This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ba/a3d9a6-34b7-4f38-a9a5-8bfacae464f9/1/RdWRv5Q-rS2yC6uCgBMcFMzrMv8.roa File: RdWRv5Q-rS2yC6uCgBMcFMzrMv8.roa (raw, json) Hash identifier: fI9arYNvAPfUyU+E39rZuBfMlHVUr8jzRqIJWE8wtJ8= Subject key identifier: 45:D5:91:BF:94:3E:AD:2D:B2:0B:AB:82:80:13:1C:14:CC:EB:32:FF Certificate issuer: /CN=8307a5224ae6d9a92e47e656dd801b10ffb9072b Certificate serial: 019C3DC49CF92EA9DE5576B6BCBDB1FE39DE Authority key identifier: 83:07:A5:22:4A:E6:D9:A9:2E:47:E6:56:DD:80:1B:10:FF:B9:07:2B Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gwelIkrm2akuR-ZW3YAbEP-5Bys.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ba/a3d9a6-34b7-4f38-a9a5-8bfacae464f9/1/RdWRv5Q-rS2yC6uCgBMcFMzrMv8.roa Signing time: Sun 08 Feb 2026 15:00:21 +0000 ROA not before: Sun 08 Feb 2026 15:00:21 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 198584 IP address blocks: 91.199.14.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ba/a3d9a6-34b7-4f38-a9a5-8bfacae464f9/1/gwelIkrm2akuR-ZW3YAbEP-5Bys.crl rsync://rpki.ripe.net/repository/DEFAULT/ba/a3d9a6-34b7-4f38-a9a5-8bfacae464f9/1/gwelIkrm2akuR-ZW3YAbEP-5Bys.mft rsync://rpki.ripe.net/repository/DEFAULT/gwelIkrm2akuR-ZW3YAbEP-5Bys.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:3d:c4:9c:f9:2e:a9:de:55:76:b6:bc:bd:b1:fe:39:de Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8307a5224ae6d9a92e47e656dd801b10ffb9072b Validity Not Before: Feb 8 15:00:21 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=45d591bf943ead2db20bab8280131c14cceb32ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:9c:26:4b:8a:0c:fd:a8:5c:0c:73:8b:ed:5e: d5:b9:cf:0a:66:28:15:a0:b1:68:c7:33:c8:f2:b2: 8b:6c:5e:f6:fc:46:58:5d:17:4b:91:92:e5:72:0a: 93:7b:3e:3d:04:fe:76:e1:83:c4:c2:1c:c9:62:92: 7e:a2:c1:13:66:37:ff:7b:a2:bb:52:33:8c:50:da: 01:e3:f8:c9:8b:e6:80:11:71:0f:bd:2c:f8:10:7d: 43:93:18:d3:7a:eb:a0:ff:4b:0a:a6:b5:7c:a1:c8: a0:e6:8d:0f:05:2e:5c:cb:d2:3c:81:21:d2:52:a2: 97:0b:30:89:be:0c:f8:25:31:b6:4c:2b:ca:9a:a4: 92:d3:d1:e4:20:20:f8:71:d9:25:6a:04:a8:5c:67: 3b:34:04:48:e1:c9:4b:e0:8b:31:7e:a7:55:59:a2: 0a:66:94:46:4a:9a:29:45:66:ee:30:e1:ae:53:1d: 13:fb:b0:fd:20:b2:3a:5f:ed:39:78:34:d6:84:8e: c6:7c:c4:4b:e6:03:9e:11:51:b4:88:a7:d6:90:37: dd:38:bf:20:d6:ea:90:98:db:62:ba:34:25:c6:7b: e3:81:fd:a6:a0:86:ba:d1:88:72:4b:ad:da:f0:c1: 77:a5:59:15:3b:07:02:e2:7a:51:c8:a7:fc:14:2b: 57:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 45:D5:91:BF:94:3E:AD:2D:B2:0B:AB:82:80:13:1C:14:CC:EB:32:FF X509v3 Authority Key Identifier: keyid:83:07:A5:22:4A:E6:D9:A9:2E:47:E6:56:DD:80:1B:10:FF:B9:07:2B X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gwelIkrm2akuR-ZW3YAbEP-5Bys.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ba/a3d9a6-34b7-4f38-a9a5-8bfacae464f9/1/RdWRv5Q-rS2yC6uCgBMcFMzrMv8.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/ba/a3d9a6-34b7-4f38-a9a5-8bfacae464f9/1/gwelIkrm2akuR-ZW3YAbEP-5Bys.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 91.199.14.0/24 Signature Algorithm: sha256WithRSAEncryption 44:db:6e:fe:04:9c:36:26:45:97:82:5d:1b:f2:6d:75:53:db: d1:0d:82:8e:c0:d2:2f:99:cf:fa:65:cd:30:f4:78:d9:3a:32: 3c:9e:a8:77:64:35:a4:84:ed:cb:cd:de:74:03:e7:7f:c8:de: 67:a2:e5:b4:dd:79:56:88:e1:37:88:fe:53:ed:d3:32:09:ee: c2:f4:41:19:3d:fc:dc:4e:d9:bc:4e:91:8f:e4:6d:e3:40:8f: 0a:77:46:9a:a6:9b:50:dd:2f:3b:0e:fb:55:1e:76:2f:fa:12: b3:14:87:50:1f:36:3f:88:57:7e:b5:8e:11:6d:0f:ec:c2:65: 0d:64:81:a6:ee:b4:c9:a8:a6:11:fc:1e:8e:ae:e9:ba:74:7e: 6c:a0:47:c2:e8:27:3d:7a:a6:16:05:a3:b2:0e:f5:a3:1b:71: ad:0b:32:96:c1:ad:1a:72:b4:7e:ed:c9:e9:f4:56:2c:72:67: be:b1:08:0b:3c:1d:f4:81:69:d6:42:fb:4b:9a:21:f6:64:b7: 15:a0:f8:ec:ba:1d:b1:ac:c3:41:b0:68:68:2d:fb:0a:cc:31: 8a:c4:ae:fe:56:75:08:cf:58:da:da:22:25:7d:9d:38:20:48: 4b:41:87:33:98:d2:5f:be:c7:de:ad:0d:7d:59:d2:3a:11:ec: 72:6b:f3:9c -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZw9xJz5LqneVXa2vL2x/jneMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDgzMDdhNTIyNGFlNmQ5YTkyZTQ3ZTY1NmRkODAxYjEwZmZi OTA3MmIwHhcNMjYwMjA4MTUwMDIxWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg0NWQ1OTFiZjk0M2VhZDJkYjIwYmFiODI4MDEzMWMxNGNjZWIzMmZmMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtZwmS4oM/ahcDHOL7V7Vuc8KZigV oLFoxzPI8rKLbF72/EZYXRdLkZLlcgqTez49BP524YPEwhzJYpJ+osETZjf/e6K7 UjOMUNoB4/jJi+aAEXEPvSz4EH1DkxjTeuug/0sKprV8ocig5o0PBS5cy9I8gSHS UqKXCzCJvgz4JTG2TCvKmqSS09HkICD4cdklagSoXGc7NARI4clL4IsxfqdVWaIK ZpRGSpopRWbuMOGuUx0T+7D9ILI6X+05eDTWhI7GfMRL5gOeEVG0iKfWkDfdOL8g 1uqQmNtiujQlxnvjgf2moIa60YhyS63a8MF3pVkVOwcC4npRyKf8FCtXdQIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFEXVkb+UPq0tsgurgoATHBTM6zL/MB8GA1UdIwQY MBaAFIMHpSJK5tmpLkfmVt2AGxD/uQcrMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvZ3dlbElrcm0yYWt1Ui1aVzNZQWJFUC01QnlzLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iYS9hM2Q5YTYtMzRiNy00ZjM4LWE5YTUt OGJmYWNhZTQ2NGY5LzEvUmRXUnY1US1yUzJ5QzZ1Q2dCTWNGTXpyTXY4LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iYS9hM2Q5YTYtMzRiNy00ZjM4LWE5YTUtOGJmYWNhZTQ2NGY5 LzEvZ3dlbElrcm0yYWt1Ui1aVzNZQWJFUC01QnlzLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAW8cOMA0G CSqGSIb3DQEBCwUAA4IBAQBE227+BJw2JkWXgl0b8m11U9vRDYKOwNIvmc/6Zc0w 9HjZOjI8nqh3ZDWkhO3Lzd50A+d/yN5nouW03XlWiOE3iP5T7dMyCe7C9EEZPfzc Ttm8TpGP5G3jQI8Kd0aapptQ3S87DvtVHnYv+hKzFIdQHzY/iFd+tY4RbQ/swmUN ZIGm7rTJqKYR/B6Orum6dH5soEfC6Cc9eqYWBaOyDvWjG3GtCzKWwa0acrR+7cnp 9FYscme+sQgLPB30gWnWQvtLmiH2ZLcVoPjsuh2xrMNBsGhoLfsKzDGKxK7+VnUI z1ja2iIlfZ04IEhLQYczmNJfvsferQ19WdI6Eexya/Oc -----END CERTIFICATE-----Generated at Mon Feb 9 21:00:43 2026 by rpki-client