This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b2/94d5a1-1cc3-48fc-99cc-830b22dd2dea/1/G76pXhUALnzYF9eO4XN4eeUAIBo.roa File: G76pXhUALnzYF9eO4XN4eeUAIBo.roa (raw, json) Hash identifier: LQJkxCE+1RXg1nRjsBoSEUXVaKDQRcUp7pEVlIPQHNg= Subject key identifier: 1B:BE:A9:5E:15:00:2E:7C:D8:17:D7:8E:E1:73:78:79:E5:00:20:1A Certificate issuer: /CN=2fae412cffa8cb5cfb93bb31ab5e989038784d7f Certificate serial: 019B78A279BE9A2F93AAF19B6EF26FFE8559 Authority key identifier: 2F:AE:41:2C:FF:A8:CB:5C:FB:93:BB:31:AB:5E:98:90:38:78:4D:7F Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/L65BLP-oy1z7k7sxq16YkDh4TX8.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b2/94d5a1-1cc3-48fc-99cc-830b22dd2dea/1/G76pXhUALnzYF9eO4XN4eeUAIBo.roa Signing time: Thu 01 Jan 2026 08:17:52 +0000 ROA not before: Thu 01 Jan 2026 08:17:52 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 210220 IP address blocks: 91.213.96.0/24 maxlen: 24 2001:67c:da4::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b2/94d5a1-1cc3-48fc-99cc-830b22dd2dea/1/L65BLP-oy1z7k7sxq16YkDh4TX8.crl rsync://rpki.ripe.net/repository/DEFAULT/b2/94d5a1-1cc3-48fc-99cc-830b22dd2dea/1/L65BLP-oy1z7k7sxq16YkDh4TX8.mft rsync://rpki.ripe.net/repository/DEFAULT/L65BLP-oy1z7k7sxq16YkDh4TX8.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 27 Jan 2026 15:35:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:78:a2:79:be:9a:2f:93:aa:f1:9b:6e:f2:6f:fe:85:59 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2fae412cffa8cb5cfb93bb31ab5e989038784d7f Validity Not Before: Jan 1 08:17:52 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=1bbea95e15002e7cd817d78ee1737879e500201a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:33:82:aa:d3:78:44:72:a5:c7:56:6c:32:14: ea:27:cc:d4:41:4c:32:8a:38:9b:91:d3:05:fb:c9: d8:59:5a:28:d6:33:4b:e3:d1:0e:44:a2:e3:20:20: ca:77:9d:00:b4:40:8a:30:c8:9b:d5:1b:87:d5:a6: 38:ea:58:c1:72:19:ee:6a:aa:61:04:67:33:a5:d9: 36:7e:fe:fd:0b:9f:79:95:a2:54:5a:7b:e4:ac:2b: 1e:22:a1:cb:7f:45:13:f0:05:3d:01:98:8e:4f:b7: ee:2a:c3:91:15:da:79:18:ec:33:23:27:06:80:76: 5d:2b:35:2c:e1:1a:af:35:d8:db:f9:e2:f7:1e:ca: 08:b4:9f:e1:5e:df:d0:b4:58:2a:70:3b:34:9e:78: 71:03:01:c4:9d:3b:eb:9e:87:fc:85:2e:28:37:78: 09:cb:56:bb:69:16:b2:7c:a3:3a:e8:19:d6:ba:0e: 7f:6c:21:f4:d3:29:13:64:ed:89:7d:1e:cf:3f:f5: d0:2e:c3:7f:a3:94:58:b4:a7:f9:b2:a3:fe:bb:54: d9:05:a9:40:34:79:a3:a9:ec:77:68:bb:b0:7c:c4: ad:a2:93:87:a8:6f:79:c7:bc:2b:ef:d0:e5:cc:fa: 86:7c:78:f2:dd:55:2f:a5:9b:74:a8:7a:f1:41:d4: 30:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1B:BE:A9:5E:15:00:2E:7C:D8:17:D7:8E:E1:73:78:79:E5:00:20:1A X509v3 Authority Key Identifier: keyid:2F:AE:41:2C:FF:A8:CB:5C:FB:93:BB:31:AB:5E:98:90:38:78:4D:7F X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/L65BLP-oy1z7k7sxq16YkDh4TX8.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/94d5a1-1cc3-48fc-99cc-830b22dd2dea/1/G76pXhUALnzYF9eO4XN4eeUAIBo.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/94d5a1-1cc3-48fc-99cc-830b22dd2dea/1/L65BLP-oy1z7k7sxq16YkDh4TX8.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 91.213.96.0/24 IPv6: 2001:67c:da4::/48 Signature Algorithm: sha256WithRSAEncryption 4d:62:6d:27:ea:0d:75:5b:cc:3e:f8:47:72:93:71:30:5a:30: 9b:02:ca:0c:ab:e8:4f:93:c4:3f:a9:77:95:3d:ab:1b:86:bf: 48:6e:f6:11:b0:be:e0:6c:59:cf:11:1c:d4:7a:86:de:7f:cb: 62:8b:11:2c:df:09:d0:cf:d7:ad:ef:5b:25:cf:b2:f2:5c:71: 08:de:51:3a:d7:a0:35:18:32:c7:84:7c:5e:c5:c5:64:22:88: 21:2d:6b:56:61:4c:b9:8e:f1:10:9c:8c:2e:46:80:d9:85:3b: 82:04:ba:32:35:e0:2e:7f:49:61:8b:f9:d9:cc:cf:36:f5:96: 51:6e:be:81:58:7c:1d:11:9f:61:0c:6f:70:c5:91:25:99:1c: 8b:cd:ca:b9:a9:85:df:b9:3c:5e:86:aa:f7:59:ca:5b:04:14: 5a:7b:44:01:ad:13:fe:20:ba:01:11:aa:12:bd:22:80:b0:9a: bb:7a:e1:01:04:55:80:a8:e6:ec:6d:a0:48:91:be:99:57:45: bf:62:9d:37:a9:9f:95:b2:4c:40:5c:8e:4b:a4:aa:13:92:fc: d5:01:43:77:a4:c1:e5:5d:ab:9b:24:c3:2e:94:82:0a:40:eb: 02:13:89:09:b1:f9:0e:d7:99:89:53:37:47:f9:c5:1d:fd:04: 11:de:bc:82 -----BEGIN CERTIFICATE----- MIIFDjCCA/agAwIBAgISAZt4onm+mi+TqvGbbvJv/oVZMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJmYWU0MTJjZmZhOGNiNWNmYjkzYmIzMWFiNWU5ODkwMzg3 ODRkN2YwHhcNMjYwMTAxMDgxNzUyWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygxYmJlYTk1ZTE1MDAyZTdjZDgxN2Q3OGVlMTczNzg3OWU1MDAyMDFhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnjOCqtN4RHKlx1ZsMhTqJ8zUQUwy ijibkdMF+8nYWVoo1jNL49EORKLjICDKd50AtECKMMib1RuH1aY46ljBchnuaqph BGczpdk2fv79C595laJUWnvkrCseIqHLf0UT8AU9AZiOT7fuKsORFdp5GOwzIycG gHZdKzUs4RqvNdjb+eL3HsoItJ/hXt/QtFgqcDs0nnhxAwHEnTvrnof8hS4oN3gJ y1a7aRayfKM66BnWug5/bCH00ykTZO2JfR7PP/XQLsN/o5RYtKf5sqP+u1TZBalA NHmjqex3aLuwfMStopOHqG95x7wr79DlzPqGfHjy3VUvpZt0qHrxQdQw0QIDAQAB o4ICGjCCAhYwHQYDVR0OBBYEFBu+qV4VAC582BfXjuFzeHnlACAaMB8GA1UdIwQY MBaAFC+uQSz/qMtc+5O7MatemJA4eE1/MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvTDY1QkxQLW95MXo3azdzeHExNllrRGg0VFg4LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iMi85NGQ1YTEtMWNjMy00OGZjLTk5Y2Mt ODMwYjIyZGQyZGVhLzEvRzc2cFhoVUFMbnpZRjllTzRYTjRlZVVBSUJvLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iMi85NGQ1YTEtMWNjMy00OGZjLTk5Y2MtODMwYjIyZGQyZGVh LzEvTDY1QkxQLW95MXo3azdzeHExNllrRGg0VFg4LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMDAGCCsGAQUFBwEHAQH/BCEwHzAMBAIAATAGAwQAW9VgMA8E AgACMAkDBwAgAQZ8DaQwDQYJKoZIhvcNAQELBQADggEBAE1ibSfqDXVbzD74R3KT cTBaMJsCygyr6E+TxD+pd5U9qxuGv0hu9hGwvuBsWc8RHNR6ht5/y2KLESzfCdDP 163vWyXPsvJccQjeUTrXoDUYMseEfF7FxWQiiCEta1ZhTLmO8RCcjC5GgNmFO4IE ujI14C5/SWGL+dnMzzb1llFuvoFYfB0Rn2EMb3DFkSWZHIvNyrmphd+5PF6GqvdZ ylsEFFp7RAGtE/4gugERqhK9IoCwmrt64QEEVYCo5uxtoEiRvplXRb9inTepn5Wy TEBcjkukqhOS/NUBQ3ekweVdq5skwy6UggpA6wITiQmx+Q7XmYlTN0f5xR39BBHe vII= -----END CERTIFICATE-----Generated at Mon Jan 26 23:22:48 2026 by rpki-client