This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/63/0e7ef7-1831-42f6-a2cc-ae290d55bdb7/1/PQ4kixVMpunmZd3Y9lneEnubVHU.roa File: PQ4kixVMpunmZd3Y9lneEnubVHU.roa (raw, json) Hash identifier: Yf8PqpssV4aPe31IuLnMjahZv8QaQaygjHQtEb4Jhyc= Subject key identifier: 3D:0E:24:8B:15:4C:A6:E9:E6:65:DD:D8:F6:59:DE:12:7B:9B:54:75 Certificate issuer: /CN=8edf6c2ad7acecad066e1f77fe05922f01691536 Certificate serial: 019B7C80451506AAD6A625D580EDB4C39643 Authority key identifier: 8E:DF:6C:2A:D7:AC:EC:AD:06:6E:1F:77:FE:05:92:2F:01:69:15:36 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jt9sKtes7K0Gbh93_gWSLwFpFTY.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/63/0e7ef7-1831-42f6-a2cc-ae290d55bdb7/1/PQ4kixVMpunmZd3Y9lneEnubVHU.roa Signing time: Fri 02 Jan 2026 02:18:59 +0000 ROA not before: Fri 02 Jan 2026 02:18:59 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 207349 IP address blocks: 91.223.222.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/63/0e7ef7-1831-42f6-a2cc-ae290d55bdb7/1/jt9sKtes7K0Gbh93_gWSLwFpFTY.crl rsync://rpki.ripe.net/repository/DEFAULT/63/0e7ef7-1831-42f6-a2cc-ae290d55bdb7/1/jt9sKtes7K0Gbh93_gWSLwFpFTY.mft rsync://rpki.ripe.net/repository/DEFAULT/jt9sKtes7K0Gbh93_gWSLwFpFTY.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 08:01:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7c:80:45:15:06:aa:d6:a6:25:d5:80:ed:b4:c3:96:43 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8edf6c2ad7acecad066e1f77fe05922f01691536 Validity Not Before: Jan 2 02:18:59 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=3d0e248b154ca6e9e665ddd8f659de127b9b5475 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:86:d8:8d:3c:b3:01:59:c7:75:f6:34:18:b5:83: 68:d5:04:fd:75:8e:98:8c:98:c9:ec:6a:06:f8:4f: 1d:92:db:bc:ca:2f:bd:13:6b:5c:19:78:8c:ab:8d: ab:c3:d3:f6:86:73:5b:13:40:95:d3:cd:3a:bf:a6: 60:2a:57:99:91:81:d5:98:11:4d:b9:ba:cd:b4:bc: 50:a2:2c:83:5b:c8:a8:fb:03:03:7d:18:e3:f5:ce: 3c:6c:c7:7b:cc:bf:11:63:b7:ee:63:18:a7:44:10: 5e:9a:0f:22:93:15:26:11:24:d1:c3:2a:74:b6:68: a1:4d:9f:be:8c:a0:83:a8:48:11:cc:e1:a9:e7:5f: cb:90:cb:3e:49:ae:f8:9d:8a:be:c6:34:89:b6:80: 9c:26:27:6f:f9:2f:05:f0:84:a4:b8:e4:75:bc:6f: ca:5c:49:04:6b:bb:39:ce:29:72:f4:f9:1a:99:b5: 3c:8f:53:b0:8f:4f:61:cb:24:b6:88:2d:7b:9b:37: 72:b2:c2:8c:ae:3b:74:bf:4d:80:db:d3:ce:e9:9b: 60:c8:a2:4c:57:8f:78:f3:36:72:a0:a2:ea:9a:70: 57:98:0d:8e:e8:dd:c1:0b:2e:33:69:40:84:ae:71: d0:d4:25:6d:15:60:35:a7:59:8d:4e:b5:64:56:d4: 23:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3D:0E:24:8B:15:4C:A6:E9:E6:65:DD:D8:F6:59:DE:12:7B:9B:54:75 X509v3 Authority Key Identifier: keyid:8E:DF:6C:2A:D7:AC:EC:AD:06:6E:1F:77:FE:05:92:2F:01:69:15:36 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jt9sKtes7K0Gbh93_gWSLwFpFTY.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/63/0e7ef7-1831-42f6-a2cc-ae290d55bdb7/1/PQ4kixVMpunmZd3Y9lneEnubVHU.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/63/0e7ef7-1831-42f6-a2cc-ae290d55bdb7/1/jt9sKtes7K0Gbh93_gWSLwFpFTY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 91.223.222.0/24 Signature Algorithm: sha256WithRSAEncryption 16:ea:f5:86:91:cd:b5:8f:fe:6e:53:85:35:49:4e:6a:78:fd: f1:34:9d:97:2a:f6:c0:94:40:c4:39:55:ff:50:96:b3:68:0d: 52:df:e1:d7:70:69:ee:d6:5c:92:5b:2d:d9:a0:23:e0:f6:24: bf:92:95:95:5f:94:71:be:23:6e:53:86:83:46:90:f8:b9:4d: ac:8d:e7:fb:ca:8d:a7:af:a0:51:5e:ba:84:a4:62:6c:f9:d0: f2:76:cf:47:e3:49:85:3f:3a:b4:d6:24:cb:59:ec:ee:78:87: aa:73:b3:28:74:a5:76:f8:55:d1:2c:34:be:24:62:f6:87:03: 04:7e:1a:01:13:5d:b3:6b:20:b1:c6:b0:6f:44:3f:bd:a2:a9: 55:68:cb:a4:54:bf:a5:e1:10:db:18:54:c0:04:d1:12:d1:47: 97:5f:c6:f2:b1:6d:5b:ef:71:d0:04:92:38:b7:56:b5:36:45: c7:db:61:4d:f3:3d:50:59:84:ab:e8:88:ff:ad:ea:5a:bf:5f: d2:39:5b:41:8f:e0:09:b1:1e:e8:8c:41:75:95:23:df:af:52: 36:94:87:8c:71:1d:1f:05:e5:8d:6b:2b:10:9b:db:02:28:28: ae:76:42:18:b7:ca:27:e8:bc:e3:18:f2:fc:5a:38:97:7e:68: d3:5b:6b:3c -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt8gEUVBqrWpiXVgO20w5ZDMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDhlZGY2YzJhZDdhY2VjYWQwNjZlMWY3N2ZlMDU5MjJmMDE2 OTE1MzYwHhcNMjYwMTAyMDIxODU5WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygzZDBlMjQ4YjE1NGNhNmU5ZTY2NWRkZDhmNjU5ZGUxMjdiOWI1NDc1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAhtiNPLMBWcd19jQYtYNo1QT9dY6Y jJjJ7GoG+E8dktu8yi+9E2tcGXiMq42rw9P2hnNbE0CV0806v6ZgKleZkYHVmBFN ubrNtLxQoiyDW8io+wMDfRjj9c48bMd7zL8RY7fuYxinRBBemg8ikxUmESTRwyp0 tmihTZ++jKCDqEgRzOGp51/LkMs+Sa74nYq+xjSJtoCcJidv+S8F8ISkuOR1vG/K XEkEa7s5zily9PkambU8j1Owj09hyyS2iC17mzdyssKMrjt0v02A29PO6ZtgyKJM V4948zZyoKLqmnBXmA2O6N3BCy4zaUCErnHQ1CVtFWA1p1mNTrVkVtQjuwIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFD0OJIsVTKbp5mXd2PZZ3hJ7m1R1MB8GA1UdIwQY MBaAFI7fbCrXrOytBm4fd/4Fki8BaRU2MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvanQ5c0t0ZXM3SzBHYmg5M19nV1NMd0ZwRlRZLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82My8wZTdlZjctMTgzMS00MmY2LWEyY2Mt YWUyOTBkNTViZGI3LzEvUFE0a2l4Vk1wdW5tWmQzWTlsbmVFbnViVkhVLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC82My8wZTdlZjctMTgzMS00MmY2LWEyY2MtYWUyOTBkNTViZGI3 LzEvanQ5c0t0ZXM3SzBHYmg5M19nV1NMd0ZwRlRZLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAW9/eMA0G CSqGSIb3DQEBCwUAA4IBAQAW6vWGkc21j/5uU4U1SU5qeP3xNJ2XKvbAlEDEOVX/ UJazaA1S3+HXcGnu1lySWy3ZoCPg9iS/kpWVX5RxviNuU4aDRpD4uU2sjef7yo2n r6BRXrqEpGJs+dDyds9H40mFPzq01iTLWezueIeqc7ModKV2+FXRLDS+JGL2hwME fhoBE12zayCxxrBvRD+9oqlVaMukVL+l4RDbGFTABNES0UeXX8bysW1b73HQBJI4 t1a1NkXH22FN8z1QWYSr6Ij/repav1/SOVtBj+AJsR7ojEF1lSPfr1I2lIeMcR0f BeWNaysQm9sCKCiudkIYt8on6LzjGPL8WjiXfmjTW2s8 -----END CERTIFICATE-----Generated at Sun Jan 25 19:18:10 2026 by rpki-client