This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f2/44c42c-1e68-4aab-839d-9593e3a43725/1/jgN5b340IqujXH8DiLAcaLBDPQg.roa File: jgN5b340IqujXH8DiLAcaLBDPQg.roa (raw, json) Hash identifier: vjTTYKgnFfE85jmKgHsh0LqEiHa9mFhJMA/4cn0Av3w= Subject key identifier: 8E:03:79:6F:7E:34:22:AB:A3:5C:7F:03:88:B0:1C:68:B0:43:3D:08 Certificate issuer: /CN=990c4bb38e35cd70320eb791520c6cad34a4b271 Certificate serial: 019B7D5C726B0D08AC1B40A26175E7687293 Authority key identifier: 99:0C:4B:B3:8E:35:CD:70:32:0E:B7:91:52:0C:6C:AD:34:A4:B2:71 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mQxLs441zXAyDreRUgxsrTSksnE.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f2/44c42c-1e68-4aab-839d-9593e3a43725/1/jgN5b340IqujXH8DiLAcaLBDPQg.roa Signing time: Fri 02 Jan 2026 06:19:29 +0000 ROA not before: Fri 02 Jan 2026 06:19:29 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 56505 IP address blocks: 91.223.198.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f2/44c42c-1e68-4aab-839d-9593e3a43725/1/mQxLs441zXAyDreRUgxsrTSksnE.crl rsync://rpki.ripe.net/repository/DEFAULT/f2/44c42c-1e68-4aab-839d-9593e3a43725/1/mQxLs441zXAyDreRUgxsrTSksnE.mft rsync://rpki.ripe.net/repository/DEFAULT/mQxLs441zXAyDreRUgxsrTSksnE.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 12:00:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7d:5c:72:6b:0d:08:ac:1b:40:a2:61:75:e7:68:72:93 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=990c4bb38e35cd70320eb791520c6cad34a4b271 Validity Not Before: Jan 2 06:19:29 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=8e03796f7e3422aba35c7f0388b01c68b0433d08 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:71:19:44:fd:a7:27:93:58:37:96:42:34:2e: 00:47:f3:c7:41:88:4d:0a:8c:70:f3:48:09:a3:f3: 3c:12:34:c1:6f:8c:5c:5b:1b:1e:17:bd:74:79:11: ab:20:86:57:c7:5a:5b:c7:e4:1a:61:69:f3:34:07: ca:ad:69:f2:97:1a:81:13:81:8c:e5:2e:51:89:c1: 12:44:b5:14:12:ae:94:6d:fb:53:2c:85:45:01:67: 6c:ae:7e:d0:61:8c:39:66:4d:84:5f:41:fd:73:28: 13:83:9c:fa:2b:09:d8:70:77:a7:cb:51:04:f8:cc: 29:52:a5:9a:6e:77:60:33:88:8d:73:ca:da:09:8a: 0e:e0:d8:5b:7e:3b:25:f0:ad:a0:68:59:d3:8d:d3: f2:ab:86:eb:19:35:64:ed:da:0b:eb:90:76:0a:ea: 2c:25:17:ed:35:0b:fb:a1:58:05:3b:b5:28:b1:51: fb:50:16:c3:c4:97:b4:a2:0e:0e:2c:2e:5e:ae:fe: fa:28:c1:6d:1c:ee:b2:8d:17:b5:02:2a:95:92:bb: 54:8f:4b:29:8a:5a:7e:fb:78:21:94:70:d5:87:4e: bc:9c:52:ba:89:34:4f:fe:c2:df:4f:b8:f4:8e:68: 46:05:f7:9f:9a:1e:8b:9b:7c:8c:c8:ea:41:c2:bb: e8:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8E:03:79:6F:7E:34:22:AB:A3:5C:7F:03:88:B0:1C:68:B0:43:3D:08 X509v3 Authority Key Identifier: keyid:99:0C:4B:B3:8E:35:CD:70:32:0E:B7:91:52:0C:6C:AD:34:A4:B2:71 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mQxLs441zXAyDreRUgxsrTSksnE.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f2/44c42c-1e68-4aab-839d-9593e3a43725/1/jgN5b340IqujXH8DiLAcaLBDPQg.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/f2/44c42c-1e68-4aab-839d-9593e3a43725/1/mQxLs441zXAyDreRUgxsrTSksnE.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 91.223.198.0/24 Signature Algorithm: sha256WithRSAEncryption a2:af:ca:2b:65:dc:c8:ec:4a:45:43:22:2a:82:6e:0b:9a:2e: d6:d9:c6:3a:60:19:ba:e4:9f:d8:b0:b0:58:81:48:87:ed:05: 88:ef:dc:57:77:0d:b3:d2:e7:71:97:84:c8:16:51:da:8b:e6: a6:4f:58:29:24:4a:34:7e:e8:d7:7c:66:a2:7f:d1:da:1c:5e: 58:ab:6b:ee:c0:4a:2c:5c:9d:0a:e3:b3:a6:bb:54:db:bb:e0: 61:71:87:ab:a5:1f:12:dc:ba:6a:39:9a:51:18:47:13:da:83: 78:c0:d2:20:13:28:c5:de:4f:53:d8:cd:9b:e1:6d:13:ed:03: e2:6d:6c:f3:8a:2f:db:9a:db:0f:90:8d:67:37:b7:84:d1:a1: 8a:24:52:b6:34:22:4a:7c:e2:7c:4e:c9:b6:3e:0c:7b:de:1c: 1a:ff:48:9b:9b:d7:b4:74:49:31:66:b5:79:2f:2f:b8:6c:33: 28:64:a8:53:00:eb:62:d5:e2:ab:33:32:6d:30:6d:f2:56:1a: 56:a6:f9:84:3a:ed:60:a1:ae:fc:a6:b3:bc:54:36:32:4e:e2: 95:39:a9:b3:83:4d:d4:71:b4:79:b9:87:26:e4:cb:13:65:4a: 24:48:f0:28:d9:41:9c:99:bb:8f:cb:e3:b5:b8:ab:cd:ca:49: e8:9c:96:3b -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt9XHJrDQisG0CiYXXnaHKTMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDk5MGM0YmIzOGUzNWNkNzAzMjBlYjc5MTUyMGM2Y2FkMzRh NGIyNzEwHhcNMjYwMTAyMDYxOTI5WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg4ZTAzNzk2ZjdlMzQyMmFiYTM1YzdmMDM4OGIwMWM2OGIwNDMzZDA4MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtHEZRP2nJ5NYN5ZCNC4AR/PHQYhN Coxw80gJo/M8EjTBb4xcWxseF710eRGrIIZXx1pbx+QaYWnzNAfKrWnylxqBE4GM 5S5RicESRLUUEq6UbftTLIVFAWdsrn7QYYw5Zk2EX0H9cygTg5z6KwnYcHeny1EE +MwpUqWabndgM4iNc8raCYoO4Nhbfjsl8K2gaFnTjdPyq4brGTVk7doL65B2Cuos JRftNQv7oVgFO7UosVH7UBbDxJe0og4OLC5erv76KMFtHO6yjRe1AiqVkrtUj0sp ilp++3ghlHDVh068nFK6iTRP/sLfT7j0jmhGBfefmh6Lm3yMyOpBwrvo2QIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFI4DeW9+NCKro1x/A4iwHGiwQz0IMB8GA1UdIwQY MBaAFJkMS7OONc1wMg63kVIMbK00pLJxMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvbVF4THM0NDF6WEF5RHJlUlVneHNyVFNrc25FLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mMi80NGM0MmMtMWU2OC00YWFiLTgzOWQt OTU5M2UzYTQzNzI1LzEvamdONWIzNDBJcXVqWEg4RGlMQWNhTEJEUFFnLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9mMi80NGM0MmMtMWU2OC00YWFiLTgzOWQtOTU5M2UzYTQzNzI1 LzEvbVF4THM0NDF6WEF5RHJlUlVneHNyVFNrc25FLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAW9/GMA0G CSqGSIb3DQEBCwUAA4IBAQCir8orZdzI7EpFQyIqgm4Lmi7W2cY6YBm65J/YsLBY gUiH7QWI79xXdw2z0udxl4TIFlHai+amT1gpJEo0fujXfGaif9HaHF5Yq2vuwEos XJ0K47Omu1Tbu+BhcYerpR8S3LpqOZpRGEcT2oN4wNIgEyjF3k9T2M2b4W0T7QPi bWzzii/bmtsPkI1nN7eE0aGKJFK2NCJKfOJ8Tsm2Pgx73hwa/0ibm9e0dEkxZrV5 Ly+4bDMoZKhTAOti1eKrMzJtMG3yVhpWpvmEOu1goa78prO8VDYyTuKVOamzg03U cbR5uYcm5MsTZUokSPAo2UGcmbuPy+O1uKvNyknonJY7 -----END CERTIFICATE-----Generated at Mon Feb 9 19:54:29 2026 by rpki-client