This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ca/1dffe1-c8ff-466b-9dc2-bfc6f48e96ab/1/T72oUjEo0s0JrOYNowoRHWjX0w4.roa File: T72oUjEo0s0JrOYNowoRHWjX0w4.roa (raw, json) Hash identifier: y4/cjDz+TB542z9AKMzNcOCpxzpFqML97uF7RmVq7YE= Subject key identifier: 4F:BD:A8:52:31:28:D2:CD:09:AC:E6:0D:A3:0A:11:1D:68:D7:D3:0E Certificate issuer: /CN=39348867dcb2956aca65d08348e440d4727a3743 Certificate serial: 019B7BA5169B966D6C1CE0741ABBC8936BFE Authority key identifier: 39:34:88:67:DC:B2:95:6A:CA:65:D0:83:48:E4:40:D4:72:7A:37:43 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OTSIZ9yylWrKZdCDSORA1HJ6N0M.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ca/1dffe1-c8ff-466b-9dc2-bfc6f48e96ab/1/T72oUjEo0s0JrOYNowoRHWjX0w4.roa Signing time: Thu 01 Jan 2026 22:19:35 +0000 ROA not before: Thu 01 Jan 2026 22:19:35 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 198600 IP address blocks: 91.237.64.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ca/1dffe1-c8ff-466b-9dc2-bfc6f48e96ab/1/OTSIZ9yylWrKZdCDSORA1HJ6N0M.crl rsync://rpki.ripe.net/repository/DEFAULT/ca/1dffe1-c8ff-466b-9dc2-bfc6f48e96ab/1/OTSIZ9yylWrKZdCDSORA1HJ6N0M.mft rsync://rpki.ripe.net/repository/DEFAULT/OTSIZ9yylWrKZdCDSORA1HJ6N0M.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 13:01:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7b:a5:16:9b:96:6d:6c:1c:e0:74:1a:bb:c8:93:6b:fe Signature Algorithm: sha256WithRSAEncryption Issuer: CN=39348867dcb2956aca65d08348e440d4727a3743 Validity Not Before: Jan 1 22:19:35 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=4fbda8523128d2cd09ace60da30a111d68d7d30e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:38:b6:e0:5d:cc:95:b0:c3:d9:d7:64:14:15: 53:06:f3:96:24:28:1f:ad:79:c7:1c:16:8b:66:d0: 69:be:33:6a:5c:96:53:ca:18:43:72:8a:63:ef:dc: e2:81:74:58:9f:07:f3:35:b2:ae:27:46:6d:b1:31: 3d:d6:46:86:f8:94:a8:3c:b0:5c:78:53:42:bd:17: 39:10:1b:48:75:fe:ae:00:b4:2b:10:10:93:d1:58: f2:96:e0:65:b1:76:af:55:40:95:80:d0:86:fe:c0: 7f:b5:7a:95:b6:0b:36:a1:00:5e:17:90:75:25:b6: 94:61:a2:e0:19:b4:c8:0f:be:e0:1b:c6:a9:a7:80: 47:c4:94:38:f2:e4:e3:fa:1d:7d:f8:d8:9c:19:14: 7d:6c:71:27:e6:1a:77:b9:61:6d:8e:7f:ce:fa:1c: f4:02:26:fc:fd:1e:e6:01:4f:df:e1:3f:c8:06:7a: 1a:b0:16:ba:8c:ee:80:b0:06:45:eb:d0:62:f3:66: 43:5b:b8:1e:05:23:bb:ad:7c:f8:a7:17:b9:25:04: 6e:44:c1:d7:0f:13:ca:73:39:7c:9f:10:18:16:8a: 03:2d:c9:c4:64:8a:78:47:76:44:b0:d5:7d:e7:9a: 42:d5:22:7e:de:ca:0e:32:5d:6d:bf:97:51:00:b7: 06:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4F:BD:A8:52:31:28:D2:CD:09:AC:E6:0D:A3:0A:11:1D:68:D7:D3:0E X509v3 Authority Key Identifier: keyid:39:34:88:67:DC:B2:95:6A:CA:65:D0:83:48:E4:40:D4:72:7A:37:43 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OTSIZ9yylWrKZdCDSORA1HJ6N0M.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ca/1dffe1-c8ff-466b-9dc2-bfc6f48e96ab/1/T72oUjEo0s0JrOYNowoRHWjX0w4.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/ca/1dffe1-c8ff-466b-9dc2-bfc6f48e96ab/1/OTSIZ9yylWrKZdCDSORA1HJ6N0M.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 91.237.64.0/24 Signature Algorithm: sha256WithRSAEncryption 0c:88:bd:15:cc:3f:19:f9:a0:b2:c4:e2:15:32:9d:7d:1f:20: 43:2a:aa:4c:a3:e1:6a:f5:b3:43:94:6f:6e:64:f0:5a:87:55: 38:f2:d8:f2:5f:04:9d:36:8c:42:c8:7c:52:d0:fd:d3:7a:ce: b6:05:0d:3e:b1:0b:44:c8:03:83:31:4a:0e:91:be:11:bd:d4: 4c:a3:07:3f:48:7e:37:d3:e1:ee:d4:2c:17:6e:2a:46:a0:b6: b0:2a:ae:a5:88:00:eb:10:10:ea:ca:00:53:f8:b8:a1:2c:15: 4c:12:57:f6:65:16:6a:f1:f2:50:cb:bf:32:08:3a:48:47:52: 24:b3:5f:bc:83:f0:ac:ab:99:34:f2:d4:ef:b0:c8:a1:03:ee: 23:57:07:e2:67:ba:9a:d2:09:85:e2:0a:20:66:0d:a7:0c:7b: 90:64:15:be:0d:4b:1b:45:90:44:cb:1d:9b:1d:f6:e4:f5:5a: 90:a5:2d:92:26:36:f3:21:f9:07:ae:b1:fa:98:7e:7c:da:83: 3a:0c:9b:34:ad:4b:10:ee:f7:8f:10:0b:c3:8d:fc:71:10:53: 52:0e:d3:bd:79:a4:c8:6a:e0:59:1c:ab:d8:18:1e:a7:eb:b3: 33:67:73:ac:46:e5:bf:92:e7:8a:12:9f:69:12:01:b3:dc:71: 6f:32:0a:ea -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt7pRablm1sHOB0GrvIk2v+MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDM5MzQ4ODY3ZGNiMjk1NmFjYTY1ZDA4MzQ4ZTQ0MGQ0NzI3 YTM3NDMwHhcNMjYwMTAxMjIxOTM1WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg0ZmJkYTg1MjMxMjhkMmNkMDlhY2U2MGRhMzBhMTExZDY4ZDdkMzBlMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyzi24F3MlbDD2ddkFBVTBvOWJCgf rXnHHBaLZtBpvjNqXJZTyhhDcopj79zigXRYnwfzNbKuJ0ZtsTE91kaG+JSoPLBc eFNCvRc5EBtIdf6uALQrEBCT0VjyluBlsXavVUCVgNCG/sB/tXqVtgs2oQBeF5B1 JbaUYaLgGbTID77gG8app4BHxJQ48uTj+h19+NicGRR9bHEn5hp3uWFtjn/O+hz0 Aib8/R7mAU/f4T/IBnoasBa6jO6AsAZF69Bi82ZDW7geBSO7rXz4pxe5JQRuRMHX DxPKczl8nxAYFooDLcnEZIp4R3ZEsNV955pC1SJ+3soOMl1tv5dRALcGQwIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFE+9qFIxKNLNCazmDaMKER1o19MOMB8GA1UdIwQY MBaAFDk0iGfcspVqymXQg0jkQNRyejdDMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvT1RTSVo5eXlsV3JLWmRDRFNPUkExSEo2TjBNLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jYS8xZGZmZTEtYzhmZi00NjZiLTlkYzIt YmZjNmY0OGU5NmFiLzEvVDcyb1VqRW8wczBKck9ZTm93b1JIV2pYMHc0LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9jYS8xZGZmZTEtYzhmZi00NjZiLTlkYzItYmZjNmY0OGU5NmFi LzEvT1RTSVo5eXlsV3JLWmRDRFNPUkExSEo2TjBNLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAW+1AMA0G CSqGSIb3DQEBCwUAA4IBAQAMiL0VzD8Z+aCyxOIVMp19HyBDKqpMo+Fq9bNDlG9u ZPBah1U48tjyXwSdNoxCyHxS0P3Tes62BQ0+sQtEyAODMUoOkb4RvdRMowc/SH43 0+Hu1CwXbipGoLawKq6liADrEBDqygBT+LihLBVMElf2ZRZq8fJQy78yCDpIR1Ik s1+8g/Csq5k08tTvsMihA+4jVwfiZ7qa0gmF4gogZg2nDHuQZBW+DUsbRZBEyx2b Hfbk9VqQpS2SJjbzIfkHrrH6mH582oM6DJs0rUsQ7vePEAvDjfxxEFNSDtO9eaTI auBZHKvYGB6n67MzZ3OsRuW/kueKEp9pEgGz3HFvMgrq -----END CERTIFICATE-----Generated at Tue Feb 10 00:02:30 2026 by rpki-client