This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0e/baaff3-aeb4-4616-8fb5-76741652510d/1/g3Aqq8ieDulhltRT8RzCMXOJ6hA.roa File: g3Aqq8ieDulhltRT8RzCMXOJ6hA.roa (raw, json) Hash identifier: g91OJ4H9j41EuGAt1Pac7eE+KaGklturxtGrn6P756c= Subject key identifier: 83:70:2A:AB:C8:9E:0E:E9:61:96:D4:53:F1:1C:C2:31:73:89:EA:10 Certificate issuer: /CN=6228e7e01fada49c1a52fa13f3626c41b41a51b8 Certificate serial: 019B7DC8871BEE06864C5F62560A945C2F39 Authority key identifier: 62:28:E7:E0:1F:AD:A4:9C:1A:52:FA:13:F3:62:6C:41:B4:1A:51:B8 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Yijn4B-tpJwaUvoT82JsQbQaUbg.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0e/baaff3-aeb4-4616-8fb5-76741652510d/1/g3Aqq8ieDulhltRT8RzCMXOJ6hA.roa Signing time: Fri 02 Jan 2026 08:17:32 +0000 ROA not before: Fri 02 Jan 2026 08:17:32 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 62041 IP address blocks: 91.108.4.0/22 maxlen: 22 91.108.8.0/22 maxlen: 22 91.108.56.0/22 maxlen: 22 95.161.64.0/20 maxlen: 20 149.154.160.0/22 maxlen: 22 149.154.160.0/23 maxlen: 23 149.154.160.0/24 maxlen: 24 149.154.162.0/23 maxlen: 23 149.154.164.0/22 maxlen: 22 149.154.164.0/23 maxlen: 23 149.154.166.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0e/baaff3-aeb4-4616-8fb5-76741652510d/1/Yijn4B-tpJwaUvoT82JsQbQaUbg.crl rsync://rpki.ripe.net/repository/DEFAULT/0e/baaff3-aeb4-4616-8fb5-76741652510d/1/Yijn4B-tpJwaUvoT82JsQbQaUbg.mft rsync://rpki.ripe.net/repository/DEFAULT/Yijn4B-tpJwaUvoT82JsQbQaUbg.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 05:00:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7d:c8:87:1b:ee:06:86:4c:5f:62:56:0a:94:5c:2f:39 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6228e7e01fada49c1a52fa13f3626c41b41a51b8 Validity Not Before: Jan 2 08:17:32 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=83702aabc89e0ee96196d453f11cc2317389ea10 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:b8:30:f3:da:79:a4:06:db:c2:62:4b:97:21: 38:02:b2:38:66:41:bd:bc:a9:07:47:82:57:18:7b: 14:d3:59:5f:06:79:06:99:de:23:a5:84:19:1b:22: 16:3d:f8:82:59:8a:00:95:10:3d:f3:c7:15:dc:f4: 17:8b:91:c5:5b:f2:df:31:22:ae:7d:92:e0:84:d4: c8:b9:a6:28:f3:a6:29:75:04:f8:37:17:10:26:2a: 0e:c9:b7:c3:0c:53:35:dd:76:7a:61:70:64:6d:90: 24:4a:17:f5:6c:97:85:ae:50:8b:a8:a2:73:21:33: f7:b1:ea:01:e2:b7:dc:ad:e4:88:5f:7f:ae:31:1d: 6c:6c:16:13:77:5c:c3:04:65:4b:7a:2d:22:30:3f: 25:d7:b1:b3:98:cb:f9:87:6d:42:08:3f:e2:89:83: f2:2b:b4:ee:53:96:df:eb:79:21:d5:1b:fb:38:a0: 37:23:49:c7:21:32:57:91:89:62:94:35:c1:d2:91: 9b:26:76:e5:5d:b6:4c:06:ef:ff:11:b6:14:04:f7: e6:66:d6:d6:9f:df:4f:ca:fc:99:d1:bd:80:55:3d: e8:28:89:e0:8c:74:c9:0c:32:7a:6d:94:a1:fa:04: 90:4a:f0:d6:a5:3d:6b:ea:6c:b1:45:3f:d8:f5:8b: 09:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 83:70:2A:AB:C8:9E:0E:E9:61:96:D4:53:F1:1C:C2:31:73:89:EA:10 X509v3 Authority Key Identifier: keyid:62:28:E7:E0:1F:AD:A4:9C:1A:52:FA:13:F3:62:6C:41:B4:1A:51:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Yijn4B-tpJwaUvoT82JsQbQaUbg.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0e/baaff3-aeb4-4616-8fb5-76741652510d/1/g3Aqq8ieDulhltRT8RzCMXOJ6hA.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/0e/baaff3-aeb4-4616-8fb5-76741652510d/1/Yijn4B-tpJwaUvoT82JsQbQaUbg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 91.108.4.0-91.108.11.255 91.108.56.0/22 95.161.64.0/20 149.154.160.0/21 Signature Algorithm: sha256WithRSAEncryption 2a:af:66:ae:7d:8c:a1:11:67:0f:03:ef:18:94:3e:e3:f4:b0: 9d:81:93:5f:3c:93:ec:c1:4c:08:fc:61:5d:a7:f2:15:27:97: 9d:cb:4c:b3:e2:f9:f6:4b:c2:cd:26:cd:5a:7a:91:70:34:a1: c7:dc:3d:8a:95:8b:ad:84:42:42:22:c6:58:03:1e:ef:9e:f9: 25:83:98:18:d0:31:54:ad:b7:3f:62:8b:c3:a7:54:a2:f7:f7: 84:79:ec:92:ec:28:d9:e8:79:68:30:2e:38:e3:8f:0c:d9:cb: ba:43:f7:2e:f0:7a:2b:dd:92:b1:d2:df:ef:b3:4a:83:9e:0f: 45:46:bd:3d:af:da:14:ee:ac:bc:2c:d8:1e:dc:de:a7:78:4d: 77:7c:a3:9a:08:62:6d:5f:ee:d5:97:2f:48:0c:ba:86:7c:d7: 3e:ec:cb:89:a0:e0:07:69:12:b8:32:ae:cc:e1:fa:26:a3:60: 1f:86:71:dd:77:45:96:06:90:39:bd:6d:c4:ac:79:aa:4c:6b: de:66:42:2e:c5:a9:34:b5:1f:24:ba:c0:79:6d:8a:ae:c2:60: 27:4a:28:f5:69:b8:27:1f:5d:cc:15:0a:34:0e:a0:e6:40:38: 60:b0:d5:b6:2a:b5:78:bc:9b:c9:4e:bb:05:db:cb:35:79:36: ea:7b:5f:94 -----BEGIN CERTIFICATE----- MIIFFzCCA/+gAwIBAgISAZt9yIcb7gaGTF9iVgqUXC85MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDYyMjhlN2UwMWZhZGE0OWMxYTUyZmExM2YzNjI2YzQxYjQx YTUxYjgwHhcNMjYwMTAyMDgxNzMyWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg4MzcwMmFhYmM4OWUwZWU5NjE5NmQ0NTNmMTFjYzIzMTczODllYTEwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAn7gw89p5pAbbwmJLlyE4ArI4ZkG9 vKkHR4JXGHsU01lfBnkGmd4jpYQZGyIWPfiCWYoAlRA988cV3PQXi5HFW/LfMSKu fZLghNTIuaYo86YpdQT4NxcQJioOybfDDFM13XZ6YXBkbZAkShf1bJeFrlCLqKJz ITP3seoB4rfcreSIX3+uMR1sbBYTd1zDBGVLei0iMD8l17GzmMv5h21CCD/iiYPy K7TuU5bf63kh1Rv7OKA3I0nHITJXkYlilDXB0pGbJnblXbZMBu//EbYUBPfmZtbW n99PyvyZ0b2AVT3oKIngjHTJDDJ6bZSh+gSQSvDWpT1r6myxRT/Y9YsJQQIDAQAB o4ICIzCCAh8wHQYDVR0OBBYEFINwKqvIng7pYZbUU/EcwjFzieoQMB8GA1UdIwQY MBaAFGIo5+AfraScGlL6E/NibEG0GlG4MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvWWlqbjRCLXRwSndhVXZvVDgySnNRYlFhVWJnLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wZS9iYWFmZjMtYWViNC00NjE2LThmYjUt NzY3NDE2NTI1MTBkLzEvZzNBcXE4aWVEdWxobHRSVDhSekNNWE9KNmhBLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wZS9iYWFmZjMtYWViNC00NjE2LThmYjUtNzY3NDE2NTI1MTBk LzEvWWlqbjRCLXRwSndhVXZvVDgySnNRYlFhVWJnLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMDkGCCsGAQUFBwEHAQH/BCowKDAmBAIAATAgMAwDBAJbbAQD BAJbbAgDBAJbbDgDBARfoUADBAOVmqAwDQYJKoZIhvcNAQELBQADggEBACqvZq59 jKERZw8D7xiUPuP0sJ2Bk188k+zBTAj8YV2n8hUnl53LTLPi+fZLws0mzVp6kXA0 ocfcPYqVi62EQkIixlgDHu+e+SWDmBjQMVSttz9ii8OnVKL394R57JLsKNnoeWgw LjjjjwzZy7pD9y7weivdkrHS3++zSoOeD0VGvT2v2hTurLws2B7c3qd4TXd8o5oI Ym1f7tWXL0gMuoZ81z7sy4mg4AdpErgyrszh+iajYB+Gcd13RZYGkDm9bcSseapM a95mQi7FqTS1HyS6wHltiq7CYCdKKPVpuCcfXcwVCjQOoOZAOGCw1bYqtXi8m8lO uwXbyzV5Nup7X5Q= -----END CERTIFICATE-----Generated at Sun Jan 25 13:07:08 2026 by rpki-client