This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e2/36b098-e9ac-4910-a6f5-8e5d9eefaf91/1/WdDSmHu8piwjkaXknTgjAYhTRAg.roa File: WdDSmHu8piwjkaXknTgjAYhTRAg.roa (raw, json) Hash identifier: CUnFAf2sONYPtqjTetxje/LoEZ9f/M7eZmBz5cxD1nU= Subject key identifier: 59:D0:D2:98:7B:BC:A6:2C:23:91:A5:E4:9D:38:23:01:88:53:44:08 Certificate issuer: /CN=339e0f5e654393ceda22db44978f273e789e2341 Certificate serial: 019B7B35911913D3A51F47B21D0835ADE4C9 Authority key identifier: 33:9E:0F:5E:65:43:93:CE:DA:22:DB:44:97:8F:27:3E:78:9E:23:41 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/M54PXmVDk87aIttEl48nPnieI0E.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e2/36b098-e9ac-4910-a6f5-8e5d9eefaf91/1/WdDSmHu8piwjkaXknTgjAYhTRAg.roa Signing time: Thu 01 Jan 2026 20:17:46 +0000 ROA not before: Thu 01 Jan 2026 20:17:46 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 48019 IP address blocks: 91.207.66.0/23 maxlen: 23 194.105.136.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e2/36b098-e9ac-4910-a6f5-8e5d9eefaf91/1/M54PXmVDk87aIttEl48nPnieI0E.crl rsync://rpki.ripe.net/repository/DEFAULT/e2/36b098-e9ac-4910-a6f5-8e5d9eefaf91/1/M54PXmVDk87aIttEl48nPnieI0E.mft rsync://rpki.ripe.net/repository/DEFAULT/M54PXmVDk87aIttEl48nPnieI0E.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7b:35:91:19:13:d3:a5:1f:47:b2:1d:08:35:ad:e4:c9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=339e0f5e654393ceda22db44978f273e789e2341 Validity Not Before: Jan 1 20:17:46 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=59d0d2987bbca62c2391a5e49d38230188534408 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:1c:e8:fb:3c:86:25:60:90:94:ce:2b:af:b5: eb:08:88:2e:a3:7f:9f:e9:07:78:67:6c:d9:f8:23: ff:b5:17:98:d5:31:75:01:74:5c:a8:f6:6e:e3:65: d7:b7:eb:ef:1a:01:fb:0c:25:54:fe:6e:a0:df:65: 18:1b:49:5d:f7:f8:1d:de:81:40:85:31:dd:b8:67: 3f:2a:7b:50:05:c9:5b:4a:c8:90:14:f5:1b:c2:bd: 82:72:0c:63:43:93:c4:eb:4a:06:66:92:a2:90:09: 6d:e8:a6:7d:3e:f5:01:2f:2b:e1:13:50:8c:84:23: 45:9a:ad:81:69:c1:4a:2c:1a:14:26:4f:84:70:30: 7a:52:b7:25:cd:60:1d:a0:ba:33:1e:60:51:eb:35: a3:f1:ab:a2:e7:eb:dd:fc:20:03:b1:ff:e2:13:c6: 1d:0b:a3:19:19:0c:6a:72:26:47:c0:0a:62:20:ee: fb:30:3f:29:6b:60:2c:c7:d3:b1:30:77:ba:f3:f6: 2b:6f:35:99:9e:dd:ac:fa:db:6c:ed:71:69:bc:f8: a4:0f:a5:5f:be:74:f1:6e:32:63:a6:9e:01:6e:2b: de:3a:8a:0a:0e:7a:27:67:19:a2:09:62:58:19:02: d4:86:97:68:e4:f4:05:c2:d7:39:2d:67:60:1f:e7: ac:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 59:D0:D2:98:7B:BC:A6:2C:23:91:A5:E4:9D:38:23:01:88:53:44:08 X509v3 Authority Key Identifier: keyid:33:9E:0F:5E:65:43:93:CE:DA:22:DB:44:97:8F:27:3E:78:9E:23:41 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/M54PXmVDk87aIttEl48nPnieI0E.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e2/36b098-e9ac-4910-a6f5-8e5d9eefaf91/1/WdDSmHu8piwjkaXknTgjAYhTRAg.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/e2/36b098-e9ac-4910-a6f5-8e5d9eefaf91/1/M54PXmVDk87aIttEl48nPnieI0E.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 91.207.66.0/23 194.105.136.0/23 Signature Algorithm: sha256WithRSAEncryption 65:f2:08:26:22:68:6b:a1:b9:f8:98:c9:61:fd:a5:02:1c:76: d2:a1:e9:47:79:40:97:fc:5f:74:5d:c6:19:47:ca:ed:1b:17: f2:0e:49:8f:7f:2b:be:6f:4b:0a:93:a8:11:3d:c4:4d:56:30: 2f:fd:fe:39:51:81:66:8d:4b:1f:c7:fb:45:13:67:93:3e:93: a5:5b:ee:2e:1d:15:80:b2:c3:aa:43:8e:a1:ca:4f:e4:03:9b: cd:15:4e:68:0e:54:47:0a:ee:f8:bc:b5:4d:60:36:23:8a:5e: 98:c2:18:48:de:3f:2a:7d:9c:f0:23:75:f5:30:c3:7c:39:4b: ef:e9:b4:c7:6a:ae:bb:aa:43:26:54:25:cf:33:5b:5f:5e:04: 5a:72:e0:b7:c7:fc:8f:bf:b7:0c:92:ab:17:a1:a3:b1:c3:94: 63:2e:40:27:e0:9d:2e:50:18:a8:e7:a7:47:84:34:e1:de:7b: f5:5f:0a:ce:06:bb:c6:bf:64:f4:05:1e:74:db:54:1f:6b:f2: f5:9c:5f:65:4d:d0:a3:dc:06:00:b6:8b:ef:0d:0b:e0:79:82: 40:b6:34:1d:5a:c0:61:4d:6e:70:63:29:ed:ee:6b:78:6d:da: 94:3f:29:2d:2a:02:ab:4e:15:2e:a2:f2:4a:f2:e2:5e:df:e1: b5:65:fa:96 -----BEGIN CERTIFICATE----- MIIFAzCCA+ugAwIBAgISAZt7NZEZE9OlH0eyHQg1reTJMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDMzOWUwZjVlNjU0MzkzY2VkYTIyZGI0NDk3OGYyNzNlNzg5 ZTIzNDEwHhcNMjYwMTAxMjAxNzQ2WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg1OWQwZDI5ODdiYmNhNjJjMjM5MWE1ZTQ5ZDM4MjMwMTg4NTM0NDA4MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApRzo+zyGJWCQlM4rr7XrCIguo3+f 6Qd4Z2zZ+CP/tReY1TF1AXRcqPZu42XXt+vvGgH7DCVU/m6g32UYG0ld9/gd3oFA hTHduGc/KntQBclbSsiQFPUbwr2CcgxjQ5PE60oGZpKikAlt6KZ9PvUBLyvhE1CM hCNFmq2BacFKLBoUJk+EcDB6UrclzWAdoLozHmBR6zWj8aui5+vd/CADsf/iE8Yd C6MZGQxqciZHwApiIO77MD8pa2Asx9OxMHe68/YrbzWZnt2s+tts7XFpvPikD6Vf vnTxbjJjpp4BbiveOooKDnonZxmiCWJYGQLUhpdo5PQFwtc5LWdgH+esywIDAQAB o4ICDzCCAgswHQYDVR0OBBYEFFnQ0ph7vKYsI5Gl5J04IwGIU0QIMB8GA1UdIwQY MBaAFDOeD15lQ5PO2iLbRJePJz54niNBMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvTTU0UFhtVkRrODdhSXR0RWw0OG5QbmllSTBFLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lMi8zNmIwOTgtZTlhYy00OTEwLWE2ZjUt OGU1ZDllZWZhZjkxLzEvV2REU21IdThwaXdqa2FYa25UZ2pBWWhUUkFnLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9lMi8zNmIwOTgtZTlhYy00OTEwLWE2ZjUtOGU1ZDllZWZhZjkx LzEvTTU0UFhtVkRrODdhSXR0RWw0OG5QbmllSTBFLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQBW89CAwQB wmmIMA0GCSqGSIb3DQEBCwUAA4IBAQBl8ggmImhrobn4mMlh/aUCHHbSoelHeUCX /F90XcYZR8rtGxfyDkmPfyu+b0sKk6gRPcRNVjAv/f45UYFmjUsfx/tFE2eTPpOl W+4uHRWAssOqQ46hyk/kA5vNFU5oDlRHCu74vLVNYDYjil6YwhhI3j8qfZzwI3X1 MMN8OUvv6bTHaq67qkMmVCXPM1tfXgRacuC3x/yPv7cMkqsXoaOxw5RjLkAn4J0u UBio56dHhDTh3nv1XwrOBrvGv2T0BR5021Qfa/L1nF9lTdCj3AYAtovvDQvgeYJA tjQdWsBhTW5wYynt7mt4bdqUPyktKgKrThUuovJK8uJe3+G1ZfqW -----END CERTIFICATE-----Generated at Mon Feb 9 23:42:05 2026 by rpki-client