This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/65/abd2a7-3bfd-4613-9f01-6ca7c54263b9/1/uSTOG5hPdGAJ8tKDlqGT_j-Wz90.roa File: uSTOG5hPdGAJ8tKDlqGT_j-Wz90.roa (raw, json) Hash identifier: K1kjwbswlvDhq+X0b+wPq3xckmUou+CcfH9LmHS/rpE= Subject key identifier: B9:24:CE:1B:98:4F:74:60:09:F2:D2:83:96:A1:93:FE:3F:96:CF:DD Certificate issuer: /CN=5965c62f10c25e7a7ef18356833aa4f9b9842c6a Certificate serial: 019B7F15D84AFFBCB95EE6FC3ED78D0378DB Authority key identifier: 59:65:C6:2F:10:C2:5E:7A:7E:F1:83:56:83:3A:A4:F9:B9:84:2C:6A Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/WWXGLxDCXnp-8YNWgzqk-bmELGo.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/65/abd2a7-3bfd-4613-9f01-6ca7c54263b9/1/uSTOG5hPdGAJ8tKDlqGT_j-Wz90.roa Signing time: Fri 02 Jan 2026 14:21:36 +0000 ROA not before: Fri 02 Jan 2026 14:21:36 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 59437 IP address blocks: 91.239.86.0/24 maxlen: 24 2a11:cc80::/29 maxlen: 29 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/65/abd2a7-3bfd-4613-9f01-6ca7c54263b9/1/WWXGLxDCXnp-8YNWgzqk-bmELGo.crl rsync://rpki.ripe.net/repository/DEFAULT/65/abd2a7-3bfd-4613-9f01-6ca7c54263b9/1/WWXGLxDCXnp-8YNWgzqk-bmELGo.mft rsync://rpki.ripe.net/repository/DEFAULT/WWXGLxDCXnp-8YNWgzqk-bmELGo.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 07:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7f:15:d8:4a:ff:bc:b9:5e:e6:fc:3e:d7:8d:03:78:db Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5965c62f10c25e7a7ef18356833aa4f9b9842c6a Validity Not Before: Jan 2 14:21:36 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=b924ce1b984f746009f2d28396a193fe3f96cfdd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:31:83:0f:67:6b:13:a3:e2:32:bf:20:de:98: 80:d9:5f:aa:88:0e:94:dd:ef:4a:2f:e9:7f:89:89: 02:89:90:32:6f:bc:be:00:50:ad:47:ba:b2:bd:d6: d1:ce:5d:90:78:59:4f:8f:23:94:7e:51:06:f4:6c: 89:f6:55:ab:c2:b8:8b:b4:15:c0:73:ab:c5:63:ee: e5:aa:2d:f4:67:21:9c:3b:a9:83:f7:1e:2d:c4:03: 7d:0b:8e:95:51:2e:3c:2c:b7:ef:3f:f1:bd:ff:f5: 03:6b:2d:98:6b:ca:b9:76:1e:be:84:94:f6:89:53: 74:29:91:b3:16:f7:c9:eb:25:16:05:9e:18:a3:0f: 53:af:77:6b:2e:a2:ca:dd:32:e0:05:7b:38:6b:5f: 3c:ea:85:64:01:be:68:0c:c8:46:02:82:9d:bf:47: e4:99:61:6c:1f:24:64:ce:f9:a7:12:7c:75:36:53: 94:01:58:15:30:42:42:ca:fe:bc:44:15:23:be:ae: 7a:6b:12:38:7a:d7:96:30:5a:e7:af:ec:c0:bc:a8: 00:10:ad:c6:e9:31:42:ab:c2:2f:5c:03:ff:cf:da: 0b:2f:37:bc:3b:c6:22:0b:31:40:2e:be:8e:41:99: 44:1f:4a:b2:18:c6:ba:3e:25:08:b4:9c:ca:35:cf: ab:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B9:24:CE:1B:98:4F:74:60:09:F2:D2:83:96:A1:93:FE:3F:96:CF:DD X509v3 Authority Key Identifier: keyid:59:65:C6:2F:10:C2:5E:7A:7E:F1:83:56:83:3A:A4:F9:B9:84:2C:6A X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/WWXGLxDCXnp-8YNWgzqk-bmELGo.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/65/abd2a7-3bfd-4613-9f01-6ca7c54263b9/1/uSTOG5hPdGAJ8tKDlqGT_j-Wz90.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/65/abd2a7-3bfd-4613-9f01-6ca7c54263b9/1/WWXGLxDCXnp-8YNWgzqk-bmELGo.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 91.239.86.0/24 IPv6: 2a11:cc80::/29 Signature Algorithm: sha256WithRSAEncryption a8:3f:6f:b5:15:36:83:4c:f1:b5:25:4c:50:f9:5b:46:4f:b9: ca:28:b4:16:33:22:9f:28:64:3c:1d:19:4b:51:8e:75:45:10: 38:98:e4:c8:09:1b:a4:aa:b6:e7:f8:d0:84:ba:cf:0e:21:4d: a4:a9:42:64:0b:e3:2e:71:ce:ee:1a:ed:9e:bc:b4:34:aa:ce: 8f:d1:e8:27:34:41:bc:da:d8:02:84:b7:6a:99:2e:c9:f9:20: 60:34:ad:b3:7f:2c:61:29:a2:c5:48:da:fd:64:d9:d7:e2:9b: 09:79:f4:34:fd:c4:d9:ae:a5:b7:2e:a7:b7:66:68:77:30:90: 08:fe:bf:76:4a:6b:84:73:65:9c:68:7b:30:e9:ce:35:97:bc: d7:88:ec:29:ac:12:7f:16:5d:07:8b:23:74:ad:41:68:aa:6b: a0:a6:8e:1e:ae:06:cb:8c:dc:9f:6c:cb:3e:70:97:31:68:45: b1:eb:96:82:0a:b9:7a:b7:72:76:42:b3:22:56:a0:08:e3:bf: ae:ac:6a:7a:d3:31:3d:56:66:2b:42:dc:cc:62:ac:d4:3a:50: c7:d6:51:75:1d:eb:a0:09:9a:4d:96:e5:cd:94:d9:d6:c9:0f: 85:5d:61:c7:af:d8:8a:f4:d0:0f:86:32:0e:a0:2c:32:7f:b8: f9:48:3d:8d -----BEGIN CERTIFICATE----- MIIFDDCCA/SgAwIBAgISAZt/FdhK/7y5Xub8PteNA3jbMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDU5NjVjNjJmMTBjMjVlN2E3ZWYxODM1NjgzM2FhNGY5Yjk4 NDJjNmEwHhcNMjYwMTAyMTQyMTM2WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhiOTI0Y2UxYjk4NGY3NDYwMDlmMmQyODM5NmExOTNmZTNmOTZjZmRkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxDGDD2drE6PiMr8g3piA2V+qiA6U 3e9KL+l/iYkCiZAyb7y+AFCtR7qyvdbRzl2QeFlPjyOUflEG9GyJ9lWrwriLtBXA c6vFY+7lqi30ZyGcO6mD9x4txAN9C46VUS48LLfvP/G9//UDay2Ya8q5dh6+hJT2 iVN0KZGzFvfJ6yUWBZ4Yow9Tr3drLqLK3TLgBXs4a1886oVkAb5oDMhGAoKdv0fk mWFsHyRkzvmnEnx1NlOUAVgVMEJCyv68RBUjvq56axI4eteWMFrnr+zAvKgAEK3G 6TFCq8IvXAP/z9oLLze8O8YiCzFALr6OQZlEH0qyGMa6PiUItJzKNc+rgwIDAQAB o4ICGDCCAhQwHQYDVR0OBBYEFLkkzhuYT3RgCfLSg5ahk/4/ls/dMB8GA1UdIwQY MBaAFFllxi8Qwl56fvGDVoM6pPm5hCxqMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvV1dYR0x4RENYbnAtOFlOV2d6cWstYm1FTEdvLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82NS9hYmQyYTctM2JmZC00NjEzLTlmMDEt NmNhN2M1NDI2M2I5LzEvdVNUT0c1aFBkR0FKOHRLRGxxR1Rfai1XejkwLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC82NS9hYmQyYTctM2JmZC00NjEzLTlmMDEtNmNhN2M1NDI2M2I5 LzEvV1dYR0x4RENYbnAtOFlOV2d6cWstYm1FTEdvLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMC4GCCsGAQUFBwEHAQH/BB8wHTAMBAIAATAGAwQAW+9WMA0E AgACMAcDBQMqEcyAMA0GCSqGSIb3DQEBCwUAA4IBAQCoP2+1FTaDTPG1JUxQ+VtG T7nKKLQWMyKfKGQ8HRlLUY51RRA4mOTICRukqrbn+NCEus8OIU2kqUJkC+Mucc7u Gu2evLQ0qs6P0egnNEG82tgChLdqmS7J+SBgNK2zfyxhKaLFSNr9ZNnX4psJefQ0 /cTZrqW3Lqe3Zmh3MJAI/r92SmuEc2WcaHsw6c41l7zXiOwprBJ/Fl0HiyN0rUFo qmugpo4ergbLjNyfbMs+cJcxaEWx65aCCrl6t3J2QrMiVqAI47+urGp60zE9VmYr QtzMYqzUOlDH1lF1HeugCZpNluXNlNnWyQ+FXWHHr9iK9NAPhjIOoCwyf7j5SD2N -----END CERTIFICATE-----Generated at Sun Jan 25 17:19:52 2026 by rpki-client