This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/87/bd7dce-0ddc-4368-b04d-13f34b09ae61/1/czKSPCCshe_dDSbHHG45r9I_rso.roa File: czKSPCCshe_dDSbHHG45r9I_rso.roa (raw, json) Hash identifier: ZmpNSaMc8ilnubHI16mYkmGjrHKzVWSmxUhSzVqLWvM= Subject key identifier: 73:32:92:3C:20:AC:85:EF:DD:0D:26:C7:1C:6E:39:AF:D2:3F:AE:CA Certificate issuer: /CN=37d209a6959e2354f73ce2f2b941226f83290c8c Certificate serial: 019B7A5A9A711C88FCFA1C3939EAB80DE56D Authority key identifier: 37:D2:09:A6:95:9E:23:54:F7:3C:E2:F2:B9:41:22:6F:83:29:0C:8C Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/N9IJppWeI1T3POLyuUEib4MpDIw.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/87/bd7dce-0ddc-4368-b04d-13f34b09ae61/1/czKSPCCshe_dDSbHHG45r9I_rso.roa Signing time: Thu 01 Jan 2026 16:18:36 +0000 ROA not before: Thu 01 Jan 2026 16:18:36 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 197136 IP address blocks: 91.216.51.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/87/bd7dce-0ddc-4368-b04d-13f34b09ae61/1/N9IJppWeI1T3POLyuUEib4MpDIw.crl rsync://rpki.ripe.net/repository/DEFAULT/87/bd7dce-0ddc-4368-b04d-13f34b09ae61/1/N9IJppWeI1T3POLyuUEib4MpDIw.mft rsync://rpki.ripe.net/repository/DEFAULT/N9IJppWeI1T3POLyuUEib4MpDIw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7a:5a:9a:71:1c:88:fc:fa:1c:39:39:ea:b8:0d:e5:6d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=37d209a6959e2354f73ce2f2b941226f83290c8c Validity Not Before: Jan 1 16:18:36 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=7332923c20ac85efdd0d26c71c6e39afd23faeca Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e5:15:ca:23:f7:18:6c:cd:c4:90:51:cc:cd:64: 4f:c6:87:da:7c:78:ac:ae:ac:b8:6a:12:c7:26:fb: 4b:38:60:cd:39:9a:9c:5a:ce:d0:fc:ac:bc:64:61: 14:a0:71:8b:ea:f8:8c:27:21:a9:d6:90:a9:84:cf: 8f:34:85:67:1a:6b:a7:81:eb:cc:4c:55:19:32:d3: 81:aa:c0:ed:26:a7:a0:b0:34:56:a1:f2:83:ba:54: ea:cc:a7:1d:df:1f:65:ac:38:3a:8f:cf:ba:41:e2: 4a:30:f6:8d:b9:19:26:76:55:63:d9:ce:f7:51:d5: 8f:4e:94:86:40:a3:01:da:7e:7f:80:d0:66:d5:e3: ea:be:0c:6c:fc:c2:79:9a:d2:b1:e9:db:7c:98:c5: a2:39:de:ed:55:db:82:82:4c:0f:55:e1:57:a5:52: f6:d9:1f:43:83:ce:66:ac:d6:a6:27:4c:30:57:6a: d2:8f:22:85:e6:90:e7:82:c7:c1:6f:72:c3:68:a6: 95:55:ac:74:79:0a:b4:b9:56:90:5d:10:d8:0c:8b: 5c:76:fd:d3:3f:75:04:d6:10:c9:44:2c:3b:c0:b0: 96:bd:14:61:15:85:5f:86:ad:96:a8:c8:5f:21:24: df:cb:bc:72:fb:95:d8:68:c6:6c:35:aa:ef:1c:d9: e2:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 73:32:92:3C:20:AC:85:EF:DD:0D:26:C7:1C:6E:39:AF:D2:3F:AE:CA X509v3 Authority Key Identifier: keyid:37:D2:09:A6:95:9E:23:54:F7:3C:E2:F2:B9:41:22:6F:83:29:0C:8C X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/N9IJppWeI1T3POLyuUEib4MpDIw.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/87/bd7dce-0ddc-4368-b04d-13f34b09ae61/1/czKSPCCshe_dDSbHHG45r9I_rso.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/87/bd7dce-0ddc-4368-b04d-13f34b09ae61/1/N9IJppWeI1T3POLyuUEib4MpDIw.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 91.216.51.0/24 Signature Algorithm: sha256WithRSAEncryption 6b:09:32:c8:d8:71:c9:b4:b7:29:a2:52:fc:eb:29:6d:63:8b: 70:6e:1b:45:8f:55:11:2a:a1:90:e5:37:02:35:15:a5:78:1e: 63:86:cc:b5:e3:0f:0d:6b:e2:f5:e8:eb:5f:7c:d2:ec:c7:09: 26:98:02:10:1e:a9:e8:7b:49:3c:f2:c3:23:5b:c5:7d:c1:6a: b5:c6:ab:ef:28:f6:2b:8f:c6:6f:e0:d1:e0:0f:2c:5f:60:ac: a7:05:82:b4:9a:ed:94:dd:12:1f:ad:59:35:59:48:52:5f:b0: d9:1c:2d:f1:82:aa:49:56:41:b4:a4:66:39:b8:85:84:30:9a: 3b:57:3f:4c:f0:17:f4:dc:51:e3:6e:f9:7d:d2:f9:74:57:ae: cb:11:11:ab:30:22:91:01:86:47:42:b9:99:90:19:a5:f3:f3: 0d:fe:06:f0:3a:f4:d0:d9:49:51:3b:18:f0:63:14:24:f2:68: 5c:aa:51:74:75:09:a3:cb:59:be:5b:b3:64:00:79:70:6f:b5: 56:54:93:6d:49:d0:70:c5:28:89:d3:c7:b3:50:c0:a0:28:8f: c8:e6:c4:ca:7d:7b:95:4c:ad:3a:37:35:ec:98:aa:9b:12:96: 76:ae:ae:62:c4:c0:b5:d2:bc:f5:00:b0:85:35:19:30:8e:63: a5:fd:8f:8c -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt6WppxHIj8+hw5Oeq4DeVtMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDM3ZDIwOWE2OTU5ZTIzNTRmNzNjZTJmMmI5NDEyMjZmODMy OTBjOGMwHhcNMjYwMTAxMTYxODM2WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg3MzMyOTIzYzIwYWM4NWVmZGQwZDI2YzcxYzZlMzlhZmQyM2ZhZWNhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA5RXKI/cYbM3EkFHMzWRPxofafHis rqy4ahLHJvtLOGDNOZqcWs7Q/Ky8ZGEUoHGL6viMJyGp1pCphM+PNIVnGmungevM TFUZMtOBqsDtJqegsDRWofKDulTqzKcd3x9lrDg6j8+6QeJKMPaNuRkmdlVj2c73 UdWPTpSGQKMB2n5/gNBm1ePqvgxs/MJ5mtKx6dt8mMWiOd7tVduCgkwPVeFXpVL2 2R9Dg85mrNamJ0wwV2rSjyKF5pDngsfBb3LDaKaVVax0eQq0uVaQXRDYDItcdv3T P3UE1hDJRCw7wLCWvRRhFYVfhq2WqMhfISTfy7xy+5XYaMZsNarvHNniwwIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFHMykjwgrIXv3Q0mxxxuOa/SP67KMB8GA1UdIwQY MBaAFDfSCaaVniNU9zzi8rlBIm+DKQyMMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvTjlJSnBwV2VJMVQzUE9MeXVVRWliNE1wREl3LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84Ny9iZDdkY2UtMGRkYy00MzY4LWIwNGQt MTNmMzRiMDlhZTYxLzEvY3pLU1BDQ3NoZV9kRFNiSEhHNDVyOUlfcnNvLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC84Ny9iZDdkY2UtMGRkYy00MzY4LWIwNGQtMTNmMzRiMDlhZTYx LzEvTjlJSnBwV2VJMVQzUE9MeXVVRWliNE1wREl3LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAW9gzMA0G CSqGSIb3DQEBCwUAA4IBAQBrCTLI2HHJtLcpolL86yltY4twbhtFj1URKqGQ5TcC NRWleB5jhsy14w8Na+L16OtffNLsxwkmmAIQHqnoe0k88sMjW8V9wWq1xqvvKPYr j8Zv4NHgDyxfYKynBYK0mu2U3RIfrVk1WUhSX7DZHC3xgqpJVkG0pGY5uIWEMJo7 Vz9M8Bf03FHjbvl90vl0V67LERGrMCKRAYZHQrmZkBml8/MN/gbwOvTQ2UlROxjw YxQk8mhcqlF0dQmjy1m+W7NkAHlwb7VWVJNtSdBwxSiJ08ezUMCgKI/I5sTKfXuV TK06NzXsmKqbEpZ2rq5ixMC10rz1ALCFNRkwjmOl/Y+M -----END CERTIFICATE-----Generated at Mon Feb 9 22:15:18 2026 by rpki-client