This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/73/6555c3-0546-4eef-8648-506a21595cb8/1/aSMqnDsU4yHUtfUAR3DS4WrgNQk.roa File: aSMqnDsU4yHUtfUAR3DS4WrgNQk.roa (raw, json) Hash identifier: pODty0+G8b8JUuUCA0mPgthTxofZmMjylNtO8cAJ+IU= Subject key identifier: 69:23:2A:9C:3B:14:E3:21:D4:B5:F5:00:47:70:D2:E1:6A:E0:35:09 Certificate issuer: /CN=87a4e5d7725c5868aabea025b838dcc233c6ffc9 Certificate serial: 019B79EC8B3676D72CD2C97B5DE4B2DE8718 Authority key identifier: 87:A4:E5:D7:72:5C:58:68:AA:BE:A0:25:B8:38:DC:C2:33:C6:FF:C9 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/h6Tl13JcWGiqvqAluDjcwjPG_8k.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/73/6555c3-0546-4eef-8648-506a21595cb8/1/aSMqnDsU4yHUtfUAR3DS4WrgNQk.roa Signing time: Thu 01 Jan 2026 14:18:23 +0000 ROA not before: Thu 01 Jan 2026 14:18:23 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 198263 IP address blocks: 91.232.164.0/22 maxlen: 22 193.186.39.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/73/6555c3-0546-4eef-8648-506a21595cb8/1/h6Tl13JcWGiqvqAluDjcwjPG_8k.crl rsync://rpki.ripe.net/repository/DEFAULT/73/6555c3-0546-4eef-8648-506a21595cb8/1/h6Tl13JcWGiqvqAluDjcwjPG_8k.mft rsync://rpki.ripe.net/repository/DEFAULT/h6Tl13JcWGiqvqAluDjcwjPG_8k.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 14:00:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:79:ec:8b:36:76:d7:2c:d2:c9:7b:5d:e4:b2:de:87:18 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=87a4e5d7725c5868aabea025b838dcc233c6ffc9 Validity Not Before: Jan 1 14:18:23 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=69232a9c3b14e321d4b5f5004770d2e16ae03509 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:9a:90:33:06:37:18:ec:88:ba:aa:b1:d3:a9: 28:94:92:65:e0:8a:d3:6c:df:76:b6:ec:75:b1:d4: 76:57:6b:4f:1a:5a:5f:e0:35:cf:44:4e:b6:99:07: 7b:3f:3d:3c:cd:7b:3d:2b:b6:91:80:58:85:cb:1a: 27:79:33:95:39:af:1d:cb:fb:79:64:f4:c6:91:66: 6f:ed:7f:48:54:fe:72:7b:ea:2a:74:ea:21:c6:07: f3:e1:fb:48:90:8d:95:7a:cf:3c:ca:20:d1:bf:f8: a9:8e:ab:ae:5d:2a:f8:37:12:86:17:5e:12:4f:c8: d9:64:72:c6:87:c7:e1:db:a4:7b:e3:af:ac:be:c6: 1e:f5:e4:ed:f8:37:65:50:ac:96:cc:e5:5a:a9:20: 5f:f7:94:57:7c:23:c0:53:bc:72:7a:d1:9d:3c:83: 67:9e:43:e0:20:01:6b:ea:71:7c:fb:21:be:1a:00: 2a:50:72:99:1f:ef:d3:c0:7c:11:15:bb:a9:1c:e5: 3d:dd:55:75:59:ca:5d:12:24:70:07:25:60:39:70: 6e:b1:c2:de:90:b3:6f:3d:58:35:08:6e:c2:31:05: 8d:12:fb:21:09:14:45:86:8d:cc:65:31:3e:dc:b5: 11:74:d6:c8:2d:49:db:00:f2:61:fe:e6:0c:df:50: ba:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 69:23:2A:9C:3B:14:E3:21:D4:B5:F5:00:47:70:D2:E1:6A:E0:35:09 X509v3 Authority Key Identifier: keyid:87:A4:E5:D7:72:5C:58:68:AA:BE:A0:25:B8:38:DC:C2:33:C6:FF:C9 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/h6Tl13JcWGiqvqAluDjcwjPG_8k.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/73/6555c3-0546-4eef-8648-506a21595cb8/1/aSMqnDsU4yHUtfUAR3DS4WrgNQk.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/73/6555c3-0546-4eef-8648-506a21595cb8/1/h6Tl13JcWGiqvqAluDjcwjPG_8k.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 91.232.164.0/22 193.186.39.0/24 Signature Algorithm: sha256WithRSAEncryption 42:ec:b8:f1:28:03:eb:7e:c2:83:d5:12:c8:4c:7b:38:7b:34: 6b:84:9a:ae:9e:aa:64:19:42:88:79:0b:34:2a:6e:1e:6f:4a: 97:65:e0:bd:18:57:d8:57:35:4c:3f:a3:13:d9:b9:42:58:06: b7:1a:f6:6b:ad:9d:9e:fb:bd:d9:59:03:78:9a:c2:e6:3e:04: cb:59:88:92:c1:1e:ad:8e:d1:4e:6a:e1:0a:3c:57:44:63:65: 80:9b:a4:f5:c3:ff:0f:1d:22:a4:0e:99:98:04:20:35:b5:55: b5:9d:9f:a7:87:0a:3e:ba:b3:d4:9f:fb:81:b1:3d:db:6f:41: df:b2:b7:ab:69:62:ea:26:38:82:ab:fc:ad:49:6d:a1:b1:3d: 18:f4:80:24:1f:ea:68:cc:1a:b7:40:4a:16:33:c6:01:77:a6: 0b:cf:b1:20:55:ce:7b:6a:43:b9:20:79:63:5c:de:ae:b4:e8: 4d:d7:85:cf:cb:91:97:c0:1a:44:30:f6:72:61:9d:57:79:e4: 3a:d5:24:cf:20:7b:c9:1c:33:90:7f:0f:ac:0d:f5:1e:25:14: a1:85:05:d4:5b:63:b0:a4:ef:f0:82:e4:d0:82:56:3b:84:dd: f2:46:14:d6:95:d3:b5:f5:43:1d:dd:b1:20:c9:12:5e:e9:83: f8:3b:38:cf -----BEGIN CERTIFICATE----- MIIFAzCCA+ugAwIBAgISAZt57Is2dtcs0sl7XeSy3ocYMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDg3YTRlNWQ3NzI1YzU4NjhhYWJlYTAyNWI4MzhkY2MyMzNj NmZmYzkwHhcNMjYwMTAxMTQxODIzWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg2OTIzMmE5YzNiMTRlMzIxZDRiNWY1MDA0NzcwZDJlMTZhZTAzNTA5MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuZqQMwY3GOyIuqqx06kolJJl4IrT bN92tux1sdR2V2tPGlpf4DXPRE62mQd7Pz08zXs9K7aRgFiFyxoneTOVOa8dy/t5 ZPTGkWZv7X9IVP5ye+oqdOohxgfz4ftIkI2Ves88yiDRv/ipjquuXSr4NxKGF14S T8jZZHLGh8fh26R746+svsYe9eTt+DdlUKyWzOVaqSBf95RXfCPAU7xyetGdPINn nkPgIAFr6nF8+yG+GgAqUHKZH+/TwHwRFbupHOU93VV1WcpdEiRwByVgOXBuscLe kLNvPVg1CG7CMQWNEvshCRRFho3MZTE+3LURdNbILUnbAPJh/uYM31C6PQIDAQAB o4ICDzCCAgswHQYDVR0OBBYEFGkjKpw7FOMh1LX1AEdw0uFq4DUJMB8GA1UdIwQY MBaAFIek5ddyXFhoqr6gJbg43MIzxv/JMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvaDZUbDEzSmNXR2lxdnFBbHVEamN3alBHXzhrLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83My82NTU1YzMtMDU0Ni00ZWVmLTg2NDgt NTA2YTIxNTk1Y2I4LzEvYVNNcW5Ec1U0eUhVdGZVQVIzRFM0V3JnTlFrLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC83My82NTU1YzMtMDU0Ni00ZWVmLTg2NDgtNTA2YTIxNTk1Y2I4 LzEvaDZUbDEzSmNXR2lxdnFBbHVEamN3alBHXzhrLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQCW+ikAwQA wbonMA0GCSqGSIb3DQEBCwUAA4IBAQBC7LjxKAPrfsKD1RLITHs4ezRrhJqunqpk GUKIeQs0Km4eb0qXZeC9GFfYVzVMP6MT2blCWAa3GvZrrZ2e+73ZWQN4msLmPgTL WYiSwR6tjtFOauEKPFdEY2WAm6T1w/8PHSKkDpmYBCA1tVW1nZ+nhwo+urPUn/uB sT3bb0HfsreraWLqJjiCq/ytSW2hsT0Y9IAkH+pozBq3QEoWM8YBd6YLz7EgVc57 akO5IHljXN6utOhN14XPy5GXwBpEMPZyYZ1XeeQ61STPIHvJHDOQfw+sDfUeJRSh hQXUW2OwpO/wguTQglY7hN3yRhTWldO19UMd3bEgyRJe6YP4OzjP -----END CERTIFICATE-----Generated at Mon Feb 9 21:25:25 2026 by rpki-client