This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/59/dd1ddf-73cf-4bb2-8a6e-6e4aec86fe1e/1/Lsrf7nsJ0SILJoz91hQ7QSVYOyM.roa File: Lsrf7nsJ0SILJoz91hQ7QSVYOyM.roa (raw, json) Hash identifier: e35RQqzj6QwkN2NUro/zWKe5ECceCwxDtJyTfKjd9Gc= Subject key identifier: 2E:CA:DF:EE:7B:09:D1:22:0B:26:8C:FD:D6:14:3B:41:25:58:3B:23 Certificate issuer: /CN=637104d927e7e1ef8febbffddf28145495011094 Certificate serial: 019B7AC89DD708D12FDAF2E8CAB9881FE7A4 Authority key identifier: 63:71:04:D9:27:E7:E1:EF:8F:EB:BF:FD:DF:28:14:54:95:01:10:94 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y3EE2Sfn4e-P67_93ygUVJUBEJQ.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/59/dd1ddf-73cf-4bb2-8a6e-6e4aec86fe1e/1/Lsrf7nsJ0SILJoz91hQ7QSVYOyM.roa Signing time: Thu 01 Jan 2026 18:18:46 +0000 ROA not before: Thu 01 Jan 2026 18:18:46 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 198975 IP address blocks: 91.240.130.0/24 maxlen: 24 91.240.136.0/22 maxlen: 22 91.240.136.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/59/dd1ddf-73cf-4bb2-8a6e-6e4aec86fe1e/1/Y3EE2Sfn4e-P67_93ygUVJUBEJQ.crl rsync://rpki.ripe.net/repository/DEFAULT/59/dd1ddf-73cf-4bb2-8a6e-6e4aec86fe1e/1/Y3EE2Sfn4e-P67_93ygUVJUBEJQ.mft rsync://rpki.ripe.net/repository/DEFAULT/Y3EE2Sfn4e-P67_93ygUVJUBEJQ.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 27 Jan 2026 03:00:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7a:c8:9d:d7:08:d1:2f:da:f2:e8:ca:b9:88:1f:e7:a4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=637104d927e7e1ef8febbffddf28145495011094 Validity Not Before: Jan 1 18:18:46 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=2ecadfee7b09d1220b268cfdd6143b4125583b23 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:a8:a0:0f:03:1a:17:3c:af:d2:cb:3a:c8:5f: d0:0a:b1:73:aa:04:b5:bf:b9:50:7f:23:7e:c4:f4: 43:d6:ec:38:1d:95:c5:34:36:4a:c6:1f:e6:7a:73: f3:96:12:c7:85:64:45:c3:37:3f:5a:bc:b0:3f:02: 89:1f:7f:25:4e:94:a8:9d:34:35:92:5e:d4:91:00: f6:69:0b:8c:64:e7:88:d9:6e:b3:ef:0f:f7:9d:0c: c4:56:34:01:21:c5:d9:ad:4b:18:f7:03:16:1b:44: 1a:5b:49:7a:aa:3e:a4:08:92:48:a0:95:7d:39:c1: be:9f:86:63:c8:dd:33:e9:63:2d:67:6b:8b:a5:00: fb:60:a9:20:97:ee:61:e8:b8:73:0d:29:04:a9:98: 12:b1:31:60:db:34:f3:66:cb:5d:74:88:a8:60:98: 44:be:25:bb:f3:68:e7:c1:fd:2b:a2:7b:84:f5:96: ff:f3:4c:48:04:72:1e:c0:2b:59:db:0d:c5:6a:dc: 5e:89:74:c2:3a:7d:7a:50:01:39:8c:e9:79:a9:9a: aa:9e:ab:00:80:99:1e:ba:8d:ee:20:89:98:da:26: ab:65:13:f8:41:31:8c:7b:8a:f2:dc:25:2e:32:5a: 2e:b5:62:c7:01:19:ba:bd:f3:ce:24:4b:6e:08:75: 8a:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2E:CA:DF:EE:7B:09:D1:22:0B:26:8C:FD:D6:14:3B:41:25:58:3B:23 X509v3 Authority Key Identifier: keyid:63:71:04:D9:27:E7:E1:EF:8F:EB:BF:FD:DF:28:14:54:95:01:10:94 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y3EE2Sfn4e-P67_93ygUVJUBEJQ.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/59/dd1ddf-73cf-4bb2-8a6e-6e4aec86fe1e/1/Lsrf7nsJ0SILJoz91hQ7QSVYOyM.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/59/dd1ddf-73cf-4bb2-8a6e-6e4aec86fe1e/1/Y3EE2Sfn4e-P67_93ygUVJUBEJQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 91.240.130.0/24 91.240.136.0/22 Signature Algorithm: sha256WithRSAEncryption 37:63:74:4e:55:43:a4:12:8f:70:17:ed:b8:c7:b7:06:ff:a1: 7f:5f:9d:c1:68:74:89:5e:92:d8:ea:99:5b:83:4d:27:f4:28: ce:8a:10:50:ea:ec:8c:4b:c9:80:92:6d:29:c3:ec:bc:08:3c: 15:9f:18:8c:d3:c3:aa:a8:49:75:3f:97:85:df:6c:35:d2:c0: ff:45:e5:34:3f:ea:d6:3b:90:f6:5d:01:15:d2:5f:4e:83:1d: 62:5a:bd:91:57:c1:a4:9a:50:58:60:9e:63:52:1b:06:26:2d: 2a:85:b2:b3:58:5b:84:89:7f:f8:a3:96:d2:bb:0a:25:5a:f4: 63:c1:59:e2:ed:da:fa:5a:99:6d:24:46:61:fe:d6:bb:90:ff: 8c:cf:07:b3:a6:37:49:d5:d4:e5:42:f3:31:d3:b0:7a:55:53: 50:d5:7d:7c:11:26:54:ef:86:7b:00:73:b7:e1:69:1d:c5:eb: 78:bc:71:6c:39:e7:69:7b:e3:08:a5:2f:75:9f:8c:4c:3b:d2: ae:aa:82:ee:a9:81:c4:7d:72:e8:d4:f9:3c:c8:85:87:c4:c4: 3f:01:a6:ae:a7:b2:dc:1b:cc:ed:23:59:49:e6:d6:7e:f5:c8: 20:88:53:8a:80:5b:ed:cf:7e:77:0c:24:7c:16:08:ec:00:28: 1f:db:5e:77 -----BEGIN CERTIFICATE----- MIIFAzCCA+ugAwIBAgISAZt6yJ3XCNEv2vLoyrmIH+ekMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDYzNzEwNGQ5MjdlN2UxZWY4ZmViYmZmZGRmMjgxNDU0OTUw MTEwOTQwHhcNMjYwMTAxMTgxODQ2WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygyZWNhZGZlZTdiMDlkMTIyMGIyNjhjZmRkNjE0M2I0MTI1NTgzYjIzMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAs6igDwMaFzyv0ss6yF/QCrFzqgS1 v7lQfyN+xPRD1uw4HZXFNDZKxh/menPzlhLHhWRFwzc/WrywPwKJH38lTpSonTQ1 kl7UkQD2aQuMZOeI2W6z7w/3nQzEVjQBIcXZrUsY9wMWG0QaW0l6qj6kCJJIoJV9 OcG+n4ZjyN0z6WMtZ2uLpQD7YKkgl+5h6LhzDSkEqZgSsTFg2zTzZstddIioYJhE viW782jnwf0ronuE9Zb/80xIBHIewCtZ2w3FatxeiXTCOn16UAE5jOl5qZqqnqsA gJkeuo3uIImY2iarZRP4QTGMe4ry3CUuMloutWLHARm6vfPOJEtuCHWKZwIDAQAB o4ICDzCCAgswHQYDVR0OBBYEFC7K3+57CdEiCyaM/dYUO0ElWDsjMB8GA1UdIwQY MBaAFGNxBNkn5+Hvj+u//d8oFFSVARCUMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvWTNFRTJTZm40ZS1QNjdfOTN5Z1VWSlVCRUpRLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81OS9kZDFkZGYtNzNjZi00YmIyLThhNmUt NmU0YWVjODZmZTFlLzEvTHNyZjduc0owU0lMSm96OTFoUTdRU1ZZT3lNLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81OS9kZDFkZGYtNzNjZi00YmIyLThhNmUtNmU0YWVjODZmZTFl LzEvWTNFRTJTZm40ZS1QNjdfOTN5Z1VWSlVCRUpRLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQAW/CCAwQC W/CIMA0GCSqGSIb3DQEBCwUAA4IBAQA3Y3ROVUOkEo9wF+24x7cG/6F/X53BaHSJ XpLY6plbg00n9CjOihBQ6uyMS8mAkm0pw+y8CDwVnxiM08OqqEl1P5eF32w10sD/ ReU0P+rWO5D2XQEV0l9Ogx1iWr2RV8GkmlBYYJ5jUhsGJi0qhbKzWFuEiX/4o5bS uwolWvRjwVni7dr6WpltJEZh/ta7kP+MzwezpjdJ1dTlQvMx07B6VVNQ1X18ESZU 74Z7AHO34Wkdxet4vHFsOedpe+MIpS91n4xMO9KuqoLuqYHEfXLo1Pk8yIWHxMQ/ Aaaup7LcG8ztI1lJ5tZ+9cggiFOKgFvtz353DCR8FgjsACgf2153 -----END CERTIFICATE-----Generated at Mon Jan 26 13:06:44 2026 by rpki-client