This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c3/715835-bc1d-4cb8-9618-4ef283ce7ff1/1/D5K8QPUyMYfagYASYwL4lujklys.roa File: D5K8QPUyMYfagYASYwL4lujklys.roa (raw, json) Hash identifier: hyr6M3p6aHhLRaW47SkFIlt8kwLspMP/qCLs3ZNqvMQ= Subject key identifier: 0F:92:BC:40:F5:32:31:87:DA:81:80:12:63:02:F8:96:E8:E4:97:2B Certificate issuer: /CN=29921518c5da1b84c5971a79bc74e8ac0770fd49 Certificate serial: 019BEB1EEC65199C6814C0CC34BC02B7EFCF Authority key identifier: 29:92:15:18:C5:DA:1B:84:C5:97:1A:79:BC:74:E8:AC:07:70:FD:49 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KZIVGMXaG4TFlxp5vHTorAdw_Uk.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c3/715835-bc1d-4cb8-9618-4ef283ce7ff1/1/D5K8QPUyMYfagYASYwL4lujklys.roa Signing time: Fri 23 Jan 2026 13:50:30 +0000 ROA not before: Fri 23 Jan 2026 13:50:30 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 201603 IP address blocks: 91.217.32.0/23 maxlen: 23 91.217.32.0/24 maxlen: 24 91.217.33.0/24 maxlen: 24 185.69.104.0/22 maxlen: 22 185.69.104.0/24 maxlen: 24 185.69.105.0/24 maxlen: 24 185.69.106.0/24 maxlen: 24 185.69.107.0/24 maxlen: 24 188.214.108.0/24 maxlen: 24 2a05:2140::/29 maxlen: 29 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c3/715835-bc1d-4cb8-9618-4ef283ce7ff1/1/KZIVGMXaG4TFlxp5vHTorAdw_Uk.crl rsync://rpki.ripe.net/repository/DEFAULT/c3/715835-bc1d-4cb8-9618-4ef283ce7ff1/1/KZIVGMXaG4TFlxp5vHTorAdw_Uk.mft rsync://rpki.ripe.net/repository/DEFAULT/KZIVGMXaG4TFlxp5vHTorAdw_Uk.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:eb:1e:ec:65:19:9c:68:14:c0:cc:34:bc:02:b7:ef:cf Signature Algorithm: sha256WithRSAEncryption Issuer: CN=29921518c5da1b84c5971a79bc74e8ac0770fd49 Validity Not Before: Jan 23 13:50:30 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=0f92bc40f5323187da8180126302f896e8e4972b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e9:0e:e7:81:22:5f:e6:af:52:63:63:c2:61:cc: 0f:bd:18:0d:ff:e9:8f:39:66:ff:da:ff:94:d2:cd: 2d:ce:b5:da:a6:7d:a3:80:af:16:72:d0:3c:26:bb: c2:2a:c3:9e:81:2c:4a:0a:0f:b0:52:aa:e5:4f:43: 40:0c:96:93:27:66:56:b8:0d:f7:a3:42:f3:e5:9d: e0:af:ba:74:fd:9e:50:94:42:61:01:8b:9e:15:6e: a0:d1:23:d7:7b:54:50:48:85:8e:21:d0:89:8a:6d: 15:97:7e:d0:ea:a8:f5:5d:21:cd:6d:df:82:1a:46: 14:ad:3b:2e:fc:c2:15:58:3a:07:f5:ec:5f:98:f3: 3f:64:37:97:9b:61:68:59:10:6f:fb:a3:f2:ba:06: d5:36:ca:6a:d2:b8:9b:f5:2c:78:92:2e:44:12:32: 7a:c2:66:39:a8:b2:61:dc:12:d1:2a:ed:1e:00:23: e7:8b:7e:01:eb:be:52:a9:76:30:39:2f:3f:3e:34: 80:92:6a:b3:18:7e:87:6b:11:f1:a8:e5:ba:02:2a: 81:49:fa:86:1f:5d:6c:8a:f9:3c:20:2f:91:50:cb: 26:a1:71:fd:96:9a:27:f5:eb:99:97:05:92:7d:5b: bc:7d:36:c8:91:6c:62:d5:1a:56:3b:3d:c5:6c:d9: 17:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0F:92:BC:40:F5:32:31:87:DA:81:80:12:63:02:F8:96:E8:E4:97:2B X509v3 Authority Key Identifier: keyid:29:92:15:18:C5:DA:1B:84:C5:97:1A:79:BC:74:E8:AC:07:70:FD:49 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KZIVGMXaG4TFlxp5vHTorAdw_Uk.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c3/715835-bc1d-4cb8-9618-4ef283ce7ff1/1/D5K8QPUyMYfagYASYwL4lujklys.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/c3/715835-bc1d-4cb8-9618-4ef283ce7ff1/1/KZIVGMXaG4TFlxp5vHTorAdw_Uk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 91.217.32.0/23 185.69.104.0/22 188.214.108.0/24 IPv6: 2a05:2140::/29 Signature Algorithm: sha256WithRSAEncryption b5:f3:e4:8b:88:1c:90:61:0c:7f:6a:9b:ce:e2:0a:bc:d2:86: 08:52:1b:eb:11:a4:ad:44:82:c6:e0:9d:24:9b:a8:b8:d5:93: 90:c6:fb:ed:ab:08:8b:ab:54:54:29:c6:9e:af:cd:49:6e:91: 1e:b3:a9:82:46:e6:1d:e7:5f:98:e9:ac:fe:c9:c8:ab:c1:96: 42:03:55:a5:de:cc:bb:9b:a3:08:bf:d1:c6:ec:0e:65:62:bc: 63:43:19:16:34:45:51:b3:c0:30:12:3d:b1:81:d6:6b:f0:f7: ee:c7:b4:f2:5c:26:fd:07:76:ec:c9:b8:98:1d:93:50:51:ef: 96:e6:af:1f:c1:2a:80:b4:76:0b:cf:d1:d6:ee:ef:de:d4:6b: bf:5a:16:09:34:f3:e6:67:f1:3b:9d:08:10:d9:41:19:1f:df: 1c:41:54:e2:a1:ab:f3:d5:a5:b0:6a:fb:42:62:04:a7:b9:26: 31:f3:81:ff:b4:ba:63:40:fe:6f:48:23:bd:0c:27:fa:cc:6c: a7:8b:79:34:bf:5a:65:59:6b:8c:14:b6:a3:6f:f8:27:b7:9c: d5:83:c5:3c:c4:f4:cf:f8:59:96:8f:a2:b8:46:bd:b5:d1:9c: 1a:ce:ce:03:6d:17:6a:1c:81:16:81:ed:58:a2:81:cb:d2:d5: 7e:b7:a8:01 -----BEGIN CERTIFICATE----- MIIFGDCCBACgAwIBAgISAZvrHuxlGZxoFMDMNLwCt+/PMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDI5OTIxNTE4YzVkYTFiODRjNTk3MWE3OWJjNzRlOGFjMDc3 MGZkNDkwHhcNMjYwMTIzMTM1MDMwWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygwZjkyYmM0MGY1MzIzMTg3ZGE4MTgwMTI2MzAyZjg5NmU4ZTQ5NzJiMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA6Q7ngSJf5q9SY2PCYcwPvRgN/+mP OWb/2v+U0s0tzrXapn2jgK8WctA8JrvCKsOegSxKCg+wUqrlT0NADJaTJ2ZWuA33 o0Lz5Z3gr7p0/Z5QlEJhAYueFW6g0SPXe1RQSIWOIdCJim0Vl37Q6qj1XSHNbd+C GkYUrTsu/MIVWDoH9exfmPM/ZDeXm2FoWRBv+6PyugbVNspq0rib9Sx4ki5EEjJ6 wmY5qLJh3BLRKu0eACPni34B675SqXYwOS8/PjSAkmqzGH6HaxHxqOW6AiqBSfqG H11sivk8IC+RUMsmoXH9lpon9euZlwWSfVu8fTbIkWxi1RpWOz3FbNkXOQIDAQAB o4ICJDCCAiAwHQYDVR0OBBYEFA+SvED1MjGH2oGAEmMC+Jbo5JcrMB8GA1UdIwQY MBaAFCmSFRjF2huExZcaebx06KwHcP1JMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvS1pJVkdNWGFHNFRGbHhwNXZIVG9yQWR3X1VrLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jMy83MTU4MzUtYmMxZC00Y2I4LTk2MTgt NGVmMjgzY2U3ZmYxLzEvRDVLOFFQVXlNWWZhZ1lBU1l3TDRsdWprbHlzLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9jMy83MTU4MzUtYmMxZC00Y2I4LTk2MTgtNGVmMjgzY2U3ZmYx LzEvS1pJVkdNWGFHNFRGbHhwNXZIVG9yQWR3X1VrLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMDoGCCsGAQUFBwEHAQH/BCswKTAYBAIAATASAwQBW9kgAwQC uUVoAwQAvNZsMA0EAgACMAcDBQMqBSFAMA0GCSqGSIb3DQEBCwUAA4IBAQC18+SL iByQYQx/apvO4gq80oYIUhvrEaStRILG4J0km6i41ZOQxvvtqwiLq1RUKcaer81J bpEes6mCRuYd51+Y6az+ycirwZZCA1Wl3sy7m6MIv9HG7A5lYrxjQxkWNEVRs8Aw Ej2xgdZr8Pfux7TyXCb9B3bsybiYHZNQUe+W5q8fwSqAtHYLz9HW7u/e1Gu/WhYJ NPPmZ/E7nQgQ2UEZH98cQVTioavz1aWwavtCYgSnuSYx84H/tLpjQP5vSCO9DCf6 zGyni3k0v1plWWuMFLajb/gnt5zVg8U8xPTP+FmWj6K4Rr210Zwazs4DbRdqHIEW ge1YooHL0tV+t6gB -----END CERTIFICATE-----Generated at Mon Feb 9 22:16:07 2026 by rpki-client