This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2d/cdf5f6-2f18-42c7-930e-dc06dd805960/1/uG2s2RZS4rlCLvYv5d0LRKF25KE.roa File: uG2s2RZS4rlCLvYv5d0LRKF25KE.roa (raw, json) Hash identifier: 11Qjv+Obpp8wz3r1eAnLIYMRHJ0o7ALLZxGFpcwmIVE= Subject key identifier: B8:6D:AC:D9:16:52:E2:B9:42:2E:F6:2F:E5:DD:0B:44:A1:76:E4:A1 Certificate issuer: /CN=349cbbd5c2cf4195cc6ec7f21f607581a0224daa Certificate serial: 019B7E37A04E15E76AEC4D563800EDB696E2 Authority key identifier: 34:9C:BB:D5:C2:CF:41:95:CC:6E:C7:F2:1F:60:75:81:A0:22:4D:AA Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NJy71cLPQZXMbsfyH2B1gaAiTao.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2d/cdf5f6-2f18-42c7-930e-dc06dd805960/1/uG2s2RZS4rlCLvYv5d0LRKF25KE.roa Signing time: Fri 02 Jan 2026 10:18:53 +0000 ROA not before: Fri 02 Jan 2026 10:18:53 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 201909 IP address blocks: 91.223.117.0/24 maxlen: 24 91.233.201.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2d/cdf5f6-2f18-42c7-930e-dc06dd805960/1/NJy71cLPQZXMbsfyH2B1gaAiTao.crl rsync://rpki.ripe.net/repository/DEFAULT/2d/cdf5f6-2f18-42c7-930e-dc06dd805960/1/NJy71cLPQZXMbsfyH2B1gaAiTao.mft rsync://rpki.ripe.net/repository/DEFAULT/NJy71cLPQZXMbsfyH2B1gaAiTao.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 20 Jan 2026 16:02:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7e:37:a0:4e:15:e7:6a:ec:4d:56:38:00:ed:b6:96:e2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=349cbbd5c2cf4195cc6ec7f21f607581a0224daa Validity Not Before: Jan 2 10:18:53 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=b86dacd91652e2b9422ef62fe5dd0b44a176e4a1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:23:1c:f5:ce:3d:bf:fc:45:77:d1:fd:3c:95: 9a:cb:f7:47:54:73:1f:95:6b:19:97:21:d9:9c:32: 24:bb:a8:31:91:6a:09:c4:88:85:22:b6:75:6c:63: eb:c6:14:be:e8:8a:c0:c7:6c:c9:23:a8:e2:a7:74: 8e:ad:bc:68:0f:21:c8:a1:5c:79:33:49:49:95:7d: fb:9b:cf:2e:69:30:63:5c:78:20:86:ab:56:c9:d0: cb:7a:c1:f0:16:49:0b:87:05:01:d9:3b:51:c4:98: 7a:f4:39:5c:cf:71:9c:3f:28:ff:41:43:f3:6c:eb: 08:3a:c9:aa:07:b8:94:f2:9a:85:22:4e:6f:2b:26: b5:66:1b:82:5b:17:99:75:6b:fd:a2:41:52:a2:37: d4:ea:c7:dc:83:b1:de:37:cb:19:7a:88:6a:a4:93: 96:61:ab:7c:94:bc:4c:a6:9e:14:3c:29:d1:83:c9: bf:bb:7e:98:83:cd:e5:1c:52:d4:fe:ab:4f:02:56: 09:e7:35:3d:4b:56:d2:69:45:af:41:86:28:33:61: 2b:0a:b0:a2:ff:09:0f:95:ca:cc:7c:45:e5:1d:d0: 8c:b1:03:0b:7a:d2:9c:32:f2:05:ef:76:37:ff:09: 7c:11:cc:e0:e2:9d:34:b1:d2:71:a1:8a:19:4d:05: 70:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B8:6D:AC:D9:16:52:E2:B9:42:2E:F6:2F:E5:DD:0B:44:A1:76:E4:A1 X509v3 Authority Key Identifier: keyid:34:9C:BB:D5:C2:CF:41:95:CC:6E:C7:F2:1F:60:75:81:A0:22:4D:AA X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NJy71cLPQZXMbsfyH2B1gaAiTao.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/cdf5f6-2f18-42c7-930e-dc06dd805960/1/uG2s2RZS4rlCLvYv5d0LRKF25KE.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/cdf5f6-2f18-42c7-930e-dc06dd805960/1/NJy71cLPQZXMbsfyH2B1gaAiTao.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 91.223.117.0/24 91.233.201.0/24 Signature Algorithm: sha256WithRSAEncryption 3d:58:b7:09:70:c6:c1:25:11:fc:e5:e3:6c:00:38:d3:3f:80: bb:82:f5:b1:b1:24:2a:0f:e0:d1:17:8c:31:42:f4:7b:2f:2b: 3d:ed:62:35:b7:34:73:ad:92:7e:00:20:90:35:70:fe:67:3c: 1f:e5:02:f7:31:9f:3d:fb:25:02:c9:8c:0a:cc:0a:ea:31:0e: 30:a5:f4:95:a8:a0:8c:45:88:37:39:14:e4:8e:0c:ee:49:ed: 2a:d9:bc:6e:41:b8:08:90:9c:da:ed:c5:69:9c:3f:9b:9c:67: 03:90:f8:8d:db:13:9d:16:ce:bc:a7:f1:61:41:e4:18:9c:4d: 98:b2:66:ec:1f:fd:bd:39:2f:25:76:ba:13:f8:05:4b:69:7c: 99:50:4e:4c:4c:c1:0e:97:cd:3e:91:f9:8d:bb:72:53:47:c9: 9f:26:36:6e:bb:1e:42:10:4c:5e:18:78:b9:ba:82:91:3b:f0: 25:e7:0e:1e:4f:a0:62:28:8a:a5:7e:2a:3f:b0:71:65:46:e8: a3:eb:3e:4f:6a:95:71:e3:d1:dd:9a:b0:02:92:8b:fa:8c:f9: 93:f9:47:dd:fa:43:c1:34:8d:89:15:8b:fe:d1:1c:e3:65:d8: ad:df:76:d3:58:f6:b9:b6:f5:9c:15:2b:51:61:10:49:57:d7: 0f:f5:f4:67 -----BEGIN CERTIFICATE----- MIIFAzCCA+ugAwIBAgISAZt+N6BOFedq7E1WOADttpbiMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDM0OWNiYmQ1YzJjZjQxOTVjYzZlYzdmMjFmNjA3NTgxYTAy MjRkYWEwHhcNMjYwMTAyMTAxODUzWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhiODZkYWNkOTE2NTJlMmI5NDIyZWY2MmZlNWRkMGI0NGExNzZlNGExMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAviMc9c49v/xFd9H9PJWay/dHVHMf lWsZlyHZnDIku6gxkWoJxIiFIrZ1bGPrxhS+6IrAx2zJI6jip3SOrbxoDyHIoVx5 M0lJlX37m88uaTBjXHgghqtWydDLesHwFkkLhwUB2TtRxJh69Dlcz3GcPyj/QUPz bOsIOsmqB7iU8pqFIk5vKya1ZhuCWxeZdWv9okFSojfU6sfcg7HeN8sZeohqpJOW Yat8lLxMpp4UPCnRg8m/u36Yg83lHFLU/qtPAlYJ5zU9S1bSaUWvQYYoM2ErCrCi /wkPlcrMfEXlHdCMsQMLetKcMvIF73Y3/wl8Eczg4p00sdJxoYoZTQVwVQIDAQAB o4ICDzCCAgswHQYDVR0OBBYEFLhtrNkWUuK5Qi72L+XdC0ShduShMB8GA1UdIwQY MBaAFDScu9XCz0GVzG7H8h9gdYGgIk2qMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvTkp5NzFjTFBRWlhNYnNmeUgyQjFnYUFpVGFvLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yZC9jZGY1ZjYtMmYxOC00MmM3LTkzMGUt ZGMwNmRkODA1OTYwLzEvdUcyczJSWlM0cmxDTHZZdjVkMExSS0YyNUtFLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yZC9jZGY1ZjYtMmYxOC00MmM3LTkzMGUtZGMwNmRkODA1OTYw LzEvTkp5NzFjTFBRWlhNYnNmeUgyQjFnYUFpVGFvLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQAW991AwQA W+nJMA0GCSqGSIb3DQEBCwUAA4IBAQA9WLcJcMbBJRH85eNsADjTP4C7gvWxsSQq D+DRF4wxQvR7Lys97WI1tzRzrZJ+ACCQNXD+Zzwf5QL3MZ89+yUCyYwKzArqMQ4w pfSVqKCMRYg3ORTkjgzuSe0q2bxuQbgIkJza7cVpnD+bnGcDkPiN2xOdFs68p/Fh QeQYnE2YsmbsH/29OS8ldroT+AVLaXyZUE5MTMEOl80+kfmNu3JTR8mfJjZuux5C EExeGHi5uoKRO/Al5w4eT6BiKIqlfio/sHFlRuij6z5PapVx49HdmrACkov6jPmT +Ufd+kPBNI2JFYv+0RzjZdit33bTWPa5tvWcFStRYRBJV9cP9fRn -----END CERTIFICATE-----Generated at Mon Jan 19 19:56:27 2026 by rpki-client