This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/83/d0b571-3276-4177-8163-0069030763db/1/gRIS3IOjEAgDn__cPvDxP1mU1_8.roa File: gRIS3IOjEAgDn__cPvDxP1mU1_8.roa (raw, json) Hash identifier: hSl8/IpiF3/9ilxJHWR9J4Hc4H+z1qdb5D3HNsLaVuo= Subject key identifier: 81:12:12:DC:83:A3:10:08:03:9F:FF:DC:3E:F0:F1:3F:59:94:D7:FF Certificate issuer: /CN=5365d03fd8522674eb17ac767294cd11f72939d1 Certificate serial: 019B7DC9BDFF3B765DFBC7C42364A0E83058 Authority key identifier: 53:65:D0:3F:D8:52:26:74:EB:17:AC:76:72:94:CD:11:F7:29:39:D1 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/U2XQP9hSJnTrF6x2cpTNEfcpOdE.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/83/d0b571-3276-4177-8163-0069030763db/1/gRIS3IOjEAgDn__cPvDxP1mU1_8.roa Signing time: Fri 02 Jan 2026 08:18:51 +0000 ROA not before: Fri 02 Jan 2026 08:18:51 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 51709 IP address blocks: 91.209.5.0/24 maxlen: 24 2001:67c:8b0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/83/d0b571-3276-4177-8163-0069030763db/1/U2XQP9hSJnTrF6x2cpTNEfcpOdE.crl rsync://rpki.ripe.net/repository/DEFAULT/83/d0b571-3276-4177-8163-0069030763db/1/U2XQP9hSJnTrF6x2cpTNEfcpOdE.mft rsync://rpki.ripe.net/repository/DEFAULT/U2XQP9hSJnTrF6x2cpTNEfcpOdE.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 21:05:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7d:c9:bd:ff:3b:76:5d:fb:c7:c4:23:64:a0:e8:30:58 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5365d03fd8522674eb17ac767294cd11f72939d1 Validity Not Before: Jan 2 08:18:51 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=811212dc83a31008039fffdc3ef0f13f5994d7ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:28:ff:2d:93:97:37:ab:e5:df:86:e8:69:e5: c7:e5:64:75:8e:72:63:04:00:74:a5:cb:b1:9d:08: ca:32:2e:87:2a:b2:36:f5:35:b8:dd:6c:c0:3e:2d: d1:b8:ba:3e:41:b9:02:65:da:a1:7c:d3:25:f8:8b: cf:4d:26:fe:e0:68:d1:a9:dc:0c:9a:b9:a3:32:9a: 71:f1:0f:45:e4:ba:cf:f7:3d:29:e1:50:9f:d3:33: 40:8d:53:b7:03:5d:83:c1:a9:8e:cc:af:11:83:90: 5d:61:03:ea:0d:07:f6:12:0a:29:c6:fd:6d:b7:aa: ce:2c:fb:f0:7e:31:19:89:3d:7b:c6:fa:e5:5f:0c: 5a:77:71:89:9d:c0:4d:11:39:eb:d2:16:0d:c4:09: 7b:aa:c5:94:11:18:f5:d3:6a:39:c9:4d:44:ca:68: e7:25:b6:f9:e8:6d:b1:2e:ac:4c:08:09:8a:af:e6: 95:4d:24:a1:dc:f5:be:53:8b:6e:e0:c3:7a:2f:e6: 9b:19:4e:60:72:36:e6:af:85:c8:7c:fb:4a:2f:56: fd:56:88:db:5b:a0:bf:be:e8:09:81:a1:f2:8b:a6: c9:0f:c5:1b:91:c8:17:f4:cc:89:f3:75:64:d2:b7: 77:90:44:6a:bf:4c:31:ba:ff:34:c3:b4:e8:53:d4: b4:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 81:12:12:DC:83:A3:10:08:03:9F:FF:DC:3E:F0:F1:3F:59:94:D7:FF X509v3 Authority Key Identifier: keyid:53:65:D0:3F:D8:52:26:74:EB:17:AC:76:72:94:CD:11:F7:29:39:D1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/U2XQP9hSJnTrF6x2cpTNEfcpOdE.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/83/d0b571-3276-4177-8163-0069030763db/1/gRIS3IOjEAgDn__cPvDxP1mU1_8.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/83/d0b571-3276-4177-8163-0069030763db/1/U2XQP9hSJnTrF6x2cpTNEfcpOdE.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 91.209.5.0/24 IPv6: 2001:67c:8b0::/48 Signature Algorithm: sha256WithRSAEncryption 51:37:8a:c8:14:95:b4:c3:25:fd:cd:85:0e:34:a7:d8:6a:68: 20:0f:8c:04:7d:78:06:b7:f5:44:49:7a:2c:85:76:be:73:c3: 3a:ef:da:72:40:2c:36:d5:64:3f:af:2d:e0:d4:46:b2:06:5f: 1c:24:db:8c:a1:f3:2f:49:c9:f5:be:26:3c:70:5a:ff:32:3f: 09:09:fe:d2:93:82:b2:55:e2:e1:6e:96:f6:fd:8e:85:30:1c: a6:b7:f7:65:52:ae:4b:30:4d:25:1a:53:dc:7b:a3:d7:75:e7: db:00:30:03:de:f9:fb:38:bd:c8:de:b5:a8:9a:31:d4:27:dc: d2:4a:44:c5:c3:8c:a7:23:b8:9e:a1:97:e9:13:3d:9e:c2:bd: fb:32:1c:8f:ca:a6:25:b1:cd:ee:28:7a:65:66:97:77:9c:90: 3a:ab:08:d3:74:0d:9d:60:a6:cc:da:66:4c:02:2f:e0:7b:be: ea:3a:01:34:2b:31:68:02:1d:1b:03:55:93:3e:da:a2:62:ec: 53:33:a2:0e:dd:00:1a:58:88:9b:89:0b:43:6d:a0:a0:36:32: 55:31:4e:45:71:ff:b9:db:dc:66:35:72:cb:42:88:99:d3:54: 3b:49:3c:66:b9:8c:ba:4e:dd:eb:de:a2:16:0e:71:1f:08:4d: e4:33:30:0f -----BEGIN CERTIFICATE----- MIIFDjCCA/agAwIBAgISAZt9yb3/O3Zd+8fEI2Sg6DBYMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDUzNjVkMDNmZDg1MjI2NzRlYjE3YWM3NjcyOTRjZDExZjcy OTM5ZDEwHhcNMjYwMTAyMDgxODUxWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg4MTEyMTJkYzgzYTMxMDA4MDM5ZmZmZGMzZWYwZjEzZjU5OTRkN2ZmMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuCj/LZOXN6vl34boaeXH5WR1jnJj BAB0pcuxnQjKMi6HKrI29TW43WzAPi3RuLo+QbkCZdqhfNMl+IvPTSb+4GjRqdwM mrmjMppx8Q9F5LrP9z0p4VCf0zNAjVO3A12DwamOzK8Rg5BdYQPqDQf2Egopxv1t t6rOLPvwfjEZiT17xvrlXwxad3GJncBNETnr0hYNxAl7qsWUERj102o5yU1Eymjn Jbb56G2xLqxMCAmKr+aVTSSh3PW+U4tu4MN6L+abGU5gcjbmr4XIfPtKL1b9Vojb W6C/vugJgaHyi6bJD8UbkcgX9MyJ83Vk0rd3kERqv0wxuv80w7ToU9S0JwIDAQAB o4ICGjCCAhYwHQYDVR0OBBYEFIESEtyDoxAIA5//3D7w8T9ZlNf/MB8GA1UdIwQY MBaAFFNl0D/YUiZ06xesdnKUzRH3KTnRMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvVTJYUVA5aFNKblRyRjZ4MmNwVE5FZmNwT2RFLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84My9kMGI1NzEtMzI3Ni00MTc3LTgxNjMt MDA2OTAzMDc2M2RiLzEvZ1JJUzNJT2pFQWdEbl9fY1B2RHhQMW1VMV84LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC84My9kMGI1NzEtMzI3Ni00MTc3LTgxNjMtMDA2OTAzMDc2M2Ri LzEvVTJYUVA5aFNKblRyRjZ4MmNwVE5FZmNwT2RFLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMDAGCCsGAQUFBwEHAQH/BCEwHzAMBAIAATAGAwQAW9EFMA8E AgACMAkDBwAgAQZ8CLAwDQYJKoZIhvcNAQELBQADggEBAFE3isgUlbTDJf3NhQ40 p9hqaCAPjAR9eAa39URJeiyFdr5zwzrv2nJALDbVZD+vLeDURrIGXxwk24yh8y9J yfW+JjxwWv8yPwkJ/tKTgrJV4uFulvb9joUwHKa392VSrkswTSUaU9x7o9d159sA MAPe+fs4vcjetaiaMdQn3NJKRMXDjKcjuJ6hl+kTPZ7CvfsyHI/KpiWxze4oemVm l3eckDqrCNN0DZ1gpszaZkwCL+B7vuo6ATQrMWgCHRsDVZM+2qJi7FMzog7dABpY iJuJC0NtoKA2MlUxTkVx/7nb3GY1cstCiJnTVDtJPGa5jLpO3eveohYOcR8ITeQz MA8= -----END CERTIFICATE-----Generated at Tue Feb 10 02:46:12 2026 by rpki-client