This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/95/c4d7b0-6ebf-4cac-a8ad-fe3e318cae9c/1/iTdbSRkeeUov9QjxN4mvAn9ldlo.roa File: iTdbSRkeeUov9QjxN4mvAn9ldlo.roa (raw, json) Hash identifier: tg/DcKEQ9TahkTXZCbdJ5Aa1YXNL0sEz+WPlApm58zQ= Subject key identifier: 89:37:5B:49:19:1E:79:4A:2F:F5:08:F1:37:89:AF:02:7F:65:76:5A Certificate issuer: /CN=af63a47acdba8ec1cd85d4d79f36b35b698e5f89 Certificate serial: 019B7C12D99446D3401C7372BA00D3643999 Authority key identifier: AF:63:A4:7A:CD:BA:8E:C1:CD:85:D4:D7:9F:36:B3:5B:69:8E:5F:89 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/r2Okes26jsHNhdTXnzazW2mOX4k.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/95/c4d7b0-6ebf-4cac-a8ad-fe3e318cae9c/1/iTdbSRkeeUov9QjxN4mvAn9ldlo.roa Signing time: Fri 02 Jan 2026 00:19:28 +0000 ROA not before: Fri 02 Jan 2026 00:19:28 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 12700 IP address blocks: 31.131.32.0/21 maxlen: 21 31.131.32.0/24 maxlen: 24 31.131.33.0/24 maxlen: 24 31.131.34.0/24 maxlen: 24 31.131.35.0/24 maxlen: 24 31.131.36.0/24 maxlen: 24 31.131.37.0/24 maxlen: 24 31.131.38.0/24 maxlen: 24 31.131.39.0/24 maxlen: 24 91.202.240.0/22 maxlen: 22 91.202.240.0/24 maxlen: 24 91.202.241.0/24 maxlen: 24 91.202.242.0/24 maxlen: 24 91.202.243.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/95/c4d7b0-6ebf-4cac-a8ad-fe3e318cae9c/1/r2Okes26jsHNhdTXnzazW2mOX4k.crl rsync://rpki.ripe.net/repository/DEFAULT/95/c4d7b0-6ebf-4cac-a8ad-fe3e318cae9c/1/r2Okes26jsHNhdTXnzazW2mOX4k.mft rsync://rpki.ripe.net/repository/DEFAULT/r2Okes26jsHNhdTXnzazW2mOX4k.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:00:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7c:12:d9:94:46:d3:40:1c:73:72:ba:00:d3:64:39:99 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=af63a47acdba8ec1cd85d4d79f36b35b698e5f89 Validity Not Before: Jan 2 00:19:28 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=89375b49191e794a2ff508f13789af027f65765a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:9b:7c:a1:c7:a0:35:0c:04:ae:88:84:6a:b6: da:f0:71:d0:6d:ba:58:bc:2b:2b:8a:d1:dd:67:39: 18:ac:4c:50:46:80:34:cb:f8:15:d5:ca:bc:4a:cc: 08:e3:b4:1a:04:57:1b:48:39:f6:58:4f:76:c1:5f: 4c:45:9a:ea:b6:b2:97:cb:ec:39:db:cc:41:df:40: d4:79:c7:95:4d:80:b6:8d:32:08:95:0b:ed:26:1a: 73:3b:e0:a1:f0:83:cb:bf:78:04:01:42:9a:14:6c: 12:5d:1a:ba:a6:af:0c:57:ce:54:d9:56:f1:0f:7f: 31:c4:3b:a9:b4:ad:84:13:35:b0:a0:9a:7a:df:40: bf:a4:36:4e:05:c9:f4:be:21:a9:f7:f5:31:c0:a3: 26:ba:fa:ff:33:80:02:fc:eb:1e:d0:50:e1:db:32: 56:8a:5c:6e:db:2c:b2:9e:26:26:99:51:5a:8c:90: 5e:ea:2b:5a:24:da:ea:bf:aa:2f:c7:6d:a9:11:08: 62:d2:56:5c:c2:63:27:71:46:4c:d5:ad:f6:5c:1d: b5:fd:d9:4f:74:b0:51:2a:db:fc:a1:38:5f:5d:ee: 93:69:db:34:a3:21:7e:b2:e2:e6:83:68:a8:73:4f: 26:c5:f2:69:51:25:02:f6:48:59:f7:68:84:45:a9: 19:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 89:37:5B:49:19:1E:79:4A:2F:F5:08:F1:37:89:AF:02:7F:65:76:5A X509v3 Authority Key Identifier: keyid:AF:63:A4:7A:CD:BA:8E:C1:CD:85:D4:D7:9F:36:B3:5B:69:8E:5F:89 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/r2Okes26jsHNhdTXnzazW2mOX4k.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/95/c4d7b0-6ebf-4cac-a8ad-fe3e318cae9c/1/iTdbSRkeeUov9QjxN4mvAn9ldlo.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/95/c4d7b0-6ebf-4cac-a8ad-fe3e318cae9c/1/r2Okes26jsHNhdTXnzazW2mOX4k.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 31.131.32.0/21 91.202.240.0/22 Signature Algorithm: sha256WithRSAEncryption ac:eb:f4:a9:2f:cc:f4:65:04:bb:99:90:20:b5:8c:0b:b7:9e: ab:44:62:6e:61:01:d3:3e:b0:bf:aa:f6:38:6d:6d:f9:60:6d: 1d:ea:04:fc:3d:03:6f:73:27:51:a8:62:de:12:3e:67:d3:4c: 29:28:97:fc:50:74:ec:c4:40:45:be:cd:a0:bf:45:d4:f9:b1: 95:a3:74:c3:22:2b:4e:63:42:1e:6a:1a:9d:45:68:9e:c1:06: b4:39:75:4f:d2:44:1f:68:2b:9e:f4:c0:c7:6c:2f:d1:df:c3: a8:14:97:e4:ec:a3:c1:f5:31:20:dd:83:af:a5:e9:e2:65:12: 0e:5a:75:f9:62:fb:ef:ef:b3:dd:30:f4:f7:56:5d:ae:f8:be: b9:5d:3a:1d:15:4d:a4:03:cb:84:1c:c4:5e:aa:e7:a0:fc:e7: 30:69:92:cc:fd:9e:0c:3c:6e:b8:f7:50:7e:60:cf:3e:65:e9: 18:af:e0:30:89:40:9a:d3:71:07:18:04:d4:e9:1c:da:0c:a7: 50:a4:31:72:9a:97:ff:8f:0a:35:a3:8b:1a:03:10:c3:88:60: 0a:49:36:dc:31:ac:f8:78:e1:ea:ef:58:ea:56:d4:46:53:10: 0b:bf:c5:15:c5:1e:78:85:69:10:34:9f:66:de:e5:79:e2:9b: b4:c0:05:20 -----BEGIN CERTIFICATE----- MIIFAzCCA+ugAwIBAgISAZt8EtmURtNAHHNyugDTZDmZMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGFmNjNhNDdhY2RiYThlYzFjZDg1ZDRkNzlmMzZiMzViNjk4 ZTVmODkwHhcNMjYwMTAyMDAxOTI4WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg4OTM3NWI0OTE5MWU3OTRhMmZmNTA4ZjEzNzg5YWYwMjdmNjU3NjVhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA05t8ocegNQwEroiEarba8HHQbbpY vCsritHdZzkYrExQRoA0y/gV1cq8SswI47QaBFcbSDn2WE92wV9MRZrqtrKXy+w5 28xB30DUeceVTYC2jTIIlQvtJhpzO+Ch8IPLv3gEAUKaFGwSXRq6pq8MV85U2Vbx D38xxDuptK2EEzWwoJp630C/pDZOBcn0viGp9/UxwKMmuvr/M4AC/Ose0FDh2zJW ilxu2yyyniYmmVFajJBe6itaJNrqv6ovx22pEQhi0lZcwmMncUZM1a32XB21/dlP dLBRKtv8oThfXe6Tads0oyF+suLmg2ioc08mxfJpUSUC9khZ92iERakZWwIDAQAB o4ICDzCCAgswHQYDVR0OBBYEFIk3W0kZHnlKL/UI8TeJrwJ/ZXZaMB8GA1UdIwQY MBaAFK9jpHrNuo7BzYXU1582s1tpjl+JMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvcjJPa2VzMjZqc0hOaGRUWG56YXpXMm1PWDRrLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85NS9jNGQ3YjAtNmViZi00Y2FjLWE4YWQt ZmUzZTMxOGNhZTljLzEvaVRkYlNSa2VlVW92OVFqeE40bXZBbjlsZGxvLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC85NS9jNGQ3YjAtNmViZi00Y2FjLWE4YWQtZmUzZTMxOGNhZTlj LzEvcjJPa2VzMjZqc0hOaGRUWG56YXpXMm1PWDRrLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQDH4MgAwQC W8rwMA0GCSqGSIb3DQEBCwUAA4IBAQCs6/SpL8z0ZQS7mZAgtYwLt56rRGJuYQHT PrC/qvY4bW35YG0d6gT8PQNvcydRqGLeEj5n00wpKJf8UHTsxEBFvs2gv0XU+bGV o3TDIitOY0IeahqdRWiewQa0OXVP0kQfaCue9MDHbC/R38OoFJfk7KPB9TEg3YOv peniZRIOWnX5Yvvv77PdMPT3Vl2u+L65XTodFU2kA8uEHMRequeg/OcwaZLM/Z4M PG6491B+YM8+ZekYr+AwiUCa03EHGATU6RzaDKdQpDFympf/jwo1o4saAxDDiGAK STbcMaz4eOHq71jqVtRGUxALv8UVxR54hWkQNJ9m3uV54pu0wAUg -----END CERTIFICATE-----Generated at Mon Feb 9 22:35:38 2026 by rpki-client