This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/63/b06197-68d2-429e-ace5-e015bf3f33d7/1/K8tuEs9t8pmrSDJuwwdt6IYJIik.roa File: K8tuEs9t8pmrSDJuwwdt6IYJIik.roa (raw, json) Hash identifier: ZshbzN4NQcUPnRU5jRSR+ix2vC7IlJPNo8C+FrStXqM= Subject key identifier: 2B:CB:6E:12:CF:6D:F2:99:AB:48:32:6E:C3:07:6D:E8:86:09:22:29 Certificate issuer: /CN=3866f7385005d5be6101727388e1b3271f644de4 Certificate serial: 019B79101F1AAD844757313A18F39F3462F4 Authority key identifier: 38:66:F7:38:50:05:D5:BE:61:01:72:73:88:E1:B3:27:1F:64:4D:E4 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OGb3OFAF1b5hAXJziOGzJx9kTeQ.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/63/b06197-68d2-429e-ace5-e015bf3f33d7/1/K8tuEs9t8pmrSDJuwwdt6IYJIik.roa Signing time: Thu 01 Jan 2026 10:17:38 +0000 ROA not before: Thu 01 Jan 2026 10:17:38 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 49556 IP address blocks: 91.199.43.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/63/b06197-68d2-429e-ace5-e015bf3f33d7/1/OGb3OFAF1b5hAXJziOGzJx9kTeQ.crl rsync://rpki.ripe.net/repository/DEFAULT/63/b06197-68d2-429e-ace5-e015bf3f33d7/1/OGb3OFAF1b5hAXJziOGzJx9kTeQ.mft rsync://rpki.ripe.net/repository/DEFAULT/OGb3OFAF1b5hAXJziOGzJx9kTeQ.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 16:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:79:10:1f:1a:ad:84:47:57:31:3a:18:f3:9f:34:62:f4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3866f7385005d5be6101727388e1b3271f644de4 Validity Not Before: Jan 1 10:17:38 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=2bcb6e12cf6df299ab48326ec3076de886092229 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:6d:f3:22:8f:0d:b0:27:98:80:40:14:92:a8: ad:c2:97:2b:e0:10:2b:c7:3d:af:fd:2d:0e:b3:b8: 12:79:22:f3:73:04:c4:50:fb:e2:49:cd:a8:87:4c: 7f:22:1b:b5:e0:23:e0:3c:0b:ed:87:93:3a:30:15: 06:65:b4:01:71:ca:6c:80:aa:89:ef:e2:09:9e:87: 5e:ff:82:c7:13:5b:6a:20:ec:15:c1:b8:3e:f1:45: 10:21:2c:f1:c9:cf:27:70:e7:25:0d:c6:6c:1e:bf: 44:34:1c:61:87:38:87:d4:02:8c:80:54:5d:63:21: 06:61:54:fc:fd:35:ba:b3:36:05:b7:ee:6d:54:aa: 9e:74:df:ec:52:6d:a3:62:68:05:02:aa:f1:02:ba: cc:0a:03:99:3d:7b:dc:01:0b:db:01:7b:6f:76:3f: 1f:b2:0d:ca:2f:c9:30:c2:77:ec:70:fe:9d:e6:0a: 4a:4e:db:12:2d:31:1e:13:66:a8:a3:6a:5f:cf:ea: 08:1d:4a:76:36:ca:18:23:fd:ac:29:b1:f6:af:d7: 84:7a:4d:a3:25:e4:b8:ce:05:17:58:2d:10:24:8a: 40:6f:4c:90:c7:81:de:1a:76:36:42:6f:e9:ca:f7: b1:8f:c7:db:d6:52:5b:08:49:a4:7a:5c:03:0f:64: c6:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2B:CB:6E:12:CF:6D:F2:99:AB:48:32:6E:C3:07:6D:E8:86:09:22:29 X509v3 Authority Key Identifier: keyid:38:66:F7:38:50:05:D5:BE:61:01:72:73:88:E1:B3:27:1F:64:4D:E4 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OGb3OFAF1b5hAXJziOGzJx9kTeQ.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/63/b06197-68d2-429e-ace5-e015bf3f33d7/1/K8tuEs9t8pmrSDJuwwdt6IYJIik.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/63/b06197-68d2-429e-ace5-e015bf3f33d7/1/OGb3OFAF1b5hAXJziOGzJx9kTeQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 91.199.43.0/24 Signature Algorithm: sha256WithRSAEncryption 58:71:06:f3:e2:a8:53:81:bc:68:76:6b:53:e7:de:42:2f:1c: e1:06:26:25:59:55:3d:ab:ab:4e:9e:bb:66:ce:b7:dc:d3:99: 1e:8f:bb:17:9d:1e:a7:93:1c:e8:e1:fd:30:f0:c8:7a:3b:22: b5:67:fd:3a:b4:4c:59:8a:43:75:d6:3e:54:17:f8:32:f1:e7: 92:0a:e1:99:84:e3:7d:97:0f:72:12:33:e1:d2:76:ee:7f:d8: 9e:81:e9:65:f0:cd:9c:a9:82:a1:07:cb:f8:f6:6c:aa:c9:65: bd:75:ac:b0:f8:95:0d:a1:c0:5b:23:17:cd:f0:74:35:a5:3c: c2:55:ba:55:48:ed:3b:19:78:c1:b1:16:92:b6:a2:80:36:eb: 28:a5:74:89:26:7c:9b:67:0c:d1:41:63:a3:22:48:b5:be:0f: 08:fa:fb:23:a0:70:c6:b3:7e:5f:3f:a4:e5:8a:26:55:ff:0e: cd:6d:ea:1f:d2:72:70:89:41:de:df:65:12:ec:80:e2:66:c6: 54:21:52:65:3f:6f:7e:11:40:5e:34:bf:3d:e9:0d:cd:69:b7: 9b:c9:1a:70:0d:02:63:d0:01:27:0c:5e:11:b8:1c:9b:20:21: a3:14:1a:9b:a8:13:e2:93:08:8a:70:78:d2:c7:71:c6:9e:10: ae:0d:5a:76 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt5EB8arYRHVzE6GPOfNGL0MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDM4NjZmNzM4NTAwNWQ1YmU2MTAxNzI3Mzg4ZTFiMzI3MWY2 NDRkZTQwHhcNMjYwMTAxMTAxNzM4WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygyYmNiNmUxMmNmNmRmMjk5YWI0ODMyNmVjMzA3NmRlODg2MDkyMjI5MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0m3zIo8NsCeYgEAUkqitwpcr4BAr xz2v/S0Os7gSeSLzcwTEUPviSc2oh0x/Ihu14CPgPAvth5M6MBUGZbQBccpsgKqJ 7+IJnode/4LHE1tqIOwVwbg+8UUQISzxyc8ncOclDcZsHr9ENBxhhziH1AKMgFRd YyEGYVT8/TW6szYFt+5tVKqedN/sUm2jYmgFAqrxArrMCgOZPXvcAQvbAXtvdj8f sg3KL8kwwnfscP6d5gpKTtsSLTEeE2aoo2pfz+oIHUp2NsoYI/2sKbH2r9eEek2j JeS4zgUXWC0QJIpAb0yQx4HeGnY2Qm/pyvexj8fb1lJbCEmkelwDD2TGEwIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFCvLbhLPbfKZq0gybsMHbeiGCSIpMB8GA1UdIwQY MBaAFDhm9zhQBdW+YQFyc4jhsycfZE3kMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvT0diM09GQUYxYjVoQVhKemlPR3pKeDlrVGVRLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82My9iMDYxOTctNjhkMi00MjllLWFjZTUt ZTAxNWJmM2YzM2Q3LzEvSzh0dUVzOXQ4cG1yU0RKdXd3ZHQ2SVlKSWlrLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC82My9iMDYxOTctNjhkMi00MjllLWFjZTUtZTAxNWJmM2YzM2Q3 LzEvT0diM09GQUYxYjVoQVhKemlPR3pKeDlrVGVRLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAW8crMA0G CSqGSIb3DQEBCwUAA4IBAQBYcQbz4qhTgbxodmtT595CLxzhBiYlWVU9q6tOnrtm zrfc05kej7sXnR6nkxzo4f0w8Mh6OyK1Z/06tExZikN11j5UF/gy8eeSCuGZhON9 lw9yEjPh0nbuf9iegell8M2cqYKhB8v49myqyWW9dayw+JUNocBbIxfN8HQ1pTzC VbpVSO07GXjBsRaStqKANusopXSJJnybZwzRQWOjIki1vg8I+vsjoHDGs35fP6Tl iiZV/w7Nbeof0nJwiUHe32US7IDiZsZUIVJlP29+EUBeNL896Q3NabebyRpwDQJj 0AEnDF4RuBybICGjFBqbqBPikwiKcHjSx3HGnhCuDVp2 -----END CERTIFICATE-----Generated at Mon Jan 26 02:23:51 2026 by rpki-client