This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/df/a93699-188b-470a-96b7-29b085dd23ad/1/ijRESvjuFsPkeA-Kyvc-Amtbhmw.roa File: ijRESvjuFsPkeA-Kyvc-Amtbhmw.roa (raw, json) Hash identifier: vfx7UefHLR8jxOzWuroODVBFFWPo5JW3hdLXsh9WZmo= Subject key identifier: 8A:34:44:4A:F8:EE:16:C3:E4:78:0F:8A:CA:F7:3E:02:6B:5B:86:6C Certificate issuer: /CN=2d1caa69358f8c98f7a719f2597d5daddbd0018c Certificate serial: 019B7F143846A0DBEDBEFA86F9C4E3D99678 Authority key identifier: 2D:1C:AA:69:35:8F:8C:98:F7:A7:19:F2:59:7D:5D:AD:DB:D0:01:8C Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/LRyqaTWPjJj3pxnyWX1drdvQAYw.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/df/a93699-188b-470a-96b7-29b085dd23ad/1/ijRESvjuFsPkeA-Kyvc-Amtbhmw.roa Signing time: Fri 02 Jan 2026 14:19:50 +0000 ROA not before: Fri 02 Jan 2026 14:19:50 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 211443 IP address blocks: 91.92.41.0/24 maxlen: 24 93.152.233.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/df/a93699-188b-470a-96b7-29b085dd23ad/1/LRyqaTWPjJj3pxnyWX1drdvQAYw.crl rsync://rpki.ripe.net/repository/DEFAULT/df/a93699-188b-470a-96b7-29b085dd23ad/1/LRyqaTWPjJj3pxnyWX1drdvQAYw.mft rsync://rpki.ripe.net/repository/DEFAULT/LRyqaTWPjJj3pxnyWX1drdvQAYw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 21 Jan 2026 08:01:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7f:14:38:46:a0:db:ed:be:fa:86:f9:c4:e3:d9:96:78 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2d1caa69358f8c98f7a719f2597d5daddbd0018c Validity Not Before: Jan 2 14:19:50 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=8a34444af8ee16c3e4780f8acaf73e026b5b866c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:ad:2a:75:66:8c:49:bb:18:f1:da:a7:2a:e1: 19:4e:ef:b0:6c:00:4d:af:5d:00:e0:2e:c6:66:70: 7e:16:44:b5:3b:a8:e1:3f:4b:b1:a0:46:6b:41:9c: fb:f2:8e:f2:eb:35:42:49:71:7e:ae:5e:aa:5a:b9: 20:7a:40:84:23:c9:12:85:46:1b:fe:bc:06:48:ad: d3:0d:da:3f:6b:ab:7b:3f:e3:b9:4f:59:60:77:a5: d2:2e:d6:3a:6a:0b:f9:f4:04:72:fe:3a:c3:4c:52: 78:98:ff:70:97:1f:7d:04:07:7b:77:27:92:b3:af: 83:97:55:5b:ba:4b:37:98:06:e6:63:73:f3:3c:ff: c1:2a:7a:c4:da:99:28:d0:6b:cb:74:21:9a:ec:06: 3d:6c:55:f2:be:7a:ce:40:94:a5:c2:67:78:65:7d: b1:9c:ad:1d:37:d7:62:02:d5:91:a1:4a:4e:33:5f: cb:a5:7b:39:44:88:a1:fe:ab:e6:bc:ad:fb:5b:5d: 23:2a:1e:07:6b:c3:7f:33:42:78:c5:8a:e7:bd:f6: 26:c6:52:7f:12:26:72:32:9a:13:a3:b7:a2:72:2a: 40:76:47:ca:bb:82:72:e1:67:ef:09:21:f1:b7:65: 5a:21:c9:25:2d:d6:25:25:cb:b4:ff:7e:48:bd:0c: 01:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8A:34:44:4A:F8:EE:16:C3:E4:78:0F:8A:CA:F7:3E:02:6B:5B:86:6C X509v3 Authority Key Identifier: keyid:2D:1C:AA:69:35:8F:8C:98:F7:A7:19:F2:59:7D:5D:AD:DB:D0:01:8C X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/LRyqaTWPjJj3pxnyWX1drdvQAYw.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/df/a93699-188b-470a-96b7-29b085dd23ad/1/ijRESvjuFsPkeA-Kyvc-Amtbhmw.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/df/a93699-188b-470a-96b7-29b085dd23ad/1/LRyqaTWPjJj3pxnyWX1drdvQAYw.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 91.92.41.0/24 93.152.233.0/24 Signature Algorithm: sha256WithRSAEncryption 0f:65:cc:0e:51:d3:86:64:85:e8:f9:9c:51:08:db:d6:06:79: 82:ad:48:d6:75:c3:44:6e:b5:2b:85:03:14:56:ea:78:fd:f1: 73:5f:3a:6f:9c:cc:13:ba:c5:97:90:4b:b7:b9:06:2b:9a:60: 9d:0a:ec:68:ed:0b:30:d8:16:4a:7b:63:9d:f7:c5:97:01:d6: 42:25:60:ce:5e:2a:f6:47:e4:29:52:1d:68:f0:13:e8:e3:ce: b2:df:93:20:99:ba:19:d3:6e:d9:7e:84:c1:23:f3:69:8c:9c: 3f:b1:0d:4f:84:bf:b0:47:2d:db:a5:d0:75:d1:9b:1f:c9:46: 82:ca:76:f3:8e:39:7c:3d:83:b4:29:95:68:70:24:1f:df:ff: 3c:81:22:8b:db:5a:6d:e6:c8:a2:a3:77:46:c8:0d:cc:5f:89: 96:77:0a:9c:c2:ba:d1:d8:13:25:8f:64:95:42:60:6e:55:cc: b6:c1:9c:33:81:0d:77:d3:0e:2b:12:56:38:6d:58:8b:f8:4c: 6a:4a:3a:fd:b1:ff:93:09:58:88:7d:30:8b:e4:2d:ca:3a:64: 1a:96:c2:22:3c:ba:8f:0f:72:f7:cc:ab:7c:e2:2b:57:66:c4: 47:b0:61:06:e2:04:b5:0a:42:f4:70:98:67:1f:63:35:e4:70: 62:c4:83:2d -----BEGIN CERTIFICATE----- MIIFAzCCA+ugAwIBAgISAZt/FDhGoNvtvvqG+cTj2ZZ4MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJkMWNhYTY5MzU4ZjhjOThmN2E3MTlmMjU5N2Q1ZGFkZGJk MDAxOGMwHhcNMjYwMTAyMTQxOTUwWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg4YTM0NDQ0YWY4ZWUxNmMzZTQ3ODBmOGFjYWY3M2UwMjZiNWI4NjZjMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAs60qdWaMSbsY8dqnKuEZTu+wbABN r10A4C7GZnB+FkS1O6jhP0uxoEZrQZz78o7y6zVCSXF+rl6qWrkgekCEI8kShUYb /rwGSK3TDdo/a6t7P+O5T1lgd6XSLtY6agv59ARy/jrDTFJ4mP9wlx99BAd7dyeS s6+Dl1Vbuks3mAbmY3PzPP/BKnrE2pko0GvLdCGa7AY9bFXyvnrOQJSlwmd4ZX2x nK0dN9diAtWRoUpOM1/LpXs5RIih/qvmvK37W10jKh4Ha8N/M0J4xYrnvfYmxlJ/ EiZyMpoTo7eicipAdkfKu4Jy4WfvCSHxt2VaIcklLdYlJcu0/35IvQwBzQIDAQAB o4ICDzCCAgswHQYDVR0OBBYEFIo0REr47hbD5HgPisr3PgJrW4ZsMB8GA1UdIwQY MBaAFC0cqmk1j4yY96cZ8ll9Xa3b0AGMMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvTFJ5cWFUV1BqSmozcHhueVdYMWRyZHZRQVl3LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kZi9hOTM2OTktMTg4Yi00NzBhLTk2Yjct MjliMDg1ZGQyM2FkLzEvaWpSRVN2anVGc1BrZUEtS3l2Yy1BbXRiaG13LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kZi9hOTM2OTktMTg4Yi00NzBhLTk2YjctMjliMDg1ZGQyM2Fk LzEvTFJ5cWFUV1BqSmozcHhueVdYMWRyZHZRQVl3LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQAW1wpAwQA XZjpMA0GCSqGSIb3DQEBCwUAA4IBAQAPZcwOUdOGZIXo+ZxRCNvWBnmCrUjWdcNE brUrhQMUVup4/fFzXzpvnMwTusWXkEu3uQYrmmCdCuxo7Qsw2BZKe2Od98WXAdZC JWDOXir2R+QpUh1o8BPo486y35MgmboZ027ZfoTBI/NpjJw/sQ1PhL+wRy3bpdB1 0ZsfyUaCynbzjjl8PYO0KZVocCQf3/88gSKL21pt5siio3dGyA3MX4mWdwqcwrrR 2BMlj2SVQmBuVcy2wZwzgQ130w4rElY4bViL+ExqSjr9sf+TCViIfTCL5C3KOmQa lsIiPLqPD3L3zKt84itXZsRHsGEG4gS1CkL0cJhnH2M15HBixIMt -----END CERTIFICATE-----Generated at Tue Jan 20 14:14:20 2026 by rpki-client