This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/35/6e3246-fba6-4e1d-8089-4ff33338361e/1/D5r66qCGlpT6UM1S2JZDnwLEq_g.roa File: D5r66qCGlpT6UM1S2JZDnwLEq_g.roa (raw, json) Hash identifier: AsE96zhoWPvQynJOqug2jdhORzzqgKtcCYsyjnQ29Aw= Subject key identifier: 0F:9A:FA:EA:A0:86:96:94:FA:50:CD:52:D8:96:43:9F:02:C4:AB:F8 Certificate issuer: /CN=d9f19f05ccf2221398469c0be8ddc04ce14e135a Certificate serial: 019B7DC9BC9516F0DA7B81B231E9917C3132 Authority key identifier: D9:F1:9F:05:CC:F2:22:13:98:46:9C:0B:E8:DD:C0:4C:E1:4E:13:5A Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2fGfBczyIhOYRpwL6N3ATOFOE1o.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/35/6e3246-fba6-4e1d-8089-4ff33338361e/1/D5r66qCGlpT6UM1S2JZDnwLEq_g.roa Signing time: Fri 02 Jan 2026 08:18:51 +0000 ROA not before: Fri 02 Jan 2026 08:18:51 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 39566 IP address blocks: 91.211.220.0/22 maxlen: 22 193.93.88.0/22 maxlen: 22 2001:678:63c::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/35/6e3246-fba6-4e1d-8089-4ff33338361e/1/2fGfBczyIhOYRpwL6N3ATOFOE1o.crl rsync://rpki.ripe.net/repository/DEFAULT/35/6e3246-fba6-4e1d-8089-4ff33338361e/1/2fGfBczyIhOYRpwL6N3ATOFOE1o.mft rsync://rpki.ripe.net/repository/DEFAULT/2fGfBczyIhOYRpwL6N3ATOFOE1o.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 14:00:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7d:c9:bc:95:16:f0:da:7b:81:b2:31:e9:91:7c:31:32 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d9f19f05ccf2221398469c0be8ddc04ce14e135a Validity Not Before: Jan 2 08:18:51 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=0f9afaeaa0869694fa50cd52d896439f02c4abf8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:95:1c:4c:3f:3c:d4:6a:78:7a:1a:60:76:86: 57:fb:cb:26:33:3e:ea:e9:be:dd:29:62:3b:05:01: 98:c7:a6:88:14:80:21:86:08:bd:2b:32:87:a8:fb: 51:60:96:14:42:2f:f7:da:3e:15:ee:aa:17:f6:7a: ec:5b:3e:d7:0e:16:39:4c:de:19:80:90:cd:4d:3e: 37:c0:98:c3:3e:0f:eb:7c:52:ac:9f:55:c9:e5:20: 2d:e6:7e:cf:db:dc:84:f6:19:78:da:ea:fd:ee:b7: 77:87:d5:23:ed:ce:99:33:1d:1c:37:a5:51:72:3e: 36:b9:ff:a5:44:6d:29:aa:84:08:cc:e2:b2:84:bf: 16:d9:32:49:aa:cb:03:d5:1c:e2:73:33:96:58:74: c2:6c:03:31:12:cc:9f:0a:bd:d3:cd:44:53:97:0e: db:f3:de:96:5d:07:f8:79:80:7a:e3:41:17:24:1b: 48:e8:a8:b9:af:e5:a3:c9:c5:56:1c:3e:2b:72:85: 4c:0a:0c:c9:01:c7:46:e6:76:05:31:bb:4c:81:c0: 7d:6d:b7:c4:56:9c:0f:db:e7:29:2c:df:68:ce:e2: 1e:cc:a0:11:53:40:d3:bc:f9:32:b0:13:43:e1:a1: b4:d7:47:af:09:3d:b1:8b:81:1a:38:3c:46:8b:26: 3d:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0F:9A:FA:EA:A0:86:96:94:FA:50:CD:52:D8:96:43:9F:02:C4:AB:F8 X509v3 Authority Key Identifier: keyid:D9:F1:9F:05:CC:F2:22:13:98:46:9C:0B:E8:DD:C0:4C:E1:4E:13:5A X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2fGfBczyIhOYRpwL6N3ATOFOE1o.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/35/6e3246-fba6-4e1d-8089-4ff33338361e/1/D5r66qCGlpT6UM1S2JZDnwLEq_g.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/35/6e3246-fba6-4e1d-8089-4ff33338361e/1/2fGfBczyIhOYRpwL6N3ATOFOE1o.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 91.211.220.0/22 193.93.88.0/22 IPv6: 2001:678:63c::/48 Signature Algorithm: sha256WithRSAEncryption 9e:61:38:ac:79:17:f4:e1:37:7e:3a:84:e8:35:29:04:3d:84: e4:c5:9b:27:43:b5:7d:db:81:9c:54:75:4c:f5:33:5c:39:37: 85:49:1a:3c:0a:89:b3:04:25:53:b1:8d:ad:90:64:b1:be:25: ad:76:cf:49:e8:1b:1c:6d:ae:fb:6e:bb:e3:14:99:be:10:a5: 3f:87:0a:ce:f4:72:59:b2:56:fd:f7:19:6e:32:4d:04:ea:44: 89:73:5a:6f:1d:40:02:84:22:ed:0c:5f:9a:60:ce:65:42:06: 62:27:33:7a:f0:75:f8:22:2b:f3:23:f9:f2:58:53:0c:1a:ac: c5:49:b3:3a:75:8e:12:52:4c:1c:4a:a2:3e:e1:c6:41:a5:9f: e0:87:37:f7:71:38:c6:fc:a3:6b:63:40:ae:09:78:75:e3:c9: 3d:8f:4b:c0:ab:1b:0a:75:2d:fe:1e:a6:f3:0b:8b:c5:92:de: ba:6f:f7:be:99:1e:6f:a4:cf:19:c8:1e:71:3a:b3:a3:4e:3b: ec:0e:ba:c6:05:9d:8d:63:ea:db:66:d2:62:25:2d:5f:c8:2c: fe:28:63:47:1b:bf:89:8a:1d:63:dc:76:9c:cd:79:b2:f2:a8: d5:9e:7d:70:87:9f:5f:74:15:1d:1d:33:1f:6d:39:49:0b:07: f2:89:12:d5 -----BEGIN CERTIFICATE----- MIIFFDCCA/ygAwIBAgISAZt9ybyVFvDae4GyMemRfDEyMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGQ5ZjE5ZjA1Y2NmMjIyMTM5ODQ2OWMwYmU4ZGRjMDRjZTE0 ZTEzNWEwHhcNMjYwMTAyMDgxODUxWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygwZjlhZmFlYWEwODY5Njk0ZmE1MGNkNTJkODk2NDM5ZjAyYzRhYmY4MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA2pUcTD881Gp4ehpgdoZX+8smMz7q 6b7dKWI7BQGYx6aIFIAhhgi9KzKHqPtRYJYUQi/32j4V7qoX9nrsWz7XDhY5TN4Z gJDNTT43wJjDPg/rfFKsn1XJ5SAt5n7P29yE9hl42ur97rd3h9Uj7c6ZMx0cN6VR cj42uf+lRG0pqoQIzOKyhL8W2TJJqssD1RziczOWWHTCbAMxEsyfCr3TzURTlw7b 896WXQf4eYB640EXJBtI6Ki5r+WjycVWHD4rcoVMCgzJAcdG5nYFMbtMgcB9bbfE VpwP2+cpLN9ozuIezKARU0DTvPkysBND4aG010evCT2xi4EaODxGiyY9owIDAQAB o4ICIDCCAhwwHQYDVR0OBBYEFA+a+uqghpaU+lDNUtiWQ58CxKv4MB8GA1UdIwQY MBaAFNnxnwXM8iITmEacC+jdwEzhThNaMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvMmZHZkJjenlJaE9ZUnB3TDZOM0FUT0ZPRTFvLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zNS82ZTMyNDYtZmJhNi00ZTFkLTgwODkt NGZmMzMzMzgzNjFlLzEvRDVyNjZxQ0dscFQ2VU0xUzJKWkRud0xFcV9nLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zNS82ZTMyNDYtZmJhNi00ZTFkLTgwODktNGZmMzMzMzgzNjFl LzEvMmZHZkJjenlJaE9ZUnB3TDZOM0FUT0ZPRTFvLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMDYGCCsGAQUFBwEHAQH/BCcwJTASBAIAATAMAwQCW9PcAwQC wV1YMA8EAgACMAkDBwAgAQZ4BjwwDQYJKoZIhvcNAQELBQADggEBAJ5hOKx5F/Th N346hOg1KQQ9hOTFmydDtX3bgZxUdUz1M1w5N4VJGjwKibMEJVOxja2QZLG+Ja12 z0noGxxtrvtuu+MUmb4QpT+HCs70clmyVv33GW4yTQTqRIlzWm8dQAKEIu0MX5pg zmVCBmInM3rwdfgiK/Mj+fJYUwwarMVJszp1jhJSTBxKoj7hxkGln+CHN/dxOMb8 o2tjQK4JeHXjyT2PS8CrGwp1Lf4epvMLi8WS3rpv976ZHm+kzxnIHnE6s6NOO+wO usYFnY1j6ttm0mIlLV/ILP4oY0cbv4mKHWPcdpzNebLyqNWefXCHn190FR0dMx9t OUkLB/KJEtU= -----END CERTIFICATE-----Generated at Mon Feb 9 22:37:23 2026 by rpki-client