This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/75/79fbc0-3351-4fff-b9d5-75561cbf104d/1/clePs2CKwCXamkNLiyTo8mEyp8s.roa File: clePs2CKwCXamkNLiyTo8mEyp8s.roa (raw, json) Hash identifier: Qm2UooTQfH7Ur1K7SaEI74Yjk4dvrlynMaCOBrBkokw= Subject key identifier: 72:57:8F:B3:60:8A:C0:25:DA:9A:43:4B:8B:24:E8:F2:61:32:A7:CB Certificate issuer: /CN=9e1aca341635166f802f98a97e00280ccee64ce2 Certificate serial: 019C36EDFEAB77173989642906D04DB53047 Authority key identifier: 9E:1A:CA:34:16:35:16:6F:80:2F:98:A9:7E:00:28:0C:CE:E6:4C:E2 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nhrKNBY1Fm-AL5ipfgAoDM7mTOI.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/75/79fbc0-3351-4fff-b9d5-75561cbf104d/1/clePs2CKwCXamkNLiyTo8mEyp8s.roa Signing time: Sat 07 Feb 2026 07:08:12 +0000 ROA not before: Sat 07 Feb 2026 07:08:12 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 200315 IP address blocks: 91.216.13.0/24 maxlen: 24 138.128.224.0/22 maxlen: 24 138.128.224.0/24 maxlen: 24 138.128.225.0/24 maxlen: 24 138.128.227.0/24 maxlen: 24 2a13:90c0::/29 maxlen: 29 2a13:90c0::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/75/79fbc0-3351-4fff-b9d5-75561cbf104d/1/nhrKNBY1Fm-AL5ipfgAoDM7mTOI.crl rsync://rpki.ripe.net/repository/DEFAULT/75/79fbc0-3351-4fff-b9d5-75561cbf104d/1/nhrKNBY1Fm-AL5ipfgAoDM7mTOI.mft rsync://rpki.ripe.net/repository/DEFAULT/nhrKNBY1Fm-AL5ipfgAoDM7mTOI.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:36:ed:fe:ab:77:17:39:89:64:29:06:d0:4d:b5:30:47 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9e1aca341635166f802f98a97e00280ccee64ce2 Validity Not Before: Feb 7 07:08:12 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=72578fb3608ac025da9a434b8b24e8f26132a7cb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:de:58:a9:dc:df:44:cf:a7:bf:d7:11:53:5a: 8a:19:40:28:24:52:0d:55:4b:c9:5c:33:c8:c9:80: b0:60:80:bc:f9:91:01:45:9b:e6:a5:73:d7:44:de: fd:55:a4:18:03:db:8e:38:9c:f1:7d:8f:2b:8b:a4: 3d:fc:99:17:a4:df:e4:6c:52:7f:96:dd:47:69:a1: f2:be:bd:0d:cf:b3:97:d0:a8:2f:11:3d:dd:8e:95: 73:8e:f3:2d:5a:be:ec:c2:0f:c9:d4:dc:a2:e2:f3: e5:d4:ac:5b:5f:ef:c7:08:1b:39:ea:87:74:55:4e: b0:28:86:a7:5d:28:b3:f8:02:0a:41:c2:d2:23:a1: b7:bb:c5:2c:4b:0d:d6:a1:51:fb:af:b4:13:2a:2e: 8e:cf:16:62:7a:72:3d:bf:2d:47:71:19:45:04:77: 0c:c8:92:14:b6:1b:28:27:72:fa:3b:df:f9:3a:97: 09:4a:5d:2e:95:9c:40:9a:49:14:33:3f:3b:86:b6: f6:99:c7:37:3e:95:66:8b:31:9b:c0:0a:dc:20:af: 80:4c:23:11:19:33:ab:96:64:89:b5:5b:9c:36:19: 4d:d2:ce:47:bb:ec:82:7f:10:4d:fa:03:02:9d:e0: 74:ba:4b:c3:5b:7e:35:91:74:d4:54:5c:41:db:eb: e4:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 72:57:8F:B3:60:8A:C0:25:DA:9A:43:4B:8B:24:E8:F2:61:32:A7:CB X509v3 Authority Key Identifier: keyid:9E:1A:CA:34:16:35:16:6F:80:2F:98:A9:7E:00:28:0C:CE:E6:4C:E2 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nhrKNBY1Fm-AL5ipfgAoDM7mTOI.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/75/79fbc0-3351-4fff-b9d5-75561cbf104d/1/clePs2CKwCXamkNLiyTo8mEyp8s.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/75/79fbc0-3351-4fff-b9d5-75561cbf104d/1/nhrKNBY1Fm-AL5ipfgAoDM7mTOI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 91.216.13.0/24 138.128.224.0/22 IPv6: 2a13:90c0::/29 Signature Algorithm: sha256WithRSAEncryption a4:5e:b0:d8:98:17:52:ef:fe:e2:19:c2:fc:4e:83:71:50:4b: 5f:ef:c3:03:bb:69:5b:72:54:73:98:1a:38:89:e2:f6:4d:60: 87:b8:7f:a5:2b:33:14:54:74:dd:af:64:e2:d1:9e:7e:9f:e4: 07:5f:3f:78:0e:54:30:28:58:d9:0f:3f:72:06:c0:49:5d:b7: 10:4a:0c:17:84:fd:f3:e4:63:48:2a:3a:74:73:de:df:80:08: f0:bd:e0:6b:04:fa:ad:2b:ce:3b:07:ac:87:ad:7d:d8:aa:39: b8:46:3d:4e:96:34:84:a9:7e:f2:b0:a2:29:37:f7:a0:e0:be: 43:de:bd:e8:d5:86:ac:29:52:d7:f4:d5:ba:6b:b0:0f:d5:e9: d9:87:33:25:8c:ff:12:52:60:c6:3e:60:8e:95:d0:7d:79:5a: e7:d2:02:fb:b6:ba:2e:b2:d5:53:65:ad:28:cf:f0:4d:12:51: 79:8b:6b:2a:0c:77:dc:63:04:d1:5c:98:06:d6:e0:67:9b:27: 42:68:66:4e:59:ac:87:f7:97:e3:55:55:fe:10:d7:fa:ed:f4: 06:b2:95:1c:58:18:fc:37:d9:ec:e3:63:90:85:89:af:19:ec: c0:b0:8d:1c:30:1f:ab:cf:3f:a4:52:10:dc:1b:5c:e8:a9:1c: 5f:ff:9a:24 -----BEGIN CERTIFICATE----- MIIFEjCCA/qgAwIBAgISAZw27f6rdxc5iWQpBtBNtTBHMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDllMWFjYTM0MTYzNTE2NmY4MDJmOThhOTdlMDAyODBjY2Vl NjRjZTIwHhcNMjYwMjA3MDcwODEyWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg3MjU3OGZiMzYwOGFjMDI1ZGE5YTQzNGI4YjI0ZThmMjYxMzJhN2NiMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApd5YqdzfRM+nv9cRU1qKGUAoJFIN VUvJXDPIyYCwYIC8+ZEBRZvmpXPXRN79VaQYA9uOOJzxfY8ri6Q9/JkXpN/kbFJ/ lt1HaaHyvr0Nz7OX0KgvET3djpVzjvMtWr7swg/J1Nyi4vPl1KxbX+/HCBs56od0 VU6wKIanXSiz+AIKQcLSI6G3u8UsSw3WoVH7r7QTKi6OzxZienI9vy1HcRlFBHcM yJIUthsoJ3L6O9/5OpcJSl0ulZxAmkkUMz87hrb2mcc3PpVmizGbwArcIK+ATCMR GTOrlmSJtVucNhlN0s5Hu+yCfxBN+gMCneB0ukvDW341kXTUVFxB2+vk6wIDAQAB o4ICHjCCAhowHQYDVR0OBBYEFHJXj7NgisAl2ppDS4sk6PJhMqfLMB8GA1UdIwQY MBaAFJ4ayjQWNRZvgC+YqX4AKAzO5kziMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvbmhyS05CWTFGbS1BTDVpcGZnQW9ETTdtVE9JLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83NS83OWZiYzAtMzM1MS00ZmZmLWI5ZDUt NzU1NjFjYmYxMDRkLzEvY2xlUHMyQ0t3Q1hhbWtOTGl5VG84bUV5cDhzLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC83NS83OWZiYzAtMzM1MS00ZmZmLWI5ZDUtNzU1NjFjYmYxMDRk LzEvbmhyS05CWTFGbS1BTDVpcGZnQW9ETTdtVE9JLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMDQGCCsGAQUFBwEHAQH/BCUwIzASBAIAATAMAwQAW9gNAwQC ioDgMA0EAgACMAcDBQMqE5DAMA0GCSqGSIb3DQEBCwUAA4IBAQCkXrDYmBdS7/7i GcL8ToNxUEtf78MDu2lbclRzmBo4ieL2TWCHuH+lKzMUVHTdr2Ti0Z5+n+QHXz94 DlQwKFjZDz9yBsBJXbcQSgwXhP3z5GNIKjp0c97fgAjwveBrBPqtK847B6yHrX3Y qjm4Rj1OljSEqX7ysKIpN/eg4L5D3r3o1YasKVLX9NW6a7AP1enZhzMljP8SUmDG PmCOldB9eVrn0gL7troustVTZa0oz/BNElF5i2sqDHfcYwTRXJgG1uBnmydCaGZO WayH95fjVVX+ENf67fQGspUcWBj8N9ns42OQhYmvGezAsI0cMB+rzz+kUhDcG1zo qRxf/5ok -----END CERTIFICATE-----Generated at Mon Feb 9 22:36:29 2026 by rpki-client