This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/99/66908c-d5cb-47c8-bfce-c9c12b866078/1/rmNOPXT3TH_OdNQbcAz4GQquDj8.roa File: rmNOPXT3TH_OdNQbcAz4GQquDj8.roa (raw, json) Hash identifier: CJTw4qWW8iENRpCpx0jtALeMAEVEmBWeQhDPdUFHBBE= Subject key identifier: AE:63:4E:3D:74:F7:4C:7F:CE:74:D4:1B:70:0C:F8:19:0A:AE:0E:3F Certificate issuer: /CN=98fd440cbbb04b969b92bb6b39c0bbb41634cd12 Certificate serial: 019B78A35B90A71A64DA6BA60BF0A7249A45 Authority key identifier: 98:FD:44:0C:BB:B0:4B:96:9B:92:BB:6B:39:C0:BB:B4:16:34:CD:12 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mP1EDLuwS5abkrtrOcC7tBY0zRI.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/99/66908c-d5cb-47c8-bfce-c9c12b866078/1/rmNOPXT3TH_OdNQbcAz4GQquDj8.roa Signing time: Thu 01 Jan 2026 08:18:50 +0000 ROA not before: Thu 01 Jan 2026 08:18:50 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 15547 IP address blocks: 91.212.152.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/99/66908c-d5cb-47c8-bfce-c9c12b866078/1/mP1EDLuwS5abkrtrOcC7tBY0zRI.crl rsync://rpki.ripe.net/repository/DEFAULT/99/66908c-d5cb-47c8-bfce-c9c12b866078/1/mP1EDLuwS5abkrtrOcC7tBY0zRI.mft rsync://rpki.ripe.net/repository/DEFAULT/mP1EDLuwS5abkrtrOcC7tBY0zRI.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 25 Jan 2026 22:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:78:a3:5b:90:a7:1a:64:da:6b:a6:0b:f0:a7:24:9a:45 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=98fd440cbbb04b969b92bb6b39c0bbb41634cd12 Validity Not Before: Jan 1 08:18:50 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=ae634e3d74f74c7fce74d41b700cf8190aae0e3f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:2c:28:2e:1a:27:9e:22:cc:f1:43:98:0c:f0: 9c:91:99:6d:25:1a:c3:fa:6c:f8:6d:e5:ad:da:4d: 86:e6:62:db:ff:91:e5:a2:ab:78:b6:17:87:1b:c6: cb:6e:4c:4b:22:2f:75:f5:f9:26:8b:03:53:e3:34: 7d:bb:71:d5:ad:91:85:0b:31:81:5b:13:39:5b:8f: b8:37:ca:f8:c0:e7:e6:51:cc:2b:f6:eb:7e:5f:d2: e6:c8:04:4d:36:8c:10:a6:4c:37:b0:06:fc:bd:12: f8:95:14:8c:52:85:1b:67:e7:25:45:02:cf:d1:de: a2:42:1f:43:01:93:9e:16:a9:78:c5:fc:2c:7f:e0: c1:b1:d7:22:c6:b9:b1:3d:f0:03:45:1c:1b:c1:3c: 58:90:d2:a9:20:00:7a:d9:90:e1:82:e8:4c:da:e2: dd:06:29:e6:c7:4e:26:61:83:8a:40:e1:c7:5c:7e: 25:9d:85:53:23:ee:41:51:cf:2c:41:c8:79:f0:d7: 35:da:43:33:16:70:55:c3:d7:69:e5:2a:c6:4a:c2: 04:7f:19:1d:ca:39:25:02:df:a2:00:6c:2e:6c:26: 7a:f1:61:ff:be:07:83:e3:d2:57:f5:80:fe:9b:78: 31:52:80:c3:92:ee:13:5f:0f:dd:16:69:e8:3f:3d: 3b:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AE:63:4E:3D:74:F7:4C:7F:CE:74:D4:1B:70:0C:F8:19:0A:AE:0E:3F X509v3 Authority Key Identifier: keyid:98:FD:44:0C:BB:B0:4B:96:9B:92:BB:6B:39:C0:BB:B4:16:34:CD:12 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mP1EDLuwS5abkrtrOcC7tBY0zRI.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/99/66908c-d5cb-47c8-bfce-c9c12b866078/1/rmNOPXT3TH_OdNQbcAz4GQquDj8.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/99/66908c-d5cb-47c8-bfce-c9c12b866078/1/mP1EDLuwS5abkrtrOcC7tBY0zRI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 91.212.152.0/24 Signature Algorithm: sha256WithRSAEncryption 8f:a3:cf:9e:6a:05:e6:d3:70:3f:2f:b6:d0:e2:74:5b:3f:db: cc:0e:f4:bb:73:35:40:42:3e:49:03:9a:96:ec:73:02:b2:fe: c4:4a:b1:42:04:6b:f7:f6:63:1b:b0:91:a1:9f:a5:7a:cc:b6: 10:d0:00:39:c0:43:81:78:65:3e:fd:05:f7:33:75:d3:2b:bf: 1a:32:ea:a3:3a:6c:37:e5:d9:71:92:03:1d:b7:22:79:65:d4: 87:ea:1e:d7:03:1d:b0:b1:b2:4f:05:11:f7:c5:ad:63:b3:b5: 30:c8:d8:c4:4c:21:0d:e6:bc:25:96:b5:27:2f:ea:96:34:47: 6e:50:d8:58:ac:74:f9:8e:f0:06:5d:38:bf:9d:31:d7:70:53: 9f:ae:43:e4:bb:8b:22:99:8a:16:2d:e6:53:d4:39:68:de:17: d8:48:62:a4:cd:0b:5b:83:84:7e:f4:63:64:2c:84:79:3e:ea: 44:54:1a:61:a0:f4:2f:2b:80:28:f2:4e:46:c8:9c:91:80:a6: 52:6b:c1:6a:0d:db:1c:0c:dd:7e:a3:94:88:dd:4f:a2:fa:c7: 9b:3d:14:45:0b:8c:88:f1:05:b9:2f:c9:b5:f7:27:f0:92:84: 6b:1b:24:1f:f0:24:13:ec:34:7e:8f:d5:1e:7c:8e:ee:d4:5d: fd:c5:fc:8d -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt4o1uQpxpk2mumC/CnJJpFMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDk4ZmQ0NDBjYmJiMDRiOTY5YjkyYmI2YjM5YzBiYmI0MTYz NGNkMTIwHhcNMjYwMTAxMDgxODUwWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhhZTYzNGUzZDc0Zjc0YzdmY2U3NGQ0MWI3MDBjZjgxOTBhYWUwZTNmMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzywoLhonniLM8UOYDPCckZltJRrD +mz4beWt2k2G5mLb/5Hloqt4theHG8bLbkxLIi919fkmiwNT4zR9u3HVrZGFCzGB WxM5W4+4N8r4wOfmUcwr9ut+X9LmyARNNowQpkw3sAb8vRL4lRSMUoUbZ+clRQLP 0d6iQh9DAZOeFql4xfwsf+DBsdcixrmxPfADRRwbwTxYkNKpIAB62ZDhguhM2uLd Binmx04mYYOKQOHHXH4lnYVTI+5BUc8sQch58Nc12kMzFnBVw9dp5SrGSsIEfxkd yjklAt+iAGwubCZ68WH/vgeD49JX9YD+m3gxUoDDku4TXw/dFmnoPz07jwIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFK5jTj1090x/znTUG3AM+BkKrg4/MB8GA1UdIwQY MBaAFJj9RAy7sEuWm5K7aznAu7QWNM0SMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvbVAxRURMdXdTNWFia3J0ck9jQzd0QlkwelJJLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85OS82NjkwOGMtZDVjYi00N2M4LWJmY2Ut YzljMTJiODY2MDc4LzEvcm1OT1BYVDNUSF9PZE5RYmNBejRHUXF1RGo4LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC85OS82NjkwOGMtZDVjYi00N2M4LWJmY2UtYzljMTJiODY2MDc4 LzEvbVAxRURMdXdTNWFia3J0ck9jQzd0QlkwelJJLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAW9SYMA0G CSqGSIb3DQEBCwUAA4IBAQCPo8+eagXm03A/L7bQ4nRbP9vMDvS7czVAQj5JA5qW 7HMCsv7ESrFCBGv39mMbsJGhn6V6zLYQ0AA5wEOBeGU+/QX3M3XTK78aMuqjOmw3 5dlxkgMdtyJ5ZdSH6h7XAx2wsbJPBRH3xa1js7UwyNjETCEN5rwllrUnL+qWNEdu UNhYrHT5jvAGXTi/nTHXcFOfrkPku4simYoWLeZT1Dlo3hfYSGKkzQtbg4R+9GNk LIR5PupEVBphoPQvK4Ao8k5GyJyRgKZSa8FqDdscDN1+o5SI3U+i+sebPRRFC4yI 8QW5L8m19yfwkoRrGyQf8CQT7DR+j9UefI7u1F39xfyN -----END CERTIFICATE-----Generated at Sun Jan 25 08:48:03 2026 by rpki-client