This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/15/5a6d01-a375-4e11-871e-99e6141de7f1/1/K9ARhNUPke1FUpRD3jCOS20cCT8.roa File: K9ARhNUPke1FUpRD3jCOS20cCT8.roa (raw, json) Hash identifier: xemlBpuRtqlzVTp6vvfqrvYIR9l5jVMyrtmPWS3Y4YY= Subject key identifier: 2B:D0:11:84:D5:0F:91:ED:45:52:94:43:DE:30:8E:4B:6D:1C:09:3F Certificate issuer: /CN=f7bed33ff01e8e09dc4fedcd01139c0e77854aae Certificate serial: 019B7E37666412E54A41F823D76BAE547E66 Authority key identifier: F7:BE:D3:3F:F0:1E:8E:09:DC:4F:ED:CD:01:13:9C:0E:77:85:4A:AE Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/977TP_AejgncT-3NAROcDneFSq4.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/15/5a6d01-a375-4e11-871e-99e6141de7f1/1/K9ARhNUPke1FUpRD3jCOS20cCT8.roa Signing time: Fri 02 Jan 2026 10:18:38 +0000 ROA not before: Fri 02 Jan 2026 10:18:38 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 57152 IP address blocks: 185.70.85.0/24 maxlen: 24 185.70.86.0/24 maxlen: 24 185.70.87.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/15/5a6d01-a375-4e11-871e-99e6141de7f1/1/977TP_AejgncT-3NAROcDneFSq4.crl rsync://rpki.ripe.net/repository/DEFAULT/15/5a6d01-a375-4e11-871e-99e6141de7f1/1/977TP_AejgncT-3NAROcDneFSq4.mft rsync://rpki.ripe.net/repository/DEFAULT/977TP_AejgncT-3NAROcDneFSq4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 22:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7e:37:66:64:12:e5:4a:41:f8:23:d7:6b:ae:54:7e:66 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=f7bed33ff01e8e09dc4fedcd01139c0e77854aae Validity Not Before: Jan 2 10:18:38 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=2bd01184d50f91ed45529443de308e4b6d1c093f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:8e:d4:89:d5:9d:a8:b5:54:fb:86:30:62:69: c1:ab:4b:3f:f1:2b:34:25:35:58:c0:cc:51:38:06: 5e:18:ff:1a:9c:f2:a5:31:8f:36:31:6c:50:c9:97: e2:c8:b1:d0:d6:fc:cc:70:2c:53:14:94:be:f9:c9: 7d:1a:72:90:00:83:97:03:cd:32:29:eb:9a:9d:ff: aa:b1:c0:55:3b:f7:fc:1b:47:11:55:52:15:fd:32: a0:19:de:ca:ed:9f:e9:f7:fd:c1:6e:ef:0e:27:79: 9e:57:82:38:90:83:e3:29:3b:6a:01:1e:72:95:e6: 54:61:77:f0:bc:fa:5a:a4:88:e4:45:71:15:ea:62: ec:66:bb:e1:72:2e:17:d8:dc:07:d9:97:9c:ac:44: 29:9a:ce:37:7d:24:3a:b1:87:cf:a9:e2:35:bb:7a: a7:14:3a:2a:b8:45:04:52:d3:21:3c:a3:24:f3:56: d0:fe:d5:7c:7b:fa:90:fd:56:5a:ae:8c:60:f8:28: 92:36:82:a1:d0:16:24:f2:15:b1:20:85:0e:6c:c6: 02:c8:05:ed:2f:af:ff:27:72:64:04:0f:98:f9:1c: d8:1f:23:0b:53:73:7b:8f:a9:70:ba:49:ae:8b:0d: c4:9d:df:ae:ac:6a:7f:a6:18:a7:09:23:a3:73:e5: e1:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2B:D0:11:84:D5:0F:91:ED:45:52:94:43:DE:30:8E:4B:6D:1C:09:3F X509v3 Authority Key Identifier: keyid:F7:BE:D3:3F:F0:1E:8E:09:DC:4F:ED:CD:01:13:9C:0E:77:85:4A:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/977TP_AejgncT-3NAROcDneFSq4.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/15/5a6d01-a375-4e11-871e-99e6141de7f1/1/K9ARhNUPke1FUpRD3jCOS20cCT8.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/15/5a6d01-a375-4e11-871e-99e6141de7f1/1/977TP_AejgncT-3NAROcDneFSq4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.70.85.0-185.70.87.255 Signature Algorithm: sha256WithRSAEncryption 4e:d5:f3:24:3e:38:7a:10:67:1a:ce:de:0a:5d:8d:74:6a:7d: 53:53:f9:47:83:12:a9:67:ab:fe:5c:f5:3d:40:23:57:30:91: 0a:17:e3:38:ea:45:12:c0:b8:9d:de:7b:b7:c2:c4:8a:bb:8a: 8f:f0:e1:dc:16:65:f5:32:0a:f4:74:53:7b:62:3e:37:d6:83: 99:a7:b9:a6:4c:0a:f0:41:4b:3a:96:56:68:ad:b8:7f:56:77: 11:ae:a7:b1:bd:4b:26:c7:b3:cf:60:18:c6:01:25:0e:ba:06: 80:9f:81:19:46:55:c5:2b:9c:ec:94:eb:8d:db:46:12:8b:4a: 2f:fe:42:ac:2c:bc:2e:14:f3:64:c3:54:00:d4:07:49:29:1b: a8:a7:a4:57:70:30:57:57:f2:f3:aa:5e:38:e0:97:e4:d6:13: 34:ef:bf:23:81:cc:db:e4:2f:d4:69:ba:7d:79:6a:a1:e8:fa: 3d:b7:45:61:ce:90:39:a3:2c:c6:99:ed:2a:77:d5:a1:1b:40: 6d:3f:03:51:a1:c9:8f:e6:eb:1c:af:84:12:6f:b5:73:e2:0f: 86:38:70:c3:f9:76:e8:24:e1:c5:c0:5e:77:0e:e6:38:c2:50: 05:29:ad:24:60:71:59:11:87:9f:8e:ac:9e:65:9a:6c:90:d2: 2d:5b:8e:39 -----BEGIN CERTIFICATE----- MIIFBTCCA+2gAwIBAgISAZt+N2ZkEuVKQfgj12uuVH5mMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGY3YmVkMzNmZjAxZThlMDlkYzRmZWRjZDAxMTM5YzBlNzc4 NTRhYWUwHhcNMjYwMTAyMTAxODM4WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygyYmQwMTE4NGQ1MGY5MWVkNDU1Mjk0NDNkZTMwOGU0YjZkMWMwOTNmMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvI7UidWdqLVU+4YwYmnBq0s/8Ss0 JTVYwMxROAZeGP8anPKlMY82MWxQyZfiyLHQ1vzMcCxTFJS++cl9GnKQAIOXA80y Keuanf+qscBVO/f8G0cRVVIV/TKgGd7K7Z/p9/3Bbu8OJ3meV4I4kIPjKTtqAR5y leZUYXfwvPpapIjkRXEV6mLsZrvhci4X2NwH2ZecrEQpms43fSQ6sYfPqeI1u3qn FDoquEUEUtMhPKMk81bQ/tV8e/qQ/VZaroxg+CiSNoKh0BYk8hWxIIUObMYCyAXt L6//J3JkBA+Y+RzYHyMLU3N7j6lwukmuiw3End+urGp/phinCSOjc+XhJwIDAQAB o4ICETCCAg0wHQYDVR0OBBYEFCvQEYTVD5HtRVKUQ94wjkttHAk/MB8GA1UdIwQY MBaAFPe+0z/wHo4J3E/tzQETnA53hUquMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvOTc3VFBfQWVqZ25jVC0zTkFST2NEbmVGU3E0LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xNS81YTZkMDEtYTM3NS00ZTExLTg3MWUt OTllNjE0MWRlN2YxLzEvSzlBUmhOVVBrZTFGVXBSRDNqQ09TMjBjQ1Q4LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xNS81YTZkMDEtYTM3NS00ZTExLTg3MWUtOTllNjE0MWRlN2Yx LzEvOTc3VFBfQWVqZ25jVC0zTkFST2NEbmVGU3E0LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCcGCCsGAQUFBwEHAQH/BBgwFjAUBAIAATAOMAwDBAC5RlUD BAO5RlAwDQYJKoZIhvcNAQELBQADggEBAE7V8yQ+OHoQZxrO3gpdjXRqfVNT+UeD Eqlnq/5c9T1AI1cwkQoX4zjqRRLAuJ3ee7fCxIq7io/w4dwWZfUyCvR0U3tiPjfW g5mnuaZMCvBBSzqWVmituH9WdxGup7G9SybHs89gGMYBJQ66BoCfgRlGVcUrnOyU 643bRhKLSi/+QqwsvC4U82TDVADUB0kpG6inpFdwMFdX8vOqXjjgl+TWEzTvvyOB zNvkL9Rpun15aqHo+j23RWHOkDmjLMaZ7Sp31aEbQG0/A1GhyY/m6xyvhBJvtXPi D4Y4cMP5dugk4cXAXncO5jjCUAUprSRgcVkRh5+OrJ5lmmyQ0i1bjjk= -----END CERTIFICATE-----Generated at Mon Jan 26 03:56:24 2026 by rpki-client