This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d8/af282b-f597-407a-bef5-132f99cfaa53/1/SStaFDrquc-B5erBK4enz2R2C3M.roa File: SStaFDrquc-B5erBK4enz2R2C3M.roa (raw, json) Hash identifier: 2/Xo6Lo2ADW2+LmXH2Vl0mWiUWVxOxz/3Zd6qRgZGbA= Subject key identifier: 49:2B:5A:14:3A:EA:B9:CF:81:E5:EA:C1:2B:87:A7:CF:64:76:0B:73 Certificate issuer: /CN=0ffcfc345a0646a7cf225905477e2183574886e0 Certificate serial: 019B7E37FBC16FD74D1318A2A0355D1A18A6 Authority key identifier: 0F:FC:FC:34:5A:06:46:A7:CF:22:59:05:47:7E:21:83:57:48:86:E0 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/D_z8NFoGRqfPIlkFR34hg1dIhuA.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d8/af282b-f597-407a-bef5-132f99cfaa53/1/SStaFDrquc-B5erBK4enz2R2C3M.roa Signing time: Fri 02 Jan 2026 10:19:16 +0000 ROA not before: Fri 02 Jan 2026 10:19:16 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 25229 IP address blocks: 91.216.106.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d8/af282b-f597-407a-bef5-132f99cfaa53/1/D_z8NFoGRqfPIlkFR34hg1dIhuA.crl rsync://rpki.ripe.net/repository/DEFAULT/d8/af282b-f597-407a-bef5-132f99cfaa53/1/D_z8NFoGRqfPIlkFR34hg1dIhuA.mft rsync://rpki.ripe.net/repository/DEFAULT/D_z8NFoGRqfPIlkFR34hg1dIhuA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 22:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7e:37:fb:c1:6f:d7:4d:13:18:a2:a0:35:5d:1a:18:a6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0ffcfc345a0646a7cf225905477e2183574886e0 Validity Not Before: Jan 2 10:19:16 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=492b5a143aeab9cf81e5eac12b87a7cf64760b73 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:96:9f:79:03:fc:f3:13:ed:65:70:fc:38:5d: 2e:fc:10:1d:06:17:64:2e:ea:8b:b0:8b:07:6f:c1: 74:a4:db:83:75:99:f5:56:b5:df:73:d4:80:1b:53: 22:69:52:c3:de:f8:82:a8:c9:57:7e:e3:c9:5b:ff: 5f:01:80:56:a1:40:02:e6:03:5c:28:73:14:e6:6a: 96:9d:5c:1b:4a:74:fa:08:11:ef:e1:c3:b1:bc:ba: d5:38:bd:2a:e7:cd:be:2d:71:7f:1b:38:52:76:c4: 9c:03:2b:d7:3b:08:97:55:57:12:4e:59:d5:c7:12: ad:a7:3f:56:04:65:fe:62:4f:04:78:2e:c1:89:04: 92:96:36:2a:6c:04:4e:09:f4:c7:87:a0:52:15:d7: 81:2b:dc:a5:a2:3e:0e:5f:a1:25:b7:5f:43:96:50: 0c:08:87:02:b7:f6:f0:09:4c:e0:93:82:3f:a3:27: ff:e8:ff:fc:e4:f4:fe:12:0a:57:f7:7b:c9:36:a5: 20:5b:7d:fc:60:72:31:7c:2b:b5:11:0c:9c:24:65: bb:d9:6f:b3:19:74:84:c9:e1:07:fd:7b:4b:86:7c: 77:23:2e:34:11:6a:db:3d:63:6a:b2:23:15:61:b1: 56:e7:f1:97:2d:2b:79:7a:57:2d:00:bd:51:05:e7: f6:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 49:2B:5A:14:3A:EA:B9:CF:81:E5:EA:C1:2B:87:A7:CF:64:76:0B:73 X509v3 Authority Key Identifier: keyid:0F:FC:FC:34:5A:06:46:A7:CF:22:59:05:47:7E:21:83:57:48:86:E0 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/D_z8NFoGRqfPIlkFR34hg1dIhuA.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/af282b-f597-407a-bef5-132f99cfaa53/1/SStaFDrquc-B5erBK4enz2R2C3M.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/af282b-f597-407a-bef5-132f99cfaa53/1/D_z8NFoGRqfPIlkFR34hg1dIhuA.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 91.216.106.0/24 Signature Algorithm: sha256WithRSAEncryption b7:0b:b6:9f:2c:4c:55:8d:20:9f:25:46:bc:c5:cb:7f:2e:63: 19:40:b0:12:94:2b:ba:de:e5:ba:35:e3:5d:08:7b:92:8a:02: 0a:7b:7c:0f:76:55:51:93:e9:94:9a:4d:71:86:10:a8:23:7a: d5:ed:de:02:f0:78:91:4f:ee:5a:de:f4:ac:0b:fb:44:5a:3b: 0c:bb:a5:2b:a4:fd:03:36:86:f9:34:16:5f:ee:38:ca:cf:bd: 40:99:a5:81:f8:5c:a4:e7:5e:81:0b:8d:36:0d:6e:1a:41:8f: 96:e2:25:25:49:9e:96:88:14:47:1c:9f:4d:44:cd:6f:e0:b9: 7c:04:d2:ba:77:8f:0d:54:a0:4f:b3:30:d3:bb:bf:c9:1f:e0: e5:73:25:1f:ce:54:0c:8f:1b:3e:c4:b6:a4:40:87:50:35:c8: 6c:f4:3b:d0:8e:29:21:e6:48:a7:5c:2f:8d:3e:20:5e:8a:eb: b3:7d:53:c8:85:3d:59:1c:dd:61:b7:34:64:d4:d3:1c:30:d2: 96:b3:02:a7:eb:d9:47:a2:3a:07:7f:b3:56:8b:26:35:61:e9: 39:d2:b8:a3:4d:97:63:2d:4a:a2:9e:2e:52:75:20:3b:2f:30: fd:5d:9b:23:46:7d:5e:4c:ec:d9:64:75:cd:59:d8:f4:28:18: 3a:8b:10:3d -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt+N/vBb9dNExiioDVdGhimMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDBmZmNmYzM0NWEwNjQ2YTdjZjIyNTkwNTQ3N2UyMTgzNTc0 ODg2ZTAwHhcNMjYwMTAyMTAxOTE2WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg0OTJiNWExNDNhZWFiOWNmODFlNWVhYzEyYjg3YTdjZjY0NzYwYjczMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAz5afeQP88xPtZXD8OF0u/BAdBhdk LuqLsIsHb8F0pNuDdZn1VrXfc9SAG1MiaVLD3viCqMlXfuPJW/9fAYBWoUAC5gNc KHMU5mqWnVwbSnT6CBHv4cOxvLrVOL0q582+LXF/GzhSdsScAyvXOwiXVVcSTlnV xxKtpz9WBGX+Yk8EeC7BiQSSljYqbAROCfTHh6BSFdeBK9yloj4OX6Elt19DllAM CIcCt/bwCUzgk4I/oyf/6P/85PT+EgpX93vJNqUgW338YHIxfCu1EQycJGW72W+z GXSEyeEH/XtLhnx3Iy40EWrbPWNqsiMVYbFW5/GXLSt5elctAL1RBef21wIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFEkrWhQ66rnPgeXqwSuHp89kdgtzMB8GA1UdIwQY MBaAFA/8/DRaBkanzyJZBUd+IYNXSIbgMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvRF96OE5Gb0dScWZQSWxrRlIzNGhnMWRJaHVBLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kOC9hZjI4MmItZjU5Ny00MDdhLWJlZjUt MTMyZjk5Y2ZhYTUzLzEvU1N0YUZEcnF1Yy1CNWVyQks0ZW56MlIyQzNNLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kOC9hZjI4MmItZjU5Ny00MDdhLWJlZjUtMTMyZjk5Y2ZhYTUz LzEvRF96OE5Gb0dScWZQSWxrRlIzNGhnMWRJaHVBLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAW9hqMA0G CSqGSIb3DQEBCwUAA4IBAQC3C7afLExVjSCfJUa8xct/LmMZQLASlCu63uW6NeNd CHuSigIKe3wPdlVRk+mUmk1xhhCoI3rV7d4C8HiRT+5a3vSsC/tEWjsMu6UrpP0D Nob5NBZf7jjKz71AmaWB+Fyk516BC402DW4aQY+W4iUlSZ6WiBRHHJ9NRM1v4Ll8 BNK6d48NVKBPszDTu7/JH+DlcyUfzlQMjxs+xLakQIdQNchs9DvQjikh5kinXC+N PiBeiuuzfVPIhT1ZHN1htzRk1NMcMNKWswKn69lHojoHf7NWiyY1Yek50rijTZdj LUqini5SdSA7LzD9XZsjRn1eTOzZZHXNWdj0KBg6ixA9 -----END CERTIFICATE-----Generated at Mon Jan 26 08:21:19 2026 by rpki-client