This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bd/396890-e96c-4d1f-936c-8fee7ec7c3cd/1/B-ORof5U5KffpAVQvuFpkPz0N4c.roa File: B-ORof5U5KffpAVQvuFpkPz0N4c.roa (raw, json) Hash identifier: 7Bdce+7dVfpsrP9CGNTqOXrt+QvlnjsVsauoFzbSuFo= Subject key identifier: 07:E3:91:A1:FE:54:E4:A7:DF:A4:05:50:BE:E1:69:90:FC:F4:37:87 Certificate issuer: /CN=c01574cb9e0e35bf9754ef9175014bc746008f0e Certificate serial: 019B76EB1521C17804E628B66ACFA1FC6326 Authority key identifier: C0:15:74:CB:9E:0E:35:BF:97:54:EF:91:75:01:4B:C7:46:00:8F:0E Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/wBV0y54ONb-XVO-RdQFLx0YAjw4.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bd/396890-e96c-4d1f-936c-8fee7ec7c3cd/1/B-ORof5U5KffpAVQvuFpkPz0N4c.roa Signing time: Thu 01 Jan 2026 00:17:56 +0000 ROA not before: Thu 01 Jan 2026 00:17:56 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 24961 IP address blocks: 91.199.44.0/24 maxlen: 24 2a0d:b700::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bd/396890-e96c-4d1f-936c-8fee7ec7c3cd/1/wBV0y54ONb-XVO-RdQFLx0YAjw4.crl rsync://rpki.ripe.net/repository/DEFAULT/bd/396890-e96c-4d1f-936c-8fee7ec7c3cd/1/wBV0y54ONb-XVO-RdQFLx0YAjw4.mft rsync://rpki.ripe.net/repository/DEFAULT/wBV0y54ONb-XVO-RdQFLx0YAjw4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 22 Jan 2026 00:00:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:76:eb:15:21:c1:78:04:e6:28:b6:6a:cf:a1:fc:63:26 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=c01574cb9e0e35bf9754ef9175014bc746008f0e Validity Not Before: Jan 1 00:17:56 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=07e391a1fe54e4a7dfa40550bee16990fcf43787 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:6c:6b:41:93:ce:c1:5b:0f:e1:f3:2d:90:89: 24:da:b8:ab:d3:6a:62:2e:5b:cb:62:b0:a2:51:31: 6e:1d:04:a1:dc:33:17:8e:a8:b8:6a:56:3e:b6:ab: 5d:9f:b0:f2:b7:1b:9d:37:38:17:a7:46:68:55:6b: 87:fd:52:a0:48:fd:d4:8f:46:a4:ca:ab:9b:81:9a: c0:5c:45:d5:a8:70:d4:bb:96:19:12:bd:ff:6d:45: 31:ba:fb:3d:df:41:0a:07:a7:70:c1:0b:68:23:2d: 0c:74:8e:47:59:ec:bb:32:a7:5a:21:e6:bc:51:22: ad:a0:42:c1:64:c8:f5:ef:0b:5a:28:0f:51:99:08: 40:89:0f:10:e1:3b:8c:ba:4b:7c:e9:e1:74:5d:56: eb:bd:17:c5:9a:55:d6:53:28:e1:51:7d:5d:1c:df: 93:12:59:1f:fe:2b:1d:de:ce:4c:50:5f:b5:ed:79: bc:53:60:1f:62:1e:74:2e:cc:c2:3d:d3:ff:59:52: bb:12:7a:f4:66:fc:4d:98:9f:ea:a4:fa:7e:f1:6c: 29:f4:9f:9c:53:24:1b:37:65:3b:e9:40:c5:1e:82: 00:70:32:fd:23:87:ee:9c:8c:81:58:c9:60:cb:8f: 1e:ba:de:1b:6f:e1:24:f4:75:3e:ca:7d:d3:5b:30: d0:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 07:E3:91:A1:FE:54:E4:A7:DF:A4:05:50:BE:E1:69:90:FC:F4:37:87 X509v3 Authority Key Identifier: keyid:C0:15:74:CB:9E:0E:35:BF:97:54:EF:91:75:01:4B:C7:46:00:8F:0E X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/wBV0y54ONb-XVO-RdQFLx0YAjw4.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/396890-e96c-4d1f-936c-8fee7ec7c3cd/1/B-ORof5U5KffpAVQvuFpkPz0N4c.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/396890-e96c-4d1f-936c-8fee7ec7c3cd/1/wBV0y54ONb-XVO-RdQFLx0YAjw4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 91.199.44.0/24 IPv6: 2a0d:b700::/32 Signature Algorithm: sha256WithRSAEncryption 9f:7d:13:76:e5:13:10:41:bd:ac:04:1b:6e:af:5b:dc:2e:07: 3e:46:d0:47:98:42:97:45:64:e0:94:71:ee:54:60:7e:e1:ad: ed:51:14:6c:32:d2:bd:15:71:f1:89:1b:74:6f:7f:cf:94:85: e9:89:94:0f:99:f8:5a:2a:1c:5b:77:bc:32:72:1f:f4:ee:b0: 35:f5:94:14:92:f7:75:26:a1:0f:bf:f7:1d:71:a4:f1:d2:2f: 6c:94:4e:c9:be:92:fc:6b:1d:55:9d:5a:78:c9:24:93:ab:c5: 71:80:7a:2c:c7:88:e3:c5:bb:2a:09:46:2f:99:ea:fa:be:8c: 0e:73:e6:6e:0b:35:82:2d:c8:8c:17:43:ed:8a:c5:26:94:6f: e6:85:a8:f6:5c:5e:c8:ba:4d:7c:7f:9e:74:19:93:8b:f6:95: 76:f3:e1:9f:b9:52:70:7d:31:e1:7a:71:74:0b:27:12:30:0d: 8f:30:d8:99:a5:62:3b:99:25:0f:3f:f0:8d:dd:e8:16:e7:eb: a0:dc:fd:d9:c5:52:ab:e8:57:9d:55:3d:8d:ea:b9:0d:54:05: 90:ce:2e:2a:19:de:5e:91:96:4c:7b:7e:ee:1b:e5:2f:16:fc: b4:4a:26:6a:0c:49:e6:0b:20:01:ad:33:d8:1b:3f:87:ec:d7: cf:d6:14:29 -----BEGIN CERTIFICATE----- MIIFDDCCA/SgAwIBAgISAZt26xUhwXgE5ii2as+h/GMmMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGMwMTU3NGNiOWUwZTM1YmY5NzU0ZWY5MTc1MDE0YmM3NDYw MDhmMGUwHhcNMjYwMTAxMDAxNzU2WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygwN2UzOTFhMWZlNTRlNGE3ZGZhNDA1NTBiZWUxNjk5MGZjZjQzNzg3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1WxrQZPOwVsP4fMtkIkk2rir02pi LlvLYrCiUTFuHQSh3DMXjqi4alY+tqtdn7DytxudNzgXp0ZoVWuH/VKgSP3Uj0ak yqubgZrAXEXVqHDUu5YZEr3/bUUxuvs930EKB6dwwQtoIy0MdI5HWey7MqdaIea8 USKtoELBZMj17wtaKA9RmQhAiQ8Q4TuMukt86eF0XVbrvRfFmlXWUyjhUX1dHN+T Elkf/isd3s5MUF+17Xm8U2AfYh50LszCPdP/WVK7Enr0ZvxNmJ/qpPp+8Wwp9J+c UyQbN2U76UDFHoIAcDL9I4funIyBWMlgy48eut4bb+Ek9HU+yn3TWzDQ+wIDAQAB o4ICGDCCAhQwHQYDVR0OBBYEFAfjkaH+VOSn36QFUL7haZD89DeHMB8GA1UdIwQY MBaAFMAVdMueDjW/l1TvkXUBS8dGAI8OMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvd0JWMHk1NE9OYi1YVk8tUmRRRkx4MFlBanc0LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iZC8zOTY4OTAtZTk2Yy00ZDFmLTkzNmMt OGZlZTdlYzdjM2NkLzEvQi1PUm9mNVU1S2ZmcEFWUXZ1RnBrUHowTjRjLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iZC8zOTY4OTAtZTk2Yy00ZDFmLTkzNmMtOGZlZTdlYzdjM2Nk LzEvd0JWMHk1NE9OYi1YVk8tUmRRRkx4MFlBanc0LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMC4GCCsGAQUFBwEHAQH/BB8wHTAMBAIAATAGAwQAW8csMA0E AgACMAcDBQAqDbcAMA0GCSqGSIb3DQEBCwUAA4IBAQCffRN25RMQQb2sBBtur1vc Lgc+RtBHmEKXRWTglHHuVGB+4a3tURRsMtK9FXHxiRt0b3/PlIXpiZQPmfhaKhxb d7wych/07rA19ZQUkvd1JqEPv/cdcaTx0i9slE7JvpL8ax1VnVp4ySSTq8VxgHos x4jjxbsqCUYvmer6vowOc+ZuCzWCLciMF0PtisUmlG/mhaj2XF7Iuk18f550GZOL 9pV28+GfuVJwfTHhenF0CycSMA2PMNiZpWI7mSUPP/CN3egW5+ug3P3ZxVKr6Fed VT2N6rkNVAWQzi4qGd5ekZZMe37uG+UvFvy0SiZqDEnmCyABrTPYGz+H7NfP1hQp -----END CERTIFICATE-----Generated at Wed Jan 21 09:20:58 2026 by rpki-client