This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ee/515608-5012-4a40-b324-27bf83cded6b/1/_M3GaE9Zxs4jamj49F1jn5li1rQ.roa File: _M3GaE9Zxs4jamj49F1jn5li1rQ.roa (raw, json) Hash identifier: WxZ019nowrCqFdk0qufrhZD87v/vq7bxcIGXyl8dz10= Subject key identifier: FC:CD:C6:68:4F:59:C6:CE:23:6A:68:F8:F4:5D:63:9F:99:62:D6:B4 Certificate issuer: /CN=a4f8436003d37602026b65531755ca8fcd31bed2 Certificate serial: 019BEB9657B15EF4638287DFE00BD56F4645 Authority key identifier: A4:F8:43:60:03:D3:76:02:02:6B:65:53:17:55:CA:8F:CD:31:BE:D2 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pPhDYAPTdgICa2VTF1XKj80xvtI.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ee/515608-5012-4a40-b324-27bf83cded6b/1/_M3GaE9Zxs4jamj49F1jn5li1rQ.roa Signing time: Fri 23 Jan 2026 16:00:57 +0000 ROA not before: Fri 23 Jan 2026 16:00:57 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 6797 IP address blocks: 91.198.227.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ee/515608-5012-4a40-b324-27bf83cded6b/1/pPhDYAPTdgICa2VTF1XKj80xvtI.crl rsync://rpki.ripe.net/repository/DEFAULT/ee/515608-5012-4a40-b324-27bf83cded6b/1/pPhDYAPTdgICa2VTF1XKj80xvtI.mft rsync://rpki.ripe.net/repository/DEFAULT/pPhDYAPTdgICa2VTF1XKj80xvtI.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 22:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:eb:96:57:b1:5e:f4:63:82:87:df:e0:0b:d5:6f:46:45 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=a4f8436003d37602026b65531755ca8fcd31bed2 Validity Not Before: Jan 23 16:00:57 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=fccdc6684f59c6ce236a68f8f45d639f9962d6b4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:94:8e:13:00:0c:f4:5b:20:7d:32:23:07:64: 2d:9a:f0:09:75:44:b3:d5:a4:d3:a4:da:62:c9:73: 48:fe:49:79:b1:79:f8:8c:a0:85:f7:05:80:6e:ae: 20:a4:f6:54:45:6d:0e:64:1f:fa:9f:4e:87:f9:54: 1a:dd:a9:47:ef:c2:99:a8:14:0a:43:8d:55:e2:14: 28:4a:31:39:a6:9d:f1:93:ef:46:bc:0f:43:31:75: ed:92:29:18:17:41:aa:b5:bf:1d:75:c8:cb:dd:82: c2:46:f5:45:62:1e:88:79:76:1c:d8:2d:28:c7:99: 94:3a:f0:93:42:92:08:b9:50:85:ab:94:c2:d1:24: df:bd:14:f5:33:2e:cf:e4:6d:f2:94:d4:4e:98:29: 1a:e9:b4:44:8a:c5:55:ac:b1:a9:b6:1d:f1:79:b9: 7a:fd:c5:02:13:07:30:06:f0:a3:4b:f4:d2:8a:e2: 27:95:2b:9a:fe:24:38:59:42:c8:50:46:24:a5:42: eb:db:a4:90:31:1c:af:d0:f0:6a:f9:a0:e5:96:65: 2a:6d:d4:a4:ed:55:a7:6d:c5:6a:50:d9:70:e5:eb: a1:39:22:05:9c:46:d7:00:71:40:45:e5:d8:f8:42: 38:f1:63:37:bd:75:ae:69:4f:fd:68:85:81:55:3d: 98:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FC:CD:C6:68:4F:59:C6:CE:23:6A:68:F8:F4:5D:63:9F:99:62:D6:B4 X509v3 Authority Key Identifier: keyid:A4:F8:43:60:03:D3:76:02:02:6B:65:53:17:55:CA:8F:CD:31:BE:D2 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pPhDYAPTdgICa2VTF1XKj80xvtI.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ee/515608-5012-4a40-b324-27bf83cded6b/1/_M3GaE9Zxs4jamj49F1jn5li1rQ.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/ee/515608-5012-4a40-b324-27bf83cded6b/1/pPhDYAPTdgICa2VTF1XKj80xvtI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 91.198.227.0/24 Signature Algorithm: sha256WithRSAEncryption 41:d4:e6:03:58:fa:40:7a:64:5f:b4:4b:91:67:50:41:b8:97: af:47:a8:ef:1e:a3:99:06:14:3f:af:eb:6e:45:47:8e:35:d1: 59:ae:8b:05:33:f7:c7:44:0e:a0:84:09:5e:7a:e8:1f:ba:6d: bd:8c:b0:2f:b7:4f:fb:b4:54:e9:4a:95:53:4b:40:96:ec:48: 7b:91:0c:11:06:36:d8:5d:72:10:fb:a7:c7:46:dc:25:d0:1f: 97:f3:ee:ab:ac:0f:4e:79:3d:f2:a1:2e:6e:be:de:47:1f:88: aa:df:91:89:2b:d2:02:7e:d3:c6:a1:05:02:14:dd:a0:b7:a1: 5a:6e:e9:fa:fa:de:2b:e7:1e:ab:6e:8c:20:dd:cf:76:ef:01: e5:05:79:32:13:cd:da:8e:85:fd:68:ff:1d:47:80:70:a6:af: 09:c4:a9:5e:db:6d:3a:44:c5:35:64:0a:7e:1f:53:cd:7a:32: 8c:a2:65:4c:c0:43:f5:6d:87:cb:cc:c5:d7:63:b8:ed:b0:59: 7c:89:53:02:ff:ab:8d:07:01:bc:28:12:2b:69:88:b9:a9:a5: 41:bc:16:60:65:32:59:06:1a:92:61:62:28:7e:f0:7d:10:33: a7:71:53:12:36:3a:71:01:fe:a4:2b:33:ba:f7:ef:51:9f:18: 7d:d3:42:1a -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZvrllexXvRjgoff4AvVb0ZFMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGE0Zjg0MzYwMDNkMzc2MDIwMjZiNjU1MzE3NTVjYThmY2Qz MWJlZDIwHhcNMjYwMTIzMTYwMDU3WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhmY2NkYzY2ODRmNTljNmNlMjM2YTY4ZjhmNDVkNjM5Zjk5NjJkNmI0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwZSOEwAM9FsgfTIjB2QtmvAJdUSz 1aTTpNpiyXNI/kl5sXn4jKCF9wWAbq4gpPZURW0OZB/6n06H+VQa3alH78KZqBQK Q41V4hQoSjE5pp3xk+9GvA9DMXXtkikYF0Gqtb8ddcjL3YLCRvVFYh6IeXYc2C0o x5mUOvCTQpIIuVCFq5TC0STfvRT1My7P5G3ylNROmCka6bREisVVrLGpth3xebl6 /cUCEwcwBvCjS/TSiuInlSua/iQ4WULIUEYkpULr26SQMRyv0PBq+aDllmUqbdSk 7VWnbcVqUNlw5euhOSIFnEbXAHFAReXY+EI48WM3vXWuaU/9aIWBVT2Y6wIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFPzNxmhPWcbOI2po+PRdY5+ZYta0MB8GA1UdIwQY MBaAFKT4Q2AD03YCAmtlUxdVyo/NMb7SMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvcFBoRFlBUFRkZ0lDYTJWVEYxWEtqODB4dnRJLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lZS81MTU2MDgtNTAxMi00YTQwLWIzMjQt MjdiZjgzY2RlZDZiLzEvX00zR2FFOVp4czRqYW1qNDlGMWpuNWxpMXJRLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9lZS81MTU2MDgtNTAxMi00YTQwLWIzMjQtMjdiZjgzY2RlZDZi LzEvcFBoRFlBUFRkZ0lDYTJWVEYxWEtqODB4dnRJLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAW8bjMA0G CSqGSIb3DQEBCwUAA4IBAQBB1OYDWPpAemRftEuRZ1BBuJevR6jvHqOZBhQ/r+tu RUeONdFZrosFM/fHRA6ghAleeugfum29jLAvt0/7tFTpSpVTS0CW7Eh7kQwRBjbY XXIQ+6fHRtwl0B+X8+6rrA9OeT3yoS5uvt5HH4iq35GJK9ICftPGoQUCFN2gt6Fa bun6+t4r5x6rbowg3c927wHlBXkyE83ajoX9aP8dR4Bwpq8JxKle2206RMU1ZAp+ H1PNejKMomVMwEP1bYfLzMXXY7jtsFl8iVMC/6uNBwG8KBIraYi5qaVBvBZgZTJZ BhqSYWIofvB9EDOncVMSNjpxAf6kKzO69+9Rnxh900Ia -----END CERTIFICATE-----Generated at Mon Jan 26 03:07:45 2026 by rpki-client