This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5b/7b9336-e9f8-4e27-af4b-239d2fe398b1/1/hCcq1TFbNWkyAJvXXJV-2WLIrqA.roa File: hCcq1TFbNWkyAJvXXJV-2WLIrqA.roa (raw, json) Hash identifier: /tc90Dep/QJ4Nh3UXuKpXRaBteDOIYTt9wUG0CT4tvY= Subject key identifier: 84:27:2A:D5:31:5B:35:69:32:00:9B:D7:5C:95:7E:D9:62:C8:AE:A0 Certificate issuer: /CN=093353c1fabe896af8b85fe7600e4634968fcc4c Certificate serial: 019B7DCB6F4E99D007B0406A1364155540EC Authority key identifier: 09:33:53:C1:FA:BE:89:6A:F8:B8:5F:E7:60:0E:46:34:96:8F:CC:4C Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CTNTwfq-iWr4uF_nYA5GNJaPzEw.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5b/7b9336-e9f8-4e27-af4b-239d2fe398b1/1/hCcq1TFbNWkyAJvXXJV-2WLIrqA.roa Signing time: Fri 02 Jan 2026 08:20:42 +0000 ROA not before: Fri 02 Jan 2026 08:20:42 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 58033 IP address blocks: 91.212.32.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5b/7b9336-e9f8-4e27-af4b-239d2fe398b1/1/CTNTwfq-iWr4uF_nYA5GNJaPzEw.crl rsync://rpki.ripe.net/repository/DEFAULT/5b/7b9336-e9f8-4e27-af4b-239d2fe398b1/1/CTNTwfq-iWr4uF_nYA5GNJaPzEw.mft rsync://rpki.ripe.net/repository/DEFAULT/CTNTwfq-iWr4uF_nYA5GNJaPzEw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 20 Jan 2026 18:00:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7d:cb:6f:4e:99:d0:07:b0:40:6a:13:64:15:55:40:ec Signature Algorithm: sha256WithRSAEncryption Issuer: CN=093353c1fabe896af8b85fe7600e4634968fcc4c Validity Not Before: Jan 2 08:20:42 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=84272ad5315b356932009bd75c957ed962c8aea0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:0e:f9:26:8f:1f:10:2e:12:19:1a:d5:9b:37: b4:52:14:32:87:d0:d5:63:b8:ba:44:ea:e8:97:3c: 69:81:9f:02:c7:84:b3:b9:01:d0:32:5a:ed:09:bc: 0f:6c:b1:b6:dc:5e:aa:0c:dc:ec:e5:97:46:f3:d6: 7a:4b:c8:7d:cc:21:0a:6b:d0:ed:c3:9d:6f:8b:e7: 88:b9:f9:ba:ea:22:fb:05:f9:43:bb:2f:8f:10:eb: bb:f1:e9:43:c5:30:5f:3f:8a:fd:4b:38:de:75:ad: 1a:26:ea:9e:02:18:4d:5b:0d:e7:ef:15:d4:63:c6: 72:7f:d5:d9:8e:e1:0a:df:5e:7b:9d:28:03:95:c3: 1c:74:72:0f:0f:04:56:b6:3f:1b:fa:54:fb:4d:b8: 86:a1:5e:d0:0b:da:3a:ad:c3:79:42:18:86:b6:4b: 5b:cd:fa:98:f9:5b:be:7d:62:92:fb:3f:de:40:b9: ea:8e:9a:22:73:36:c3:b8:6d:e5:68:a0:9c:d5:16: d8:9c:21:44:a6:c7:6a:e4:e2:e5:d0:f9:db:39:4c: a4:c1:96:62:2f:40:4e:45:59:e7:3d:0e:85:a8:6e: f1:7e:71:e7:82:bb:6d:21:12:4d:c9:1f:1c:17:92: a4:ba:21:c0:80:84:e7:9c:5f:38:73:c5:59:0c:04: e4:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 84:27:2A:D5:31:5B:35:69:32:00:9B:D7:5C:95:7E:D9:62:C8:AE:A0 X509v3 Authority Key Identifier: keyid:09:33:53:C1:FA:BE:89:6A:F8:B8:5F:E7:60:0E:46:34:96:8F:CC:4C X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CTNTwfq-iWr4uF_nYA5GNJaPzEw.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/7b9336-e9f8-4e27-af4b-239d2fe398b1/1/hCcq1TFbNWkyAJvXXJV-2WLIrqA.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/7b9336-e9f8-4e27-af4b-239d2fe398b1/1/CTNTwfq-iWr4uF_nYA5GNJaPzEw.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 91.212.32.0/24 Signature Algorithm: sha256WithRSAEncryption 1d:bf:5b:02:bf:db:16:a7:74:27:0f:2f:04:1c:86:f0:0a:fb: 86:5c:c7:93:1a:8a:51:20:a5:fe:cf:7a:9b:12:42:8c:c2:f7: 70:c6:57:24:48:d3:29:72:8f:a4:17:8b:d3:d6:43:f0:d5:cc: bb:76:e2:44:ff:99:1e:6f:d8:80:41:22:b4:61:d9:f9:49:e2: dc:71:c9:39:5e:b7:39:0a:2c:2d:6b:dc:a8:25:b1:12:84:e3: 25:5e:fd:f6:09:78:94:1c:02:af:62:f5:e4:5f:62:75:f4:09: 8a:67:c6:e4:17:85:7e:3b:a5:4d:38:25:e3:b5:de:75:f1:50: 52:98:be:1f:95:bd:f7:c6:3c:ef:25:24:24:24:19:44:87:41: 0d:a6:d5:2b:20:bf:d1:84:dc:72:e0:61:13:05:eb:c7:d0:c3: 1f:00:1a:6b:f4:2c:2a:d1:c1:96:f9:6a:2a:42:92:c0:82:31: 6d:9e:61:e1:01:f2:b2:cc:31:71:d3:de:a3:86:d1:66:81:86: 2a:80:aa:29:26:1d:c6:59:53:a8:88:d9:74:72:8f:df:ca:7e: 5b:0d:67:97:1c:94:83:d7:e0:a8:17:eb:64:09:4c:e1:f2:05: bf:dc:d4:be:7b:d3:89:40:c8:b5:79:e2:73:51:66:97:45:84: 49:af:53:dc -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt9y29OmdAHsEBqE2QVVUDsMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDA5MzM1M2MxZmFiZTg5NmFmOGI4NWZlNzYwMGU0NjM0OTY4 ZmNjNGMwHhcNMjYwMTAyMDgyMDQyWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg4NDI3MmFkNTMxNWIzNTY5MzIwMDliZDc1Yzk1N2VkOTYyYzhhZWEwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuA75Jo8fEC4SGRrVmze0UhQyh9DV Y7i6ROrolzxpgZ8Cx4SzuQHQMlrtCbwPbLG23F6qDNzs5ZdG89Z6S8h9zCEKa9Dt w51vi+eIufm66iL7BflDuy+PEOu78elDxTBfP4r9Szjeda0aJuqeAhhNWw3n7xXU Y8Zyf9XZjuEK3157nSgDlcMcdHIPDwRWtj8b+lT7TbiGoV7QC9o6rcN5QhiGtktb zfqY+Vu+fWKS+z/eQLnqjpoiczbDuG3laKCc1RbYnCFEpsdq5OLl0PnbOUykwZZi L0BORVnnPQ6FqG7xfnHngrttIRJNyR8cF5KkuiHAgITnnF84c8VZDATkjQIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFIQnKtUxWzVpMgCb11yVftliyK6gMB8GA1UdIwQY MBaAFAkzU8H6volq+Lhf52AORjSWj8xMMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvQ1ROVHdmcS1pV3I0dUZfbllBNUdOSmFQekV3LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81Yi83YjkzMzYtZTlmOC00ZTI3LWFmNGIt MjM5ZDJmZTM5OGIxLzEvaENjcTFURmJOV2t5QUp2WFhKVi0yV0xJcnFBLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81Yi83YjkzMzYtZTlmOC00ZTI3LWFmNGItMjM5ZDJmZTM5OGIx LzEvQ1ROVHdmcS1pV3I0dUZfbllBNUdOSmFQekV3LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAW9QgMA0G CSqGSIb3DQEBCwUAA4IBAQAdv1sCv9sWp3QnDy8EHIbwCvuGXMeTGopRIKX+z3qb EkKMwvdwxlckSNMpco+kF4vT1kPw1cy7duJE/5keb9iAQSK0Ydn5SeLccck5Xrc5 Ciwta9yoJbEShOMlXv32CXiUHAKvYvXkX2J19AmKZ8bkF4V+O6VNOCXjtd518VBS mL4flb33xjzvJSQkJBlEh0ENptUrIL/RhNxy4GETBevH0MMfABpr9Cwq0cGW+Woq QpLAgjFtnmHhAfKyzDFx096jhtFmgYYqgKopJh3GWVOoiNl0co/fyn5bDWeXHJSD 1+CoF+tkCUzh8gW/3NS+e9OJQMi1eeJzUWaXRYRJr1Pc -----END CERTIFICATE-----Generated at Tue Jan 20 00:10:02 2026 by rpki-client