This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/db/3b59d5-602d-4351-96bc-a108649d51e2/1/Dso0R9jjpUkdKEuWSQN3IKBjVm0.roa File: Dso0R9jjpUkdKEuWSQN3IKBjVm0.roa (raw, json) Hash identifier: 9FQomFqWvc60F+2iE+E+hXBWJiV5IXVpIcSj2ui8bw0= Subject key identifier: 0E:CA:34:47:D8:E3:A5:49:1D:28:4B:96:49:03:77:20:A0:63:56:6D Certificate issuer: /CN=5061754f7689169f6a15065095472672ba2b4589 Certificate serial: 019B7D5C0BDEA6F493205F0BB02256BBD67F Authority key identifier: 50:61:75:4F:76:89:16:9F:6A:15:06:50:95:47:26:72:BA:2B:45:89 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UGF1T3aJFp9qFQZQlUcmcrorRYk.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/db/3b59d5-602d-4351-96bc-a108649d51e2/1/Dso0R9jjpUkdKEuWSQN3IKBjVm0.roa Signing time: Fri 02 Jan 2026 06:19:02 +0000 ROA not before: Fri 02 Jan 2026 06:19:02 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 57058 IP address blocks: 91.230.106.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/db/3b59d5-602d-4351-96bc-a108649d51e2/1/UGF1T3aJFp9qFQZQlUcmcrorRYk.crl rsync://rpki.ripe.net/repository/DEFAULT/db/3b59d5-602d-4351-96bc-a108649d51e2/1/UGF1T3aJFp9qFQZQlUcmcrorRYk.mft rsync://rpki.ripe.net/repository/DEFAULT/UGF1T3aJFp9qFQZQlUcmcrorRYk.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 21:00:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7d:5c:0b:de:a6:f4:93:20:5f:0b:b0:22:56:bb:d6:7f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5061754f7689169f6a15065095472672ba2b4589 Validity Not Before: Jan 2 06:19:02 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=0eca3447d8e3a5491d284b9649037720a063566d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:4d:5e:f2:d0:1d:4d:19:47:c7:4a:c1:ff:44: c3:ec:2c:a9:17:50:a2:9e:e5:3a:1e:03:77:e3:0c: 67:23:49:27:e8:14:73:10:e7:35:5a:e7:a0:84:16: e0:6b:59:9f:07:11:66:4f:ca:46:a8:49:5c:8d:17: 23:88:bc:7f:70:4b:d6:b6:c9:1a:b7:69:3f:52:80: ce:a8:70:99:1e:44:08:49:ef:39:2e:a4:24:ce:e1: dd:e5:5d:85:d8:b2:c5:18:6f:f6:42:6d:70:9e:4d: 2c:31:4f:23:7a:8a:e8:73:97:cb:ee:e4:f8:8b:11: 27:05:32:9c:59:e5:f7:ce:76:71:6b:ec:45:8e:6b: 59:7c:8e:37:6b:cb:c9:db:d4:d0:5b:48:24:74:21: 70:5d:2e:c1:f0:43:b3:d6:ee:d0:29:1e:b0:3c:b0: 23:cf:c0:e1:ba:69:07:1f:ee:7d:c3:19:6d:c0:83: 23:89:56:2d:05:97:34:79:e2:29:8f:c1:9f:80:ab: 8d:ed:59:5e:92:00:99:8f:d4:49:fd:bd:b0:92:89: d6:25:ca:ba:04:1a:02:f0:bf:8e:2d:03:32:93:ff: b1:8e:3b:6b:a6:33:32:67:80:b7:90:a0:0a:45:68: 27:5d:e5:b8:42:bd:81:c3:70:a9:c6:f6:cf:6f:28: 6d:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0E:CA:34:47:D8:E3:A5:49:1D:28:4B:96:49:03:77:20:A0:63:56:6D X509v3 Authority Key Identifier: keyid:50:61:75:4F:76:89:16:9F:6A:15:06:50:95:47:26:72:BA:2B:45:89 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UGF1T3aJFp9qFQZQlUcmcrorRYk.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/db/3b59d5-602d-4351-96bc-a108649d51e2/1/Dso0R9jjpUkdKEuWSQN3IKBjVm0.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/db/3b59d5-602d-4351-96bc-a108649d51e2/1/UGF1T3aJFp9qFQZQlUcmcrorRYk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 91.230.106.0/24 Signature Algorithm: sha256WithRSAEncryption 0d:37:6e:51:00:5f:25:71:7f:bd:8f:8c:7d:5c:85:ef:83:9e: c2:19:5f:1c:f6:e3:9f:29:36:5f:d4:c9:4f:6c:95:1c:d2:1a: 21:64:79:68:6a:5c:82:40:b7:d7:d5:fe:f3:39:f7:aa:da:a0: f2:91:02:53:57:ab:d0:c6:3b:80:10:0f:b3:8b:aa:67:a2:b7: 81:17:6c:e7:c2:9e:a9:95:c1:b1:ed:42:67:8b:a9:61:38:62: d1:6a:41:fa:48:eb:b9:e2:77:92:9b:eb:12:62:11:94:3a:12: 42:22:bf:65:e5:69:a9:6f:57:8c:86:ec:bc:fe:45:b4:e1:09: d0:a8:b9:87:eb:e3:9d:21:c0:4a:dd:e8:95:2f:06:21:9e:79: d2:86:d0:fc:49:fc:a6:2d:f8:52:6e:35:37:b2:7d:fd:5b:2f: d3:31:12:72:b6:36:be:da:b3:3e:81:a7:37:aa:d8:78:41:d9: 3e:91:a3:73:ba:b9:13:7a:86:09:7e:87:39:37:ee:a4:ac:d0: b0:e0:03:58:9d:3e:e6:1e:ae:66:9f:42:12:10:43:92:57:2a: d5:46:b4:61:6d:ba:10:b7:5a:6c:98:fa:56:99:70:13:30:47: 5c:5c:76:62:fc:d6:e0:3d:f6:ea:d0:f0:f5:45:35:1d:4a:08: 9a:5c:3a:14 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt9XAvepvSTIF8LsCJWu9Z/MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDUwNjE3NTRmNzY4OTE2OWY2YTE1MDY1MDk1NDcyNjcyYmEy YjQ1ODkwHhcNMjYwMTAyMDYxOTAyWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygwZWNhMzQ0N2Q4ZTNhNTQ5MWQyODRiOTY0OTAzNzcyMGEwNjM1NjZkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtU1e8tAdTRlHx0rB/0TD7CypF1Ci nuU6HgN34wxnI0kn6BRzEOc1WueghBbga1mfBxFmT8pGqElcjRcjiLx/cEvWtska t2k/UoDOqHCZHkQISe85LqQkzuHd5V2F2LLFGG/2Qm1wnk0sMU8jeoroc5fL7uT4 ixEnBTKcWeX3znZxa+xFjmtZfI43a8vJ29TQW0gkdCFwXS7B8EOz1u7QKR6wPLAj z8DhumkHH+59wxltwIMjiVYtBZc0eeIpj8GfgKuN7VlekgCZj9RJ/b2wkonWJcq6 BBoC8L+OLQMyk/+xjjtrpjMyZ4C3kKAKRWgnXeW4Qr2Bw3CpxvbPbyhtLwIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFA7KNEfY46VJHShLlkkDdyCgY1ZtMB8GA1UdIwQY MBaAFFBhdU92iRafahUGUJVHJnK6K0WJMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvVUdGMVQzYUpGcDlxRlFaUWxVY21jcm9yUllrLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kYi8zYjU5ZDUtNjAyZC00MzUxLTk2YmMt YTEwODY0OWQ1MWUyLzEvRHNvMFI5ampwVWtkS0V1V1NRTjNJS0JqVm0wLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kYi8zYjU5ZDUtNjAyZC00MzUxLTk2YmMtYTEwODY0OWQ1MWUy LzEvVUdGMVQzYUpGcDlxRlFaUWxVY21jcm9yUllrLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAW+ZqMA0G CSqGSIb3DQEBCwUAA4IBAQANN25RAF8lcX+9j4x9XIXvg57CGV8c9uOfKTZf1MlP bJUc0hohZHloalyCQLfX1f7zOfeq2qDykQJTV6vQxjuAEA+zi6pnoreBF2znwp6p lcGx7UJni6lhOGLRakH6SOu54neSm+sSYhGUOhJCIr9l5Wmpb1eMhuy8/kW04QnQ qLmH6+OdIcBK3eiVLwYhnnnShtD8SfymLfhSbjU3sn39Wy/TMRJytja+2rM+gac3 qth4Qdk+kaNzurkTeoYJfoc5N+6krNCw4ANYnT7mHq5mn0ISEEOSVyrVRrRhbboQ t1psmPpWmXATMEdcXHZi/NbgPfbq0PD1RTUdSgiaXDoU -----END CERTIFICATE-----Generated at Tue Feb 10 04:31:03 2026 by rpki-client