This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f9/1e872f-8851-4d17-9148-f8905672e59d/1/X29-SsmJR9k5fDOjjkh75Kg4cpc.roa File: X29-SsmJR9k5fDOjjkh75Kg4cpc.roa (raw, json) Hash identifier: +euzTLNo94RLGMAt+aTDFJ+R3lTEiHq3dfTEgVifPSc= Subject key identifier: 5F:6F:7E:4A:C9:89:47:D9:39:7C:33:A3:8E:48:7B:E4:A8:38:72:97 Certificate issuer: /CN=aae8e9b4d8db946bb20ccf512797075c8afd83cd Certificate serial: 019B77C6E8806507D61FD290CF91807ED0D7 Authority key identifier: AA:E8:E9:B4:D8:DB:94:6B:B2:0C:CF:51:27:97:07:5C:8A:FD:83:CD Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qujptNjblGuyDM9RJ5cHXIr9g80.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f9/1e872f-8851-4d17-9148-f8905672e59d/1/X29-SsmJR9k5fDOjjkh75Kg4cpc.roa Signing time: Thu 01 Jan 2026 04:18:02 +0000 ROA not before: Thu 01 Jan 2026 04:18:02 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 8075 IP address blocks: 91.244.201.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f9/1e872f-8851-4d17-9148-f8905672e59d/1/qujptNjblGuyDM9RJ5cHXIr9g80.crl rsync://rpki.ripe.net/repository/DEFAULT/f9/1e872f-8851-4d17-9148-f8905672e59d/1/qujptNjblGuyDM9RJ5cHXIr9g80.mft rsync://rpki.ripe.net/repository/DEFAULT/qujptNjblGuyDM9RJ5cHXIr9g80.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 19 Jan 2026 06:00:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:77:c6:e8:80:65:07:d6:1f:d2:90:cf:91:80:7e:d0:d7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=aae8e9b4d8db946bb20ccf512797075c8afd83cd Validity Not Before: Jan 1 04:18:02 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=5f6f7e4ac98947d9397c33a38e487be4a8387297 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:91:14:f1:d3:77:dc:83:d0:20:00:a3:a9:0a:dc: 30:69:9d:e3:11:21:11:93:c8:cb:86:4c:a1:b4:86: a3:4c:f5:7f:e6:33:ca:2a:47:12:b3:50:3a:f3:d7: 8a:e5:2e:a6:cb:45:42:37:c2:09:be:c5:e6:ed:e8: 15:4e:bb:8f:90:e0:aa:e2:50:09:eb:0b:98:f6:ca: 90:17:9a:5b:07:fb:5b:70:0f:14:bd:b4:29:77:11: c1:17:0b:49:58:da:0c:46:65:ae:84:2b:9a:6f:b4: b2:08:11:19:0e:f6:5c:c6:8d:c8:1c:15:fa:e8:3a: c7:4d:70:d5:78:33:c3:cf:85:00:00:1d:78:c2:70: 81:44:6c:95:82:01:e7:8a:6f:d9:60:64:94:22:e7: e2:a7:81:27:33:e2:79:11:db:b0:ea:69:a4:80:c3: cf:ed:c0:40:de:1c:da:44:54:37:de:19:8e:9d:0c: 81:05:f9:23:22:ee:e8:b1:d0:cc:b1:11:78:3d:21: ac:bb:6f:2e:1c:25:f7:53:a3:06:ec:6f:a0:42:18: ee:ab:5a:c7:55:12:0b:97:a3:5f:40:41:ce:96:59: 96:ab:7d:8c:b8:07:40:d2:95:a1:0a:00:7f:ed:c1: 61:5d:c5:a7:4f:9a:c7:c7:1f:f8:b8:09:a5:c1:3f: 34:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5F:6F:7E:4A:C9:89:47:D9:39:7C:33:A3:8E:48:7B:E4:A8:38:72:97 X509v3 Authority Key Identifier: keyid:AA:E8:E9:B4:D8:DB:94:6B:B2:0C:CF:51:27:97:07:5C:8A:FD:83:CD X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qujptNjblGuyDM9RJ5cHXIr9g80.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f9/1e872f-8851-4d17-9148-f8905672e59d/1/X29-SsmJR9k5fDOjjkh75Kg4cpc.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/f9/1e872f-8851-4d17-9148-f8905672e59d/1/qujptNjblGuyDM9RJ5cHXIr9g80.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 91.244.201.0/24 Signature Algorithm: sha256WithRSAEncryption c1:d2:5b:83:be:fc:13:8b:35:13:5f:ae:64:b1:ce:bd:08:a3: b9:02:3b:50:bf:55:d0:7f:e1:d7:be:96:d0:57:fe:a4:88:b7: d4:a2:9b:58:57:30:e0:fc:60:c7:b6:fc:de:ce:6f:92:6f:0e: 6c:1d:24:b0:f1:fe:33:d0:8b:e1:3c:4a:31:98:d0:5e:a1:f0: da:bb:3b:71:ad:e5:66:ff:0c:13:a0:fc:21:cf:48:29:47:57: a5:b1:0f:62:11:21:c0:1c:0c:1e:bc:64:ce:5b:38:42:15:46: a5:e0:8f:31:92:13:12:33:67:6e:b0:6a:aa:6d:b4:06:75:19: 8b:27:24:b5:f9:50:7c:9f:5a:7a:e8:01:74:d0:f5:30:08:62: cc:3e:f2:01:2a:4f:1f:1f:b6:17:40:bb:4e:52:66:ac:94:95: 13:cc:a5:ac:f9:d2:2f:8d:c2:cf:05:68:8e:09:bd:9e:f2:61: af:f8:c3:62:68:1a:bb:25:7c:5c:dc:9e:70:ae:92:80:8b:78: 9f:40:b5:d3:fe:b2:a3:3d:b0:c1:84:66:7e:db:6b:75:9c:e1: 25:c4:27:a5:6e:5b:38:75:e7:2a:ee:55:39:56:ff:4e:02:66: 91:0a:2e:59:82:13:dc:f6:d0:19:f1:23:78:39:6a:43:ec:0e: 98:88:86:19 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt3xuiAZQfWH9KQz5GAftDXMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGFhZThlOWI0ZDhkYjk0NmJiMjBjY2Y1MTI3OTcwNzVjOGFm ZDgzY2QwHhcNMjYwMTAxMDQxODAyWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg1ZjZmN2U0YWM5ODk0N2Q5Mzk3YzMzYTM4ZTQ4N2JlNGE4Mzg3Mjk3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAkRTx03fcg9AgAKOpCtwwaZ3jESER k8jLhkyhtIajTPV/5jPKKkcSs1A689eK5S6my0VCN8IJvsXm7egVTruPkOCq4lAJ 6wuY9sqQF5pbB/tbcA8UvbQpdxHBFwtJWNoMRmWuhCuab7SyCBEZDvZcxo3IHBX6 6DrHTXDVeDPDz4UAAB14wnCBRGyVggHnim/ZYGSUIufip4EnM+J5Eduw6mmkgMPP 7cBA3hzaRFQ33hmOnQyBBfkjIu7osdDMsRF4PSGsu28uHCX3U6MG7G+gQhjuq1rH VRILl6NfQEHOllmWq32MuAdA0pWhCgB/7cFhXcWnT5rHxx/4uAmlwT80EQIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFF9vfkrJiUfZOXwzo45Ie+SoOHKXMB8GA1UdIwQY MBaAFKro6bTY25RrsgzPUSeXB1yK/YPNMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvcXVqcHROamJsR3V5RE05Uko1Y0hYSXI5ZzgwLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mOS8xZTg3MmYtODg1MS00ZDE3LTkxNDgt Zjg5MDU2NzJlNTlkLzEvWDI5LVNzbUpSOWs1ZkRPampraDc1S2c0Y3BjLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9mOS8xZTg3MmYtODg1MS00ZDE3LTkxNDgtZjg5MDU2NzJlNTlk LzEvcXVqcHROamJsR3V5RE05Uko1Y0hYSXI5ZzgwLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAW/TJMA0G CSqGSIb3DQEBCwUAA4IBAQDB0luDvvwTizUTX65ksc69CKO5AjtQv1XQf+HXvpbQ V/6kiLfUoptYVzDg/GDHtvzezm+Sbw5sHSSw8f4z0IvhPEoxmNBeofDauztxreVm /wwToPwhz0gpR1elsQ9iESHAHAwevGTOWzhCFUal4I8xkhMSM2dusGqqbbQGdRmL JyS1+VB8n1p66AF00PUwCGLMPvIBKk8fH7YXQLtOUmaslJUTzKWs+dIvjcLPBWiO Cb2e8mGv+MNiaBq7JXxc3J5wrpKAi3ifQLXT/rKjPbDBhGZ+22t1nOElxCelbls4 decq7lU5Vv9OAmaRCi5ZghPc9tAZ8SN4OWpD7A6YiIYZ -----END CERTIFICATE-----Generated at Sun Jan 18 15:29:12 2026 by rpki-client