This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a4/04292f-f104-417c-acda-571af066cf1e/1/Qm8uhcNnRTaqoYGKrdrNLc_aZD8.roa File: Qm8uhcNnRTaqoYGKrdrNLc_aZD8.roa (raw, json) Hash identifier: hvZBXvz5QZfJbWaG3RcO8weSJZHMPwQu8jySYopR30I= Subject key identifier: 42:6F:2E:85:C3:67:45:36:AA:A1:81:8A:AD:DA:CD:2D:CF:DA:64:3F Certificate issuer: /CN=574e25a16e5d3aa110ac5e8335f88f63e54b42f1 Certificate serial: 019B7F1383E1E04CF742F4CEACECC939291F Authority key identifier: 57:4E:25:A1:6E:5D:3A:A1:10:AC:5E:83:35:F8:8F:63:E5:4B:42:F1 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/V04loW5dOqEQrF6DNfiPY-VLQvE.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a4/04292f-f104-417c-acda-571af066cf1e/1/Qm8uhcNnRTaqoYGKrdrNLc_aZD8.roa Signing time: Fri 02 Jan 2026 14:19:03 +0000 ROA not before: Fri 02 Jan 2026 14:19:03 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 202214 IP address blocks: 185.50.64.0/23 maxlen: 23 185.50.64.0/24 maxlen: 24 185.50.65.0/24 maxlen: 24 185.50.66.0/23 maxlen: 23 185.50.66.0/24 maxlen: 24 185.50.67.0/24 maxlen: 24 2a01:a6a0::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a4/04292f-f104-417c-acda-571af066cf1e/1/V04loW5dOqEQrF6DNfiPY-VLQvE.crl rsync://rpki.ripe.net/repository/DEFAULT/a4/04292f-f104-417c-acda-571af066cf1e/1/V04loW5dOqEQrF6DNfiPY-VLQvE.mft rsync://rpki.ripe.net/repository/DEFAULT/V04loW5dOqEQrF6DNfiPY-VLQvE.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 10 Jan 2026 21:00:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7f:13:83:e1:e0:4c:f7:42:f4:ce:ac:ec:c9:39:29:1f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=574e25a16e5d3aa110ac5e8335f88f63e54b42f1 Validity Not Before: Jan 2 14:19:03 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=426f2e85c3674536aaa1818aaddacd2dcfda643f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:6b:65:2d:9d:97:ce:39:e0:9b:09:3a:43:16: 80:3c:18:f8:06:20:1b:40:52:9a:72:07:4d:0e:c5: 3c:cd:8d:f7:8a:d3:43:45:54:5d:cd:7d:8e:bc:f5: 9f:d3:50:82:60:28:b4:57:70:c0:fb:d2:55:e1:4e: fa:89:61:7a:1d:50:b7:ca:14:63:a9:5a:ab:0d:a3: 37:23:6c:7d:8a:8c:79:ed:22:a5:3a:6a:2e:57:21: 3d:6e:30:4f:cb:06:25:75:b6:f6:c4:5e:9f:8b:49: 9b:6e:c1:98:6d:81:44:6b:50:7c:5d:1d:17:63:8f: ca:c5:07:2c:a4:aa:36:5f:d2:27:3e:73:e3:92:99: 65:de:19:98:df:14:9c:52:17:e7:28:bf:54:61:d1: cc:d2:aa:c3:16:24:e5:43:39:34:43:a9:e7:0a:ca: 5f:19:99:9b:42:38:8c:79:fa:01:88:86:7a:ee:26: f7:d7:be:0e:80:60:be:e9:a7:51:ef:17:c9:58:5e: 7b:28:63:59:4b:54:af:b9:9b:d3:b0:69:5d:0b:3d: a3:a5:e5:c8:c8:1d:d9:44:ae:c9:8e:41:b1:60:6e: 59:3b:9d:95:fa:9a:e1:89:96:62:c8:a9:2a:22:d4: 2b:b6:76:49:f0:94:7b:66:df:e3:fa:7e:72:24:ea: 13:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 42:6F:2E:85:C3:67:45:36:AA:A1:81:8A:AD:DA:CD:2D:CF:DA:64:3F X509v3 Authority Key Identifier: keyid:57:4E:25:A1:6E:5D:3A:A1:10:AC:5E:83:35:F8:8F:63:E5:4B:42:F1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/V04loW5dOqEQrF6DNfiPY-VLQvE.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a4/04292f-f104-417c-acda-571af066cf1e/1/Qm8uhcNnRTaqoYGKrdrNLc_aZD8.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/a4/04292f-f104-417c-acda-571af066cf1e/1/V04loW5dOqEQrF6DNfiPY-VLQvE.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.50.64.0/22 IPv6: 2a01:a6a0::/32 Signature Algorithm: sha256WithRSAEncryption 03:c8:fc:61:07:a2:b9:1a:95:45:f5:f6:af:b2:14:c6:eb:d5: d8:5e:36:b9:02:94:eb:2f:99:4c:d5:8e:c0:d9:33:ea:91:37: 83:4c:e2:0e:f9:74:35:c8:95:60:31:d3:ea:7e:17:be:94:73: 55:b3:d9:f5:7a:52:b9:b4:05:49:42:04:c0:37:c5:07:af:86: cc:4f:d4:0c:27:db:b0:70:bf:aa:b7:01:13:e4:02:2c:01:f5: 79:dd:3e:49:a1:cd:09:3f:a8:b3:5d:f0:36:fd:03:47:96:97: 78:20:2e:80:e9:46:58:8c:1a:31:66:d2:e7:2a:5e:7a:65:d0: 03:76:c7:b4:ca:61:58:67:33:a2:90:31:09:10:f2:0b:09:6e: 91:96:0e:c6:12:cc:cc:f4:93:90:b0:45:85:6d:80:35:cf:ac: 0c:98:0f:f9:87:91:9a:cd:e7:70:a1:65:d8:43:2a:2d:be:a3: ff:36:04:c3:5f:33:e3:36:ea:a2:62:a6:44:00:84:78:e9:4c: 1e:b3:6e:1f:40:3f:05:d7:28:25:ef:eb:fb:47:ed:54:a3:c1: c6:40:6b:bb:6d:5e:12:e2:f1:b0:8d:ac:c1:b3:15:74:bd:ed: 11:5f:12:ed:94:43:19:c2:44:1f:1b:04:89:7e:c0:ce:20:78: 76:33:39:07 -----BEGIN CERTIFICATE----- MIIFDDCCA/SgAwIBAgISAZt/E4Ph4Ez3QvTOrOzJOSkfMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDU3NGUyNWExNmU1ZDNhYTExMGFjNWU4MzM1Zjg4ZjYzZTU0 YjQyZjEwHhcNMjYwMTAyMTQxOTAzWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg0MjZmMmU4NWMzNjc0NTM2YWFhMTgxOGFhZGRhY2QyZGNmZGE2NDNmMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAv2tlLZ2Xzjngmwk6QxaAPBj4BiAb QFKacgdNDsU8zY33itNDRVRdzX2OvPWf01CCYCi0V3DA+9JV4U76iWF6HVC3yhRj qVqrDaM3I2x9iox57SKlOmouVyE9bjBPywYldbb2xF6fi0mbbsGYbYFEa1B8XR0X Y4/KxQcspKo2X9InPnPjkpll3hmY3xScUhfnKL9UYdHM0qrDFiTlQzk0Q6nnCspf GZmbQjiMefoBiIZ67ib3174OgGC+6adR7xfJWF57KGNZS1SvuZvTsGldCz2jpeXI yB3ZRK7JjkGxYG5ZO52V+prhiZZiyKkqItQrtnZJ8JR7Zt/j+n5yJOoTUwIDAQAB o4ICGDCCAhQwHQYDVR0OBBYEFEJvLoXDZ0U2qqGBiq3azS3P2mQ/MB8GA1UdIwQY MBaAFFdOJaFuXTqhEKxegzX4j2PlS0LxMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvVjA0bG9XNWRPcUVRckY2RE5maVBZLVZMUXZFLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hNC8wNDI5MmYtZjEwNC00MTdjLWFjZGEt NTcxYWYwNjZjZjFlLzEvUW04dWhjTm5SVGFxb1lHS3Jkck5MY19hWkQ4LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9hNC8wNDI5MmYtZjEwNC00MTdjLWFjZGEtNTcxYWYwNjZjZjFl LzEvVjA0bG9XNWRPcUVRckY2RE5maVBZLVZMUXZFLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMC4GCCsGAQUFBwEHAQH/BB8wHTAMBAIAATAGAwQCuTJAMA0E AgACMAcDBQAqAaagMA0GCSqGSIb3DQEBCwUAA4IBAQADyPxhB6K5GpVF9favshTG 69XYXja5ApTrL5lM1Y7A2TPqkTeDTOIO+XQ1yJVgMdPqfhe+lHNVs9n1elK5tAVJ QgTAN8UHr4bMT9QMJ9uwcL+qtwET5AIsAfV53T5Joc0JP6izXfA2/QNHlpd4IC6A 6UZYjBoxZtLnKl56ZdADdse0ymFYZzOikDEJEPILCW6Rlg7GEszM9JOQsEWFbYA1 z6wMmA/5h5GazedwoWXYQyotvqP/NgTDXzPjNuqiYqZEAIR46Uwes24fQD8F1ygl 7+v7R+1Uo8HGQGu7bV4S4vGwjazBsxV0ve0RXxLtlEMZwkQfGwSJfsDOIHh2MzkH -----END CERTIFICATE-----Generated at Sat Jan 10 04:00:43 2026 by rpki-client