This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/db/f09a7f-5761-45a7-9ccb-1f3ed6d881b8/1/1-4k_j5tlYDY-0PvjETD04LazkDs.roa File: 1-4k_j5tlYDY-0PvjETD04LazkDs.roa (raw, json) Hash identifier: dUn8gRxx7kqyKB4xZnZt/reCOUYtE+UapqvIfJ65GYw= Subject key identifier: FB:89:3F:8F:9B:65:60:36:3E:D0:FB:E3:11:30:F4:E0:B6:B3:90:3B Certificate issuer: /CN=9520bf8c77226a3fa88ebe11cc8f1169cc560a79 Certificate serial: 019B7DCAC1F6D96DF853520411DCA7828C75 Authority key identifier: 95:20:BF:8C:77:22:6A:3F:A8:8E:BE:11:CC:8F:11:69:CC:56:0A:79 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lSC_jHciaj-ojr4RzI8RacxWCnk.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/db/f09a7f-5761-45a7-9ccb-1f3ed6d881b8/1/1-4k_j5tlYDY-0PvjETD04LazkDs.roa Signing time: Fri 02 Jan 2026 08:19:58 +0000 ROA not before: Fri 02 Jan 2026 08:19:58 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 57265 IP address blocks: 91.216.41.0/24 maxlen: 24 2001:678:71c::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/db/f09a7f-5761-45a7-9ccb-1f3ed6d881b8/1/lSC_jHciaj-ojr4RzI8RacxWCnk.crl rsync://rpki.ripe.net/repository/DEFAULT/db/f09a7f-5761-45a7-9ccb-1f3ed6d881b8/1/lSC_jHciaj-ojr4RzI8RacxWCnk.mft rsync://rpki.ripe.net/repository/DEFAULT/lSC_jHciaj-ojr4RzI8RacxWCnk.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 14:00:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7d:ca:c1:f6:d9:6d:f8:53:52:04:11:dc:a7:82:8c:75 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9520bf8c77226a3fa88ebe11cc8f1169cc560a79 Validity Not Before: Jan 2 08:19:58 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=fb893f8f9b6560363ed0fbe31130f4e0b6b3903b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:99:ef:c5:35:87:d4:1c:b1:c5:b7:aa:3d:3c:da: 4c:f8:49:db:e5:f6:e2:84:0d:fe:99:ec:8c:bd:95: fd:a5:ec:4b:e3:8f:01:0b:df:a7:18:e2:d2:b0:a5: 78:fa:74:ab:a2:93:f0:0f:4e:ce:97:9e:0d:83:59: c0:0c:6e:1f:4d:95:e8:72:50:c1:9c:c7:22:28:5f: 26:e6:1d:48:28:d9:ca:02:63:8c:48:d8:4c:be:e8: da:dc:9f:3c:bc:de:a8:d6:bb:76:69:0d:0e:ab:97: a0:4b:a4:0f:54:90:4c:2b:98:75:cf:be:7e:01:71: 3c:48:dc:d1:81:b5:60:db:0b:e2:6a:6e:50:c6:64: 9d:9a:cf:db:8c:80:d7:c1:bf:4b:e3:ee:a6:50:41: ff:18:98:71:03:ac:f0:49:90:58:19:48:37:41:0c: 24:27:05:c2:86:be:6a:88:5b:56:a7:88:70:4b:92: 9a:75:f8:9b:1e:e7:aa:d6:84:91:d8:4d:e1:4a:79: 8d:de:ad:7a:57:2c:dd:19:10:ed:90:98:71:88:4d: 83:ed:17:d9:3a:26:a4:d2:64:ce:c6:4f:68:73:11: 1b:4c:87:21:10:31:34:ed:16:b2:f5:e6:ec:6a:cc: c5:39:8a:23:c6:d1:64:62:14:0b:6f:29:c5:88:34: 68:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FB:89:3F:8F:9B:65:60:36:3E:D0:FB:E3:11:30:F4:E0:B6:B3:90:3B X509v3 Authority Key Identifier: keyid:95:20:BF:8C:77:22:6A:3F:A8:8E:BE:11:CC:8F:11:69:CC:56:0A:79 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lSC_jHciaj-ojr4RzI8RacxWCnk.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/db/f09a7f-5761-45a7-9ccb-1f3ed6d881b8/1/1-4k_j5tlYDY-0PvjETD04LazkDs.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/db/f09a7f-5761-45a7-9ccb-1f3ed6d881b8/1/lSC_jHciaj-ojr4RzI8RacxWCnk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 91.216.41.0/24 IPv6: 2001:678:71c::/48 Signature Algorithm: sha256WithRSAEncryption 32:7d:e6:ed:1a:47:f7:2e:e1:4d:a3:7c:74:82:91:65:62:8d: 06:06:58:2c:25:c2:3d:50:40:5b:4f:82:4a:09:ed:57:83:d0: 38:c5:70:96:ad:5d:cc:c9:ff:25:38:6b:af:49:d2:6e:8a:16: e6:e1:7b:bd:8a:ab:b4:c5:9c:59:aa:db:0b:7a:0b:58:d7:3e: 36:3f:6f:6f:cd:56:31:47:76:e3:fa:44:65:97:3a:86:b4:04: 36:43:8c:8b:b4:29:f3:7d:52:1c:07:78:5f:6a:6b:8f:6f:99: fa:f4:b4:ef:99:34:d1:ad:38:ce:e8:4c:6f:ba:fd:c9:f6:ba: 27:af:12:da:f3:ef:39:94:9f:7f:fd:a8:5a:81:97:07:2b:36: 0e:f1:6f:52:03:d9:1e:92:0a:87:d8:c2:a3:86:27:7c:a9:4e: 00:29:73:e5:ec:14:3c:65:0a:3c:bb:d5:eb:ef:37:4d:49:f0: 1a:30:08:2a:61:a3:66:0a:14:0d:fc:63:73:15:90:be:9f:2b: 17:31:b8:fc:73:ce:97:ca:ad:b4:b4:c6:b6:3b:3d:46:5a:e9: 73:f4:7f:59:10:63:7c:20:80:4e:67:85:95:39:8b:bd:c0:98: b0:6e:fe:a9:bd:af:6b:f1:79:1d:d3:d5:96:fa:b6:ce:96:fb: 0d:06:5f:49 -----BEGIN CERTIFICATE----- MIIFDzCCA/egAwIBAgISAZt9ysH22W34U1IEEdyngox1MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDk1MjBiZjhjNzcyMjZhM2ZhODhlYmUxMWNjOGYxMTY5Y2M1 NjBhNzkwHhcNMjYwMTAyMDgxOTU4WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhmYjg5M2Y4ZjliNjU2MDM2M2VkMGZiZTMxMTMwZjRlMGI2YjM5MDNiMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAme/FNYfUHLHFt6o9PNpM+Enb5fbi hA3+meyMvZX9pexL448BC9+nGOLSsKV4+nSropPwD07Ol54Ng1nADG4fTZXoclDB nMciKF8m5h1IKNnKAmOMSNhMvuja3J88vN6o1rt2aQ0Oq5egS6QPVJBMK5h1z75+ AXE8SNzRgbVg2wviam5QxmSdms/bjIDXwb9L4+6mUEH/GJhxA6zwSZBYGUg3QQwk JwXChr5qiFtWp4hwS5KadfibHueq1oSR2E3hSnmN3q16VyzdGRDtkJhxiE2D7RfZ Oiak0mTOxk9ocxEbTIchEDE07Ray9ebsaszFOYojxtFkYhQLbynFiDRo5wIDAQAB o4ICGzCCAhcwHQYDVR0OBBYEFPuJP4+bZWA2PtD74xEw9OC2s5A7MB8GA1UdIwQY MBaAFJUgv4x3Imo/qI6+EcyPEWnMVgp5MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvbFNDX2pIY2lhai1vanI0UnpJOFJhY3hXQ25rLmNlcjCB jgYIKwYBBQUHAQsEgYEwfzB9BggrBgEFBQcwC4ZxcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kYi9mMDlhN2YtNTc2MS00NWE3LTljY2It MWYzZWQ2ZDg4MWI4LzEvMS00a19qNXRsWURZLTBQdmpFVEQwNExhemtEcy5yb2Ew gYEGA1UdHwR6MHgwdqB0oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0 b3J5L0RFRkFVTFQvZGIvZjA5YTdmLTU3NjEtNDVhNy05Y2NiLTFmM2VkNmQ4ODFi OC8xL2xTQ19qSGNpYWotb2pyNFJ6SThSYWN4V0Nuay5jcmwwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAwBggrBgEFBQcBBwEB/wQhMB8wDAQCAAEwBgMEAFvYKTAP BAIAAjAJAwcAIAEGeAccMA0GCSqGSIb3DQEBCwUAA4IBAQAyfebtGkf3LuFNo3x0 gpFlYo0GBlgsJcI9UEBbT4JKCe1Xg9A4xXCWrV3Myf8lOGuvSdJuihbm4Xu9iqu0 xZxZqtsLegtY1z42P29vzVYxR3bj+kRllzqGtAQ2Q4yLtCnzfVIcB3hfamuPb5n6 9LTvmTTRrTjO6Exvuv3J9ronrxLa8+85lJ9//ahagZcHKzYO8W9SA9kekgqH2MKj hid8qU4AKXPl7BQ8ZQo8u9Xr7zdNSfAaMAgqYaNmChQN/GNzFZC+nysXMbj8c86X yq20tMa2Oz1GWulz9H9ZEGN8IIBOZ4WVOYu9wJiwbv6pva9r8Xkd09WW+rbOlvsN Bl9J -----END CERTIFICATE-----Generated at Mon Feb 9 22:36:30 2026 by rpki-client