This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0e/9cb5fb-ab65-4a2b-88dd-2ef7165b21b5/1/msBIl7hzmZuQkbrJ6sui74p1Pgg.roa File: msBIl7hzmZuQkbrJ6sui74p1Pgg.roa (raw, json) Hash identifier: 1/8Tc8pewIiwrYAG9YY8GUqoXDl/4u6a8D5S98uRMyA= Subject key identifier: 9A:C0:48:97:B8:73:99:9B:90:91:BA:C9:EA:CB:A2:EF:8A:75:3E:08 Certificate issuer: /CN=9b5337bd1a7c5ee9c57a73b0a33c61219cd2a9cb Certificate serial: 019B7BA3609EE9D57D8ACC8FC1A94C4D6BC6 Authority key identifier: 9B:53:37:BD:1A:7C:5E:E9:C5:7A:73:B0:A3:3C:61:21:9C:D2:A9:CB Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/m1M3vRp8XunFenOwozxhIZzSqcs.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0e/9cb5fb-ab65-4a2b-88dd-2ef7165b21b5/1/msBIl7hzmZuQkbrJ6sui74p1Pgg.roa Signing time: Thu 01 Jan 2026 22:17:43 +0000 ROA not before: Thu 01 Jan 2026 22:17:43 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 1213 IP address blocks: 149.153.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0e/9cb5fb-ab65-4a2b-88dd-2ef7165b21b5/1/m1M3vRp8XunFenOwozxhIZzSqcs.crl rsync://rpki.ripe.net/repository/DEFAULT/0e/9cb5fb-ab65-4a2b-88dd-2ef7165b21b5/1/m1M3vRp8XunFenOwozxhIZzSqcs.mft rsync://rpki.ripe.net/repository/DEFAULT/m1M3vRp8XunFenOwozxhIZzSqcs.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 27 Jan 2026 07:02:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7b:a3:60:9e:e9:d5:7d:8a:cc:8f:c1:a9:4c:4d:6b:c6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9b5337bd1a7c5ee9c57a73b0a33c61219cd2a9cb Validity Not Before: Jan 1 22:17:43 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=9ac04897b873999b9091bac9eacba2ef8a753e08 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:02:47:2b:c3:65:53:09:2a:30:d7:77:32:5a: b9:88:85:84:18:aa:fd:43:12:3a:ee:04:64:39:90: 53:f0:ad:62:1d:22:94:cf:be:c8:19:08:dd:7c:ff: dd:ac:be:7c:ed:b8:d8:35:81:dc:96:20:5f:3e:6d: 4a:45:12:d8:b8:43:9b:11:65:a5:8c:21:5b:5a:24: 79:db:df:03:1e:0b:d8:94:e4:67:d0:99:bd:14:9d: cd:1f:7d:89:56:6a:c6:15:ed:d4:18:20:cf:d4:82: f5:f5:cf:f5:c4:9a:65:b8:b1:fa:82:ca:95:e6:7d: 2e:74:38:b9:b5:8b:14:55:aa:f6:6a:6c:2f:65:ba: 22:a2:d9:73:2c:36:d4:b6:c8:9c:aa:e9:80:76:22: 23:35:ce:9c:98:bf:f2:26:56:7a:db:87:bb:8e:75: fb:a6:38:f6:af:b6:ab:2f:84:d9:a2:73:11:58:da: 8b:a7:3f:a0:01:33:25:43:0a:bd:37:ee:c6:e8:ef: 26:5a:c7:1c:28:70:d2:5e:d7:3c:05:d2:8d:fa:4a: 4d:6b:e0:d2:40:6a:98:e6:b0:c0:8f:9b:ee:ba:4c: 52:c6:84:ef:20:c7:20:24:0a:d5:3c:09:87:40:c1: 63:a2:a8:73:cb:c6:cc:4b:e3:dd:4b:36:8b:c9:71: 12:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9A:C0:48:97:B8:73:99:9B:90:91:BA:C9:EA:CB:A2:EF:8A:75:3E:08 X509v3 Authority Key Identifier: keyid:9B:53:37:BD:1A:7C:5E:E9:C5:7A:73:B0:A3:3C:61:21:9C:D2:A9:CB X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/m1M3vRp8XunFenOwozxhIZzSqcs.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0e/9cb5fb-ab65-4a2b-88dd-2ef7165b21b5/1/msBIl7hzmZuQkbrJ6sui74p1Pgg.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/0e/9cb5fb-ab65-4a2b-88dd-2ef7165b21b5/1/m1M3vRp8XunFenOwozxhIZzSqcs.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 149.153.0.0/16 Signature Algorithm: sha256WithRSAEncryption 85:99:c3:51:be:e6:01:f6:e0:4c:37:4d:aa:a6:93:58:1c:2c: ec:fb:d9:0e:94:ea:61:1c:f5:88:91:48:5b:28:bc:20:ca:f3: 04:1c:a7:42:c9:34:cf:ac:64:34:07:3b:ce:d0:57:0f:81:b4: c3:57:a3:ed:7b:0d:7f:08:dc:2c:9c:01:99:1d:bf:69:34:80: 01:f0:f0:ed:3e:d8:97:75:b9:20:bf:92:df:4a:d1:b3:46:e5: ac:6c:cf:27:74:b3:7a:4a:da:5c:b2:67:9d:0d:ba:14:07:5f: 78:83:0c:70:71:cb:22:a3:70:6e:69:f8:1c:c2:aa:c3:c9:63: 73:d7:c4:d9:ef:cb:10:29:72:8f:d2:e0:1c:e8:ef:76:f3:72: 69:b3:62:c1:6b:24:ba:75:71:6f:34:33:1e:91:38:d2:a0:95: 7f:fc:ef:5b:49:20:d4:15:9c:9a:ac:e1:ff:98:53:f0:69:41: 3d:3b:51:f1:e1:ae:04:9f:d6:9b:e2:a8:60:8e:da:50:a1:d5: 70:fd:f6:13:f5:9f:b4:68:34:c6:97:51:23:40:8f:d8:1e:b2: c2:b2:24:3f:00:22:c9:5e:2b:77:a4:e8:d3:d4:21:6b:e5:d7: 05:b7:06:5b:50:66:3b:67:9b:a0:cd:22:c4:7c:ab:86:b7:72: b5:87:6c:25 -----BEGIN CERTIFICATE----- MIIE/DCCA+SgAwIBAgISAZt7o2Ce6dV9isyPwalMTWvGMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDliNTMzN2JkMWE3YzVlZTljNTdhNzNiMGEzM2M2MTIxOWNk MmE5Y2IwHhcNMjYwMTAxMjIxNzQzWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg5YWMwNDg5N2I4NzM5OTliOTA5MWJhYzllYWNiYTJlZjhhNzUzZTA4MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0wJHK8NlUwkqMNd3Mlq5iIWEGKr9 QxI67gRkOZBT8K1iHSKUz77IGQjdfP/drL587bjYNYHcliBfPm1KRRLYuEObEWWl jCFbWiR5298DHgvYlORn0Jm9FJ3NH32JVmrGFe3UGCDP1IL19c/1xJpluLH6gsqV 5n0udDi5tYsUVar2amwvZboiotlzLDbUtsicqumAdiIjNc6cmL/yJlZ624e7jnX7 pjj2r7arL4TZonMRWNqLpz+gATMlQwq9N+7G6O8mWsccKHDSXtc8BdKN+kpNa+DS QGqY5rDAj5vuukxSxoTvIMcgJArVPAmHQMFjoqhzy8bMS+PdSzaLyXEShwIDAQAB o4ICCDCCAgQwHQYDVR0OBBYEFJrASJe4c5mbkJG6yerLou+KdT4IMB8GA1UdIwQY MBaAFJtTN70afF7pxXpzsKM8YSGc0qnLMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvbTFNM3ZScDhYdW5GZW5Pd296eGhJWnpTcWNzLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wZS85Y2I1ZmItYWI2NS00YTJiLTg4ZGQt MmVmNzE2NWIyMWI1LzEvbXNCSWw3aHptWnVRa2JySjZzdWk3NHAxUGdnLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wZS85Y2I1ZmItYWI2NS00YTJiLTg4ZGQtMmVmNzE2NWIyMWI1 LzEvbTFNM3ZScDhYdW5GZW5Pd296eGhJWnpTcWNzLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB4GCCsGAQUFBwEHAQH/BA8wDTALBAIAATAFAwMAlZkwDQYJ KoZIhvcNAQELBQADggEBAIWZw1G+5gH24Ew3Taqmk1gcLOz72Q6U6mEc9YiRSFso vCDK8wQcp0LJNM+sZDQHO87QVw+BtMNXo+17DX8I3CycAZkdv2k0gAHw8O0+2Jd1 uSC/kt9K0bNG5axszyd0s3pK2lyyZ50NuhQHX3iDDHBxyyKjcG5p+BzCqsPJY3PX xNnvyxApco/S4Bzo73bzcmmzYsFrJLp1cW80Mx6RONKglX/871tJINQVnJqs4f+Y U/BpQT07UfHhrgSf1pviqGCO2lCh1XD99hP1n7RoNMaXUSNAj9gessKyJD8AIsle K3ek6NPUIWvl1wW3BltQZjtnm6DNIsR8q4a3crWHbCU= -----END CERTIFICATE-----Generated at Mon Jan 26 13:10:46 2026 by rpki-client