This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/44/cb6bf5-3ac5-413d-b898-4fef15e7dead/1/D30kUtfoFIu60sm6RYYK6TaB79k.roa File: D30kUtfoFIu60sm6RYYK6TaB79k.roa (raw, json) Hash identifier: pH+2Tpg4nCk6cSuxhVv6OIDISdwdQhjgBdPN7UeRmd8= Subject key identifier: 0F:7D:24:52:D7:E8:14:8B:BA:D2:C9:BA:45:86:0A:E9:36:81:EF:D9 Certificate issuer: /CN=5ccf35e13616d797630d1e25400c13c6211f500c Certificate serial: 019B78A37AA0BB0C76C94CA5AEDA80C6F46C Authority key identifier: 5C:CF:35:E1:36:16:D7:97:63:0D:1E:25:40:0C:13:C6:21:1F:50:0C Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XM814TYW15djDR4lQAwTxiEfUAw.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/44/cb6bf5-3ac5-413d-b898-4fef15e7dead/1/D30kUtfoFIu60sm6RYYK6TaB79k.roa Signing time: Thu 01 Jan 2026 08:18:58 +0000 ROA not before: Thu 01 Jan 2026 08:18:58 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 197548 IP address blocks: 91.223.62.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/44/cb6bf5-3ac5-413d-b898-4fef15e7dead/1/XM814TYW15djDR4lQAwTxiEfUAw.crl rsync://rpki.ripe.net/repository/DEFAULT/44/cb6bf5-3ac5-413d-b898-4fef15e7dead/1/XM814TYW15djDR4lQAwTxiEfUAw.mft rsync://rpki.ripe.net/repository/DEFAULT/XM814TYW15djDR4lQAwTxiEfUAw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:78:a3:7a:a0:bb:0c:76:c9:4c:a5:ae:da:80:c6:f4:6c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5ccf35e13616d797630d1e25400c13c6211f500c Validity Not Before: Jan 1 08:18:58 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=0f7d2452d7e8148bbad2c9ba45860ae93681efd9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:e2:46:90:d7:ff:1b:da:af:9a:82:4c:7d:b0: 80:e4:30:70:f8:9a:cc:77:6f:76:50:86:be:02:04: 59:94:7a:0b:5f:4a:52:f1:c1:22:00:fb:1f:f2:5b: e0:9c:af:68:b1:c5:2f:93:8d:d8:a2:86:bf:59:ff: 7b:30:b5:82:45:c8:bb:90:20:f3:b7:1d:03:34:de: fd:0a:02:c9:79:04:2f:e4:0a:9b:4f:b8:aa:ff:93: 71:da:91:80:4c:59:a5:45:a9:92:b4:cd:ca:af:c2: b4:95:cf:55:1f:61:be:ef:65:01:6a:f1:e2:0d:c4: a9:02:af:a4:46:04:13:7a:9d:4d:05:52:3f:df:79: 65:a4:4a:91:d0:88:c4:a8:3c:ea:8b:54:1a:40:3b: a0:da:3a:50:bd:42:03:73:ad:4a:19:1f:8f:30:72: 28:7f:52:bc:34:cb:a1:56:c8:ad:62:15:ff:f2:21: e8:b0:cf:80:64:35:89:20:e8:83:fe:85:13:e5:a6: 38:be:35:c9:1e:9b:70:48:ca:35:66:bd:80:f8:e7: dd:35:db:b5:2d:7e:d1:0f:3d:4a:fb:2e:72:63:69: a2:af:ca:48:4d:69:b0:4a:21:a0:ee:ac:97:26:8d: 7b:03:f7:b5:67:32:25:58:da:2a:8c:04:fe:ab:b5: f7:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0F:7D:24:52:D7:E8:14:8B:BA:D2:C9:BA:45:86:0A:E9:36:81:EF:D9 X509v3 Authority Key Identifier: keyid:5C:CF:35:E1:36:16:D7:97:63:0D:1E:25:40:0C:13:C6:21:1F:50:0C X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XM814TYW15djDR4lQAwTxiEfUAw.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/44/cb6bf5-3ac5-413d-b898-4fef15e7dead/1/D30kUtfoFIu60sm6RYYK6TaB79k.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/44/cb6bf5-3ac5-413d-b898-4fef15e7dead/1/XM814TYW15djDR4lQAwTxiEfUAw.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 91.223.62.0/24 Signature Algorithm: sha256WithRSAEncryption 17:dc:ee:29:59:3c:c6:d5:8e:1e:3b:0a:47:07:8d:02:69:67: 04:67:73:8b:0e:9c:6e:69:34:ff:da:47:47:57:6e:2b:aa:de: 8d:c2:96:6a:17:e4:c5:cd:8a:27:0e:4b:13:4d:68:83:26:85: 43:06:4a:1d:38:21:77:86:a1:89:26:94:5f:8a:59:b5:8c:0b: e6:8a:c9:1d:a3:01:b4:02:b7:3f:6a:d2:68:55:f9:53:a8:28: e8:9a:f8:01:14:2e:5c:a4:9f:2f:e9:59:81:f1:dd:c6:d8:0c: 7a:a7:1f:82:b1:77:ff:81:a4:f6:04:ef:f3:1a:8e:a7:c1:40: dd:d3:e6:73:bf:80:21:f1:c2:5a:ef:13:5b:87:3d:a6:b6:16: 14:c4:5f:70:6c:01:73:d4:79:72:ee:73:70:28:5f:99:14:6d: fb:5d:ad:4f:0f:7f:df:58:49:cd:90:82:01:f7:61:f5:a9:b7: 28:d4:78:21:ff:8c:05:41:b9:b5:a0:81:3a:8a:78:ec:28:79: c2:43:05:49:75:08:36:82:bf:93:23:5f:47:b6:26:8c:51:80: d1:52:2c:44:f2:ef:b8:4a:a0:8d:ef:c4:27:6f:39:7b:bf:ee: fa:62:7b:ba:58:9e:1b:c0:90:2a:5a:11:e6:cd:0b:b7:a9:29: 3d:c0:eb:17 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt4o3qguwx2yUylrtqAxvRsMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDVjY2YzNWUxMzYxNmQ3OTc2MzBkMWUyNTQwMGMxM2M2MjEx ZjUwMGMwHhcNMjYwMTAxMDgxODU4WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygwZjdkMjQ1MmQ3ZTgxNDhiYmFkMmM5YmE0NTg2MGFlOTM2ODFlZmQ5MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArOJGkNf/G9qvmoJMfbCA5DBw+JrM d292UIa+AgRZlHoLX0pS8cEiAPsf8lvgnK9oscUvk43Yooa/Wf97MLWCRci7kCDz tx0DNN79CgLJeQQv5AqbT7iq/5Nx2pGATFmlRamStM3Kr8K0lc9VH2G+72UBavHi DcSpAq+kRgQTep1NBVI/33llpEqR0IjEqDzqi1QaQDug2jpQvUIDc61KGR+PMHIo f1K8NMuhVsitYhX/8iHosM+AZDWJIOiD/oUT5aY4vjXJHptwSMo1Zr2A+OfdNdu1 LX7RDz1K+y5yY2mir8pITWmwSiGg7qyXJo17A/e1ZzIlWNoqjAT+q7X3YQIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFA99JFLX6BSLutLJukWGCuk2ge/ZMB8GA1UdIwQY MBaAFFzPNeE2FteXYw0eJUAME8YhH1AMMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvWE04MTRUWVcxNWRqRFI0bFFBd1R4aUVmVUF3LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80NC9jYjZiZjUtM2FjNS00MTNkLWI4OTgt NGZlZjE1ZTdkZWFkLzEvRDMwa1V0Zm9GSXU2MHNtNlJZWUs2VGFCNzlrLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC80NC9jYjZiZjUtM2FjNS00MTNkLWI4OTgtNGZlZjE1ZTdkZWFk LzEvWE04MTRUWVcxNWRqRFI0bFFBd1R4aUVmVUF3LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAW98+MA0G CSqGSIb3DQEBCwUAA4IBAQAX3O4pWTzG1Y4eOwpHB40CaWcEZ3OLDpxuaTT/2kdH V24rqt6NwpZqF+TFzYonDksTTWiDJoVDBkodOCF3hqGJJpRfilm1jAvmiskdowG0 Arc/atJoVflTqCjomvgBFC5cpJ8v6VmB8d3G2Ax6px+CsXf/gaT2BO/zGo6nwUDd 0+Zzv4Ah8cJa7xNbhz2mthYUxF9wbAFz1Hly7nNwKF+ZFG37Xa1PD3/fWEnNkIIB 92H1qbco1Hgh/4wFQbm1oIE6injsKHnCQwVJdQg2gr+TI19HtiaMUYDRUixE8u+4 SqCN78Qnbzl7v+76Ynu6WJ4bwJAqWhHmzQu3qSk9wOsX -----END CERTIFICATE-----Generated at Mon Feb 9 23:44:50 2026 by rpki-client