This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d1/3503ee-5b82-4231-b57a-1fd29b108a21/1/Q1i1i1A5Ui6K8xWYOMC8b2cLIys.roa File: Q1i1i1A5Ui6K8xWYOMC8b2cLIys.roa (raw, json) Hash identifier: K5UU540aeacTeWENSm+dTa5dIuRJreM1pon8ZgCMcE8= Subject key identifier: 43:58:B5:8B:50:39:52:2E:8A:F3:15:98:38:C0:BC:6F:67:0B:23:2B Certificate issuer: /CN=cb224ea38572ea0da02f49cf4d67a3cbb7c6e140 Certificate serial: 019B7834A7F673D288CE3BC58A5BC98294E9 Authority key identifier: CB:22:4E:A3:85:72:EA:0D:A0:2F:49:CF:4D:67:A3:CB:B7:C6:E1:40 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/yyJOo4Vy6g2gL0nPTWejy7fG4UA.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d1/3503ee-5b82-4231-b57a-1fd29b108a21/1/Q1i1i1A5Ui6K8xWYOMC8b2cLIys.roa Signing time: Thu 01 Jan 2026 06:17:55 +0000 ROA not before: Thu 01 Jan 2026 06:17:55 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 34393 IP address blocks: 91.218.241.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d1/3503ee-5b82-4231-b57a-1fd29b108a21/1/yyJOo4Vy6g2gL0nPTWejy7fG4UA.crl rsync://rpki.ripe.net/repository/DEFAULT/d1/3503ee-5b82-4231-b57a-1fd29b108a21/1/yyJOo4Vy6g2gL0nPTWejy7fG4UA.mft rsync://rpki.ripe.net/repository/DEFAULT/yyJOo4Vy6g2gL0nPTWejy7fG4UA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 21:05:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:78:34:a7:f6:73:d2:88:ce:3b:c5:8a:5b:c9:82:94:e9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=cb224ea38572ea0da02f49cf4d67a3cbb7c6e140 Validity Not Before: Jan 1 06:17:55 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=4358b58b5039522e8af3159838c0bc6f670b232b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:9e:3d:ea:16:7c:a5:2f:32:f3:74:b0:1a:ad: bc:6a:34:fd:f1:2a:35:6c:58:b1:4a:a1:e2:ca:2a: 5b:f9:6a:41:76:b8:07:2c:11:46:90:1f:59:2c:70: 57:bd:e2:4c:ae:17:80:f5:18:02:49:e1:2b:b1:05: 65:f1:65:73:fd:bf:b8:e5:1f:d3:4a:ff:96:7a:f5: 8d:ae:47:42:54:bf:f7:66:19:30:c1:e5:e1:0f:12: 4f:99:26:8d:c7:81:7c:86:ff:dd:0b:e1:22:a8:2e: 50:c9:4d:34:85:8e:44:26:a3:cf:57:7f:8b:68:2b: 92:79:c6:66:2b:25:23:8d:a5:ce:e8:4c:b3:d7:68: 08:23:25:9a:e4:c2:c5:7d:86:85:b9:bd:47:44:a1: d9:e6:6e:57:3e:b0:41:8b:27:bf:10:35:1b:ae:58: cd:a6:8b:05:88:dc:13:ed:15:76:af:c9:ac:d4:14: eb:7c:17:8a:3c:fb:88:a3:35:dc:e3:23:0a:b7:c2: 78:64:5a:77:3a:b3:1c:5e:fc:98:06:77:08:71:06: 52:a1:79:7e:c1:4c:7d:37:86:f5:0e:f5:61:de:04: 6e:53:f6:dc:a8:d5:98:56:13:dc:d9:a5:d9:1c:d5: 52:79:85:fe:fa:62:69:7c:7e:76:63:d9:a8:46:03: 59:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 43:58:B5:8B:50:39:52:2E:8A:F3:15:98:38:C0:BC:6F:67:0B:23:2B X509v3 Authority Key Identifier: keyid:CB:22:4E:A3:85:72:EA:0D:A0:2F:49:CF:4D:67:A3:CB:B7:C6:E1:40 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yyJOo4Vy6g2gL0nPTWejy7fG4UA.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d1/3503ee-5b82-4231-b57a-1fd29b108a21/1/Q1i1i1A5Ui6K8xWYOMC8b2cLIys.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/d1/3503ee-5b82-4231-b57a-1fd29b108a21/1/yyJOo4Vy6g2gL0nPTWejy7fG4UA.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 91.218.241.0/24 Signature Algorithm: sha256WithRSAEncryption 21:2b:45:57:d6:d0:69:f0:6f:3a:14:1f:e1:4a:db:6e:b9:ae: 12:ce:b6:b1:64:d7:9d:40:03:db:a6:7b:be:c0:2d:35:00:97: 8e:82:ba:78:d1:5e:3b:f1:54:46:13:97:61:a1:72:b2:82:79: 75:26:f9:00:68:26:27:73:6a:16:cf:d9:dd:3d:e0:cc:fb:08: 90:c4:97:02:5f:c8:0c:85:73:16:a7:06:ec:eb:2c:97:ca:80: c0:ad:4f:d4:d2:b7:76:73:92:19:19:e3:00:38:3f:b6:e7:22: 49:9b:02:1c:8e:3c:04:54:fd:ab:14:10:c9:06:b2:f7:13:9c: 23:0a:e8:2e:68:23:e4:c8:4f:27:92:6b:16:79:53:f3:2f:c7: 40:51:07:84:22:69:e9:61:92:5b:79:bd:98:87:6b:5d:75:99: a3:6d:bf:33:67:4b:9b:33:f5:dc:29:18:81:69:d8:d5:8d:05: 59:f3:2b:ec:ef:13:85:c7:e5:f7:a2:74:ae:4e:e6:d0:e7:ed: 6b:5d:96:a0:1c:9f:6c:82:da:9b:e8:3b:63:e9:13:8f:82:da: f1:54:f0:ef:f6:89:d1:f4:19:c4:4e:33:05:22:c7:27:30:a3: 79:45:8b:57:41:9b:0c:f4:44:da:91:01:cd:7a:f2:1c:f6:42: 25:2d:44:b9 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt4NKf2c9KIzjvFilvJgpTpMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGNiMjI0ZWEzODU3MmVhMGRhMDJmNDljZjRkNjdhM2NiYjdj NmUxNDAwHhcNMjYwMTAxMDYxNzU1WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg0MzU4YjU4YjUwMzk1MjJlOGFmMzE1OTgzOGMwYmM2ZjY3MGIyMzJiMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAs5496hZ8pS8y83SwGq28ajT98So1 bFixSqHiyipb+WpBdrgHLBFGkB9ZLHBXveJMrheA9RgCSeErsQVl8WVz/b+45R/T Sv+WevWNrkdCVL/3ZhkwweXhDxJPmSaNx4F8hv/dC+EiqC5QyU00hY5EJqPPV3+L aCuSecZmKyUjjaXO6Eyz12gIIyWa5MLFfYaFub1HRKHZ5m5XPrBBiye/EDUbrljN posFiNwT7RV2r8ms1BTrfBeKPPuIozXc4yMKt8J4ZFp3OrMcXvyYBncIcQZSoXl+ wUx9N4b1DvVh3gRuU/bcqNWYVhPc2aXZHNVSeYX++mJpfH52Y9moRgNZ6wIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFENYtYtQOVIuivMVmDjAvG9nCyMrMB8GA1UdIwQY MBaAFMsiTqOFcuoNoC9Jz01no8u3xuFAMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQveXlKT280Vnk2ZzJnTDBuUFRXZWp5N2ZHNFVBLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kMS8zNTAzZWUtNWI4Mi00MjMxLWI1N2Et MWZkMjliMTA4YTIxLzEvUTFpMWkxQTVVaTZLOHhXWU9NQzhiMmNMSXlzLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kMS8zNTAzZWUtNWI4Mi00MjMxLWI1N2EtMWZkMjliMTA4YTIx LzEveXlKT280Vnk2ZzJnTDBuUFRXZWp5N2ZHNFVBLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAW9rxMA0G CSqGSIb3DQEBCwUAA4IBAQAhK0VX1tBp8G86FB/hSttuua4SzraxZNedQAPbpnu+ wC01AJeOgrp40V478VRGE5dhoXKygnl1JvkAaCYnc2oWz9ndPeDM+wiQxJcCX8gM hXMWpwbs6yyXyoDArU/U0rd2c5IZGeMAOD+25yJJmwIcjjwEVP2rFBDJBrL3E5wj CuguaCPkyE8nkmsWeVPzL8dAUQeEImnpYZJbeb2Yh2tddZmjbb8zZ0ubM/XcKRiB adjVjQVZ8yvs7xOFx+X3onSuTubQ5+1rXZagHJ9sgtqb6Dtj6ROPgtrxVPDv9onR 9BnETjMFIscnMKN5RYtXQZsM9ETakQHNevIc9kIlLUS5 -----END CERTIFICATE-----Generated at Tue Feb 10 02:46:35 2026 by rpki-client