This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b6/5df119-b1df-4ceb-bd4f-f79ccc3f4eaf/1/knbZTkeQonjHgAjkDQ5BiABLPk0.roa File: knbZTkeQonjHgAjkDQ5BiABLPk0.roa (raw, json) Hash identifier: 6z0JXF2+Tz6UX2zmjqr0hILFhd91GxoHq3PFQZKWs5E= Subject key identifier: 92:76:D9:4E:47:90:A2:78:C7:80:08:E4:0D:0E:41:88:00:4B:3E:4D Certificate issuer: /CN=5806da5a59251275ceb18694e17415352aedd6aa Certificate serial: 019B76EB2831B9C56B1EEEB06F3C8F67534A Authority key identifier: 58:06:DA:5A:59:25:12:75:CE:B1:86:94:E1:74:15:35:2A:ED:D6:AA Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/WAbaWlklEnXOsYaU4XQVNSrt1qo.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b6/5df119-b1df-4ceb-bd4f-f79ccc3f4eaf/1/knbZTkeQonjHgAjkDQ5BiABLPk0.roa Signing time: Thu 01 Jan 2026 00:18:01 +0000 ROA not before: Thu 01 Jan 2026 00:18:01 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 200019 IP address blocks: 91.237.119.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b6/5df119-b1df-4ceb-bd4f-f79ccc3f4eaf/1/WAbaWlklEnXOsYaU4XQVNSrt1qo.crl rsync://rpki.ripe.net/repository/DEFAULT/b6/5df119-b1df-4ceb-bd4f-f79ccc3f4eaf/1/WAbaWlklEnXOsYaU4XQVNSrt1qo.mft rsync://rpki.ripe.net/repository/DEFAULT/WAbaWlklEnXOsYaU4XQVNSrt1qo.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 20 Jan 2026 18:00:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:76:eb:28:31:b9:c5:6b:1e:ee:b0:6f:3c:8f:67:53:4a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5806da5a59251275ceb18694e17415352aedd6aa Validity Not Before: Jan 1 00:18:01 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=9276d94e4790a278c78008e40d0e4188004b3e4d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:9f:13:a2:8d:b7:a0:cb:76:80:12:98:02:04: 3b:d1:2c:80:6f:60:80:fe:6c:50:84:cd:32:4c:03: f6:55:4a:cd:1c:2a:8b:69:e0:06:a4:87:c5:9b:82: 23:28:06:85:4a:3b:92:6a:49:cb:1f:09:66:d1:06: b7:d2:03:aa:64:dd:3c:de:46:4d:87:e9:98:7f:e5: 0c:74:f0:5c:42:cf:57:a8:89:47:fd:50:b4:6d:a3: 5e:76:c1:d2:b5:37:a5:64:3f:e1:3f:60:b3:24:5b: 66:bb:a4:79:7c:40:3a:85:bf:d4:6a:e7:4a:da:ef: fb:d0:48:1d:a7:bd:c3:9c:c7:20:d2:89:74:58:f4: 70:74:65:76:39:e9:36:75:0d:67:06:50:5c:27:c3: 70:7f:8b:06:5a:9c:10:33:d5:74:12:70:f0:5d:98: f3:f9:6b:97:ab:b3:ea:b4:e4:e0:31:e9:7e:68:b7: 54:31:af:f7:5b:fd:aa:96:14:a9:9f:0e:15:c9:5c: 39:3c:b0:8f:77:ec:29:87:61:3c:94:47:f8:95:c3: fd:cd:80:d4:7f:ed:1e:8c:68:2b:c4:3f:ec:f0:f3: 3b:a8:fa:c1:03:8a:70:cb:7b:c2:32:91:b8:83:a7: 04:5b:43:c9:48:3a:d5:d6:e0:c9:f2:5d:0e:c7:28: 93:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 92:76:D9:4E:47:90:A2:78:C7:80:08:E4:0D:0E:41:88:00:4B:3E:4D X509v3 Authority Key Identifier: keyid:58:06:DA:5A:59:25:12:75:CE:B1:86:94:E1:74:15:35:2A:ED:D6:AA X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/WAbaWlklEnXOsYaU4XQVNSrt1qo.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b6/5df119-b1df-4ceb-bd4f-f79ccc3f4eaf/1/knbZTkeQonjHgAjkDQ5BiABLPk0.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/b6/5df119-b1df-4ceb-bd4f-f79ccc3f4eaf/1/WAbaWlklEnXOsYaU4XQVNSrt1qo.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 91.237.119.0/24 Signature Algorithm: sha256WithRSAEncryption 61:69:b6:da:56:0a:b0:a2:b6:df:7c:69:60:d0:25:f5:58:1a: 7b:2a:cb:6b:9f:fc:c5:a8:b8:cc:77:02:05:81:c5:59:8a:f9: a1:0c:3c:97:16:fc:2c:cc:d2:8b:62:fc:f0:cd:f3:25:46:7b: 5b:05:f8:74:5a:1e:72:37:81:92:94:85:b9:d2:2d:db:9f:11: 01:fd:c6:8a:bb:ab:41:8d:ba:21:58:7f:39:c7:02:6e:f2:0c: 3d:97:78:dc:2e:53:86:45:83:24:60:34:9c:4e:3f:e8:cb:c0: c2:fe:84:1a:87:85:ae:af:1d:f9:7b:2c:80:9b:9d:22:4c:9b: c3:41:a0:ad:6c:69:95:c0:f4:9f:0e:11:10:72:a3:e5:2a:cf: 16:e5:62:3b:f1:02:d6:75:b8:96:9e:73:9f:8e:57:79:be:17: b3:9e:1f:99:4e:07:aa:6e:f1:75:e1:f4:01:1a:e7:4a:9d:3c: 65:b3:67:61:bf:c8:ef:d1:18:f8:ac:93:d8:ee:98:51:85:60: 6c:2b:39:00:21:a0:48:3b:7b:56:d4:54:e2:f2:21:51:b6:47: 74:9e:83:d6:b5:26:71:f9:b1:41:27:f4:af:1b:37:ae:d4:4b: a8:c1:a5:75:27:e7:76:c2:50:fc:f1:00:e3:5c:d9:78:d2:6c: d3:1a:a7:4c -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt26ygxucVrHu6wbzyPZ1NKMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDU4MDZkYTVhNTkyNTEyNzVjZWIxODY5NGUxNzQxNTM1MmFl ZGQ2YWEwHhcNMjYwMTAxMDAxODAxWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg5Mjc2ZDk0ZTQ3OTBhMjc4Yzc4MDA4ZTQwZDBlNDE4ODAwNGIzZTRkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsJ8Too23oMt2gBKYAgQ70SyAb2CA /mxQhM0yTAP2VUrNHCqLaeAGpIfFm4IjKAaFSjuSaknLHwlm0Qa30gOqZN083kZN h+mYf+UMdPBcQs9XqIlH/VC0baNedsHStTelZD/hP2CzJFtmu6R5fEA6hb/UaudK 2u/70Egdp73DnMcg0ol0WPRwdGV2Oek2dQ1nBlBcJ8Nwf4sGWpwQM9V0EnDwXZjz +WuXq7PqtOTgMel+aLdUMa/3W/2qlhSpnw4VyVw5PLCPd+wph2E8lEf4lcP9zYDU f+0ejGgrxD/s8PM7qPrBA4pwy3vCMpG4g6cEW0PJSDrV1uDJ8l0OxyiTSQIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFJJ22U5HkKJ4x4AI5A0OQYgASz5NMB8GA1UdIwQY MBaAFFgG2lpZJRJ1zrGGlOF0FTUq7daqMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvV0FiYVdsa2xFblhPc1lhVTRYUVZOU3J0MXFvLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iNi81ZGYxMTktYjFkZi00Y2ViLWJkNGYt Zjc5Y2NjM2Y0ZWFmLzEva25iWlRrZVFvbmpIZ0Fqa0RRNUJpQUJMUGswLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iNi81ZGYxMTktYjFkZi00Y2ViLWJkNGYtZjc5Y2NjM2Y0ZWFm LzEvV0FiYVdsa2xFblhPc1lhVTRYUVZOU3J0MXFvLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAW+13MA0G CSqGSIb3DQEBCwUAA4IBAQBhabbaVgqworbffGlg0CX1WBp7Kstrn/zFqLjMdwIF gcVZivmhDDyXFvwszNKLYvzwzfMlRntbBfh0Wh5yN4GSlIW50i3bnxEB/caKu6tB jbohWH85xwJu8gw9l3jcLlOGRYMkYDScTj/oy8DC/oQah4Wurx35eyyAm50iTJvD QaCtbGmVwPSfDhEQcqPlKs8W5WI78QLWdbiWnnOfjld5vheznh+ZTgeqbvF14fQB GudKnTxls2dhv8jv0Rj4rJPY7phRhWBsKzkAIaBIO3tW1FTi8iFRtkd0noPWtSZx +bFBJ/SvGzeu1EuowaV1J+d2wlD88QDjXNl40mzTGqdM -----END CERTIFICATE-----Generated at Mon Jan 19 23:21:44 2026 by rpki-client