This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4b/f25d7c-6677-4fdb-898e-ee7465754ff6/1/v1HTLFJCs5Ua6altnuNbzMS6M68.roa File: v1HTLFJCs5Ua6altnuNbzMS6M68.roa (raw, json) Hash identifier: hP6DlGZ7oCEXWze3wji21g4MSy29EOBBfOBBgyLS7UE= Subject key identifier: BF:51:D3:2C:52:42:B3:95:1A:E9:A9:6D:9E:E3:5B:CC:C4:BA:33:AF Certificate issuer: /CN=11a010f87a049b6e21abed9b40983b04f3f1c7e8 Certificate serial: 019B7D5D19B436BD9F68C9D29CDB6D59C58C Authority key identifier: 11:A0:10:F8:7A:04:9B:6E:21:AB:ED:9B:40:98:3B:04:F3:F1:C7:E8 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/EaAQ-HoEm24hq-2bQJg7BPPxx-g.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4b/f25d7c-6677-4fdb-898e-ee7465754ff6/1/v1HTLFJCs5Ua6altnuNbzMS6M68.roa Signing time: Fri 02 Jan 2026 06:20:12 +0000 ROA not before: Fri 02 Jan 2026 06:20:12 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 41111 IP address blocks: 91.231.180.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4b/f25d7c-6677-4fdb-898e-ee7465754ff6/1/EaAQ-HoEm24hq-2bQJg7BPPxx-g.crl rsync://rpki.ripe.net/repository/DEFAULT/4b/f25d7c-6677-4fdb-898e-ee7465754ff6/1/EaAQ-HoEm24hq-2bQJg7BPPxx-g.mft rsync://rpki.ripe.net/repository/DEFAULT/EaAQ-HoEm24hq-2bQJg7BPPxx-g.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 22 Jan 2026 09:00:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7d:5d:19:b4:36:bd:9f:68:c9:d2:9c:db:6d:59:c5:8c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=11a010f87a049b6e21abed9b40983b04f3f1c7e8 Validity Not Before: Jan 2 06:20:12 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=bf51d32c5242b3951ae9a96d9ee35bccc4ba33af Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:c0:30:34:da:0f:d2:eb:ca:c8:ef:a6:d6:81: bc:fa:1f:c8:63:cb:84:46:b9:49:ec:53:be:af:29: 9b:ed:01:1b:0d:84:ce:8a:98:cb:f7:9a:5b:0a:23: 71:21:af:8a:77:d7:53:44:0d:b7:d2:ad:45:1c:d0: b2:64:9d:9e:e9:c9:40:61:dd:5f:8a:eb:a8:1c:db: f6:4d:76:35:75:46:0b:99:30:50:a9:4f:e8:17:28: 70:ec:af:8b:12:b3:50:e8:53:02:f6:d8:ec:33:44: 2e:ca:5c:bf:a1:9c:fa:db:99:c2:7a:8c:cd:de:b1: d3:b9:f6:67:d4:6a:5d:d8:ec:3c:3f:68:7d:67:5f: b6:1f:cb:2d:57:b7:ee:2f:3f:ee:77:85:f4:8f:3f: 53:d7:68:7d:1e:de:a2:94:8b:7e:b9:5b:87:0b:7c: 0c:24:af:7d:73:30:be:26:ca:72:5a:6c:47:25:d2: 18:05:2b:cf:09:42:c9:d2:29:c5:6b:05:72:99:48: 4f:02:ff:a5:28:1f:15:f6:d2:b1:02:21:4d:7b:e8: ce:89:30:c9:57:fb:a1:8f:3f:8f:d8:5d:71:0e:e2: e7:7f:c5:01:36:dc:51:df:7a:5e:44:f2:e5:c2:ba: f4:7f:f1:19:0b:fe:c8:56:d0:9a:f5:cc:87:d2:61: 82:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BF:51:D3:2C:52:42:B3:95:1A:E9:A9:6D:9E:E3:5B:CC:C4:BA:33:AF X509v3 Authority Key Identifier: keyid:11:A0:10:F8:7A:04:9B:6E:21:AB:ED:9B:40:98:3B:04:F3:F1:C7:E8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/EaAQ-HoEm24hq-2bQJg7BPPxx-g.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/f25d7c-6677-4fdb-898e-ee7465754ff6/1/v1HTLFJCs5Ua6altnuNbzMS6M68.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/f25d7c-6677-4fdb-898e-ee7465754ff6/1/EaAQ-HoEm24hq-2bQJg7BPPxx-g.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 91.231.180.0/24 Signature Algorithm: sha256WithRSAEncryption ab:25:ec:71:2d:63:8a:36:a8:01:90:3e:0e:d2:54:bc:6d:7a: 20:94:ef:3b:c8:76:b9:3c:52:c7:ee:10:d9:58:d2:f5:b0:dc: 56:45:f2:f8:07:d5:05:d6:55:a1:bb:04:31:da:03:13:95:77: 14:48:81:6e:79:d9:1e:07:58:b2:ab:6f:40:16:89:6e:3a:08: 24:88:17:2c:2f:bb:19:f3:e3:00:eb:d7:a4:99:6f:53:e9:c4: fc:5b:11:a2:a6:49:5b:0c:e0:4d:9b:30:cd:d7:cf:50:45:1d: e2:9b:bf:04:a8:54:33:46:2a:06:0b:03:ed:72:9d:f1:ff:68: 12:b9:16:83:44:2c:09:a4:5f:9a:6d:8a:1f:3c:05:8f:24:a3: d0:ec:af:08:ce:2e:98:54:69:9b:8f:e3:cf:b2:1e:92:4a:f4: 8d:05:87:93:a9:6b:62:0a:72:72:75:94:4a:54:81:05:b2:c5: 44:0b:37:0f:59:c3:8e:93:a4:2f:09:42:00:35:f0:fd:6b:fa: e8:68:5e:d7:1e:0c:87:e5:1f:d2:85:f6:dc:86:c8:db:90:49: f5:7a:17:dd:9f:c3:6b:54:ad:e7:c0:ff:c0:ed:d0:33:92:8e: 81:5d:44:b8:24:e6:9b:2a:62:4b:1c:5d:0a:1a:f4:07:26:5c: 48:03:5a:72 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt9XRm0Nr2faMnSnNttWcWMMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDExYTAxMGY4N2EwNDliNmUyMWFiZWQ5YjQwOTgzYjA0ZjNm MWM3ZTgwHhcNMjYwMTAyMDYyMDEyWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhiZjUxZDMyYzUyNDJiMzk1MWFlOWE5NmQ5ZWUzNWJjY2M0YmEzM2FmMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnsAwNNoP0uvKyO+m1oG8+h/IY8uE RrlJ7FO+rymb7QEbDYTOipjL95pbCiNxIa+Kd9dTRA230q1FHNCyZJ2e6clAYd1f iuuoHNv2TXY1dUYLmTBQqU/oFyhw7K+LErNQ6FMC9tjsM0Quyly/oZz625nCeozN 3rHTufZn1Gpd2Ow8P2h9Z1+2H8stV7fuLz/ud4X0jz9T12h9Ht6ilIt+uVuHC3wM JK99czC+JspyWmxHJdIYBSvPCULJ0inFawVymUhPAv+lKB8V9tKxAiFNe+jOiTDJ V/uhjz+P2F1xDuLnf8UBNtxR33peRPLlwrr0f/EZC/7IVtCa9cyH0mGChwIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFL9R0yxSQrOVGumpbZ7jW8zEujOvMB8GA1UdIwQY MBaAFBGgEPh6BJtuIavtm0CYOwTz8cfoMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvRWFBUS1Ib0VtMjRocS0yYlFKZzdCUFB4eC1nLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80Yi9mMjVkN2MtNjY3Ny00ZmRiLTg5OGUt ZWU3NDY1NzU0ZmY2LzEvdjFIVExGSkNzNVVhNmFsdG51TmJ6TVM2TTY4LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC80Yi9mMjVkN2MtNjY3Ny00ZmRiLTg5OGUtZWU3NDY1NzU0ZmY2 LzEvRWFBUS1Ib0VtMjRocS0yYlFKZzdCUFB4eC1nLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAW+e0MA0G CSqGSIb3DQEBCwUAA4IBAQCrJexxLWOKNqgBkD4O0lS8bXoglO87yHa5PFLH7hDZ WNL1sNxWRfL4B9UF1lWhuwQx2gMTlXcUSIFuedkeB1iyq29AFoluOggkiBcsL7sZ 8+MA69ekmW9T6cT8WxGipklbDOBNmzDN189QRR3im78EqFQzRioGCwPtcp3x/2gS uRaDRCwJpF+abYofPAWPJKPQ7K8Izi6YVGmbj+PPsh6SSvSNBYeTqWtiCnJydZRK VIEFssVECzcPWcOOk6QvCUIANfD9a/roaF7XHgyH5R/ShfbchsjbkEn1ehfdn8Nr VK3nwP/A7dAzko6BXUS4JOabKmJLHF0KGvQHJlxIA1py -----END CERTIFICATE-----Generated at Wed Jan 21 12:42:51 2026 by rpki-client