This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4a/a666f4-f6cf-4aed-b9bc-451b96afc2b1/1/NThsozj8huJ5IeZXtUiD3RXp3UE.roa File: NThsozj8huJ5IeZXtUiD3RXp3UE.roa (raw, json) Hash identifier: tDMWht/uuveDY/y55oPzB8QNF9M6ccDoqURq7KgWOQI= Subject key identifier: 35:38:6C:A3:38:FC:86:E2:79:21:E6:57:B5:48:83:DD:15:E9:DD:41 Certificate issuer: /CN=aaa9e0e8983d9deb415716d61e8c912510a26c24 Certificate serial: 019B7C800E65CD190DCE4AA2CB18C5C12AAF Authority key identifier: AA:A9:E0:E8:98:3D:9D:EB:41:57:16:D6:1E:8C:91:25:10:A2:6C:24 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qqng6Jg9netBVxbWHoyRJRCibCQ.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4a/a666f4-f6cf-4aed-b9bc-451b96afc2b1/1/NThsozj8huJ5IeZXtUiD3RXp3UE.roa Signing time: Fri 02 Jan 2026 02:18:45 +0000 ROA not before: Fri 02 Jan 2026 02:18:45 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 51743 IP address blocks: 91.217.254.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4a/a666f4-f6cf-4aed-b9bc-451b96afc2b1/1/qqng6Jg9netBVxbWHoyRJRCibCQ.crl rsync://rpki.ripe.net/repository/DEFAULT/4a/a666f4-f6cf-4aed-b9bc-451b96afc2b1/1/qqng6Jg9netBVxbWHoyRJRCibCQ.mft rsync://rpki.ripe.net/repository/DEFAULT/qqng6Jg9netBVxbWHoyRJRCibCQ.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 13 Jan 2026 03:00:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7c:80:0e:65:cd:19:0d:ce:4a:a2:cb:18:c5:c1:2a:af Signature Algorithm: sha256WithRSAEncryption Issuer: CN=aaa9e0e8983d9deb415716d61e8c912510a26c24 Validity Not Before: Jan 2 02:18:45 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=35386ca338fc86e27921e657b54883dd15e9dd41 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:8c:40:af:59:9f:f1:35:1c:dc:b2:e6:8d:ba: 33:82:f5:7a:f1:a8:3c:41:a4:07:ac:81:7c:e8:c9: 26:02:1a:18:5f:ce:0e:9c:b0:71:9b:5d:f2:70:3b: 6c:be:45:15:5a:a9:35:f9:61:63:21:7c:3c:7b:50: 2a:50:6d:fd:d0:aa:5a:0a:d6:f8:44:9f:ac:09:f0: 85:86:0e:d8:09:27:9f:e6:a5:d3:f5:2b:c4:6e:91: 36:de:7b:3d:34:41:50:41:54:bf:5d:8a:62:5c:f4: 42:d4:1d:03:06:61:20:b1:e1:3a:79:9c:74:4a:47: 19:2c:e5:96:75:64:7a:b6:f3:35:24:b7:05:78:1c: 29:99:d1:c7:49:93:ef:a9:e1:06:ac:a9:48:59:a8: cd:4f:fe:cd:08:c0:8f:6b:03:12:84:a5:5b:e9:b2: c2:92:a7:6b:16:fe:d6:1a:57:7f:09:06:75:2f:b0: 5e:30:8b:71:75:48:06:d8:2a:03:3b:03:8b:40:bf: 99:19:2d:f1:62:66:1a:36:c2:45:02:ba:59:ca:e4: 8e:f6:1d:79:7f:41:9f:5a:a2:61:78:0f:72:68:bc: 31:1f:18:1f:69:5d:97:ec:10:98:4f:23:e0:26:a8: 98:f1:15:2e:b4:0b:81:58:6b:7a:4c:0c:17:e8:38: 94:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 35:38:6C:A3:38:FC:86:E2:79:21:E6:57:B5:48:83:DD:15:E9:DD:41 X509v3 Authority Key Identifier: keyid:AA:A9:E0:E8:98:3D:9D:EB:41:57:16:D6:1E:8C:91:25:10:A2:6C:24 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qqng6Jg9netBVxbWHoyRJRCibCQ.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/a666f4-f6cf-4aed-b9bc-451b96afc2b1/1/NThsozj8huJ5IeZXtUiD3RXp3UE.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/a666f4-f6cf-4aed-b9bc-451b96afc2b1/1/qqng6Jg9netBVxbWHoyRJRCibCQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 91.217.254.0/24 Signature Algorithm: sha256WithRSAEncryption 5f:03:e8:a4:df:8c:1d:85:ee:fb:b7:08:aa:97:cc:08:35:c0: a3:f8:6a:cc:b8:45:b9:87:51:96:d3:b5:70:98:5e:0a:a9:32: a9:79:88:98:ce:64:00:70:a2:1b:ba:63:bf:b9:1c:25:83:33: 03:17:2c:15:ae:20:0a:25:8c:48:a7:c9:85:92:65:2c:d6:06: e1:12:db:2e:93:6a:0e:58:d1:af:bc:d9:17:5c:26:b3:86:21: cf:0f:6c:30:38:8d:26:61:85:07:ad:ef:82:9b:f1:42:f3:bd: 1a:4d:75:8b:33:b8:ea:19:be:ac:76:f9:5b:6d:bb:ca:31:8d: 93:8c:63:ea:17:fc:96:80:8e:99:c1:ba:cf:ae:72:a6:a5:8d: a4:88:4e:40:5d:e8:2b:40:2e:68:24:30:bc:87:c0:6f:3b:32: ec:7d:28:99:40:a9:50:c5:76:64:8a:1f:7e:fb:5b:37:91:59: 70:ff:2d:73:b1:af:37:8a:54:a9:1d:ef:3d:86:d3:7a:fa:4f: d4:c6:e2:5c:9b:1b:73:7d:5b:c1:54:ad:2e:ab:62:b6:06:db: c4:4c:14:3c:ee:41:1f:e7:7b:49:71:0e:e3:20:81:a5:38:57: 6c:7e:40:1c:06:d4:f8:67:cf:35:7b:95:4d:18:8f:ee:dc:75: 5c:df:3f:cc -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt8gA5lzRkNzkqiyxjFwSqvMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGFhYTllMGU4OTgzZDlkZWI0MTU3MTZkNjFlOGM5MTI1MTBh MjZjMjQwHhcNMjYwMTAyMDIxODQ1WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygzNTM4NmNhMzM4ZmM4NmUyNzkyMWU2NTdiNTQ4ODNkZDE1ZTlkZDQxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAn4xAr1mf8TUc3LLmjbozgvV68ag8 QaQHrIF86MkmAhoYX84OnLBxm13ycDtsvkUVWqk1+WFjIXw8e1AqUG390KpaCtb4 RJ+sCfCFhg7YCSef5qXT9SvEbpE23ns9NEFQQVS/XYpiXPRC1B0DBmEgseE6eZx0 SkcZLOWWdWR6tvM1JLcFeBwpmdHHSZPvqeEGrKlIWajNT/7NCMCPawMShKVb6bLC kqdrFv7WGld/CQZ1L7BeMItxdUgG2CoDOwOLQL+ZGS3xYmYaNsJFArpZyuSO9h15 f0GfWqJheA9yaLwxHxgfaV2X7BCYTyPgJqiY8RUutAuBWGt6TAwX6DiUoQIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFDU4bKM4/IbieSHmV7VIg90V6d1BMB8GA1UdIwQY MBaAFKqp4OiYPZ3rQVcW1h6MkSUQomwkMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvcXFuZzZKZzluZXRCVnhiV0hveVJKUkNpYkNRLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80YS9hNjY2ZjQtZjZjZi00YWVkLWI5YmMt NDUxYjk2YWZjMmIxLzEvTlRoc296ajhodUo1SWVaWHRVaUQzUlhwM1VFLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC80YS9hNjY2ZjQtZjZjZi00YWVkLWI5YmMtNDUxYjk2YWZjMmIx LzEvcXFuZzZKZzluZXRCVnhiV0hveVJKUkNpYkNRLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAW9n+MA0G CSqGSIb3DQEBCwUAA4IBAQBfA+ik34wdhe77twiql8wINcCj+GrMuEW5h1GW07Vw mF4KqTKpeYiYzmQAcKIbumO/uRwlgzMDFywVriAKJYxIp8mFkmUs1gbhEtsuk2oO WNGvvNkXXCazhiHPD2wwOI0mYYUHre+Cm/FC870aTXWLM7jqGb6sdvlbbbvKMY2T jGPqF/yWgI6ZwbrPrnKmpY2kiE5AXegrQC5oJDC8h8BvOzLsfSiZQKlQxXZkih9+ +1s3kVlw/y1zsa83ilSpHe89htN6+k/UxuJcmxtzfVvBVK0uq2K2BtvETBQ87kEf 53tJcQ7jIIGlOFdsfkAcBtT4Z881e5VNGI/u3HVc3z/M -----END CERTIFICATE-----Generated at Mon Jan 12 09:35:35 2026 by rpki-client