This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5a/642eb2-3fb9-4f0e-baf4-8cd79527e530/1/Iuk_zEJVyxU2iUIdKR4yhDvVYXI.roa File: Iuk_zEJVyxU2iUIdKR4yhDvVYXI.roa (raw, json) Hash identifier: mDmw6607ggVMlBfThQGZdDCwNa9yzypJPb2rv2R8ybA= Subject key identifier: 22:E9:3F:CC:42:55:CB:15:36:89:42:1D:29:1E:32:84:3B:D5:61:72 Certificate issuer: /CN=b8951c8514b7dd21b333abb33caca3c4dae9d709 Certificate serial: 019B7CED5034BDA6B326911E180A25AAAD96 Authority key identifier: B8:95:1C:85:14:B7:DD:21:B3:33:AB:B3:3C:AC:A3:C4:DA:E9:D7:09 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uJUchRS33SGzM6uzPKyjxNrp1wk.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5a/642eb2-3fb9-4f0e-baf4-8cd79527e530/1/Iuk_zEJVyxU2iUIdKR4yhDvVYXI.roa Signing time: Fri 02 Jan 2026 04:18:05 +0000 ROA not before: Fri 02 Jan 2026 04:18:05 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 28685 IP address blocks: 91.221.161.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5a/642eb2-3fb9-4f0e-baf4-8cd79527e530/1/uJUchRS33SGzM6uzPKyjxNrp1wk.crl rsync://rpki.ripe.net/repository/DEFAULT/5a/642eb2-3fb9-4f0e-baf4-8cd79527e530/1/uJUchRS33SGzM6uzPKyjxNrp1wk.mft rsync://rpki.ripe.net/repository/DEFAULT/uJUchRS33SGzM6uzPKyjxNrp1wk.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 13:21:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7c:ed:50:34:bd:a6:b3:26:91:1e:18:0a:25:aa:ad:96 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b8951c8514b7dd21b333abb33caca3c4dae9d709 Validity Not Before: Jan 2 04:18:05 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=22e93fcc4255cb153689421d291e32843bd56172 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9b:f9:46:48:8d:e9:56:4c:dc:69:00:b4:2a:4d: 14:4a:b9:22:63:f4:86:cc:e2:69:b5:a8:6d:51:16: cf:ee:35:8f:55:6b:9d:98:62:a6:84:f2:be:7d:2e: 22:0f:e3:74:5c:9a:8f:f0:4b:5b:ca:df:f4:c3:1f: d7:e2:2e:99:18:4d:b4:b8:67:db:8f:0f:34:ff:f4: 17:7d:ca:72:3e:93:6e:e1:a3:84:1e:f6:47:d0:79: ff:f7:53:a5:3a:5f:06:68:3d:2f:e7:d5:a2:40:db: 67:32:b6:9b:79:17:56:29:61:da:20:d3:c2:7d:27: 2b:7a:cb:3c:27:14:74:b4:db:f2:aa:bd:7b:49:5c: d5:58:1a:a8:84:2a:c0:b5:c0:03:17:8b:20:fa:8d: 99:ba:09:9a:81:d4:8d:cf:72:79:e3:be:32:b2:b3: 76:14:d8:b2:7e:4c:e4:64:31:b9:d3:ea:26:1c:51: 7d:7d:3c:b6:41:eb:6a:fc:46:12:14:3f:71:9d:39: d9:33:8b:86:3c:36:61:71:20:71:3f:69:9e:2a:e9: 80:68:ee:6b:a9:d5:68:91:69:0b:e2:0d:c5:e6:ca: ab:dc:45:96:02:91:ad:9b:f9:0c:f0:ed:7b:96:6e: b9:a9:b3:85:37:3d:80:20:ef:0d:83:a6:ef:ea:ba: a1:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 22:E9:3F:CC:42:55:CB:15:36:89:42:1D:29:1E:32:84:3B:D5:61:72 X509v3 Authority Key Identifier: keyid:B8:95:1C:85:14:B7:DD:21:B3:33:AB:B3:3C:AC:A3:C4:DA:E9:D7:09 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uJUchRS33SGzM6uzPKyjxNrp1wk.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/642eb2-3fb9-4f0e-baf4-8cd79527e530/1/Iuk_zEJVyxU2iUIdKR4yhDvVYXI.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/642eb2-3fb9-4f0e-baf4-8cd79527e530/1/uJUchRS33SGzM6uzPKyjxNrp1wk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 91.221.161.0/24 Signature Algorithm: sha256WithRSAEncryption 0d:2d:86:7d:9c:d8:b9:ca:99:87:09:f0:26:ca:e6:77:7d:36: a2:2f:59:bb:c9:b8:98:b0:7a:2a:12:36:96:84:8e:34:55:a9: 3f:a1:5d:75:44:fa:c7:4b:b5:56:c5:df:a3:e9:73:43:80:cd: e1:ac:20:ba:ae:61:04:97:8e:32:75:f7:81:1a:be:97:a1:e2: 2e:87:12:4c:22:3d:c3:12:11:f1:41:8f:71:c8:07:81:68:dc: 9f:83:ff:a6:31:4a:fe:2c:d3:09:f4:9c:32:6c:ee:ac:ea:33: df:58:f9:1b:6b:7a:04:a2:73:4d:47:9e:48:c6:29:54:22:54: c0:86:28:ab:33:3d:d0:18:f0:eb:00:6d:6a:b3:1d:73:82:23: b0:a2:6e:fa:a4:8a:08:d1:ea:93:a6:08:ae:37:e5:29:69:5b: 1f:5c:45:5d:bb:7f:0f:5f:fc:e6:c2:fc:53:37:15:4a:93:08: 8e:35:cb:c4:51:94:3b:3c:a3:6c:77:cb:06:1c:8d:d2:4a:6e: 20:41:8b:04:d3:7c:89:df:1d:6e:39:0c:d8:d8:fb:2b:67:3c: 97:94:d8:29:c7:ef:ec:46:b6:5a:a0:32:ee:c7:90:a4:5e:13: b1:5e:fb:77:b2:dd:0c:0b:fe:a5:b6:1a:89:8f:ea:c1:d5:40: 9f:7e:a3:1d -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt87VA0vaazJpEeGAolqq2WMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGI4OTUxYzg1MTRiN2RkMjFiMzMzYWJiMzNjYWNhM2M0ZGFl OWQ3MDkwHhcNMjYwMTAyMDQxODA1WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygyMmU5M2ZjYzQyNTVjYjE1MzY4OTQyMWQyOTFlMzI4NDNiZDU2MTcyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAm/lGSI3pVkzcaQC0Kk0USrkiY/SG zOJptahtURbP7jWPVWudmGKmhPK+fS4iD+N0XJqP8Etbyt/0wx/X4i6ZGE20uGfb jw80//QXfcpyPpNu4aOEHvZH0Hn/91OlOl8GaD0v59WiQNtnMrabeRdWKWHaINPC fScress8JxR0tNvyqr17SVzVWBqohCrAtcADF4sg+o2ZugmagdSNz3J5474ysrN2 FNiyfkzkZDG50+omHFF9fTy2Qetq/EYSFD9xnTnZM4uGPDZhcSBxP2meKumAaO5r qdVokWkL4g3F5sqr3EWWApGtm/kM8O17lm65qbOFNz2AIO8Ng6bv6rqhsQIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFCLpP8xCVcsVNolCHSkeMoQ71WFyMB8GA1UdIwQY MBaAFLiVHIUUt90hszOrszyso8Ta6dcJMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvdUpVY2hSUzMzU0d6TTZ1elBLeWp4TnJwMXdrLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81YS82NDJlYjItM2ZiOS00ZjBlLWJhZjQt OGNkNzk1MjdlNTMwLzEvSXVrX3pFSlZ5eFUyaVVJZEtSNHloRHZWWVhJLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81YS82NDJlYjItM2ZiOS00ZjBlLWJhZjQtOGNkNzk1MjdlNTMw LzEvdUpVY2hSUzMzU0d6TTZ1elBLeWp4TnJwMXdrLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAW92hMA0G CSqGSIb3DQEBCwUAA4IBAQANLYZ9nNi5ypmHCfAmyuZ3fTaiL1m7ybiYsHoqEjaW hI40Vak/oV11RPrHS7VWxd+j6XNDgM3hrCC6rmEEl44ydfeBGr6XoeIuhxJMIj3D EhHxQY9xyAeBaNyfg/+mMUr+LNMJ9JwybO6s6jPfWPkba3oEonNNR55IxilUIlTA hiirMz3QGPDrAG1qsx1zgiOwom76pIoI0eqTpgiuN+UpaVsfXEVdu38PX/zmwvxT NxVKkwiONcvEUZQ7PKNsd8sGHI3SSm4gQYsE03yJ3x1uOQzY2PsrZzyXlNgpx+/s RrZaoDLux5CkXhOxXvt3st0MC/6lthqJj+rB1UCffqMd -----END CERTIFICATE-----Generated at Sun Jan 25 21:39:31 2026 by rpki-client