This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b9/e7549e-5b25-4200-88b9-4e4a35dd3677/1/kft59b0FPyvt41ZJ7c7rkDRzMdo.roa File: kft59b0FPyvt41ZJ7c7rkDRzMdo.roa (raw, json) Hash identifier: rnkG/kK1GbP5ThmnLvK6djMuJiao91onEPjk3GN8OV4= Subject key identifier: 91:FB:79:F5:BD:05:3F:2B:ED:E3:56:49:ED:CE:EB:90:34:73:31:DA Certificate issuer: /CN=8c060040ef3a0823aa973f0d0592b1dda808f782 Certificate serial: 019B7BA3E6D4E2DE0F872A631E77F2A8976D Authority key identifier: 8C:06:00:40:EF:3A:08:23:AA:97:3F:0D:05:92:B1:DD:A8:08:F7:82 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jAYAQO86CCOqlz8NBZKx3agI94I.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b9/e7549e-5b25-4200-88b9-4e4a35dd3677/1/kft59b0FPyvt41ZJ7c7rkDRzMdo.roa Signing time: Thu 01 Jan 2026 22:18:17 +0000 ROA not before: Thu 01 Jan 2026 22:18:17 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 49441 IP address blocks: 91.214.113.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b9/e7549e-5b25-4200-88b9-4e4a35dd3677/1/jAYAQO86CCOqlz8NBZKx3agI94I.crl rsync://rpki.ripe.net/repository/DEFAULT/b9/e7549e-5b25-4200-88b9-4e4a35dd3677/1/jAYAQO86CCOqlz8NBZKx3agI94I.mft rsync://rpki.ripe.net/repository/DEFAULT/jAYAQO86CCOqlz8NBZKx3agI94I.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 21:05:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7b:a3:e6:d4:e2:de:0f:87:2a:63:1e:77:f2:a8:97:6d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8c060040ef3a0823aa973f0d0592b1dda808f782 Validity Not Before: Jan 1 22:18:17 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=91fb79f5bd053f2bede35649edceeb90347331da Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:48:dd:17:fc:81:19:de:b7:21:e6:ea:24:fc: 92:d6:c2:8d:50:48:d8:aa:1e:6e:cd:47:d3:c6:64: 89:ac:c4:65:5b:1e:43:b5:3a:6c:f3:0e:5b:47:99: 4e:9e:02:35:dc:aa:70:db:b6:84:43:c8:7a:a5:f6: 02:6c:a1:ee:a0:6a:17:ee:a1:0d:fc:f9:0b:87:38: 3c:96:38:c3:1b:36:d6:48:52:c7:1c:50:dd:4d:73: d4:d9:12:65:15:16:1f:e5:b7:4f:03:cd:0a:6c:db: 40:5c:7d:46:d6:c3:af:c3:a3:cf:0f:24:6f:b2:6d: 9d:30:18:5f:a3:3b:db:e2:26:ba:c9:39:e4:0c:a1: 13:b9:e3:e6:61:89:6b:50:21:df:dc:97:0f:f7:63: c4:93:fd:69:9d:2b:82:e2:67:3e:f0:6e:49:30:04: 8c:43:8f:91:a7:1f:ee:1a:bd:19:c4:02:14:a6:2b: c7:e5:3e:57:d8:93:16:3b:38:38:92:f1:76:90:77: 8f:40:e5:41:07:8b:fe:c5:f1:65:03:16:1c:fe:36: 28:bc:a2:09:35:f9:7f:26:d8:30:4a:85:24:a0:91: c5:69:b3:6f:a7:cb:e9:76:e7:64:1a:37:f0:90:9f: 8f:9b:1b:26:6e:21:9e:41:85:68:4e:2c:83:fb:42: a8:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 91:FB:79:F5:BD:05:3F:2B:ED:E3:56:49:ED:CE:EB:90:34:73:31:DA X509v3 Authority Key Identifier: keyid:8C:06:00:40:EF:3A:08:23:AA:97:3F:0D:05:92:B1:DD:A8:08:F7:82 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jAYAQO86CCOqlz8NBZKx3agI94I.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b9/e7549e-5b25-4200-88b9-4e4a35dd3677/1/kft59b0FPyvt41ZJ7c7rkDRzMdo.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/b9/e7549e-5b25-4200-88b9-4e4a35dd3677/1/jAYAQO86CCOqlz8NBZKx3agI94I.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 91.214.113.0/24 Signature Algorithm: sha256WithRSAEncryption 4b:1d:ed:d4:55:44:74:05:a3:47:7d:f4:78:d2:8e:d7:22:f2: df:af:12:1f:17:1e:f4:15:bb:6d:a5:f9:54:33:71:81:76:f8: 44:a0:ca:04:23:9e:cc:76:92:76:0a:39:b3:0f:8d:51:5e:e0: 92:15:20:85:98:47:14:84:1a:fa:ab:a7:54:2d:c2:9c:22:e0: 01:63:88:b7:be:ca:59:54:b8:ac:04:46:48:96:08:81:41:d4: 58:c3:b8:4d:04:b8:7f:ea:86:5c:c0:54:ba:3d:15:a5:aa:81: 06:2c:ad:87:21:0b:7a:b3:37:b5:6c:68:0f:f8:05:ad:92:6b: 42:11:38:72:a8:d8:9f:86:05:57:fd:08:82:64:36:4c:25:41: d3:40:0b:34:8a:7c:34:fa:32:89:fe:e2:a1:59:da:e1:20:ea: 0f:e0:4c:77:f7:0b:eb:b0:e5:26:eb:c6:fe:7d:19:ce:15:2a: ed:00:77:6e:8c:6f:e7:4b:5f:22:ce:fe:de:ed:92:e8:c8:f9: 09:d0:3a:9e:5a:92:ee:d3:ed:5a:c0:d8:32:bc:ed:5e:6d:1c: a7:63:72:4c:64:b9:64:ec:87:8c:9a:e0:42:66:57:29:72:ed: 06:02:2e:7b:43:af:0b:f8:a1:84:78:30:97:4d:76:80:6e:64: b0:f7:f4:90 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt7o+bU4t4PhypjHnfyqJdtMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDhjMDYwMDQwZWYzYTA4MjNhYTk3M2YwZDA1OTJiMWRkYTgw OGY3ODIwHhcNMjYwMTAxMjIxODE3WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg5MWZiNzlmNWJkMDUzZjJiZWRlMzU2NDllZGNlZWI5MDM0NzMzMWRhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAy0jdF/yBGd63IebqJPyS1sKNUEjY qh5uzUfTxmSJrMRlWx5DtTps8w5bR5lOngI13Kpw27aEQ8h6pfYCbKHuoGoX7qEN /PkLhzg8ljjDGzbWSFLHHFDdTXPU2RJlFRYf5bdPA80KbNtAXH1G1sOvw6PPDyRv sm2dMBhfozvb4ia6yTnkDKETuePmYYlrUCHf3JcP92PEk/1pnSuC4mc+8G5JMASM Q4+Rpx/uGr0ZxAIUpivH5T5X2JMWOzg4kvF2kHePQOVBB4v+xfFlAxYc/jYovKIJ Nfl/JtgwSoUkoJHFabNvp8vpdudkGjfwkJ+PmxsmbiGeQYVoTiyD+0KojQIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFJH7efW9BT8r7eNWSe3O65A0czHaMB8GA1UdIwQY MBaAFIwGAEDvOggjqpc/DQWSsd2oCPeCMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvakFZQVFPODZDQ09xbHo4TkJaS3gzYWdJOTRJLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iOS9lNzU0OWUtNWIyNS00MjAwLTg4Yjkt NGU0YTM1ZGQzNjc3LzEva2Z0NTliMEZQeXZ0NDFaSjdjN3JrRFJ6TWRvLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iOS9lNzU0OWUtNWIyNS00MjAwLTg4YjktNGU0YTM1ZGQzNjc3 LzEvakFZQVFPODZDQ09xbHo4TkJaS3gzYWdJOTRJLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAW9ZxMA0G CSqGSIb3DQEBCwUAA4IBAQBLHe3UVUR0BaNHffR40o7XIvLfrxIfFx70FbttpflU M3GBdvhEoMoEI57MdpJ2CjmzD41RXuCSFSCFmEcUhBr6q6dULcKcIuABY4i3vspZ VLisBEZIlgiBQdRYw7hNBLh/6oZcwFS6PRWlqoEGLK2HIQt6sze1bGgP+AWtkmtC EThyqNifhgVX/QiCZDZMJUHTQAs0inw0+jKJ/uKhWdrhIOoP4Ex39wvrsOUm68b+ fRnOFSrtAHdujG/nS18izv7e7ZLoyPkJ0DqeWpLu0+1awNgyvO1ebRynY3JMZLlk 7IeMmuBCZlcpcu0GAi57Q68L+KGEeDCXTXaAbmSw9/SQ -----END CERTIFICATE-----Generated at Tue Feb 10 03:09:23 2026 by rpki-client