This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b5/cd7047-0816-4821-8dea-6078efd0785e/1/qFX_V5K9S7pFc_wZHT0Iz0bF_ag.roa File: qFX_V5K9S7pFc_wZHT0Iz0bF_ag.roa (raw, json) Hash identifier: IQpJTlL5gYm7svny6BIGlabTeTBoMOPgbwqqpZYWraQ= Subject key identifier: A8:55:FF:57:92:BD:4B:BA:45:73:FC:19:1D:3D:08:CF:46:C5:FD:A8 Certificate issuer: /CN=0b78b2d3f62700fe67e593b5a33d1cf91789252f Certificate serial: 019B797EDA3D3F3CF86EDFA513DA28D0A856 Authority key identifier: 0B:78:B2:D3:F6:27:00:FE:67:E5:93:B5:A3:3D:1C:F9:17:89:25:2F Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/C3iy0_YnAP5n5ZO1oz0c-ReJJS8.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b5/cd7047-0816-4821-8dea-6078efd0785e/1/qFX_V5K9S7pFc_wZHT0Iz0bF_ag.roa Signing time: Thu 01 Jan 2026 12:18:35 +0000 ROA not before: Thu 01 Jan 2026 12:18:35 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 202275 IP address blocks: 176.113.94.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b5/cd7047-0816-4821-8dea-6078efd0785e/1/C3iy0_YnAP5n5ZO1oz0c-ReJJS8.crl rsync://rpki.ripe.net/repository/DEFAULT/b5/cd7047-0816-4821-8dea-6078efd0785e/1/C3iy0_YnAP5n5ZO1oz0c-ReJJS8.mft rsync://rpki.ripe.net/repository/DEFAULT/C3iy0_YnAP5n5ZO1oz0c-ReJJS8.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 12 Jan 2026 18:00:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:79:7e:da:3d:3f:3c:f8:6e:df:a5:13:da:28:d0:a8:56 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0b78b2d3f62700fe67e593b5a33d1cf91789252f Validity Not Before: Jan 1 12:18:35 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=a855ff5792bd4bba4573fc191d3d08cf46c5fda8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:ac:a1:c7:94:96:b7:11:6c:05:5d:42:bd:a4: 5d:d8:85:18:74:24:a3:d5:25:f4:f6:04:d1:3c:75: 3e:d8:0f:62:be:7a:2c:11:4d:fe:6c:e0:be:2b:64: db:d1:cd:31:e4:ec:90:f2:57:28:fc:8e:f8:9b:3e: 2e:f2:6b:3e:db:17:51:ac:f5:a4:d2:b8:68:e3:c8: ed:e4:fd:3e:83:c6:dd:ba:96:f9:b9:9d:ac:6f:b2: b9:27:bf:74:05:d9:00:f1:59:a6:6c:5b:c3:9b:86: 3f:3b:a1:03:bc:7e:56:74:64:b1:7a:12:e1:dd:9f: a4:b9:b9:b0:da:50:e1:1d:34:97:28:67:f4:5e:07: 2a:e2:43:b4:d4:c4:6b:da:b2:1f:02:72:22:47:3f: d1:81:22:c2:ae:3d:80:7d:64:5f:74:c5:ca:80:2c: 77:39:7d:71:b9:09:e8:f1:7f:72:7c:6b:d9:d2:53: a8:3d:0c:50:83:fd:a3:70:3f:62:7f:32:17:f9:00: d7:8d:d0:f8:9c:5d:ea:06:42:b1:b7:6f:1e:8a:40: 43:1d:d5:d4:e2:ba:e5:2e:0d:16:76:86:37:2f:4e: 02:c9:22:ba:f6:d3:21:bb:8e:f0:c1:c9:20:a4:a4: 35:38:99:15:81:b7:4f:52:69:9e:14:56:1f:44:5b: 5c:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A8:55:FF:57:92:BD:4B:BA:45:73:FC:19:1D:3D:08:CF:46:C5:FD:A8 X509v3 Authority Key Identifier: keyid:0B:78:B2:D3:F6:27:00:FE:67:E5:93:B5:A3:3D:1C:F9:17:89:25:2F X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/C3iy0_YnAP5n5ZO1oz0c-ReJJS8.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b5/cd7047-0816-4821-8dea-6078efd0785e/1/qFX_V5K9S7pFc_wZHT0Iz0bF_ag.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/b5/cd7047-0816-4821-8dea-6078efd0785e/1/C3iy0_YnAP5n5ZO1oz0c-ReJJS8.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 176.113.94.0/24 Signature Algorithm: sha256WithRSAEncryption b3:21:11:e5:d3:41:4d:28:4b:ce:36:90:0a:76:55:8c:ee:c6: 50:fd:a7:ab:2e:22:35:24:2a:3b:0a:77:00:c9:d5:bf:42:ab: cd:0c:b9:40:e8:1b:8c:4b:7e:bd:4d:0a:8e:6a:c2:de:36:d4: 84:39:ba:b5:a4:54:e4:10:e3:85:dc:e5:a7:09:77:e2:1b:0f: 9c:29:13:eb:54:91:a5:fd:fa:00:fb:0a:e2:02:e2:76:cb:e1: 85:ab:57:10:98:35:88:f2:98:77:b8:53:29:cf:08:01:17:85: 88:32:6c:56:10:d5:85:b7:2f:db:79:88:00:09:c5:d0:33:72: db:e0:40:28:5e:0c:84:e2:22:23:11:95:77:aa:ea:a6:0b:09: 75:69:38:7a:d6:f9:ae:a5:f9:bb:c7:c8:33:e4:1b:c8:90:2d: 48:19:cf:1e:1e:12:b6:f3:68:46:3c:a8:c4:8f:4c:5e:ae:56: 46:ff:fe:bc:80:80:9b:a6:43:dd:e3:5e:f1:97:a7:fa:16:d9: 43:c3:0f:8c:1d:c9:00:83:c9:06:17:cc:a9:44:89:e0:7f:fc: 8c:8d:97:36:a5:c7:a0:dd:7e:ba:8b:6a:21:b6:a8:c7:12:56: d1:32:65:a5:86:a0:9e:f2:c2:1e:88:8f:bd:50:f7:02:d3:1a: fd:52:9f:e6 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt5fto9Pzz4bt+lE9oo0KhWMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDBiNzhiMmQzZjYyNzAwZmU2N2U1OTNiNWEzM2QxY2Y5MTc4 OTI1MmYwHhcNMjYwMTAxMTIxODM1WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhhODU1ZmY1NzkyYmQ0YmJhNDU3M2ZjMTkxZDNkMDhjZjQ2YzVmZGE4MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAw6yhx5SWtxFsBV1CvaRd2IUYdCSj 1SX09gTRPHU+2A9ivnosEU3+bOC+K2Tb0c0x5OyQ8lco/I74mz4u8ms+2xdRrPWk 0rho48jt5P0+g8bdupb5uZ2sb7K5J790BdkA8VmmbFvDm4Y/O6EDvH5WdGSxehLh 3Z+kubmw2lDhHTSXKGf0Xgcq4kO01MRr2rIfAnIiRz/RgSLCrj2AfWRfdMXKgCx3 OX1xuQno8X9yfGvZ0lOoPQxQg/2jcD9ifzIX+QDXjdD4nF3qBkKxt28eikBDHdXU 4rrlLg0WdoY3L04CySK69tMhu47wwckgpKQ1OJkVgbdPUmmeFFYfRFtc0QIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFKhV/1eSvUu6RXP8GR09CM9Gxf2oMB8GA1UdIwQY MBaAFAt4stP2JwD+Z+WTtaM9HPkXiSUvMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvQzNpeTBfWW5BUDVuNVpPMW96MGMtUmVKSlM4LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iNS9jZDcwNDctMDgxNi00ODIxLThkZWEt NjA3OGVmZDA3ODVlLzEvcUZYX1Y1SzlTN3BGY193WkhUMEl6MGJGX2FnLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iNS9jZDcwNDctMDgxNi00ODIxLThkZWEtNjA3OGVmZDA3ODVl LzEvQzNpeTBfWW5BUDVuNVpPMW96MGMtUmVKSlM4LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAsHFeMA0G CSqGSIb3DQEBCwUAA4IBAQCzIRHl00FNKEvONpAKdlWM7sZQ/aerLiI1JCo7CncA ydW/QqvNDLlA6BuMS369TQqOasLeNtSEObq1pFTkEOOF3OWnCXfiGw+cKRPrVJGl /foA+wriAuJ2y+GFq1cQmDWI8ph3uFMpzwgBF4WIMmxWENWFty/beYgACcXQM3Lb 4EAoXgyE4iIjEZV3quqmCwl1aTh61vmupfm7x8gz5BvIkC1IGc8eHhK282hGPKjE j0xerlZG//68gICbpkPd417xl6f6FtlDww+MHckAg8kGF8ypRIngf/yMjZc2pceg 3X66i2ohtqjHElbRMmWlhqCe8sIeiI+9UPcC0xr9Up/m -----END CERTIFICATE-----Generated at Mon Jan 12 03:10:32 2026 by rpki-client