This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/27/90c5be-2f6e-4441-9461-3bd79ffc6398/1/kWM8lsFwe_wFxY0y-iFsflRsUJ8.roa File: kWM8lsFwe_wFxY0y-iFsflRsUJ8.roa (raw, json) Hash identifier: xNuj3kW4sY8f//DAghPZs4zV41qytpxRleGwYrYpxck= Subject key identifier: 91:63:3C:96:C1:70:7B:FC:05:C5:8D:32:FA:21:6C:7E:54:6C:50:9F Certificate issuer: /CN=bdd4262f642b1bb0b53b2a6d7798c0899d1e4d43 Certificate serial: 019B7C80A9AAF8555814942CFB14AE1C6090 Authority key identifier: BD:D4:26:2F:64:2B:1B:B0:B5:3B:2A:6D:77:98:C0:89:9D:1E:4D:43 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vdQmL2QrG7C1Oyptd5jAiZ0eTUM.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/27/90c5be-2f6e-4441-9461-3bd79ffc6398/1/kWM8lsFwe_wFxY0y-iFsflRsUJ8.roa Signing time: Fri 02 Jan 2026 02:19:25 +0000 ROA not before: Fri 02 Jan 2026 02:19:25 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 211248 IP address blocks: 91.221.2.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/27/90c5be-2f6e-4441-9461-3bd79ffc6398/1/vdQmL2QrG7C1Oyptd5jAiZ0eTUM.crl rsync://rpki.ripe.net/repository/DEFAULT/27/90c5be-2f6e-4441-9461-3bd79ffc6398/1/vdQmL2QrG7C1Oyptd5jAiZ0eTUM.mft rsync://rpki.ripe.net/repository/DEFAULT/vdQmL2QrG7C1Oyptd5jAiZ0eTUM.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 08:00:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7c:80:a9:aa:f8:55:58:14:94:2c:fb:14:ae:1c:60:90 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=bdd4262f642b1bb0b53b2a6d7798c0899d1e4d43 Validity Not Before: Jan 2 02:19:25 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=91633c96c1707bfc05c58d32fa216c7e546c509f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:97:df:0b:e1:66:77:1d:ac:57:f8:56:29:f6:de: b1:a0:33:99:e1:c5:26:6f:e6:91:a6:90:c0:4d:78: c1:66:cc:b5:cf:93:64:d1:41:92:b0:65:33:bc:ec: f8:0a:85:84:53:b7:2b:6a:2d:5c:46:e7:8d:69:48: 88:95:93:79:f6:76:b2:a4:e5:02:95:44:21:af:d7: 7a:24:a2:91:cb:d7:bc:41:10:2f:4c:d1:bb:6c:57: fb:70:be:11:11:eb:ee:f1:06:1c:20:e0:49:17:aa: 4e:1d:d1:e5:e3:64:73:cc:85:34:75:30:b4:8c:ee: f5:4c:9a:b0:4d:cb:7d:5a:c0:cb:cd:b9:4e:b5:05: 79:61:f8:13:e0:0f:a1:43:47:e8:62:0a:ce:ff:70: 5b:66:b1:b7:d9:b6:78:0d:51:f0:78:50:e1:39:0d: e9:7c:59:27:f4:91:59:4a:75:b2:ab:a5:ab:f1:83: ee:8b:a4:7d:4d:df:18:f7:9d:bf:af:a4:56:2b:b1: fa:dd:f5:ce:85:cb:b5:6a:27:59:d7:ca:c9:51:3c: 57:6f:82:7b:0e:fb:05:23:65:2e:37:15:e1:2d:1d: bb:ac:45:3d:24:0c:c2:d2:96:dc:74:c1:f9:45:ed: 81:9c:30:b6:1e:54:d4:f1:46:81:b8:fa:a2:94:d5: ec:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 91:63:3C:96:C1:70:7B:FC:05:C5:8D:32:FA:21:6C:7E:54:6C:50:9F X509v3 Authority Key Identifier: keyid:BD:D4:26:2F:64:2B:1B:B0:B5:3B:2A:6D:77:98:C0:89:9D:1E:4D:43 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vdQmL2QrG7C1Oyptd5jAiZ0eTUM.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/27/90c5be-2f6e-4441-9461-3bd79ffc6398/1/kWM8lsFwe_wFxY0y-iFsflRsUJ8.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/27/90c5be-2f6e-4441-9461-3bd79ffc6398/1/vdQmL2QrG7C1Oyptd5jAiZ0eTUM.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 91.221.2.0/23 Signature Algorithm: sha256WithRSAEncryption c7:54:58:e3:d7:a8:cb:c7:cb:6e:9a:ae:d1:27:06:06:d8:fc: c5:bb:e8:05:f6:ac:b2:2b:84:ce:d9:b8:20:8a:7e:8c:36:06: 8e:98:c9:7f:96:f1:5e:dc:f5:a7:a4:1b:64:e6:0d:15:7d:53: 43:53:3c:f7:f4:c6:1a:57:e6:ee:dd:1a:83:e9:7a:ca:1a:0b: 3a:83:d3:6f:71:e3:1c:44:7e:b9:36:69:1f:2e:bc:fb:02:48: 2c:3b:b2:ac:3c:31:73:dc:68:99:18:02:14:2f:5e:a0:97:b1: 08:92:95:0a:28:b2:2a:90:5e:9b:99:c4:d1:0f:d1:27:af:6e: ec:b3:a9:63:4d:12:7b:bd:ff:74:e4:29:72:ea:86:8a:de:49: 19:54:84:41:84:97:94:f2:d6:ab:3b:ee:7d:4d:bf:fb:75:b5: d5:ca:7f:44:da:69:72:47:f9:e1:e7:2b:63:da:db:ca:c9:83: 2f:ce:7f:fd:c6:8d:32:35:74:6b:72:c7:67:09:23:13:7e:f2: b4:79:6f:de:c7:43:33:b9:48:81:ca:c5:a1:07:1c:cc:b9:2c: d9:e7:0f:40:72:d8:45:61:a5:0f:24:e9:cb:3f:7f:8c:29:f1: a6:1a:65:2c:5a:22:67:af:bf:a1:05:15:17:7d:d7:00:d6:73: 6c:31:fc:c9 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt8gKmq+FVYFJQs+xSuHGCQMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGJkZDQyNjJmNjQyYjFiYjBiNTNiMmE2ZDc3OThjMDg5OWQx ZTRkNDMwHhcNMjYwMTAyMDIxOTI1WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg5MTYzM2M5NmMxNzA3YmZjMDVjNThkMzJmYTIxNmM3ZTU0NmM1MDlmMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAl98L4WZ3HaxX+FYp9t6xoDOZ4cUm b+aRppDATXjBZsy1z5Nk0UGSsGUzvOz4CoWEU7crai1cRueNaUiIlZN59naypOUC lUQhr9d6JKKRy9e8QRAvTNG7bFf7cL4REevu8QYcIOBJF6pOHdHl42RzzIU0dTC0 jO71TJqwTct9WsDLzblOtQV5YfgT4A+hQ0foYgrO/3BbZrG32bZ4DVHweFDhOQ3p fFkn9JFZSnWyq6Wr8YPui6R9Td8Y952/r6RWK7H63fXOhcu1aidZ18rJUTxXb4J7 DvsFI2UuNxXhLR27rEU9JAzC0pbcdMH5Re2BnDC2HlTU8UaBuPqilNXspwIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFJFjPJbBcHv8BcWNMvohbH5UbFCfMB8GA1UdIwQY MBaAFL3UJi9kKxuwtTsqbXeYwImdHk1DMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvdmRRbUwyUXJHN0MxT3lwdGQ1akFpWjBlVFVNLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yNy85MGM1YmUtMmY2ZS00NDQxLTk0NjEt M2JkNzlmZmM2Mzk4LzEva1dNOGxzRndlX3dGeFkweS1pRnNmbFJzVUo4LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yNy85MGM1YmUtMmY2ZS00NDQxLTk0NjEtM2JkNzlmZmM2Mzk4 LzEvdmRRbUwyUXJHN0MxT3lwdGQ1akFpWjBlVFVNLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBW90CMA0G CSqGSIb3DQEBCwUAA4IBAQDHVFjj16jLx8tumq7RJwYG2PzFu+gF9qyyK4TO2bgg in6MNgaOmMl/lvFe3PWnpBtk5g0VfVNDUzz39MYaV+bu3RqD6XrKGgs6g9NvceMc RH65NmkfLrz7AkgsO7KsPDFz3GiZGAIUL16gl7EIkpUKKLIqkF6bmcTRD9Enr27s s6ljTRJ7vf905Cly6oaK3kkZVIRBhJeU8tarO+59Tb/7dbXVyn9E2mlyR/nh5ytj 2tvKyYMvzn/9xo0yNXRrcsdnCSMTfvK0eW/ex0MzuUiBysWhBxzMuSzZ5w9ActhF YaUPJOnLP3+MKfGmGmUsWiJnr7+hBRUXfdcA1nNsMfzJ -----END CERTIFICATE-----Generated at Sun Jan 25 19:16:08 2026 by rpki-client