This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b3/8d7c57-ba65-47fc-bcc4-c33018633d33/1/1-2ntxM7Wji529DJOYLflZIRfZ3I.roa File: 1-2ntxM7Wji529DJOYLflZIRfZ3I.roa (raw, json) Hash identifier: LLb5LuZm3YOIGsTuGBMZEbvgAboSLWz6Cy6RFfdyMpY= Subject key identifier: FB:69:ED:C4:CE:D6:8E:2E:76:F4:32:4E:60:B7:E5:64:84:5F:67:72 Certificate issuer: /CN=30f1ba6111c8f1d3f37c1b7c1a5ed737402192f2 Certificate serial: 019B797EE24C65A867F7476239A09791974D Authority key identifier: 30:F1:BA:61:11:C8:F1:D3:F3:7C:1B:7C:1A:5E:D7:37:40:21:92:F2 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MPG6YRHI8dPzfBt8Gl7XN0AhkvI.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b3/8d7c57-ba65-47fc-bcc4-c33018633d33/1/1-2ntxM7Wji529DJOYLflZIRfZ3I.roa Signing time: Thu 01 Jan 2026 12:18:37 +0000 ROA not before: Thu 01 Jan 2026 12:18:37 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 203596 IP address blocks: 91.213.223.0/24 maxlen: 24 91.216.15.0/24 maxlen: 24 185.14.176.0/24 maxlen: 24 185.14.178.0/24 maxlen: 24 185.122.100.0/22 maxlen: 24 185.222.88.0/22 maxlen: 24 2a06:a400::/29 maxlen: 29 2a06:a400:20::/44 maxlen: 48 2a06:a400:22::/48 maxlen: 48 2a06:a401::/32 maxlen: 48 2a06:a402::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b3/8d7c57-ba65-47fc-bcc4-c33018633d33/1/MPG6YRHI8dPzfBt8Gl7XN0AhkvI.crl rsync://rpki.ripe.net/repository/DEFAULT/b3/8d7c57-ba65-47fc-bcc4-c33018633d33/1/MPG6YRHI8dPzfBt8Gl7XN0AhkvI.mft rsync://rpki.ripe.net/repository/DEFAULT/MPG6YRHI8dPzfBt8Gl7XN0AhkvI.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 12:01:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:79:7e:e2:4c:65:a8:67:f7:47:62:39:a0:97:91:97:4d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=30f1ba6111c8f1d3f37c1b7c1a5ed737402192f2 Validity Not Before: Jan 1 12:18:37 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=fb69edc4ced68e2e76f4324e60b7e564845f6772 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:a4:9f:e1:7e:dd:80:21:d0:8a:db:34:ad:11: 87:2b:5e:07:23:22:16:d5:77:86:37:56:ae:c7:e1: f5:12:94:53:46:1a:2f:23:b9:ad:1b:04:4b:20:1e: 29:4e:4b:eb:f2:fa:cd:11:bb:12:b4:49:7b:68:62: de:9a:fe:3c:00:b7:5d:86:d2:ba:3a:df:76:20:38: 66:10:67:55:73:58:c1:e6:51:1f:0d:8e:65:7d:81: 68:8e:b6:05:76:b6:95:a7:01:d9:8c:98:e9:09:51: 8c:17:52:b9:ec:94:7e:4d:36:69:64:f2:34:65:41: e3:ce:0a:d5:ae:6f:b2:57:95:62:8b:89:52:f8:f7: f9:a2:27:92:4b:7f:de:87:e6:cc:bb:11:46:94:be: 61:88:da:2f:18:cd:c2:8e:93:5e:0f:39:c6:a3:4f: 3e:16:57:3d:40:ac:c0:24:1a:13:65:00:4a:72:79: 2d:d1:3a:9b:27:3f:82:74:9b:af:46:ee:f6:62:cc: 23:f3:b5:68:01:64:d0:98:25:3a:08:cb:7e:83:f9: e9:be:56:07:ad:70:07:9d:67:8a:5b:47:e7:b4:16: 8c:cb:8e:67:32:84:8f:fb:70:63:91:f6:71:d1:8c: 22:8a:c0:8f:e0:27:ec:85:fa:70:34:e7:1b:e1:89: 51:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FB:69:ED:C4:CE:D6:8E:2E:76:F4:32:4E:60:B7:E5:64:84:5F:67:72 X509v3 Authority Key Identifier: keyid:30:F1:BA:61:11:C8:F1:D3:F3:7C:1B:7C:1A:5E:D7:37:40:21:92:F2 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MPG6YRHI8dPzfBt8Gl7XN0AhkvI.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/8d7c57-ba65-47fc-bcc4-c33018633d33/1/1-2ntxM7Wji529DJOYLflZIRfZ3I.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/8d7c57-ba65-47fc-bcc4-c33018633d33/1/MPG6YRHI8dPzfBt8Gl7XN0AhkvI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 91.213.223.0/24 91.216.15.0/24 185.14.176.0/24 185.14.178.0/24 185.122.100.0/22 185.222.88.0/22 IPv6: 2a06:a400::/29 Signature Algorithm: sha256WithRSAEncryption 62:4b:ad:59:f9:cf:5b:f6:17:c8:59:cb:d1:fc:46:b7:0b:02: 2e:1f:45:e5:7d:0f:a0:cf:bc:7a:22:7b:4e:a3:65:e5:c5:43: 0a:6a:1e:84:b0:9b:10:d4:71:39:07:1b:df:0a:8e:30:e6:13: ed:48:7d:a6:4d:99:35:5e:21:07:e8:85:b5:a0:b7:86:30:01: ce:58:c8:8c:04:fb:0f:e4:8b:78:3f:e7:58:db:08:ec:83:76: 8d:15:18:1c:4b:65:f2:ce:e1:54:fe:33:b8:60:c2:ba:4b:9a: 7b:aa:59:c2:ea:5f:8a:f8:df:a8:2f:c7:23:13:69:a4:e1:89: ff:3d:5d:f8:73:e5:a5:a4:16:fb:b6:66:91:de:e8:c1:60:29: 6e:bd:0d:58:fc:a1:c6:88:3a:67:aa:9c:07:95:e3:e4:25:76: a6:85:a8:66:d1:47:1c:64:85:5d:10:3e:70:61:86:7c:10:d7: f0:93:da:5c:b3:a9:61:12:56:b0:a8:b0:67:0e:97:17:11:08: 41:00:ef:6d:38:4e:cc:01:9c:3a:74:2d:1e:59:3c:d9:65:0a: 02:e6:0c:df:9b:5e:b6:3d:79:66:17:45:a2:5c:43:90:7f:53: 3f:77:c0:bf:6d:d1:b0:a9:38:2f:d7:21:0c:cc:05:d2:94:81: 88:51:35:3d -----BEGIN CERTIFICATE----- MIIFKzCCBBOgAwIBAgISAZt5fuJMZahn90diOaCXkZdNMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDMwZjFiYTYxMTFjOGYxZDNmMzdjMWI3YzFhNWVkNzM3NDAy MTkyZjIwHhcNMjYwMTAxMTIxODM3WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhmYjY5ZWRjNGNlZDY4ZTJlNzZmNDMyNGU2MGI3ZTU2NDg0NWY2NzcyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA4KSf4X7dgCHQits0rRGHK14HIyIW 1XeGN1aux+H1EpRTRhovI7mtGwRLIB4pTkvr8vrNEbsStEl7aGLemv48ALddhtK6 Ot92IDhmEGdVc1jB5lEfDY5lfYFojrYFdraVpwHZjJjpCVGMF1K57JR+TTZpZPI0 ZUHjzgrVrm+yV5Vii4lS+Pf5oieSS3/eh+bMuxFGlL5hiNovGM3CjpNeDznGo08+ Flc9QKzAJBoTZQBKcnkt0TqbJz+CdJuvRu72Yswj87VoAWTQmCU6CMt+g/npvlYH rXAHnWeKW0fntBaMy45nMoSP+3BjkfZx0YwiisCP4CfshfpwNOcb4YlRIQIDAQAB o4ICNzCCAjMwHQYDVR0OBBYEFPtp7cTO1o4udvQyTmC35WSEX2dyMB8GA1UdIwQY MBaAFDDxumERyPHT83wbfBpe1zdAIZLyMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvTVBHNllSSEk4ZFB6ZkJ0OEdsN1hOMEFoa3ZJLmNlcjCB jgYIKwYBBQUHAQsEgYEwfzB9BggrBgEFBQcwC4ZxcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iMy84ZDdjNTctYmE2NS00N2ZjLWJjYzQt YzMzMDE4NjMzZDMzLzEvMS0ybnR4TTdXamk1MjlESk9ZTGZsWklSZlozSS5yb2Ew gYEGA1UdHwR6MHgwdqB0oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0 b3J5L0RFRkFVTFQvYjMvOGQ3YzU3LWJhNjUtNDdmYy1iY2M0LWMzMzAxODYzM2Qz My8xL01QRzZZUkhJOGRQemZCdDhHbDdYTjBBaGt2SS5jcmwwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjBMBggrBgEFBQcBBwEB/wQ9MDswKgQCAAEwJAMEAFvV3wME AFvYDwMEALkOsAMEALkOsgMEArl6ZAMEArneWDANBAIAAjAHAwUDKgakADANBgkq hkiG9w0BAQsFAAOCAQEAYkutWfnPW/YXyFnL0fxGtwsCLh9F5X0PoM+8eiJ7TqNl 5cVDCmoehLCbENRxOQcb3wqOMOYT7Uh9pk2ZNV4hB+iFtaC3hjABzljIjAT7D+SL eD/nWNsI7IN2jRUYHEtl8s7hVP4zuGDCukuae6pZwupfivjfqC/HIxNppOGJ/z1d +HPlpaQW+7Zmkd7owWApbr0NWPyhxog6Z6qcB5Xj5CV2poWoZtFHHGSFXRA+cGGG fBDX8JPaXLOpYRJWsKiwZw6XFxEIQQDvbThOzAGcOnQtHlk82WUKAuYM35tetj15 ZhdFolxDkH9TP3fAv23RsKk4L9chDMwF0pSBiFE1PQ== -----END CERTIFICATE-----Generated at Sun Jan 25 22:12:49 2026 by rpki-client