This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/35/f5fafc-668d-4ada-8ec6-2449a3ec923e/1/jCsyE7PeO8MwI0WSmbdCicVhzBc.roa File: jCsyE7PeO8MwI0WSmbdCicVhzBc.roa (raw, json) Hash identifier: tv7EyDQ+IoB8bLb4GNx3/nwZP+BAJaSjfG7GlSBQTM4= Subject key identifier: 8C:2B:32:13:B3:DE:3B:C3:30:23:45:92:99:B7:42:89:C5:61:CC:17 Certificate issuer: /CN=2fc20be6167890247303214197658ca7c9676150 Certificate serial: 019B79ED0B4FCC505F41F48554BB8DE6A470 Authority key identifier: 2F:C2:0B:E6:16:78:90:24:73:03:21:41:97:65:8C:A7:C9:67:61:50 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/L8IL5hZ4kCRzAyFBl2WMp8lnYVA.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/35/f5fafc-668d-4ada-8ec6-2449a3ec923e/1/jCsyE7PeO8MwI0WSmbdCicVhzBc.roa Signing time: Thu 01 Jan 2026 14:18:56 +0000 ROA not before: Thu 01 Jan 2026 14:18:56 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 31898 IP address blocks: 91.223.237.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/35/f5fafc-668d-4ada-8ec6-2449a3ec923e/1/L8IL5hZ4kCRzAyFBl2WMp8lnYVA.crl rsync://rpki.ripe.net/repository/DEFAULT/35/f5fafc-668d-4ada-8ec6-2449a3ec923e/1/L8IL5hZ4kCRzAyFBl2WMp8lnYVA.mft rsync://rpki.ripe.net/repository/DEFAULT/L8IL5hZ4kCRzAyFBl2WMp8lnYVA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 11 Jan 2026 13:16:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:79:ed:0b:4f:cc:50:5f:41:f4:85:54:bb:8d:e6:a4:70 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2fc20be6167890247303214197658ca7c9676150 Validity Not Before: Jan 1 14:18:56 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=8c2b3213b3de3bc33023459299b74289c561cc17 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:08:8b:60:72:22:ca:f7:74:c6:29:49:9a:84: b2:62:6a:d6:d1:d6:a7:dc:7a:7d:93:32:38:15:65: 15:e1:78:b9:ef:ab:49:bd:9b:ba:33:8c:7f:1a:0e: 21:b1:a5:02:b0:15:19:82:62:d6:ee:6f:5b:5f:86: 98:e4:ac:eb:29:f3:47:c4:3b:2c:af:9c:94:b9:a6: fd:ae:28:92:1f:9c:18:28:d5:20:80:c7:0e:d0:5c: 19:32:c9:3e:e6:dd:36:5e:aa:da:0e:b9:c5:26:59: c3:27:76:13:0d:22:ce:e9:0b:a5:8a:ac:df:65:8f: 56:43:a0:48:b8:9b:95:c7:29:c7:ce:fb:10:b3:48: 2c:7a:3b:76:d8:59:8e:41:4d:ee:bc:b0:73:59:00: c4:6d:f6:2f:27:a9:ae:be:2c:45:e1:50:b2:8e:72: b9:fa:21:20:1f:28:86:f0:f8:43:a4:23:5e:f7:18: 9a:99:35:45:8c:e5:52:a2:dc:69:33:80:72:15:bf: bf:a7:e9:e3:05:57:7b:0d:a0:d2:7e:2b:58:b8:05: 97:bb:b1:c8:9b:d0:e4:f2:f0:43:0d:3d:a1:34:4b: 81:e4:9b:85:12:b0:ea:8d:de:77:a5:8a:42:67:2d: 07:ba:92:49:54:4f:66:0f:ac:27:6f:6f:78:27:0d: 2b:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8C:2B:32:13:B3:DE:3B:C3:30:23:45:92:99:B7:42:89:C5:61:CC:17 X509v3 Authority Key Identifier: keyid:2F:C2:0B:E6:16:78:90:24:73:03:21:41:97:65:8C:A7:C9:67:61:50 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/L8IL5hZ4kCRzAyFBl2WMp8lnYVA.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/35/f5fafc-668d-4ada-8ec6-2449a3ec923e/1/jCsyE7PeO8MwI0WSmbdCicVhzBc.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/35/f5fafc-668d-4ada-8ec6-2449a3ec923e/1/L8IL5hZ4kCRzAyFBl2WMp8lnYVA.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 91.223.237.0/24 Signature Algorithm: sha256WithRSAEncryption 5c:bc:59:e7:f2:63:cd:86:2a:c1:1f:de:29:5c:3f:fa:27:cc: bf:57:6d:b2:78:a0:0c:8d:cc:49:8e:b4:a8:63:d1:ff:39:01: 36:f7:73:26:0b:25:fd:d1:4f:4c:58:58:f9:e3:3c:c6:ff:f7: 40:97:e0:56:a8:c7:7e:a1:b1:d9:1b:99:7b:ed:92:9c:8a:f3: 12:98:95:8a:94:28:0e:9d:ae:87:ef:dc:77:8a:e8:77:64:a1: bd:bf:b7:10:cd:fe:6d:c4:e0:86:93:7a:f6:0d:87:30:cc:30: 21:cd:f4:12:40:5c:50:5c:08:db:11:f4:c9:76:f1:f4:5d:b1: 3f:65:2d:fa:20:d9:02:13:71:bc:56:63:23:53:37:cf:5a:fc: 4e:41:9e:e2:a1:32:ec:90:45:5f:c2:53:9f:db:7a:c8:46:41: c0:09:0d:b4:a3:4a:0f:16:b5:9a:01:11:a0:78:a7:10:70:02: e9:fd:d4:7f:52:c0:f9:af:77:50:49:a2:b6:2f:c7:54:2e:93: f4:90:15:7d:65:09:01:11:9d:9d:e0:fc:8f:d7:28:f5:c7:88: 31:19:3e:cf:d1:d1:db:c7:0b:2b:4c:b5:1a:8b:eb:76:03:5b: 9b:7d:dc:e8:e4:54:22:b7:14:dc:cd:bc:12:86:9d:b3:aa:27: 53:95:fc:f3 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt57QtPzFBfQfSFVLuN5qRwMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJmYzIwYmU2MTY3ODkwMjQ3MzAzMjE0MTk3NjU4Y2E3Yzk2 NzYxNTAwHhcNMjYwMTAxMTQxODU2WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg4YzJiMzIxM2IzZGUzYmMzMzAyMzQ1OTI5OWI3NDI4OWM1NjFjYzE3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArwiLYHIiyvd0xilJmoSyYmrW0dan 3Hp9kzI4FWUV4Xi576tJvZu6M4x/Gg4hsaUCsBUZgmLW7m9bX4aY5KzrKfNHxDss r5yUuab9riiSH5wYKNUggMcO0FwZMsk+5t02XqraDrnFJlnDJ3YTDSLO6Quliqzf ZY9WQ6BIuJuVxynHzvsQs0gsejt22FmOQU3uvLBzWQDEbfYvJ6muvixF4VCyjnK5 +iEgHyiG8PhDpCNe9xiamTVFjOVSotxpM4ByFb+/p+njBVd7DaDSfitYuAWXu7HI m9Dk8vBDDT2hNEuB5JuFErDqjd53pYpCZy0HupJJVE9mD6wnb294Jw0ruQIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFIwrMhOz3jvDMCNFkpm3QonFYcwXMB8GA1UdIwQY MBaAFC/CC+YWeJAkcwMhQZdljKfJZ2FQMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvTDhJTDVoWjRrQ1J6QXlGQmwyV01wOGxuWVZBLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zNS9mNWZhZmMtNjY4ZC00YWRhLThlYzYt MjQ0OWEzZWM5MjNlLzEvakNzeUU3UGVPOE13STBXU21iZENpY1ZoekJjLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zNS9mNWZhZmMtNjY4ZC00YWRhLThlYzYtMjQ0OWEzZWM5MjNl LzEvTDhJTDVoWjRrQ1J6QXlGQmwyV01wOGxuWVZBLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAW9/tMA0G CSqGSIb3DQEBCwUAA4IBAQBcvFnn8mPNhirBH94pXD/6J8y/V22yeKAMjcxJjrSo Y9H/OQE293MmCyX90U9MWFj54zzG//dAl+BWqMd+obHZG5l77ZKcivMSmJWKlCgO na6H79x3iuh3ZKG9v7cQzf5txOCGk3r2DYcwzDAhzfQSQFxQXAjbEfTJdvH0XbE/ ZS36INkCE3G8VmMjUzfPWvxOQZ7ioTLskEVfwlOf23rIRkHACQ20o0oPFrWaARGg eKcQcALp/dR/UsD5r3dQSaK2L8dULpP0kBV9ZQkBEZ2d4PyP1yj1x4gxGT7P0dHb xwsrTLUai+t2A1ubfdzo5FQitxTczbwShp2zqidTlfzz -----END CERTIFICATE-----Generated at Sat Jan 10 20:49:54 2026 by rpki-client