This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6a/cf318e-8951-4e1e-bbe3-16f43dba2abc/1/U6As8UUX9Mg8l6zjGbZFCAxy-Pk.roa File: U6As8UUX9Mg8l6zjGbZFCAxy-Pk.roa (raw, json) Hash identifier: RA50m9VAkp/7GXmqEXtG2sTYJiK0WAUeyva3ilsrFA0= Subject key identifier: 53:A0:2C:F1:45:17:F4:C8:3C:97:AC:E3:19:B6:45:08:0C:72:F8:F9 Certificate issuer: /CN=daa33b5083799c49cf9edc00862b7c9c218c6613 Certificate serial: 019B7FF288534C33FA3C54FB5BA118FB5031 Authority key identifier: DA:A3:3B:50:83:79:9C:49:CF:9E:DC:00:86:2B:7C:9C:21:8C:66:13 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2qM7UIN5nEnPntwAhit8nCGMZhM.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6a/cf318e-8951-4e1e-bbe3-16f43dba2abc/1/U6As8UUX9Mg8l6zjGbZFCAxy-Pk.roa Signing time: Fri 02 Jan 2026 18:22:39 +0000 ROA not before: Fri 02 Jan 2026 18:22:39 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 42446 IP address blocks: 91.198.228.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/6a/cf318e-8951-4e1e-bbe3-16f43dba2abc/1/2qM7UIN5nEnPntwAhit8nCGMZhM.crl rsync://rpki.ripe.net/repository/DEFAULT/6a/cf318e-8951-4e1e-bbe3-16f43dba2abc/1/2qM7UIN5nEnPntwAhit8nCGMZhM.mft rsync://rpki.ripe.net/repository/DEFAULT/2qM7UIN5nEnPntwAhit8nCGMZhM.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 15:00:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7f:f2:88:53:4c:33:fa:3c:54:fb:5b:a1:18:fb:50:31 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=daa33b5083799c49cf9edc00862b7c9c218c6613 Validity Not Before: Jan 2 18:22:39 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=53a02cf14517f4c83c97ace319b645080c72f8f9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:81:88:dd:fb:37:bf:04:1e:a7:01:d6:4b:bd: 2c:36:d1:53:c9:a0:98:b4:5c:bb:d1:59:9d:78:9c: 9d:91:6a:cf:fc:df:1d:ca:81:22:63:2e:ec:dc:19: 2e:bf:01:d5:22:ee:4c:bf:47:eb:1b:78:b0:63:a2: 12:8c:e4:16:6a:ec:6e:90:40:26:0a:55:ab:cb:2c: fb:29:bd:ce:44:b5:ff:69:49:ef:3c:bf:e7:44:f9: 89:a2:f2:4d:4b:cb:b0:dd:2c:51:14:c5:a0:b0:a1: 44:72:97:e7:29:90:0e:f9:72:2e:a9:fa:6c:e2:e2: 02:5d:e3:60:94:41:45:1e:20:74:9c:1c:bb:7b:5f: 19:cd:19:c8:4b:ae:e0:f8:89:bc:26:bc:17:ab:1f: 1c:69:66:0e:e4:ed:b5:16:f2:a3:4f:c4:3a:ed:e8: 99:b8:18:f8:a8:0a:04:90:09:1e:fd:34:02:53:4f: 40:93:90:24:eb:64:25:dc:07:ef:c5:93:57:f6:77: f0:6b:31:8d:23:02:4c:4b:57:35:46:24:ff:89:b5: 14:a7:c0:ac:f9:d6:5b:03:55:64:af:99:90:8b:4b: d3:f2:a7:66:b6:4f:f3:be:d4:b9:29:6f:ea:20:e6: 8a:86:64:30:f0:6b:14:cd:8a:8f:b3:f4:b6:fc:93: 9b:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 53:A0:2C:F1:45:17:F4:C8:3C:97:AC:E3:19:B6:45:08:0C:72:F8:F9 X509v3 Authority Key Identifier: keyid:DA:A3:3B:50:83:79:9C:49:CF:9E:DC:00:86:2B:7C:9C:21:8C:66:13 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2qM7UIN5nEnPntwAhit8nCGMZhM.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6a/cf318e-8951-4e1e-bbe3-16f43dba2abc/1/U6As8UUX9Mg8l6zjGbZFCAxy-Pk.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/6a/cf318e-8951-4e1e-bbe3-16f43dba2abc/1/2qM7UIN5nEnPntwAhit8nCGMZhM.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 91.198.228.0/24 Signature Algorithm: sha256WithRSAEncryption 5a:ac:dc:51:96:f0:de:e7:36:4c:15:34:60:4e:7f:76:30:7d: 26:bc:5c:06:6d:0d:a4:ca:c7:6e:22:18:77:89:cd:9e:ce:d7: 47:3e:65:e2:c9:73:08:dd:9f:57:39:17:e5:26:a6:73:87:1a: c7:42:99:30:8f:44:b7:82:41:48:81:70:7d:09:16:06:71:85: d1:e3:75:20:a7:62:56:d1:34:e3:14:46:48:d7:09:79:be:16: 1c:1d:e9:6a:05:4d:70:51:ec:b7:50:f8:43:24:54:c9:05:f1: 51:bd:c3:a2:c2:ac:98:80:fc:69:9d:61:c2:75:9a:a1:97:0d: 69:c8:d7:53:df:e5:84:3a:ed:9b:46:99:f7:6b:8e:4a:78:b7: 06:f7:f2:64:aa:27:e4:52:66:8c:45:8f:0a:21:61:ad:0a:86: 6c:a4:25:12:86:d9:5d:66:f0:cb:e3:39:84:01:93:8d:5e:66: fa:4d:95:e9:c8:19:37:5f:cf:5a:e3:97:94:ab:6b:4a:5a:9e: a6:56:65:bf:83:20:e9:f7:45:5c:0d:90:94:48:ea:9e:69:af: ed:6e:3c:ba:66:d1:ad:0b:dd:1d:e5:c7:1f:ab:8c:81:5c:2f: ef:80:5a:81:71:f7:35:91:92:e1:44:72:67:00:42:4c:fa:83: 6f:17:07:59 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt/8ohTTDP6PFT7W6EY+1AxMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGRhYTMzYjUwODM3OTljNDljZjllZGMwMDg2MmI3YzljMjE4 YzY2MTMwHhcNMjYwMTAyMTgyMjM5WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg1M2EwMmNmMTQ1MTdmNGM4M2M5N2FjZTMxOWI2NDUwODBjNzJmOGY5MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxYGI3fs3vwQepwHWS70sNtFTyaCY tFy70VmdeJydkWrP/N8dyoEiYy7s3BkuvwHVIu5Mv0frG3iwY6ISjOQWauxukEAm ClWryyz7Kb3ORLX/aUnvPL/nRPmJovJNS8uw3SxRFMWgsKFEcpfnKZAO+XIuqfps 4uICXeNglEFFHiB0nBy7e18ZzRnIS67g+Im8JrwXqx8caWYO5O21FvKjT8Q67eiZ uBj4qAoEkAke/TQCU09Ak5Ak62Ql3AfvxZNX9nfwazGNIwJMS1c1RiT/ibUUp8Cs +dZbA1Vkr5mQi0vT8qdmtk/zvtS5KW/qIOaKhmQw8GsUzYqPs/S2/JObqQIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFFOgLPFFF/TIPJes4xm2RQgMcvj5MB8GA1UdIwQY MBaAFNqjO1CDeZxJz57cAIYrfJwhjGYTMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvMnFNN1VJTjVuRW5QbnR3QWhpdDhuQ0dNWmhNLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82YS9jZjMxOGUtODk1MS00ZTFlLWJiZTMt MTZmNDNkYmEyYWJjLzEvVTZBczhVVVg5TWc4bDZ6akdiWkZDQXh5LVBrLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC82YS9jZjMxOGUtODk1MS00ZTFlLWJiZTMtMTZmNDNkYmEyYWJj LzEvMnFNN1VJTjVuRW5QbnR3QWhpdDhuQ0dNWmhNLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAW8bkMA0G CSqGSIb3DQEBCwUAA4IBAQBarNxRlvDe5zZMFTRgTn92MH0mvFwGbQ2kysduIhh3 ic2eztdHPmXiyXMI3Z9XORflJqZzhxrHQpkwj0S3gkFIgXB9CRYGcYXR43Ugp2JW 0TTjFEZI1wl5vhYcHelqBU1wUey3UPhDJFTJBfFRvcOiwqyYgPxpnWHCdZqhlw1p yNdT3+WEOu2bRpn3a45KeLcG9/JkqifkUmaMRY8KIWGtCoZspCUShtldZvDL4zmE AZONXmb6TZXpyBk3X89a45eUq2tKWp6mVmW/gyDp90VcDZCUSOqeaa/tbjy6ZtGt C90d5ccfq4yBXC/vgFqBcfc1kZLhRHJnAEJM+oNvFwdZ -----END CERTIFICATE-----Generated at Mon Jan 26 00:37:26 2026 by rpki-client