This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ff/a6425c-0c7c-4fdf-87b2-6bba7fc31728/1/Du6kGTRHXI4yfntbUGKdYnjPgko.roa File: Du6kGTRHXI4yfntbUGKdYnjPgko.roa (raw, json) Hash identifier: 1oJFFLp85i5EIPDvvQ2y+xVdVmVO4zl8WcaNvzV96iI= Subject key identifier: 0E:EE:A4:19:34:47:5C:8E:32:7E:7B:5B:50:62:9D:62:78:CF:82:4A Certificate issuer: /CN=2e98c506a174cf2cad9c1a6c5b81d6e89886362d Certificate serial: 019B775960BAA537C75A6EB412DB8994FE73 Authority key identifier: 2E:98:C5:06:A1:74:CF:2C:AD:9C:1A:6C:5B:81:D6:E8:98:86:36:2D Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/LpjFBqF0zyytnBpsW4HW6JiGNi0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ff/a6425c-0c7c-4fdf-87b2-6bba7fc31728/1/Du6kGTRHXI4yfntbUGKdYnjPgko.roa Signing time: Thu 01 Jan 2026 02:18:24 +0000 ROA not before: Thu 01 Jan 2026 02:18:24 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 206123 IP address blocks: 91.247.253.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ff/a6425c-0c7c-4fdf-87b2-6bba7fc31728/1/LpjFBqF0zyytnBpsW4HW6JiGNi0.crl rsync://rpki.ripe.net/repository/DEFAULT/ff/a6425c-0c7c-4fdf-87b2-6bba7fc31728/1/LpjFBqF0zyytnBpsW4HW6JiGNi0.mft rsync://rpki.ripe.net/repository/DEFAULT/LpjFBqF0zyytnBpsW4HW6JiGNi0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 22:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:77:59:60:ba:a5:37:c7:5a:6e:b4:12:db:89:94:fe:73 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2e98c506a174cf2cad9c1a6c5b81d6e89886362d Validity Not Before: Jan 1 02:18:24 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=0eeea41934475c8e327e7b5b50629d6278cf824a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:29:b1:48:f0:50:71:a6:33:f4:eb:f5:b5:17: 9f:dc:ba:5e:59:4e:47:9d:3a:7b:bf:16:65:1b:5a: 10:04:15:0c:0d:d6:8e:3d:0a:ac:fb:de:3c:32:ac: 98:e9:e3:b0:37:0b:a1:a3:38:63:5b:09:a8:ed:9c: ce:be:4c:22:69:5e:13:9f:ce:fa:b4:e4:92:bc:6c: c3:ba:b5:84:9c:a5:4c:4d:a7:95:f7:0d:fd:07:bd: b2:39:fa:79:78:5d:b8:29:89:5e:3d:d0:a8:97:af: 2c:d3:1b:f5:2b:1b:7d:1a:9d:45:4f:24:b2:83:5d: de:31:11:57:ad:50:12:ff:17:1f:86:8f:a5:58:f8: 1b:60:c7:b9:3e:64:55:31:e4:d5:b8:97:9c:b1:1c: 08:a8:ab:0f:c2:cc:d7:ba:29:eb:1e:f6:ed:83:24: cd:f8:89:06:bd:d7:5d:91:ba:d6:0b:96:9b:f8:69: e5:07:4b:68:2d:06:b9:3d:64:57:bb:40:72:5a:57: 29:9a:f9:50:74:31:ce:8a:49:d2:66:57:1b:d9:7e: d3:e5:d4:bd:ae:91:c0:70:37:e6:75:42:76:82:e5: 66:c5:92:54:ed:d6:9d:e9:71:9b:f0:8f:4f:95:08: b3:42:b2:0e:4a:b6:ee:04:6c:b6:a2:c8:18:9b:21: 9b:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0E:EE:A4:19:34:47:5C:8E:32:7E:7B:5B:50:62:9D:62:78:CF:82:4A X509v3 Authority Key Identifier: keyid:2E:98:C5:06:A1:74:CF:2C:AD:9C:1A:6C:5B:81:D6:E8:98:86:36:2D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/LpjFBqF0zyytnBpsW4HW6JiGNi0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ff/a6425c-0c7c-4fdf-87b2-6bba7fc31728/1/Du6kGTRHXI4yfntbUGKdYnjPgko.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/ff/a6425c-0c7c-4fdf-87b2-6bba7fc31728/1/LpjFBqF0zyytnBpsW4HW6JiGNi0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 91.247.253.0/24 Signature Algorithm: sha256WithRSAEncryption 85:df:b4:55:eb:ce:4c:e0:13:54:83:53:32:e4:59:63:9f:84: b3:c1:b1:81:34:ef:69:62:42:7f:4e:c1:55:4e:67:66:5e:aa: d6:49:48:a5:66:18:08:35:4d:7f:6a:3b:88:f0:aa:71:d5:30: d7:ba:2d:d2:00:75:f4:a6:26:b3:07:8d:ed:62:1f:03:cf:de: 84:75:12:f4:71:5f:9d:59:7c:13:7c:ac:96:f7:cb:2c:4d:2e: b4:ec:1d:01:97:5b:22:a3:91:b5:7d:37:4b:68:50:5e:4d:21: 1e:32:33:f9:f1:3a:49:eb:f4:11:c8:59:0b:74:07:a4:29:c4: 04:94:0a:bf:0d:9d:5b:92:70:e3:7e:31:d2:df:5b:a8:ed:50: 1e:68:1a:16:fc:98:c8:eb:9e:7b:ee:34:36:66:38:ea:51:e1: a5:7b:04:67:78:d9:eb:2d:57:ea:b5:fb:61:27:54:32:cf:4e: 7c:e2:20:46:ff:6e:7b:33:a1:f4:78:56:7d:53:f8:e1:f9:16: 2c:9d:44:40:74:04:a3:4e:33:8d:c0:b6:99:fe:bf:dd:e2:b8: d0:ff:12:be:f5:c9:09:d8:29:94:8f:8e:54:4b:20:7c:66:97: d6:ec:d5:9f:1b:08:42:e0:8a:3f:98:f6:0a:3a:e5:dc:43:91: 7c:1e:70:d2 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt3WWC6pTfHWm60EtuJlP5zMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJlOThjNTA2YTE3NGNmMmNhZDljMWE2YzViODFkNmU4OTg4 NjM2MmQwHhcNMjYwMTAxMDIxODI0WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygwZWVlYTQxOTM0NDc1YzhlMzI3ZTdiNWI1MDYyOWQ2Mjc4Y2Y4MjRhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzimxSPBQcaYz9Ov1tRef3LpeWU5H nTp7vxZlG1oQBBUMDdaOPQqs+948MqyY6eOwNwuhozhjWwmo7ZzOvkwiaV4Tn876 tOSSvGzDurWEnKVMTaeV9w39B72yOfp5eF24KYlePdCol68s0xv1Kxt9Gp1FTySy g13eMRFXrVAS/xcfho+lWPgbYMe5PmRVMeTVuJecsRwIqKsPwszXuinrHvbtgyTN +IkGvdddkbrWC5ab+GnlB0toLQa5PWRXu0ByWlcpmvlQdDHOiknSZlcb2X7T5dS9 rpHAcDfmdUJ2guVmxZJU7dad6XGb8I9PlQizQrIOSrbuBGy2osgYmyGbAwIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFA7upBk0R1yOMn57W1BinWJ4z4JKMB8GA1UdIwQY MBaAFC6YxQahdM8srZwabFuB1uiYhjYtMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvTHBqRkJxRjB6eXl0bkJwc1c0SFc2SmlHTmkwLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mZi9hNjQyNWMtMGM3Yy00ZmRmLTg3YjIt NmJiYTdmYzMxNzI4LzEvRHU2a0dUUkhYSTR5Zm50YlVHS2RZbmpQZ2tvLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9mZi9hNjQyNWMtMGM3Yy00ZmRmLTg3YjItNmJiYTdmYzMxNzI4 LzEvTHBqRkJxRjB6eXl0bkJwc1c0SFc2SmlHTmkwLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAW/f9MA0G CSqGSIb3DQEBCwUAA4IBAQCF37RV685M4BNUg1My5Fljn4SzwbGBNO9pYkJ/TsFV TmdmXqrWSUilZhgINU1/ajuI8Kpx1TDXui3SAHX0piazB43tYh8Dz96EdRL0cV+d WXwTfKyW98ssTS607B0Bl1sio5G1fTdLaFBeTSEeMjP58TpJ6/QRyFkLdAekKcQE lAq/DZ1bknDjfjHS31uo7VAeaBoW/JjI65577jQ2ZjjqUeGlewRneNnrLVfqtfth J1Qyz0584iBG/257M6H0eFZ9U/jh+RYsnURAdASjTjONwLaZ/r/d4rjQ/xK+9ckJ 2CmUj45USyB8ZpfW7NWfGwhC4Io/mPYKOuXcQ5F8HnDS -----END CERTIFICATE-----Generated at Mon Jan 26 07:56:13 2026 by rpki-client