This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dd/9ba38a-4852-413d-9cd2-9990e2d9eafe/1/gz44IlwvmdngJ7MAvWa0_CxpoGM.roa File: gz44IlwvmdngJ7MAvWa0_CxpoGM.roa (raw, json) Hash identifier: D9bXyYSFewFXreZW5UnraVgjdDmrZtmTiT8UuzTqJgw= Subject key identifier: 83:3E:38:22:5C:2F:99:D9:E0:27:B3:00:BD:66:B4:FC:2C:69:A0:63 Certificate issuer: /CN=1e5b334965788794d6f147a2f004d13be3257dc4 Certificate serial: 019B77C6FBD7AABB64F274678CE12580D700 Authority key identifier: 1E:5B:33:49:65:78:87:94:D6:F1:47:A2:F0:04:D1:3B:E3:25:7D:C4 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HlszSWV4h5TW8Uei8ATRO-MlfcQ.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/dd/9ba38a-4852-413d-9cd2-9990e2d9eafe/1/gz44IlwvmdngJ7MAvWa0_CxpoGM.roa Signing time: Thu 01 Jan 2026 04:18:07 +0000 ROA not before: Thu 01 Jan 2026 04:18:07 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 62240 IP address blocks: 91.193.232.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/dd/9ba38a-4852-413d-9cd2-9990e2d9eafe/1/HlszSWV4h5TW8Uei8ATRO-MlfcQ.crl rsync://rpki.ripe.net/repository/DEFAULT/dd/9ba38a-4852-413d-9cd2-9990e2d9eafe/1/HlszSWV4h5TW8Uei8ATRO-MlfcQ.mft rsync://rpki.ripe.net/repository/DEFAULT/HlszSWV4h5TW8Uei8ATRO-MlfcQ.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 20 Jan 2026 15:01:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:77:c6:fb:d7:aa:bb:64:f2:74:67:8c:e1:25:80:d7:00 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1e5b334965788794d6f147a2f004d13be3257dc4 Validity Not Before: Jan 1 04:18:07 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=833e38225c2f99d9e027b300bd66b4fc2c69a063 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:a2:e5:ab:54:46:9a:9b:42:1f:30:e2:f7:5b: ab:da:41:70:d6:98:51:f2:52:3f:24:a9:9f:56:ac: 2f:78:50:f4:40:21:ea:fb:d0:60:30:db:9e:b6:bd: ac:c5:d2:b3:bb:d2:0d:3c:a6:7b:0a:e3:2a:8e:2d: 73:46:f3:40:b8:95:cb:17:1c:47:22:a0:c3:3c:a1: 45:30:68:63:4c:56:bb:d1:23:c5:54:50:77:79:ad: 2f:5f:d7:a7:1d:22:d4:5a:8b:8a:21:07:e8:a2:7c: b1:7f:27:bc:37:9b:d8:77:56:af:50:3e:df:f5:8e: f9:f4:18:d9:5b:4d:87:e9:d4:f4:7b:c2:7f:de:7e: a3:34:54:fd:b6:88:8a:ad:29:a4:07:9f:af:8f:3a: 42:f7:0e:ce:7e:50:9e:5f:9c:2c:cf:41:ca:90:cd: 3a:93:2f:6a:a3:5c:f4:d4:a0:30:98:f8:65:69:de: 6d:4c:f7:d6:ad:8a:f2:df:1c:2d:03:8a:b5:22:87: ed:70:30:13:bf:16:6c:21:a6:61:16:28:cc:6f:dc: fe:8d:f9:3e:f6:94:78:aa:2e:f5:20:67:1e:78:10: 49:d1:55:6a:53:34:3e:c1:c3:bd:77:e1:6e:83:21: fd:9e:75:23:39:31:33:15:80:86:c4:1d:1b:44:76: c2:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 83:3E:38:22:5C:2F:99:D9:E0:27:B3:00:BD:66:B4:FC:2C:69:A0:63 X509v3 Authority Key Identifier: keyid:1E:5B:33:49:65:78:87:94:D6:F1:47:A2:F0:04:D1:3B:E3:25:7D:C4 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HlszSWV4h5TW8Uei8ATRO-MlfcQ.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/9ba38a-4852-413d-9cd2-9990e2d9eafe/1/gz44IlwvmdngJ7MAvWa0_CxpoGM.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/9ba38a-4852-413d-9cd2-9990e2d9eafe/1/HlszSWV4h5TW8Uei8ATRO-MlfcQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 91.193.232.0/24 Signature Algorithm: sha256WithRSAEncryption a2:fe:7c:3c:9d:45:7e:9d:b3:ba:ad:bd:40:41:6b:aa:b5:24: 2e:4a:05:bf:9a:56:fe:9b:cd:20:d7:75:5e:7d:e0:86:e7:dd: f5:9c:10:7e:84:4f:92:3b:a7:ab:d0:f4:d2:b1:05:69:ba:bb: 7d:b8:32:2a:76:92:4c:41:0b:57:29:b7:cd:1b:d5:f1:06:39: 9f:85:9a:77:b4:2a:cc:99:60:eb:9b:97:b1:72:87:73:49:da: ef:bb:9f:ab:91:ee:55:36:88:af:6c:7e:17:d3:61:22:59:68: 7a:fb:8a:07:a6:94:41:c8:94:89:8c:2f:67:21:18:f5:36:78: 7e:da:a4:fb:45:86:1a:e0:63:9b:b0:f4:55:41:c6:0d:4c:7f: ff:1b:15:69:0b:99:10:2e:df:99:61:e9:44:c2:1d:ec:08:c0: 81:e8:11:2b:2a:32:e8:6a:18:4d:ff:a5:e9:59:5a:51:a7:33: 88:a7:59:93:f2:0d:fb:42:c6:f4:9c:69:fb:70:be:c2:fc:9a: 97:3a:dc:42:4a:6d:d9:3f:3b:ae:21:94:a9:8f:2b:d6:df:1d: 45:d2:1c:f0:5d:ed:3a:b9:65:b2:98:df:92:21:4a:93:c3:c3: b2:a4:35:31:1d:77:c4:1d:8e:33:a8:3b:3e:c5:cf:5f:0f:b4: 1c:fe:be:93 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt3xvvXqrtk8nRnjOElgNcAMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDFlNWIzMzQ5NjU3ODg3OTRkNmYxNDdhMmYwMDRkMTNiZTMy NTdkYzQwHhcNMjYwMTAxMDQxODA3WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg4MzNlMzgyMjVjMmY5OWQ5ZTAyN2IzMDBiZDY2YjRmYzJjNjlhMDYzMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsKLlq1RGmptCHzDi91ur2kFw1phR 8lI/JKmfVqwveFD0QCHq+9BgMNuetr2sxdKzu9INPKZ7CuMqji1zRvNAuJXLFxxH IqDDPKFFMGhjTFa70SPFVFB3ea0vX9enHSLUWouKIQfoonyxfye8N5vYd1avUD7f 9Y759BjZW02H6dT0e8J/3n6jNFT9toiKrSmkB5+vjzpC9w7OflCeX5wsz0HKkM06 ky9qo1z01KAwmPhlad5tTPfWrYry3xwtA4q1IoftcDATvxZsIaZhFijMb9z+jfk+ 9pR4qi71IGceeBBJ0VVqUzQ+wcO9d+FugyH9nnUjOTEzFYCGxB0bRHbCswIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFIM+OCJcL5nZ4CezAL1mtPwsaaBjMB8GA1UdIwQY MBaAFB5bM0lleIeU1vFHovAE0TvjJX3EMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSGxzelNXVjRoNVRXOFVlaThBVFJPLU1sZmNRLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kZC85YmEzOGEtNDg1Mi00MTNkLTljZDIt OTk5MGUyZDllYWZlLzEvZ3o0NElsd3ZtZG5nSjdNQXZXYTBfQ3hwb0dNLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kZC85YmEzOGEtNDg1Mi00MTNkLTljZDItOTk5MGUyZDllYWZl LzEvSGxzelNXVjRoNVRXOFVlaThBVFJPLU1sZmNRLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAW8HoMA0G CSqGSIb3DQEBCwUAA4IBAQCi/nw8nUV+nbO6rb1AQWuqtSQuSgW/mlb+m80g13Ve feCG5931nBB+hE+SO6er0PTSsQVpurt9uDIqdpJMQQtXKbfNG9XxBjmfhZp3tCrM mWDrm5excodzSdrvu5+rke5VNoivbH4X02EiWWh6+4oHppRByJSJjC9nIRj1Nnh+ 2qT7RYYa4GObsPRVQcYNTH//GxVpC5kQLt+ZYelEwh3sCMCB6BErKjLoahhN/6Xp WVpRpzOIp1mT8g37Qsb0nGn7cL7C/JqXOtxCSm3ZPzuuIZSpjyvW3x1F0hzwXe06 uWWymN+SIUqTw8OypDUxHXfEHY4zqDs+xc9fD7Qc/r6T -----END CERTIFICATE-----Generated at Mon Jan 19 20:00:48 2026 by rpki-client