This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/df/a93699-188b-470a-96b7-29b085dd23ad/1/ifM73hFNDS-HrpzAXJZiRxf-Neo.roa File: ifM73hFNDS-HrpzAXJZiRxf-Neo.roa (raw, json) Hash identifier: k9cUGDKroPZ+BsMFJtunA+HgnGfK8aKvAASRzcpd1hE= Subject key identifier: 89:F3:3B:DE:11:4D:0D:2F:87:AE:9C:C0:5C:96:62:47:17:FE:35:EA Certificate issuer: /CN=2d1caa69358f8c98f7a719f2597d5daddbd0018c Certificate serial: 019B7F14367C28D4ADEEEAD6D5119C17E74F Authority key identifier: 2D:1C:AA:69:35:8F:8C:98:F7:A7:19:F2:59:7D:5D:AD:DB:D0:01:8C Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/LRyqaTWPjJj3pxnyWX1drdvQAYw.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/df/a93699-188b-470a-96b7-29b085dd23ad/1/ifM73hFNDS-HrpzAXJZiRxf-Neo.roa Signing time: Fri 02 Jan 2026 14:19:49 +0000 ROA not before: Fri 02 Jan 2026 14:19:49 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 208737 IP address blocks: 91.92.54.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/df/a93699-188b-470a-96b7-29b085dd23ad/1/LRyqaTWPjJj3pxnyWX1drdvQAYw.crl rsync://rpki.ripe.net/repository/DEFAULT/df/a93699-188b-470a-96b7-29b085dd23ad/1/LRyqaTWPjJj3pxnyWX1drdvQAYw.mft rsync://rpki.ripe.net/repository/DEFAULT/LRyqaTWPjJj3pxnyWX1drdvQAYw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 24 Jan 2026 00:01:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7f:14:36:7c:28:d4:ad:ee:ea:d6:d5:11:9c:17:e7:4f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2d1caa69358f8c98f7a719f2597d5daddbd0018c Validity Not Before: Jan 2 14:19:49 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=89f33bde114d0d2f87ae9cc05c96624717fe35ea Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:90:3b:57:30:28:4a:9a:09:57:6c:f1:26:e9:e3: 65:f8:4e:7a:54:d6:17:d1:72:c7:28:d9:75:89:75: c1:ac:ac:ef:f7:94:42:34:82:90:41:80:93:8f:7e: 70:0d:41:25:f1:62:97:a9:2b:ed:8c:7a:dd:b1:4c: c3:3e:79:97:10:c7:c3:98:a1:99:30:40:c9:1d:7d: a8:b4:04:5f:3f:de:0e:5a:da:b1:db:dc:a9:cd:98: bf:a1:3c:69:c9:42:65:fd:f4:d8:61:78:09:05:f5: f0:ef:c1:a0:3f:97:53:ae:22:8a:be:fb:c2:84:3f: ed:2e:79:7b:61:05:38:d9:2f:a9:67:56:50:a5:f8: b3:a1:04:34:a4:de:02:b9:c5:4c:a9:3c:b6:8b:cd: c6:6f:59:48:91:5e:3a:83:71:20:49:b7:fb:c9:bd: 2f:d2:51:a1:a3:ee:1e:7e:33:78:cf:f5:10:58:ea: ab:1d:5a:98:ed:b8:0a:8c:90:a1:f9:76:a5:b9:38: 45:6e:77:8f:d4:9a:ea:65:34:cd:fc:21:92:82:af: 2a:7e:21:fc:ef:04:14:b1:15:67:f5:be:d4:be:11: 5d:1e:ae:e6:b0:59:c8:20:04:f1:3f:28:0a:15:ab: 79:c2:33:c1:9f:ed:42:58:cd:91:1b:91:e7:af:93: 50:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 89:F3:3B:DE:11:4D:0D:2F:87:AE:9C:C0:5C:96:62:47:17:FE:35:EA X509v3 Authority Key Identifier: keyid:2D:1C:AA:69:35:8F:8C:98:F7:A7:19:F2:59:7D:5D:AD:DB:D0:01:8C X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/LRyqaTWPjJj3pxnyWX1drdvQAYw.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/df/a93699-188b-470a-96b7-29b085dd23ad/1/ifM73hFNDS-HrpzAXJZiRxf-Neo.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/df/a93699-188b-470a-96b7-29b085dd23ad/1/LRyqaTWPjJj3pxnyWX1drdvQAYw.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 91.92.54.0/24 Signature Algorithm: sha256WithRSAEncryption ad:c6:d6:bd:5f:fb:0d:de:54:ed:a8:7a:f8:66:bb:c6:e1:a2: 20:91:f4:40:fc:12:3a:ac:69:0f:e3:93:a8:42:9d:b9:24:3f: 12:3e:8c:af:8c:43:ea:43:af:8a:6d:7e:58:55:10:03:b7:ff: ff:27:43:75:75:d9:d1:aa:94:27:cd:79:ec:29:45:6c:e5:cc: e9:b2:6d:01:6a:98:2d:25:66:95:53:69:ae:c4:66:92:22:e7: 38:fe:1b:f8:77:f1:56:b1:d0:25:be:2c:58:84:d7:55:16:44: 5b:77:1b:96:91:ef:c1:12:31:08:cc:e4:79:7e:24:18:e6:62: 1c:38:1d:89:7c:b0:50:13:6b:69:02:63:55:f0:a6:0c:5f:06: 0c:b7:16:6a:e5:98:72:02:28:ea:66:5d:ad:23:28:ee:f5:22: 38:fa:0c:ee:03:f8:a3:da:7d:d8:ae:57:01:a0:eb:c8:bb:24: 13:86:c0:d5:65:e2:e9:10:e2:5a:ff:81:38:cb:b5:56:53:69: 84:6e:89:14:56:e6:9b:36:23:01:de:36:80:8c:0a:83:ab:ff: 03:3b:ff:24:be:35:30:7e:e3:da:a5:5e:4b:78:94:96:5f:bc: fe:14:02:a3:ad:81:b3:ab:22:3a:c6:0f:55:6e:7b:a5:55:41: 79:26:a8:53 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt/FDZ8KNSt7urW1RGcF+dPMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJkMWNhYTY5MzU4ZjhjOThmN2E3MTlmMjU5N2Q1ZGFkZGJk MDAxOGMwHhcNMjYwMTAyMTQxOTQ5WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg4OWYzM2JkZTExNGQwZDJmODdhZTljYzA1Yzk2NjI0NzE3ZmUzNWVhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAkDtXMChKmglXbPEm6eNl+E56VNYX 0XLHKNl1iXXBrKzv95RCNIKQQYCTj35wDUEl8WKXqSvtjHrdsUzDPnmXEMfDmKGZ MEDJHX2otARfP94OWtqx29ypzZi/oTxpyUJl/fTYYXgJBfXw78GgP5dTriKKvvvC hD/tLnl7YQU42S+pZ1ZQpfizoQQ0pN4CucVMqTy2i83Gb1lIkV46g3EgSbf7yb0v 0lGho+4efjN4z/UQWOqrHVqY7bgKjJCh+XaluThFbneP1JrqZTTN/CGSgq8qfiH8 7wQUsRVn9b7UvhFdHq7msFnIIATxPygKFat5wjPBn+1CWM2RG5Hnr5NQOwIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFInzO94RTQ0vh66cwFyWYkcX/jXqMB8GA1UdIwQY MBaAFC0cqmk1j4yY96cZ8ll9Xa3b0AGMMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvTFJ5cWFUV1BqSmozcHhueVdYMWRyZHZRQVl3LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kZi9hOTM2OTktMTg4Yi00NzBhLTk2Yjct MjliMDg1ZGQyM2FkLzEvaWZNNzNoRk5EUy1IcnB6QVhKWmlSeGYtTmVvLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kZi9hOTM2OTktMTg4Yi00NzBhLTk2YjctMjliMDg1ZGQyM2Fk LzEvTFJ5cWFUV1BqSmozcHhueVdYMWRyZHZRQVl3LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAW1w2MA0G CSqGSIb3DQEBCwUAA4IBAQCtxta9X/sN3lTtqHr4ZrvG4aIgkfRA/BI6rGkP45Oo Qp25JD8SPoyvjEPqQ6+KbX5YVRADt///J0N1ddnRqpQnzXnsKUVs5czpsm0Bapgt JWaVU2muxGaSIuc4/hv4d/FWsdAlvixYhNdVFkRbdxuWke/BEjEIzOR5fiQY5mIc OB2JfLBQE2tpAmNV8KYMXwYMtxZq5ZhyAijqZl2tIyju9SI4+gzuA/ij2n3YrlcB oOvIuyQThsDVZeLpEOJa/4E4y7VWU2mEbokUVuabNiMB3jaAjAqDq/8DO/8kvjUw fuPapV5LeJSWX7z+FAKjrYGzqyI6xg9VbnulVUF5JqhT -----END CERTIFICATE-----Generated at Fri Jan 23 09:21:52 2026 by rpki-client