This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9f/bf58da-a9d2-421a-b43a-92c3bf74a97b/1/kHLOFNJo-2wO460UH5yY6WLbRA4.roa File: kHLOFNJo-2wO460UH5yY6WLbRA4.roa (raw, json) Hash identifier: cbjWaxQd3OzQ/brI7kuiZO8+wwoYg/MJ58asU0xkiME= Subject key identifier: 90:72:CE:14:D2:68:FB:6C:0E:E3:AD:14:1F:9C:98:E9:62:DB:44:0E Certificate issuer: /CN=2793bde946ae936d3cacc136a5f3239edf2431f4 Certificate serial: 019B0D722F6DA4688008424D9DF9292C2B09 Authority key identifier: 27:93:BD:E9:46:AE:93:6D:3C:AC:C1:36:A5:F3:23:9E:DF:24:31:F4 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/J5O96Uauk208rME2pfMjnt8kMfQ.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9f/bf58da-a9d2-421a-b43a-92c3bf74a97b/1/kHLOFNJo-2wO460UH5yY6WLbRA4.roa Signing time: Thu 11 Dec 2025 12:45:45 +0000 ROA not before: Thu 11 Dec 2025 12:45:45 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 211439 IP address blocks: 91.188.252.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9f/bf58da-a9d2-421a-b43a-92c3bf74a97b/1/J5O96Uauk208rME2pfMjnt8kMfQ.crl rsync://rpki.ripe.net/repository/DEFAULT/9f/bf58da-a9d2-421a-b43a-92c3bf74a97b/1/J5O96Uauk208rME2pfMjnt8kMfQ.mft rsync://rpki.ripe.net/repository/DEFAULT/J5O96Uauk208rME2pfMjnt8kMfQ.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 18 Dec 2025 10:00:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:0d:72:2f:6d:a4:68:80:08:42:4d:9d:f9:29:2c:2b:09 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2793bde946ae936d3cacc136a5f3239edf2431f4 Validity Not Before: Dec 11 12:45:45 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=9072ce14d268fb6c0ee3ad141f9c98e962db440e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:e8:ca:96:d2:7a:12:28:a9:98:b4:c1:d9:03: 00:bc:72:c4:91:fd:c5:2e:34:3a:38:29:84:28:fa: 01:a8:20:e9:ba:c2:50:c5:dd:ab:fe:08:24:78:eb: ba:eb:ad:44:71:90:a2:29:d6:16:d0:b5:8a:ef:1a: aa:37:58:3c:a4:5d:83:e8:68:46:3f:2f:7e:68:52: 35:a3:76:42:ca:07:74:f5:d7:cd:4f:c4:b9:8f:76: 5f:78:63:65:31:e3:6c:a6:50:2e:36:34:cd:f5:ec: 78:3a:84:ef:71:c1:da:c1:6c:eb:d9:b5:01:35:e9: 27:16:d6:67:c6:39:4c:59:ca:3c:2a:4e:ef:00:a8: ed:30:89:d7:ed:2f:e1:5f:56:b9:fb:5d:d8:e2:31: de:6b:90:50:85:9e:c6:62:7e:25:ff:69:f2:c4:7e: 67:be:68:c3:eb:25:77:7f:97:8c:72:4a:9c:97:c5: 3a:66:c0:b2:cb:87:b2:4c:53:a3:2e:94:19:c5:04: e3:cf:1e:3a:ec:5a:e1:af:d2:ea:0c:84:46:00:36: 88:5f:ed:ca:e0:2c:12:3b:7a:f9:6f:42:4a:9d:e2: 92:35:e0:80:f6:f8:98:b8:55:d8:c0:f5:25:16:6a: 8f:bf:a5:3f:54:ba:df:e7:7a:6e:2a:f2:24:5e:ba: b4:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 90:72:CE:14:D2:68:FB:6C:0E:E3:AD:14:1F:9C:98:E9:62:DB:44:0E X509v3 Authority Key Identifier: keyid:27:93:BD:E9:46:AE:93:6D:3C:AC:C1:36:A5:F3:23:9E:DF:24:31:F4 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/J5O96Uauk208rME2pfMjnt8kMfQ.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9f/bf58da-a9d2-421a-b43a-92c3bf74a97b/1/kHLOFNJo-2wO460UH5yY6WLbRA4.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/9f/bf58da-a9d2-421a-b43a-92c3bf74a97b/1/J5O96Uauk208rME2pfMjnt8kMfQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 91.188.252.0/24 Signature Algorithm: sha256WithRSAEncryption 70:ad:a1:a5:fa:8d:2c:23:fa:e2:f3:5c:1b:e8:59:b0:1c:de: ed:53:58:be:93:03:7a:9c:fe:02:7e:3e:bb:81:3b:18:74:24: 47:55:29:83:de:d5:38:00:a3:aa:37:69:53:3e:8b:c3:d9:ba: 2e:5b:00:86:49:08:a9:02:11:10:88:d8:ae:3a:2d:fd:d9:de: 94:2b:a8:1f:a3:25:ad:b5:01:42:53:f6:f8:0b:db:c2:b5:40: 12:39:83:ce:8d:d9:5a:bb:02:8a:db:4c:5e:5b:12:fc:d9:7d: 9e:6d:11:44:ef:86:e2:e5:6b:40:c8:14:45:50:8e:5e:c3:98: 26:d6:48:9a:f4:a4:4e:4e:55:a4:e6:10:05:b4:72:ea:8f:06: d1:38:76:b8:45:68:1f:52:cf:22:70:8e:bc:67:0b:e1:c1:58: e3:74:81:7e:01:1e:5c:f6:12:c5:35:2a:0a:0f:77:d3:bb:a7: 2c:cd:38:92:1a:f6:a8:3b:87:f1:17:d4:1c:3d:26:15:59:cc: 82:8e:7c:84:ee:c9:57:65:48:fa:e2:6f:58:5f:79:38:d6:63: fe:b3:a9:63:ec:26:a6:67:eb:0e:46:08:09:e0:94:bf:32:63: 8d:a3:86:07:83:eb:cc:0e:11:a5:1a:43:2e:57:89:db:78:4e: 8b:b2:c2:87 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZsNci9tpGiACEJNnfkpLCsJMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDI3OTNiZGU5NDZhZTkzNmQzY2FjYzEzNmE1ZjMyMzllZGYy NDMxZjQwHhcNMjUxMjExMTI0NTQ1WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg5MDcyY2UxNGQyNjhmYjZjMGVlM2FkMTQxZjljOThlOTYyZGI0NDBlMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0ujKltJ6EiipmLTB2QMAvHLEkf3F LjQ6OCmEKPoBqCDpusJQxd2r/ggkeOu6661EcZCiKdYW0LWK7xqqN1g8pF2D6GhG Py9+aFI1o3ZCygd09dfNT8S5j3ZfeGNlMeNsplAuNjTN9ex4OoTvccHawWzr2bUB NeknFtZnxjlMWco8Kk7vAKjtMInX7S/hX1a5+13Y4jHea5BQhZ7GYn4l/2nyxH5n vmjD6yV3f5eMckqcl8U6ZsCyy4eyTFOjLpQZxQTjzx467Frhr9LqDIRGADaIX+3K 4CwSO3r5b0JKneKSNeCA9viYuFXYwPUlFmqPv6U/VLrf53puKvIkXrq0LQIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFJByzhTSaPtsDuOtFB+cmOli20QOMB8GA1UdIwQY MBaAFCeTvelGrpNtPKzBNqXzI57fJDH0MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSjVPOTZVYXVrMjA4ck1FMnBmTWpudDhrTWZRLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85Zi9iZjU4ZGEtYTlkMi00MjFhLWI0M2Et OTJjM2JmNzRhOTdiLzEva0hMT0ZOSm8tMndPNDYwVUg1eVk2V0xiUkE0LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC85Zi9iZjU4ZGEtYTlkMi00MjFhLWI0M2EtOTJjM2JmNzRhOTdi LzEvSjVPOTZVYXVrMjA4ck1FMnBmTWpudDhrTWZRLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAW7z8MA0G CSqGSIb3DQEBCwUAA4IBAQBwraGl+o0sI/ri81wb6FmwHN7tU1i+kwN6nP4Cfj67 gTsYdCRHVSmD3tU4AKOqN2lTPovD2bouWwCGSQipAhEQiNiuOi392d6UK6gfoyWt tQFCU/b4C9vCtUASOYPOjdlauwKK20xeWxL82X2ebRFE74bi5WtAyBRFUI5ew5gm 1kia9KROTlWk5hAFtHLqjwbROHa4RWgfUs8icI68ZwvhwVjjdIF+AR5c9hLFNSoK D3fTu6cszTiSGvaoO4fxF9QcPSYVWcyCjnyE7slXZUj64m9YX3k41mP+s6lj7Cam Z+sORggJ4JS/MmONo4YHg+vMDhGlGkMuV4nbeE6LssKH -----END CERTIFICATE-----Generated at Wed Dec 17 19:16:54 2025 by rpki-client