This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/14/35b49b-03a3-4101-a3fe-1d8e19df4a62/1/44IrAvvEKSWJ98iqKpkSKb-6qZQ.roa File: 44IrAvvEKSWJ98iqKpkSKb-6qZQ.roa (raw, json) Hash identifier: U4fdOWuwUY9/P9u0/ZElUYWz4NntxpKIR4cfbGlP9vk= Subject key identifier: E3:82:2B:02:FB:C4:29:25:89:F7:C8:AA:2A:99:12:29:BF:BA:A9:94 Certificate issuer: /CN=32d395c57dfd30c0cd2c30f42338ae4c14a750a1 Certificate serial: 019B7FF20C1FD0A7469D5C249F05FB6E432A Authority key identifier: 32:D3:95:C5:7D:FD:30:C0:CD:2C:30:F4:23:38:AE:4C:14:A7:50:A1 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MtOVxX39MMDNLDD0IziuTBSnUKE.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/14/35b49b-03a3-4101-a3fe-1d8e19df4a62/1/44IrAvvEKSWJ98iqKpkSKb-6qZQ.roa Signing time: Fri 02 Jan 2026 18:22:07 +0000 ROA not before: Fri 02 Jan 2026 18:22:07 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 35236 IP address blocks: 91.241.8.0/22 maxlen: 24 2001:678:10e0::/48 maxlen: 49 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/14/35b49b-03a3-4101-a3fe-1d8e19df4a62/1/MtOVxX39MMDNLDD0IziuTBSnUKE.crl rsync://rpki.ripe.net/repository/DEFAULT/14/35b49b-03a3-4101-a3fe-1d8e19df4a62/1/MtOVxX39MMDNLDD0IziuTBSnUKE.mft rsync://rpki.ripe.net/repository/DEFAULT/MtOVxX39MMDNLDD0IziuTBSnUKE.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 21:05:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7f:f2:0c:1f:d0:a7:46:9d:5c:24:9f:05:fb:6e:43:2a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=32d395c57dfd30c0cd2c30f42338ae4c14a750a1 Validity Not Before: Jan 2 18:22:07 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=e3822b02fbc4292589f7c8aa2a991229bfbaa994 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:98:63:98:df:81:5e:63:2f:68:ac:c7:4f:cf:1c: fc:55:e8:f7:75:7a:02:1b:e8:dd:99:46:70:23:d4: ca:0f:c1:f1:0b:fa:9a:06:2e:e6:94:6c:ad:63:ce: ae:ba:bc:01:bf:7d:d0:ae:33:c4:c2:2e:69:87:9d: f1:74:be:ed:4b:2a:9b:45:31:a9:9f:3c:2b:5c:9d: 09:a6:65:bf:b0:ef:54:ae:6f:f4:57:d5:75:b6:47: bc:2f:78:ab:f0:5b:71:1e:2e:80:18:2b:af:1e:3b: ea:ae:cd:b3:fa:79:f7:a7:5f:7b:a7:fa:39:10:80: e3:33:44:b3:f4:e1:b0:e2:dc:c0:a7:7c:a9:f6:ec: 35:bf:cf:8a:c8:f5:5c:18:f6:b2:59:6f:d0:f0:aa: 50:83:85:3d:7c:1f:21:25:43:51:69:c8:40:da:cd: 5c:1c:65:05:7a:f5:bc:8f:e2:d5:db:3c:65:86:b8: 73:b3:a3:10:49:83:91:bc:3d:84:a4:ef:6f:12:2d: a5:ac:93:38:22:07:64:12:51:9b:71:d9:6f:2c:12: 15:f0:86:0a:94:19:97:47:d6:4e:ca:91:fe:cf:d7: c0:11:e4:78:69:8a:86:46:34:1d:9a:0c:6c:a1:a0: 40:0b:b6:07:54:8b:56:c1:be:ad:4e:ef:9a:d0:45: 83:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E3:82:2B:02:FB:C4:29:25:89:F7:C8:AA:2A:99:12:29:BF:BA:A9:94 X509v3 Authority Key Identifier: keyid:32:D3:95:C5:7D:FD:30:C0:CD:2C:30:F4:23:38:AE:4C:14:A7:50:A1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MtOVxX39MMDNLDD0IziuTBSnUKE.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/14/35b49b-03a3-4101-a3fe-1d8e19df4a62/1/44IrAvvEKSWJ98iqKpkSKb-6qZQ.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/14/35b49b-03a3-4101-a3fe-1d8e19df4a62/1/MtOVxX39MMDNLDD0IziuTBSnUKE.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 91.241.8.0/22 IPv6: 2001:678:10e0::/48 Signature Algorithm: sha256WithRSAEncryption 40:5f:50:be:df:34:eb:c9:a1:1f:b2:4e:a9:eb:30:b3:e1:12: c9:e1:29:e9:2d:79:86:ec:4a:03:3a:ff:0e:27:8f:67:e0:9c: 1d:7a:3e:18:bc:37:4b:1f:c4:24:07:de:91:ea:41:80:b4:d6: 7e:2d:68:61:b9:97:60:d4:14:45:b9:49:09:14:d8:5c:70:39: 1c:41:e8:97:fb:09:26:4b:3f:7e:84:f3:f7:61:59:fa:30:c6: 25:4d:fa:92:0f:22:53:32:bd:32:3f:d8:8e:f5:d8:14:f3:80: 5a:80:68:a1:f1:34:97:25:59:4b:97:74:87:bd:1d:56:45:f0: 29:8c:41:01:28:d2:b9:41:4a:d6:3e:ff:ae:59:fa:1f:f4:4d: b9:65:da:57:fe:31:99:63:ac:a2:e7:36:4d:d2:60:84:c5:b0: 08:b2:52:e1:63:38:db:8d:8f:89:cd:8f:fa:07:0f:05:b0:ed: 59:c8:58:1d:bf:92:7c:21:db:ba:68:de:28:e9:af:d5:19:e2: 79:b4:22:94:dc:b3:40:5b:03:04:f2:ee:dd:c3:c8:b0:f5:8f: cb:1d:b7:b3:e6:4d:be:ff:ec:b1:9c:4f:c1:58:b8:d1:28:33: e4:77:8c:d5:8c:c9:ff:d7:36:76:f7:e4:84:39:96:b2:37:c6: e4:a3:04:4c -----BEGIN CERTIFICATE----- MIIFDjCCA/agAwIBAgISAZt/8gwf0KdGnVwknwX7bkMqMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDMyZDM5NWM1N2RmZDMwYzBjZDJjMzBmNDIzMzhhZTRjMTRh NzUwYTEwHhcNMjYwMTAyMTgyMjA3WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhlMzgyMmIwMmZiYzQyOTI1ODlmN2M4YWEyYTk5MTIyOWJmYmFhOTk0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmGOY34FeYy9orMdPzxz8Vej3dXoC G+jdmUZwI9TKD8HxC/qaBi7mlGytY86uurwBv33QrjPEwi5ph53xdL7tSyqbRTGp nzwrXJ0JpmW/sO9Urm/0V9V1tke8L3ir8FtxHi6AGCuvHjvqrs2z+nn3p197p/o5 EIDjM0Sz9OGw4tzAp3yp9uw1v8+KyPVcGPayWW/Q8KpQg4U9fB8hJUNRachA2s1c HGUFevW8j+LV2zxlhrhzs6MQSYORvD2EpO9vEi2lrJM4IgdkElGbcdlvLBIV8IYK lBmXR9ZOypH+z9fAEeR4aYqGRjQdmgxsoaBAC7YHVItWwb6tTu+a0EWDyQIDAQAB o4ICGjCCAhYwHQYDVR0OBBYEFOOCKwL7xCkliffIqiqZEim/uqmUMB8GA1UdIwQY MBaAFDLTlcV9/TDAzSww9CM4rkwUp1ChMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvTXRPVnhYMzlNTUROTEREMEl6aXVUQlNuVUtFLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xNC8zNWI0OWItMDNhMy00MTAxLWEzZmUt MWQ4ZTE5ZGY0YTYyLzEvNDRJckF2dkVLU1dKOThpcUtwa1NLYi02cVpRLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xNC8zNWI0OWItMDNhMy00MTAxLWEzZmUtMWQ4ZTE5ZGY0YTYy LzEvTXRPVnhYMzlNTUROTEREMEl6aXVUQlNuVUtFLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMDAGCCsGAQUFBwEHAQH/BCEwHzAMBAIAATAGAwQCW/EIMA8E AgACMAkDBwAgAQZ4EOAwDQYJKoZIhvcNAQELBQADggEBAEBfUL7fNOvJoR+yTqnr MLPhEsnhKekteYbsSgM6/w4nj2fgnB16Phi8N0sfxCQH3pHqQYC01n4taGG5l2DU FEW5SQkU2FxwORxB6Jf7CSZLP36E8/dhWfowxiVN+pIPIlMyvTI/2I712BTzgFqA aKHxNJclWUuXdIe9HVZF8CmMQQEo0rlBStY+/65Z+h/0Tbll2lf+MZljrKLnNk3S YITFsAiyUuFjONuNj4nNj/oHDwWw7VnIWB2/knwh27po3ijpr9UZ4nm0IpTcs0Bb AwTy7t3DyLD1j8sdt7PmTb7/7LGcT8FYuNEoM+R3jNWMyf/XNnb35IQ5lrI3xuSj BEw= -----END CERTIFICATE-----Generated at Tue Feb 10 03:10:14 2026 by rpki-client