This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/56/f560e1-7840-4951-ab78-5001539d7185/1/P87lZ7Ef2BR77Lqo6Nr4b33vsVg.roa File: P87lZ7Ef2BR77Lqo6Nr4b33vsVg.roa (raw, json) Hash identifier: 6YXFCgmB7zJPsoy62cgRIKR8vUGLkRn2x0HuMd4gmO4= Subject key identifier: 3F:CE:E5:67:B1:1F:D8:14:7B:EC:BA:A8:E8:DA:F8:6F:7D:EF:B1:58 Certificate issuer: /CN=8b47aa09f2c610f6f44b4e75c1cd9dcd3884e55d Certificate serial: 019B78A222461A92EF0F1A7FD28FA4C554CA Authority key identifier: 8B:47:AA:09:F2:C6:10:F6:F4:4B:4E:75:C1:CD:9D:CD:38:84:E5:5D Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i0eqCfLGEPb0S051wc2dzTiE5V0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/56/f560e1-7840-4951-ab78-5001539d7185/1/P87lZ7Ef2BR77Lqo6Nr4b33vsVg.roa Signing time: Thu 01 Jan 2026 08:17:29 +0000 ROA not before: Thu 01 Jan 2026 08:17:29 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 51431 IP address blocks: 91.246.31.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/56/f560e1-7840-4951-ab78-5001539d7185/1/i0eqCfLGEPb0S051wc2dzTiE5V0.crl rsync://rpki.ripe.net/repository/DEFAULT/56/f560e1-7840-4951-ab78-5001539d7185/1/i0eqCfLGEPb0S051wc2dzTiE5V0.mft rsync://rpki.ripe.net/repository/DEFAULT/i0eqCfLGEPb0S051wc2dzTiE5V0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 16:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:78:a2:22:46:1a:92:ef:0f:1a:7f:d2:8f:a4:c5:54:ca Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8b47aa09f2c610f6f44b4e75c1cd9dcd3884e55d Validity Not Before: Jan 1 08:17:29 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=3fcee567b11fd8147becbaa8e8daf86f7defb158 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:c5:2a:71:cc:b6:90:60:d0:9c:fa:b9:93:08: 81:10:32:9e:d1:1d:09:5f:34:76:02:f5:aa:75:b8: ec:20:10:7f:db:35:4e:70:35:31:04:cf:6f:b2:62: 0b:b3:ac:19:7d:18:03:e0:2d:30:6e:23:a2:bc:29: 66:44:c2:9b:f0:ed:08:60:d1:3e:18:1e:74:31:38: 48:51:68:d2:6e:40:8f:6a:61:57:91:d0:74:8a:c2: b3:0e:20:56:e2:be:d3:e0:7e:42:40:8f:18:48:37: 48:8d:b4:f8:4b:71:85:9f:f6:b2:04:e6:7b:45:54: be:f9:f9:67:29:ae:29:b5:d5:04:d8:ad:67:14:9c: 39:0c:c9:6c:71:84:ae:ea:e9:45:c9:0f:86:81:b4: a9:16:91:8e:63:c3:22:2f:e1:93:be:67:bf:0c:f4: 71:36:7d:b5:4f:c7:b2:37:85:25:8f:fa:f0:08:6a: ea:9f:92:9c:57:e6:81:bf:b2:35:5b:e2:a3:91:b8: d1:40:fa:fa:b5:e0:43:4e:4b:bc:5d:b6:c1:73:b8: 4e:8d:a7:e0:3c:df:66:02:a0:5a:2b:11:06:fe:f9: 50:d4:32:9a:ea:6a:ef:b7:e9:00:ad:57:4e:e1:fb: 22:44:4f:6a:fb:b2:e1:d9:a0:dc:cf:8c:3e:d7:c9: 86:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3F:CE:E5:67:B1:1F:D8:14:7B:EC:BA:A8:E8:DA:F8:6F:7D:EF:B1:58 X509v3 Authority Key Identifier: keyid:8B:47:AA:09:F2:C6:10:F6:F4:4B:4E:75:C1:CD:9D:CD:38:84:E5:5D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i0eqCfLGEPb0S051wc2dzTiE5V0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/56/f560e1-7840-4951-ab78-5001539d7185/1/P87lZ7Ef2BR77Lqo6Nr4b33vsVg.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/56/f560e1-7840-4951-ab78-5001539d7185/1/i0eqCfLGEPb0S051wc2dzTiE5V0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 91.246.31.0/24 Signature Algorithm: sha256WithRSAEncryption 89:87:87:46:b3:17:dd:fe:5d:0c:7f:b3:84:e0:16:d5:86:5d: eb:ce:b6:18:e7:7f:ee:3c:d7:55:8c:9f:b9:9f:64:4d:6f:92: 0e:2f:de:0d:b9:dd:b3:ef:f3:52:d9:24:c6:79:f1:49:70:e4: ac:6c:66:eb:9b:e6:df:bc:36:ff:bb:ca:01:5e:57:29:b9:ff: 0f:74:0b:0b:18:d5:8b:94:df:29:03:4e:7f:03:14:82:21:5a: 79:c5:4e:0a:a3:03:5a:af:34:1a:fc:52:93:a4:05:02:66:fb: 0a:e5:73:03:8b:20:74:b4:40:95:99:d0:f5:d3:f5:7c:ce:29: b1:b7:bd:30:4c:7a:23:83:c5:a7:6b:8e:b1:d1:60:be:32:30: 4c:d0:42:6a:87:d0:58:6a:3b:a9:09:0f:fc:84:5d:6b:df:79: 1b:cf:5b:23:d9:0f:1d:04:99:bd:d5:95:3e:44:a1:e9:ca:fc: f1:5f:ca:3a:ee:27:b8:a6:3d:34:d6:39:8f:0c:b7:ef:c7:6a: d9:27:1b:9b:d7:6d:eb:a0:de:23:41:a2:7e:2d:7f:78:8d:ef: ad:1d:7b:0a:63:a4:e0:ca:76:89:79:ba:73:c2:ba:ee:7e:ac: 8c:ce:16:de:7b:4b:61:e6:c1:af:3b:05:14:62:fa:4f:6c:0e: fc:97:cf:6e -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt4oiJGGpLvDxp/0o+kxVTKMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDhiNDdhYTA5ZjJjNjEwZjZmNDRiNGU3NWMxY2Q5ZGNkMzg4 NGU1NWQwHhcNMjYwMTAxMDgxNzI5WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygzZmNlZTU2N2IxMWZkODE0N2JlY2JhYThlOGRhZjg2ZjdkZWZiMTU4MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAs8Uqccy2kGDQnPq5kwiBEDKe0R0J XzR2AvWqdbjsIBB/2zVOcDUxBM9vsmILs6wZfRgD4C0wbiOivClmRMKb8O0IYNE+ GB50MThIUWjSbkCPamFXkdB0isKzDiBW4r7T4H5CQI8YSDdIjbT4S3GFn/ayBOZ7 RVS++flnKa4ptdUE2K1nFJw5DMlscYSu6ulFyQ+GgbSpFpGOY8MiL+GTvme/DPRx Nn21T8eyN4Ulj/rwCGrqn5KcV+aBv7I1W+KjkbjRQPr6teBDTku8XbbBc7hOjafg PN9mAqBaKxEG/vlQ1DKa6mrvt+kArVdO4fsiRE9q+7Lh2aDcz4w+18mGDQIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFD/O5WexH9gUe+y6qOja+G9977FYMB8GA1UdIwQY MBaAFItHqgnyxhD29EtOdcHNnc04hOVdMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvaTBlcUNmTEdFUGIwUzA1MXdjMmR6VGlFNVYwLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81Ni9mNTYwZTEtNzg0MC00OTUxLWFiNzgt NTAwMTUzOWQ3MTg1LzEvUDg3bFo3RWYyQlI3N0xxbzZOcjRiMzN2c1ZnLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81Ni9mNTYwZTEtNzg0MC00OTUxLWFiNzgtNTAwMTUzOWQ3MTg1 LzEvaTBlcUNmTEdFUGIwUzA1MXdjMmR6VGlFNVYwLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAW/YfMA0G CSqGSIb3DQEBCwUAA4IBAQCJh4dGsxfd/l0Mf7OE4BbVhl3rzrYY53/uPNdVjJ+5 n2RNb5IOL94Nud2z7/NS2STGefFJcOSsbGbrm+bfvDb/u8oBXlcpuf8PdAsLGNWL lN8pA05/AxSCIVp5xU4KowNarzQa/FKTpAUCZvsK5XMDiyB0tECVmdD10/V8zimx t70wTHojg8Wna46x0WC+MjBM0EJqh9BYajupCQ/8hF1r33kbz1sj2Q8dBJm91ZU+ RKHpyvzxX8o67ie4pj001jmPDLfvx2rZJxub123roN4jQaJ+LX94je+tHXsKY6Tg ynaJebpzwrrufqyMzhbee0th5sGvOwUUYvpPbA78l89u -----END CERTIFICATE-----Generated at Mon Jan 26 01:21:41 2026 by rpki-client