This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/91/8a734a-d2b8-411e-a557-50d6ba6aacb8/1/_CFPh66keTCITiqmvw_4htRJTp4.roa File: _CFPh66keTCITiqmvw_4htRJTp4.roa (raw, json) Hash identifier: XVgJ7okcz0pASxRtTH11rXLKJOaj4G0utKg5eDLxo38= Subject key identifier: FC:21:4F:87:AE:A4:79:30:88:4E:2A:A6:BF:0F:F8:86:D4:49:4E:9E Certificate issuer: /CN=560d1e89b4e742e69062a95d351deea96b5178fb Certificate serial: 019BBAAD02212836E94605DB9AD2CFB5AC03 Authority key identifier: 56:0D:1E:89:B4:E7:42:E6:90:62:A9:5D:35:1D:EE:A9:6B:51:78:FB Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Vg0eibTnQuaQYqldNR3uqWtRePs.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/91/8a734a-d2b8-411e-a557-50d6ba6aacb8/1/_CFPh66keTCITiqmvw_4htRJTp4.roa Signing time: Wed 14 Jan 2026 04:04:18 +0000 ROA not before: Wed 14 Jan 2026 04:04:18 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 36680 IP address blocks: 91.231.222.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/91/8a734a-d2b8-411e-a557-50d6ba6aacb8/1/Vg0eibTnQuaQYqldNR3uqWtRePs.crl rsync://rpki.ripe.net/repository/DEFAULT/91/8a734a-d2b8-411e-a557-50d6ba6aacb8/1/Vg0eibTnQuaQYqldNR3uqWtRePs.mft rsync://rpki.ripe.net/repository/DEFAULT/Vg0eibTnQuaQYqldNR3uqWtRePs.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 07:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:ba:ad:02:21:28:36:e9:46:05:db:9a:d2:cf:b5:ac:03 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=560d1e89b4e742e69062a95d351deea96b5178fb Validity Not Before: Jan 14 04:04:18 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=fc214f87aea47930884e2aa6bf0ff886d4494e9e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:93:72:78:b4:09:a2:d0:d3:bf:e0:98:8b:1c: d4:b5:66:ad:69:6b:53:2a:81:e5:ff:c5:4a:09:77: 1c:40:1e:00:2a:19:5f:0d:e3:12:1f:37:e0:27:23: 1b:9d:ed:ef:f1:0a:95:c4:8a:4d:4b:69:1d:c1:83: f1:5f:8a:4a:91:ca:a1:21:1f:d3:47:0a:13:6b:ba: 00:52:33:7e:c8:bf:95:03:c5:30:0b:eb:8c:57:08: 87:99:33:af:6b:d2:3d:ff:f9:48:8c:b2:9a:82:7f: 0a:f9:18:17:53:39:14:c6:a6:fe:c7:bd:61:88:25: 85:dc:78:89:75:c8:f4:40:da:a0:8e:09:c9:0e:3f: 4a:7c:2d:c6:70:8c:f6:b1:2f:70:6f:44:3a:0c:2e: 27:4c:92:20:3a:33:7f:55:d1:33:61:7f:c9:d8:5d: 16:4d:69:18:ed:14:fe:c9:63:77:b1:85:76:f1:40: c5:72:d2:b6:56:e2:4b:2f:85:37:29:8a:d7:ba:e2: 7f:b3:da:e6:67:eb:e0:f5:63:49:e0:35:70:26:f4: f5:ea:92:5b:17:56:5b:0e:54:5b:11:52:4e:91:e9: 02:9f:3f:ae:6d:02:c7:08:e7:12:5f:f5:fe:9e:db: d9:c2:8a:81:1b:10:d3:52:48:de:de:be:61:e5:c2: 75:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FC:21:4F:87:AE:A4:79:30:88:4E:2A:A6:BF:0F:F8:86:D4:49:4E:9E X509v3 Authority Key Identifier: keyid:56:0D:1E:89:B4:E7:42:E6:90:62:A9:5D:35:1D:EE:A9:6B:51:78:FB X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Vg0eibTnQuaQYqldNR3uqWtRePs.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/91/8a734a-d2b8-411e-a557-50d6ba6aacb8/1/_CFPh66keTCITiqmvw_4htRJTp4.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/91/8a734a-d2b8-411e-a557-50d6ba6aacb8/1/Vg0eibTnQuaQYqldNR3uqWtRePs.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 91.231.222.0/24 Signature Algorithm: sha256WithRSAEncryption 27:50:00:c5:53:94:e4:ed:18:d3:24:f9:8e:70:7c:e0:ad:42: d9:95:de:79:03:d4:7f:64:8d:34:ad:e0:e7:07:11:42:12:7f: b3:c7:16:f5:0b:4d:66:43:1b:74:38:51:34:3b:78:c9:9a:24: d9:1f:ad:cc:8c:5e:4d:27:ea:4e:ed:f2:be:cb:0e:d8:bc:cb: fc:ac:fc:b1:80:ee:bd:72:f7:da:44:e4:4b:c9:7d:e5:f6:67: b5:ae:5d:c1:2a:68:fe:46:7a:4c:87:a6:76:59:57:aa:01:0c: 10:a6:d0:c7:65:dd:e3:66:d7:7b:0d:0d:06:f5:21:84:4b:dc: 4f:43:e6:30:3f:04:29:a7:2b:e4:d2:0c:53:70:d2:5b:43:2b: e7:cb:b1:71:d9:bd:e9:a1:89:81:58:8b:01:87:8a:9c:97:98: d7:85:c7:ff:a9:01:1d:2f:a2:6a:30:88:92:90:80:04:45:f3: ac:53:c2:e0:b4:64:00:4b:df:61:05:05:0b:09:e6:2f:50:af: 1d:56:62:b2:08:9a:60:34:81:2e:3e:a7:b0:cb:a6:2f:45:33: de:fc:5c:a8:4b:5c:a5:58:c7:c4:60:e5:a5:1b:20:2d:aa:db: 05:20:15:5c:47:ab:47:e3:89:61:b6:3e:98:1c:a5:b7:f9:86: a5:d7:cf:b6 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZu6rQIhKDbpRgXbmtLPtawDMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDU2MGQxZTg5YjRlNzQyZTY5MDYyYTk1ZDM1MWRlZWE5NmI1 MTc4ZmIwHhcNMjYwMTE0MDQwNDE4WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhmYzIxNGY4N2FlYTQ3OTMwODg0ZTJhYTZiZjBmZjg4NmQ0NDk0ZTllMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAypNyeLQJotDTv+CYixzUtWataWtT KoHl/8VKCXccQB4AKhlfDeMSHzfgJyMbne3v8QqVxIpNS2kdwYPxX4pKkcqhIR/T RwoTa7oAUjN+yL+VA8UwC+uMVwiHmTOva9I9//lIjLKagn8K+RgXUzkUxqb+x71h iCWF3HiJdcj0QNqgjgnJDj9KfC3GcIz2sS9wb0Q6DC4nTJIgOjN/VdEzYX/J2F0W TWkY7RT+yWN3sYV28UDFctK2VuJLL4U3KYrXuuJ/s9rmZ+vg9WNJ4DVwJvT16pJb F1ZbDlRbEVJOkekCnz+ubQLHCOcSX/X+ntvZwoqBGxDTUkje3r5h5cJ1XwIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFPwhT4eupHkwiE4qpr8P+IbUSU6eMB8GA1UdIwQY MBaAFFYNHom050LmkGKpXTUd7qlrUXj7MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvVmcwZWliVG5RdWFRWXFsZE5SM3VxV3RSZVBzLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85MS84YTczNGEtZDJiOC00MTFlLWE1NTct NTBkNmJhNmFhY2I4LzEvX0NGUGg2NmtlVENJVGlxbXZ3XzRodFJKVHA0LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC85MS84YTczNGEtZDJiOC00MTFlLWE1NTctNTBkNmJhNmFhY2I4 LzEvVmcwZWliVG5RdWFRWXFsZE5SM3VxV3RSZVBzLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAW+feMA0G CSqGSIb3DQEBCwUAA4IBAQAnUADFU5Tk7RjTJPmOcHzgrULZld55A9R/ZI00reDn BxFCEn+zxxb1C01mQxt0OFE0O3jJmiTZH63MjF5NJ+pO7fK+yw7YvMv8rPyxgO69 cvfaRORLyX3l9me1rl3BKmj+RnpMh6Z2WVeqAQwQptDHZd3jZtd7DQ0G9SGES9xP Q+YwPwQppyvk0gxTcNJbQyvny7Fx2b3poYmBWIsBh4qcl5jXhcf/qQEdL6JqMIiS kIAERfOsU8LgtGQAS99hBQULCeYvUK8dVmKyCJpgNIEuPqewy6YvRTPe/FyoS1yl WMfEYOWlGyAtqtsFIBVcR6tH44lhtj6YHKW3+Yal18+2 -----END CERTIFICATE-----Generated at Sun Jan 25 17:22:37 2026 by rpki-client