This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/20/727296-2ebc-4dfc-a547-f6a7b49f981a/1/tQHKW_5yxjpKOHe3d-ZP6p2sC64.roa File: tQHKW_5yxjpKOHe3d-ZP6p2sC64.roa (raw, json) Hash identifier: 3+Hu+PFHtyBzCp4FY8HXvj0Pcdpyb0FAw5+YbzrL8sU= Subject key identifier: B5:01:CA:5B:FE:72:C6:3A:4A:38:77:B7:77:E6:4F:EA:9D:AC:0B:AE Certificate issuer: /CN=20f5ff076704523ff6be882b87eefa807b188aa9 Certificate serial: 019B7C80CA1D8040AA8B576F6167CD8FA8E8 Authority key identifier: 20:F5:FF:07:67:04:52:3F:F6:BE:88:2B:87:EE:FA:80:7B:18:8A:A9 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IPX_B2cEUj_2vogrh-76gHsYiqk.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/20/727296-2ebc-4dfc-a547-f6a7b49f981a/1/tQHKW_5yxjpKOHe3d-ZP6p2sC64.roa Signing time: Fri 02 Jan 2026 02:19:33 +0000 ROA not before: Fri 02 Jan 2026 02:19:33 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 42174 IP address blocks: 91.234.226.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/20/727296-2ebc-4dfc-a547-f6a7b49f981a/1/IPX_B2cEUj_2vogrh-76gHsYiqk.crl rsync://rpki.ripe.net/repository/DEFAULT/20/727296-2ebc-4dfc-a547-f6a7b49f981a/1/IPX_B2cEUj_2vogrh-76gHsYiqk.mft rsync://rpki.ripe.net/repository/DEFAULT/IPX_B2cEUj_2vogrh-76gHsYiqk.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7c:80:ca:1d:80:40:aa:8b:57:6f:61:67:cd:8f:a8:e8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=20f5ff076704523ff6be882b87eefa807b188aa9 Validity Not Before: Jan 2 02:19:33 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=b501ca5bfe72c63a4a3877b777e64fea9dac0bae Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:86:89:b9:24:d1:5e:19:19:ab:42:f8:e0:eb:27: ec:81:14:62:30:56:a7:30:8b:06:25:2e:dc:2f:dd: e4:c8:6f:9d:ad:96:58:ad:46:8d:7e:3a:4b:81:a8: 42:96:11:a6:f2:2f:35:db:a6:b9:94:44:e7:52:7d: 12:03:aa:8c:6b:c6:92:73:0b:e4:05:d9:e8:7a:b3: 64:22:fa:2e:1a:5f:d6:b4:08:c8:ef:98:ed:8f:20: 4f:69:a7:05:87:c7:13:e3:44:6f:0d:b6:e3:67:ea: 15:fe:2a:ad:4a:53:7c:30:a5:3e:3c:41:2c:60:9f: 1a:4b:6e:df:98:ba:4e:36:87:a5:14:a6:ef:e6:22: 57:98:13:bf:12:67:9d:24:1a:1e:04:3d:f2:da:2f: 6d:6f:72:bd:77:bf:22:43:d2:91:2e:d2:05:e5:1a: 72:40:4f:b6:90:b2:6f:ba:1f:bb:2d:51:b0:22:b4: ce:00:8a:ab:a9:a7:21:57:5b:58:9d:35:1f:aa:7d: 6d:a7:23:27:9a:70:a3:9b:33:51:a2:b9:75:e3:2e: ad:7b:15:12:2c:75:2e:f9:75:75:62:32:47:39:f3: a1:aa:00:07:91:ad:d0:4b:cf:48:48:85:41:f8:78: e9:2a:cb:c3:b1:6b:b8:81:f6:39:d1:43:6e:f2:0f: 28:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B5:01:CA:5B:FE:72:C6:3A:4A:38:77:B7:77:E6:4F:EA:9D:AC:0B:AE X509v3 Authority Key Identifier: keyid:20:F5:FF:07:67:04:52:3F:F6:BE:88:2B:87:EE:FA:80:7B:18:8A:A9 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IPX_B2cEUj_2vogrh-76gHsYiqk.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/20/727296-2ebc-4dfc-a547-f6a7b49f981a/1/tQHKW_5yxjpKOHe3d-ZP6p2sC64.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/20/727296-2ebc-4dfc-a547-f6a7b49f981a/1/IPX_B2cEUj_2vogrh-76gHsYiqk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 91.234.226.0/23 Signature Algorithm: sha256WithRSAEncryption 97:20:8e:79:3f:ab:fb:c0:0d:c6:96:78:c7:2f:2b:12:5f:9f: 44:80:ba:42:5c:5d:33:54:b2:f3:6e:5f:f7:5f:fb:a2:4b:c3: 78:08:1b:fd:f5:51:7a:5b:ec:03:47:84:bb:fc:bb:de:1b:64: 5f:a7:86:6a:b0:9d:9d:11:dd:f8:3d:5f:52:3b:69:b5:37:07: dc:80:67:cf:7b:31:9b:4a:cc:05:fb:a2:83:e4:d0:f1:a6:fb: 55:db:cc:a6:34:bc:a4:17:16:a2:da:ad:49:a5:5a:1d:cf:76: de:b7:ed:4d:dd:4b:2c:ab:20:96:1d:46:06:25:be:9c:82:63: 0f:ea:dc:af:82:b8:85:d1:04:b1:55:a9:91:4f:5b:9d:81:24: ce:7b:f3:f9:2d:8e:03:c4:57:3c:5f:7e:2e:0c:b6:c4:58:15: b5:8e:c9:c2:49:fb:f9:f0:29:9d:a3:03:86:ac:93:6a:45:b5: 2f:4e:66:09:56:e9:90:f9:36:16:be:0a:e7:94:e5:0d:f4:04: aa:f9:28:0b:c3:02:f4:ef:25:d8:ce:74:7b:47:18:90:e1:e6: c8:fa:16:fa:c1:c9:2c:f1:de:65:77:39:e0:11:1b:de:eb:6a: c7:44:c2:36:07:09:f8:41:ed:cd:8b:88:68:77:49:2c:6f:da: 90:ee:10:d0 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt8gModgECqi1dvYWfNj6joMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDIwZjVmZjA3NjcwNDUyM2ZmNmJlODgyYjg3ZWVmYTgwN2Ix ODhhYTkwHhcNMjYwMTAyMDIxOTMzWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhiNTAxY2E1YmZlNzJjNjNhNGEzODc3Yjc3N2U2NGZlYTlkYWMwYmFlMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAhom5JNFeGRmrQvjg6yfsgRRiMFan MIsGJS7cL93kyG+drZZYrUaNfjpLgahClhGm8i8126a5lETnUn0SA6qMa8aScwvk BdnoerNkIvouGl/WtAjI75jtjyBPaacFh8cT40RvDbbjZ+oV/iqtSlN8MKU+PEEs YJ8aS27fmLpONoelFKbv5iJXmBO/EmedJBoeBD3y2i9tb3K9d78iQ9KRLtIF5Rpy QE+2kLJvuh+7LVGwIrTOAIqrqachV1tYnTUfqn1tpyMnmnCjmzNRorl14y6texUS LHUu+XV1YjJHOfOhqgAHka3QS89ISIVB+HjpKsvDsWu4gfY50UNu8g8oJwIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFLUBylv+csY6Sjh3t3fmT+qdrAuuMB8GA1UdIwQY MBaAFCD1/wdnBFI/9r6IK4fu+oB7GIqpMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSVBYX0IyY0VVal8ydm9ncmgtNzZnSHNZaXFrLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yMC83MjcyOTYtMmViYy00ZGZjLWE1NDct ZjZhN2I0OWY5ODFhLzEvdFFIS1dfNXl4anBLT0hlM2QtWlA2cDJzQzY0LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yMC83MjcyOTYtMmViYy00ZGZjLWE1NDctZjZhN2I0OWY5ODFh LzEvSVBYX0IyY0VVal8ydm9ncmgtNzZnSHNZaXFrLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBW+riMA0G CSqGSIb3DQEBCwUAA4IBAQCXII55P6v7wA3GlnjHLysSX59EgLpCXF0zVLLzbl/3 X/uiS8N4CBv99VF6W+wDR4S7/LveG2Rfp4ZqsJ2dEd34PV9SO2m1NwfcgGfPezGb SswF+6KD5NDxpvtV28ymNLykFxai2q1JpVodz3bet+1N3UssqyCWHUYGJb6cgmMP 6tyvgriF0QSxVamRT1udgSTOe/P5LY4DxFc8X34uDLbEWBW1jsnCSfv58CmdowOG rJNqRbUvTmYJVumQ+TYWvgrnlOUN9ASq+SgLwwL07yXYznR7RxiQ4ebI+hb6wcks 8d5ldzngERve62rHRMI2Bwn4Qe3Ni4hod0ksb9qQ7hDQ -----END CERTIFICATE-----Generated at Mon Feb 9 23:54:30 2026 by rpki-client