This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d8/d0b18c-c256-49f5-bc17-ddd73d509e12/1/d0hB3sr_J40CjN3DPScI5WDQSFY.roa File: d0hB3sr_J40CjN3DPScI5WDQSFY.roa (raw, json) Hash identifier: ZEZewkOpSdtKFHUVQXPwxArZxLY7Jpp1t6GgLUjAr+U= Subject key identifier: 77:48:41:DE:CA:FF:27:8D:02:8C:DD:C3:3D:27:08:E5:60:D0:48:56 Certificate issuer: /CN=345e6e1d66fc047e0e89ff045c2d08ca17d55ea5 Certificate serial: 019B7834ECA92E265CF0FB44E5C870F61D60 Authority key identifier: 34:5E:6E:1D:66:FC:04:7E:0E:89:FF:04:5C:2D:08:CA:17:D5:5E:A5 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NF5uHWb8BH4Oif8EXC0IyhfVXqU.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d8/d0b18c-c256-49f5-bc17-ddd73d509e12/1/d0hB3sr_J40CjN3DPScI5WDQSFY.roa Signing time: Thu 01 Jan 2026 06:18:12 +0000 ROA not before: Thu 01 Jan 2026 06:18:12 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 48609 IP address blocks: 91.209.207.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d8/d0b18c-c256-49f5-bc17-ddd73d509e12/1/NF5uHWb8BH4Oif8EXC0IyhfVXqU.crl rsync://rpki.ripe.net/repository/DEFAULT/d8/d0b18c-c256-49f5-bc17-ddd73d509e12/1/NF5uHWb8BH4Oif8EXC0IyhfVXqU.mft rsync://rpki.ripe.net/repository/DEFAULT/NF5uHWb8BH4Oif8EXC0IyhfVXqU.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:78:34:ec:a9:2e:26:5c:f0:fb:44:e5:c8:70:f6:1d:60 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=345e6e1d66fc047e0e89ff045c2d08ca17d55ea5 Validity Not Before: Jan 1 06:18:12 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=774841decaff278d028cddc33d2708e560d04856 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:4b:c1:6c:f9:cc:98:6c:b3:b0:80:8a:1a:be: a5:e2:06:57:07:ea:eb:22:6e:56:11:64:4c:ad:35: 4d:3b:1c:a5:7a:ca:d3:87:f2:41:93:f8:6e:77:99: 7c:82:47:fc:4b:32:34:e3:46:d7:7f:dc:7c:c7:5c: be:28:e2:de:6f:88:57:c6:2d:ed:2b:f4:12:18:eb: f3:e3:4c:74:5d:b9:51:75:1a:b1:b5:2d:79:f9:fb: 95:3b:53:d3:df:32:3e:6f:ab:f9:2d:c1:7a:0c:fe: 6b:3f:5e:5e:89:b0:d8:32:d8:26:30:fa:f0:5c:ee: c1:13:30:45:79:b9:b7:f6:a2:b4:3b:c1:ef:8d:16: 4b:f3:6c:6c:76:21:1e:f5:23:7d:17:66:0b:13:b9: 87:52:c5:4e:fc:1c:57:53:66:1e:76:c7:af:c6:6d: 84:08:f2:b3:52:db:2d:e1:5c:a7:f7:e8:70:a8:c5: 4d:20:78:d2:a1:ee:05:11:ec:65:a8:51:15:6c:7c: ab:4d:61:11:54:81:51:be:88:6c:40:89:8f:fb:96: 7d:41:20:2a:1f:70:5d:b0:e4:b9:b4:52:2c:0f:4e: 1e:f3:97:37:8d:fb:94:81:39:58:99:97:81:91:db: 4e:0a:3f:fe:d9:e8:0a:cc:24:30:80:e8:da:ae:76: 01:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 77:48:41:DE:CA:FF:27:8D:02:8C:DD:C3:3D:27:08:E5:60:D0:48:56 X509v3 Authority Key Identifier: keyid:34:5E:6E:1D:66:FC:04:7E:0E:89:FF:04:5C:2D:08:CA:17:D5:5E:A5 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NF5uHWb8BH4Oif8EXC0IyhfVXqU.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/d0b18c-c256-49f5-bc17-ddd73d509e12/1/d0hB3sr_J40CjN3DPScI5WDQSFY.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/d0b18c-c256-49f5-bc17-ddd73d509e12/1/NF5uHWb8BH4Oif8EXC0IyhfVXqU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 91.209.207.0/24 Signature Algorithm: sha256WithRSAEncryption 1b:62:8a:d5:f5:56:e1:5e:74:4c:ec:af:d1:b9:f6:56:90:d1: 85:0f:43:97:4f:c3:1b:a1:4c:b8:c9:52:66:75:6a:a2:7c:cc: fd:fa:3d:ee:d7:69:4d:0d:14:8f:5b:19:bb:f4:06:5f:01:ff: e5:3d:5d:3c:da:c8:6b:d4:c7:5d:27:62:e3:01:e7:b1:18:e0: c4:b0:11:0f:1d:79:f5:1a:49:b8:29:82:b6:20:95:95:01:03: 20:3b:14:fa:8b:91:cb:bb:c4:71:5d:a9:ed:77:1f:8b:e7:59: 0b:13:82:e9:19:00:c7:34:1f:c1:d1:68:58:e9:fa:a2:46:e6: f7:eb:11:c5:cd:c5:07:67:df:9d:1a:79:35:b2:2e:7c:20:6c: 2e:00:f0:da:72:44:11:77:8a:78:3c:c5:ac:0e:78:ea:0b:69: d0:81:c7:1e:f4:44:de:e5:19:ff:d3:de:bc:45:6c:33:ca:bb: 2c:41:d8:02:57:85:86:bc:a1:db:24:39:cd:4b:33:b1:75:e7: 23:54:92:44:5b:ff:73:32:e6:75:d6:f6:7b:a9:0f:5a:2b:11: ea:7b:2d:ab:79:87:8d:53:ba:86:e8:0f:42:c2:29:d0:bc:96: 18:94:5f:42:4f:40:bf:c0:f9:c2:44:da:46:2b:03:33:55:06: 57:f8:44:82 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt4NOypLiZc8PtE5chw9h1gMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDM0NWU2ZTFkNjZmYzA0N2UwZTg5ZmYwNDVjMmQwOGNhMTdk NTVlYTUwHhcNMjYwMTAxMDYxODEyWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg3NzQ4NDFkZWNhZmYyNzhkMDI4Y2RkYzMzZDI3MDhlNTYwZDA0ODU2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAskvBbPnMmGyzsICKGr6l4gZXB+rr Im5WEWRMrTVNOxylesrTh/JBk/hud5l8gkf8SzI040bXf9x8x1y+KOLeb4hXxi3t K/QSGOvz40x0XblRdRqxtS15+fuVO1PT3zI+b6v5LcF6DP5rP15eibDYMtgmMPrw XO7BEzBFebm39qK0O8HvjRZL82xsdiEe9SN9F2YLE7mHUsVO/BxXU2Yedsevxm2E CPKzUtst4Vyn9+hwqMVNIHjSoe4FEexlqFEVbHyrTWERVIFRvohsQImP+5Z9QSAq H3BdsOS5tFIsD04e85c3jfuUgTlYmZeBkdtOCj/+2egKzCQwgOjarnYBUwIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFHdIQd7K/yeNAozdwz0nCOVg0EhWMB8GA1UdIwQY MBaAFDRebh1m/AR+Don/BFwtCMoX1V6lMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvTkY1dUhXYjhCSDRPaWY4RVhDMEl5aGZWWHFVLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kOC9kMGIxOGMtYzI1Ni00OWY1LWJjMTct ZGRkNzNkNTA5ZTEyLzEvZDBoQjNzcl9KNDBDak4zRFBTY0k1V0RRU0ZZLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kOC9kMGIxOGMtYzI1Ni00OWY1LWJjMTctZGRkNzNkNTA5ZTEy LzEvTkY1dUhXYjhCSDRPaWY4RVhDMEl5aGZWWHFVLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAW9HPMA0G CSqGSIb3DQEBCwUAA4IBAQAbYorV9VbhXnRM7K/RufZWkNGFD0OXT8MboUy4yVJm dWqifMz9+j3u12lNDRSPWxm79AZfAf/lPV082shr1MddJ2LjAeexGODEsBEPHXn1 Gkm4KYK2IJWVAQMgOxT6i5HLu8RxXantdx+L51kLE4LpGQDHNB/B0WhY6fqiRub3 6xHFzcUHZ9+dGnk1si58IGwuAPDackQRd4p4PMWsDnjqC2nQgcce9ETe5Rn/0968 RWwzyrssQdgCV4WGvKHbJDnNSzOxdecjVJJEW/9zMuZ11vZ7qQ9aKxHqey2reYeN U7qG6A9CwinQvJYYlF9CT0C/wPnCRNpGKwMzVQZX+ESC -----END CERTIFICATE-----Generated at Mon Feb 9 19:44:44 2026 by rpki-client