This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f4/08537c-026c-476b-8056-4e000943149f/1/1-sDuDT5PyDWTrrUoYprkpEdUV2I.roa File: 1-sDuDT5PyDWTrrUoYprkpEdUV2I.roa (raw, json) Hash identifier: eAjODYNfh7Im2wLs/xUeEWebYtl3ElP2ajyZCTGNlyc= Subject key identifier: FA:C0:EE:0D:3E:4F:C8:35:93:AE:B5:28:62:9A:E4:A4:47:54:57:62 Certificate issuer: /CN=431f1480651f1b338be26341e2db3a0aa3b344eb Certificate serial: 019B7C801195032D825EB8F30FE701DCAB88 Authority key identifier: 43:1F:14:80:65:1F:1B:33:8B:E2:63:41:E2:DB:3A:0A:A3:B3:44:EB Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Qx8UgGUfGzOL4mNB4ts6CqOzROs.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f4/08537c-026c-476b-8056-4e000943149f/1/1-sDuDT5PyDWTrrUoYprkpEdUV2I.roa Signing time: Fri 02 Jan 2026 02:18:46 +0000 ROA not before: Fri 02 Jan 2026 02:18:46 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 201635 IP address blocks: 91.198.88.0/24 maxlen: 24 185.28.40.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f4/08537c-026c-476b-8056-4e000943149f/1/Qx8UgGUfGzOL4mNB4ts6CqOzROs.crl rsync://rpki.ripe.net/repository/DEFAULT/f4/08537c-026c-476b-8056-4e000943149f/1/Qx8UgGUfGzOL4mNB4ts6CqOzROs.mft rsync://rpki.ripe.net/repository/DEFAULT/Qx8UgGUfGzOL4mNB4ts6CqOzROs.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7c:80:11:95:03:2d:82:5e:b8:f3:0f:e7:01:dc:ab:88 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=431f1480651f1b338be26341e2db3a0aa3b344eb Validity Not Before: Jan 2 02:18:46 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=fac0ee0d3e4fc83593aeb528629ae4a447545762 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:b3:09:c4:8c:0b:c5:53:50:45:5a:bc:a4:97: 56:31:46:b9:5a:ef:8b:ad:b1:7d:6f:f9:c4:56:61: 56:04:dd:ef:8b:49:f4:d5:26:09:bf:a1:e4:2e:85: 20:aa:85:a1:3c:a2:86:1e:42:fe:f6:4e:6c:f0:83: e5:d7:b2:95:8b:7f:d3:ec:10:78:d8:b1:f6:0e:18: 7a:59:1d:30:3a:eb:cf:ab:cb:bd:e2:3d:27:46:dc: 93:4d:ed:b6:19:6b:c2:66:97:92:e7:93:08:fd:27: c4:66:12:88:39:91:1d:94:63:d6:aa:57:76:10:8e: da:1c:8e:03:31:81:d4:11:e4:62:0a:e6:ae:af:31: a4:c3:45:32:77:da:f1:25:94:9d:51:e1:8f:7a:0f: cd:de:3d:b4:11:4e:ad:f8:8c:6e:a9:38:f8:76:0a: 7e:0f:c2:df:8e:9c:6d:4f:63:53:8d:37:2e:d5:ad: 42:0c:a2:0a:57:d4:f4:a4:a5:42:dc:dc:7e:e9:90: cb:c7:76:87:8d:76:3e:13:8b:a6:92:a1:d2:56:30: 79:fb:64:41:19:39:d5:4a:00:ca:95:42:d3:56:43: 10:3e:58:c0:db:3d:fd:7c:03:33:c4:2e:88:7c:b7: b7:5a:e9:2e:5e:9f:78:72:a4:7e:47:02:8a:32:f1: 59:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FA:C0:EE:0D:3E:4F:C8:35:93:AE:B5:28:62:9A:E4:A4:47:54:57:62 X509v3 Authority Key Identifier: keyid:43:1F:14:80:65:1F:1B:33:8B:E2:63:41:E2:DB:3A:0A:A3:B3:44:EB X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Qx8UgGUfGzOL4mNB4ts6CqOzROs.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f4/08537c-026c-476b-8056-4e000943149f/1/1-sDuDT5PyDWTrrUoYprkpEdUV2I.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/f4/08537c-026c-476b-8056-4e000943149f/1/Qx8UgGUfGzOL4mNB4ts6CqOzROs.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 91.198.88.0/24 185.28.40.0/22 Signature Algorithm: sha256WithRSAEncryption 99:8c:1c:a4:a9:94:0a:6c:31:6c:40:1f:46:e8:e5:99:e9:d2: db:ed:fc:5d:be:1e:b4:cd:d1:39:d8:58:f2:f2:74:13:c5:fb: 92:28:f6:69:f1:5e:f3:9f:66:9c:75:70:15:c3:0a:b1:ea:5f: 66:99:75:43:8e:eb:f0:94:2f:6a:21:92:b9:a1:ca:c1:64:09: e7:28:d2:30:c1:98:ba:2a:dd:c9:e7:ea:79:c9:79:b3:cf:39: 31:1e:86:e7:20:57:cc:ce:f1:2b:25:46:68:8b:ca:bb:08:1d: 83:3d:4b:89:42:70:7d:cd:9a:c9:32:0e:ea:d2:b8:1f:76:4f: 81:5f:7e:6a:43:08:7f:99:a7:6d:04:0d:06:b8:64:9e:4c:25: da:fc:e9:b2:0a:d5:52:5d:c4:d7:60:f3:b1:29:d2:a3:5d:70: 26:9b:46:f7:20:54:a9:67:4e:18:a2:9e:5d:6a:50:ff:07:61: 8c:9e:f3:f3:d3:b8:05:5e:bf:82:4e:05:19:91:f6:15:78:f2: 05:cc:f8:36:b0:72:6c:31:f5:dc:d4:0c:e8:74:5e:a9:fc:c7: f5:95:1b:08:59:31:2a:7d:34:7f:61:d8:63:5f:83:7b:17:cc: 3c:6e:e5:c0:b4:6d:eb:b6:ca:3a:bc:cd:d1:c4:0d:c9:ef:e8: 42:99:74:5d -----BEGIN CERTIFICATE----- MIIFBDCCA+ygAwIBAgISAZt8gBGVAy2CXrjzD+cB3KuIMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDQzMWYxNDgwNjUxZjFiMzM4YmUyNjM0MWUyZGIzYTBhYTNi MzQ0ZWIwHhcNMjYwMTAyMDIxODQ2WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhmYWMwZWUwZDNlNGZjODM1OTNhZWI1Mjg2MjlhZTRhNDQ3NTQ1NzYyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAobMJxIwLxVNQRVq8pJdWMUa5Wu+L rbF9b/nEVmFWBN3vi0n01SYJv6HkLoUgqoWhPKKGHkL+9k5s8IPl17KVi3/T7BB4 2LH2Dhh6WR0wOuvPq8u94j0nRtyTTe22GWvCZpeS55MI/SfEZhKIOZEdlGPWqld2 EI7aHI4DMYHUEeRiCuaurzGkw0Uyd9rxJZSdUeGPeg/N3j20EU6t+IxuqTj4dgp+ D8LfjpxtT2NTjTcu1a1CDKIKV9T0pKVC3Nx+6ZDLx3aHjXY+E4umkqHSVjB5+2RB GTnVSgDKlULTVkMQPljA2z39fAMzxC6IfLe3WukuXp94cqR+RwKKMvFZ8wIDAQAB o4ICEDCCAgwwHQYDVR0OBBYEFPrA7g0+T8g1k661KGKa5KRHVFdiMB8GA1UdIwQY MBaAFEMfFIBlHxszi+JjQeLbOgqjs0TrMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvUXg4VWdHVWZHek9MNG1OQjR0czZDcU96Uk9zLmNlcjCB jgYIKwYBBQUHAQsEgYEwfzB9BggrBgEFBQcwC4ZxcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mNC8wODUzN2MtMDI2Yy00NzZiLTgwNTYt NGUwMDA5NDMxNDlmLzEvMS1zRHVEVDVQeURXVHJyVW9ZcHJrcEVkVVYySS5yb2Ew gYEGA1UdHwR6MHgwdqB0oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0 b3J5L0RFRkFVTFQvZjQvMDg1MzdjLTAyNmMtNDc2Yi04MDU2LTRlMDAwOTQzMTQ5 Zi8xL1F4OFVnR1VmR3pPTDRtTkI0dHM2Q3FPelJPcy5jcmwwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAlBggrBgEFBQcBBwEB/wQWMBQwEgQCAAEwDAMEAFvGWAME ArkcKDANBgkqhkiG9w0BAQsFAAOCAQEAmYwcpKmUCmwxbEAfRujlmenS2+38Xb4e tM3ROdhY8vJ0E8X7kij2afFe859mnHVwFcMKsepfZpl1Q47r8JQvaiGSuaHKwWQJ 5yjSMMGYuirdyefqecl5s885MR6G5yBXzM7xKyVGaIvKuwgdgz1LiUJwfc2ayTIO 6tK4H3ZPgV9+akMIf5mnbQQNBrhknkwl2vzpsgrVUl3E12DzsSnSo11wJptG9yBU qWdOGKKeXWpQ/wdhjJ7z89O4BV6/gk4FGZH2FXjyBcz4NrBybDH13NQM6HReqfzH 9ZUbCFkxKn00f2HYY1+DexfMPG7lwLRt67bKOrzN0cQNye/oQpl0XQ== -----END CERTIFICATE-----Generated at Mon Feb 9 22:22:37 2026 by rpki-client