This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/69/3ac761-9ad8-4513-8a32-1f55d9999eeb/1/ILRt9LkKcLV8zTDhe4daBlelpbE.roa File: ILRt9LkKcLV8zTDhe4daBlelpbE.roa (raw, json) Hash identifier: NtW+TS7Xs6SFuc4EVBUAJ27kGuxkzyU+HkBhm6grJWo= Subject key identifier: 20:B4:6D:F4:B9:0A:70:B5:7C:CD:30:E1:7B:87:5A:06:57:A5:A5:B1 Certificate issuer: /CN=44728fb31c4ebdfb9bf129745b91bd2e2ee8ef31 Certificate serial: 019B7D5AED3A2F5EFC437942EDA10E9AEF84 Authority key identifier: 44:72:8F:B3:1C:4E:BD:FB:9B:F1:29:74:5B:91:BD:2E:2E:E8:EF:31 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/RHKPsxxOvfub8Sl0W5G9Li7o7zE.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/69/3ac761-9ad8-4513-8a32-1f55d9999eeb/1/ILRt9LkKcLV8zTDhe4daBlelpbE.roa Signing time: Fri 02 Jan 2026 06:17:49 +0000 ROA not before: Fri 02 Jan 2026 06:17:49 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 44788 IP address blocks: 91.199.242.0/24 maxlen: 24 91.212.98.0/24 maxlen: 24 178.250.0.0/21 maxlen: 24 185.235.84.0/24 maxlen: 24 185.235.85.0/24 maxlen: 24 185.235.86.0/24 maxlen: 24 185.235.87.0/24 maxlen: 24 2a02:2638::/32 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/69/3ac761-9ad8-4513-8a32-1f55d9999eeb/1/RHKPsxxOvfub8Sl0W5G9Li7o7zE.crl rsync://rpki.ripe.net/repository/DEFAULT/69/3ac761-9ad8-4513-8a32-1f55d9999eeb/1/RHKPsxxOvfub8Sl0W5G9Li7o7zE.mft rsync://rpki.ripe.net/repository/DEFAULT/RHKPsxxOvfub8Sl0W5G9Li7o7zE.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 27 Jan 2026 15:00:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7d:5a:ed:3a:2f:5e:fc:43:79:42:ed:a1:0e:9a:ef:84 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=44728fb31c4ebdfb9bf129745b91bd2e2ee8ef31 Validity Not Before: Jan 2 06:17:49 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=20b46df4b90a70b57ccd30e17b875a0657a5a5b1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:33:33:0f:8f:ce:41:20:65:e8:14:43:54:04: c5:d5:0c:71:5e:15:9d:57:93:8c:b7:7b:e3:a2:0b: 47:be:92:a9:d1:b2:00:80:71:74:a0:8c:4e:b1:cc: 58:4b:da:2b:7f:39:3e:32:55:a5:cc:12:39:92:3e: 73:be:dc:b9:cc:db:c0:ec:97:68:52:f9:36:01:9e: 41:45:20:bc:27:26:21:bc:db:7c:98:fc:f6:a4:0a: bb:01:7f:f8:c1:63:74:6d:5b:72:df:95:49:80:86: d0:4d:f6:de:cb:c2:e7:d5:79:19:7a:59:60:a5:e8: 88:21:46:10:d7:16:f9:6c:66:f8:ff:72:e5:da:5e: bf:14:a8:5e:6a:5e:8c:98:81:1c:96:d3:fb:c7:02: 40:17:9f:3f:ed:9b:f8:99:4f:6a:88:d9:98:07:79: 23:7e:85:5f:34:53:be:5b:66:09:0b:09:9a:0f:f5: 2b:c3:e1:ad:1b:13:45:87:2a:57:ab:d0:0b:b0:5e: e7:24:2a:a5:b4:a8:cd:d9:48:32:c7:3c:b5:a0:9c: 56:79:b5:97:14:8d:52:fa:7f:d7:ed:89:a6:1f:19: 84:bf:d5:4b:a7:d6:b9:e6:c4:4a:9c:f6:c4:18:26: 0a:32:a5:61:a5:3c:7c:ef:36:c1:98:0d:54:9f:30: b0:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 20:B4:6D:F4:B9:0A:70:B5:7C:CD:30:E1:7B:87:5A:06:57:A5:A5:B1 X509v3 Authority Key Identifier: keyid:44:72:8F:B3:1C:4E:BD:FB:9B:F1:29:74:5B:91:BD:2E:2E:E8:EF:31 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/RHKPsxxOvfub8Sl0W5G9Li7o7zE.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/69/3ac761-9ad8-4513-8a32-1f55d9999eeb/1/ILRt9LkKcLV8zTDhe4daBlelpbE.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/69/3ac761-9ad8-4513-8a32-1f55d9999eeb/1/RHKPsxxOvfub8Sl0W5G9Li7o7zE.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 91.199.242.0/24 91.212.98.0/24 178.250.0.0/21 185.235.84.0/22 IPv6: 2a02:2638::/32 Signature Algorithm: sha256WithRSAEncryption 51:a3:61:c5:41:53:dd:63:4c:93:d0:1c:8e:ae:25:8a:98:a2: 89:11:15:8b:32:06:31:d1:47:77:f7:67:f3:5b:fe:f2:17:32: 5e:88:92:0c:bb:e0:c7:b6:40:da:e4:7a:ac:7e:20:00:64:66: 3d:b1:26:6a:af:4a:be:27:1b:be:69:2b:db:5d:60:d6:25:13: c1:72:dc:28:70:44:ce:51:b9:61:d2:f8:85:45:fe:69:94:04: 16:15:e4:c8:30:a7:3c:82:6d:a9:bf:3e:c0:18:4f:98:24:6a: b2:62:cb:c9:1a:c3:f5:7c:bc:6d:ed:b3:41:8b:59:52:04:ba: 14:d7:bd:f4:55:bc:1f:b7:9d:94:b8:cf:86:9d:2e:f7:f3:d8: cd:5d:66:48:9e:36:50:fa:e9:04:90:c0:fb:ce:7b:98:71:92: 8a:b8:9b:8c:3a:fe:31:81:45:50:53:dc:18:c3:ee:20:d4:65: 6b:10:e6:17:17:e5:5d:b3:45:c0:10:9a:1d:c6:e9:d4:28:a4: ad:17:2d:6a:ac:43:16:d0:29:94:a2:a0:c2:9b:c7:51:da:ef: 36:26:ed:f2:f2:26:46:2d:51:4f:a1:91:5c:44:ed:5d:66:36: 57:2e:de:8f:bc:dc:bb:3c:13:01:42:a7:ad:bd:e2:10:cb:bd: b0:00:7d:86 -----BEGIN CERTIFICATE----- MIIFHjCCBAagAwIBAgISAZt9Wu06L178Q3lC7aEOmu+EMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDQ0NzI4ZmIzMWM0ZWJkZmI5YmYxMjk3NDViOTFiZDJlMmVl OGVmMzEwHhcNMjYwMTAyMDYxNzQ5WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygyMGI0NmRmNGI5MGE3MGI1N2NjZDMwZTE3Yjg3NWEwNjU3YTVhNWIxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqjMzD4/OQSBl6BRDVATF1QxxXhWd V5OMt3vjogtHvpKp0bIAgHF0oIxOscxYS9orfzk+MlWlzBI5kj5zvty5zNvA7Jdo Uvk2AZ5BRSC8JyYhvNt8mPz2pAq7AX/4wWN0bVty35VJgIbQTfbey8Ln1XkZellg peiIIUYQ1xb5bGb4/3Ll2l6/FKheal6MmIEcltP7xwJAF58/7Zv4mU9qiNmYB3kj foVfNFO+W2YJCwmaD/Urw+GtGxNFhypXq9ALsF7nJCqltKjN2Ugyxzy1oJxWebWX FI1S+n/X7YmmHxmEv9VLp9a55sRKnPbEGCYKMqVhpTx87zbBmA1UnzCwXQIDAQAB o4ICKjCCAiYwHQYDVR0OBBYEFCC0bfS5CnC1fM0w4XuHWgZXpaWxMB8GA1UdIwQY MBaAFERyj7McTr37m/EpdFuRvS4u6O8xMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvUkhLUHN4eE92ZnViOFNsMFc1RzlMaTdvN3pFLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82OS8zYWM3NjEtOWFkOC00NTEzLThhMzIt MWY1NWQ5OTk5ZWViLzEvSUxSdDlMa0tjTFY4elREaGU0ZGFCbGVscGJFLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC82OS8zYWM3NjEtOWFkOC00NTEzLThhMzItMWY1NWQ5OTk5ZWVi LzEvUkhLUHN4eE92ZnViOFNsMFc1RzlMaTdvN3pFLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMEAGCCsGAQUFBwEHAQH/BDEwLzAeBAIAATAYAwQAW8fyAwQA W9RiAwQDsvoAAwQCuetUMA0EAgACMAcDBQAqAiY4MA0GCSqGSIb3DQEBCwUAA4IB AQBRo2HFQVPdY0yT0ByOriWKmKKJERWLMgYx0Ud392fzW/7yFzJeiJIMu+DHtkDa 5HqsfiAAZGY9sSZqr0q+Jxu+aSvbXWDWJRPBctwocETOUblh0viFRf5plAQWFeTI MKc8gm2pvz7AGE+YJGqyYsvJGsP1fLxt7bNBi1lSBLoU1730Vbwft52UuM+GnS73 89jNXWZInjZQ+ukEkMD7znuYcZKKuJuMOv4xgUVQU9wYw+4g1GVrEOYXF+Vds0XA EJodxunUKKStFy1qrEMW0CmUoqDCm8dR2u82Ju3y8iZGLVFPoZFcRO1dZjZXLt6P vNy7PBMBQqetveIQy72wAH2G -----END CERTIFICATE-----Generated at Mon Jan 26 23:22:07 2026 by rpki-client