc:ba:d2:67:6c:bc:85:cb:1d:11:c4:6c: df:6a:7e:83:6f:1a:aa:c2:bf:b6:09:84:79:4a:e6:d7:f3:cf: f9:de:ea:9d:8e:c2:ae:88:d8:14:25:03:1a:20:2e:8c:09:53: 7d:07:4d:2f -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt+p1SGk3XUcrd3tAjLhkmKMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDVlZTUzMWI5YWMyOTkwZDY5YThhNWMzMDIzZTcyZTZkODQx ZTZjMDkwHhcNMjYwMTAyMTIyMDUzWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhiMDg0MTkxMDBkOGVhNzQ3OWZhNThjY2Y3OWM2NDQwNmU1YmE0ZGE1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtrZoohSdAtl3kMkB7nVcIPn5Qu90 xQOO0H981HxgRt9MnK4l4CnSPHhJ77TyXk0gM/BfqAQHLdWll8ZcnohciWMIKmZF UbKnMGtkUTJbvyl4m5JjOTpKf6CW1rn1mutRtqpFQUwpNKw0Vsy8ysUquBgKA8Br aWphcqWJv5gh6LR0lylFv/qVeFi43o2qCamTsfysmXBBdBrjn2RrfWvK8VJ6Tc9I haFXgZ5acbu0XR7kn018cBupILGsIbSBXkch6T6JdEyviP/putOEIFlo1F9GGuIk OI0yL+Lr3I6OkbThq0MmFr1PvVc6doZajrfmBCRDw44dFLaRzhpdjZ7xJQIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFLCEGRANjqdHn6WMz3nGRAbluk2lMB8GA1UdIwQY MBaAFF7lMbmsKZDWmopcMCPnLm2EHmwJMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvWHVVeHVhd3BrTmFhaWx3d0ktY3ViWVFlYkFrLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mZC85YTFkNDQtODYwOS00ZTVlLWJhOTQt NWE4NmMyNzU3YzFlLzEvc0lRWkVBMk9wMGVmcFl6UGVjWkVCdVc2VGFVLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9mZC85YTFkNDQtODYwOS00ZTVlLWJhOTQtNWE4NmMyNzU3YzFl LzEvWHVVeHVhd3BrTmFhaWx3d0ktY3ViWVFlYkFrLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQDvEDYMA0G CSqGSIb3DQEBCwUAA4IBAQAs0dnGqqzESc5pFQB4F6vNbRjNSsQwQfxTKp1z7wDU sNiGhhrhqDARjyUSAAk1A2ZCIjujrCo8mLjb2NWbr4CRCIALLCV0KIY8S774GPTq Hu5zkRJxPtS+U8KDdr1VmlHmo2fA1Pirdh7SupbSUmifRT+6huPnZNb0GPl1+5IJ KSPnrKF+O3oqb1UoO9rKNqY/r8kLC6yb/lgv9OHJsPR7OzR9STqbJmNeiSCs5m7m 3ALwahbUwcogtqshpuyf05TjS9tVC6D/jXIgPqDMutJnbLyFyx0RxGzfan6Dbxqq wr+2CYR5SubX88/53uqdjsKuiNgUJQMaIC6MCVN9B00v -----END CERTIFICATE-----Generated at Mon Jan 26 10:13:27 2026 by rpki-client