This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/11/b36132-ca77-4584-8d7b-291b7ad093bf/1/pIH-PyJ-S7KYRBMhx3HzyVyBgpM.roa File: pIH-PyJ-S7KYRBMhx3HzyVyBgpM.roa (raw, json) Hash identifier: 1cLs+Wdw+wnP8h4XUUBLHG3PCH085TENzzZDNYgitoQ= Subject key identifier: A4:81:FE:3F:22:7E:4B:B2:98:44:13:21:C7:71:F3:C9:5C:81:82:93 Certificate issuer: /CN=e1f3f6dc4610f6c9bbaa4532111738e493b6adf0 Certificate serial: 019B7C132843D84204109162732B16EA6F3B Authority key identifier: E1:F3:F6:DC:46:10:F6:C9:BB:AA:45:32:11:17:38:E4:93:B6:AD:F0 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4fP23EYQ9sm7qkUyERc45JO2rfA.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/11/b36132-ca77-4584-8d7b-291b7ad093bf/1/pIH-PyJ-S7KYRBMhx3HzyVyBgpM.roa Signing time: Fri 02 Jan 2026 00:19:48 +0000 ROA not before: Fri 02 Jan 2026 00:19:48 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 48059 IP address blocks: 91.208.255.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/11/b36132-ca77-4584-8d7b-291b7ad093bf/1/4fP23EYQ9sm7qkUyERc45JO2rfA.crl rsync://rpki.ripe.net/repository/DEFAULT/11/b36132-ca77-4584-8d7b-291b7ad093bf/1/4fP23EYQ9sm7qkUyERc45JO2rfA.mft rsync://rpki.ripe.net/repository/DEFAULT/4fP23EYQ9sm7qkUyERc45JO2rfA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 08 Jan 2026 06:01:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7c:13:28:43:d8:42:04:10:91:62:73:2b:16:ea:6f:3b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=e1f3f6dc4610f6c9bbaa4532111738e493b6adf0 Validity Not Before: Jan 2 00:19:48 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=a481fe3f227e4bb298441321c771f3c95c818293 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:03:5a:74:d4:14:c5:0e:ac:6f:22:15:96:1b: cf:58:f1:f0:7c:ce:53:fb:1a:cd:77:3e:d6:5b:80: b4:f2:13:fe:84:31:a5:60:77:c6:5b:94:1d:a9:fe: 97:35:37:af:2a:31:05:fe:f9:99:a2:0d:bb:e0:9c: 94:cf:65:c9:16:c2:88:8d:f1:fd:d7:7e:16:8b:38: 7c:52:9a:5b:13:6f:82:de:d3:81:aa:a3:56:8a:e8: e7:9e:78:e0:71:78:a1:99:a2:20:77:b3:0e:58:f4: 9b:bd:61:8b:24:9d:c4:02:a4:44:73:de:b4:30:6e: 5f:39:c7:03:d9:65:dd:27:c3:00:65:07:bc:68:6a: fc:b7:ff:e3:69:90:e1:bd:ce:1c:f6:4f:b9:80:b9: ef:1e:ed:2a:1a:c3:3d:5c:53:de:54:82:c2:d3:59: 0d:9c:e1:17:09:cc:45:34:65:ee:95:32:8d:1b:f4: 0a:0e:92:b6:d6:77:ad:14:74:c2:d4:96:e8:a6:b4: 3a:65:79:42:f9:5c:85:8d:d1:3b:8c:8b:57:96:41: 40:5c:c7:d5:05:55:01:d4:bc:af:15:7f:d0:35:a2: 1c:01:dd:6e:da:83:b1:f2:75:04:84:43:1a:28:8d: 64:80:ac:50:69:8b:ad:0c:08:6e:dd:61:df:2f:b1: 7d:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A4:81:FE:3F:22:7E:4B:B2:98:44:13:21:C7:71:F3:C9:5C:81:82:93 X509v3 Authority Key Identifier: keyid:E1:F3:F6:DC:46:10:F6:C9:BB:AA:45:32:11:17:38:E4:93:B6:AD:F0 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4fP23EYQ9sm7qkUyERc45JO2rfA.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/11/b36132-ca77-4584-8d7b-291b7ad093bf/1/pIH-PyJ-S7KYRBMhx3HzyVyBgpM.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/11/b36132-ca77-4584-8d7b-291b7ad093bf/1/4fP23EYQ9sm7qkUyERc45JO2rfA.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 91.208.255.0/24 Signature Algorithm: sha256WithRSAEncryption 40:da:e6:40:cd:c8:3b:79:91:9d:41:a3:7f:5e:aa:56:a6:4c: c9:20:73:a2:98:67:d3:9e:b5:83:1d:4b:a2:75:16:41:59:96: 08:0b:21:eb:26:d9:ed:3f:39:ba:8a:bb:15:bd:76:7c:dc:4a: 31:1e:ca:09:a6:a7:24:f9:91:95:fe:d4:86:0f:1d:c6:74:0c: 79:2d:c1:2f:66:32:85:32:85:60:b4:32:76:84:8c:95:2b:27: 4b:ce:ae:a4:0d:1c:e2:d0:a2:e0:ad:0e:8d:7d:c9:fa:18:57: 21:94:e4:82:ee:b1:3b:08:e2:ef:dc:ba:ac:35:f6:75:7e:b5: 17:e1:ba:c9:b7:81:df:01:78:3f:34:6d:5e:fb:91:97:59:38: 7b:97:e1:3e:3e:d3:31:61:36:41:6e:15:1a:c2:fd:93:80:f6: c0:4e:08:69:a2:d1:bb:d4:74:e1:2b:34:63:c2:50:5b:49:af: cf:b8:c4:b6:24:cc:1d:d3:dd:ea:b4:61:9c:a2:bc:24:6f:49: 4a:5f:d3:7a:f4:cd:ce:f1:d1:66:20:1d:db:e6:b1:b8:ed:08: 67:81:a2:11:78:69:37:24:7a:96:e1:7b:d1:e1:7f:57:28:5a: 80:fc:7f:5a:07:5b:db:18:6c:36:15:fb:db:9c:f8:76:d2:23: ab:fc:49:12 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt8EyhD2EIEEJFicysW6m87MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGUxZjNmNmRjNDYxMGY2YzliYmFhNDUzMjExMTczOGU0OTNi NmFkZjAwHhcNMjYwMTAyMDAxOTQ4WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhhNDgxZmUzZjIyN2U0YmIyOTg0NDEzMjFjNzcxZjNjOTVjODE4MjkzMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqgNadNQUxQ6sbyIVlhvPWPHwfM5T +xrNdz7WW4C08hP+hDGlYHfGW5Qdqf6XNTevKjEF/vmZog274JyUz2XJFsKIjfH9 134Wizh8UppbE2+C3tOBqqNWiujnnnjgcXihmaIgd7MOWPSbvWGLJJ3EAqREc960 MG5fOccD2WXdJ8MAZQe8aGr8t//jaZDhvc4c9k+5gLnvHu0qGsM9XFPeVILC01kN nOEXCcxFNGXulTKNG/QKDpK21netFHTC1JboprQ6ZXlC+VyFjdE7jItXlkFAXMfV BVUB1LyvFX/QNaIcAd1u2oOx8nUEhEMaKI1kgKxQaYutDAhu3WHfL7F9AwIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFKSB/j8ifkuymEQTIcdx88lcgYKTMB8GA1UdIwQY MBaAFOHz9txGEPbJu6pFMhEXOOSTtq3wMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvNGZQMjNFWVE5c203cWtVeUVSYzQ1Sk8ycmZBLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xMS9iMzYxMzItY2E3Ny00NTg0LThkN2It MjkxYjdhZDA5M2JmLzEvcElILVB5Si1TN0tZUkJNaHgzSHp5VnlCZ3BNLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xMS9iMzYxMzItY2E3Ny00NTg0LThkN2ItMjkxYjdhZDA5M2Jm LzEvNGZQMjNFWVE5c203cWtVeUVSYzQ1Sk8ycmZBLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAW9D/MA0G CSqGSIb3DQEBCwUAA4IBAQBA2uZAzcg7eZGdQaN/XqpWpkzJIHOimGfTnrWDHUui dRZBWZYICyHrJtntPzm6irsVvXZ83EoxHsoJpqck+ZGV/tSGDx3GdAx5LcEvZjKF MoVgtDJ2hIyVKydLzq6kDRzi0KLgrQ6Nfcn6GFchlOSC7rE7COLv3LqsNfZ1frUX 4brJt4HfAXg/NG1e+5GXWTh7l+E+PtMxYTZBbhUawv2TgPbATghpotG71HThKzRj wlBbSa/PuMS2JMwd093qtGGcorwkb0lKX9N69M3O8dFmIB3b5rG47QhngaIReGk3 JHqW4XvR4X9XKFqA/H9aB1vbGGw2FfvbnPh20iOr/EkS -----END CERTIFICATE-----Generated at Wed Jan 7 10:22:11 2026 by rpki-client