This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bb/4624fc-634f-40cd-a607-5efda468a200/1/viS2S0SzjAgJ_iBbCgPzp3yhg0U.roa File: viS2S0SzjAgJ_iBbCgPzp3yhg0U.roa (raw, json) Hash identifier: s3YkexgQHQKpIdGn3lF6fcpbtFZIjdVlLhgi0JVjWGA= Subject key identifier: BE:24:B6:4B:44:B3:8C:08:09:FE:20:5B:0A:03:F3:A7:7C:A1:83:45 Certificate issuer: /CN=1137c23453b88eba455c4208c6df5b3e1bbc245f Certificate serial: 019B78A265B34306AF2C3F5606DE4EC6D15A Authority key identifier: 11:37:C2:34:53:B8:8E:BA:45:5C:42:08:C6:DF:5B:3E:1B:BC:24:5F Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ETfCNFO4jrpFXEIIxt9bPhu8JF8.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bb/4624fc-634f-40cd-a607-5efda468a200/1/viS2S0SzjAgJ_iBbCgPzp3yhg0U.roa Signing time: Thu 01 Jan 2026 08:17:47 +0000 ROA not before: Thu 01 Jan 2026 08:17:47 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 47127 IP address blocks: 91.209.191.0/24 maxlen: 24 2001:67c:2b3c::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bb/4624fc-634f-40cd-a607-5efda468a200/1/ETfCNFO4jrpFXEIIxt9bPhu8JF8.crl rsync://rpki.ripe.net/repository/DEFAULT/bb/4624fc-634f-40cd-a607-5efda468a200/1/ETfCNFO4jrpFXEIIxt9bPhu8JF8.mft rsync://rpki.ripe.net/repository/DEFAULT/ETfCNFO4jrpFXEIIxt9bPhu8JF8.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 02 Jan 2026 17:00:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:78:a2:65:b3:43:06:af:2c:3f:56:06:de:4e:c6:d1:5a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1137c23453b88eba455c4208c6df5b3e1bbc245f Validity Not Before: Jan 1 08:17:47 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=be24b64b44b38c0809fe205b0a03f3a77ca18345 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:f3:56:56:0f:e8:be:53:e4:8d:23:d1:75:22: 03:38:b6:17:8f:21:54:d4:0e:10:96:10:fc:19:15: a9:18:29:d3:dc:3d:c5:b1:90:00:2f:47:5b:f9:09: d2:fc:d2:6d:ec:a2:30:99:bb:3a:72:5e:3c:68:e0: d7:14:cf:11:82:ff:d0:de:57:58:42:c6:72:e2:75: fe:0d:af:a2:ce:c8:3e:43:4d:a3:4c:5a:87:76:67: 22:1c:c6:b4:32:b9:75:ed:56:fc:50:0e:eb:6a:7c: db:b4:db:29:7b:07:6f:34:e7:db:fa:8a:93:d1:68: 92:b1:c1:86:3e:cb:7c:9d:a7:78:70:e2:d4:ce:65: 64:1a:d3:63:36:e3:25:c8:67:41:a1:5c:02:57:d7: b8:7b:99:28:07:7c:bb:96:d2:cc:32:4d:64:73:6c: ef:56:7e:fa:1b:3f:90:60:e3:89:b2:25:85:13:52: 09:44:8a:09:4b:93:e4:9c:5f:7c:84:64:ee:b1:0f: 6e:f5:6e:07:37:a4:45:8b:4e:5b:e3:77:d9:6e:64: 06:89:70:59:ba:93:1f:fe:d7:10:6a:c1:34:4d:fc: 33:b8:ad:bc:7d:7e:f7:1a:3f:c8:bc:1d:9b:61:97: af:70:3a:51:2e:96:f9:92:b9:0f:bc:4e:be:c9:d8: bb:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BE:24:B6:4B:44:B3:8C:08:09:FE:20:5B:0A:03:F3:A7:7C:A1:83:45 X509v3 Authority Key Identifier: keyid:11:37:C2:34:53:B8:8E:BA:45:5C:42:08:C6:DF:5B:3E:1B:BC:24:5F X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ETfCNFO4jrpFXEIIxt9bPhu8JF8.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bb/4624fc-634f-40cd-a607-5efda468a200/1/viS2S0SzjAgJ_iBbCgPzp3yhg0U.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/bb/4624fc-634f-40cd-a607-5efda468a200/1/ETfCNFO4jrpFXEIIxt9bPhu8JF8.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 91.209.191.0/24 IPv6: 2001:67c:2b3c::/48 Signature Algorithm: sha256WithRSAEncryption 37:5b:5d:d3:15:1d:42:ae:ed:03:04:36:e3:ce:ab:f1:94:53: 51:7a:ee:d0:dd:40:cf:40:07:33:09:0e:49:10:f3:18:b3:4d: 10:56:4c:f9:cb:db:3b:7e:f9:3d:91:5b:0d:0a:78:36:7c:b5: 67:35:ce:46:57:40:36:20:d6:83:ec:a2:61:0a:f4:7c:44:4a: 32:12:b4:4a:0f:f5:f4:37:ba:17:38:4e:e4:e0:5c:47:10:f7: 9a:d5:76:7c:2a:32:0e:2e:cf:cc:71:67:e4:85:36:53:ef:14: be:63:f7:da:4b:2e:48:9d:8b:5c:83:1c:95:b2:c2:70:4a:50: 7e:52:20:6a:48:1d:37:2f:bc:fe:d9:45:d8:36:d9:b7:db:90: 45:ff:1f:c8:84:50:1e:0a:3a:ba:3c:6e:0d:3d:f1:85:1a:07: bd:ff:23:35:4d:75:18:dc:e9:5b:24:ad:d8:50:44:09:11:fd: 02:61:9e:cf:cc:73:36:3d:64:8b:b5:6d:9d:45:56:ec:66:86: 91:f8:c3:cb:d2:4c:9c:3e:8c:2d:40:3a:70:5e:87:d6:6d:cb: 38:a1:bc:be:1a:a1:e5:f3:27:ef:3f:b6:40:df:22:cf:7e:f1: c0:41:6d:da:02:5f:7d:12:cd:de:ed:c9:7f:41:ef:e9:1d:43: 69:6e:6b:90 -----BEGIN CERTIFICATE----- MIIFDjCCA/agAwIBAgISAZt4omWzQwavLD9WBt5OxtFaMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDExMzdjMjM0NTNiODhlYmE0NTVjNDIwOGM2ZGY1YjNlMWJi YzI0NWYwHhcNMjYwMTAxMDgxNzQ3WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhiZTI0YjY0YjQ0YjM4YzA4MDlmZTIwNWIwYTAzZjNhNzdjYTE4MzQ1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAs/NWVg/ovlPkjSPRdSIDOLYXjyFU 1A4QlhD8GRWpGCnT3D3FsZAAL0db+QnS/NJt7KIwmbs6cl48aODXFM8Rgv/Q3ldY QsZy4nX+Da+izsg+Q02jTFqHdmciHMa0Mrl17Vb8UA7ranzbtNspewdvNOfb+oqT 0WiSscGGPst8nad4cOLUzmVkGtNjNuMlyGdBoVwCV9e4e5koB3y7ltLMMk1kc2zv Vn76Gz+QYOOJsiWFE1IJRIoJS5PknF98hGTusQ9u9W4HN6RFi05b43fZbmQGiXBZ upMf/tcQasE0TfwzuK28fX73Gj/IvB2bYZevcDpRLpb5krkPvE6+ydi7gwIDAQAB o4ICGjCCAhYwHQYDVR0OBBYEFL4ktktEs4wICf4gWwoD86d8oYNFMB8GA1UdIwQY MBaAFBE3wjRTuI66RVxCCMbfWz4bvCRfMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvRVRmQ05GTzRqcnBGWEVJSXh0OWJQaHU4SkY4LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iYi80NjI0ZmMtNjM0Zi00MGNkLWE2MDct NWVmZGE0NjhhMjAwLzEvdmlTMlMwU3pqQWdKX2lCYkNnUHpwM3loZzBVLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iYi80NjI0ZmMtNjM0Zi00MGNkLWE2MDctNWVmZGE0NjhhMjAw LzEvRVRmQ05GTzRqcnBGWEVJSXh0OWJQaHU4SkY4LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMDAGCCsGAQUFBwEHAQH/BCEwHzAMBAIAATAGAwQAW9G/MA8E AgACMAkDBwAgAQZ8KzwwDQYJKoZIhvcNAQELBQADggEBADdbXdMVHUKu7QMENuPO q/GUU1F67tDdQM9ABzMJDkkQ8xizTRBWTPnL2zt++T2RWw0KeDZ8tWc1zkZXQDYg 1oPsomEK9HxESjIStEoP9fQ3uhc4TuTgXEcQ95rVdnwqMg4uz8xxZ+SFNlPvFL5j 99pLLkidi1yDHJWywnBKUH5SIGpIHTcvvP7ZRdg22bfbkEX/H8iEUB4KOro8bg09 8YUaB73/IzVNdRjc6VskrdhQRAkR/QJhns/MczY9ZIu1bZ1FVuxmhpH4w8vSTJw+ jC1AOnBeh9ZtyzihvL4aoeXzJ+8/tkDfIs9+8cBBbdoCX30Szd7tyX9B7+kdQ2lu a5A= -----END CERTIFICATE-----Generated at Thu Jan 1 19:50:31 2026 by rpki-client