This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bf/d06832-dbdf-4f87-99b8-38d8a78a4862/1/90swIJHrJ2sBN5-x6r2JwT1pPtM.roa File: 90swIJHrJ2sBN5-x6r2JwT1pPtM.roa (raw, json) Hash identifier: qSNS122hM6E8JtNAlwnMJTYeLimXbz4RNM0wfB80wLI= Subject key identifier: F7:4B:30:20:91:EB:27:6B:01:37:9F:B1:EA:BD:89:C1:3D:69:3E:D3 Certificate issuer: /CN=403f08bbaffa4161843203a8a757ab6e9546b0ce Certificate serial: 019C0E0B1CE6646903297C0DAB0002D57F5D Authority key identifier: 40:3F:08:BB:AF:FA:41:61:84:32:03:A8:A7:57:AB:6E:95:46:B0:CE Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QD8Iu6_6QWGEMgOop1erbpVGsM4.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bf/d06832-dbdf-4f87-99b8-38d8a78a4862/1/90swIJHrJ2sBN5-x6r2JwT1pPtM.roa Signing time: Fri 30 Jan 2026 08:35:34 +0000 ROA not before: Fri 30 Jan 2026 08:35:34 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 213295 IP address blocks: 185.77.20.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bf/d06832-dbdf-4f87-99b8-38d8a78a4862/1/QD8Iu6_6QWGEMgOop1erbpVGsM4.crl rsync://rpki.ripe.net/repository/DEFAULT/bf/d06832-dbdf-4f87-99b8-38d8a78a4862/1/QD8Iu6_6QWGEMgOop1erbpVGsM4.mft rsync://rpki.ripe.net/repository/DEFAULT/QD8Iu6_6QWGEMgOop1erbpVGsM4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 11:00:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:0e:0b:1c:e6:64:69:03:29:7c:0d:ab:00:02:d5:7f:5d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=403f08bbaffa4161843203a8a757ab6e9546b0ce Validity Not Before: Jan 30 08:35:34 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=f74b302091eb276b01379fb1eabd89c13d693ed3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:10:94:c4:4c:9f:d3:23:92:d9:0a:2c:91:d5: 38:ba:1b:b3:ae:c8:d8:15:f7:81:cf:26:fd:16:68: 8a:b7:a3:81:13:37:4a:c3:42:26:5b:77:ec:d9:d4: 59:a3:80:81:55:53:2c:2c:48:d4:c7:c8:8c:08:48: 04:62:a3:9a:8a:c0:ff:02:50:27:ae:99:61:9a:85: 07:4f:38:bd:14:85:a5:49:cf:22:b7:04:f9:4c:05: 1e:f4:90:20:56:57:66:43:6b:7c:1e:71:9c:93:a3: b7:eb:a4:59:88:96:f2:c1:1f:92:2d:49:77:80:de: 91:db:b5:09:ae:fe:f4:b8:13:74:20:39:bc:22:d5: dd:bf:f8:4f:cb:92:3b:b0:fc:0b:33:7b:d4:de:ce: bb:ee:73:04:7a:93:62:b8:23:e7:ea:b7:70:16:37: 0d:2a:21:30:ae:df:22:a4:2c:39:bd:6e:8c:d4:53: 7a:d0:a2:24:e9:0e:6d:68:57:cd:bd:7a:02:a8:76: 7e:15:cd:ed:39:c7:4c:75:97:c0:50:d4:8a:73:7d: ca:84:79:42:1c:20:15:ed:c7:a1:12:82:fb:f8:75: 53:5b:40:73:dc:8b:75:b9:3f:65:2f:05:ee:96:9a: 9a:8b:69:72:21:f6:0b:a1:b1:51:d9:5d:b2:2d:9a: a3:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F7:4B:30:20:91:EB:27:6B:01:37:9F:B1:EA:BD:89:C1:3D:69:3E:D3 X509v3 Authority Key Identifier: keyid:40:3F:08:BB:AF:FA:41:61:84:32:03:A8:A7:57:AB:6E:95:46:B0:CE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QD8Iu6_6QWGEMgOop1erbpVGsM4.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/d06832-dbdf-4f87-99b8-38d8a78a4862/1/90swIJHrJ2sBN5-x6r2JwT1pPtM.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/d06832-dbdf-4f87-99b8-38d8a78a4862/1/QD8Iu6_6QWGEMgOop1erbpVGsM4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.77.20.0/24 Signature Algorithm: sha256WithRSAEncryption 8b:c0:0d:e6:1f:dd:d8:c8:4c:6f:be:b6:c8:2a:02:a3:6b:22: c3:9d:f2:66:90:eb:ad:12:2e:69:38:5a:77:68:b6:01:05:a4: 0f:d5:3f:31:b0:2a:5f:63:b0:2e:d2:d9:e7:3f:c9:88:62:95: e7:81:c8:56:21:bd:94:c7:eb:bc:b8:ed:f8:64:65:3d:3c:20: e5:49:16:92:42:35:32:89:87:5e:08:05:03:8d:3d:67:bd:7f: 28:6d:31:ba:df:96:39:c4:0a:aa:25:a9:0b:ce:e6:28:b0:41: c8:b8:de:ff:b9:0f:66:9a:9b:c8:83:8d:0f:ee:a8:49:22:ae: 5a:e2:8f:df:64:6b:c9:7a:e5:91:4d:5f:ee:26:c2:1b:a3:73: 2d:4d:b1:c6:2e:8b:d7:76:46:0b:a6:c5:7a:43:da:c2:4f:f8: 0f:bb:75:f3:2d:24:90:df:b7:09:79:37:f8:84:07:3a:58:10: e3:c9:1a:77:bb:12:ab:5b:80:64:be:8e:c4:8c:95:e5:20:ee: 5a:be:d1:1c:a7:00:3e:d1:ff:92:55:51:44:14:68:0e:64:96: e2:15:67:44:d1:a8:29:96:0a:b7:ac:5c:4e:62:ff:76:d1:5d: 21:34:41:3f:ff:c8:c3:b1:34:33:4d:bc:91:73:47:32:36:a0: 71:fb:67:87 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZwOCxzmZGkDKXwNqwAC1X9dMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDQwM2YwOGJiYWZmYTQxNjE4NDMyMDNhOGE3NTdhYjZlOTU0 NmIwY2UwHhcNMjYwMTMwMDgzNTM0WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhmNzRiMzAyMDkxZWIyNzZiMDEzNzlmYjFlYWJkODljMTNkNjkzZWQzMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvxCUxEyf0yOS2QoskdU4uhuzrsjY FfeBzyb9FmiKt6OBEzdKw0ImW3fs2dRZo4CBVVMsLEjUx8iMCEgEYqOaisD/AlAn rplhmoUHTzi9FIWlSc8itwT5TAUe9JAgVldmQ2t8HnGck6O366RZiJbywR+SLUl3 gN6R27UJrv70uBN0IDm8ItXdv/hPy5I7sPwLM3vU3s677nMEepNiuCPn6rdwFjcN KiEwrt8ipCw5vW6M1FN60KIk6Q5taFfNvXoCqHZ+Fc3tOcdMdZfAUNSKc33KhHlC HCAV7cehEoL7+HVTW0Bz3It1uT9lLwXulpqai2lyIfYLobFR2V2yLZqj2QIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFPdLMCCR6ydrATefseq9icE9aT7TMB8GA1UdIwQY MBaAFEA/CLuv+kFhhDIDqKdXq26VRrDOMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvUUQ4SXU2XzZRV0dFTWdPb3AxZXJicFZHc000LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iZi9kMDY4MzItZGJkZi00Zjg3LTk5Yjgt MzhkOGE3OGE0ODYyLzEvOTBzd0lKSHJKMnNCTjUteDZyMkp3VDFwUHRNLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iZi9kMDY4MzItZGJkZi00Zjg3LTk5YjgtMzhkOGE3OGE0ODYy LzEvUUQ4SXU2XzZRV0dFTWdPb3AxZXJicFZHc000LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAuU0UMA0G CSqGSIb3DQEBCwUAA4IBAQCLwA3mH93YyExvvrbIKgKjayLDnfJmkOutEi5pOFp3 aLYBBaQP1T8xsCpfY7Au0tnnP8mIYpXngchWIb2Ux+u8uO34ZGU9PCDlSRaSQjUy iYdeCAUDjT1nvX8obTG635Y5xAqqJakLzuYosEHIuN7/uQ9mmpvIg40P7qhJIq5a 4o/fZGvJeuWRTV/uJsIbo3MtTbHGLovXdkYLpsV6Q9rCT/gPu3XzLSSQ37cJeTf4 hAc6WBDjyRp3uxKrW4Bkvo7EjJXlIO5avtEcpwA+0f+SVVFEFGgOZJbiFWdE0agp lgq3rFxOYv920V0hNEE//8jDsTQzTbyRc0cyNqBx+2eH -----END CERTIFICATE-----Generated at Mon Feb 9 19:54:55 2026 by rpki-client