This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ff/a2f87b-4811-4fe1-b15d-f889ca161c01/1/Qi3PbQnrdw7q8NtmLcDOyzuEuok.roa File: Qi3PbQnrdw7q8NtmLcDOyzuEuok.roa (raw, json) Hash identifier: Ene2M6hdbbKNY0YIKXvUxR9PygRHkyqGW28j+nRBH9E= Subject key identifier: 42:2D:CF:6D:09:EB:77:0E:EA:F0:DB:66:2D:C0:CE:CB:3B:84:BA:89 Certificate issuer: /CN=49c403d43b5f38fca2119cd1409a92763edefe71 Certificate serial: 019C0EBE7C33DD859E05AC58AD6F958A8CC2 Authority key identifier: 49:C4:03:D4:3B:5F:38:FC:A2:11:9C:D1:40:9A:92:76:3E:DE:FE:71 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ScQD1DtfOPyiEZzRQJqSdj7e_nE.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ff/a2f87b-4811-4fe1-b15d-f889ca161c01/1/Qi3PbQnrdw7q8NtmLcDOyzuEuok.roa Signing time: Fri 30 Jan 2026 11:51:30 +0000 ROA not before: Fri 30 Jan 2026 11:51:30 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 271957 IP address blocks: 176.57.202.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ff/a2f87b-4811-4fe1-b15d-f889ca161c01/1/ScQD1DtfOPyiEZzRQJqSdj7e_nE.crl rsync://rpki.ripe.net/repository/DEFAULT/ff/a2f87b-4811-4fe1-b15d-f889ca161c01/1/ScQD1DtfOPyiEZzRQJqSdj7e_nE.mft rsync://rpki.ripe.net/repository/DEFAULT/ScQD1DtfOPyiEZzRQJqSdj7e_nE.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 14:00:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:0e:be:7c:33:dd:85:9e:05:ac:58:ad:6f:95:8a:8c:c2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=49c403d43b5f38fca2119cd1409a92763edefe71 Validity Not Before: Jan 30 11:51:30 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=422dcf6d09eb770eeaf0db662dc0cecb3b84ba89 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:bf:d9:eb:0e:9d:f5:e8:ac:bf:ee:5a:a9:71: 6e:5d:6c:57:82:89:ba:18:f8:5c:c1:a4:66:f1:f9: aa:af:58:0b:dd:f3:ab:bf:77:cc:bd:fc:37:f1:95: f6:a8:d9:6e:56:1b:56:fe:19:0c:e3:15:04:e3:0b: 7d:ee:ca:d6:c5:14:50:83:f2:89:5f:8f:ec:4a:a3: 42:b5:63:5f:a2:62:cf:6f:5e:c8:90:b3:c4:83:79: 15:04:b0:58:ff:fb:33:86:ce:04:4d:17:75:a4:1d: d7:4e:c5:eb:8e:8a:13:88:ee:7d:ab:f8:11:83:a5: 46:45:91:ce:48:94:27:b9:45:e1:b4:19:8d:27:ce: 2c:db:03:e6:63:0c:b5:77:f9:fa:7b:7e:d7:6f:e4: e9:f4:aa:81:41:21:09:d4:ac:75:79:c9:2a:e1:2f: 70:bf:cb:ed:11:ac:8b:c3:8b:8d:04:a5:fe:a3:3b: 2c:d7:7f:59:a7:7b:03:b4:1e:2b:15:76:98:33:fd: c6:2d:14:23:75:2e:fe:2e:ed:e0:5f:d7:60:b9:a7: 7f:ba:37:a4:c4:a5:92:a4:c1:0c:c5:07:f9:e5:52: 85:6b:55:80:ea:05:87:43:c7:6d:62:4a:0c:33:9c: e7:fb:99:07:8a:af:86:35:82:5e:30:ab:74:b7:94: d7:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 42:2D:CF:6D:09:EB:77:0E:EA:F0:DB:66:2D:C0:CE:CB:3B:84:BA:89 X509v3 Authority Key Identifier: keyid:49:C4:03:D4:3B:5F:38:FC:A2:11:9C:D1:40:9A:92:76:3E:DE:FE:71 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ScQD1DtfOPyiEZzRQJqSdj7e_nE.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ff/a2f87b-4811-4fe1-b15d-f889ca161c01/1/Qi3PbQnrdw7q8NtmLcDOyzuEuok.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/ff/a2f87b-4811-4fe1-b15d-f889ca161c01/1/ScQD1DtfOPyiEZzRQJqSdj7e_nE.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 176.57.202.0/24 Signature Algorithm: sha256WithRSAEncryption 75:1b:c2:fb:10:f9:9d:ab:24:a5:20:05:04:2a:ed:8b:06:df: 86:8e:ca:03:39:8e:b0:16:4f:95:16:5c:8f:ac:47:55:93:ba: 8f:39:aa:2d:0f:97:c4:b2:f5:ee:8c:2e:cc:08:7e:0b:bb:bc: 3e:98:05:b5:1f:ad:0c:07:1c:da:77:42:18:83:d0:7e:88:64: 59:08:62:34:52:b4:30:cb:db:91:18:0a:46:5e:77:72:79:0e: bb:c2:0b:40:8b:e5:a3:6b:13:1d:3e:a7:d3:56:e9:e8:42:8a: c7:df:8f:85:0d:99:6a:00:a1:cd:83:58:b2:4c:4c:e3:15:70: fe:f6:a8:d5:99:83:1a:a1:25:2f:a0:b6:b4:40:b4:06:99:81: 86:26:0c:6c:56:9d:18:26:a7:48:d0:79:0e:fb:66:88:44:b6: f0:45:f7:00:88:e2:35:c1:17:9d:75:d7:41:d9:ff:8f:e0:f7: 25:d6:e7:0b:69:6a:a2:f1:e6:7d:07:8c:63:2e:74:99:a2:03: 20:ca:c5:97:4e:32:d4:54:b9:bc:42:f3:61:15:52:df:bd:09: 56:56:ca:a7:ec:98:b4:43:77:b6:0a:7f:14:c7:0d:22:fc:20: f5:99:6f:94:9a:48:ed:20:7d:ad:db:35:c2:c5:e7:9b:48:3e: 69:93:32:8b -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZwOvnwz3YWeBaxYrW+ViozCMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDQ5YzQwM2Q0M2I1ZjM4ZmNhMjExOWNkMTQwOWE5Mjc2M2Vk ZWZlNzEwHhcNMjYwMTMwMTE1MTMwWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg0MjJkY2Y2ZDA5ZWI3NzBlZWFmMGRiNjYyZGMwY2VjYjNiODRiYTg5MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA07/Z6w6d9eisv+5aqXFuXWxXgom6 GPhcwaRm8fmqr1gL3fOrv3fMvfw38ZX2qNluVhtW/hkM4xUE4wt97srWxRRQg/KJ X4/sSqNCtWNfomLPb17IkLPEg3kVBLBY//szhs4ETRd1pB3XTsXrjooTiO59q/gR g6VGRZHOSJQnuUXhtBmNJ84s2wPmYwy1d/n6e37Xb+Tp9KqBQSEJ1Kx1eckq4S9w v8vtEayLw4uNBKX+ozss139Zp3sDtB4rFXaYM/3GLRQjdS7+Lu3gX9dguad/ujek xKWSpMEMxQf55VKFa1WA6gWHQ8dtYkoMM5zn+5kHiq+GNYJeMKt0t5TXsQIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFEItz20J63cO6vDbZi3Azss7hLqJMB8GA1UdIwQY MBaAFEnEA9Q7Xzj8ohGc0UCaknY+3v5xMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvU2NRRDFEdGZPUHlpRVp6UlFKcVNkajdlX25FLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mZi9hMmY4N2ItNDgxMS00ZmUxLWIxNWQt Zjg4OWNhMTYxYzAxLzEvUWkzUGJRbnJkdzdxOE50bUxjRE95enVFdW9rLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9mZi9hMmY4N2ItNDgxMS00ZmUxLWIxNWQtZjg4OWNhMTYxYzAx LzEvU2NRRDFEdGZPUHlpRVp6UlFKcVNkajdlX25FLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAsDnKMA0G CSqGSIb3DQEBCwUAA4IBAQB1G8L7EPmdqySlIAUEKu2LBt+GjsoDOY6wFk+VFlyP rEdVk7qPOaotD5fEsvXujC7MCH4Lu7w+mAW1H60MBxzad0IYg9B+iGRZCGI0UrQw y9uRGApGXndyeQ67wgtAi+WjaxMdPqfTVunoQorH34+FDZlqAKHNg1iyTEzjFXD+ 9qjVmYMaoSUvoLa0QLQGmYGGJgxsVp0YJqdI0HkO+2aIRLbwRfcAiOI1wReddddB 2f+P4Pcl1ucLaWqi8eZ9B4xjLnSZogMgysWXTjLUVLm8QvNhFVLfvQlWVsqn7Ji0 Q3e2Cn8Uxw0i/CD1mW+UmkjtIH2t2zXCxeebSD5pkzKL -----END CERTIFICATE-----Generated at Mon Feb 9 18:30:09 2026 by rpki-client