This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ff/a2fd11-ff1d-4901-8b5a-cae35a871646/1/_QT3lMVu1JStai6T69WGgwqn7ys.roa File: _QT3lMVu1JStai6T69WGgwqn7ys.roa (raw, json) Hash identifier: oNv+STRTc8dSmd+O/sB61KNG7rpMHLNG/eCHfujsdBY= Subject key identifier: FD:04:F7:94:C5:6E:D4:94:AD:6A:2E:93:EB:D5:86:83:0A:A7:EF:2B Certificate issuer: /CN=59cfe8128614d3325a8cec1833d73bb6a4698c0e Certificate serial: 019B7AC7CC882EFC1B3F83A279D1C7D3A99B Authority key identifier: 59:CF:E8:12:86:14:D3:32:5A:8C:EC:18:33:D7:3B:B6:A4:69:8C:0E Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Wc_oEoYU0zJajOwYM9c7tqRpjA4.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ff/a2fd11-ff1d-4901-8b5a-cae35a871646/1/_QT3lMVu1JStai6T69WGgwqn7ys.roa Signing time: Thu 01 Jan 2026 18:17:52 +0000 ROA not before: Thu 01 Jan 2026 18:17:52 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 3257 IP address blocks: 185.196.74.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ff/a2fd11-ff1d-4901-8b5a-cae35a871646/1/Wc_oEoYU0zJajOwYM9c7tqRpjA4.crl rsync://rpki.ripe.net/repository/DEFAULT/ff/a2fd11-ff1d-4901-8b5a-cae35a871646/1/Wc_oEoYU0zJajOwYM9c7tqRpjA4.mft rsync://rpki.ripe.net/repository/DEFAULT/Wc_oEoYU0zJajOwYM9c7tqRpjA4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 03 Jan 2026 12:00:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7a:c7:cc:88:2e:fc:1b:3f:83:a2:79:d1:c7:d3:a9:9b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=59cfe8128614d3325a8cec1833d73bb6a4698c0e Validity Not Before: Jan 1 18:17:52 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=fd04f794c56ed494ad6a2e93ebd586830aa7ef2b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:b3:10:19:cf:be:a9:4a:8d:0d:a1:69:d6:94: 68:6a:5d:e2:40:8b:2f:b8:8f:0b:c3:79:be:0c:7a: b4:21:de:1a:7d:c8:76:e1:f3:62:90:45:46:5b:a4: e4:66:07:36:95:15:f2:c3:cf:a8:87:78:63:cb:44: ff:e3:11:a0:19:58:93:06:7d:99:bc:10:3d:f8:e2: f8:78:38:32:b5:33:39:d3:28:57:d8:18:4a:a0:6e: 9f:b6:50:93:ed:3c:45:b7:d5:d5:9b:5c:23:a2:51: 04:90:92:17:6e:bb:11:92:bb:3d:2a:dd:00:e6:8b: a4:dd:f8:2d:24:a6:06:8c:f6:b8:e5:45:32:14:17: 2c:26:76:d7:86:80:c4:37:4d:43:e5:56:be:b8:d7: 8e:8a:30:63:97:2d:d7:ed:9b:40:7e:89:7b:14:55: 4c:39:23:5e:33:c5:51:d4:75:01:73:a1:8f:3f:85: 9d:69:ac:b2:d9:4d:2c:4f:fd:ac:b8:d6:57:2f:13: 4c:06:27:c4:db:7a:42:05:ae:5b:6e:ab:26:ab:d9: 5d:1d:f4:71:4c:18:90:4f:c9:69:94:95:34:1e:11: db:d8:01:91:5d:78:87:27:1d:ed:12:a7:99:e4:c3: e4:41:43:7f:fe:9c:29:c8:af:d2:32:ea:0d:4c:36: 7c:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FD:04:F7:94:C5:6E:D4:94:AD:6A:2E:93:EB:D5:86:83:0A:A7:EF:2B X509v3 Authority Key Identifier: keyid:59:CF:E8:12:86:14:D3:32:5A:8C:EC:18:33:D7:3B:B6:A4:69:8C:0E X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Wc_oEoYU0zJajOwYM9c7tqRpjA4.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ff/a2fd11-ff1d-4901-8b5a-cae35a871646/1/_QT3lMVu1JStai6T69WGgwqn7ys.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/ff/a2fd11-ff1d-4901-8b5a-cae35a871646/1/Wc_oEoYU0zJajOwYM9c7tqRpjA4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.196.74.0/24 Signature Algorithm: sha256WithRSAEncryption 27:b7:e9:c3:16:11:55:e2:b2:a3:31:59:c6:55:60:4b:75:bb: 46:96:98:d9:93:43:ca:02:a3:66:4b:a2:8a:50:70:71:dc:9e: de:32:d9:ee:64:a5:87:5c:9c:17:41:93:93:b7:a4:0f:3b:e0: 56:0f:68:a2:1d:f8:20:df:59:13:a4:27:ef:3c:ab:89:04:e6: 9d:8c:e1:b8:c9:e5:a9:41:03:ea:e8:f9:16:8c:58:8d:2c:a3: 83:7a:95:15:d6:65:43:b0:54:89:91:b6:24:7c:6b:ec:d8:f7: 65:18:0e:57:23:a8:8a:b9:39:50:17:c0:7d:00:6d:3f:f3:34: e5:12:8f:d6:e7:87:83:f9:20:fc:57:c6:00:ef:05:26:47:7b: 81:54:bc:20:11:44:8b:93:e2:b5:b7:ff:74:0a:58:bc:04:46: c9:3c:13:09:2a:14:e5:9e:54:f1:e0:81:30:46:f4:6b:0e:17: d9:86:9e:af:ee:34:26:6d:c1:61:ba:85:80:23:42:f3:95:81: 57:85:04:b4:dc:84:67:bd:cb:00:95:62:97:dd:2a:a5:c5:0e: 14:24:b4:2e:e4:53:14:b9:0c:31:fc:ec:b5:5f:eb:62:75:fa: de:3a:12:ac:39:1f:79:27:8e:1f:46:c9:9e:bc:db:ab:a4:02: 0a:fb:d2:ee -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt6x8yILvwbP4OiedHH06mbMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDU5Y2ZlODEyODYxNGQzMzI1YThjZWMxODMzZDczYmI2YTQ2 OThjMGUwHhcNMjYwMTAxMTgxNzUyWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhmZDA0Zjc5NGM1NmVkNDk0YWQ2YTJlOTNlYmQ1ODY4MzBhYTdlZjJiMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAybMQGc++qUqNDaFp1pRoal3iQIsv uI8Lw3m+DHq0Id4afch24fNikEVGW6TkZgc2lRXyw8+oh3hjy0T/4xGgGViTBn2Z vBA9+OL4eDgytTM50yhX2BhKoG6ftlCT7TxFt9XVm1wjolEEkJIXbrsRkrs9Kt0A 5ouk3fgtJKYGjPa45UUyFBcsJnbXhoDEN01D5Va+uNeOijBjly3X7ZtAfol7FFVM OSNeM8VR1HUBc6GPP4Wdaayy2U0sT/2suNZXLxNMBifE23pCBa5bbqsmq9ldHfRx TBiQT8lplJU0HhHb2AGRXXiHJx3tEqeZ5MPkQUN//pwpyK/SMuoNTDZ8mQIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFP0E95TFbtSUrWouk+vVhoMKp+8rMB8GA1UdIwQY MBaAFFnP6BKGFNMyWozsGDPXO7akaYwOMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvV2Nfb0VvWVUwekphak93WU05Yzd0cVJwakE0LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mZi9hMmZkMTEtZmYxZC00OTAxLThiNWEt Y2FlMzVhODcxNjQ2LzEvX1FUM2xNVnUxSlN0YWk2VDY5V0dnd3FuN3lzLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9mZi9hMmZkMTEtZmYxZC00OTAxLThiNWEtY2FlMzVhODcxNjQ2 LzEvV2Nfb0VvWVUwekphak93WU05Yzd0cVJwakE0LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAucRKMA0G CSqGSIb3DQEBCwUAA4IBAQAnt+nDFhFV4rKjMVnGVWBLdbtGlpjZk0PKAqNmS6KK UHBx3J7eMtnuZKWHXJwXQZOTt6QPO+BWD2iiHfgg31kTpCfvPKuJBOadjOG4yeWp QQPq6PkWjFiNLKODepUV1mVDsFSJkbYkfGvs2PdlGA5XI6iKuTlQF8B9AG0/8zTl Eo/W54eD+SD8V8YA7wUmR3uBVLwgEUSLk+K1t/90Cli8BEbJPBMJKhTlnlTx4IEw RvRrDhfZhp6v7jQmbcFhuoWAI0LzlYFXhQS03IRnvcsAlWKX3SqlxQ4UJLQu5FMU uQwx/Oy1X+tidfreOhKsOR95J44fRsmevNurpAIK+9Lu -----END CERTIFICATE-----Generated at Fri Jan 2 16:26:01 2026 by rpki-client