This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/41/9ac86a-85ed-4a1c-873f-752905330392/1/oWw98f4bNM9LtIQxRub1EWETvac.roa File: oWw98f4bNM9LtIQxRub1EWETvac.roa (raw, json) Hash identifier: aAOilAHbjhSIlksDdDQYiXq9fjYiWz1hB658OU9itjo= Subject key identifier: A1:6C:3D:F1:FE:1B:34:CF:4B:B4:84:31:46:E6:F5:11:61:13:BD:A7 Certificate issuer: /CN=1983604f083e58c3cd19d39480baaadf38a19b63 Certificate serial: 019B79114DB56EBF0B6DD2DEF4F9C694F3DD Authority key identifier: 19:83:60:4F:08:3E:58:C3:CD:19:D3:94:80:BA:AA:DF:38:A1:9B:63 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GYNgTwg-WMPNGdOUgLqq3zihm2M.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/41/9ac86a-85ed-4a1c-873f-752905330392/1/oWw98f4bNM9LtIQxRub1EWETvac.roa Signing time: Thu 01 Jan 2026 10:18:55 +0000 ROA not before: Thu 01 Jan 2026 10:18:55 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 21263 IP address blocks: 91.209.197.0/24 maxlen: 24 2a0d:9600::/29 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/41/9ac86a-85ed-4a1c-873f-752905330392/1/GYNgTwg-WMPNGdOUgLqq3zihm2M.crl rsync://rpki.ripe.net/repository/DEFAULT/41/9ac86a-85ed-4a1c-873f-752905330392/1/GYNgTwg-WMPNGdOUgLqq3zihm2M.mft rsync://rpki.ripe.net/repository/DEFAULT/GYNgTwg-WMPNGdOUgLqq3zihm2M.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 10:01:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:79:11:4d:b5:6e:bf:0b:6d:d2:de:f4:f9:c6:94:f3:dd Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1983604f083e58c3cd19d39480baaadf38a19b63 Validity Not Before: Jan 1 10:18:55 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=a16c3df1fe1b34cf4bb4843146e6f5116113bda7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:c9:fb:ad:98:2b:9c:bd:5b:4c:97:59:67:c2: 1b:dd:86:32:5f:21:a8:b4:21:74:e2:5c:59:6c:ab: 63:20:fc:19:8e:1e:b2:9e:d0:31:ff:f1:1f:92:c3: ee:73:d3:a2:0d:b7:2a:78:d8:ff:f2:31:4b:37:6c: fb:77:81:d1:cd:47:72:33:13:1d:96:0d:df:b1:c0: 7b:ed:4c:b0:39:df:1e:79:d6:bb:15:12:db:b9:58: 63:16:d8:9c:7e:14:8b:2c:cb:8a:9b:87:11:43:15: 2d:6c:2c:80:32:f4:91:56:c8:fa:7a:06:a0:19:a3: 33:74:d3:a2:64:8a:e3:00:53:db:de:e9:d0:01:45: 50:ef:06:6d:8b:61:22:c3:84:d8:1a:a1:3b:57:1c: e1:06:1d:fe:f3:3b:85:2e:1d:76:12:cd:c0:95:ca: c8:fc:1d:d8:ff:46:63:c7:7b:22:cf:48:2c:2d:96: f3:20:5d:59:37:76:57:ad:6b:ba:dc:4c:cc:1c:36: 51:8f:0a:23:cd:cb:1e:df:50:11:ba:3e:a1:e3:27: c3:af:9a:9a:42:8c:83:44:90:59:3e:69:09:64:a2: c1:c9:f6:ca:21:13:bd:95:60:5e:99:a3:42:cd:cb: 41:67:0f:11:2b:47:7e:a5:6b:65:07:cd:ef:cb:08: e0:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A1:6C:3D:F1:FE:1B:34:CF:4B:B4:84:31:46:E6:F5:11:61:13:BD:A7 X509v3 Authority Key Identifier: keyid:19:83:60:4F:08:3E:58:C3:CD:19:D3:94:80:BA:AA:DF:38:A1:9B:63 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GYNgTwg-WMPNGdOUgLqq3zihm2M.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/41/9ac86a-85ed-4a1c-873f-752905330392/1/oWw98f4bNM9LtIQxRub1EWETvac.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/41/9ac86a-85ed-4a1c-873f-752905330392/1/GYNgTwg-WMPNGdOUgLqq3zihm2M.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 91.209.197.0/24 IPv6: 2a0d:9600::/29 Signature Algorithm: sha256WithRSAEncryption 0e:03:1a:26:c0:4a:ea:e9:38:b4:62:22:98:74:98:76:e4:c4: b2:0c:a0:7c:67:99:ef:a5:d6:f6:a6:5f:e6:a7:13:61:30:71: a7:c5:98:19:c5:ee:1b:a1:60:91:82:7b:13:e2:b5:f1:c2:f3: 40:8e:de:f1:fe:7a:86:e4:8e:3f:84:1a:a9:af:08:dd:f6:06: 6e:08:01:da:3c:94:0e:b1:81:3c:54:a2:9c:dd:92:05:fe:a8: f5:be:22:34:83:ac:10:e3:37:a9:11:06:bd:85:10:9b:eb:e6: d5:6a:7b:70:94:3f:d6:3a:9d:ae:17:a1:fa:7b:c1:2b:6a:51: f7:21:ee:7d:3e:b5:03:a2:2a:91:08:10:9b:70:24:e4:bd:8c: fc:df:83:70:64:93:49:cb:cd:3c:54:0b:cf:8b:d4:dd:9d:20: 43:02:57:1b:5d:fb:9d:24:d0:2c:d6:52:ce:50:87:12:a2:fb: ef:9b:ce:6b:3f:47:45:d0:a9:75:50:d3:40:cf:f9:97:69:b4: 20:ac:c5:9f:27:32:22:57:04:bd:fa:c2:d5:d6:42:51:f9:11: 00:c5:3c:1f:ec:ff:26:a5:b6:b6:05:b1:53:ed:f1:f1:8c:c9: c2:c0:2c:5e:53:0d:f7:aa:4d:97:76:e7:bb:78:84:4b:69:48: 80:87:27:0e -----BEGIN CERTIFICATE----- MIIFDDCCA/SgAwIBAgISAZt5EU21br8LbdLe9PnGlPPdMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDE5ODM2MDRmMDgzZTU4YzNjZDE5ZDM5NDgwYmFhYWRmMzhh MTliNjMwHhcNMjYwMTAxMTAxODU1WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhhMTZjM2RmMWZlMWIzNGNmNGJiNDg0MzE0NmU2ZjUxMTYxMTNiZGE3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAycn7rZgrnL1bTJdZZ8Ib3YYyXyGo tCF04lxZbKtjIPwZjh6yntAx//EfksPuc9OiDbcqeNj/8jFLN2z7d4HRzUdyMxMd lg3fscB77UywOd8eeda7FRLbuVhjFticfhSLLMuKm4cRQxUtbCyAMvSRVsj6egag GaMzdNOiZIrjAFPb3unQAUVQ7wZti2Eiw4TYGqE7VxzhBh3+8zuFLh12Es3AlcrI /B3Y/0Zjx3siz0gsLZbzIF1ZN3ZXrWu63EzMHDZRjwojzcse31ARuj6h4yfDr5qa QoyDRJBZPmkJZKLByfbKIRO9lWBemaNCzctBZw8RK0d+pWtlB83vywjgzQIDAQAB o4ICGDCCAhQwHQYDVR0OBBYEFKFsPfH+GzTPS7SEMUbm9RFhE72nMB8GA1UdIwQY MBaAFBmDYE8IPljDzRnTlIC6qt84oZtjMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvR1lOZ1R3Zy1XTVBOR2RPVWdMcXEzemlobTJNLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80MS85YWM4NmEtODVlZC00YTFjLTg3M2Yt NzUyOTA1MzMwMzkyLzEvb1d3OThmNGJOTTlMdElReFJ1YjFFV0VUdmFjLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC80MS85YWM4NmEtODVlZC00YTFjLTg3M2YtNzUyOTA1MzMwMzky LzEvR1lOZ1R3Zy1XTVBOR2RPVWdMcXEzemlobTJNLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMC4GCCsGAQUFBwEHAQH/BB8wHTAMBAIAATAGAwQAW9HFMA0E AgACMAcDBQMqDZYAMA0GCSqGSIb3DQEBCwUAA4IBAQAOAxomwErq6Ti0YiKYdJh2 5MSyDKB8Z5nvpdb2pl/mpxNhMHGnxZgZxe4boWCRgnsT4rXxwvNAjt7x/nqG5I4/ hBqprwjd9gZuCAHaPJQOsYE8VKKc3ZIF/qj1viI0g6wQ4zepEQa9hRCb6+bVantw lD/WOp2uF6H6e8EralH3Ie59PrUDoiqRCBCbcCTkvYz834NwZJNJy808VAvPi9Td nSBDAlcbXfudJNAs1lLOUIcSovvvm85rP0dF0Kl1UNNAz/mXabQgrMWfJzIiVwS9 +sLV1kJR+REAxTwf7P8mpba2BbFT7fHxjMnCwCxeUw33qk2Xdue7eIRLaUiAhycO -----END CERTIFICATE-----Generated at Sun Jan 25 19:37:35 2026 by rpki-client