This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/93/d7d04c-3175-43ad-9e3d-10a4e537226e/1/l97Dui8c8NGGXwj8ZGvsNrMVmQ8.roa File: l97Dui8c8NGGXwj8ZGvsNrMVmQ8.roa (raw, json) Hash identifier: L0nSl6w8NFmZ6xiyZGLVSsN/XXDBn3eOQidAlDJvDmE= Subject key identifier: 97:DE:C3:BA:2F:1C:F0:D1:86:5F:08:FC:64:6B:EC:36:B3:15:99:0F Certificate issuer: /CN=1af91dcedfdefdce59bdb05002b1cb6c52f0c5d3 Certificate serial: 019B7B367B7F5ADF85B77E1464BD8B2EF254 Authority key identifier: 1A:F9:1D:CE:DF:DE:FD:CE:59:BD:B0:50:02:B1:CB:6C:52:F0:C5:D3 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Gvkdzt_e_c5ZvbBQArHLbFLwxdM.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/93/d7d04c-3175-43ad-9e3d-10a4e537226e/1/l97Dui8c8NGGXwj8ZGvsNrMVmQ8.roa Signing time: Thu 01 Jan 2026 20:18:46 +0000 ROA not before: Thu 01 Jan 2026 20:18:46 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 34270 IP address blocks: 85.91.224.0/19 maxlen: 19 2a01:3f8::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/93/d7d04c-3175-43ad-9e3d-10a4e537226e/1/Gvkdzt_e_c5ZvbBQArHLbFLwxdM.crl rsync://rpki.ripe.net/repository/DEFAULT/93/d7d04c-3175-43ad-9e3d-10a4e537226e/1/Gvkdzt_e_c5ZvbBQArHLbFLwxdM.mft rsync://rpki.ripe.net/repository/DEFAULT/Gvkdzt_e_c5ZvbBQArHLbFLwxdM.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 20:00:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7b:36:7b:7f:5a:df:85:b7:7e:14:64:bd:8b:2e:f2:54 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1af91dcedfdefdce59bdb05002b1cb6c52f0c5d3 Validity Not Before: Jan 1 20:18:46 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=97dec3ba2f1cf0d1865f08fc646bec36b315990f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:5a:58:90:d1:4e:ea:d9:c5:cb:ee:63:70:16: da:2b:af:3a:1b:9c:c3:2d:ca:20:ce:00:74:d1:92: c8:10:7c:48:c1:cd:d8:43:e9:13:1d:56:e0:23:2d: 44:98:42:bb:b1:97:ba:83:a7:e5:5f:62:0f:44:76: 4d:58:53:a3:2d:34:f2:5f:2a:53:64:40:e4:fb:2f: c3:b0:d7:0c:f4:17:33:f1:fa:48:61:6e:80:13:18: 15:c5:26:86:d8:7f:92:32:1f:49:96:26:1f:f2:aa: f9:36:31:97:4f:73:0a:d8:16:7a:44:da:8c:5c:84: 7b:c4:be:01:b1:1a:a5:40:a1:54:22:68:0f:f9:78: 29:c7:1a:13:1e:83:cd:3e:1d:86:03:e0:cf:1e:99: 23:d3:2c:58:ba:21:98:15:f8:c2:c1:c2:ec:75:28: 66:8f:de:7c:af:85:39:32:78:7f:c1:64:d7:a3:cd: ea:11:11:ef:ab:85:59:c8:5b:a3:71:1e:4a:67:89: 57:8e:f8:d1:1e:49:5d:ab:86:b3:bb:8e:46:28:06: 2d:3f:80:2e:fd:5a:9e:0d:00:b2:d4:96:23:31:91: f6:c7:27:48:60:8a:0a:da:62:be:b6:48:7b:49:44: 97:d7:07:d9:45:ef:65:68:48:28:a0:90:a5:bd:e7: 9a:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 97:DE:C3:BA:2F:1C:F0:D1:86:5F:08:FC:64:6B:EC:36:B3:15:99:0F X509v3 Authority Key Identifier: keyid:1A:F9:1D:CE:DF:DE:FD:CE:59:BD:B0:50:02:B1:CB:6C:52:F0:C5:D3 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Gvkdzt_e_c5ZvbBQArHLbFLwxdM.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/93/d7d04c-3175-43ad-9e3d-10a4e537226e/1/l97Dui8c8NGGXwj8ZGvsNrMVmQ8.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/93/d7d04c-3175-43ad-9e3d-10a4e537226e/1/Gvkdzt_e_c5ZvbBQArHLbFLwxdM.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 85.91.224.0/19 IPv6: 2a01:3f8::/32 Signature Algorithm: sha256WithRSAEncryption 47:06:75:1f:92:82:e9:0c:c2:db:d6:67:d4:1a:4a:17:f1:07: eb:b3:12:51:63:5d:6d:3e:ff:db:35:e8:b4:3e:3a:c7:bb:a4: ae:db:de:6b:70:eb:cc:46:b4:94:4a:96:06:6e:7c:02:65:89: da:52:35:7a:13:b6:cc:f5:e5:26:6f:7d:04:10:61:e6:68:e1: b8:5e:44:01:3a:ab:67:61:ba:7c:b5:51:4f:c8:14:df:60:78: 60:72:4a:68:b1:f4:35:f3:4e:74:b3:2e:99:f9:b0:03:33:80: ae:d4:89:18:81:81:fa:23:52:2d:3c:88:e0:18:d3:0e:68:9c: 2b:ea:40:0d:c1:ca:b3:35:20:5a:b8:7c:06:ca:d4:e3:aa:5b: 34:49:30:a7:12:1c:68:a9:e9:3b:a9:cc:fe:d0:9d:0e:2d:71: 1b:58:f7:18:09:17:b7:d8:c5:99:80:f5:8b:fc:ed:2e:05:1b: fc:67:64:9a:3e:14:c0:ed:56:6e:67:19:a7:61:42:3b:32:8d: c0:2f:9a:d9:0d:5b:b8:0f:26:f8:aa:a2:2b:2d:5d:2a:9c:72: 93:52:9d:74:11:5c:6f:ab:f1:9b:c5:ee:6c:42:4f:d2:78:24: 17:55:14:ad:f9:81:af:36:67:f3:ec:1f:87:22:22:cb:80:2c: 92:2b:36:49 -----BEGIN CERTIFICATE----- MIIFDDCCA/SgAwIBAgISAZt7Nnt/Wt+Ft34UZL2LLvJUMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDFhZjkxZGNlZGZkZWZkY2U1OWJkYjA1MDAyYjFjYjZjNTJm MGM1ZDMwHhcNMjYwMTAxMjAxODQ2WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg5N2RlYzNiYTJmMWNmMGQxODY1ZjA4ZmM2NDZiZWMzNmIzMTU5OTBmMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA2lpYkNFO6tnFy+5jcBbaK686G5zD LcogzgB00ZLIEHxIwc3YQ+kTHVbgIy1EmEK7sZe6g6flX2IPRHZNWFOjLTTyXypT ZEDk+y/DsNcM9Bcz8fpIYW6AExgVxSaG2H+SMh9JliYf8qr5NjGXT3MK2BZ6RNqM XIR7xL4BsRqlQKFUImgP+XgpxxoTHoPNPh2GA+DPHpkj0yxYuiGYFfjCwcLsdShm j958r4U5Mnh/wWTXo83qERHvq4VZyFujcR5KZ4lXjvjRHkldq4azu45GKAYtP4Au /VqeDQCy1JYjMZH2xydIYIoK2mK+tkh7SUSX1wfZRe9laEgooJClveeauQIDAQAB o4ICGDCCAhQwHQYDVR0OBBYEFJfew7ovHPDRhl8I/GRr7DazFZkPMB8GA1UdIwQY MBaAFBr5Hc7f3v3OWb2wUAKxy2xS8MXTMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvR3ZrZHp0X2VfYzVadmJCUUFySExiRkx3eGRNLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85My9kN2QwNGMtMzE3NS00M2FkLTllM2Qt MTBhNGU1MzcyMjZlLzEvbDk3RHVpOGM4TkdHWHdqOFpHdnNOck1WbVE4LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC85My9kN2QwNGMtMzE3NS00M2FkLTllM2QtMTBhNGU1MzcyMjZl LzEvR3ZrZHp0X2VfYzVadmJCUUFySExiRkx3eGRNLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMC4GCCsGAQUFBwEHAQH/BB8wHTAMBAIAATAGAwQFVVvgMA0E AgACMAcDBQAqAQP4MA0GCSqGSIb3DQEBCwUAA4IBAQBHBnUfkoLpDMLb1mfUGkoX 8QfrsxJRY11tPv/bNei0PjrHu6Su295rcOvMRrSUSpYGbnwCZYnaUjV6E7bM9eUm b30EEGHmaOG4XkQBOqtnYbp8tVFPyBTfYHhgckposfQ18050sy6Z+bADM4Cu1IkY gYH6I1ItPIjgGNMOaJwr6kANwcqzNSBauHwGytTjqls0STCnEhxoqek7qcz+0J0O LXEbWPcYCRe32MWZgPWL/O0uBRv8Z2SaPhTA7VZuZxmnYUI7Mo3AL5rZDVu4Dyb4 qqIrLV0qnHKTUp10EVxvq/Gbxe5sQk/SeCQXVRSt+YGvNmfz7B+HIiLLgCySKzZJ -----END CERTIFICATE-----Generated at Tue Feb 10 04:48:57 2026 by rpki-client