This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/42/18a7ba-673d-4f2f-b7bc-163273d3d131/1/Ym3zwZvIklwn7so4hL0dv1aKBW8.roa File: Ym3zwZvIklwn7so4hL0dv1aKBW8.roa (raw, json) Hash identifier: qOJfCzveyraO0OeXrlle0Smp5KbGhvlylearMNdgHnk= Subject key identifier: 62:6D:F3:C1:9B:C8:92:5C:27:EE:CA:38:84:BD:1D:BF:56:8A:05:6F Certificate issuer: /CN=90a4601bf7f62416fb01e15e65ef451017c97601 Certificate serial: 019B76EB859CB3FD6F8D1ADBF2A7FB371D19 Authority key identifier: 90:A4:60:1B:F7:F6:24:16:FB:01:E1:5E:65:EF:45:10:17:C9:76:01 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kKRgG_f2JBb7AeFeZe9FEBfJdgE.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/42/18a7ba-673d-4f2f-b7bc-163273d3d131/1/Ym3zwZvIklwn7so4hL0dv1aKBW8.roa Signing time: Thu 01 Jan 2026 00:18:25 +0000 ROA not before: Thu 01 Jan 2026 00:18:25 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 56853 IP address blocks: 91.228.102.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/42/18a7ba-673d-4f2f-b7bc-163273d3d131/1/kKRgG_f2JBb7AeFeZe9FEBfJdgE.crl rsync://rpki.ripe.net/repository/DEFAULT/42/18a7ba-673d-4f2f-b7bc-163273d3d131/1/kKRgG_f2JBb7AeFeZe9FEBfJdgE.mft rsync://rpki.ripe.net/repository/DEFAULT/kKRgG_f2JBb7AeFeZe9FEBfJdgE.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 02 Feb 2026 19:29:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:76:eb:85:9c:b3:fd:6f:8d:1a:db:f2:a7:fb:37:1d:19 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=90a4601bf7f62416fb01e15e65ef451017c97601 Validity Not Before: Jan 1 00:18:25 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=626df3c19bc8925c27eeca3884bd1dbf568a056f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:df:1c:5e:b4:5e:e7:01:72:3b:46:bb:96:4a: 1a:b8:4b:f6:b3:fd:08:51:ac:0e:3d:81:a9:1e:bf: ca:4d:22:16:95:19:27:53:75:bb:c4:84:66:c7:2a: 97:a4:d4:27:0a:41:c4:52:7b:9e:0f:4b:c1:e6:c3: 7b:6a:06:42:6e:46:0a:27:db:5d:fd:d3:8b:16:57: fb:7d:03:86:66:15:9d:8c:b3:77:1b:19:e7:c9:03: 6c:ec:19:46:ab:e7:50:b3:c5:eb:7d:09:74:3b:9e: 97:62:c8:43:b1:04:bb:29:17:1e:ee:dc:3e:56:63: b9:c1:52:9b:67:9e:1a:8d:46:cb:ca:16:00:8a:97: 32:9c:df:cc:da:78:47:a2:a5:23:ea:bc:62:7c:ac: 44:5a:e4:ce:65:07:c6:6d:a8:d8:d0:6e:f1:be:76: 38:74:4b:5c:f1:6d:80:8b:4b:b3:98:90:e1:cd:d3: 96:ac:a3:d9:1a:35:17:3a:3a:9e:3b:76:fc:b3:15: e7:21:49:a3:71:80:bd:af:02:5c:4a:07:c7:88:07: bc:96:21:ef:c5:21:90:de:85:fa:bf:57:da:ce:cd: 54:9c:7e:45:a0:3c:f9:3a:8f:ed:9c:58:ef:ba:ae: af:29:5f:67:d7:7c:06:21:82:84:47:90:eb:f1:68: 7b:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 62:6D:F3:C1:9B:C8:92:5C:27:EE:CA:38:84:BD:1D:BF:56:8A:05:6F X509v3 Authority Key Identifier: keyid:90:A4:60:1B:F7:F6:24:16:FB:01:E1:5E:65:EF:45:10:17:C9:76:01 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kKRgG_f2JBb7AeFeZe9FEBfJdgE.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/42/18a7ba-673d-4f2f-b7bc-163273d3d131/1/Ym3zwZvIklwn7so4hL0dv1aKBW8.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/42/18a7ba-673d-4f2f-b7bc-163273d3d131/1/kKRgG_f2JBb7AeFeZe9FEBfJdgE.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 91.228.102.0/24 Signature Algorithm: sha256WithRSAEncryption 61:eb:e2:1b:c5:1d:28:5c:65:b3:c6:77:e0:dc:0a:2b:46:d5: d0:bf:95:6d:26:20:5a:75:30:17:ad:5b:59:24:45:fd:45:b2: 6d:c1:ff:ca:65:a3:e6:3a:31:41:99:10:4d:67:38:78:d6:f6: 9b:a0:1e:b2:8f:3c:4d:f6:08:1e:ec:37:91:11:bd:cc:06:cd: 7e:18:c9:13:ab:b2:86:96:12:c1:db:8a:68:f6:cd:70:f6:54: bc:0a:6f:53:62:d0:c0:fc:8c:f9:21:f0:35:2d:15:7f:bd:11: 75:04:81:b8:5a:dd:3a:b2:3d:e2:21:9a:21:ed:04:e9:3c:43: 06:8e:0f:b1:7c:d5:2a:a2:eb:8b:12:f7:23:61:a1:02:cd:33: 6f:86:44:ad:01:88:1d:c8:3c:fc:52:8d:48:92:fb:81:dd:cf: 01:40:87:e6:ab:8c:07:13:0e:6b:97:0d:32:51:5a:f6:47:06: d9:2b:95:46:a1:0e:01:10:90:92:97:73:6e:99:6a:13:bb:c6: 4f:66:9c:79:82:2e:5b:cf:0b:4d:d7:59:3a:47:9c:27:a2:47: 72:2e:44:73:19:45:3a:43:8c:17:63:ef:4e:1c:d6:c5:8c:fe: 4f:d3:71:55:0f:62:9d:71:7f:77:7b:58:bb:99:3e:dd:41:78: e6:70:d9:3a -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt264Wcs/1vjRrb8qf7Nx0ZMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDkwYTQ2MDFiZjdmNjI0MTZmYjAxZTE1ZTY1ZWY0NTEwMTdj OTc2MDEwHhcNMjYwMTAxMDAxODI1WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg2MjZkZjNjMTliYzg5MjVjMjdlZWNhMzg4NGJkMWRiZjU2OGEwNTZmMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxd8cXrRe5wFyO0a7lkoauEv2s/0I UawOPYGpHr/KTSIWlRknU3W7xIRmxyqXpNQnCkHEUnueD0vB5sN7agZCbkYKJ9td /dOLFlf7fQOGZhWdjLN3GxnnyQNs7BlGq+dQs8XrfQl0O56XYshDsQS7KRce7tw+ VmO5wVKbZ54ajUbLyhYAipcynN/M2nhHoqUj6rxifKxEWuTOZQfGbajY0G7xvnY4 dEtc8W2Ai0uzmJDhzdOWrKPZGjUXOjqeO3b8sxXnIUmjcYC9rwJcSgfHiAe8liHv xSGQ3oX6v1fazs1UnH5FoDz5Oo/tnFjvuq6vKV9n13wGIYKER5Dr8Wh7IwIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFGJt88GbyJJcJ+7KOIS9Hb9WigVvMB8GA1UdIwQY MBaAFJCkYBv39iQW+wHhXmXvRRAXyXYBMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQva0tSZ0dfZjJKQmI3QWVGZVplOUZFQmZKZGdFLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80Mi8xOGE3YmEtNjczZC00ZjJmLWI3YmMt MTYzMjczZDNkMTMxLzEvWW0zendadklrbHduN3NvNGhMMGR2MWFLQlc4LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC80Mi8xOGE3YmEtNjczZC00ZjJmLWI3YmMtMTYzMjczZDNkMTMx LzEva0tSZ0dfZjJKQmI3QWVGZVplOUZFQmZKZGdFLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAW+RmMA0G CSqGSIb3DQEBCwUAA4IBAQBh6+IbxR0oXGWzxnfg3AorRtXQv5VtJiBadTAXrVtZ JEX9RbJtwf/KZaPmOjFBmRBNZzh41vaboB6yjzxN9gge7DeREb3MBs1+GMkTq7KG lhLB24po9s1w9lS8Cm9TYtDA/Iz5IfA1LRV/vRF1BIG4Wt06sj3iIZoh7QTpPEMG jg+xfNUqouuLEvcjYaECzTNvhkStAYgdyDz8Uo1IkvuB3c8BQIfmq4wHEw5rlw0y UVr2RwbZK5VGoQ4BEJCSl3NumWoTu8ZPZpx5gi5bzwtN11k6R5wnokdyLkRzGUU6 Q4wXY+9OHNbFjP5P03FVD2KdcX93e1i7mT7dQXjmcNk6 -----END CERTIFICATE-----Generated at Mon Feb 2 06:20:27 2026 by rpki-client