This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/81/65f8e2-f4ed-424d-9b91-47dd0c04b550/1/177yt0zK6JzmvvIHI-e1Wf5DIA4.roa File: 177yt0zK6JzmvvIHI-e1Wf5DIA4.roa (raw, json) Hash identifier: HO5W4ujo8pIHLkEdVtcK0IvV5MW361b1xltzeVOXvoA= Subject key identifier: D7:BE:F2:B7:4C:CA:E8:9C:E6:BE:F2:07:23:E7:B5:59:FE:43:20:0E Certificate issuer: /CN=2b3d5db900e081b213ea1f071ec5c00347a6fd95 Certificate serial: 019B7C80735A6C57152BCB70D3E6E76F35A9 Authority key identifier: 2B:3D:5D:B9:00:E0:81:B2:13:EA:1F:07:1E:C5:C0:03:47:A6:FD:95 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Kz1duQDggbIT6h8HHsXAA0em_ZU.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/81/65f8e2-f4ed-424d-9b91-47dd0c04b550/1/177yt0zK6JzmvvIHI-e1Wf5DIA4.roa Signing time: Fri 02 Jan 2026 02:19:11 +0000 ROA not before: Fri 02 Jan 2026 02:19:11 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 43477 IP address blocks: 91.198.173.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/81/65f8e2-f4ed-424d-9b91-47dd0c04b550/1/Kz1duQDggbIT6h8HHsXAA0em_ZU.crl rsync://rpki.ripe.net/repository/DEFAULT/81/65f8e2-f4ed-424d-9b91-47dd0c04b550/1/Kz1duQDggbIT6h8HHsXAA0em_ZU.mft rsync://rpki.ripe.net/repository/DEFAULT/Kz1duQDggbIT6h8HHsXAA0em_ZU.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:00:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7c:80:73:5a:6c:57:15:2b:cb:70:d3:e6:e7:6f:35:a9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2b3d5db900e081b213ea1f071ec5c00347a6fd95 Validity Not Before: Jan 2 02:19:11 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=d7bef2b74ccae89ce6bef20723e7b559fe43200e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:a4:8a:22:06:18:17:1f:60:95:d8:c0:36:7d: f2:0f:c1:a7:a9:42:29:54:36:3b:15:49:8c:76:41: 74:ae:97:9a:60:e6:8a:b6:ab:4c:0b:e8:50:6b:41: 57:55:dd:64:52:e8:d2:e6:83:6e:b4:c5:48:b5:33: 35:bc:15:bd:3d:5f:35:da:c5:50:03:68:3f:f4:03: 3e:69:f6:09:45:82:05:7b:51:60:b7:33:a5:ea:30: 4d:d4:18:4e:3f:99:96:57:47:72:a3:51:9d:34:56: 96:19:7b:f0:ee:27:6d:b8:17:0a:73:9b:a9:96:0a: 73:44:be:6a:1d:8b:d2:04:0b:3e:15:00:98:3b:26: fc:eb:f2:d0:9c:0e:83:e4:1f:f8:37:5d:e4:de:6f: db:3f:5a:88:7b:31:67:ad:69:f0:5b:33:ef:bb:d9: 92:51:af:1a:68:d1:a1:59:f5:76:67:3a:6c:41:6f: a7:cd:e9:48:60:b6:1a:52:5f:ac:a9:f1:5a:d4:04: 49:5a:6e:5a:07:e1:37:aa:8d:d3:f2:25:6a:1e:0c: fd:9c:46:b1:5f:de:35:b6:44:9d:7d:d7:96:27:e1: a5:53:14:ba:ed:3d:60:3d:2a:e7:74:ac:7e:83:27: db:37:14:7e:69:bb:0a:40:d1:b4:fc:52:a5:f2:fb: 45:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D7:BE:F2:B7:4C:CA:E8:9C:E6:BE:F2:07:23:E7:B5:59:FE:43:20:0E X509v3 Authority Key Identifier: keyid:2B:3D:5D:B9:00:E0:81:B2:13:EA:1F:07:1E:C5:C0:03:47:A6:FD:95 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Kz1duQDggbIT6h8HHsXAA0em_ZU.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/81/65f8e2-f4ed-424d-9b91-47dd0c04b550/1/177yt0zK6JzmvvIHI-e1Wf5DIA4.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/81/65f8e2-f4ed-424d-9b91-47dd0c04b550/1/Kz1duQDggbIT6h8HHsXAA0em_ZU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 91.198.173.0/24 Signature Algorithm: sha256WithRSAEncryption 5b:71:b8:55:c9:ac:ba:3a:cc:e4:95:d9:cb:86:56:34:f7:2b: b3:00:ef:c7:aa:49:74:5e:39:8c:cd:a8:cf:f8:92:2d:5a:f6: 89:16:9f:c0:d1:b7:aa:05:f9:a4:52:e8:48:35:96:92:fc:ed: 29:96:de:a0:58:51:c7:ef:75:77:f6:fc:6d:0c:21:a4:14:5c: 57:4f:4a:57:1e:69:be:b3:0e:fa:ac:58:f5:b8:b1:39:c9:06: b4:3c:33:22:95:2b:4f:0e:42:a0:a9:53:68:0c:10:35:68:7b: 94:c8:67:82:13:cb:44:20:81:5b:ec:a4:c3:4b:64:a5:3c:c6: 0c:b2:fc:09:79:6b:29:1e:aa:a4:ae:c9:00:ed:c6:0b:61:6b: e3:47:59:33:6e:67:e5:8b:1d:54:65:fa:fc:8b:22:63:0d:a9: 17:ec:0d:ec:3b:f9:a9:5f:52:97:1c:7a:c1:f3:37:59:b6:ca: 47:da:c4:56:0c:39:b8:d4:b7:2a:bb:5e:6f:b5:2e:fb:ed:ff: 38:65:18:a8:b0:ca:7b:15:2b:a8:38:88:b8:c6:f3:b1:ac:5b: 15:d0:1b:20:98:e2:55:30:0a:d9:11:de:b9:42:56:6a:00:bb: a5:a6:fd:08:92:74:91:b8:fa:f2:6b:f2:70:7b:5c:6c:d9:81: c3:95:b6:a2 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt8gHNabFcVK8tw0+bnbzWpMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJiM2Q1ZGI5MDBlMDgxYjIxM2VhMWYwNzFlYzVjMDAzNDdh NmZkOTUwHhcNMjYwMTAyMDIxOTExWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhkN2JlZjJiNzRjY2FlODljZTZiZWYyMDcyM2U3YjU1OWZlNDMyMDBlMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqKSKIgYYFx9gldjANn3yD8GnqUIp VDY7FUmMdkF0rpeaYOaKtqtMC+hQa0FXVd1kUujS5oNutMVItTM1vBW9PV812sVQ A2g/9AM+afYJRYIFe1FgtzOl6jBN1BhOP5mWV0dyo1GdNFaWGXvw7idtuBcKc5up lgpzRL5qHYvSBAs+FQCYOyb86/LQnA6D5B/4N13k3m/bP1qIezFnrWnwWzPvu9mS Ua8aaNGhWfV2ZzpsQW+nzelIYLYaUl+sqfFa1ARJWm5aB+E3qo3T8iVqHgz9nEax X941tkSdfdeWJ+GlUxS67T1gPSrndKx+gyfbNxR+absKQNG0/FKl8vtFiwIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFNe+8rdMyuic5r7yByPntVn+QyAOMB8GA1UdIwQY MBaAFCs9XbkA4IGyE+ofBx7FwANHpv2VMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvS3oxZHVRRGdnYklUNmg4SEhzWEFBMGVtX1pVLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84MS82NWY4ZTItZjRlZC00MjRkLTliOTEt NDdkZDBjMDRiNTUwLzEvMTc3eXQweks2SnptdnZJSEktZTFXZjVESUE0LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC84MS82NWY4ZTItZjRlZC00MjRkLTliOTEtNDdkZDBjMDRiNTUw LzEvS3oxZHVRRGdnYklUNmg4SEhzWEFBMGVtX1pVLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAW8atMA0G CSqGSIb3DQEBCwUAA4IBAQBbcbhVyay6OszkldnLhlY09yuzAO/Hqkl0XjmMzajP +JItWvaJFp/A0beqBfmkUuhINZaS/O0plt6gWFHH73V39vxtDCGkFFxXT0pXHmm+ sw76rFj1uLE5yQa0PDMilStPDkKgqVNoDBA1aHuUyGeCE8tEIIFb7KTDS2SlPMYM svwJeWspHqqkrskA7cYLYWvjR1kzbmflix1UZfr8iyJjDakX7A3sO/mpX1KXHHrB 8zdZtspH2sRWDDm41Lcqu15vtS777f84ZRiosMp7FSuoOIi4xvOxrFsV0BsgmOJV MArZEd65QlZqALulpv0IknSRuPrya/Jwe1xs2YHDlbai -----END CERTIFICATE-----Generated at Mon Feb 9 22:36:49 2026 by rpki-client