This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/da/6b91ab-99db-4648-b153-6e2d97ca15ff/1/pRvUJqk2YIK32FXKqRhubG5xKQw.roa File: pRvUJqk2YIK32FXKqRhubG5xKQw.roa (raw, json) Hash identifier: LfT6/KbbWOdFJ/9LHrdfUEsEVQTe89HYGACVUWRNkhk= Subject key identifier: A5:1B:D4:26:A9:36:60:82:B7:D8:55:CA:A9:18:6E:6C:6E:71:29:0C Certificate issuer: /CN=f324581e4368825d5e13f4f2a0d6ff8e484c95e6 Certificate serial: 019B78A31C28F15F678DF184923F407EDFDC Authority key identifier: F3:24:58:1E:43:68:82:5D:5E:13:F4:F2:A0:D6:FF:8E:48:4C:95:E6 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8yRYHkNogl1eE_TyoNb_jkhMleY.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/da/6b91ab-99db-4648-b153-6e2d97ca15ff/1/pRvUJqk2YIK32FXKqRhubG5xKQw.roa Signing time: Thu 01 Jan 2026 08:18:34 +0000 ROA not before: Thu 01 Jan 2026 08:18:34 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 34872 IP address blocks: 109.205.193.0/24 maxlen: 24 2a01:fb01::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/da/6b91ab-99db-4648-b153-6e2d97ca15ff/1/8yRYHkNogl1eE_TyoNb_jkhMleY.crl rsync://rpki.ripe.net/repository/DEFAULT/da/6b91ab-99db-4648-b153-6e2d97ca15ff/1/8yRYHkNogl1eE_TyoNb_jkhMleY.mft rsync://rpki.ripe.net/repository/DEFAULT/8yRYHkNogl1eE_TyoNb_jkhMleY.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 20 Jan 2026 08:02:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:78:a3:1c:28:f1:5f:67:8d:f1:84:92:3f:40:7e:df:dc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=f324581e4368825d5e13f4f2a0d6ff8e484c95e6 Validity Not Before: Jan 1 08:18:34 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=a51bd426a9366082b7d855caa9186e6c6e71290c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:b8:c9:4a:b1:c7:7b:fd:9e:e6:38:d6:34:be: 24:16:54:f7:f5:05:29:23:19:e8:d7:10:8d:59:bf: 8f:32:e0:a8:0c:76:3a:75:c9:93:cf:81:02:0d:44: 5f:58:42:ed:03:3f:ae:51:52:86:ce:4e:ce:70:48: 68:8b:c6:29:4e:f2:d2:d9:96:6d:39:35:0a:78:5c: 86:ef:17:25:bf:2b:ca:d4:f2:00:e9:b1:fc:e1:af: b2:9d:da:3e:f4:57:40:c0:d8:a1:ae:ac:36:dd:31: 7a:a5:02:b2:3d:19:55:63:ea:db:4d:73:a9:19:5f: 85:e3:34:5e:31:12:ce:57:b0:a0:e1:f2:48:92:71: d9:76:66:24:67:cf:5e:e9:4d:b0:bd:84:05:4d:da: 8e:d8:4a:ab:7b:7c:7f:aa:52:17:d8:84:7f:12:6c: ab:5e:63:dd:07:2a:5b:98:44:c2:02:ae:21:02:11: 2b:78:c1:56:1b:20:32:b4:7c:cf:e5:6e:2a:fa:c0: f0:b3:b3:9b:4b:19:d0:7c:05:e3:a3:33:e3:77:21: 51:2d:bf:ef:d4:28:5e:3c:66:0d:00:d2:da:13:4f: 19:29:69:d5:73:29:c7:31:a1:e2:f5:b6:df:1c:fc: 00:eb:aa:e1:82:84:e1:ed:ce:9b:fe:49:04:9d:40: 41:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A5:1B:D4:26:A9:36:60:82:B7:D8:55:CA:A9:18:6E:6C:6E:71:29:0C X509v3 Authority Key Identifier: keyid:F3:24:58:1E:43:68:82:5D:5E:13:F4:F2:A0:D6:FF:8E:48:4C:95:E6 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8yRYHkNogl1eE_TyoNb_jkhMleY.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/da/6b91ab-99db-4648-b153-6e2d97ca15ff/1/pRvUJqk2YIK32FXKqRhubG5xKQw.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/da/6b91ab-99db-4648-b153-6e2d97ca15ff/1/8yRYHkNogl1eE_TyoNb_jkhMleY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 109.205.193.0/24 IPv6: 2a01:fb01::/32 Signature Algorithm: sha256WithRSAEncryption 6e:66:85:22:02:8b:19:26:e2:0e:e6:dd:72:bd:55:d9:c5:eb: f2:33:48:a2:7c:6b:04:58:f7:b2:dd:a8:f1:3a:ae:be:25:c5: 59:76:6c:1f:4b:af:b8:4e:60:bc:d1:7c:79:20:8a:93:bc:39: ca:29:cc:88:9a:8b:10:14:2d:fb:da:07:01:a2:ab:a1:8a:fa: 25:12:50:80:17:fd:78:f8:5c:62:40:a2:12:ee:bc:e4:3a:4a: 6f:9a:9a:ab:53:02:99:3a:95:10:e6:36:d7:c7:22:0d:c3:63: 6d:f2:61:f6:a4:2a:dd:2c:c5:61:97:7b:34:03:2c:d1:d0:d5: 3e:b3:7f:65:61:e2:7a:36:0c:78:46:eb:64:d5:55:05:b5:f5: 97:9e:a7:36:54:ef:cf:b2:76:96:25:92:c8:8b:fd:05:62:eb: 39:b9:be:70:7a:4c:dc:8f:78:12:cb:b2:94:ac:04:d2:70:df: 2c:ba:ea:a6:a7:96:14:c2:8b:84:fa:12:da:b2:0b:64:06:c6: ef:80:38:6e:40:37:22:72:6e:f2:88:7e:54:10:42:f5:86:0d: 10:5a:e0:95:3c:12:b9:4e:cc:57:42:49:66:a0:16:05:96:ce: e5:db:b8:ad:18:e1:17:37:33:89:09:4c:f8:70:04:47:1d:76: f3:14:57:00 -----BEGIN CERTIFICATE----- MIIFDDCCA/SgAwIBAgISAZt4oxwo8V9njfGEkj9Aft/cMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGYzMjQ1ODFlNDM2ODgyNWQ1ZTEzZjRmMmEwZDZmZjhlNDg0 Yzk1ZTYwHhcNMjYwMTAxMDgxODM0WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhhNTFiZDQyNmE5MzY2MDgyYjdkODU1Y2FhOTE4NmU2YzZlNzEyOTBjMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAurjJSrHHe/2e5jjWNL4kFlT39QUp Ixno1xCNWb+PMuCoDHY6dcmTz4ECDURfWELtAz+uUVKGzk7OcEhoi8YpTvLS2ZZt OTUKeFyG7xclvyvK1PIA6bH84a+yndo+9FdAwNihrqw23TF6pQKyPRlVY+rbTXOp GV+F4zReMRLOV7Cg4fJIknHZdmYkZ89e6U2wvYQFTdqO2Eqre3x/qlIX2IR/Emyr XmPdBypbmETCAq4hAhEreMFWGyAytHzP5W4q+sDws7ObSxnQfAXjozPjdyFRLb/v 1ChePGYNANLaE08ZKWnVcynHMaHi9bbfHPwA66rhgoTh7c6b/kkEnUBBTwIDAQAB o4ICGDCCAhQwHQYDVR0OBBYEFKUb1CapNmCCt9hVyqkYbmxucSkMMB8GA1UdIwQY MBaAFPMkWB5DaIJdXhP08qDW/45ITJXmMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvOHlSWUhrTm9nbDFlRV9UeW9OYl9qa2hNbGVZLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kYS82YjkxYWItOTlkYi00NjQ4LWIxNTMt NmUyZDk3Y2ExNWZmLzEvcFJ2VUpxazJZSUszMkZYS3FSaHViRzV4S1F3LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kYS82YjkxYWItOTlkYi00NjQ4LWIxNTMtNmUyZDk3Y2ExNWZm LzEvOHlSWUhrTm9nbDFlRV9UeW9OYl9qa2hNbGVZLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMC4GCCsGAQUFBwEHAQH/BB8wHTAMBAIAATAGAwQAbc3BMA0E AgACMAcDBQAqAfsBMA0GCSqGSIb3DQEBCwUAA4IBAQBuZoUiAosZJuIO5t1yvVXZ xevyM0iifGsEWPey3ajxOq6+JcVZdmwfS6+4TmC80Xx5IIqTvDnKKcyImosQFC37 2gcBoquhivolElCAF/14+FxiQKIS7rzkOkpvmpqrUwKZOpUQ5jbXxyINw2Nt8mH2 pCrdLMVhl3s0AyzR0NU+s39lYeJ6Ngx4Rutk1VUFtfWXnqc2VO/PsnaWJZLIi/0F Yus5ub5wekzcj3gSy7KUrATScN8suuqmp5YUwouE+hLasgtkBsbvgDhuQDcicm7y iH5UEEL1hg0QWuCVPBK5TsxXQklmoBYFls7l27itGOEXNzOJCUz4cARHHXbzFFcA -----END CERTIFICATE-----Generated at Mon Jan 19 14:41:00 2026 by rpki-client