This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/73/73151d-b11c-41c5-9ebe-007cf66c6f39/1/idK5B-35fGEZjMNSUixFte8StUg.roa File: idK5B-35fGEZjMNSUixFte8StUg.roa (raw, json) Hash identifier: o+imY86byxVHx6nQNSFLkdJSif7vfSM95dWpYG48qWM= Subject key identifier: 89:D2:B9:07:ED:F9:7C:61:19:8C:C3:52:52:2C:45:B5:EF:12:B5:48 Certificate issuer: /CN=55c42f2c77a18228c9fa9ab379842660d0792908 Certificate serial: 019B7F82C47DA5BF01A9754EA7A0981ED34B Authority key identifier: 55:C4:2F:2C:77:A1:82:28:C9:FA:9A:B3:79:84:26:60:D0:79:29:08 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VcQvLHehgijJ-pqzeYQmYNB5KQg.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/73/73151d-b11c-41c5-9ebe-007cf66c6f39/1/idK5B-35fGEZjMNSUixFte8StUg.roa Signing time: Fri 02 Jan 2026 16:20:34 +0000 ROA not before: Fri 02 Jan 2026 16:20:34 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 198515 IP address blocks: 91.235.213.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/73/73151d-b11c-41c5-9ebe-007cf66c6f39/1/VcQvLHehgijJ-pqzeYQmYNB5KQg.crl rsync://rpki.ripe.net/repository/DEFAULT/73/73151d-b11c-41c5-9ebe-007cf66c6f39/1/VcQvLHehgijJ-pqzeYQmYNB5KQg.mft rsync://rpki.ripe.net/repository/DEFAULT/VcQvLHehgijJ-pqzeYQmYNB5KQg.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 13:01:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7f:82:c4:7d:a5:bf:01:a9:75:4e:a7:a0:98:1e:d3:4b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=55c42f2c77a18228c9fa9ab379842660d0792908 Validity Not Before: Jan 2 16:20:34 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=89d2b907edf97c61198cc352522c45b5ef12b548 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:b2:e6:c4:99:f7:02:89:53:11:a9:00:45:bb: 84:14:dc:55:a9:3b:ad:b9:be:22:ff:73:fb:70:1d: b7:7a:c8:77:b2:d0:86:88:73:32:55:d6:7b:91:7c: 44:81:fc:9f:69:78:a7:b5:cd:86:69:62:63:2a:ba: 03:46:d0:bb:25:f1:7f:05:3a:46:a4:f0:e2:0a:88: 0a:4e:dc:c3:de:b3:d8:17:66:6d:f5:0a:1b:97:de: 18:e4:8b:6c:b7:3e:64:3c:ed:ba:f7:9a:57:71:c7: a2:81:7a:5e:5e:9e:e1:f0:21:f8:cf:bf:14:af:84: 5a:8c:f1:eb:27:40:e3:d1:e2:45:8b:d2:3e:f2:7f: 47:e8:79:a7:d5:46:5a:54:35:ad:63:80:37:1e:20: 7d:24:a8:c0:85:e0:56:77:dc:9e:5f:9b:bd:88:2f: ae:a4:2d:95:94:1e:89:12:f5:ea:90:ef:55:bb:6e: 57:b1:4d:a9:ee:da:a1:b9:70:cd:9b:8a:59:13:de: 6d:25:7d:ee:81:a0:01:f8:02:41:07:c0:4a:83:7b: c9:15:e0:cd:71:1e:d7:6e:69:34:ef:80:c3:39:78: 04:72:0e:0e:a7:36:c3:5f:23:cb:e7:8c:24:d5:92: 81:ac:b1:7b:26:31:c7:4f:1f:59:87:77:96:bd:c8: 98:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 89:D2:B9:07:ED:F9:7C:61:19:8C:C3:52:52:2C:45:B5:EF:12:B5:48 X509v3 Authority Key Identifier: keyid:55:C4:2F:2C:77:A1:82:28:C9:FA:9A:B3:79:84:26:60:D0:79:29:08 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VcQvLHehgijJ-pqzeYQmYNB5KQg.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/73/73151d-b11c-41c5-9ebe-007cf66c6f39/1/idK5B-35fGEZjMNSUixFte8StUg.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/73/73151d-b11c-41c5-9ebe-007cf66c6f39/1/VcQvLHehgijJ-pqzeYQmYNB5KQg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 91.235.213.0/24 Signature Algorithm: sha256WithRSAEncryption 98:fb:ab:c0:0b:6c:73:9f:b7:9c:37:33:d8:68:b5:28:99:65: 3b:aa:ba:74:2a:8f:02:55:55:aa:d4:55:60:61:b9:7d:10:cf: aa:18:c9:f3:36:d9:b0:5e:4e:3b:1e:7e:4e:65:23:46:10:f2: a1:de:47:9a:11:f6:d2:b7:d0:f5:ab:98:88:44:cd:d7:d6:bc: ef:26:9f:b0:d2:75:01:42:6c:fb:c0:b0:b4:f4:df:ae:4f:ed: 6c:4d:f3:a8:b7:f8:95:13:9a:4e:2a:5f:fe:50:0f:a8:38:7b: c0:08:ec:50:c8:fa:86:bc:be:a6:f1:da:6d:79:76:1e:f1:44: 85:e7:1e:69:0b:da:f1:f0:20:92:17:42:96:4d:6e:7b:22:f9: 8a:4b:ae:6f:8a:35:f1:9e:e1:23:39:23:1b:5e:ef:69:cf:8b: a1:cd:85:9c:aa:4e:70:73:f4:cb:59:f8:8a:7c:e9:76:42:08: 92:bd:4d:a3:e2:99:58:98:46:7d:d8:c2:76:68:05:48:5b:3c: 47:5b:ea:cb:50:b0:90:de:d0:61:58:21:16:67:9d:a6:b0:f2: c8:37:ed:53:6d:0c:cf:ab:c5:f9:b3:02:fe:8a:50:42:0d:0e: 83:9e:f9:4f:f9:4b:66:77:46:15:68:23:34:ea:cc:0e:fe:7a: 6f:ba:2f:c1 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt/gsR9pb8BqXVOp6CYHtNLMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDU1YzQyZjJjNzdhMTgyMjhjOWZhOWFiMzc5ODQyNjYwZDA3 OTI5MDgwHhcNMjYwMTAyMTYyMDM0WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg4OWQyYjkwN2VkZjk3YzYxMTk4Y2MzNTI1MjJjNDViNWVmMTJiNTQ4MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA3rLmxJn3AolTEakARbuEFNxVqTut ub4i/3P7cB23esh3stCGiHMyVdZ7kXxEgfyfaXintc2GaWJjKroDRtC7JfF/BTpG pPDiCogKTtzD3rPYF2Zt9Qobl94Y5Itstz5kPO2695pXcceigXpeXp7h8CH4z78U r4RajPHrJ0Dj0eJFi9I+8n9H6Hmn1UZaVDWtY4A3HiB9JKjAheBWd9yeX5u9iC+u pC2VlB6JEvXqkO9Vu25XsU2p7tqhuXDNm4pZE95tJX3ugaAB+AJBB8BKg3vJFeDN cR7Xbmk074DDOXgEcg4OpzbDXyPL54wk1ZKBrLF7JjHHTx9Zh3eWvciYvwIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFInSuQft+XxhGYzDUlIsRbXvErVIMB8GA1UdIwQY MBaAFFXELyx3oYIoyfqas3mEJmDQeSkIMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvVmNRdkxIZWhnaWpKLXBxemVZUW1ZTkI1S1FnLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83My83MzE1MWQtYjExYy00MWM1LTllYmUt MDA3Y2Y2NmM2ZjM5LzEvaWRLNUItMzVmR0Vaak1OU1VpeEZ0ZThTdFVnLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC83My83MzE1MWQtYjExYy00MWM1LTllYmUtMDA3Y2Y2NmM2ZjM5 LzEvVmNRdkxIZWhnaWpKLXBxemVZUW1ZTkI1S1FnLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAW+vVMA0G CSqGSIb3DQEBCwUAA4IBAQCY+6vAC2xzn7ecNzPYaLUomWU7qrp0Ko8CVVWq1FVg Ybl9EM+qGMnzNtmwXk47Hn5OZSNGEPKh3keaEfbSt9D1q5iIRM3X1rzvJp+w0nUB Qmz7wLC09N+uT+1sTfOot/iVE5pOKl/+UA+oOHvACOxQyPqGvL6m8dpteXYe8USF 5x5pC9rx8CCSF0KWTW57IvmKS65vijXxnuEjOSMbXu9pz4uhzYWcqk5wc/TLWfiK fOl2QgiSvU2j4plYmEZ92MJ2aAVIWzxHW+rLULCQ3tBhWCEWZ52msPLIN+1TbQzP q8X5swL+ilBCDQ6DnvlP+Utmd0YVaCM06swO/npvui/B -----END CERTIFICATE-----Generated at Mon Feb 9 21:23:25 2026 by rpki-client