This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5d/bc1915-dbfe-4481-b31b-5697c7b1c5c1/1/CkDZy0vHEeVACtT5dWGXXEt2g-Q.roa File: CkDZy0vHEeVACtT5dWGXXEt2g-Q.roa (raw, json) Hash identifier: BDhDMAFwjHTIfBm63KAK3A2wmzDVWeqFjAWRvTCerUc= Subject key identifier: 0A:40:D9:CB:4B:C7:11:E5:40:0A:D4:F9:75:61:97:5C:4B:76:83:E4 Certificate issuer: /CN=8ade0787cf9881a1fc59556ca1542d7779f28765 Certificate serial: 019B7AC7B04110B7B39A600AFE2C611AB581 Authority key identifier: 8A:DE:07:87:CF:98:81:A1:FC:59:55:6C:A1:54:2D:77:79:F2:87:65 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/it4Hh8-YgaH8WVVsoVQtd3nyh2U.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5d/bc1915-dbfe-4481-b31b-5697c7b1c5c1/1/CkDZy0vHEeVACtT5dWGXXEt2g-Q.roa Signing time: Thu 01 Jan 2026 18:17:45 +0000 ROA not before: Thu 01 Jan 2026 18:17:45 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 57828 IP address blocks: 91.235.203.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5d/bc1915-dbfe-4481-b31b-5697c7b1c5c1/1/it4Hh8-YgaH8WVVsoVQtd3nyh2U.crl rsync://rpki.ripe.net/repository/DEFAULT/5d/bc1915-dbfe-4481-b31b-5697c7b1c5c1/1/it4Hh8-YgaH8WVVsoVQtd3nyh2U.mft rsync://rpki.ripe.net/repository/DEFAULT/it4Hh8-YgaH8WVVsoVQtd3nyh2U.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7a:c7:b0:41:10:b7:b3:9a:60:0a:fe:2c:61:1a:b5:81 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8ade0787cf9881a1fc59556ca1542d7779f28765 Validity Not Before: Jan 1 18:17:45 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=0a40d9cb4bc711e5400ad4f97561975c4b7683e4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:af:e5:3b:a7:95:fe:77:ee:ae:81:fa:34:01: 10:26:c1:ec:8e:2e:ad:4c:9a:40:34:00:41:b5:01: 25:14:ef:0a:47:77:e7:ad:57:a1:41:f6:bb:47:25: 83:0b:85:ab:df:b9:92:80:9e:4c:5f:c3:76:05:e2: 3a:30:3e:91:af:1d:8e:32:a7:da:83:8d:10:f7:cb: d5:95:65:27:6f:32:cf:0b:fa:be:34:ca:9e:ef:89: 4d:46:1b:c8:21:40:f4:ec:23:ed:a7:cd:d8:c3:af: 7d:6e:48:12:89:39:ff:c3:59:cd:50:a3:39:f1:b4: 2b:96:ba:80:ed:c0:ca:e2:5d:51:92:7d:e5:32:ea: e3:a1:d0:4f:bc:57:76:ff:88:cf:6b:b4:0a:41:90: b4:be:c8:2f:5b:a3:0b:9b:c2:18:36:d8:d5:a6:43: ad:7d:80:9d:54:5e:38:00:f3:89:d3:3d:4a:38:81: 80:74:da:8a:d9:06:db:8f:2a:bf:dd:fa:57:ec:14: fc:41:28:78:09:48:f6:61:3b:d9:b2:fb:64:be:bb: a8:93:58:a3:90:a2:ae:0e:78:9c:35:9f:62:eb:01: 6f:73:e2:88:87:4f:3a:14:cc:75:d4:4f:55:0a:15: 60:08:2b:98:2e:c3:7d:08:b5:38:b5:7a:ea:d3:fe: 31:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0A:40:D9:CB:4B:C7:11:E5:40:0A:D4:F9:75:61:97:5C:4B:76:83:E4 X509v3 Authority Key Identifier: keyid:8A:DE:07:87:CF:98:81:A1:FC:59:55:6C:A1:54:2D:77:79:F2:87:65 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/it4Hh8-YgaH8WVVsoVQtd3nyh2U.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/bc1915-dbfe-4481-b31b-5697c7b1c5c1/1/CkDZy0vHEeVACtT5dWGXXEt2g-Q.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/bc1915-dbfe-4481-b31b-5697c7b1c5c1/1/it4Hh8-YgaH8WVVsoVQtd3nyh2U.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 91.235.203.0/24 Signature Algorithm: sha256WithRSAEncryption 8e:45:46:82:13:cf:78:c4:2d:a4:62:f6:77:94:15:dd:86:25: c4:e2:25:a2:a4:17:ac:de:71:43:0a:63:fc:eb:2b:b5:ea:1c: 5b:68:09:be:67:0e:95:b8:5e:de:71:dc:b7:2c:2b:8b:28:a6: b4:ca:82:fc:16:76:d4:5b:14:7e:b9:52:db:a4:e7:bc:52:1c: c2:15:03:af:cb:57:49:2f:3d:db:a2:8f:b3:d9:0f:44:12:80: 99:3d:e3:55:b8:e7:84:16:d8:61:b4:5f:89:bf:f9:82:b7:56: e5:aa:7c:8f:ac:2e:73:07:b9:3c:bd:a9:d2:67:9a:b0:38:c4: c0:76:a1:e6:19:46:0c:09:c9:46:39:af:d5:3f:76:e5:ac:8c: 38:48:d7:73:08:f0:94:d4:42:45:52:b9:09:e0:6e:68:f1:25: d6:b2:23:85:7a:ee:41:0a:dd:28:d9:78:c5:d9:9a:fc:70:00: 53:82:12:7a:96:9f:13:73:a5:88:8c:f7:19:d1:01:c6:03:50: 96:bd:04:d5:d0:81:7c:3d:77:b1:65:d4:6d:57:bf:ae:36:fe: a8:67:f2:77:76:42:78:ab:ac:ae:06:0c:15:c9:8c:14:ff:bb: b3:d4:30:06:80:85:90:a6:9a:2b:28:26:62:53:73:0f:7e:e9: fe:cf:96:41 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt6x7BBELezmmAK/ixhGrWBMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDhhZGUwNzg3Y2Y5ODgxYTFmYzU5NTU2Y2ExNTQyZDc3Nzlm Mjg3NjUwHhcNMjYwMTAxMTgxNzQ1WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygwYTQwZDljYjRiYzcxMWU1NDAwYWQ0Zjk3NTYxOTc1YzRiNzY4M2U0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAna/lO6eV/nfuroH6NAEQJsHsji6t TJpANABBtQElFO8KR3fnrVehQfa7RyWDC4Wr37mSgJ5MX8N2BeI6MD6Rrx2OMqfa g40Q98vVlWUnbzLPC/q+NMqe74lNRhvIIUD07CPtp83Yw699bkgSiTn/w1nNUKM5 8bQrlrqA7cDK4l1Rkn3lMurjodBPvFd2/4jPa7QKQZC0vsgvW6MLm8IYNtjVpkOt fYCdVF44APOJ0z1KOIGAdNqK2Qbbjyq/3fpX7BT8QSh4CUj2YTvZsvtkvruok1ij kKKuDnicNZ9i6wFvc+KIh086FMx11E9VChVgCCuYLsN9CLU4tXrq0/4xewIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFApA2ctLxxHlQArU+XVhl1xLdoPkMB8GA1UdIwQY MBaAFIreB4fPmIGh/FlVbKFULXd58odlMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvaXQ0SGg4LVlnYUg4V1ZWc29WUXRkM255aDJVLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81ZC9iYzE5MTUtZGJmZS00NDgxLWIzMWIt NTY5N2M3YjFjNWMxLzEvQ2tEWnkwdkhFZVZBQ3RUNWRXR1hYRXQyZy1RLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81ZC9iYzE5MTUtZGJmZS00NDgxLWIzMWItNTY5N2M3YjFjNWMx LzEvaXQ0SGg4LVlnYUg4V1ZWc29WUXRkM255aDJVLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAW+vLMA0G CSqGSIb3DQEBCwUAA4IBAQCORUaCE894xC2kYvZ3lBXdhiXE4iWipBes3nFDCmP8 6yu16hxbaAm+Zw6VuF7ecdy3LCuLKKa0yoL8FnbUWxR+uVLbpOe8UhzCFQOvy1dJ Lz3boo+z2Q9EEoCZPeNVuOeEFthhtF+Jv/mCt1blqnyPrC5zB7k8vanSZ5qwOMTA dqHmGUYMCclGOa/VP3blrIw4SNdzCPCU1EJFUrkJ4G5o8SXWsiOFeu5BCt0o2XjF 2Zr8cABTghJ6lp8Tc6WIjPcZ0QHGA1CWvQTV0IF8PXexZdRtV7+uNv6oZ/J3dkJ4 q6yuBgwVyYwU/7uz1DAGgIWQpporKCZiU3MPfun+z5ZB -----END CERTIFICATE-----Generated at Mon Feb 9 21:01:27 2026 by rpki-client