This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f9/297f1e-922b-45b4-893f-fb98fe3dbc14/1/lqPB-_tpvjZaRMURMIYlaL-x7v4.roa File: lqPB-_tpvjZaRMURMIYlaL-x7v4.roa (raw, json) Hash identifier: PwPNHJ6WdN+tYHjQQVUmAufUKj9CcNQAjnCYOsVYIJQ= Subject key identifier: 96:A3:C1:FB:FB:69:BE:36:5A:44:C5:11:30:86:25:68:BF:B1:EE:FE Certificate issuer: /CN=42dcd4d1bd3df29add4075b68f29af907047443c Certificate serial: 019B7A5AE39D48C2F3F6811280E3C5747C1A Authority key identifier: 42:DC:D4:D1:BD:3D:F2:9A:DD:40:75:B6:8F:29:AF:90:70:47:44:3C Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QtzU0b098prdQHW2jymvkHBHRDw.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f9/297f1e-922b-45b4-893f-fb98fe3dbc14/1/lqPB-_tpvjZaRMURMIYlaL-x7v4.roa Signing time: Thu 01 Jan 2026 16:18:55 +0000 ROA not before: Thu 01 Jan 2026 16:18:55 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 8412 IP address blocks: 91.209.75.0/24 maxlen: 24 2001:67c:211c::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f9/297f1e-922b-45b4-893f-fb98fe3dbc14/1/QtzU0b098prdQHW2jymvkHBHRDw.crl rsync://rpki.ripe.net/repository/DEFAULT/f9/297f1e-922b-45b4-893f-fb98fe3dbc14/1/QtzU0b098prdQHW2jymvkHBHRDw.mft rsync://rpki.ripe.net/repository/DEFAULT/QtzU0b098prdQHW2jymvkHBHRDw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 27 Jan 2026 01:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7a:5a:e3:9d:48:c2:f3:f6:81:12:80:e3:c5:74:7c:1a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=42dcd4d1bd3df29add4075b68f29af907047443c Validity Not Before: Jan 1 16:18:55 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=96a3c1fbfb69be365a44c51130862568bfb1eefe Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:61:30:94:8f:40:2e:56:0c:ab:9d:29:19:83: fe:d5:ee:c6:8f:7d:c4:ed:8a:56:f6:6c:67:c7:1d: a2:c9:de:ed:33:f9:d1:3f:59:fe:62:e9:88:ea:d2: 80:5e:35:8a:61:7a:39:79:ba:c7:15:21:4a:26:91: 72:d6:ea:3b:83:d6:d6:8b:a1:4f:40:02:ce:e7:05: 77:b9:e9:24:99:b2:43:cf:d4:50:c5:0e:b9:05:28: fe:92:cd:a6:75:be:cc:9e:10:9c:df:c4:52:61:06: 1a:85:5b:a0:85:3c:ae:12:78:47:09:7f:07:d1:42: 3d:b3:c9:5d:b0:7d:33:06:1e:c9:50:19:fd:02:a8: 0d:8d:76:0e:4c:a0:b7:11:d3:be:72:ae:84:14:6d: 13:b4:8b:9a:2d:e4:a9:b2:54:f8:09:94:d2:bc:6f: 55:5d:7c:73:95:a6:d8:8f:8d:21:5a:0c:55:14:1b: 7b:de:4f:0f:60:0b:0a:bd:c9:37:85:12:e4:9b:7f: dd:70:b4:8c:00:c7:4d:f1:34:7e:a7:0b:2e:4a:58: 40:ed:67:20:9b:3d:1b:e4:e1:20:1f:f3:33:6b:e8: a5:63:16:a5:31:91:f5:fd:7a:eb:1f:fc:97:0c:89: 6a:92:6f:5f:77:52:f6:14:11:45:0d:a9:cd:46:ab: 81:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 96:A3:C1:FB:FB:69:BE:36:5A:44:C5:11:30:86:25:68:BF:B1:EE:FE X509v3 Authority Key Identifier: keyid:42:DC:D4:D1:BD:3D:F2:9A:DD:40:75:B6:8F:29:AF:90:70:47:44:3C X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QtzU0b098prdQHW2jymvkHBHRDw.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f9/297f1e-922b-45b4-893f-fb98fe3dbc14/1/lqPB-_tpvjZaRMURMIYlaL-x7v4.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/f9/297f1e-922b-45b4-893f-fb98fe3dbc14/1/QtzU0b098prdQHW2jymvkHBHRDw.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 91.209.75.0/24 IPv6: 2001:67c:211c::/48 Signature Algorithm: sha256WithRSAEncryption 54:b4:47:74:87:6a:55:f2:75:15:d0:47:67:0f:23:84:55:9d: 73:48:c6:c1:67:f9:8f:ce:63:9c:31:b5:32:ca:76:b2:e3:c0: 54:dc:e2:a9:d7:46:8a:be:e0:c0:7f:28:be:00:9b:c3:46:c2: ed:69:e2:9f:fd:31:cc:5d:47:f6:b0:c6:3f:ee:66:d4:be:40: 7a:25:a5:97:06:05:78:fc:53:72:89:c9:7a:ea:86:01:93:1f: 74:ce:e8:6a:eb:c1:da:10:f9:c4:2b:3f:6c:b8:af:62:4b:a7: c0:b3:c4:1c:38:c6:2f:43:ae:f2:bf:34:75:65:95:3e:c3:07: 84:40:dc:a6:ec:0e:a4:c6:a3:73:13:3b:0a:d8:fa:86:f5:4f: db:60:e3:bf:db:d2:47:01:1a:ab:1e:77:4b:8e:68:90:2c:ba: 85:53:b5:1d:67:dc:b0:c3:ee:4f:8b:7e:9e:99:5a:d3:95:c1: fc:13:e3:ee:a6:17:4e:f9:6d:93:1e:72:94:1d:d7:95:49:35: 74:b7:30:18:94:c1:8a:91:8d:5c:99:c5:87:d3:6d:76:7c:46: fc:38:e3:04:eb:b2:53:a1:54:af:8d:c0:3b:35:ee:67:07:d3: d8:d3:ce:db:79:22:e4:af:eb:4f:0f:40:4d:f3:a2:3c:54:5c: a2:ad:f6:2c -----BEGIN CERTIFICATE----- MIIFDjCCA/agAwIBAgISAZt6WuOdSMLz9oESgOPFdHwaMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDQyZGNkNGQxYmQzZGYyOWFkZDQwNzViNjhmMjlhZjkwNzA0 NzQ0M2MwHhcNMjYwMTAxMTYxODU1WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg5NmEzYzFmYmZiNjliZTM2NWE0NGM1MTEzMDg2MjU2OGJmYjFlZWZlMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuWEwlI9ALlYMq50pGYP+1e7Gj33E 7YpW9mxnxx2iyd7tM/nRP1n+YumI6tKAXjWKYXo5ebrHFSFKJpFy1uo7g9bWi6FP QALO5wV3uekkmbJDz9RQxQ65BSj+ks2mdb7MnhCc38RSYQYahVughTyuEnhHCX8H 0UI9s8ldsH0zBh7JUBn9AqgNjXYOTKC3EdO+cq6EFG0TtIuaLeSpslT4CZTSvG9V XXxzlabYj40hWgxVFBt73k8PYAsKvck3hRLkm3/dcLSMAMdN8TR+pwsuSlhA7Wcg mz0b5OEgH/Mza+ilYxalMZH1/XrrH/yXDIlqkm9fd1L2FBFFDanNRquBYQIDAQAB o4ICGjCCAhYwHQYDVR0OBBYEFJajwfv7ab42WkTFETCGJWi/se7+MB8GA1UdIwQY MBaAFELc1NG9PfKa3UB1to8pr5BwR0Q8MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvUXR6VTBiMDk4cHJkUUhXMmp5bXZrSEJIUkR3LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mOS8yOTdmMWUtOTIyYi00NWI0LTg5M2Yt ZmI5OGZlM2RiYzE0LzEvbHFQQi1fdHB2alphUk1VUk1JWWxhTC14N3Y0LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9mOS8yOTdmMWUtOTIyYi00NWI0LTg5M2YtZmI5OGZlM2RiYzE0 LzEvUXR6VTBiMDk4cHJkUUhXMmp5bXZrSEJIUkR3LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMDAGCCsGAQUFBwEHAQH/BCEwHzAMBAIAATAGAwQAW9FLMA8E AgACMAkDBwAgAQZ8IRwwDQYJKoZIhvcNAQELBQADggEBAFS0R3SHalXydRXQR2cP I4RVnXNIxsFn+Y/OY5wxtTLKdrLjwFTc4qnXRoq+4MB/KL4Am8NGwu1p4p/9Mcxd R/awxj/uZtS+QHolpZcGBXj8U3KJyXrqhgGTH3TO6GrrwdoQ+cQrP2y4r2JLp8Cz xBw4xi9DrvK/NHVllT7DB4RA3KbsDqTGo3MTOwrY+ob1T9tg47/b0kcBGqsed0uO aJAsuoVTtR1n3LDD7k+Lfp6ZWtOVwfwT4+6mF075bZMecpQd15VJNXS3MBiUwYqR jVyZxYfTbXZ8Rvw44wTrslOhVK+NwDs17mcH09jTztt5IuSv608PQE3zojxUXKKt 9iw= -----END CERTIFICATE-----Generated at Mon Jan 26 10:52:59 2026 by rpki-client