This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c4/8db002-9080-4f0b-845b-9b7c44dc193b/1/I7FUEzQB2p3ba0HK6BFlJiMFpKs.roa File: I7FUEzQB2p3ba0HK6BFlJiMFpKs.roa (raw, json) Hash identifier: iWKKYDbmGhj4l1sOymtdFMyXimiZWXcKaRN6JaYAqjU= Subject key identifier: 23:B1:54:13:34:01:DA:9D:DB:6B:41:CA:E8:11:65:26:23:05:A4:AB Certificate issuer: /CN=098b1c79bfae12a5b87f35c998bb60b3fa4e6621 Certificate serial: 019B7AC8D651D55BA01494EB1279B3CB5BDA Authority key identifier: 09:8B:1C:79:BF:AE:12:A5:B8:7F:35:C9:98:BB:60:B3:FA:4E:66:21 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CYsceb-uEqW4fzXJmLtgs_pOZiE.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c4/8db002-9080-4f0b-845b-9b7c44dc193b/1/I7FUEzQB2p3ba0HK6BFlJiMFpKs.roa Signing time: Thu 01 Jan 2026 18:19:00 +0000 ROA not before: Thu 01 Jan 2026 18:19:00 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 13273 IP address blocks: 91.216.209.0/24 maxlen: 24 185.21.152.0/22 maxlen: 24 185.114.208.0/22 maxlen: 24 195.54.62.0/23 maxlen: 24 213.91.0.0/18 maxlen: 24 213.162.32.0/19 maxlen: 24 213.162.32.0/20 maxlen: 24 213.162.62.0/24 maxlen: 24 2a04:1940::/29 maxlen: 64 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c4/8db002-9080-4f0b-845b-9b7c44dc193b/1/CYsceb-uEqW4fzXJmLtgs_pOZiE.crl rsync://rpki.ripe.net/repository/DEFAULT/c4/8db002-9080-4f0b-845b-9b7c44dc193b/1/CYsceb-uEqW4fzXJmLtgs_pOZiE.mft rsync://rpki.ripe.net/repository/DEFAULT/CYsceb-uEqW4fzXJmLtgs_pOZiE.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7a:c8:d6:51:d5:5b:a0:14:94:eb:12:79:b3:cb:5b:da Signature Algorithm: sha256WithRSAEncryption Issuer: CN=098b1c79bfae12a5b87f35c998bb60b3fa4e6621 Validity Not Before: Jan 1 18:19:00 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=23b154133401da9ddb6b41cae81165262305a4ab Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:db:25:2b:48:d8:77:ce:da:70:66:20:cf:8c: 11:76:e8:a5:5a:05:51:a8:3b:a9:99:62:a0:20:91: 0f:b0:0a:42:5f:df:0e:a3:f2:7c:b7:15:66:d8:06: fc:0b:72:d8:13:8a:bc:10:8b:08:8d:fe:90:06:a7: 49:30:b2:9e:5c:5f:7c:9f:04:23:e7:ec:97:9e:67: de:07:15:34:d9:6a:13:d0:05:be:f2:6f:bc:61:79: 6c:a0:eb:16:61:1c:42:bf:98:4c:35:40:39:aa:a6: f3:d9:eb:5e:1a:96:90:fe:bf:24:1b:84:f4:2b:07: 72:73:a2:41:8f:85:16:b8:a3:5b:19:24:da:49:d7: c0:76:45:a8:a4:2a:a0:3b:bc:51:b9:c9:52:c0:47: a7:52:5a:0e:77:b5:24:32:95:5b:29:6e:39:a1:5e: 1d:67:ad:57:56:d6:8a:d2:81:c7:2b:39:1d:1c:f9: 96:06:eb:2c:d0:97:28:d6:b2:8b:bf:43:1b:3f:37: 18:c6:a4:fb:a8:8c:3d:da:c8:a7:6e:ff:4d:1a:c0: 05:36:52:b7:88:cc:55:94:91:0f:e5:5f:b8:7e:a7: 2e:b8:85:58:7c:f0:eb:fd:4c:84:68:85:b7:cc:77: cf:9d:3d:5a:1a:48:0f:98:25:99:5c:d2:87:a9:93: 46:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 23:B1:54:13:34:01:DA:9D:DB:6B:41:CA:E8:11:65:26:23:05:A4:AB X509v3 Authority Key Identifier: keyid:09:8B:1C:79:BF:AE:12:A5:B8:7F:35:C9:98:BB:60:B3:FA:4E:66:21 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CYsceb-uEqW4fzXJmLtgs_pOZiE.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c4/8db002-9080-4f0b-845b-9b7c44dc193b/1/I7FUEzQB2p3ba0HK6BFlJiMFpKs.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/c4/8db002-9080-4f0b-845b-9b7c44dc193b/1/CYsceb-uEqW4fzXJmLtgs_pOZiE.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 91.216.209.0/24 185.21.152.0/22 185.114.208.0/22 195.54.62.0/23 213.91.0.0/18 213.162.32.0/19 IPv6: 2a04:1940::/29 Signature Algorithm: sha256WithRSAEncryption 51:91:dd:4a:05:43:87:39:71:66:c9:fc:45:69:2e:b0:c6:51: 32:4b:e0:ff:07:18:6f:5e:a2:65:ee:e0:8e:6a:63:d4:3d:ec: d3:18:03:1d:6a:b8:cc:4e:12:8d:69:f4:b1:bb:1c:81:92:58: 7e:ef:10:7c:7f:d0:59:d7:e2:f1:fb:e7:63:66:d3:7d:a0:fc: a7:f3:5c:9b:a4:af:8d:fb:e0:e6:2c:c3:8b:2d:53:80:86:bc: f5:67:49:18:c0:d1:d7:33:0b:0d:a1:0f:49:59:e3:ca:f6:0d: c1:fd:fa:20:4e:72:96:07:dc:02:81:d2:1c:77:6d:9d:22:e3: ad:86:3d:9d:f9:1f:71:9e:26:ea:29:e9:62:7f:7c:f6:82:bd: c2:09:d9:03:d6:cd:73:87:71:da:ec:bb:d3:03:da:1a:71:c4: b7:ab:52:c6:f9:e9:20:63:39:75:3a:c8:09:63:06:c1:02:ab: 0a:67:90:d1:a2:64:fb:74:5a:b2:25:b7:2d:de:88:db:1a:17: 58:36:76:8c:a1:cc:2a:2c:50:bb:10:54:8e:dc:b5:31:fe:90: 5e:d9:3b:bd:74:99:4f:24:62:9f:c0:4d:13:51:48:80:12:8f: b4:ea:ad:f8:0d:c7:e5:7e:f7:28:f2:9e:22:6e:11:d0:12:35: 4b:c4:98:63 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgISAZt6yNZR1VugFJTrEnmzy1vaMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDA5OGIxYzc5YmZhZTEyYTViODdmMzVjOTk4YmI2MGIzZmE0 ZTY2MjEwHhcNMjYwMTAxMTgxOTAwWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygyM2IxNTQxMzM0MDFkYTlkZGI2YjQxY2FlODExNjUyNjIzMDVhNGFiMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAndslK0jYd87acGYgz4wRduilWgVR qDupmWKgIJEPsApCX98Oo/J8txVm2Ab8C3LYE4q8EIsIjf6QBqdJMLKeXF98nwQj 5+yXnmfeBxU02WoT0AW+8m+8YXlsoOsWYRxCv5hMNUA5qqbz2eteGpaQ/r8kG4T0 Kwdyc6JBj4UWuKNbGSTaSdfAdkWopCqgO7xRuclSwEenUloOd7UkMpVbKW45oV4d Z61XVtaK0oHHKzkdHPmWBuss0Jco1rKLv0MbPzcYxqT7qIw92sinbv9NGsAFNlK3 iMxVlJEP5V+4fqcuuIVYfPDr/UyEaIW3zHfPnT1aGkgPmCWZXNKHqZNGXwIDAQAB o4ICNjCCAjIwHQYDVR0OBBYEFCOxVBM0Adqd22tByugRZSYjBaSrMB8GA1UdIwQY MBaAFAmLHHm/rhKluH81yZi7YLP6TmYhMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvQ1lzY2ViLXVFcVc0ZnpYSm1MdGdzX3BPWmlFLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jNC84ZGIwMDItOTA4MC00ZjBiLTg0NWIt OWI3YzQ0ZGMxOTNiLzEvSTdGVUV6UUIycDNiYTBISzZCRmxKaU1GcEtzLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9jNC84ZGIwMDItOTA4MC00ZjBiLTg0NWItOWI3YzQ0ZGMxOTNi LzEvQ1lzY2ViLXVFcVc0ZnpYSm1MdGdzX3BPWmlFLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMEwGCCsGAQUFBwEHAQH/BD0wOzAqBAIAATAkAwQAW9jRAwQC uRWYAwQCuXLQAwQBwzY+AwQG1VsAAwQF1aIgMA0EAgACMAcDBQMqBBlAMA0GCSqG SIb3DQEBCwUAA4IBAQBRkd1KBUOHOXFmyfxFaS6wxlEyS+D/BxhvXqJl7uCOamPU PezTGAMdarjMThKNafSxuxyBklh+7xB8f9BZ1+Lx++djZtN9oPyn81ybpK+N++Dm LMOLLVOAhrz1Z0kYwNHXMwsNoQ9JWePK9g3B/fogTnKWB9wCgdIcd22dIuOthj2d +R9xnibqKelif3z2gr3CCdkD1s1zh3Ha7LvTA9oaccS3q1LG+ekgYzl1OsgJYwbB AqsKZ5DRomT7dFqyJbct3ojbGhdYNnaMocwqLFC7EFSO3LUx/pBe2Tu9dJlPJGKf wE0TUUiAEo+06q34Dcflfvco8p4ibhHQEjVLxJhj -----END CERTIFICATE-----Generated at Mon Feb 9 21:00:45 2026 by rpki-client