This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b1/90033c-5b03-4709-b6d3-a865e189ed8a/1/mUJD4x2jM1tnziJJnzvezoEdIg4.roa File: mUJD4x2jM1tnziJJnzvezoEdIg4.roa (raw, json) Hash identifier: CPeCrxpjCYKP3mqC1/d2mx1bSiUKrWLUwX4R4Tk1imA= Subject key identifier: 99:42:43:E3:1D:A3:33:5B:67:CE:22:49:9F:3B:DE:CE:81:1D:22:0E Certificate issuer: /CN=c2fca944458606b1017e26c3ca17430f7ff924b3 Certificate serial: 019B7D5C662B37D4E7769BA61C57E611E19D Authority key identifier: C2:FC:A9:44:45:86:06:B1:01:7E:26:C3:CA:17:43:0F:7F:F9:24:B3 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/wvypREWGBrEBfibDyhdDD3_5JLM.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b1/90033c-5b03-4709-b6d3-a865e189ed8a/1/mUJD4x2jM1tnziJJnzvezoEdIg4.roa Signing time: Fri 02 Jan 2026 06:19:26 +0000 ROA not before: Fri 02 Jan 2026 06:19:26 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 51988 IP address blocks: 91.220.194.0/24 maxlen: 24 2001:7f8:46::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b1/90033c-5b03-4709-b6d3-a865e189ed8a/1/wvypREWGBrEBfibDyhdDD3_5JLM.crl rsync://rpki.ripe.net/repository/DEFAULT/b1/90033c-5b03-4709-b6d3-a865e189ed8a/1/wvypREWGBrEBfibDyhdDD3_5JLM.mft rsync://rpki.ripe.net/repository/DEFAULT/wvypREWGBrEBfibDyhdDD3_5JLM.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 03 Jan 2026 12:00:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7d:5c:66:2b:37:d4:e7:76:9b:a6:1c:57:e6:11:e1:9d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=c2fca944458606b1017e26c3ca17430f7ff924b3 Validity Not Before: Jan 2 06:19:26 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=994243e31da3335b67ce22499f3bdece811d220e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:76:e8:e7:bf:a7:32:f7:bd:98:ae:d5:ed:2e: 43:4d:7c:1e:8a:15:b3:12:61:da:aa:4c:b3:ad:3c: 36:02:dd:d3:b4:14:8b:dc:7e:42:e5:bf:ac:51:77: 15:e6:11:06:c8:aa:51:50:55:5c:a2:94:7c:cc:e9: 2e:53:fb:d4:87:ae:da:6e:2f:29:73:48:07:68:7a: d2:4c:0b:da:8c:dd:e3:0e:c9:a7:1f:44:7b:27:94: fb:d7:d8:64:67:39:a0:3f:64:d9:0a:f2:c0:82:3b: 8b:0d:3d:34:af:36:05:46:17:b2:f2:18:26:2f:b2: 57:f7:6a:8d:93:d3:1d:b1:44:c6:dc:68:87:7f:3a: 89:86:fd:57:12:19:79:6e:68:4b:4e:19:fe:f0:6c: 75:38:84:9f:33:64:1b:03:52:f2:45:12:d2:9e:d0: 6c:45:4b:00:dc:3e:b4:ab:4c:d3:3f:60:ca:5f:8e: 7c:6b:81:c3:8c:05:23:52:82:f6:84:a4:b4:c7:6c: 30:f6:17:ba:92:7e:65:bf:55:a0:1d:6f:f5:40:3c: 59:8d:97:5c:3c:83:f6:cb:a9:03:4e:04:33:b2:02: f9:fc:e2:13:de:89:a7:00:94:96:d6:3f:db:f0:77: 1f:c2:ae:b4:5c:4c:24:87:79:75:8d:0f:48:4e:a1: ff:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 99:42:43:E3:1D:A3:33:5B:67:CE:22:49:9F:3B:DE:CE:81:1D:22:0E X509v3 Authority Key Identifier: keyid:C2:FC:A9:44:45:86:06:B1:01:7E:26:C3:CA:17:43:0F:7F:F9:24:B3 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/wvypREWGBrEBfibDyhdDD3_5JLM.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/90033c-5b03-4709-b6d3-a865e189ed8a/1/mUJD4x2jM1tnziJJnzvezoEdIg4.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/90033c-5b03-4709-b6d3-a865e189ed8a/1/wvypREWGBrEBfibDyhdDD3_5JLM.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 91.220.194.0/24 IPv6: 2001:7f8:46::/48 Signature Algorithm: sha256WithRSAEncryption 89:d7:13:9a:97:76:87:83:0e:f2:d7:2a:f6:4b:a4:24:0e:e5: 41:87:8d:bb:b2:79:ec:d9:58:31:41:e7:98:8b:39:20:a6:fe: c8:9d:fc:1a:d3:ff:66:0a:ea:85:6a:60:d5:3a:1f:25:e3:51: f0:8c:ba:ae:42:74:d4:72:91:dd:06:af:ff:ce:3b:6d:a7:63: a5:85:79:93:ff:55:3e:37:f7:65:0b:4d:78:36:74:11:d1:4c: ac:18:7c:da:84:00:b7:6e:dc:fd:ca:7d:dd:dc:ba:17:84:13: 86:e7:ea:e2:75:ea:be:27:4b:13:04:cf:cd:49:f6:b1:f3:d2: d2:b6:06:25:51:18:7f:ee:86:b9:42:55:a3:d7:f7:de:f0:be: 8b:dd:2b:a9:85:a4:65:a5:46:aa:92:ee:91:bd:a8:fb:e9:40: cc:13:61:66:bf:3a:b6:17:ea:79:38:c3:f2:04:55:85:fa:5d: d8:23:9b:04:70:62:98:c3:57:be:09:29:f5:1d:3f:79:bf:c6: 1b:bf:f0:50:cd:b3:f5:92:cc:0b:bd:5f:d0:54:ab:88:f0:89: 2f:cc:08:88:a6:93:f4:2b:b9:3c:ea:8b:bb:d1:42:d6:df:73: 83:6a:02:eb:c4:f0:3e:a3:f2:14:61:b1:e5:31:b4:3f:5e:67: 6e:7f:02:dc -----BEGIN CERTIFICATE----- MIIFDjCCA/agAwIBAgISAZt9XGYrN9TndpumHFfmEeGdMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGMyZmNhOTQ0NDU4NjA2YjEwMTdlMjZjM2NhMTc0MzBmN2Zm OTI0YjMwHhcNMjYwMTAyMDYxOTI2WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg5OTQyNDNlMzFkYTMzMzViNjdjZTIyNDk5ZjNiZGVjZTgxMWQyMjBlMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxXbo57+nMve9mK7V7S5DTXweihWz EmHaqkyzrTw2At3TtBSL3H5C5b+sUXcV5hEGyKpRUFVcopR8zOkuU/vUh67abi8p c0gHaHrSTAvajN3jDsmnH0R7J5T719hkZzmgP2TZCvLAgjuLDT00rzYFRhey8hgm L7JX92qNk9MdsUTG3GiHfzqJhv1XEhl5bmhLThn+8Gx1OISfM2QbA1LyRRLSntBs RUsA3D60q0zTP2DKX458a4HDjAUjUoL2hKS0x2ww9he6kn5lv1WgHW/1QDxZjZdc PIP2y6kDTgQzsgL5/OIT3omnAJSW1j/b8Hcfwq60XEwkh3l1jQ9ITqH//QIDAQAB o4ICGjCCAhYwHQYDVR0OBBYEFJlCQ+MdozNbZ84iSZ873s6BHSIOMB8GA1UdIwQY MBaAFML8qURFhgaxAX4mw8oXQw9/+SSzMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvd3Z5cFJFV0dCckVCZmliRHloZEREM181SkxNLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iMS85MDAzM2MtNWIwMy00NzA5LWI2ZDMt YTg2NWUxODllZDhhLzEvbVVKRDR4MmpNMXRuemlKSm56dmV6b0VkSWc0LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iMS85MDAzM2MtNWIwMy00NzA5LWI2ZDMtYTg2NWUxODllZDhh LzEvd3Z5cFJFV0dCckVCZmliRHloZEREM181SkxNLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMDAGCCsGAQUFBwEHAQH/BCEwHzAMBAIAATAGAwQAW9zCMA8E AgACMAkDBwAgAQf4AEYwDQYJKoZIhvcNAQELBQADggEBAInXE5qXdoeDDvLXKvZL pCQO5UGHjbuyeezZWDFB55iLOSCm/sid/BrT/2YK6oVqYNU6HyXjUfCMuq5CdNRy kd0Gr//OO22nY6WFeZP/VT4392ULTXg2dBHRTKwYfNqEALdu3P3Kfd3cuheEE4bn 6uJ16r4nSxMEz81J9rHz0tK2BiVRGH/uhrlCVaPX997wvovdK6mFpGWlRqqS7pG9 qPvpQMwTYWa/OrYX6nk4w/IEVYX6XdgjmwRwYpjDV74JKfUdP3m/xhu/8FDNs/WS zAu9X9BUq4jwiS/MCIimk/QruTzqi7vRQtbfc4NqAuvE8D6j8hRhseUxtD9eZ25/ Atw= -----END CERTIFICATE-----Generated at Fri Jan 2 19:42:55 2026 by rpki-client