This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/00/c04d99-de44-40ab-a2c0-08279455f941/1/tB4j1pvJwB8N2xtUjgH-EaS2pKM.roa File: tB4j1pvJwB8N2xtUjgH-EaS2pKM.roa (raw, json) Hash identifier: lQm30cKDdInn0Sofx9UuVyNM+EwoftWy+uBDomRAiDY= Subject key identifier: B4:1E:23:D6:9B:C9:C0:1F:0D:DB:1B:54:8E:01:FE:11:A4:B6:A4:A3 Certificate issuer: /CN=faa6e5e86023c9b314ee651291fafe8c6dd69a83 Certificate serial: 019B7B36AFA7BBBDE3725E2DF68C33411DB1 Authority key identifier: FA:A6:E5:E8:60:23:C9:B3:14:EE:65:12:91:FA:FE:8C:6D:D6:9A:83 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-qbl6GAjybMU7mUSkfr-jG3WmoM.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/00/c04d99-de44-40ab-a2c0-08279455f941/1/tB4j1pvJwB8N2xtUjgH-EaS2pKM.roa Signing time: Thu 01 Jan 2026 20:19:00 +0000 ROA not before: Thu 01 Jan 2026 20:19:00 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 200736 IP address blocks: 91.211.212.0/22 maxlen: 24 194.187.255.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/00/c04d99-de44-40ab-a2c0-08279455f941/1/1-qbl6GAjybMU7mUSkfr-jG3WmoM.crl rsync://rpki.ripe.net/repository/DEFAULT/00/c04d99-de44-40ab-a2c0-08279455f941/1/1-qbl6GAjybMU7mUSkfr-jG3WmoM.mft rsync://rpki.ripe.net/repository/DEFAULT/1-qbl6GAjybMU7mUSkfr-jG3WmoM.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 22 Jan 2026 08:01:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7b:36:af:a7:bb:bd:e3:72:5e:2d:f6:8c:33:41:1d:b1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=faa6e5e86023c9b314ee651291fafe8c6dd69a83 Validity Not Before: Jan 1 20:19:00 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=b41e23d69bc9c01f0ddb1b548e01fe11a4b6a4a3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:93:84:b2:c7:c3:ea:7d:76:e2:73:70:07:6e: bf:4e:c6:25:46:cc:d8:51:5d:ef:0a:46:1f:c5:53: 20:78:25:9d:14:1e:68:6e:45:c1:0c:fd:2d:19:b4: ba:af:92:ab:92:46:67:90:09:b8:c4:9c:ed:c7:7e: d0:31:69:55:65:23:fd:c6:ea:fa:ba:e1:e6:71:40: b3:40:01:bd:9a:4d:fe:51:a5:57:99:04:04:b2:39: 30:da:05:50:a4:86:37:39:5f:09:4f:76:9b:c3:4b: e7:a9:dc:c2:3e:69:ca:aa:6c:e8:4d:86:6c:0b:7a: bb:08:f1:2d:81:e8:dd:46:cd:3d:1f:db:ce:90:95: ac:4d:c1:f4:9f:e6:ec:2e:53:62:32:f3:30:27:2c: 99:88:31:57:42:31:fb:25:c9:7a:ee:59:5a:9a:0f: f5:35:c6:f3:38:66:b8:2a:d5:17:06:51:15:40:16: 0a:a1:21:60:35:7e:63:f0:37:5b:e5:7e:13:89:7e: d2:06:1c:83:dd:3a:4e:08:cb:c0:9c:2a:d7:f7:84: 0c:58:e2:f5:bc:87:34:86:c1:62:07:e8:12:12:26: 69:48:ba:d6:21:95:1a:dc:fd:37:96:90:e8:12:ed: de:34:c4:ce:9d:52:20:8c:d1:a7:bf:80:e5:e5:69: ba:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B4:1E:23:D6:9B:C9:C0:1F:0D:DB:1B:54:8E:01:FE:11:A4:B6:A4:A3 X509v3 Authority Key Identifier: keyid:FA:A6:E5:E8:60:23:C9:B3:14:EE:65:12:91:FA:FE:8C:6D:D6:9A:83 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-qbl6GAjybMU7mUSkfr-jG3WmoM.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/00/c04d99-de44-40ab-a2c0-08279455f941/1/tB4j1pvJwB8N2xtUjgH-EaS2pKM.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/00/c04d99-de44-40ab-a2c0-08279455f941/1/1-qbl6GAjybMU7mUSkfr-jG3WmoM.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 91.211.212.0/22 194.187.255.0/24 Signature Algorithm: sha256WithRSAEncryption 8b:44:7e:65:a7:d2:56:5e:dd:ee:1d:3b:e7:b8:46:90:b6:35: d9:11:0a:01:b2:f9:0a:04:01:49:c9:0e:4a:ea:a3:30:79:3f: cd:be:8d:9b:8b:e0:1d:1a:93:c3:71:af:cf:fe:0a:22:58:8c: 7d:ad:53:7b:02:21:fa:e7:52:f7:26:81:79:f2:5c:6d:e6:fe: 97:ba:11:61:6d:e0:ef:7d:e4:4f:59:e0:41:2f:11:0b:04:33: 29:62:84:84:3c:bf:0e:62:f1:a4:1a:cb:25:c6:15:f1:aa:55: 0b:17:26:a3:80:7f:b2:ad:69:d7:82:6f:25:83:d3:8f:ee:34: 36:5f:5e:0c:3b:7a:6b:03:62:c4:f9:c6:cb:25:12:3c:3f:e4: 3d:a4:80:4f:d0:aa:0b:88:c9:57:96:0e:de:d6:7d:27:0f:5e: be:4e:59:a2:09:f5:f0:aa:5f:1f:b8:48:d2:67:29:cd:fc:b8: 91:d9:df:ae:e2:28:fe:e1:a9:63:0a:b3:74:8e:35:7c:c3:c5: ea:03:61:9d:a7:53:1e:94:55:45:d9:10:4c:ae:66:26:9f:ea: 2b:9c:ba:50:d3:56:e2:80:3a:4f:a0:29:a0:40:8c:73:b5:e5: 4a:71:8b:dd:6b:56:a6:65:76:9a:ca:09:d0:c9:5e:02:21:4f: f3:ea:7d:cc -----BEGIN CERTIFICATE----- MIIFBTCCA+2gAwIBAgISAZt7Nq+nu73jcl4t9owzQR2xMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGZhYTZlNWU4NjAyM2M5YjMxNGVlNjUxMjkxZmFmZThjNmRk NjlhODMwHhcNMjYwMTAxMjAxOTAwWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhiNDFlMjNkNjliYzljMDFmMGRkYjFiNTQ4ZTAxZmUxMWE0YjZhNGEzMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtJOEssfD6n124nNwB26/TsYlRszY UV3vCkYfxVMgeCWdFB5obkXBDP0tGbS6r5KrkkZnkAm4xJztx37QMWlVZSP9xur6 uuHmcUCzQAG9mk3+UaVXmQQEsjkw2gVQpIY3OV8JT3abw0vnqdzCPmnKqmzoTYZs C3q7CPEtgejdRs09H9vOkJWsTcH0n+bsLlNiMvMwJyyZiDFXQjH7Jcl67llamg/1 NcbzOGa4KtUXBlEVQBYKoSFgNX5j8Ddb5X4TiX7SBhyD3TpOCMvAnCrX94QMWOL1 vIc0hsFiB+gSEiZpSLrWIZUa3P03lpDoEu3eNMTOnVIgjNGnv4Dl5Wm6WQIDAQAB o4ICETCCAg0wHQYDVR0OBBYEFLQeI9abycAfDdsbVI4B/hGktqSjMB8GA1UdIwQY MBaAFPqm5ehgI8mzFO5lEpH6/oxt1pqDMA4GA1UdDwEB/wQEAwIHgDBlBggrBgEF BQcBAQRZMFcwVQYIKwYBBQUHMAKGSXJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvMS1xYmw2R0FqeWJNVTdtVVNrZnItakczV21vTS5jZXIw gY0GCCsGAQUFBwELBIGAMH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBl Lm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMDAvYzA0ZDk5LWRlNDQtNDBhYi1hMmMw LTA4Mjc5NDU1Zjk0MS8xL3RCNGoxcHZKd0I4TjJ4dFVqZ0gtRWFTMnBLTS5yb2Ew gYIGA1UdHwR7MHkwd6B1oHOGcXJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0 b3J5L0RFRkFVTFQvMDAvYzA0ZDk5LWRlNDQtNDBhYi1hMmMwLTA4Mjc5NDU1Zjk0 MS8xLzEtcWJsNkdBanliTVU3bVVTa2ZyLWpHM1dtb00uY3JsMBgGA1UdIAEB/wQO MAwwCgYIKwYBBQUHDgIwJQYIKwYBBQUHAQcBAf8EFjAUMBIEAgABMAwDBAJb09QD BADCu/8wDQYJKoZIhvcNAQELBQADggEBAItEfmWn0lZe3e4dO+e4RpC2NdkRCgGy +QoEAUnJDkrqozB5P82+jZuL4B0ak8Nxr8/+CiJYjH2tU3sCIfrnUvcmgXnyXG3m /pe6EWFt4O995E9Z4EEvEQsEMylihIQ8vw5i8aQayyXGFfGqVQsXJqOAf7KtadeC byWD04/uNDZfXgw7emsDYsT5xsslEjw/5D2kgE/QqguIyVeWDt7WfScPXr5OWaIJ 9fCqXx+4SNJnKc38uJHZ367iKP7hqWMKs3SONXzDxeoDYZ2nUx6UVUXZEEyuZiaf 6iuculDTVuKAOk+gKaBAjHO15Upxi91rVqZldprKCdDJXgIhT/Pqfcw= -----END CERTIFICATE-----Generated at Wed Jan 21 15:23:58 2026 by rpki-client