This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/37/d3363e-4832-4d57-9da5-dbf76ed3939f/1/W3zOKFUi2t_SPUT2DlTDsdU_z2w.roa File: W3zOKFUi2t_SPUT2DlTDsdU_z2w.roa (raw, json) Hash identifier: /WnpIr6aQ2Hx4ti+HlYDPocD/mQ4NxnOIR2iit9Xgag= Subject key identifier: 5B:7C:CE:28:55:22:DA:DF:D2:3D:44:F6:0E:54:C3:B1:D5:3F:CF:6C Certificate issuer: /CN=010a7d4c64aed4bc98c6b5b064ff0a9b82eada82 Certificate serial: 019B76EB50470D3D2C431A3572522360D0C9 Authority key identifier: 01:0A:7D:4C:64:AE:D4:BC:98:C6:B5:B0:64:FF:0A:9B:82:EA:DA:82 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AQp9TGSu1LyYxrWwZP8Km4Lq2oI.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/37/d3363e-4832-4d57-9da5-dbf76ed3939f/1/W3zOKFUi2t_SPUT2DlTDsdU_z2w.roa Signing time: Thu 01 Jan 2026 00:18:11 +0000 ROA not before: Thu 01 Jan 2026 00:18:11 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 201355 IP address blocks: 91.220.251.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/37/d3363e-4832-4d57-9da5-dbf76ed3939f/1/AQp9TGSu1LyYxrWwZP8Km4Lq2oI.crl rsync://rpki.ripe.net/repository/DEFAULT/37/d3363e-4832-4d57-9da5-dbf76ed3939f/1/AQp9TGSu1LyYxrWwZP8Km4Lq2oI.mft rsync://rpki.ripe.net/repository/DEFAULT/AQp9TGSu1LyYxrWwZP8Km4Lq2oI.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 13:21:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:76:eb:50:47:0d:3d:2c:43:1a:35:72:52:23:60:d0:c9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=010a7d4c64aed4bc98c6b5b064ff0a9b82eada82 Validity Not Before: Jan 1 00:18:11 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=5b7cce285522dadfd23d44f60e54c3b1d53fcf6c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:35:f4:db:ac:3c:cf:af:99:a0:ad:18:6a:d9: 5c:f5:67:00:dd:5f:a3:b7:58:86:96:ef:71:59:c0: e6:53:1b:76:a0:30:21:86:c4:7e:58:fc:d0:5c:ac: 95:e9:fe:ff:b4:43:64:6e:8c:c6:fd:ad:ed:4e:0f: fa:fc:c4:91:13:89:5b:3f:f0:40:66:12:fe:86:d6: 90:8c:b7:93:44:7e:55:da:ea:33:e0:fc:8c:a5:cc: 32:89:de:b3:79:19:19:48:2f:c5:f8:49:a8:f6:51: a4:d6:d4:ee:2a:19:a9:e1:9b:66:58:6f:68:fa:e5: fd:71:d0:09:49:2b:24:f4:38:af:a3:88:4e:67:c4: 8b:1f:ad:0e:99:d0:94:e9:9f:c2:7c:cb:16:52:a3: 49:d7:34:12:62:0c:3d:2b:05:78:0a:20:7c:e0:f6: 54:4c:0c:b8:8c:7e:87:13:43:3b:25:57:21:70:2f: ed:55:7b:d6:41:66:8a:3e:56:f8:42:3d:20:c3:4b: 6c:e7:f0:af:48:11:53:a4:05:00:a3:ed:09:0f:15: 4b:23:56:27:cc:fc:e1:ef:95:d6:5d:71:87:a7:41: 0b:9a:a3:05:c5:1b:dc:d6:47:44:fe:3c:f8:36:a2: 73:88:0d:c8:31:64:db:b7:cd:c1:d4:18:63:84:fc: 75:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5B:7C:CE:28:55:22:DA:DF:D2:3D:44:F6:0E:54:C3:B1:D5:3F:CF:6C X509v3 Authority Key Identifier: keyid:01:0A:7D:4C:64:AE:D4:BC:98:C6:B5:B0:64:FF:0A:9B:82:EA:DA:82 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AQp9TGSu1LyYxrWwZP8Km4Lq2oI.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/37/d3363e-4832-4d57-9da5-dbf76ed3939f/1/W3zOKFUi2t_SPUT2DlTDsdU_z2w.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/37/d3363e-4832-4d57-9da5-dbf76ed3939f/1/AQp9TGSu1LyYxrWwZP8Km4Lq2oI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 91.220.251.0/24 Signature Algorithm: sha256WithRSAEncryption 5f:c7:e7:ff:14:08:7d:09:44:d8:50:ec:b5:a7:43:5c:d7:62: 00:20:05:fc:7b:6f:65:cd:59:7a:3a:2f:8e:ce:32:e5:18:ee: d7:4b:b7:c9:9e:b9:a6:d3:8d:e2:6b:f0:5b:be:3e:8b:33:60: 9f:a8:b7:82:25:25:41:fc:8f:ee:d6:0d:ef:c5:cd:89:0f:a8: ab:4a:c5:e2:7a:b1:6b:a0:f4:ce:a8:4c:be:b9:17:a2:37:bd: 56:b2:f0:2e:9e:73:cc:e2:63:93:b5:3c:06:bc:cc:f5:b0:9a: e2:80:04:ac:c8:74:b4:bf:b1:3e:2e:07:31:04:6f:6e:69:71: bd:b9:74:4e:2b:3f:c1:96:4b:78:29:0f:31:ab:80:5a:a7:b3: b3:a6:d1:46:f3:18:ca:62:4f:d5:89:8d:dc:1e:93:93:72:fc: 74:fc:54:82:89:43:5d:05:56:ea:57:2d:3e:30:7d:4c:2c:cd: ba:1c:14:2d:6e:18:95:bc:bf:cd:d6:2d:9b:b2:f2:b2:cd:d1: a9:9c:79:ce:da:1d:4f:e8:8b:de:e7:d0:c8:fe:00:17:40:be: 57:04:d1:07:1d:d2:4b:35:8e:6d:a6:ed:9c:af:d5:de:2c:86: 79:80:3d:8c:37:f7:f2:d8:5d:37:28:bd:16:d8:0e:ff:8c:0f: 93:70:d5:33 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt261BHDT0sQxo1clIjYNDJMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDAxMGE3ZDRjNjRhZWQ0YmM5OGM2YjViMDY0ZmYwYTliODJl YWRhODIwHhcNMjYwMTAxMDAxODExWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg1YjdjY2UyODU1MjJkYWRmZDIzZDQ0ZjYwZTU0YzNiMWQ1M2ZjZjZjMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArDX026w8z6+ZoK0Yatlc9WcA3V+j t1iGlu9xWcDmUxt2oDAhhsR+WPzQXKyV6f7/tENkbozG/a3tTg/6/MSRE4lbP/BA ZhL+htaQjLeTRH5V2uoz4PyMpcwyid6zeRkZSC/F+Emo9lGk1tTuKhmp4ZtmWG9o +uX9cdAJSSsk9Divo4hOZ8SLH60OmdCU6Z/CfMsWUqNJ1zQSYgw9KwV4CiB84PZU TAy4jH6HE0M7JVchcC/tVXvWQWaKPlb4Qj0gw0ts5/CvSBFTpAUAo+0JDxVLI1Yn zPzh75XWXXGHp0ELmqMFxRvc1kdE/jz4NqJziA3IMWTbt83B1BhjhPx1VwIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFFt8zihVItrf0j1E9g5Uw7HVP89sMB8GA1UdIwQY MBaAFAEKfUxkrtS8mMa1sGT/CpuC6tqCMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvQVFwOVRHU3UxTHlZeHJXd1pQOEttNExxMm9JLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zNy9kMzM2M2UtNDgzMi00ZDU3LTlkYTUt ZGJmNzZlZDM5MzlmLzEvVzN6T0tGVWkydF9TUFVUMkRsVERzZFVfejJ3LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zNy9kMzM2M2UtNDgzMi00ZDU3LTlkYTUtZGJmNzZlZDM5Mzlm LzEvQVFwOVRHU3UxTHlZeHJXd1pQOEttNExxMm9JLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAW9z7MA0G CSqGSIb3DQEBCwUAA4IBAQBfx+f/FAh9CUTYUOy1p0Nc12IAIAX8e29lzVl6Oi+O zjLlGO7XS7fJnrmm043ia/Bbvj6LM2CfqLeCJSVB/I/u1g3vxc2JD6irSsXierFr oPTOqEy+uReiN71WsvAunnPM4mOTtTwGvMz1sJrigASsyHS0v7E+LgcxBG9uaXG9 uXROKz/Blkt4KQ8xq4Bap7OzptFG8xjKYk/ViY3cHpOTcvx0/FSCiUNdBVbqVy0+ MH1MLM26HBQtbhiVvL/N1i2bsvKyzdGpnHnO2h1P6Ive59DI/gAXQL5XBNEHHdJL NY5tpu2cr9XeLIZ5gD2MN/fy2F03KL0W2A7/jA+TcNUz -----END CERTIFICATE-----Generated at Sun Jan 25 23:31:48 2026 by rpki-client