This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ad/04e64b-924c-48a0-89a4-a00944fd7d9d/1/aLUgnnQfJFpMYdLs4kwtonmb-hA.roa File: aLUgnnQfJFpMYdLs4kwtonmb-hA.roa (raw, json) Hash identifier: GymUmYXXa2s1YAQ4JdjPRXC1fKxQsyfynIWTDZIu0M0= Subject key identifier: 68:B5:20:9E:74:1F:24:5A:4C:61:D2:EC:E2:4C:2D:A2:79:9B:FA:10 Certificate issuer: /CN=534676d66932c77a25761136ac99eb9b74d801a6 Certificate serial: 019B7DC9A16C8E41D87070E5CB9B3BE46DDA Authority key identifier: 53:46:76:D6:69:32:C7:7A:25:76:11:36:AC:99:EB:9B:74:D8:01:A6 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/U0Z21mkyx3oldhE2rJnrm3TYAaY.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ad/04e64b-924c-48a0-89a4-a00944fd7d9d/1/aLUgnnQfJFpMYdLs4kwtonmb-hA.roa Signing time: Fri 02 Jan 2026 08:18:44 +0000 ROA not before: Fri 02 Jan 2026 08:18:44 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 197941 IP address blocks: 91.230.85.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ad/04e64b-924c-48a0-89a4-a00944fd7d9d/1/U0Z21mkyx3oldhE2rJnrm3TYAaY.crl rsync://rpki.ripe.net/repository/DEFAULT/ad/04e64b-924c-48a0-89a4-a00944fd7d9d/1/U0Z21mkyx3oldhE2rJnrm3TYAaY.mft rsync://rpki.ripe.net/repository/DEFAULT/U0Z21mkyx3oldhE2rJnrm3TYAaY.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 14:00:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7d:c9:a1:6c:8e:41:d8:70:70:e5:cb:9b:3b:e4:6d:da Signature Algorithm: sha256WithRSAEncryption Issuer: CN=534676d66932c77a25761136ac99eb9b74d801a6 Validity Not Before: Jan 2 08:18:44 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=68b5209e741f245a4c61d2ece24c2da2799bfa10 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:80:6a:20:42:ed:21:91:73:46:14:4d:cd:17: eb:96:37:5c:c2:c2:23:d7:e7:0f:55:c7:70:6e:fe: b5:e1:36:a2:70:b3:8f:e1:5e:6b:ea:f4:2c:41:56: 05:36:f7:d4:76:6a:68:33:73:1b:c2:e8:6e:56:8b: 96:c2:f7:21:42:f8:dd:bb:5f:ef:f1:04:00:f3:22: e3:ad:75:a7:29:47:ae:0a:5c:03:72:03:f7:65:84: 01:ac:fb:c6:3d:af:7c:74:56:bd:33:50:ee:c9:95: 81:c9:cb:de:6d:63:5d:00:23:4a:d2:8f:5e:49:73: 8e:b0:73:f8:8d:97:20:46:96:a0:01:8a:2f:3c:95: ed:91:24:8e:d1:da:e5:1f:23:b0:e4:be:69:f4:a4: 66:c8:e4:2a:0d:5e:d6:57:24:76:36:0c:0e:05:09: 4f:dc:d7:e5:b1:71:98:8e:63:6a:31:e2:4b:96:b9: 38:f3:06:0c:cc:56:c1:60:8f:a0:2a:7a:4e:1f:02: 4d:95:8a:39:f6:44:4d:c1:19:d3:b8:48:21:81:2c: 66:35:cf:8f:d6:72:c8:73:66:3e:da:df:45:03:b5: 69:42:78:f0:0d:fe:6f:f2:7e:f9:02:60:7e:7c:35: 27:6a:5e:e7:b8:db:8e:5c:8d:e1:b5:0d:87:c2:7a: d4:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 68:B5:20:9E:74:1F:24:5A:4C:61:D2:EC:E2:4C:2D:A2:79:9B:FA:10 X509v3 Authority Key Identifier: keyid:53:46:76:D6:69:32:C7:7A:25:76:11:36:AC:99:EB:9B:74:D8:01:A6 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/U0Z21mkyx3oldhE2rJnrm3TYAaY.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ad/04e64b-924c-48a0-89a4-a00944fd7d9d/1/aLUgnnQfJFpMYdLs4kwtonmb-hA.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/ad/04e64b-924c-48a0-89a4-a00944fd7d9d/1/U0Z21mkyx3oldhE2rJnrm3TYAaY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 91.230.85.0/24 Signature Algorithm: sha256WithRSAEncryption a6:cf:70:10:3e:8d:6a:da:b0:ee:50:e9:a8:f7:30:0b:0e:6d: d4:92:8a:8a:a0:3b:a5:34:e6:62:19:9f:c6:60:c6:2a:20:48: 9c:7f:84:9c:a9:2b:3f:40:00:5e:6a:44:12:c8:55:16:7c:1e: e8:0d:31:f0:f3:9f:02:a7:1f:59:b4:8f:42:46:2b:25:f7:92: 7c:2f:81:4d:76:3d:16:14:76:91:1e:be:4b:19:dd:03:08:0a: 52:25:f3:7b:fa:8f:8d:a1:91:54:d7:45:46:6b:36:0a:61:b9: 33:06:c8:d9:40:5a:6f:1f:a1:3a:ab:71:d3:4d:0f:16:b6:21: cb:18:ff:5f:7e:17:32:6d:53:2a:d8:8e:dd:5a:fd:23:85:d1: 38:9f:cf:18:87:0b:78:cc:0a:c9:ea:3a:56:6b:cc:25:75:5f: 94:45:f6:ce:06:8a:3f:f8:99:6b:6b:0f:67:37:2c:55:d2:2d: 52:6a:10:ad:89:98:bb:7f:8f:de:42:72:ea:49:79:9c:67:3c: 1c:aa:83:77:ef:b8:50:f6:2c:a6:cb:d6:8b:ea:3d:b6:e1:9b: 17:7c:4d:86:b3:65:28:cf:26:23:77:f4:31:8a:1d:3d:34:52: 15:2e:07:58:1a:96:09:a5:b6:91:73:25:35:e7:d2:c1:5c:8d: df:71:e0:f9 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt9yaFsjkHYcHDly5s75G3aMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDUzNDY3NmQ2NjkzMmM3N2EyNTc2MTEzNmFjOTllYjliNzRk ODAxYTYwHhcNMjYwMTAyMDgxODQ0WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg2OGI1MjA5ZTc0MWYyNDVhNGM2MWQyZWNlMjRjMmRhMjc5OWJmYTEwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAu4BqIELtIZFzRhRNzRfrljdcwsIj 1+cPVcdwbv614TaicLOP4V5r6vQsQVYFNvfUdmpoM3MbwuhuVouWwvchQvjdu1/v 8QQA8yLjrXWnKUeuClwDcgP3ZYQBrPvGPa98dFa9M1DuyZWBycvebWNdACNK0o9e SXOOsHP4jZcgRpagAYovPJXtkSSO0drlHyOw5L5p9KRmyOQqDV7WVyR2NgwOBQlP 3NflsXGYjmNqMeJLlrk48wYMzFbBYI+gKnpOHwJNlYo59kRNwRnTuEghgSxmNc+P 1nLIc2Y+2t9FA7VpQnjwDf5v8n75AmB+fDUnal7nuNuOXI3htQ2HwnrUAwIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFGi1IJ50HyRaTGHS7OJMLaJ5m/oQMB8GA1UdIwQY MBaAFFNGdtZpMsd6JXYRNqyZ65t02AGmMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvVTBaMjFta3l4M29sZGhFMnJKbnJtM1RZQWFZLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hZC8wNGU2NGItOTI0Yy00OGEwLTg5YTQt YTAwOTQ0ZmQ3ZDlkLzEvYUxVZ25uUWZKRnBNWWRMczRrd3Rvbm1iLWhBLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9hZC8wNGU2NGItOTI0Yy00OGEwLTg5YTQtYTAwOTQ0ZmQ3ZDlk LzEvVTBaMjFta3l4M29sZGhFMnJKbnJtM1RZQWFZLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAW+ZVMA0G CSqGSIb3DQEBCwUAA4IBAQCmz3AQPo1q2rDuUOmo9zALDm3UkoqKoDulNOZiGZ/G YMYqIEicf4ScqSs/QABeakQSyFUWfB7oDTHw858Cpx9ZtI9CRisl95J8L4FNdj0W FHaRHr5LGd0DCApSJfN7+o+NoZFU10VGazYKYbkzBsjZQFpvH6E6q3HTTQ8WtiHL GP9ffhcybVMq2I7dWv0jhdE4n88Yhwt4zArJ6jpWa8wldV+URfbOBoo/+Jlraw9n NyxV0i1SahCtiZi7f4/eQnLqSXmcZzwcqoN377hQ9iymy9aL6j224ZsXfE2Gs2Uo zyYjd/Qxih09NFIVLgdYGpYJpbaRcyU159LBXI3fceD5 -----END CERTIFICATE-----Generated at Mon Feb 9 19:39:23 2026 by rpki-client