This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/94/fc1adc-ccd8-4aa6-b54d-04d362a2858d/1/yxxhUC74SIbRktXGpRFDG2q_WYY.roa File: yxxhUC74SIbRktXGpRFDG2q_WYY.roa (raw, json) Hash identifier: td7+f7LbCoSoHd1AQOFqrxF0PL/qRZNlsL9bZXllNto= Subject key identifier: CB:1C:61:50:2E:F8:48:86:D1:92:D5:C6:A5:11:43:1B:6A:BF:59:86 Certificate issuer: /CN=4a6f1e01af24d792497d77ed1f7990ae3a61290d Certificate serial: 019B7E37A067F8932B5F8C6B38A303F85CF6 Authority key identifier: 4A:6F:1E:01:AF:24:D7:92:49:7D:77:ED:1F:79:90:AE:3A:61:29:0D Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Sm8eAa8k15JJfXftH3mQrjphKQ0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/94/fc1adc-ccd8-4aa6-b54d-04d362a2858d/1/yxxhUC74SIbRktXGpRFDG2q_WYY.roa Signing time: Fri 02 Jan 2026 10:18:53 +0000 ROA not before: Fri 02 Jan 2026 10:18:53 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 197895 IP address blocks: 91.228.44.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/94/fc1adc-ccd8-4aa6-b54d-04d362a2858d/1/Sm8eAa8k15JJfXftH3mQrjphKQ0.crl rsync://rpki.ripe.net/repository/DEFAULT/94/fc1adc-ccd8-4aa6-b54d-04d362a2858d/1/Sm8eAa8k15JJfXftH3mQrjphKQ0.mft rsync://rpki.ripe.net/repository/DEFAULT/Sm8eAa8k15JJfXftH3mQrjphKQ0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 30 Jan 2026 03:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7e:37:a0:67:f8:93:2b:5f:8c:6b:38:a3:03:f8:5c:f6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4a6f1e01af24d792497d77ed1f7990ae3a61290d Validity Not Before: Jan 2 10:18:53 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=cb1c61502ef84886d192d5c6a511431b6abf5986 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e7:15:b2:67:fc:6d:35:aa:be:83:2a:f2:76:79: 29:e1:5c:fd:60:84:5c:9e:4f:fa:ea:70:c2:59:a9: f5:61:c7:e5:eb:cd:bf:1f:30:5c:a6:4e:62:57:8b: 7f:e8:01:31:8c:17:e2:26:02:47:df:8a:b3:a0:b8: da:3b:00:f9:2a:32:4a:3c:28:37:bf:e4:c7:c2:cd: a1:4d:18:c7:e4:c4:1a:06:0e:15:0f:0b:f8:da:a2: 65:c0:62:e2:0e:95:e6:3b:e5:7e:61:59:e4:ed:b2: 3a:1f:af:35:82:9b:49:70:1b:d7:5f:d1:5a:26:df: 7f:3a:9e:84:a2:80:ca:5b:15:d2:83:57:74:1b:81: fe:56:8e:66:7b:7a:5b:73:6f:5b:77:1d:02:aa:cf: e6:67:dc:b7:ed:1e:87:ba:d3:b4:fa:30:3f:8f:9a: 0a:96:5e:11:25:b6:ff:06:b0:db:ca:71:82:c5:6a: e0:47:b4:aa:6c:45:9b:96:74:9d:d2:95:bb:ab:d5: e6:c8:ce:8b:b5:49:ba:17:29:06:1d:61:d6:97:42: 86:9a:de:1d:3e:2d:00:40:07:fd:c9:5e:d8:7a:f5: 99:a4:99:35:f5:40:ed:1f:9f:7f:45:59:d7:b1:01: 75:21:03:44:a4:f2:d4:b8:7d:42:83:91:58:f5:98: dd:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CB:1C:61:50:2E:F8:48:86:D1:92:D5:C6:A5:11:43:1B:6A:BF:59:86 X509v3 Authority Key Identifier: keyid:4A:6F:1E:01:AF:24:D7:92:49:7D:77:ED:1F:79:90:AE:3A:61:29:0D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Sm8eAa8k15JJfXftH3mQrjphKQ0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/94/fc1adc-ccd8-4aa6-b54d-04d362a2858d/1/yxxhUC74SIbRktXGpRFDG2q_WYY.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/94/fc1adc-ccd8-4aa6-b54d-04d362a2858d/1/Sm8eAa8k15JJfXftH3mQrjphKQ0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 91.228.44.0/22 Signature Algorithm: sha256WithRSAEncryption 47:61:1f:0a:58:c8:4b:e8:4c:51:f0:2c:a4:2e:13:30:a8:4c: 40:6f:e1:b0:bc:1a:a3:17:23:64:d8:83:84:59:26:6c:2f:5f: 29:9a:cf:d3:e3:e9:7b:4a:9d:f6:41:48:70:dc:7e:33:6c:c5: 11:ab:b6:83:fe:43:ee:e1:49:1c:a8:a3:b0:c8:5d:48:f0:56: f4:db:ee:77:79:6d:52:b1:65:37:69:fe:12:0c:0f:98:ee:ea: 16:86:40:26:96:80:3d:4b:2f:20:31:2a:01:a3:d8:21:55:c5: ae:c9:2e:28:53:d5:87:c5:16:e7:20:59:cb:ef:86:40:89:99: fc:76:02:dd:f2:7d:7c:15:68:b9:05:55:fc:8c:14:ed:d1:4d: 68:e2:10:80:ab:45:a6:5b:3d:0b:38:09:c7:34:d5:c0:fc:7a: e8:5a:80:de:2c:46:2b:1f:52:03:4b:7a:8c:98:db:12:43:2a: 26:65:ab:13:07:0f:92:0c:e6:38:96:c3:7e:1c:8b:08:f2:d8: 04:3a:19:af:5f:ab:af:a7:ad:2a:6f:7a:25:2d:ae:a0:56:00: 46:e5:91:9c:ca:2c:b1:76:75:07:20:95:6e:40:93:08:64:fd: a4:6b:c6:c9:09:9a:16:cb:74:55:bd:e0:8c:6c:a0:f1:72:5f: 71:8e:b7:92 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt+N6Bn+JMrX4xrOKMD+Fz2MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDRhNmYxZTAxYWYyNGQ3OTI0OTdkNzdlZDFmNzk5MGFlM2E2 MTI5MGQwHhcNMjYwMTAyMTAxODUzWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhjYjFjNjE1MDJlZjg0ODg2ZDE5MmQ1YzZhNTExNDMxYjZhYmY1OTg2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA5xWyZ/xtNaq+gyrydnkp4Vz9YIRc nk/66nDCWan1Ycfl682/HzBcpk5iV4t/6AExjBfiJgJH34qzoLjaOwD5KjJKPCg3 v+THws2hTRjH5MQaBg4VDwv42qJlwGLiDpXmO+V+YVnk7bI6H681gptJcBvXX9Fa Jt9/Op6EooDKWxXSg1d0G4H+Vo5me3pbc29bdx0Cqs/mZ9y37R6HutO0+jA/j5oK ll4RJbb/BrDbynGCxWrgR7SqbEWblnSd0pW7q9XmyM6LtUm6FykGHWHWl0KGmt4d Pi0AQAf9yV7YevWZpJk19UDtH59/RVnXsQF1IQNEpPLUuH1Cg5FY9ZjdlwIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFMscYVAu+EiG0ZLVxqURQxtqv1mGMB8GA1UdIwQY MBaAFEpvHgGvJNeSSX137R95kK46YSkNMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvU204ZUFhOGsxNUpKZlhmdEgzbVFyanBoS1EwLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85NC9mYzFhZGMtY2NkOC00YWE2LWI1NGQt MDRkMzYyYTI4NThkLzEveXh4aFVDNzRTSWJSa3RYR3BSRkRHMnFfV1lZLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC85NC9mYzFhZGMtY2NkOC00YWE2LWI1NGQtMDRkMzYyYTI4NThk LzEvU204ZUFhOGsxNUpKZlhmdEgzbVFyanBoS1EwLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCW+QsMA0G CSqGSIb3DQEBCwUAA4IBAQBHYR8KWMhL6ExR8CykLhMwqExAb+GwvBqjFyNk2IOE WSZsL18pms/T4+l7Sp32QUhw3H4zbMURq7aD/kPu4UkcqKOwyF1I8Fb02+53eW1S sWU3af4SDA+Y7uoWhkAmloA9Sy8gMSoBo9ghVcWuyS4oU9WHxRbnIFnL74ZAiZn8 dgLd8n18FWi5BVX8jBTt0U1o4hCAq0WmWz0LOAnHNNXA/HroWoDeLEYrH1IDS3qM mNsSQyomZasTBw+SDOY4lsN+HIsI8tgEOhmvX6uvp60qb3olLa6gVgBG5ZGcyiyx dnUHIJVuQJMIZP2ka8bJCZoWy3RVveCMbKDxcl9xjreS -----END CERTIFICATE-----Generated at Thu Jan 29 13:05:55 2026 by rpki-client