This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6a/3ab6cf-99cd-4ac4-9013-f5bee16ed3a7/1/s10iu-qYEl97SkdPFFc91UCyTP8.roa File: s10iu-qYEl97SkdPFFc91UCyTP8.roa (raw, json) Hash identifier: mY1Xwqy7Z6NydVJ4ZdfvfAq3+ajlgxpmGG9kYDrwGTA= Subject key identifier: B3:5D:22:BB:EA:98:12:5F:7B:4A:47:4F:14:57:3D:D5:40:B2:4C:FF Certificate issuer: /CN=fc48e6506ec6d53c5915dc8f29644485df92fce9 Certificate serial: 019B7C13550CB03EB9740982ECD2CF53E0AD Authority key identifier: FC:48:E6:50:6E:C6:D5:3C:59:15:DC:8F:29:64:44:85:DF:92:FC:E9 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_EjmUG7G1TxZFdyPKWREhd-S_Ok.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6a/3ab6cf-99cd-4ac4-9013-f5bee16ed3a7/1/s10iu-qYEl97SkdPFFc91UCyTP8.roa Signing time: Fri 02 Jan 2026 00:20:00 +0000 ROA not before: Fri 02 Jan 2026 00:20:00 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 9208 IP address blocks: 91.220.68.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/6a/3ab6cf-99cd-4ac4-9013-f5bee16ed3a7/1/_EjmUG7G1TxZFdyPKWREhd-S_Ok.crl rsync://rpki.ripe.net/repository/DEFAULT/6a/3ab6cf-99cd-4ac4-9013-f5bee16ed3a7/1/_EjmUG7G1TxZFdyPKWREhd-S_Ok.mft rsync://rpki.ripe.net/repository/DEFAULT/_EjmUG7G1TxZFdyPKWREhd-S_Ok.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 13:21:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7c:13:55:0c:b0:3e:b9:74:09:82:ec:d2:cf:53:e0:ad Signature Algorithm: sha256WithRSAEncryption Issuer: CN=fc48e6506ec6d53c5915dc8f29644485df92fce9 Validity Not Before: Jan 2 00:20:00 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=b35d22bbea98125f7b4a474f14573dd540b24cff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:db:96:ac:7f:53:7e:9e:6b:05:b7:f8:01:4b: 7e:f0:d5:74:49:a6:72:93:a4:0e:35:1f:8f:86:33: 18:88:65:e2:2e:4d:03:c4:72:bb:12:31:c1:09:b4: 24:08:a7:68:7b:ad:e9:f5:46:ef:4b:09:78:5d:33: 45:07:af:ec:62:11:dd:34:a6:3b:71:cf:82:75:e9: ad:01:ff:09:9c:3a:d1:b6:66:8e:f4:b3:8a:d8:00: ec:dc:4e:24:7d:df:2d:28:c5:20:cf:44:2e:07:cd: f0:50:62:c0:69:46:75:de:04:78:62:6b:8c:64:54: b4:be:04:9a:6e:00:e4:a7:3a:05:be:62:cb:73:60: fe:09:96:14:15:bf:cb:cf:1a:42:30:f5:8f:b6:45: d0:2c:fa:d9:d7:06:5e:9e:3f:7b:49:df:04:e1:b2: 36:ff:7e:f9:74:41:f9:bc:7a:7e:dc:c5:ec:60:06: 09:95:8d:2e:81:26:c7:e1:5e:06:fb:3a:7a:8a:7a: 8e:b0:42:96:fa:d7:47:97:99:e4:84:ea:8f:bf:26: b0:e3:74:6c:20:73:6f:05:9d:6c:48:02:e3:9d:61: 58:22:72:df:29:1c:17:26:73:e5:85:bc:13:28:fa: 3b:80:35:a7:7e:29:52:32:66:3d:20:83:ae:a8:0c: 3d:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B3:5D:22:BB:EA:98:12:5F:7B:4A:47:4F:14:57:3D:D5:40:B2:4C:FF X509v3 Authority Key Identifier: keyid:FC:48:E6:50:6E:C6:D5:3C:59:15:DC:8F:29:64:44:85:DF:92:FC:E9 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_EjmUG7G1TxZFdyPKWREhd-S_Ok.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6a/3ab6cf-99cd-4ac4-9013-f5bee16ed3a7/1/s10iu-qYEl97SkdPFFc91UCyTP8.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/6a/3ab6cf-99cd-4ac4-9013-f5bee16ed3a7/1/_EjmUG7G1TxZFdyPKWREhd-S_Ok.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 91.220.68.0/24 Signature Algorithm: sha256WithRSAEncryption 26:35:ed:a5:85:4c:db:5f:f3:e8:c2:7c:18:6a:d4:07:81:0b: 7e:a3:e7:a9:9a:94:a1:68:13:1d:61:e8:06:6a:d7:4a:52:a5: 0c:07:66:a8:c9:6d:23:87:4f:12:33:fe:c9:e2:39:2d:bc:4a: af:4f:b2:5e:bf:5a:d6:90:64:20:bb:da:25:ad:bf:6d:e1:a8: ca:54:19:b7:9b:25:53:8a:4b:5c:7f:89:59:47:9c:07:aa:61: 2c:81:95:a8:0d:0d:83:dc:ed:7b:ff:4b:cd:70:f2:a6:eb:a5: 6c:73:74:b7:a7:6a:54:2d:d7:7c:33:08:82:9a:c9:f4:92:bf: b4:17:52:8b:2d:3a:6f:91:36:88:ef:5b:c0:64:c5:8f:61:82: 2e:18:fb:7d:4e:cf:e2:c3:76:bf:89:5c:5a:eb:2f:29:de:e3: a3:a2:e9:39:eb:88:74:69:d1:4f:66:55:ce:95:34:86:93:65: 61:77:5f:ab:77:69:c2:ad:f2:7c:1a:2d:8d:1e:32:fe:ac:c3: 70:7a:38:3d:a8:58:da:dd:f4:42:f2:3b:f9:33:dd:10:ff:4f: 7d:dd:b5:ee:09:21:9b:4c:35:70:ba:a2:ff:27:ee:a7:37:f6: 29:d5:8b:ec:0a:0f:cf:29:4a:cc:4a:9f:bd:ad:97:cd:64:7d: 60:b4:8b:53 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt8E1UMsD65dAmC7NLPU+CtMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGZjNDhlNjUwNmVjNmQ1M2M1OTE1ZGM4ZjI5NjQ0NDg1ZGY5 MmZjZTkwHhcNMjYwMTAyMDAyMDAwWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhiMzVkMjJiYmVhOTgxMjVmN2I0YTQ3NGYxNDU3M2RkNTQwYjI0Y2ZmMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAu9uWrH9Tfp5rBbf4AUt+8NV0SaZy k6QONR+PhjMYiGXiLk0DxHK7EjHBCbQkCKdoe63p9UbvSwl4XTNFB6/sYhHdNKY7 cc+CdemtAf8JnDrRtmaO9LOK2ADs3E4kfd8tKMUgz0QuB83wUGLAaUZ13gR4YmuM ZFS0vgSabgDkpzoFvmLLc2D+CZYUFb/LzxpCMPWPtkXQLPrZ1wZenj97Sd8E4bI2 /375dEH5vHp+3MXsYAYJlY0ugSbH4V4G+zp6inqOsEKW+tdHl5nkhOqPvyaw43Rs IHNvBZ1sSALjnWFYInLfKRwXJnPlhbwTKPo7gDWnfilSMmY9IIOuqAw9HwIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFLNdIrvqmBJfe0pHTxRXPdVAskz/MB8GA1UdIwQY MBaAFPxI5lBuxtU8WRXcjylkRIXfkvzpMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvX0VqbVVHN0cxVHhaRmR5UEtXUkVoZC1TX09rLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82YS8zYWI2Y2YtOTljZC00YWM0LTkwMTMt ZjViZWUxNmVkM2E3LzEvczEwaXUtcVlFbDk3U2tkUEZGYzkxVUN5VFA4LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC82YS8zYWI2Y2YtOTljZC00YWM0LTkwMTMtZjViZWUxNmVkM2E3 LzEvX0VqbVVHN0cxVHhaRmR5UEtXUkVoZC1TX09rLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAW9xEMA0G CSqGSIb3DQEBCwUAA4IBAQAmNe2lhUzbX/PownwYatQHgQt+o+epmpShaBMdYegG atdKUqUMB2aoyW0jh08SM/7J4jktvEqvT7Jev1rWkGQgu9olrb9t4ajKVBm3myVT iktcf4lZR5wHqmEsgZWoDQ2D3O17/0vNcPKm66Vsc3S3p2pULdd8MwiCmsn0kr+0 F1KLLTpvkTaI71vAZMWPYYIuGPt9Ts/iw3a/iVxa6y8p3uOjouk564h0adFPZlXO lTSGk2Vhd1+rd2nCrfJ8Gi2NHjL+rMNwejg9qFja3fRC8jv5M90Q/0993bXuCSGb TDVwuqL/J+6nN/Yp1YvsCg/PKUrMSp+9rZfNZH1gtItT -----END CERTIFICATE-----Generated at Sun Jan 25 21:05:03 2026 by rpki-client