This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/14/27b62e-3639-4e74-affe-2b2f2b8908cc/1/tu8pFAR-lfRJrRr8DnEqag_8PIg.roa File: tu8pFAR-lfRJrRr8DnEqag_8PIg.roa (raw, json) Hash identifier: W8jBg2aJkkt/Cbf9tH1JvG4N3IVjC0bK1ORLH4MYXDI= Subject key identifier: B6:EF:29:14:04:7E:95:F4:49:AD:1A:FC:0E:71:2A:6A:0F:FC:3C:88 Certificate issuer: /CN=2901f5019a970ba5be0c754d20f78671818f4a2e Certificate serial: 019B7AC92235FE87234499A998EC23E8CAE7 Authority key identifier: 29:01:F5:01:9A:97:0B:A5:BE:0C:75:4D:20:F7:86:71:81:8F:4A:2E Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KQH1AZqXC6W-DHVNIPeGcYGPSi4.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/14/27b62e-3639-4e74-affe-2b2f2b8908cc/1/tu8pFAR-lfRJrRr8DnEqag_8PIg.roa Signing time: Thu 01 Jan 2026 18:19:20 +0000 ROA not before: Thu 01 Jan 2026 18:19:20 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 51698 IP address blocks: 91.227.152.0/23 maxlen: 23 91.227.152.0/24 maxlen: 24 91.227.153.0/24 maxlen: 24 178.159.248.0/21 maxlen: 21 178.159.248.0/23 maxlen: 23 178.159.250.0/23 maxlen: 23 178.159.250.0/24 maxlen: 24 178.159.251.0/24 maxlen: 24 178.159.252.0/23 maxlen: 23 178.159.252.0/24 maxlen: 24 178.159.253.0/24 maxlen: 24 178.159.254.0/23 maxlen: 23 178.159.254.0/24 maxlen: 24 178.159.255.0/24 maxlen: 24 185.47.154.0/23 maxlen: 24 185.65.138.0/23 maxlen: 24 2a01:9160::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/14/27b62e-3639-4e74-affe-2b2f2b8908cc/1/KQH1AZqXC6W-DHVNIPeGcYGPSi4.crl rsync://rpki.ripe.net/repository/DEFAULT/14/27b62e-3639-4e74-affe-2b2f2b8908cc/1/KQH1AZqXC6W-DHVNIPeGcYGPSi4.mft rsync://rpki.ripe.net/repository/DEFAULT/KQH1AZqXC6W-DHVNIPeGcYGPSi4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7a:c9:22:35:fe:87:23:44:99:a9:98:ec:23:e8:ca:e7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2901f5019a970ba5be0c754d20f78671818f4a2e Validity Not Before: Jan 1 18:19:20 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=b6ef2914047e95f449ad1afc0e712a6a0ffc3c88 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:d0:07:b3:ae:50:5f:d8:c9:7b:a1:2d:3d:19: 31:09:77:3b:d8:a3:81:9c:1b:cf:69:a0:ae:1f:5f: 32:61:0a:d8:92:0a:bc:82:5f:fd:52:bc:f7:76:b5: 50:0d:4a:9d:3c:43:c1:49:a4:8c:93:6b:a8:81:e4: bd:01:d7:06:84:69:1c:57:02:1b:ee:d8:2c:52:79: ae:79:cf:ff:2e:57:bb:b0:ff:3c:c3:21:e4:e3:8f: e7:24:27:29:bf:dc:59:f7:19:98:04:b9:51:a2:05: 6f:a6:48:37:5b:f3:f7:69:86:46:df:d6:cb:5a:6e: 2d:0b:ba:ea:9b:a0:2d:d4:7c:32:56:9c:7a:f3:79: 03:cc:0c:5e:0d:4b:9d:19:44:b7:d8:d5:88:a0:72: ff:55:14:0e:66:ba:59:27:db:e0:01:60:93:cb:cf: 18:a9:2b:85:2d:2c:94:ab:94:c6:25:f7:93:cb:11: 0d:87:97:a3:b2:0e:7b:2a:ab:80:aa:3c:08:0d:2d: 0b:6f:f7:7a:75:dd:92:e2:3b:f8:61:36:66:bc:d3: db:b2:87:aa:9c:22:8f:be:ec:d2:fe:d3:0d:06:db: 69:65:2f:e8:d9:51:19:84:17:4f:00:91:d7:6d:fe: 0e:3a:b4:06:71:36:ed:10:fc:d6:61:a7:61:4a:8a: 78:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B6:EF:29:14:04:7E:95:F4:49:AD:1A:FC:0E:71:2A:6A:0F:FC:3C:88 X509v3 Authority Key Identifier: keyid:29:01:F5:01:9A:97:0B:A5:BE:0C:75:4D:20:F7:86:71:81:8F:4A:2E X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KQH1AZqXC6W-DHVNIPeGcYGPSi4.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/14/27b62e-3639-4e74-affe-2b2f2b8908cc/1/tu8pFAR-lfRJrRr8DnEqag_8PIg.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/14/27b62e-3639-4e74-affe-2b2f2b8908cc/1/KQH1AZqXC6W-DHVNIPeGcYGPSi4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 91.227.152.0/23 178.159.248.0/21 185.47.154.0/23 185.65.138.0/23 IPv6: 2a01:9160::/48 Signature Algorithm: sha256WithRSAEncryption 0a:18:f6:2e:c2:a7:87:e4:c7:64:bd:fd:de:a9:93:71:20:f5: 80:43:4f:99:8e:12:20:cc:03:5b:c0:67:15:e1:5e:b4:26:a1: 8f:26:2e:de:9a:a6:e5:a0:bb:12:8d:50:38:a3:91:c5:66:bb: 75:72:67:4d:65:e2:6e:8d:b8:69:58:83:55:ad:22:af:4d:8d: f9:32:7d:1a:a9:79:61:ec:a6:ca:30:da:35:e1:28:a7:3f:13: 37:56:cb:fe:87:84:a3:31:4d:42:2a:21:ab:ca:44:d5:2a:34: d5:6b:19:82:89:ab:4c:c4:0f:76:4f:5c:db:b3:8d:28:e9:7c: 06:de:80:ee:3b:af:71:8c:2b:cd:06:ee:d0:bf:4f:b1:d9:53: 54:97:d8:58:49:ef:15:49:6c:fc:7d:4f:8c:15:56:0c:0c:d5: ac:69:e9:e4:b4:e3:80:81:d7:00:43:37:8d:84:36:bc:53:ce: 4e:5e:09:da:35:9e:00:12:66:aa:56:6d:23:c8:6f:66:86:48: 94:e3:71:13:c2:54:bb:81:59:08:f1:fa:66:c0:53:d8:67:35: e3:b2:b1:ad:d6:e2:fb:08:d1:77:73:3f:84:ef:5c:8b:04:aa: a6:0e:87:1f:0c:ec:c7:b8:71:9b:1f:27:19:df:b0:f1:3d:c2: e8:c4:cf:5b -----BEGIN CERTIFICATE----- MIIFIDCCBAigAwIBAgISAZt6ySI1/ocjRJmpmOwj6MrnMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDI5MDFmNTAxOWE5NzBiYTViZTBjNzU0ZDIwZjc4NjcxODE4 ZjRhMmUwHhcNMjYwMTAxMTgxOTIwWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhiNmVmMjkxNDA0N2U5NWY0NDlhZDFhZmMwZTcxMmE2YTBmZmMzYzg4MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArdAHs65QX9jJe6EtPRkxCXc72KOB nBvPaaCuH18yYQrYkgq8gl/9Urz3drVQDUqdPEPBSaSMk2uogeS9AdcGhGkcVwIb 7tgsUnmuec//Lle7sP88wyHk44/nJCcpv9xZ9xmYBLlRogVvpkg3W/P3aYZG39bL Wm4tC7rqm6At1HwyVpx683kDzAxeDUudGUS32NWIoHL/VRQOZrpZJ9vgAWCTy88Y qSuFLSyUq5TGJfeTyxENh5ejsg57KquAqjwIDS0Lb/d6dd2S4jv4YTZmvNPbsoeq nCKPvuzS/tMNBttpZS/o2VEZhBdPAJHXbf4OOrQGcTbtEPzWYadhSop46wIDAQAB o4ICLDCCAigwHQYDVR0OBBYEFLbvKRQEfpX0Sa0a/A5xKmoP/DyIMB8GA1UdIwQY MBaAFCkB9QGalwulvgx1TSD3hnGBj0ouMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvS1FIMUFacVhDNlctREhWTklQZUdjWUdQU2k0LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xNC8yN2I2MmUtMzYzOS00ZTc0LWFmZmUt MmIyZjJiODkwOGNjLzEvdHU4cEZBUi1sZlJKclJyOERuRXFhZ184UElnLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xNC8yN2I2MmUtMzYzOS00ZTc0LWFmZmUtMmIyZjJiODkwOGNj LzEvS1FIMUFacVhDNlctREhWTklQZUdjWUdQU2k0LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMEIGCCsGAQUFBwEHAQH/BDMwMTAeBAIAATAYAwQBW+OYAwQD sp/4AwQBuS+aAwQBuUGKMA8EAgACMAkDBwAqAZFgAAAwDQYJKoZIhvcNAQELBQAD ggEBAAoY9i7Cp4fkx2S9/d6pk3Eg9YBDT5mOEiDMA1vAZxXhXrQmoY8mLt6apuWg uxKNUDijkcVmu3VyZ01l4m6NuGlYg1WtIq9NjfkyfRqpeWHspsow2jXhKKc/EzdW y/6HhKMxTUIqIavKRNUqNNVrGYKJq0zED3ZPXNuzjSjpfAbegO47r3GMK80G7tC/ T7HZU1SX2FhJ7xVJbPx9T4wVVgwM1axp6eS044CB1wBDN42ENrxTzk5eCdo1ngAS ZqpWbSPIb2aGSJTjcRPCVLuBWQjx+mbAU9hnNeOysa3W4vsI0XdzP4TvXIsEqqYO hx8M7Me4cZsfJxnfsPE9wujEz1s= -----END CERTIFICATE-----Generated at Mon Feb 9 19:44:42 2026 by rpki-client