This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f7/3bc553-0ee0-4b72-b93e-938ab96454e9/1/2llKod88bt0IEq1tT4r35WnwAuo.roa File: 2llKod88bt0IEq1tT4r35WnwAuo.roa (raw, json) Hash identifier: ESzVnKbY8Eb1kfzk8LLe6etZCeWG9pKGgAtF7wa98es= Subject key identifier: DA:59:4A:A1:DF:3C:6E:DD:08:12:AD:6D:4F:8A:F7:E5:69:F0:02:EA Certificate issuer: /CN=b804c197444594b11ec599d205656f64e4d1fc61 Certificate serial: 019B7EA682D9BD704EE3709A93A2C17C074C Authority key identifier: B8:04:C1:97:44:45:94:B1:1E:C5:99:D2:05:65:6F:64:E4:D1:FC:61 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uATBl0RFlLEexZnSBWVvZOTR_GE.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f7/3bc553-0ee0-4b72-b93e-938ab96454e9/1/2llKod88bt0IEq1tT4r35WnwAuo.roa Signing time: Fri 02 Jan 2026 12:20:00 +0000 ROA not before: Fri 02 Jan 2026 12:20:00 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 199978 IP address blocks: 91.231.74.0/23 maxlen: 23 185.155.40.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f7/3bc553-0ee0-4b72-b93e-938ab96454e9/1/uATBl0RFlLEexZnSBWVvZOTR_GE.crl rsync://rpki.ripe.net/repository/DEFAULT/f7/3bc553-0ee0-4b72-b93e-938ab96454e9/1/uATBl0RFlLEexZnSBWVvZOTR_GE.mft rsync://rpki.ripe.net/repository/DEFAULT/uATBl0RFlLEexZnSBWVvZOTR_GE.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 22:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7e:a6:82:d9:bd:70:4e:e3:70:9a:93:a2:c1:7c:07:4c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b804c197444594b11ec599d205656f64e4d1fc61 Validity Not Before: Jan 2 12:20:00 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=da594aa1df3c6edd0812ad6d4f8af7e569f002ea Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:8d:9b:59:7e:6a:c7:2e:e4:98:ab:83:d7:dd: ff:a2:8a:10:3f:b6:59:fa:a2:be:3f:27:6f:38:79: 88:f0:f7:61:9d:ef:4f:7a:c5:b3:dd:30:c0:e4:51: 9e:3d:d2:fd:95:31:9f:ce:df:6d:db:e2:02:52:69: e3:80:32:d7:eb:b0:bf:97:87:0a:a6:83:cf:98:4b: f7:1c:99:36:29:b8:30:0e:d7:a4:ea:fe:b2:7f:84: 9f:ea:ed:cb:47:9c:2e:91:40:eb:56:72:89:b9:b0: 71:f2:e0:08:18:6b:59:b7:87:73:39:fe:a9:07:af: 04:40:26:b4:19:24:1a:89:5b:c5:ca:b6:ca:61:7b: 51:0c:aa:27:07:ef:46:ff:57:72:7f:4c:47:0d:33: 7a:80:e4:48:6e:33:6f:1d:c4:7d:0d:8f:da:59:34: ed:37:e4:66:f0:22:5c:d2:91:70:ca:b2:8b:87:6b: 5b:af:19:56:80:90:a7:89:5c:58:80:97:d8:74:9b: c4:f9:47:e7:7e:02:2f:60:3f:ef:af:07:53:68:e4: 56:f3:83:91:c8:3f:ed:f3:7f:f5:66:92:82:68:a4: 83:0f:33:30:95:1d:4e:c5:6b:60:5b:fe:9a:d3:5c: 75:cd:79:a1:de:3e:03:68:cf:c6:22:ca:b1:57:08: 38:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DA:59:4A:A1:DF:3C:6E:DD:08:12:AD:6D:4F:8A:F7:E5:69:F0:02:EA X509v3 Authority Key Identifier: keyid:B8:04:C1:97:44:45:94:B1:1E:C5:99:D2:05:65:6F:64:E4:D1:FC:61 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uATBl0RFlLEexZnSBWVvZOTR_GE.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f7/3bc553-0ee0-4b72-b93e-938ab96454e9/1/2llKod88bt0IEq1tT4r35WnwAuo.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/f7/3bc553-0ee0-4b72-b93e-938ab96454e9/1/uATBl0RFlLEexZnSBWVvZOTR_GE.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 91.231.74.0/23 185.155.40.0/22 Signature Algorithm: sha256WithRSAEncryption 75:87:04:f4:c1:6f:2f:d0:03:02:f0:e5:8a:cc:f3:5d:a3:ca: c2:90:56:e1:81:6b:2e:0a:9b:ed:ec:f9:3a:03:eb:5d:85:ae: 86:09:1c:4c:12:2d:e0:e5:ea:37:cd:35:40:3c:4a:8d:d5:a8: a4:29:4c:ba:48:74:f5:40:ed:c9:a4:55:43:30:ca:c7:b8:27: 6e:68:d4:6e:b8:0e:91:c0:da:a1:6c:68:49:a5:fc:4a:2d:51: f1:02:58:e2:1d:e0:68:d0:93:15:ba:83:38:27:38:7c:90:1a: 86:25:6b:77:74:13:51:54:ab:26:41:64:7d:bf:5c:e0:41:e5: e9:09:b9:c8:b5:27:06:1a:9a:04:f9:a3:8b:c7:65:e4:59:5c: 4c:d8:69:5c:29:47:93:57:72:14:76:30:bb:d9:3c:04:f0:9e: b0:e4:ff:0f:c1:ae:df:2e:70:7e:5c:ff:eb:b4:90:f4:28:eb: e1:c1:8f:86:75:cd:8c:c2:ea:67:b9:0e:0a:34:72:42:21:95: 4e:68:30:01:f8:9f:d6:2b:1c:ab:48:f2:94:c1:fc:0e:ed:a6: f6:16:d5:d3:6e:b8:b8:26:d9:35:b5:b2:94:16:90:b8:8f:09: 47:83:9c:32:5c:eb:f5:d0:39:2a:c6:32:db:b5:d9:ca:3b:d6: 4a:4d:a3:d6 -----BEGIN CERTIFICATE----- MIIFAzCCA+ugAwIBAgISAZt+poLZvXBO43Cak6LBfAdMMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGI4MDRjMTk3NDQ0NTk0YjExZWM1OTlkMjA1NjU2ZjY0ZTRk MWZjNjEwHhcNMjYwMTAyMTIyMDAwWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhkYTU5NGFhMWRmM2M2ZWRkMDgxMmFkNmQ0ZjhhZjdlNTY5ZjAwMmVhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAv42bWX5qxy7kmKuD193/oooQP7ZZ +qK+PydvOHmI8Pdhne9PesWz3TDA5FGePdL9lTGfzt9t2+ICUmnjgDLX67C/l4cK poPPmEv3HJk2KbgwDtek6v6yf4Sf6u3LR5wukUDrVnKJubBx8uAIGGtZt4dzOf6p B68EQCa0GSQaiVvFyrbKYXtRDKonB+9G/1dyf0xHDTN6gORIbjNvHcR9DY/aWTTt N+Rm8CJc0pFwyrKLh2tbrxlWgJCniVxYgJfYdJvE+UfnfgIvYD/vrwdTaORW84OR yD/t83/1ZpKCaKSDDzMwlR1OxWtgW/6a01x1zXmh3j4DaM/GIsqxVwg4UQIDAQAB o4ICDzCCAgswHQYDVR0OBBYEFNpZSqHfPG7dCBKtbU+K9+Vp8ALqMB8GA1UdIwQY MBaAFLgEwZdERZSxHsWZ0gVlb2Tk0fxhMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvdUFUQmwwUkZsTEVleFpuU0JXVnZaT1RSX0dFLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mNy8zYmM1NTMtMGVlMC00YjcyLWI5M2Ut OTM4YWI5NjQ1NGU5LzEvMmxsS29kODhidDBJRXExdFQ0cjM1V253QXVvLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9mNy8zYmM1NTMtMGVlMC00YjcyLWI5M2UtOTM4YWI5NjQ1NGU5 LzEvdUFUQmwwUkZsTEVleFpuU0JXVnZaT1RSX0dFLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQBW+dKAwQC uZsoMA0GCSqGSIb3DQEBCwUAA4IBAQB1hwT0wW8v0AMC8OWKzPNdo8rCkFbhgWsu Cpvt7Pk6A+tdha6GCRxMEi3g5eo3zTVAPEqN1aikKUy6SHT1QO3JpFVDMMrHuCdu aNRuuA6RwNqhbGhJpfxKLVHxAljiHeBo0JMVuoM4Jzh8kBqGJWt3dBNRVKsmQWR9 v1zgQeXpCbnItScGGpoE+aOLx2XkWVxM2GlcKUeTV3IUdjC72TwE8J6w5P8Pwa7f LnB+XP/rtJD0KOvhwY+Gdc2MwupnuQ4KNHJCIZVOaDAB+J/WKxyrSPKUwfwO7ab2 FtXTbri4Jtk1tbKUFpC4jwlHg5wyXOv10DkqxjLbtdnKO9ZKTaPW -----END CERTIFICATE-----Generated at Mon Jan 26 07:08:17 2026 by rpki-client