This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/75/ad1301-149c-4c21-98b3-446a8913d4b8/1/lqO9jU_e1mf7RUCHwc_uBeQO6NY.roa File: lqO9jU_e1mf7RUCHwc_uBeQO6NY.roa (raw, json) Hash identifier: X2Z+xq+OY7HU64r5ulluhPikVE1SCZldf84hSoy01Vk= Subject key identifier: 96:A3:BD:8D:4F:DE:D6:67:FB:45:40:87:C1:CF:EE:05:E4:0E:E8:D6 Certificate issuer: /CN=b26bb4333efe9e14c4831b05821416e5c55bdf42 Certificate serial: 019B7C1340538C9A58C9D1B1D97D0D1DDE9B Authority key identifier: B2:6B:B4:33:3E:FE:9E:14:C4:83:1B:05:82:14:16:E5:C5:5B:DF:42 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/smu0Mz7-nhTEgxsFghQW5cVb30I.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/75/ad1301-149c-4c21-98b3-446a8913d4b8/1/lqO9jU_e1mf7RUCHwc_uBeQO6NY.roa Signing time: Fri 02 Jan 2026 00:19:54 +0000 ROA not before: Fri 02 Jan 2026 00:19:54 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 0 IP address blocks: 91.212.235.0/24 maxlen: 24 2001:7f8:9f::/64 maxlen: 64 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/75/ad1301-149c-4c21-98b3-446a8913d4b8/1/smu0Mz7-nhTEgxsFghQW5cVb30I.crl rsync://rpki.ripe.net/repository/DEFAULT/75/ad1301-149c-4c21-98b3-446a8913d4b8/1/smu0Mz7-nhTEgxsFghQW5cVb30I.mft rsync://rpki.ripe.net/repository/DEFAULT/smu0Mz7-nhTEgxsFghQW5cVb30I.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 08 Jan 2026 15:00:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7c:13:40:53:8c:9a:58:c9:d1:b1:d9:7d:0d:1d:de:9b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b26bb4333efe9e14c4831b05821416e5c55bdf42 Validity Not Before: Jan 2 00:19:54 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=96a3bd8d4fded667fb454087c1cfee05e40ee8d6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:1d:9e:44:9e:52:74:37:ab:fe:03:dc:38:77: 78:06:64:a7:68:46:34:cf:6c:7f:ab:4b:78:b2:9d: c8:02:73:38:10:00:4e:96:2b:59:1e:80:dd:61:33: 15:7b:82:2f:9a:44:65:71:8b:a3:d3:7f:cb:a0:d7: 54:bd:f6:dc:29:da:67:d6:cc:04:b2:8b:ac:ee:5d: d0:a1:de:c9:7c:f9:c5:ac:94:2b:61:23:d2:38:15: e7:e9:62:e4:1b:f7:b5:06:d6:ff:a5:60:35:bf:d8: 37:08:85:97:e2:5c:2f:60:65:43:53:95:4d:5a:df: 2d:92:c4:6c:76:dc:70:3d:7f:d1:6d:4e:b7:d6:ab: 8b:63:f8:40:36:63:d7:5b:78:ee:ba:75:b8:51:b8: 39:8a:f7:c6:19:c2:43:4d:86:b5:2e:b4:95:16:a2: 17:e6:65:4d:0e:29:00:7e:5f:49:78:54:17:b2:5a: 5f:cd:1d:b9:ac:fa:71:97:69:6a:70:24:7b:ff:d8: 38:43:b8:1c:c2:31:71:03:23:95:16:30:8b:ff:89: 42:08:0c:fc:99:7f:51:4a:f6:79:97:e5:e6:f1:33: 41:8f:b9:b3:0c:da:15:8d:04:29:84:06:87:c7:8d: e4:8d:f3:c9:c0:42:30:75:cf:66:fe:86:50:38:d8: 86:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 96:A3:BD:8D:4F:DE:D6:67:FB:45:40:87:C1:CF:EE:05:E4:0E:E8:D6 X509v3 Authority Key Identifier: keyid:B2:6B:B4:33:3E:FE:9E:14:C4:83:1B:05:82:14:16:E5:C5:5B:DF:42 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/smu0Mz7-nhTEgxsFghQW5cVb30I.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/75/ad1301-149c-4c21-98b3-446a8913d4b8/1/lqO9jU_e1mf7RUCHwc_uBeQO6NY.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/75/ad1301-149c-4c21-98b3-446a8913d4b8/1/smu0Mz7-nhTEgxsFghQW5cVb30I.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 91.212.235.0/24 IPv6: 2001:7f8:9f::/64 Signature Algorithm: sha256WithRSAEncryption 62:c2:14:f6:df:df:bb:9c:3e:51:56:19:7f:5b:8c:38:56:90: ef:98:67:1e:03:3e:8d:08:fd:82:94:e9:5d:45:5c:e3:0e:22: 5f:ac:d5:18:b1:8c:26:11:53:cf:85:c0:66:42:09:3d:4f:62: c1:07:29:e9:b5:2b:45:f2:27:13:68:55:6a:2b:95:d1:28:03: 6e:68:17:ec:f0:bc:af:11:6d:c7:99:14:de:9e:b2:d2:c3:9a: 3f:71:8a:fc:a2:f6:c9:dc:18:e5:07:3a:a5:65:48:75:ff:0d: e5:b8:36:ec:0e:73:cf:c7:77:f7:6f:bf:56:0e:2f:c3:55:49: ca:31:f7:ea:62:0d:7a:fd:0b:9c:d6:4f:e8:ab:b2:cf:c4:c6: 8a:54:70:8d:d4:57:b5:44:7a:b3:9c:b0:2f:08:ef:5e:4a:36: a6:39:f0:5a:ca:7a:7f:27:5a:30:cf:1f:be:89:cc:fc:f8:74: 4b:44:87:58:fd:31:c4:df:65:ef:1d:b0:b1:13:78:8f:b9:17: 24:96:52:8e:57:1e:c6:be:92:11:91:cd:98:45:30:e4:c1:e2: d2:d1:8a:c8:9a:e6:2d:8c:01:ff:8f:87:39:d4:6c:8f:e5:e1: 1e:e8:44:80:c5:d9:49:5a:cb:32:40:2a:6f:41:6c:30:29:8b: 48:49:0a:a8 -----BEGIN CERTIFICATE----- MIIFEDCCA/igAwIBAgISAZt8E0BTjJpYydGx2X0NHd6bMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGIyNmJiNDMzM2VmZTllMTRjNDgzMWIwNTgyMTQxNmU1YzU1 YmRmNDIwHhcNMjYwMTAyMDAxOTU0WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg5NmEzYmQ4ZDRmZGVkNjY3ZmI0NTQwODdjMWNmZWUwNWU0MGVlOGQ2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtB2eRJ5SdDer/gPcOHd4BmSnaEY0 z2x/q0t4sp3IAnM4EABOlitZHoDdYTMVe4IvmkRlcYuj03/LoNdUvfbcKdpn1swE sous7l3Qod7JfPnFrJQrYSPSOBXn6WLkG/e1Btb/pWA1v9g3CIWX4lwvYGVDU5VN Wt8tksRsdtxwPX/RbU631quLY/hANmPXW3juunW4Ubg5ivfGGcJDTYa1LrSVFqIX 5mVNDikAfl9JeFQXslpfzR25rPpxl2lqcCR7/9g4Q7gcwjFxAyOVFjCL/4lCCAz8 mX9RSvZ5l+Xm8TNBj7mzDNoVjQQphAaHx43kjfPJwEIwdc9m/oZQONiGNQIDAQAB o4ICHDCCAhgwHQYDVR0OBBYEFJajvY1P3tZn+0VAh8HP7gXkDujWMB8GA1UdIwQY MBaAFLJrtDM+/p4UxIMbBYIUFuXFW99CMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvc211ME16Ny1uaFRFZ3hzRmdoUVc1Y1ZiMzBJLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83NS9hZDEzMDEtMTQ5Yy00YzIxLTk4YjMt NDQ2YTg5MTNkNGI4LzEvbHFPOWpVX2UxbWY3UlVDSHdjX3VCZVFPNk5ZLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC83NS9hZDEzMDEtMTQ5Yy00YzIxLTk4YjMtNDQ2YTg5MTNkNGI4 LzEvc211ME16Ny1uaFRFZ3hzRmdoUVc1Y1ZiMzBJLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMDIGCCsGAQUFBwEHAQH/BCMwITAMBAIAATAGAwQAW9TrMBEE AgACMAsDCQAgAQf4AJ8AADANBgkqhkiG9w0BAQsFAAOCAQEAYsIU9t/fu5w+UVYZ f1uMOFaQ75hnHgM+jQj9gpTpXUVc4w4iX6zVGLGMJhFTz4XAZkIJPU9iwQcp6bUr RfInE2hVaiuV0SgDbmgX7PC8rxFtx5kU3p6y0sOaP3GK/KL2ydwY5Qc6pWVIdf8N 5bg27A5zz8d392+/Vg4vw1VJyjH36mINev0LnNZP6Kuyz8TGilRwjdRXtUR6s5yw LwjvXko2pjnwWsp6fydaMM8fvonM/Ph0S0SHWP0xxN9l7x2wsRN4j7kXJJZSjlce xr6SEZHNmEUw5MHi0tGKyJrmLYwB/4+HOdRsj+XhHuhEgMXZSVrLMkAqb0FsMCmL SEkKqA== -----END CERTIFICATE-----Generated at Wed Jan 7 23:47:59 2026 by rpki-client