This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5f/51519c-1e93-44a9-ac70-7e242674defc/1/kRf-p4qBBa9Rvu5gFKi-QWl32VU.roa File: kRf-p4qBBa9Rvu5gFKi-QWl32VU.roa (raw, json) Hash identifier: fVpCGOPHxxPr7Wk2f1pVCS7IR1cjhvdExLaBFxIvrYw= Subject key identifier: 91:17:FE:A7:8A:81:05:AF:51:BE:EE:60:14:A8:BE:41:69:77:D9:55 Certificate issuer: /CN=17b8beb555dafa82c3d6aa336909ae5ade35a83d Certificate serial: 019B7EA743E0DC2E54C23E7569CE0900738D Authority key identifier: 17:B8:BE:B5:55:DA:FA:82:C3:D6:AA:33:69:09:AE:5A:DE:35:A8:3D Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/F7i-tVXa-oLD1qozaQmuWt41qD0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5f/51519c-1e93-44a9-ac70-7e242674defc/1/kRf-p4qBBa9Rvu5gFKi-QWl32VU.roa Signing time: Fri 02 Jan 2026 12:20:49 +0000 ROA not before: Fri 02 Jan 2026 12:20:49 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 204864 IP address blocks: 91.200.70.0/24 maxlen: 24 91.200.71.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5f/51519c-1e93-44a9-ac70-7e242674defc/1/F7i-tVXa-oLD1qozaQmuWt41qD0.crl rsync://rpki.ripe.net/repository/DEFAULT/5f/51519c-1e93-44a9-ac70-7e242674defc/1/F7i-tVXa-oLD1qozaQmuWt41qD0.mft rsync://rpki.ripe.net/repository/DEFAULT/F7i-tVXa-oLD1qozaQmuWt41qD0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 09:01:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7e:a7:43:e0:dc:2e:54:c2:3e:75:69:ce:09:00:73:8d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=17b8beb555dafa82c3d6aa336909ae5ade35a83d Validity Not Before: Jan 2 12:20:49 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=9117fea78a8105af51beee6014a8be416977d955 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:4d:09:33:4e:d6:30:2f:a2:f9:a3:dc:1d:7d: dd:67:01:2a:9c:9d:77:ef:c1:7e:a0:ea:2f:4a:9c: b7:06:74:ba:b5:cb:34:c1:d4:5a:dc:8d:d0:6f:c2: 2a:3b:39:6e:77:62:0a:6b:0b:2b:2f:46:74:52:2c: 54:a4:18:c7:26:c9:62:da:e5:47:8d:44:3c:32:18: 87:8c:12:48:da:b5:24:bd:a5:be:91:f5:f2:fc:c5: e1:84:32:bc:38:db:cc:e9:24:85:76:63:ad:3f:35: 5b:de:c5:e5:21:4b:28:00:98:ce:b0:64:0f:99:eb: cf:65:16:a2:c3:df:80:5f:bf:97:10:57:99:bd:78: 71:07:02:58:8c:fb:da:0a:3f:d1:05:23:b2:f3:cf: 0b:95:58:9d:ad:fb:97:07:48:75:e7:06:55:2b:64: 3b:f3:65:28:7b:71:aa:2e:b6:92:dc:3b:b0:d7:5f: 4e:c7:d1:4b:11:1e:ef:b6:3c:e2:9c:56:e9:b1:6e: 4c:81:5d:9a:24:16:28:80:69:f0:35:fb:b6:68:1c: c3:5f:90:4e:28:64:ac:3d:1a:15:d0:f9:e2:88:27: 6c:10:30:d0:11:f1:31:3e:81:68:b1:6a:bd:6b:f3: 99:70:74:86:70:3e:0d:1f:da:cc:ca:c5:2f:73:f7: 27:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 91:17:FE:A7:8A:81:05:AF:51:BE:EE:60:14:A8:BE:41:69:77:D9:55 X509v3 Authority Key Identifier: keyid:17:B8:BE:B5:55:DA:FA:82:C3:D6:AA:33:69:09:AE:5A:DE:35:A8:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/F7i-tVXa-oLD1qozaQmuWt41qD0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/51519c-1e93-44a9-ac70-7e242674defc/1/kRf-p4qBBa9Rvu5gFKi-QWl32VU.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/51519c-1e93-44a9-ac70-7e242674defc/1/F7i-tVXa-oLD1qozaQmuWt41qD0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 91.200.70.0/23 Signature Algorithm: sha256WithRSAEncryption 04:78:f1:c8:5a:5c:8d:a8:ce:69:c2:36:26:a8:7c:d2:fc:2d: c1:68:9f:54:5c:bc:f9:00:ec:50:10:8c:73:cf:a0:7c:3e:83: 10:fe:1e:3d:f6:3d:3e:48:28:43:b8:8b:e3:84:45:c6:c7:89: 77:13:79:23:4a:b6:5d:dc:61:ae:f0:2f:d9:43:de:5d:c3:58: a4:92:aa:7a:22:8c:0a:8d:7f:f2:04:19:57:07:ef:b9:e0:39: 29:49:4f:84:e5:11:5a:01:a7:7e:21:20:8a:13:8c:e5:fd:e9: 63:37:80:a0:e4:d8:ea:c4:4e:56:71:a7:e2:ec:b6:c0:37:d6: fe:d3:82:ca:2b:fa:17:67:08:a3:35:8b:62:5f:d4:53:70:ea: e7:b6:70:ed:e8:35:81:63:cb:c2:31:a2:36:de:06:9a:c9:d2: 89:5e:b2:95:66:a4:94:96:7c:f8:59:4b:30:c3:42:c6:59:90: 38:6f:ff:01:57:fc:23:21:62:ba:f7:a9:14:88:ea:34:82:c4: db:6a:cf:1c:ee:78:4f:ea:15:77:93:d6:a6:65:15:f2:e2:0a: 38:a8:af:f3:ec:d6:fc:67:0d:62:7d:7a:67:21:be:86:fe:98: f3:8e:c4:af:b4:52:40:83:cc:92:ba:4d:95:8e:da:58:12:31: 52:db:ab:16 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt+p0Pg3C5Uwj51ac4JAHONMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDE3YjhiZWI1NTVkYWZhODJjM2Q2YWEzMzY5MDlhZTVhZGUz NWE4M2QwHhcNMjYwMTAyMTIyMDQ5WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg5MTE3ZmVhNzhhODEwNWFmNTFiZWVlNjAxNGE4YmU0MTY5NzdkOTU1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0E0JM07WMC+i+aPcHX3dZwEqnJ13 78F+oOovSpy3BnS6tcs0wdRa3I3Qb8IqOzlud2IKawsrL0Z0UixUpBjHJsli2uVH jUQ8MhiHjBJI2rUkvaW+kfXy/MXhhDK8ONvM6SSFdmOtPzVb3sXlIUsoAJjOsGQP mevPZRaiw9+AX7+XEFeZvXhxBwJYjPvaCj/RBSOy888LlVidrfuXB0h15wZVK2Q7 82Uoe3GqLraS3Duw119Ox9FLER7vtjzinFbpsW5MgV2aJBYogGnwNfu2aBzDX5BO KGSsPRoV0PniiCdsEDDQEfExPoFosWq9a/OZcHSGcD4NH9rMysUvc/cnBwIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFJEX/qeKgQWvUb7uYBSovkFpd9lVMB8GA1UdIwQY MBaAFBe4vrVV2vqCw9aqM2kJrlreNag9MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvRjdpLXRWWGEtb0xEMXFvemFRbXVXdDQxcUQwLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81Zi81MTUxOWMtMWU5My00NGE5LWFjNzAt N2UyNDI2NzRkZWZjLzEva1JmLXA0cUJCYTlSdnU1Z0ZLaS1RV2wzMlZVLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81Zi81MTUxOWMtMWU5My00NGE5LWFjNzAtN2UyNDI2NzRkZWZj LzEvRjdpLXRWWGEtb0xEMXFvemFRbXVXdDQxcUQwLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBW8hGMA0G CSqGSIb3DQEBCwUAA4IBAQAEePHIWlyNqM5pwjYmqHzS/C3BaJ9UXLz5AOxQEIxz z6B8PoMQ/h499j0+SChDuIvjhEXGx4l3E3kjSrZd3GGu8C/ZQ95dw1ikkqp6IowK jX/yBBlXB++54DkpSU+E5RFaAad+ISCKE4zl/eljN4Cg5NjqxE5Wcafi7LbAN9b+ 04LKK/oXZwijNYtiX9RTcOrntnDt6DWBY8vCMaI23gaaydKJXrKVZqSUlnz4WUsw w0LGWZA4b/8BV/wjIWK696kUiOo0gsTbas8c7nhP6hV3k9amZRXy4go4qK/z7Nb8 Zw1ifXpnIb6G/pjzjsSvtFJAg8ySuk2VjtpYEjFS26sW -----END CERTIFICATE-----Generated at Mon Feb 9 18:44:15 2026 by rpki-client