This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/22/b1e3e1-8b7d-4e22-870c-58f574495bb8/1/k71EKLBF_cl_NNSjkCcESijpJkY.roa File: k71EKLBF_cl_NNSjkCcESijpJkY.roa (raw, json) Hash identifier: NcQun5U6vnHcxP8j+XhrdDKMSW0mSEQmABKKB6veuXY= Subject key identifier: 93:BD:44:28:B0:45:FD:C9:7F:34:D4:A3:90:27:04:4A:28:E9:26:46 Certificate issuer: /CN=a90200a0000df5d845b9db284d0a2dbee676c5a8 Certificate serial: 019B7BA35AA90179EBE01A43A9E4978754AC Authority key identifier: A9:02:00:A0:00:0D:F5:D8:45:B9:DB:28:4D:0A:2D:BE:E6:76:C5:A8 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qQIAoAAN9dhFudsoTQotvuZ2xag.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/22/b1e3e1-8b7d-4e22-870c-58f574495bb8/1/k71EKLBF_cl_NNSjkCcESijpJkY.roa Signing time: Thu 01 Jan 2026 22:17:41 +0000 ROA not before: Thu 01 Jan 2026 22:17:41 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 40676 IP address blocks: 91.222.64.0/24 maxlen: 24 91.222.65.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/22/b1e3e1-8b7d-4e22-870c-58f574495bb8/1/qQIAoAAN9dhFudsoTQotvuZ2xag.crl rsync://rpki.ripe.net/repository/DEFAULT/22/b1e3e1-8b7d-4e22-870c-58f574495bb8/1/qQIAoAAN9dhFudsoTQotvuZ2xag.mft rsync://rpki.ripe.net/repository/DEFAULT/qQIAoAAN9dhFudsoTQotvuZ2xag.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 23 Jan 2026 16:20:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7b:a3:5a:a9:01:79:eb:e0:1a:43:a9:e4:97:87:54:ac Signature Algorithm: sha256WithRSAEncryption Issuer: CN=a90200a0000df5d845b9db284d0a2dbee676c5a8 Validity Not Before: Jan 1 22:17:41 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=93bd4428b045fdc97f34d4a39027044a28e92646 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:d6:78:1e:48:1b:b8:d0:bb:7c:bc:c4:d9:c8: 91:73:3d:67:17:b5:d1:49:46:f2:a7:04:1f:84:fd: 82:83:ee:67:70:3c:e6:06:e2:4c:c8:fc:ea:5b:29: f8:77:bd:b4:bf:fe:30:ae:85:1d:56:91:df:ed:ad: de:98:23:50:10:cb:ca:80:97:f7:de:e9:f1:00:ed: 46:a9:a1:81:9f:31:f9:b3:97:b4:65:f1:67:13:79: 94:33:f2:6f:30:72:54:eb:ef:2f:44:93:ba:54:a5: 88:cf:37:71:45:a3:8b:9a:f6:58:33:91:46:08:c9: 97:c6:21:45:70:42:b9:ad:48:6f:19:2e:86:f7:73: 96:98:62:56:67:46:88:79:08:d1:88:d7:62:db:64: 4c:02:49:51:ba:58:1f:40:14:73:fc:a1:20:48:0f: 27:aa:7f:d0:c0:c7:8a:32:ef:b6:80:c4:68:66:ab: cb:44:53:c7:cc:9f:e2:50:8c:8d:31:d8:bd:77:fe: 6c:92:a7:e2:cf:b2:c1:a9:6f:8e:f6:0e:b1:11:65: e8:80:65:0c:8f:f2:29:a0:66:cd:25:93:34:4c:2e: df:ef:eb:b4:1f:54:e2:32:f8:ed:0a:85:1a:c0:11: f6:47:1e:53:74:00:d6:ef:63:6d:05:99:cd:d9:16: 9e:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 93:BD:44:28:B0:45:FD:C9:7F:34:D4:A3:90:27:04:4A:28:E9:26:46 X509v3 Authority Key Identifier: keyid:A9:02:00:A0:00:0D:F5:D8:45:B9:DB:28:4D:0A:2D:BE:E6:76:C5:A8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qQIAoAAN9dhFudsoTQotvuZ2xag.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/22/b1e3e1-8b7d-4e22-870c-58f574495bb8/1/k71EKLBF_cl_NNSjkCcESijpJkY.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/22/b1e3e1-8b7d-4e22-870c-58f574495bb8/1/qQIAoAAN9dhFudsoTQotvuZ2xag.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 91.222.64.0/23 Signature Algorithm: sha256WithRSAEncryption bb:92:60:b2:c6:ca:8c:57:70:e9:14:be:ba:04:eb:4c:cc:72: c7:84:c7:99:0e:57:1c:db:b7:95:8b:29:4e:22:ce:0d:5a:05: 7d:3c:49:fd:c7:ad:c5:c7:57:b1:91:6f:b7:53:c9:89:2a:52: 58:7d:07:c9:2b:7d:cc:ef:27:6e:bf:6a:46:c8:bb:75:8e:ac: 6a:52:a1:5d:c0:bd:61:1b:9e:07:0b:d2:29:73:a2:0b:39:db: b0:13:e0:9b:28:b4:a2:18:47:d9:4d:07:c6:9b:83:2f:41:45: 5a:7e:cc:cc:74:d8:a1:16:6b:90:d6:db:56:c9:ba:7e:31:a7: 8f:82:4c:bd:68:6d:dc:83:46:06:b5:75:74:38:08:39:be:bc: 78:b9:97:b1:4e:7e:32:08:f8:0f:43:2a:33:c4:5c:3a:7f:43: 32:75:a2:3e:ef:b6:78:48:7b:6a:46:96:72:0c:b4:9e:6d:e5: 6b:e3:b6:96:35:ee:41:11:d4:36:16:64:60:e9:3b:95:3b:f3: 1f:a7:8e:d9:17:8d:f8:a3:f6:d6:98:d7:30:78:cd:c7:44:a5: 43:6a:79:23:35:5b:ce:6e:f6:fc:b7:7f:5a:e5:03:5d:e7:b0: 84:ee:6c:91:7d:84:b0:53:a0:a5:19:28:70:11:90:92:12:b3: d3:d8:99:54 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt7o1qpAXnr4BpDqeSXh1SsMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGE5MDIwMGEwMDAwZGY1ZDg0NWI5ZGIyODRkMGEyZGJlZTY3 NmM1YTgwHhcNMjYwMTAxMjIxNzQxWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg5M2JkNDQyOGIwNDVmZGM5N2YzNGQ0YTM5MDI3MDQ0YTI4ZTkyNjQ2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1dZ4HkgbuNC7fLzE2ciRcz1nF7XR SUbypwQfhP2Cg+5ncDzmBuJMyPzqWyn4d720v/4wroUdVpHf7a3emCNQEMvKgJf3 3unxAO1GqaGBnzH5s5e0ZfFnE3mUM/JvMHJU6+8vRJO6VKWIzzdxRaOLmvZYM5FG CMmXxiFFcEK5rUhvGS6G93OWmGJWZ0aIeQjRiNdi22RMAklRulgfQBRz/KEgSA8n qn/QwMeKMu+2gMRoZqvLRFPHzJ/iUIyNMdi9d/5skqfiz7LBqW+O9g6xEWXogGUM j/IpoGbNJZM0TC7f7+u0H1TiMvjtCoUawBH2Rx5TdADW72NtBZnN2RaegwIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFJO9RCiwRf3JfzTUo5AnBEoo6SZGMB8GA1UdIwQY MBaAFKkCAKAADfXYRbnbKE0KLb7mdsWoMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvcVFJQW9BQU45ZGhGdWRzb1RRb3R2dVoyeGFnLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yMi9iMWUzZTEtOGI3ZC00ZTIyLTg3MGMt NThmNTc0NDk1YmI4LzEvazcxRUtMQkZfY2xfTk5TamtDY0VTaWpwSmtZLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yMi9iMWUzZTEtOGI3ZC00ZTIyLTg3MGMtNThmNTc0NDk1YmI4 LzEvcVFJQW9BQU45ZGhGdWRzb1RRb3R2dVoyeGFnLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBW95AMA0G CSqGSIb3DQEBCwUAA4IBAQC7kmCyxsqMV3DpFL66BOtMzHLHhMeZDlcc27eViylO Is4NWgV9PEn9x63Fx1exkW+3U8mJKlJYfQfJK33M7yduv2pGyLt1jqxqUqFdwL1h G54HC9Ipc6ILOduwE+CbKLSiGEfZTQfGm4MvQUVafszMdNihFmuQ1ttWybp+MaeP gky9aG3cg0YGtXV0OAg5vrx4uZexTn4yCPgPQyozxFw6f0MydaI+77Z4SHtqRpZy DLSebeVr47aWNe5BEdQ2FmRg6TuVO/Mfp47ZF434o/bWmNcweM3HRKVDankjNVvO bvb8t39a5QNd57CE7myRfYSwU6ClGShwEZCSErPT2JlU -----END CERTIFICATE-----Generated at Fri Jan 23 02:00:09 2026 by rpki-client