This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5f/af3e51-79d6-4078-a569-d0003a6b5224/1/J2Y5cNDr8YT7PKtkms42q6KH1Ww.roa File: J2Y5cNDr8YT7PKtkms42q6KH1Ww.roa (raw, json) Hash identifier: i9/0Gs/ETKeE8aofdcZW5I00xs4HTkYxcWjqF+8orKM= Subject key identifier: 27:66:39:70:D0:EB:F1:84:FB:3C:AB:64:9A:CE:36:AB:A2:87:D5:6C Certificate issuer: /CN=b0ef19bcb23a2f04c586ac1311a91bc7ca2a9765 Certificate serial: 019B08C2992AD48032264DC0DEBD638E044A Authority key identifier: B0:EF:19:BC:B2:3A:2F:04:C5:86:AC:13:11:A9:1B:C7:CA:2A:97:65 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sO8ZvLI6LwTFhqwTEakbx8oql2U.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5f/af3e51-79d6-4078-a569-d0003a6b5224/1/J2Y5cNDr8YT7PKtkms42q6KH1Ww.roa Signing time: Wed 10 Dec 2025 14:55:29 +0000 ROA not before: Wed 10 Dec 2025 14:55:29 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 212238 IP address blocks: 91.213.4.0/24 maxlen: 24 91.214.171.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5f/af3e51-79d6-4078-a569-d0003a6b5224/1/sO8ZvLI6LwTFhqwTEakbx8oql2U.crl rsync://rpki.ripe.net/repository/DEFAULT/5f/af3e51-79d6-4078-a569-d0003a6b5224/1/sO8ZvLI6LwTFhqwTEakbx8oql2U.mft rsync://rpki.ripe.net/repository/DEFAULT/sO8ZvLI6LwTFhqwTEakbx8oql2U.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 21 Dec 2025 15:46:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:08:c2:99:2a:d4:80:32:26:4d:c0:de:bd:63:8e:04:4a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b0ef19bcb23a2f04c586ac1311a91bc7ca2a9765 Validity Not Before: Dec 10 14:55:29 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=27663970d0ebf184fb3cab649ace36aba287d56c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:f1:71:86:b1:bd:f1:d2:d6:27:c9:e9:70:51: b1:0a:5d:b1:c4:cb:aa:29:95:b9:47:48:c0:4a:a7: 67:1c:e0:63:a1:e1:73:d1:a4:52:f3:7a:97:e3:5b: a0:35:5b:a3:26:54:e2:69:8e:44:b3:6d:04:d2:e9: 80:55:0a:c3:a6:38:61:50:57:19:d9:81:cf:c8:16: e6:8c:a9:83:9c:99:cb:34:bb:d5:05:7e:8b:62:fc: fe:8c:a6:4e:ab:5b:aa:3a:ae:c9:96:93:c0:c4:04: 2a:ba:0a:59:d0:08:59:45:ca:08:76:80:31:77:a4: 7a:53:03:28:1f:18:b0:55:02:32:59:bf:a9:d2:0d: 78:3f:66:45:ce:0e:51:34:15:28:27:dc:c0:64:de: 74:61:c1:6e:d2:d0:23:83:72:7b:3f:d1:f1:ed:d6: bf:b6:f1:c0:94:aa:e0:59:f7:75:cd:07:8e:88:9b: 24:ae:dd:97:93:9c:0f:03:06:2e:21:85:29:29:2d: 3c:02:e0:ae:28:f5:ab:58:9d:e6:3b:3e:af:cf:cb: 1d:2d:35:0c:d4:c0:58:66:cd:95:62:5f:3c:81:bd: 43:11:4d:34:fe:ad:4a:4d:9d:0e:e2:ea:59:d9:b1: d8:ec:d0:3e:18:60:33:90:85:c5:d6:49:d6:be:41: a6:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 27:66:39:70:D0:EB:F1:84:FB:3C:AB:64:9A:CE:36:AB:A2:87:D5:6C X509v3 Authority Key Identifier: keyid:B0:EF:19:BC:B2:3A:2F:04:C5:86:AC:13:11:A9:1B:C7:CA:2A:97:65 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sO8ZvLI6LwTFhqwTEakbx8oql2U.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/af3e51-79d6-4078-a569-d0003a6b5224/1/J2Y5cNDr8YT7PKtkms42q6KH1Ww.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/af3e51-79d6-4078-a569-d0003a6b5224/1/sO8ZvLI6LwTFhqwTEakbx8oql2U.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 91.213.4.0/24 91.214.171.0/24 Signature Algorithm: sha256WithRSAEncryption 15:a2:63:38:00:50:c9:8d:18:b9:ab:7f:c0:b2:47:0b:50:0f: e8:77:ae:4c:88:61:5e:6e:b7:31:24:ab:24:e2:58:3a:d8:55: 69:64:04:56:e5:d7:30:04:40:b7:64:5e:e3:e4:01:cf:c7:76: dd:51:3a:8a:0a:e1:c2:4a:14:d9:d9:bb:63:05:c6:a6:58:fd: 0f:de:58:cf:18:13:25:d1:7d:35:19:5b:d3:6f:9a:2b:39:14: 33:bc:cd:c2:6b:32:de:55:67:2e:08:26:19:9b:1b:0e:53:d9: e0:78:e6:72:56:e2:b5:4a:5a:8a:bf:7b:14:32:2c:0e:5e:68: 61:1d:41:11:04:a3:89:1f:f9:6b:98:1c:18:47:4d:40:3b:6d: 98:a8:b2:b2:e1:39:6c:32:13:2e:eb:2f:f2:be:a5:96:8a:d1: f0:b2:94:45:c9:4e:cf:61:22:e7:71:2a:8c:fe:24:cc:15:5f: 98:11:f4:2a:24:80:37:23:36:8e:a0:38:c1:bd:3c:f1:4f:aa: 64:9b:9b:14:b4:ab:75:54:8f:f3:41:6a:d3:49:d1:fa:89:52: 23:71:ed:6c:68:d7:3d:9d:d1:49:64:24:7d:52:61:28:72:dc: ef:8b:5e:a3:fd:da:95:ed:19:2c:dd:1d:df:02:ce:b4:24:34: 4a:13:26:c6 -----BEGIN CERTIFICATE----- MIIFAzCCA+ugAwIBAgISAZsIwpkq1IAyJk3A3r1jjgRKMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGIwZWYxOWJjYjIzYTJmMDRjNTg2YWMxMzExYTkxYmM3Y2Ey YTk3NjUwHhcNMjUxMjEwMTQ1NTI5WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygyNzY2Mzk3MGQwZWJmMTg0ZmIzY2FiNjQ5YWNlMzZhYmEyODdkNTZjMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApvFxhrG98dLWJ8npcFGxCl2xxMuq KZW5R0jASqdnHOBjoeFz0aRS83qX41ugNVujJlTiaY5Es20E0umAVQrDpjhhUFcZ 2YHPyBbmjKmDnJnLNLvVBX6LYvz+jKZOq1uqOq7JlpPAxAQqugpZ0AhZRcoIdoAx d6R6UwMoHxiwVQIyWb+p0g14P2ZFzg5RNBUoJ9zAZN50YcFu0tAjg3J7P9Hx7da/ tvHAlKrgWfd1zQeOiJskrt2Xk5wPAwYuIYUpKS08AuCuKPWrWJ3mOz6vz8sdLTUM 1MBYZs2VYl88gb1DEU00/q1KTZ0O4upZ2bHY7NA+GGAzkIXF1knWvkGmXQIDAQAB o4ICDzCCAgswHQYDVR0OBBYEFCdmOXDQ6/GE+zyrZJrONquih9VsMB8GA1UdIwQY MBaAFLDvGbyyOi8ExYasExGpG8fKKpdlMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvc084WnZMSTZMd1RGaHF3VEVha2J4OG9xbDJVLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81Zi9hZjNlNTEtNzlkNi00MDc4LWE1Njkt ZDAwMDNhNmI1MjI0LzEvSjJZNWNORHI4WVQ3UEt0a21zNDJxNktIMVd3LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81Zi9hZjNlNTEtNzlkNi00MDc4LWE1NjktZDAwMDNhNmI1MjI0 LzEvc084WnZMSTZMd1RGaHF3VEVha2J4OG9xbDJVLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQAW9UEAwQA W9arMA0GCSqGSIb3DQEBCwUAA4IBAQAVomM4AFDJjRi5q3/AskcLUA/od65MiGFe brcxJKsk4lg62FVpZARW5dcwBEC3ZF7j5AHPx3bdUTqKCuHCShTZ2btjBcamWP0P 3ljPGBMl0X01GVvTb5orORQzvM3CazLeVWcuCCYZmxsOU9ngeOZyVuK1SlqKv3sU MiwOXmhhHUERBKOJH/lrmBwYR01AO22YqLKy4TlsMhMu6y/yvqWWitHwspRFyU7P YSLncSqM/iTMFV+YEfQqJIA3IzaOoDjBvTzxT6pkm5sUtKt1VI/zQWrTSdH6iVIj ce1saNc9ndFJZCR9UmEoctzvi16j/dqV7Rks3R3fAs60JDRKEybG -----END CERTIFICATE-----Generated at Sat Dec 20 21:44:06 2025 by rpki-client