This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/36/54a58b-7a32-46bc-85c0-30b764eb4900/1/qEVUH4qtPIdY31l07wJYpUogkpY.roa File: qEVUH4qtPIdY31l07wJYpUogkpY.roa (raw, json) Hash identifier: 1CkNjM5HwfDl6NM7jfzoD/R4QOj8Vqv8jxVT070r3q4= Subject key identifier: A8:45:54:1F:8A:AD:3C:87:58:DF:59:74:EF:02:58:A5:4A:20:92:96 Certificate issuer: /CN=9fddaf213257d176df50aa6e77648a0cc72a5fa1 Certificate serial: 019B7B367F3F5CEF362B45C9F2499C19F7CB Authority key identifier: 9F:DD:AF:21:32:57:D1:76:DF:50:AA:6E:77:64:8A:0C:C7:2A:5F:A1 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/n92vITJX0XbfUKpud2SKDMcqX6E.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/36/54a58b-7a32-46bc-85c0-30b764eb4900/1/qEVUH4qtPIdY31l07wJYpUogkpY.roa Signing time: Thu 01 Jan 2026 20:18:47 +0000 ROA not before: Thu 01 Jan 2026 20:18:47 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 5089 IP address blocks: 91.223.46.0/24 maxlen: 24 91.224.26.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/36/54a58b-7a32-46bc-85c0-30b764eb4900/1/n92vITJX0XbfUKpud2SKDMcqX6E.crl rsync://rpki.ripe.net/repository/DEFAULT/36/54a58b-7a32-46bc-85c0-30b764eb4900/1/n92vITJX0XbfUKpud2SKDMcqX6E.mft rsync://rpki.ripe.net/repository/DEFAULT/n92vITJX0XbfUKpud2SKDMcqX6E.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 07:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7b:36:7f:3f:5c:ef:36:2b:45:c9:f2:49:9c:19:f7:cb Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9fddaf213257d176df50aa6e77648a0cc72a5fa1 Validity Not Before: Jan 1 20:18:47 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=a845541f8aad3c8758df5974ef0258a54a209296 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:37:01:e4:83:c6:f2:5b:61:1f:7c:6e:87:21: 04:79:b8:0b:7d:b2:b5:73:d8:a5:82:a3:34:ad:c2: a0:71:45:3a:13:ac:b1:82:8f:74:22:08:82:a8:2e: ab:7e:47:8d:04:e5:5e:50:b1:a6:8a:7a:48:63:f0: b6:7f:6d:a2:5a:3b:0f:a8:99:f1:93:1e:3a:93:f1: f5:d3:56:49:5b:af:62:aa:f0:4c:e1:df:21:4d:c7: 9a:ba:5c:d1:d5:95:1e:94:58:ba:ad:bf:6b:23:78: 52:2a:0f:3e:a8:69:2d:5d:9a:6c:d0:63:cd:93:63: 07:56:17:e1:e5:ee:00:f7:95:65:f6:89:99:f3:a1: 2e:78:ac:94:a7:6b:8c:19:f9:6a:7a:ad:4e:3c:23: 3f:5d:a2:8a:94:31:fa:d6:e6:66:0d:da:c1:1f:57: 39:12:19:2e:16:bb:0c:3c:64:e4:9a:02:84:de:46: 4e:6e:0c:ab:c4:7b:c2:b0:7d:2b:f0:a9:1a:f9:c7: 40:d4:75:d9:9a:1b:8a:80:67:ff:45:0a:ee:c8:b1: 95:48:be:5e:c1:98:b9:8b:d4:77:1d:85:2b:b2:1e: 04:e0:a3:15:bd:eb:7b:54:37:32:60:e3:b7:73:20: a5:67:61:4f:cd:72:2b:bd:0a:83:1b:a1:1f:96:1e: cf:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A8:45:54:1F:8A:AD:3C:87:58:DF:59:74:EF:02:58:A5:4A:20:92:96 X509v3 Authority Key Identifier: keyid:9F:DD:AF:21:32:57:D1:76:DF:50:AA:6E:77:64:8A:0C:C7:2A:5F:A1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/n92vITJX0XbfUKpud2SKDMcqX6E.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/36/54a58b-7a32-46bc-85c0-30b764eb4900/1/qEVUH4qtPIdY31l07wJYpUogkpY.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/36/54a58b-7a32-46bc-85c0-30b764eb4900/1/n92vITJX0XbfUKpud2SKDMcqX6E.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 91.223.46.0/24 91.224.26.0/23 Signature Algorithm: sha256WithRSAEncryption 20:0b:a3:4a:f7:f6:58:fc:74:a1:54:0f:24:e4:1f:80:75:69: ab:c5:fb:b2:3f:0e:74:d8:3e:0e:6f:6d:3c:22:b9:d9:8d:af: 23:3e:9c:6c:17:c0:c2:9f:97:56:1e:86:77:0b:5f:79:1d:a9: 89:39:32:0e:d5:04:7c:5f:cd:8d:bb:81:83:69:d2:22:46:e0: e6:a5:2e:9b:ff:49:8d:15:83:4a:5d:79:ab:b7:df:8e:1a:b9: fc:f4:79:d6:f7:13:91:62:a7:0e:bf:8e:73:ca:99:d0:ab:44: 3f:41:f1:ca:00:98:1b:c3:96:26:2f:7c:03:2f:81:a0:6f:c1: a2:ab:66:31:26:30:77:04:ef:93:05:ab:36:29:9e:c3:c0:8b: 66:0c:ee:d0:59:0e:72:68:00:16:b1:de:5a:14:4c:bf:ed:87: 4d:d6:75:96:dc:02:86:96:6e:b4:47:b0:c0:8b:ac:c3:7e:0e: 00:6c:ae:94:ec:f1:d6:be:8d:79:dc:6a:7f:44:02:ac:1a:67: 6f:e8:f5:4f:86:a5:4c:37:8b:9d:ee:13:07:28:bf:1b:8c:ab: ee:4a:3e:72:91:51:50:15:55:39:a1:27:8b:56:7b:43:82:2a: f1:f7:17:2c:60:f8:06:a9:cb:3b:b0:8f:4a:4a:90:d2:94:16: b4:e2:54:e8 -----BEGIN CERTIFICATE----- MIIFAzCCA+ugAwIBAgISAZt7Nn8/XO82K0XJ8kmcGffLMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDlmZGRhZjIxMzI1N2QxNzZkZjUwYWE2ZTc3NjQ4YTBjYzcy YTVmYTEwHhcNMjYwMTAxMjAxODQ3WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhhODQ1NTQxZjhhYWQzYzg3NThkZjU5NzRlZjAyNThhNTRhMjA5Mjk2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsjcB5IPG8lthH3xuhyEEebgLfbK1 c9ilgqM0rcKgcUU6E6yxgo90IgiCqC6rfkeNBOVeULGminpIY/C2f22iWjsPqJnx kx46k/H101ZJW69iqvBM4d8hTceaulzR1ZUelFi6rb9rI3hSKg8+qGktXZps0GPN k2MHVhfh5e4A95Vl9omZ86EueKyUp2uMGflqeq1OPCM/XaKKlDH61uZmDdrBH1c5 EhkuFrsMPGTkmgKE3kZObgyrxHvCsH0r8Kka+cdA1HXZmhuKgGf/RQruyLGVSL5e wZi5i9R3HYUrsh4E4KMVvet7VDcyYOO3cyClZ2FPzXIrvQqDG6Eflh7PjQIDAQAB o4ICDzCCAgswHQYDVR0OBBYEFKhFVB+KrTyHWN9ZdO8CWKVKIJKWMB8GA1UdIwQY MBaAFJ/dryEyV9F231CqbndkigzHKl+hMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvbjkydklUSlgwWGJmVUtwdWQyU0tETWNxWDZFLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zNi81NGE1OGItN2EzMi00NmJjLTg1YzAt MzBiNzY0ZWI0OTAwLzEvcUVWVUg0cXRQSWRZMzFsMDd3SllwVW9na3BZLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zNi81NGE1OGItN2EzMi00NmJjLTg1YzAtMzBiNzY0ZWI0OTAw LzEvbjkydklUSlgwWGJmVUtwdWQyU0tETWNxWDZFLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQAW98uAwQB W+AaMA0GCSqGSIb3DQEBCwUAA4IBAQAgC6NK9/ZY/HShVA8k5B+AdWmrxfuyPw50 2D4Ob208IrnZja8jPpxsF8DCn5dWHoZ3C195HamJOTIO1QR8X82Nu4GDadIiRuDm pS6b/0mNFYNKXXmrt9+OGrn89HnW9xORYqcOv45zypnQq0Q/QfHKAJgbw5YmL3wD L4Ggb8Giq2YxJjB3BO+TBas2KZ7DwItmDO7QWQ5yaAAWsd5aFEy/7YdN1nWW3AKG lm60R7DAi6zDfg4AbK6U7PHWvo153Gp/RAKsGmdv6PVPhqVMN4ud7hMHKL8bjKvu Sj5ykVFQFVU5oSeLVntDgirx9xcsYPgGqcs7sI9KSpDSlBa04lTo -----END CERTIFICATE-----Generated at Sun Jan 25 13:08:29 2026 by rpki-client