This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/298898-7454-402b-81e9-ee1bd344f015/1/QP3K5CO3QpkKtU8-zftATbopp3w.roa File: QP3K5CO3QpkKtU8-zftATbopp3w.roa (raw, json) Hash identifier: XdFv/OYKJHuBMEUZpOTIQ4KgaoA0cL9feVSv0vcJu1Q= Subject key identifier: 40:FD:CA:E4:23:B7:42:99:0A:B5:4F:3E:CD:FB:40:4D:BA:29:A7:7C Certificate issuer: /CN=1e8d205c798ed78f3c44ca0c8f2852e8bec8eaa2 Certificate serial: 019B77C6AB5F8DABE3D8B0405113AB45B8AD Authority key identifier: 1E:8D:20:5C:79:8E:D7:8F:3C:44:CA:0C:8F:28:52:E8:BE:C8:EA:A2 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Ho0gXHmO1488RMoMjyhS6L7I6qI.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/298898-7454-402b-81e9-ee1bd344f015/1/QP3K5CO3QpkKtU8-zftATbopp3w.roa Signing time: Thu 01 Jan 2026 04:17:47 +0000 ROA not before: Thu 01 Jan 2026 04:17:47 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 43775 IP address blocks: 91.147.180.0/24 maxlen: 24 91.147.181.0/24 maxlen: 24 91.147.183.0/24 maxlen: 24 91.147.184.0/24 maxlen: 24 91.147.185.0/24 maxlen: 24 91.147.186.0/24 maxlen: 24 91.147.187.0/24 maxlen: 24 91.147.188.0/24 maxlen: 24 91.147.189.0/24 maxlen: 24 91.147.190.0/24 maxlen: 24 91.147.191.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d0/298898-7454-402b-81e9-ee1bd344f015/1/Ho0gXHmO1488RMoMjyhS6L7I6qI.crl rsync://rpki.ripe.net/repository/DEFAULT/d0/298898-7454-402b-81e9-ee1bd344f015/1/Ho0gXHmO1488RMoMjyhS6L7I6qI.mft rsync://rpki.ripe.net/repository/DEFAULT/Ho0gXHmO1488RMoMjyhS6L7I6qI.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 08 Jan 2026 04:01:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:77:c6:ab:5f:8d:ab:e3:d8:b0:40:51:13:ab:45:b8:ad Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1e8d205c798ed78f3c44ca0c8f2852e8bec8eaa2 Validity Not Before: Jan 1 04:17:47 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=40fdcae423b742990ab54f3ecdfb404dba29a77c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:ee:de:b7:9c:6b:e6:8e:e0:9d:47:b8:87:4a: ae:aa:b5:01:9d:28:40:ce:9e:81:7f:82:95:8a:04: ca:3b:e2:e7:5b:86:19:10:12:11:b9:0a:ab:45:97: 79:89:ca:c7:29:b9:5f:50:fc:62:9f:2a:1b:cf:32: 5f:1e:06:7a:f6:40:c5:6b:ad:4a:bd:b8:17:c9:88: d6:8c:d4:a9:c3:3b:c5:26:a5:45:79:22:5b:26:b2: ed:10:fb:71:ea:a7:e0:e8:17:bf:36:b6:aa:f5:c6: 35:d5:e0:de:16:e8:b9:39:62:ce:d1:d5:94:a6:7e: 7d:31:a8:04:11:bb:79:f0:4f:98:5d:79:91:58:15: 74:02:be:94:db:d8:07:13:e2:3f:da:00:7e:35:94: 50:d0:80:64:66:49:b4:55:80:4c:97:79:b8:1d:1c: 7e:d9:28:93:67:ca:35:ae:a9:14:db:78:af:60:83: 00:8f:ac:85:1e:fc:d2:95:b3:d9:65:df:5e:36:b4: 59:56:57:6e:90:6e:7a:29:60:e8:d1:a8:a7:b1:89: c5:72:b5:93:66:61:08:2c:88:98:4c:3c:62:9d:64: 49:77:2c:bc:a3:e6:99:e9:0f:d1:38:2f:e7:74:e3: cd:83:32:ca:52:5b:11:ab:f8:23:8d:09:e8:ef:0c: eb:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 40:FD:CA:E4:23:B7:42:99:0A:B5:4F:3E:CD:FB:40:4D:BA:29:A7:7C X509v3 Authority Key Identifier: keyid:1E:8D:20:5C:79:8E:D7:8F:3C:44:CA:0C:8F:28:52:E8:BE:C8:EA:A2 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Ho0gXHmO1488RMoMjyhS6L7I6qI.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/298898-7454-402b-81e9-ee1bd344f015/1/QP3K5CO3QpkKtU8-zftATbopp3w.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/298898-7454-402b-81e9-ee1bd344f015/1/Ho0gXHmO1488RMoMjyhS6L7I6qI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 91.147.180.0/23 91.147.183.0-91.147.191.255 Signature Algorithm: sha256WithRSAEncryption e5:8c:ec:1d:11:2a:25:01:4b:bf:de:5d:d0:17:04:0b:56:7b: 88:f5:71:6e:e5:62:4b:c6:28:93:f2:f6:c0:98:7c:b2:c3:ee: 0b:89:f0:aa:51:e0:ec:8a:bb:a9:38:98:92:2a:fb:55:64:45: 5c:a2:91:62:98:2f:c0:ac:f7:29:cd:fe:cc:d3:c8:cd:91:58: f1:3f:11:e0:5b:df:16:70:64:0c:16:e4:79:c5:63:1b:d6:4e: 57:76:03:63:86:c9:0c:40:72:ff:02:97:f6:ee:b7:ff:76:45: 2e:49:62:7b:ed:33:22:54:63:55:09:7f:9d:88:6d:b5:d7:cb: 1d:69:4d:da:32:b9:e4:3d:04:b9:f9:61:e5:32:50:fe:43:71: 3e:e2:f2:c0:dc:09:74:ec:49:bb:10:81:5a:61:3d:7a:35:26: 6b:7d:6c:4e:f8:28:3d:1e:a6:66:65:21:b6:a3:ae:58:9e:ca: 97:e3:31:70:69:95:66:81:c5:d4:d8:51:7c:89:28:e8:8b:3e: 8b:7e:18:53:e6:3e:7c:f2:63:e8:e0:76:af:3f:c4:81:29:f8: 30:2c:28:c5:8a:72:40:b2:a0:74:7c:f2:ec:29:32:9c:db:74: de:13:d7:c0:1e:1a:db:25:7e:1b:71:a1:7c:d6:70:05:91:96: 7e:69:a9:c9 -----BEGIN CERTIFICATE----- MIIFCzCCA/OgAwIBAgISAZt3xqtfjavj2LBAUROrRbitMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDFlOGQyMDVjNzk4ZWQ3OGYzYzQ0Y2EwYzhmMjg1MmU4YmVj OGVhYTIwHhcNMjYwMTAxMDQxNzQ3WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg0MGZkY2FlNDIzYjc0Mjk5MGFiNTRmM2VjZGZiNDA0ZGJhMjlhNzdjMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAze7et5xr5o7gnUe4h0quqrUBnShA zp6Bf4KVigTKO+LnW4YZEBIRuQqrRZd5icrHKblfUPxinyobzzJfHgZ69kDFa61K vbgXyYjWjNSpwzvFJqVFeSJbJrLtEPtx6qfg6Be/Nraq9cY11eDeFui5OWLO0dWU pn59MagEEbt58E+YXXmRWBV0Ar6U29gHE+I/2gB+NZRQ0IBkZkm0VYBMl3m4HRx+ 2SiTZ8o1rqkU23ivYIMAj6yFHvzSlbPZZd9eNrRZVldukG56KWDo0ainsYnFcrWT ZmEILIiYTDxinWRJdyy8o+aZ6Q/ROC/ndOPNgzLKUlsRq/gjjQno7wzrPQIDAQAB o4ICFzCCAhMwHQYDVR0OBBYEFED9yuQjt0KZCrVPPs37QE26Kad8MB8GA1UdIwQY MBaAFB6NIFx5jtePPETKDI8oUui+yOqiMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSG8wZ1hIbU8xNDg4Uk1vTWp5aFM2TDdJNnFJLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kMC8yOTg4OTgtNzQ1NC00MDJiLTgxZTkt ZWUxYmQzNDRmMDE1LzEvUVAzSzVDTzNRcGtLdFU4LXpmdEFUYm9wcDN3LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kMC8yOTg4OTgtNzQ1NC00MDJiLTgxZTktZWUxYmQzNDRmMDE1 LzEvSG8wZ1hIbU8xNDg4Uk1vTWp5aFM2TDdJNnFJLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMC0GCCsGAQUFBwEHAQH/BB4wHDAaBAIAATAUAwQBW5O0MAwD BABbk7cDBAZbk4AwDQYJKoZIhvcNAQELBQADggEBAOWM7B0RKiUBS7/eXdAXBAtW e4j1cW7lYkvGKJPy9sCYfLLD7guJ8KpR4OyKu6k4mJIq+1VkRVyikWKYL8Cs9ynN /szTyM2RWPE/EeBb3xZwZAwW5HnFYxvWTld2A2OGyQxAcv8Cl/but/92RS5JYnvt MyJUY1UJf52IbbXXyx1pTdoyueQ9BLn5YeUyUP5DcT7i8sDcCXTsSbsQgVphPXo1 Jmt9bE74KD0epmZlIbajrlieypfjMXBplWaBxdTYUXyJKOiLPot+GFPmPnzyY+jg dq8/xIEp+DAsKMWKckCyoHR88uwpMpzbdN4T18AeGtslfhtxoXzWcAWRln5pqck= -----END CERTIFICATE-----Generated at Wed Jan 7 10:22:02 2026 by rpki-client