This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/72/968d41-4d77-42be-80b1-beafe0efc09c/1/r_ry2JrMgNkI0y2bqAVwL47xsmU.roa File: r_ry2JrMgNkI0y2bqAVwL47xsmU.roa (raw, json) Hash identifier: RFscHxkchgcCfOVhcpYJ+VpHovmhXd8iHfZgJ7NGod8= Subject key identifier: AF:FA:F2:D8:9A:CC:80:D9:08:D3:2D:9B:A8:05:70:2F:8E:F1:B2:65 Certificate issuer: /CN=9757052075961e9d90c27d07125a4b446cafd790 Certificate serial: 019B7DC89DBC77089750F86D5DCCCB4B33C7 Authority key identifier: 97:57:05:20:75:96:1E:9D:90:C2:7D:07:12:5A:4B:44:6C:AF:D7:90 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/l1cFIHWWHp2Qwn0HElpLRGyv15A.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/72/968d41-4d77-42be-80b1-beafe0efc09c/1/r_ry2JrMgNkI0y2bqAVwL47xsmU.roa Signing time: Fri 02 Jan 2026 08:17:38 +0000 ROA not before: Fri 02 Jan 2026 08:17:38 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 49957 IP address blocks: 91.207.250.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/72/968d41-4d77-42be-80b1-beafe0efc09c/1/l1cFIHWWHp2Qwn0HElpLRGyv15A.crl rsync://rpki.ripe.net/repository/DEFAULT/72/968d41-4d77-42be-80b1-beafe0efc09c/1/l1cFIHWWHp2Qwn0HElpLRGyv15A.mft rsync://rpki.ripe.net/repository/DEFAULT/l1cFIHWWHp2Qwn0HElpLRGyv15A.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 23:00:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7d:c8:9d:bc:77:08:97:50:f8:6d:5d:cc:cb:4b:33:c7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9757052075961e9d90c27d07125a4b446cafd790 Validity Not Before: Jan 2 08:17:38 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=affaf2d89acc80d908d32d9ba805702f8ef1b265 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:94:5a:f5:03:71:e8:53:b2:c8:35:f7:cd:33:04: 46:41:f2:1b:0e:8f:9d:60:86:d3:26:ad:02:97:c0: df:df:cd:22:dc:7c:6c:a5:7e:cd:c8:b9:af:35:68: 5f:ca:6f:98:7d:f0:25:fc:eb:a0:87:af:a1:19:6b: da:00:c5:ef:fd:5d:9a:28:21:39:d8:ee:6a:02:b6: d2:cb:82:3f:8b:b9:f1:20:b1:aa:bf:f0:e7:0e:ad: 91:ac:b7:e4:ab:98:b1:76:a5:dc:e8:af:a3:0f:0a: 74:56:21:e4:8a:7b:2e:d9:dd:b8:dc:f2:04:b2:71: c3:76:f0:ce:a4:dc:0f:07:66:24:62:ef:00:9a:29: 18:ee:fb:c9:c0:80:2f:a0:26:1f:f7:0b:34:9c:f1: 9f:fc:e4:80:5e:85:74:9a:35:c0:1b:0c:2c:ae:e3: 17:47:61:6e:c8:31:5b:78:4a:a4:61:f6:53:5d:d8: d8:bf:a7:c1:51:4d:97:b2:de:c3:bc:72:90:0f:bc: e1:56:77:3c:fd:83:79:b9:82:6d:cc:ca:d4:d5:a9: a7:51:fb:da:66:63:10:5a:55:ce:71:a2:93:29:40: 39:3e:2b:83:af:e7:a4:bf:24:b9:4f:b1:9a:dc:b8: 8b:55:96:ce:87:43:eb:58:de:6d:87:e2:a5:0f:70: ee:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AF:FA:F2:D8:9A:CC:80:D9:08:D3:2D:9B:A8:05:70:2F:8E:F1:B2:65 X509v3 Authority Key Identifier: keyid:97:57:05:20:75:96:1E:9D:90:C2:7D:07:12:5A:4B:44:6C:AF:D7:90 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/l1cFIHWWHp2Qwn0HElpLRGyv15A.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/72/968d41-4d77-42be-80b1-beafe0efc09c/1/r_ry2JrMgNkI0y2bqAVwL47xsmU.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/72/968d41-4d77-42be-80b1-beafe0efc09c/1/l1cFIHWWHp2Qwn0HElpLRGyv15A.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 91.207.250.0/23 Signature Algorithm: sha256WithRSAEncryption 32:dc:ae:da:09:f7:80:8b:42:66:dc:c8:cc:3e:32:2b:66:b7: 5b:6a:f9:42:e9:74:f6:89:bc:84:2f:18:d1:fb:c3:42:e0:20: fb:d3:0c:52:e6:d8:d0:41:c7:77:26:b0:d8:a8:d3:a7:19:e2: a9:43:a0:1c:8a:5b:c1:2f:f4:d6:87:6a:ec:57:a5:8b:ef:be: 59:a8:e3:1e:ec:95:2d:b8:88:59:a2:d0:0f:28:e4:37:86:d1: a8:f5:1d:9c:6e:ea:a0:fd:09:09:ca:98:7e:f0:e6:01:24:33: 58:d4:5b:aa:ad:b1:7a:eb:1d:3d:52:6f:84:6b:e1:f6:64:cc: 21:6a:d8:3e:09:25:de:59:17:fa:6b:77:99:08:a5:b8:66:61: d9:3d:5a:02:c5:c6:32:48:34:ca:00:be:c3:27:a4:64:10:d2: 58:e8:84:a8:cd:cc:dc:31:aa:af:df:3a:5b:64:45:2d:c0:29: 85:66:e2:ef:d1:76:c2:af:66:bb:ec:5a:43:9e:59:8e:7e:cd: 12:fe:8a:db:9c:6c:c0:d6:d6:e1:53:ef:df:8e:d5:d2:fb:d1: 31:85:e8:18:74:eb:59:49:a4:8b:80:48:12:87:f4:66:6e:c5: ac:6e:ab:88:67:1d:a1:f7:ca:30:1e:84:f5:d7:ac:3c:a3:b0: 06:6f:49:fd -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt9yJ28dwiXUPhtXczLSzPHMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDk3NTcwNTIwNzU5NjFlOWQ5MGMyN2QwNzEyNWE0YjQ0NmNh ZmQ3OTAwHhcNMjYwMTAyMDgxNzM4WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhhZmZhZjJkODlhY2M4MGQ5MDhkMzJkOWJhODA1NzAyZjhlZjFiMjY1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAlFr1A3HoU7LINffNMwRGQfIbDo+d YIbTJq0Cl8Df380i3HxspX7NyLmvNWhfym+YffAl/Ough6+hGWvaAMXv/V2aKCE5 2O5qArbSy4I/i7nxILGqv/DnDq2RrLfkq5ixdqXc6K+jDwp0ViHkinsu2d243PIE snHDdvDOpNwPB2YkYu8AmikY7vvJwIAvoCYf9ws0nPGf/OSAXoV0mjXAGwwsruMX R2FuyDFbeEqkYfZTXdjYv6fBUU2Xst7DvHKQD7zhVnc8/YN5uYJtzMrU1amnUfva ZmMQWlXOcaKTKUA5PiuDr+ekvyS5T7Ga3LiLVZbOh0PrWN5th+KlD3DuxwIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFK/68tiazIDZCNMtm6gFcC+O8bJlMB8GA1UdIwQY MBaAFJdXBSB1lh6dkMJ9BxJaS0Rsr9eQMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvbDFjRklIV1dIcDJRd24wSEVscExSR3l2MTVBLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83Mi85NjhkNDEtNGQ3Ny00MmJlLTgwYjEt YmVhZmUwZWZjMDljLzEvcl9yeTJKck1nTmtJMHkyYnFBVndMNDd4c21VLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC83Mi85NjhkNDEtNGQ3Ny00MmJlLTgwYjEtYmVhZmUwZWZjMDlj LzEvbDFjRklIV1dIcDJRd24wSEVscExSR3l2MTVBLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBW8/6MA0G CSqGSIb3DQEBCwUAA4IBAQAy3K7aCfeAi0Jm3MjMPjIrZrdbavlC6XT2ibyELxjR +8NC4CD70wxS5tjQQcd3JrDYqNOnGeKpQ6AcilvBL/TWh2rsV6WL775ZqOMe7JUt uIhZotAPKOQ3htGo9R2cbuqg/QkJyph+8OYBJDNY1FuqrbF66x09Um+Ea+H2ZMwh atg+CSXeWRf6a3eZCKW4ZmHZPVoCxcYySDTKAL7DJ6RkENJY6ISozczcMaqv3zpb ZEUtwCmFZuLv0XbCr2a77FpDnlmOfs0S/orbnGzA1tbhU+/fjtXS+9ExhegYdOtZ SaSLgEgSh/RmbsWsbquIZx2h98owHoT116w8o7AGb0n9 -----END CERTIFICATE-----Generated at Tue Feb 10 07:53:09 2026 by rpki-client