This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/48/f5ed1c-3797-400d-b72f-804cda5243b3/1/aoQsvFOShg8unGdvRNHzyskZu6Q.roa File: aoQsvFOShg8unGdvRNHzyskZu6Q.roa (raw, json) Hash identifier: p8PU4KP73BDGEEa9wvSrJwTPPhTgMiV7+d9ryeZmr2c= Subject key identifier: 6A:84:2C:BC:53:92:86:0F:2E:9C:67:6F:44:D1:F3:CA:C9:19:BB:A4 Certificate issuer: /CN=9f6c98d597b781b7a10c7e0edb1c48f6b81a5f8b Certificate serial: 019B7A5B1B82C4313140CEFA7571DC6676CA Authority key identifier: 9F:6C:98:D5:97:B7:81:B7:A1:0C:7E:0E:DB:1C:48:F6:B8:1A:5F:8B Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/n2yY1Ze3gbehDH4O2xxI9rgaX4s.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/48/f5ed1c-3797-400d-b72f-804cda5243b3/1/aoQsvFOShg8unGdvRNHzyskZu6Q.roa Signing time: Thu 01 Jan 2026 16:19:09 +0000 ROA not before: Thu 01 Jan 2026 16:19:09 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 5089 IP address blocks: 91.198.255.0/24 maxlen: 24 193.36.34.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/48/f5ed1c-3797-400d-b72f-804cda5243b3/1/n2yY1Ze3gbehDH4O2xxI9rgaX4s.crl rsync://rpki.ripe.net/repository/DEFAULT/48/f5ed1c-3797-400d-b72f-804cda5243b3/1/n2yY1Ze3gbehDH4O2xxI9rgaX4s.mft rsync://rpki.ripe.net/repository/DEFAULT/n2yY1Ze3gbehDH4O2xxI9rgaX4s.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 16:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7a:5b:1b:82:c4:31:31:40:ce:fa:75:71:dc:66:76:ca Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9f6c98d597b781b7a10c7e0edb1c48f6b81a5f8b Validity Not Before: Jan 1 16:19:09 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=6a842cbc5392860f2e9c676f44d1f3cac919bba4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:99:99:0a:7f:b5:44:29:4a:93:aa:bd:cc:64:11: 3a:ab:c0:e3:45:bb:05:31:40:04:91:af:d9:f4:3d: 7b:cb:25:32:bb:1a:51:24:dd:0b:51:3b:21:47:14: f4:2f:ac:bd:55:a7:1f:89:8d:de:bd:ef:df:30:dd: 13:80:44:d3:42:e7:af:17:2a:3e:ce:6b:e1:5d:b0: ff:0d:22:21:8c:38:0a:8a:ba:fe:ff:66:15:4e:f7: 12:6c:1b:77:16:02:77:90:45:bb:e7:45:8c:05:68: 1d:a1:72:20:10:61:9e:c7:31:a3:1f:d1:0a:f4:05: 67:ba:ef:d0:4b:2a:f5:7b:79:b6:92:ce:28:31:69: 5a:94:5e:72:d7:30:9f:a6:c9:73:d4:1a:fa:92:71: 3c:83:cd:cf:ad:83:63:a6:fc:f4:fb:ec:69:9c:8d: d2:cd:1d:74:07:e5:c0:8f:6f:20:8e:99:7d:04:8e: 7e:ec:93:07:56:05:16:17:18:83:c7:6e:ee:dd:35: ce:d7:7f:41:0d:bd:9c:05:a4:04:bb:ae:2a:9c:ea: 61:a6:77:54:85:03:6a:ac:c6:92:61:69:4c:34:a4: d5:ab:60:6d:99:4d:43:46:22:de:3a:59:a7:d7:16: 65:92:da:42:57:47:d8:89:b8:4f:b4:9d:48:27:7e: 4b:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6A:84:2C:BC:53:92:86:0F:2E:9C:67:6F:44:D1:F3:CA:C9:19:BB:A4 X509v3 Authority Key Identifier: keyid:9F:6C:98:D5:97:B7:81:B7:A1:0C:7E:0E:DB:1C:48:F6:B8:1A:5F:8B X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/n2yY1Ze3gbehDH4O2xxI9rgaX4s.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/48/f5ed1c-3797-400d-b72f-804cda5243b3/1/aoQsvFOShg8unGdvRNHzyskZu6Q.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/48/f5ed1c-3797-400d-b72f-804cda5243b3/1/n2yY1Ze3gbehDH4O2xxI9rgaX4s.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 91.198.255.0/24 193.36.34.0/24 Signature Algorithm: sha256WithRSAEncryption 17:aa:f0:35:8f:04:06:5e:04:05:05:7e:e6:05:24:9d:43:1f: 1d:c3:cb:da:ec:64:f8:08:33:2f:f5:ad:53:14:f2:61:b2:e3: 19:77:d0:bf:21:a7:30:c3:45:72:c5:7d:d1:96:a9:d4:b7:2f: 50:b5:63:a4:16:f3:56:44:57:fe:c6:d7:3f:77:dc:d4:d6:7d: 4b:d2:1e:ca:de:60:d0:00:b2:d6:d1:9f:32:e9:fb:0c:c5:1d: b2:78:4c:4d:e7:cf:6b:9b:27:a1:89:86:00:47:7e:b4:31:5c: c2:c1:26:eb:72:dc:00:56:72:44:3d:14:11:3a:a0:30:71:61: 72:b9:fd:72:c1:4f:be:14:43:f4:97:3e:93:64:ec:70:78:10: e8:04:39:5c:e6:90:93:7d:f2:d6:53:e7:8e:a0:df:ee:3e:e7: 6d:19:5b:ee:09:31:61:d2:f5:fa:26:6f:35:4e:29:14:30:df: e2:37:b7:e7:ff:b8:e1:95:4d:14:ed:53:d6:b1:4b:ae:92:9a: d6:b9:7e:ab:39:a9:3a:d2:b4:9c:2f:ed:25:99:ca:1e:9d:d3: 38:95:28:3a:13:3b:29:6d:2b:c1:03:96:6d:55:aa:d2:90:b6: 3c:59:ed:a8:df:99:bd:d0:f7:9f:69:dc:15:94:cc:d5:ef:0e: 03:98:01:05 -----BEGIN CERTIFICATE----- MIIFAzCCA+ugAwIBAgISAZt6WxuCxDExQM76dXHcZnbKMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDlmNmM5OGQ1OTdiNzgxYjdhMTBjN2UwZWRiMWM0OGY2Yjgx YTVmOGIwHhcNMjYwMTAxMTYxOTA5WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg2YTg0MmNiYzUzOTI4NjBmMmU5YzY3NmY0NGQxZjNjYWM5MTliYmE0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmZkKf7VEKUqTqr3MZBE6q8DjRbsF MUAEka/Z9D17yyUyuxpRJN0LUTshRxT0L6y9VacfiY3eve/fMN0TgETTQuevFyo+ zmvhXbD/DSIhjDgKirr+/2YVTvcSbBt3FgJ3kEW750WMBWgdoXIgEGGexzGjH9EK 9AVnuu/QSyr1e3m2ks4oMWlalF5y1zCfpslz1Br6knE8g83PrYNjpvz0++xpnI3S zR10B+XAj28gjpl9BI5+7JMHVgUWFxiDx27u3TXO139BDb2cBaQEu64qnOphpndU hQNqrMaSYWlMNKTVq2BtmU1DRiLeOlmn1xZlktpCV0fYibhPtJ1IJ35LQwIDAQAB o4ICDzCCAgswHQYDVR0OBBYEFGqELLxTkoYPLpxnb0TR88rJGbukMB8GA1UdIwQY MBaAFJ9smNWXt4G3oQx+DtscSPa4Gl+LMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvbjJ5WTFaZTNnYmVoREg0TzJ4eEk5cmdhWDRzLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80OC9mNWVkMWMtMzc5Ny00MDBkLWI3MmYt ODA0Y2RhNTI0M2IzLzEvYW9Rc3ZGT1NoZzh1bkdkdlJOSHp5c2tadTZRLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC80OC9mNWVkMWMtMzc5Ny00MDBkLWI3MmYtODA0Y2RhNTI0M2Iz LzEvbjJ5WTFaZTNnYmVoREg0TzJ4eEk5cmdhWDRzLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQAW8b/AwQA wSQiMA0GCSqGSIb3DQEBCwUAA4IBAQAXqvA1jwQGXgQFBX7mBSSdQx8dw8va7GT4 CDMv9a1TFPJhsuMZd9C/Iacww0VyxX3RlqnUty9QtWOkFvNWRFf+xtc/d9zU1n1L 0h7K3mDQALLW0Z8y6fsMxR2yeExN589rmyehiYYAR360MVzCwSbrctwAVnJEPRQR OqAwcWFyuf1ywU++FEP0lz6TZOxweBDoBDlc5pCTffLWU+eOoN/uPudtGVvuCTFh 0vX6Jm81TikUMN/iN7fn/7jhlU0U7VPWsUuukprWuX6rOak60rScL+0lmcoendM4 lSg6EzspbSvBA5ZtVarSkLY8We2o35m90PefadwVlMzV7w4DmAEF -----END CERTIFICATE-----Generated at Mon Jan 26 01:16:25 2026 by rpki-client