This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/32/421c6d-535c-4c13-8da3-dea12dd8c7f4/1/1-fsHYTIUTFY0216Qbk8IXnoEcp8.roa File: 1-fsHYTIUTFY0216Qbk8IXnoEcp8.roa (raw, json) Hash identifier: bfgMgiAWnH7b52b8mMjuMw9kDEycqTEWeJ8kbQp2a6c= Subject key identifier: F9:FB:07:61:32:14:4C:56:34:DB:5E:90:6E:4F:08:5E:7A:04:72:9F Certificate issuer: /CN=b8ed3ebcd2155f9a178a103adab48fda8b2275a5 Certificate serial: 019B7BA33E8738F0FF0D16DAA655CE149D76 Authority key identifier: B8:ED:3E:BC:D2:15:5F:9A:17:8A:10:3A:DA:B4:8F:DA:8B:22:75:A5 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uO0-vNIVX5oXihA62rSP2osidaU.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/32/421c6d-535c-4c13-8da3-dea12dd8c7f4/1/1-fsHYTIUTFY0216Qbk8IXnoEcp8.roa Signing time: Thu 01 Jan 2026 22:17:34 +0000 ROA not before: Thu 01 Jan 2026 22:17:34 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 31277 IP address blocks: 91.215.200.0/24 maxlen: 24 91.215.203.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/32/421c6d-535c-4c13-8da3-dea12dd8c7f4/1/uO0-vNIVX5oXihA62rSP2osidaU.crl rsync://rpki.ripe.net/repository/DEFAULT/32/421c6d-535c-4c13-8da3-dea12dd8c7f4/1/uO0-vNIVX5oXihA62rSP2osidaU.mft rsync://rpki.ripe.net/repository/DEFAULT/uO0-vNIVX5oXihA62rSP2osidaU.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 13:01:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7b:a3:3e:87:38:f0:ff:0d:16:da:a6:55:ce:14:9d:76 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b8ed3ebcd2155f9a178a103adab48fda8b2275a5 Validity Not Before: Jan 1 22:17:34 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=f9fb076132144c5634db5e906e4f085e7a04729f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:8d:4c:63:68:11:27:ce:f6:45:e2:90:47:d8: ed:ea:3b:ab:e5:e0:bb:1a:3a:83:af:0d:01:c3:9c: 04:88:0d:d4:25:04:50:f2:d2:db:3a:2a:b9:d5:7a: a4:bd:b6:60:45:df:06:8a:c2:e7:68:09:96:bf:bc: b6:c6:57:13:41:ec:fc:18:3e:00:92:64:60:3e:99: 6e:31:1c:e0:d0:70:2b:62:b0:19:fd:0a:eb:15:a1: 72:02:94:8f:72:3a:c4:92:7f:f0:8d:f6:af:a5:e8: 3e:21:59:af:db:87:2a:c2:b2:ca:d9:a4:5e:18:9b: ff:3d:05:f8:5a:06:ca:71:93:64:a9:51:0b:f6:d5: 4d:90:23:54:f7:24:7f:fd:52:aa:17:c3:6e:a6:cd: 60:91:12:d4:4e:f1:27:85:3c:57:67:56:81:33:15: 73:49:3d:0a:aa:59:fa:d8:3a:d9:18:32:98:7a:2f: a4:0b:29:c8:9f:90:d7:61:74:2c:a8:d8:1e:44:5d: 5f:01:12:d6:4c:43:d4:5c:ba:db:ab:bd:fd:b6:da: 7d:99:e2:05:c7:6c:45:fc:1f:36:63:66:ba:21:5c: 29:5b:ce:37:70:2a:20:46:a7:37:fc:e5:63:c4:48: f1:0e:9d:24:f6:b7:5c:fd:c7:72:4b:ee:f8:7e:84: 7a:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F9:FB:07:61:32:14:4C:56:34:DB:5E:90:6E:4F:08:5E:7A:04:72:9F X509v3 Authority Key Identifier: keyid:B8:ED:3E:BC:D2:15:5F:9A:17:8A:10:3A:DA:B4:8F:DA:8B:22:75:A5 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uO0-vNIVX5oXihA62rSP2osidaU.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/32/421c6d-535c-4c13-8da3-dea12dd8c7f4/1/1-fsHYTIUTFY0216Qbk8IXnoEcp8.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/32/421c6d-535c-4c13-8da3-dea12dd8c7f4/1/uO0-vNIVX5oXihA62rSP2osidaU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 91.215.200.0/24 91.215.203.0/24 Signature Algorithm: sha256WithRSAEncryption 17:d5:ae:a5:b4:9c:2e:2e:96:27:db:0d:7f:88:51:6d:91:58: 85:1b:e3:16:46:a6:b5:57:8c:40:0e:f4:c1:37:17:fd:98:dd: d9:d7:27:86:15:1c:73:ed:ed:2d:5f:cc:57:80:11:20:5b:69: 07:d3:9a:03:b2:77:97:5e:c7:65:0d:f0:50:a3:e5:17:fd:79: ff:bc:a3:95:d5:fb:56:af:7b:31:bc:a7:25:47:a4:b1:01:84: 4b:b7:ea:fa:2d:bc:4f:83:04:56:16:dd:e0:92:c6:0c:9a:37: 9b:77:e6:48:9d:95:60:82:b4:4b:2e:f7:e9:95:58:9a:84:6c: 62:0c:b5:c8:c3:94:49:08:22:14:5a:fe:a3:a0:12:de:cb:5f: 14:9c:d2:03:e3:eb:63:b5:e3:14:3c:32:d1:2f:34:95:7e:46: 63:e2:28:b7:d2:39:d3:7e:72:9f:1f:70:a7:3b:fd:fc:7a:15: 9e:2e:52:4a:81:39:86:c9:f7:42:d4:8e:1f:a4:76:d8:7a:be: 8c:22:1c:67:a7:d7:c7:51:77:08:f5:9f:3f:47:40:31:c3:61: 59:d5:34:e2:bc:e3:b8:7d:3f:07:53:e9:2d:fa:49:28:e0:c2: fa:f8:ee:20:3c:0f:44:2a:b1:33:1c:2f:ed:c1:25:02:89:24: 1d:46:df:61 -----BEGIN CERTIFICATE----- MIIFBDCCA+ygAwIBAgISAZt7oz6HOPD/DRbaplXOFJ12MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGI4ZWQzZWJjZDIxNTVmOWExNzhhMTAzYWRhYjQ4ZmRhOGIy Mjc1YTUwHhcNMjYwMTAxMjIxNzM0WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhmOWZiMDc2MTMyMTQ0YzU2MzRkYjVlOTA2ZTRmMDg1ZTdhMDQ3MjlmMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAz41MY2gRJ872ReKQR9jt6jur5eC7 GjqDrw0Bw5wEiA3UJQRQ8tLbOiq51XqkvbZgRd8GisLnaAmWv7y2xlcTQez8GD4A kmRgPpluMRzg0HArYrAZ/QrrFaFyApSPcjrEkn/wjfavpeg+IVmv24cqwrLK2aRe GJv/PQX4WgbKcZNkqVEL9tVNkCNU9yR//VKqF8Nups1gkRLUTvEnhTxXZ1aBMxVz ST0Kqln62DrZGDKYei+kCynIn5DXYXQsqNgeRF1fARLWTEPUXLrbq739ttp9meIF x2xF/B82Y2a6IVwpW843cCogRqc3/OVjxEjxDp0k9rdc/cdyS+74foR6EQIDAQAB o4ICEDCCAgwwHQYDVR0OBBYEFPn7B2EyFExWNNtekG5PCF56BHKfMB8GA1UdIwQY MBaAFLjtPrzSFV+aF4oQOtq0j9qLInWlMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvdU8wLXZOSVZYNW9YaWhBNjJyU1Ayb3NpZGFVLmNlcjCB jgYIKwYBBQUHAQsEgYEwfzB9BggrBgEFBQcwC4ZxcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zMi80MjFjNmQtNTM1Yy00YzEzLThkYTMt ZGVhMTJkZDhjN2Y0LzEvMS1mc0hZVElVVEZZMDIxNlFiazhJWG5vRWNwOC5yb2Ew gYEGA1UdHwR6MHgwdqB0oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0 b3J5L0RFRkFVTFQvMzIvNDIxYzZkLTUzNWMtNGMxMy04ZGEzLWRlYTEyZGQ4Yzdm NC8xL3VPMC12TklWWDVvWGloQTYyclNQMm9zaWRhVS5jcmwwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAlBggrBgEFBQcBBwEB/wQWMBQwEgQCAAEwDAMEAFvXyAME AFvXyzANBgkqhkiG9w0BAQsFAAOCAQEAF9WupbScLi6WJ9sNf4hRbZFYhRvjFkam tVeMQA70wTcX/Zjd2dcnhhUcc+3tLV/MV4ARIFtpB9OaA7J3l17HZQ3wUKPlF/15 /7yjldX7Vq97MbynJUeksQGES7fq+i28T4MEVhbd4JLGDJo3m3fmSJ2VYIK0Sy73 6ZVYmoRsYgy1yMOUSQgiFFr+o6AS3stfFJzSA+PrY7XjFDwy0S80lX5GY+Iot9I5 035ynx9wpzv9/HoVni5SSoE5hsn3QtSOH6R22Hq+jCIcZ6fXx1F3CPWfP0dAMcNh WdU04rzjuH0/B1PpLfpJKODC+vjuIDwPRCqxMxwv7cElAokkHUbfYQ== -----END CERTIFICATE-----Generated at Sun Jan 25 22:30:10 2026 by rpki-client