This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/93/e4bb51-b963-4b46-aa27-26bf8ccd7b74/1/tInv3pdN12lO0HutSPRlUsoAZFs.roa File: tInv3pdN12lO0HutSPRlUsoAZFs.roa (raw, json) Hash identifier: KzYnf/5cndcX07CYcYQPy6531MI9wF8VxnC9Gs3B49U= Subject key identifier: B4:89:EF:DE:97:4D:D7:69:4E:D0:7B:AD:48:F4:65:52:CA:00:64:5B Certificate issuer: /CN=0ede17b8caf02461bf54c0964ed38a2590062f94 Certificate serial: 019B77593261765C7D3DDFB13DF1AE3A4B75 Authority key identifier: 0E:DE:17:B8:CA:F0:24:61:BF:54:C0:96:4E:D3:8A:25:90:06:2F:94 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Dt4XuMrwJGG_VMCWTtOKJZAGL5Q.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/93/e4bb51-b963-4b46-aa27-26bf8ccd7b74/1/tInv3pdN12lO0HutSPRlUsoAZFs.roa Signing time: Thu 01 Jan 2026 02:18:12 +0000 ROA not before: Thu 01 Jan 2026 02:18:12 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 196659 IP address blocks: 91.102.232.0/21 maxlen: 24 91.102.233.0/24 maxlen: 24 91.102.234.0/24 maxlen: 24 91.102.235.0/24 maxlen: 24 91.102.236.0/24 maxlen: 24 91.102.237.0/24 maxlen: 24 91.102.238.0/24 maxlen: 24 91.102.239.0/24 maxlen: 24 2a0b:c9c0:1::/48 maxlen: 48 2a0b:c9c0:2::/48 maxlen: 48 2a0b:c9c0:3::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/93/e4bb51-b963-4b46-aa27-26bf8ccd7b74/1/Dt4XuMrwJGG_VMCWTtOKJZAGL5Q.crl rsync://rpki.ripe.net/repository/DEFAULT/93/e4bb51-b963-4b46-aa27-26bf8ccd7b74/1/Dt4XuMrwJGG_VMCWTtOKJZAGL5Q.mft rsync://rpki.ripe.net/repository/DEFAULT/Dt4XuMrwJGG_VMCWTtOKJZAGL5Q.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 11:01:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:77:59:32:61:76:5c:7d:3d:df:b1:3d:f1:ae:3a:4b:75 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0ede17b8caf02461bf54c0964ed38a2590062f94 Validity Not Before: Jan 1 02:18:12 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=b489efde974dd7694ed07bad48f46552ca00645b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:27:15:c0:67:29:6e:41:5c:47:e6:72:2e:6c: ab:da:b6:d5:6e:69:c1:a6:d9:70:66:17:05:2b:a6: 55:48:84:81:f9:05:31:f2:16:b5:14:6d:6f:0c:7a: af:c4:5a:3d:34:f1:46:e7:7d:eb:b3:91:bb:c1:7e: 92:76:2b:d8:d3:3a:de:0c:09:bf:41:31:50:93:d4: 9a:a9:6d:24:bd:aa:6c:6c:b7:f6:9a:f0:34:94:f8: 12:a1:43:e4:c8:40:4d:63:94:97:7d:55:ef:1d:bc: a4:8e:72:21:cc:48:14:08:9e:17:fa:f3:73:a2:b9: 0c:7f:9e:08:21:29:3b:c8:06:13:cf:18:b1:17:ea: bf:7a:85:61:5e:be:db:aa:5b:ea:f3:c2:f1:e5:01: 67:c9:20:cb:f6:1d:1c:66:dc:57:3b:f3:1d:b2:73: 30:fe:41:96:7b:88:bb:a7:78:19:a4:3f:02:51:d2: 76:6a:84:ba:a8:0a:42:04:e8:7c:27:b5:bb:87:85: 73:c6:eb:df:08:5b:3b:ae:4a:18:48:03:fa:8f:44: 44:79:98:aa:6e:9d:72:ca:5a:23:45:eb:c8:e1:dc: 3a:9d:c7:2e:55:1c:aa:92:d6:ad:99:6a:b8:2b:22: 4f:2b:4a:dc:4a:c7:44:24:9d:c7:42:18:41:fb:1d: 31:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B4:89:EF:DE:97:4D:D7:69:4E:D0:7B:AD:48:F4:65:52:CA:00:64:5B X509v3 Authority Key Identifier: keyid:0E:DE:17:B8:CA:F0:24:61:BF:54:C0:96:4E:D3:8A:25:90:06:2F:94 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Dt4XuMrwJGG_VMCWTtOKJZAGL5Q.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/93/e4bb51-b963-4b46-aa27-26bf8ccd7b74/1/tInv3pdN12lO0HutSPRlUsoAZFs.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/93/e4bb51-b963-4b46-aa27-26bf8ccd7b74/1/Dt4XuMrwJGG_VMCWTtOKJZAGL5Q.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 91.102.232.0/21 IPv6: 2a0b:c9c0:1::-2a0b:c9c0:3:ffff:ffff:ffff:ffff:ffff Signature Algorithm: sha256WithRSAEncryption 55:ec:3f:ac:68:72:e2:36:cc:5b:21:7e:46:b4:12:3c:2d:d7: b4:0f:0c:78:26:30:f1:ef:68:95:cd:f5:7b:23:80:64:28:05: 45:99:8e:cb:13:a4:45:2f:6a:f2:ea:74:90:1e:26:0d:06:3d: 4b:28:93:f1:41:2a:d6:a4:38:6c:37:5d:ec:62:09:4e:6c:0d: aa:23:17:f0:f7:fa:bb:c1:f8:c1:2e:f1:95:1f:75:e6:06:77: f5:8b:85:7e:8c:63:58:5d:e4:4f:00:c4:ec:2a:3f:47:1a:38: ff:df:51:8d:dc:d8:f9:9d:22:1a:35:03:9b:ad:7e:59:09:db: 6e:bb:23:20:9d:84:f9:c3:76:1f:1f:60:03:26:b8:7a:15:34: eb:1a:95:77:be:04:e0:78:b8:e5:c2:ab:b7:10:06:e4:b9:91: 51:a5:8f:9f:71:7e:be:95:92:c7:51:66:35:27:ab:89:72:85: 91:6d:7e:5e:b9:93:45:f2:dd:9e:50:50:0f:b8:05:63:c8:f2: d4:94:37:6d:16:d8:54:f1:5f:8c:9d:66:fa:8b:3e:c9:ba:30: 37:bd:dd:7b:a8:71:96:50:b8:8c:c4:98:a7:ca:d0:25:d7:45: 7e:aa:66:13:c9:74:3d:d7:e4:6a:d3:cb:1f:f2:31:d8:94:15: f8:0d:7b:09 -----BEGIN CERTIFICATE----- MIIFGTCCBAGgAwIBAgISAZt3WTJhdlx9Pd+xPfGuOkt1MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDBlZGUxN2I4Y2FmMDI0NjFiZjU0YzA5NjRlZDM4YTI1OTAw NjJmOTQwHhcNMjYwMTAxMDIxODEyWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhiNDg5ZWZkZTk3NGRkNzY5NGVkMDdiYWQ0OGY0NjU1MmNhMDA2NDViMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuScVwGcpbkFcR+ZyLmyr2rbVbmnB ptlwZhcFK6ZVSISB+QUx8ha1FG1vDHqvxFo9NPFG533rs5G7wX6SdivY0zreDAm/ QTFQk9SaqW0kvapsbLf2mvA0lPgSoUPkyEBNY5SXfVXvHbykjnIhzEgUCJ4X+vNz orkMf54IISk7yAYTzxixF+q/eoVhXr7bqlvq88Lx5QFnySDL9h0cZtxXO/MdsnMw /kGWe4i7p3gZpD8CUdJ2aoS6qApCBOh8J7W7h4VzxuvfCFs7rkoYSAP6j0REeZiq bp1yylojRevI4dw6nccuVRyqktatmWq4KyJPK0rcSsdEJJ3HQhhB+x0xtQIDAQAB o4ICJTCCAiEwHQYDVR0OBBYEFLSJ796XTddpTtB7rUj0ZVLKAGRbMB8GA1UdIwQY MBaAFA7eF7jK8CRhv1TAlk7TiiWQBi+UMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvRHQ0WHVNcndKR0dfVk1DV1R0T0tKWkFHTDVRLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85My9lNGJiNTEtYjk2My00YjQ2LWFhMjct MjZiZjhjY2Q3Yjc0LzEvdEludjNwZE4xMmxPMEh1dFNQUmxVc29BWkZzLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC85My9lNGJiNTEtYjk2My00YjQ2LWFhMjctMjZiZjhjY2Q3Yjc0 LzEvRHQ0WHVNcndKR0dfVk1DV1R0T0tKWkFHTDVRLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMDsGCCsGAQUFBwEHAQH/BCwwKjAMBAIAATAGAwQDW2boMBoE AgACMBQwEgMHACoLycAAAQMHAioLycAAADANBgkqhkiG9w0BAQsFAAOCAQEAVew/ rGhy4jbMWyF+RrQSPC3XtA8MeCYw8e9olc31eyOAZCgFRZmOyxOkRS9q8up0kB4m DQY9SyiT8UEq1qQ4bDdd7GIJTmwNqiMX8Pf6u8H4wS7xlR915gZ39YuFfoxjWF3k TwDE7Co/Rxo4/99RjdzY+Z0iGjUDm61+WQnbbrsjIJ2E+cN2Hx9gAya4ehU06xqV d74E4Hi45cKrtxAG5LmRUaWPn3F+vpWSx1FmNSeriXKFkW1+XrmTRfLdnlBQD7gF Y8jy1JQ3bRbYVPFfjJ1m+os+ybowN73de6hxllC4jMSYp8rQJddFfqpmE8l0Pdfk atPLH/Ix2JQV+A17CQ== -----END CERTIFICATE-----Generated at Sun Jan 25 18:20:45 2026 by rpki-client