This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/18/8983af-5c18-4bc8-a3f5-07509191f953/1/i7ahmmzCoN5G9N5UQomOHHe69RA.roa File: i7ahmmzCoN5G9N5UQomOHHe69RA.roa (raw, json) Hash identifier: GGCZiPMQLo6nn63tOlWXS7/n5qwIMxP1oeej8rFYFvI= Subject key identifier: 8B:B6:A1:9A:6C:C2:A0:DE:46:F4:DE:54:42:89:8E:1C:77:BA:F5:10 Certificate issuer: /CN=5c30d95046331bdce3018b7ffe0f13dbf9fc718d Certificate serial: 019B7A5B09812EA993943082FE0104EFBBBB Authority key identifier: 5C:30:D9:50:46:33:1B:DC:E3:01:8B:7F:FE:0F:13:DB:F9:FC:71:8D Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XDDZUEYzG9zjAYt__g8T2_n8cY0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/18/8983af-5c18-4bc8-a3f5-07509191f953/1/i7ahmmzCoN5G9N5UQomOHHe69RA.roa Signing time: Thu 01 Jan 2026 16:19:05 +0000 ROA not before: Thu 01 Jan 2026 16:19:05 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 42160 IP address blocks: 91.230.64.0/24 maxlen: 24 164.138.104.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/18/8983af-5c18-4bc8-a3f5-07509191f953/1/XDDZUEYzG9zjAYt__g8T2_n8cY0.crl rsync://rpki.ripe.net/repository/DEFAULT/18/8983af-5c18-4bc8-a3f5-07509191f953/1/XDDZUEYzG9zjAYt__g8T2_n8cY0.mft rsync://rpki.ripe.net/repository/DEFAULT/XDDZUEYzG9zjAYt__g8T2_n8cY0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 22:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7a:5b:09:81:2e:a9:93:94:30:82:fe:01:04:ef:bb:bb Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5c30d95046331bdce3018b7ffe0f13dbf9fc718d Validity Not Before: Jan 1 16:19:05 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=8bb6a19a6cc2a0de46f4de5442898e1c77baf510 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9b:d7:01:c2:08:7a:13:5c:53:49:62:b3:07:1d: ed:e7:d1:55:fa:a9:e5:24:da:bf:3e:4c:b8:7d:75: 23:71:af:86:2c:b0:67:29:02:14:42:af:5b:3b:37: 02:a5:45:34:17:48:fd:ca:0f:a9:7c:e9:87:01:1a: 3f:16:c6:2a:2c:9c:b1:d8:d5:cf:ae:78:ad:51:d3: 34:c6:c9:3d:52:17:30:07:7f:59:6e:09:cd:b7:5f: b3:fe:aa:7f:99:09:20:0b:19:e6:9a:4a:c9:bb:19: ac:91:f1:98:66:7a:29:66:b1:6d:37:57:ad:dd:f0: d4:aa:fd:86:b5:0b:90:45:d3:12:e6:4b:20:64:a8: 4f:0f:97:03:dd:8c:10:30:a0:94:97:03:ff:80:4f: 07:a0:5c:ed:7d:3e:31:43:30:1e:22:51:03:78:ed: 50:ff:0e:ed:f2:81:b3:75:fb:a9:12:4b:b1:f8:44: 03:63:98:cd:e6:ba:a0:c1:ab:35:ba:af:ca:b0:46: cd:f7:c7:96:42:34:fb:53:e5:7c:c4:8b:e1:f6:ca: 0b:02:9e:ce:30:83:0e:7b:d9:83:6d:cb:49:7a:91: da:c2:4e:7f:fb:61:b8:f3:9e:7c:7e:18:67:7e:48: e9:e5:09:1b:87:94:43:e7:04:7c:8a:00:b5:f0:99: 35:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8B:B6:A1:9A:6C:C2:A0:DE:46:F4:DE:54:42:89:8E:1C:77:BA:F5:10 X509v3 Authority Key Identifier: keyid:5C:30:D9:50:46:33:1B:DC:E3:01:8B:7F:FE:0F:13:DB:F9:FC:71:8D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XDDZUEYzG9zjAYt__g8T2_n8cY0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/18/8983af-5c18-4bc8-a3f5-07509191f953/1/i7ahmmzCoN5G9N5UQomOHHe69RA.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/18/8983af-5c18-4bc8-a3f5-07509191f953/1/XDDZUEYzG9zjAYt__g8T2_n8cY0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 91.230.64.0/24 164.138.104.0/21 Signature Algorithm: sha256WithRSAEncryption 39:82:43:b5:a0:4c:10:e9:b3:09:91:e9:35:cf:38:08:cf:62: 16:18:6b:29:5d:e4:45:1f:5f:66:71:d3:b3:78:20:43:c3:10: 4b:be:35:a5:8a:80:bb:6b:63:89:23:a1:45:83:13:5e:b6:77: 35:6c:d0:02:f6:26:f7:00:dd:6f:d4:dd:11:ec:98:9a:da:cc: 18:aa:e9:45:e0:c2:f0:af:2c:c4:49:b3:3c:3f:93:47:76:51: e4:79:13:c6:96:9f:47:7a:33:71:76:34:73:58:a6:c8:9e:ac: 00:06:e0:8d:3d:32:62:5a:6f:2b:31:e0:86:5f:9a:eb:e6:a6: 7b:36:7e:a0:f4:cb:c3:88:22:b8:b9:fc:ed:4a:21:11:e5:de: 80:90:85:25:99:7f:57:a0:b6:ec:4f:4b:82:85:de:15:9d:9b: 49:08:19:e3:d0:59:52:72:18:b7:e5:8f:4f:f6:da:56:e3:ff: 1d:3b:f8:38:fb:2b:fe:c4:42:27:83:ed:75:99:e1:c7:1f:4d: 4a:b1:9e:bc:d6:d0:a6:09:40:ca:74:b6:13:a7:d3:6e:bd:5a: 9d:8a:ef:8e:10:72:98:ea:85:8e:7f:13:90:19:c8:cd:a5:7a: 8a:b2:ae:e6:76:a3:80:06:75:32:9b:78:2d:87:a7:ce:0e:08: 74:cb:ce:24 -----BEGIN CERTIFICATE----- MIIFAzCCA+ugAwIBAgISAZt6WwmBLqmTlDCC/gEE77u7MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDVjMzBkOTUwNDYzMzFiZGNlMzAxOGI3ZmZlMGYxM2RiZjlm YzcxOGQwHhcNMjYwMTAxMTYxOTA1WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg4YmI2YTE5YTZjYzJhMGRlNDZmNGRlNTQ0Mjg5OGUxYzc3YmFmNTEwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAm9cBwgh6E1xTSWKzBx3t59FV+qnl JNq/Pky4fXUjca+GLLBnKQIUQq9bOzcCpUU0F0j9yg+pfOmHARo/FsYqLJyx2NXP rnitUdM0xsk9UhcwB39ZbgnNt1+z/qp/mQkgCxnmmkrJuxmskfGYZnopZrFtN1et 3fDUqv2GtQuQRdMS5ksgZKhPD5cD3YwQMKCUlwP/gE8HoFztfT4xQzAeIlEDeO1Q /w7t8oGzdfupEkux+EQDY5jN5rqgwas1uq/KsEbN98eWQjT7U+V8xIvh9soLAp7O MIMOe9mDbctJepHawk5/+2G48558fhhnfkjp5Qkbh5RD5wR8igC18Jk13QIDAQAB o4ICDzCCAgswHQYDVR0OBBYEFIu2oZpswqDeRvTeVEKJjhx3uvUQMB8GA1UdIwQY MBaAFFww2VBGMxvc4wGLf/4PE9v5/HGNMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvWEREWlVFWXpHOXpqQVl0X19nOFQyX244Y1kwLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xOC84OTgzYWYtNWMxOC00YmM4LWEzZjUt MDc1MDkxOTFmOTUzLzEvaTdhaG1tekNvTjVHOU41VVFvbU9ISGU2OVJBLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xOC84OTgzYWYtNWMxOC00YmM4LWEzZjUtMDc1MDkxOTFmOTUz LzEvWEREWlVFWXpHOXpqQVl0X19nOFQyX244Y1kwLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQAW+ZAAwQD pIpoMA0GCSqGSIb3DQEBCwUAA4IBAQA5gkO1oEwQ6bMJkek1zzgIz2IWGGspXeRF H19mcdOzeCBDwxBLvjWlioC7a2OJI6FFgxNetnc1bNAC9ib3AN1v1N0R7Jia2swY qulF4MLwryzESbM8P5NHdlHkeRPGlp9HejNxdjRzWKbInqwABuCNPTJiWm8rMeCG X5rr5qZ7Nn6g9MvDiCK4ufztSiER5d6AkIUlmX9XoLbsT0uChd4VnZtJCBnj0FlS chi35Y9P9tpW4/8dO/g4+yv+xEIng+11meHHH01KsZ681tCmCUDKdLYTp9NuvVqd iu+OEHKY6oWOfxOQGcjNpXqKsq7mdqOABnUym3gth6fODgh0y84k -----END CERTIFICATE-----Generated at Mon Jan 26 03:57:35 2026 by rpki-client