This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f9/4c849f-8650-4a1e-be59-1e63bbd70d96/1/iGHuti3bfXeKLlRe4RyqUp48_pM.roa File: iGHuti3bfXeKLlRe4RyqUp48_pM.roa (raw, json) Hash identifier: rz/wputcXDXSuVHOQWYYAZZAeIzA3BtffeOIuAvh3AM= Subject key identifier: 88:61:EE:B6:2D:DB:7D:77:8A:2E:54:5E:E1:1C:AA:52:9E:3C:FE:93 Certificate issuer: /CN=c01399b467c906662de00ec766cc7e000eaec27b Certificate serial: 019B7A5A7F2BAB3EE514731ED246F062374A Authority key identifier: C0:13:99:B4:67:C9:06:66:2D:E0:0E:C7:66:CC:7E:00:0E:AE:C2:7B Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/wBOZtGfJBmYt4A7HZsx-AA6uwns.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f9/4c849f-8650-4a1e-be59-1e63bbd70d96/1/iGHuti3bfXeKLlRe4RyqUp48_pM.roa Signing time: Thu 01 Jan 2026 16:18:29 +0000 ROA not before: Thu 01 Jan 2026 16:18:29 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 210666 IP address blocks: 91.216.22.0/24 maxlen: 24 2001:67c:11c8::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f9/4c849f-8650-4a1e-be59-1e63bbd70d96/1/wBOZtGfJBmYt4A7HZsx-AA6uwns.crl rsync://rpki.ripe.net/repository/DEFAULT/f9/4c849f-8650-4a1e-be59-1e63bbd70d96/1/wBOZtGfJBmYt4A7HZsx-AA6uwns.mft rsync://rpki.ripe.net/repository/DEFAULT/wBOZtGfJBmYt4A7HZsx-AA6uwns.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 27 Jan 2026 10:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7a:5a:7f:2b:ab:3e:e5:14:73:1e:d2:46:f0:62:37:4a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=c01399b467c906662de00ec766cc7e000eaec27b Validity Not Before: Jan 1 16:18:29 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=8861eeb62ddb7d778a2e545ee11caa529e3cfe93 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:47:1f:06:54:30:a6:0f:0f:0e:d6:79:34:5a: 5f:4b:e5:ea:11:3d:ee:b7:d5:b2:01:8a:c5:44:9b: 9b:2e:e1:ef:cb:3a:72:12:7b:d7:d7:1c:cb:0f:96: ba:ae:3b:18:cc:06:4e:59:59:66:89:71:8e:0c:43: 9e:c0:72:d7:89:d6:b1:b3:c6:6b:a9:6e:d4:76:07: e4:ae:c2:04:ca:31:8e:de:be:76:b0:d6:8f:0f:85: fd:b9:09:99:c5:95:98:6a:ae:5c:9a:b0:5c:a3:df: 24:0f:73:a6:96:00:99:0e:d7:2b:9d:ad:03:8b:65: a2:65:f0:48:06:a8:0b:af:17:d9:a9:81:6c:53:b9: be:d4:c0:73:7e:8a:0f:64:ab:ed:1b:58:16:fb:b9: 67:5b:c1:a3:cf:d2:48:36:bc:0e:a8:7a:ae:26:13: c8:94:61:04:b5:3e:f2:b4:32:1e:8f:bb:cc:f8:ef: 8f:cf:9d:89:4d:42:b1:3d:ab:f0:65:d7:e8:a6:a7: 68:d5:32:1e:d4:12:c5:dd:f1:64:1c:9f:7d:ba:78: e4:1a:a8:b0:10:ff:3f:a6:cf:16:cd:99:9b:60:67: 93:00:b8:4f:0d:6e:68:90:4f:75:d2:a5:0c:77:d8: eb:d7:5d:17:9e:11:52:f6:b5:54:a0:cd:9d:21:fd: b6:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 88:61:EE:B6:2D:DB:7D:77:8A:2E:54:5E:E1:1C:AA:52:9E:3C:FE:93 X509v3 Authority Key Identifier: keyid:C0:13:99:B4:67:C9:06:66:2D:E0:0E:C7:66:CC:7E:00:0E:AE:C2:7B X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/wBOZtGfJBmYt4A7HZsx-AA6uwns.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f9/4c849f-8650-4a1e-be59-1e63bbd70d96/1/iGHuti3bfXeKLlRe4RyqUp48_pM.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/f9/4c849f-8650-4a1e-be59-1e63bbd70d96/1/wBOZtGfJBmYt4A7HZsx-AA6uwns.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 91.216.22.0/24 IPv6: 2001:67c:11c8::/48 Signature Algorithm: sha256WithRSAEncryption 30:17:a5:a0:c4:f1:13:21:ad:bc:4e:9a:38:7a:c2:7d:ec:31: 96:8f:52:a4:fd:1e:7f:42:8b:96:c3:50:e1:f4:a2:9e:9e:62: c0:4d:1c:b9:3c:78:0a:5d:05:1d:23:9c:2a:2b:43:5b:3e:cc: 7b:ef:e2:5e:73:44:f9:7c:2b:cc:df:35:fb:75:f6:67:12:f1: ec:3c:7d:cb:bc:70:12:9c:0e:17:4e:b3:8d:02:73:f5:0c:3d: cd:85:64:ff:56:ac:94:7a:21:3d:d8:7b:d9:02:b1:14:e7:58: 20:0c:a6:a4:f6:8d:7f:ae:ed:40:3b:c9:b3:19:78:e6:c0:45: 61:2b:25:c7:0f:b4:bc:cc:5c:bc:6f:d6:58:3c:c3:09:42:1f: bd:53:17:ce:4f:aa:a8:98:31:23:17:19:97:e9:70:d6:f9:86: 14:b7:1b:b7:02:4a:20:f9:3f:2c:46:1b:47:aa:10:1c:0a:00: f5:0c:43:2b:55:74:15:24:31:c1:2b:ca:1b:c1:f6:43:db:33: 8a:bf:67:dd:59:20:e1:7c:47:a2:ab:66:e6:72:3f:9a:45:f5: f2:22:43:6c:fc:de:f9:37:ff:e4:1b:9b:1d:ab:10:77:23:7e: cb:64:1a:d1:39:ae:6c:b4:43:af:5c:13:21:8a:9e:b7:b0:48: dd:12:c1:6c -----BEGIN CERTIFICATE----- MIIFDjCCA/agAwIBAgISAZt6Wn8rqz7lFHMe0kbwYjdKMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGMwMTM5OWI0NjdjOTA2NjYyZGUwMGVjNzY2Y2M3ZTAwMGVh ZWMyN2IwHhcNMjYwMTAxMTYxODI5WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg4ODYxZWViNjJkZGI3ZDc3OGEyZTU0NWVlMTFjYWE1MjllM2NmZTkzMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA00cfBlQwpg8PDtZ5NFpfS+XqET3u t9WyAYrFRJubLuHvyzpyEnvX1xzLD5a6rjsYzAZOWVlmiXGODEOewHLXidaxs8Zr qW7UdgfkrsIEyjGO3r52sNaPD4X9uQmZxZWYaq5cmrBco98kD3OmlgCZDtcrna0D i2WiZfBIBqgLrxfZqYFsU7m+1MBzfooPZKvtG1gW+7lnW8Gjz9JINrwOqHquJhPI lGEEtT7ytDIej7vM+O+Pz52JTUKxPavwZdfopqdo1TIe1BLF3fFkHJ99unjkGqiw EP8/ps8WzZmbYGeTALhPDW5okE910qUMd9jr110XnhFS9rVUoM2dIf22qwIDAQAB o4ICGjCCAhYwHQYDVR0OBBYEFIhh7rYt2313ii5UXuEcqlKePP6TMB8GA1UdIwQY MBaAFMATmbRnyQZmLeAOx2bMfgAOrsJ7MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvd0JPWnRHZkpCbVl0NEE3SFpzeC1BQTZ1d25zLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mOS80Yzg0OWYtODY1MC00YTFlLWJlNTkt MWU2M2JiZDcwZDk2LzEvaUdIdXRpM2JmWGVLTGxSZTRSeXFVcDQ4X3BNLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9mOS80Yzg0OWYtODY1MC00YTFlLWJlNTktMWU2M2JiZDcwZDk2 LzEvd0JPWnRHZkpCbVl0NEE3SFpzeC1BQTZ1d25zLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMDAGCCsGAQUFBwEHAQH/BCEwHzAMBAIAATAGAwQAW9gWMA8E AgACMAkDBwAgAQZ8EcgwDQYJKoZIhvcNAQELBQADggEBADAXpaDE8RMhrbxOmjh6 wn3sMZaPUqT9Hn9Ci5bDUOH0op6eYsBNHLk8eApdBR0jnCorQ1s+zHvv4l5zRPl8 K8zfNft19mcS8ew8fcu8cBKcDhdOs40Cc/UMPc2FZP9WrJR6IT3Ye9kCsRTnWCAM pqT2jX+u7UA7ybMZeObARWErJccPtLzMXLxv1lg8wwlCH71TF85PqqiYMSMXGZfp cNb5hhS3G7cCSiD5PyxGG0eqEBwKAPUMQytVdBUkMcEryhvB9kPbM4q/Z91ZIOF8 R6KrZuZyP5pF9fIiQ2z83vk3/+Qbmx2rEHcjfstkGtE5rmy0Q69cEyGKnrewSN0S wWw= -----END CERTIFICATE-----Generated at Mon Jan 26 16:22:02 2026 by rpki-client