This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/22/e128e0-00a6-4689-95be-524c2109cb05/1/s9j8m-8R6ZZMDkYNpOB9aWUHmH4.roa File: s9j8m-8R6ZZMDkYNpOB9aWUHmH4.roa (raw, json) Hash identifier: sc211FLd1kmYlTTkcgRulGWHSsW1mSr9tSsdYR3sIng= Subject key identifier: B3:D8:FC:9B:EF:11:E9:96:4C:0E:46:0D:A4:E0:7D:69:65:07:98:7E Certificate issuer: /CN=37891a4724aac6b5da0005329aa3a5abe87779d6 Certificate serial: 019B7B36BFF199F36FEA9DA4FEF6993E82AB Authority key identifier: 37:89:1A:47:24:AA:C6:B5:DA:00:05:32:9A:A3:A5:AB:E8:77:79:D6 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/N4kaRySqxrXaAAUymqOlq-h3edY.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/22/e128e0-00a6-4689-95be-524c2109cb05/1/s9j8m-8R6ZZMDkYNpOB9aWUHmH4.roa Signing time: Thu 01 Jan 2026 20:19:04 +0000 ROA not before: Thu 01 Jan 2026 20:19:04 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 214948 IP address blocks: 185.254.218.0/24 maxlen: 24 2a0f:ffc7::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/22/e128e0-00a6-4689-95be-524c2109cb05/1/N4kaRySqxrXaAAUymqOlq-h3edY.crl rsync://rpki.ripe.net/repository/DEFAULT/22/e128e0-00a6-4689-95be-524c2109cb05/1/N4kaRySqxrXaAAUymqOlq-h3edY.mft rsync://rpki.ripe.net/repository/DEFAULT/N4kaRySqxrXaAAUymqOlq-h3edY.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 13:21:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7b:36:bf:f1:99:f3:6f:ea:9d:a4:fe:f6:99:3e:82:ab Signature Algorithm: sha256WithRSAEncryption Issuer: CN=37891a4724aac6b5da0005329aa3a5abe87779d6 Validity Not Before: Jan 1 20:19:04 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=b3d8fc9bef11e9964c0e460da4e07d696507987e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:40:21:b1:73:54:5b:60:e7:3f:8b:6c:a5:f0: 81:97:2a:c0:0f:70:de:73:da:6d:15:71:ce:07:47: e2:69:7d:a4:8e:ab:2d:82:25:f6:08:0f:2d:a9:e4: 49:01:52:c4:92:46:83:6e:a4:e4:1f:78:71:64:06: 3a:d6:c6:16:bd:b6:50:dc:8e:0c:2d:7b:78:c8:65: b8:21:5e:40:d7:1a:ff:0b:56:85:19:9b:e1:37:d4: b0:cd:ea:d4:69:b5:89:de:2a:1c:a8:8a:13:10:91: e6:f5:02:49:b4:4a:b1:98:8c:09:29:ba:5e:0c:c2: 1a:81:90:14:0c:a1:2f:18:a1:30:05:53:a3:e1:f0: 94:26:ea:66:a5:c6:a3:a2:00:94:05:0b:8f:af:28: 11:96:bb:e7:72:82:2c:33:16:e2:c0:c4:99:3c:88: 57:37:8e:91:b4:c4:3b:c1:07:f3:44:a4:dd:0e:57: 62:c8:7a:c4:cd:93:94:3b:0a:00:93:1e:32:97:1a: 27:b6:41:73:9b:b6:5d:bd:0c:d3:f4:13:20:16:d7: a8:ac:5a:1b:47:50:59:fc:27:88:21:73:a8:ee:9b: 62:8c:60:92:f9:43:79:5b:87:9f:49:f6:32:c0:fe: 68:21:d9:14:75:3f:35:24:24:c3:3a:3b:e5:4d:33: e4:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B3:D8:FC:9B:EF:11:E9:96:4C:0E:46:0D:A4:E0:7D:69:65:07:98:7E X509v3 Authority Key Identifier: keyid:37:89:1A:47:24:AA:C6:B5:DA:00:05:32:9A:A3:A5:AB:E8:77:79:D6 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/N4kaRySqxrXaAAUymqOlq-h3edY.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/22/e128e0-00a6-4689-95be-524c2109cb05/1/s9j8m-8R6ZZMDkYNpOB9aWUHmH4.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/22/e128e0-00a6-4689-95be-524c2109cb05/1/N4kaRySqxrXaAAUymqOlq-h3edY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.254.218.0/24 IPv6: 2a0f:ffc7::/32 Signature Algorithm: sha256WithRSAEncryption 9d:01:71:04:23:de:51:2e:24:6c:81:82:ee:55:ac:fd:a7:3d: 17:a9:da:a5:03:fc:fd:6b:21:5f:04:b0:68:c2:c7:44:b8:93: 39:10:86:c3:6a:be:cd:9b:c9:51:11:d9:26:71:99:d2:ce:bc: 88:ea:2b:c9:3d:f1:e9:63:ad:19:46:a6:66:aa:84:be:17:82: e9:48:ff:41:cc:ab:83:bf:83:61:66:3b:85:d6:0c:15:ed:92: 32:56:e8:e4:a5:e2:52:3a:78:ac:8a:4e:40:4d:46:7d:e5:27: 6e:f0:9b:4a:a2:70:e5:53:f8:03:5a:a5:7b:aa:64:d3:3e:42: 0e:62:c6:1e:fd:20:7b:fb:d5:bb:ce:2f:a5:66:d2:7d:bf:f5: a0:61:f5:4f:6e:e8:0d:c5:9b:2c:20:27:9f:3f:7d:60:45:eb: 3b:99:61:74:ff:50:c0:d5:d9:c6:86:a3:02:d3:73:0d:a3:85: c9:a0:d8:93:f0:96:e8:26:b1:9d:3e:c3:94:12:6e:0f:3e:24: 66:14:9e:e1:8f:80:28:66:8f:72:60:6e:29:0e:56:ec:57:2c: c9:41:6f:3c:83:d6:85:40:b0:42:39:06:76:51:56:cc:fb:68: 49:83:39:bc:b1:a7:8d:e1:6a:ad:4b:73:10:1d:15:3a:38:37: 84:6b:aa:8b -----BEGIN CERTIFICATE----- MIIFDDCCA/SgAwIBAgISAZt7Nr/xmfNv6p2k/vaZPoKrMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDM3ODkxYTQ3MjRhYWM2YjVkYTAwMDUzMjlhYTNhNWFiZTg3 Nzc5ZDYwHhcNMjYwMTAxMjAxOTA0WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhiM2Q4ZmM5YmVmMTFlOTk2NGMwZTQ2MGRhNGUwN2Q2OTY1MDc5ODdlMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxUAhsXNUW2DnP4tspfCBlyrAD3De c9ptFXHOB0fiaX2kjqstgiX2CA8tqeRJAVLEkkaDbqTkH3hxZAY61sYWvbZQ3I4M LXt4yGW4IV5A1xr/C1aFGZvhN9SwzerUabWJ3iocqIoTEJHm9QJJtEqxmIwJKbpe DMIagZAUDKEvGKEwBVOj4fCUJupmpcajogCUBQuPrygRlrvncoIsMxbiwMSZPIhX N46RtMQ7wQfzRKTdDldiyHrEzZOUOwoAkx4ylxontkFzm7ZdvQzT9BMgFteorFob R1BZ/CeIIXOo7ptijGCS+UN5W4efSfYywP5oIdkUdT81JCTDOjvlTTPk6wIDAQAB o4ICGDCCAhQwHQYDVR0OBBYEFLPY/JvvEemWTA5GDaTgfWllB5h+MB8GA1UdIwQY MBaAFDeJGkckqsa12gAFMpqjpavod3nWMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvTjRrYVJ5U3F4clhhQUFVeW1xT2xxLWgzZWRZLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yMi9lMTI4ZTAtMDBhNi00Njg5LTk1YmUt NTI0YzIxMDljYjA1LzEvczlqOG0tOFI2WlpNRGtZTnBPQjlhV1VIbUg0LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yMi9lMTI4ZTAtMDBhNi00Njg5LTk1YmUtNTI0YzIxMDljYjA1 LzEvTjRrYVJ5U3F4clhhQUFVeW1xT2xxLWgzZWRZLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMC4GCCsGAQUFBwEHAQH/BB8wHTAMBAIAATAGAwQAuf7aMA0E AgACMAcDBQAqD//HMA0GCSqGSIb3DQEBCwUAA4IBAQCdAXEEI95RLiRsgYLuVaz9 pz0XqdqlA/z9ayFfBLBowsdEuJM5EIbDar7Nm8lREdkmcZnSzryI6ivJPfHpY60Z RqZmqoS+F4LpSP9BzKuDv4NhZjuF1gwV7ZIyVujkpeJSOnisik5ATUZ95Sdu8JtK onDlU/gDWqV7qmTTPkIOYsYe/SB7+9W7zi+lZtJ9v/WgYfVPbugNxZssICefP31g Res7mWF0/1DA1dnGhqMC03MNo4XJoNiT8JboJrGdPsOUEm4PPiRmFJ7hj4AoZo9y YG4pDlbsVyzJQW88g9aFQLBCOQZ2UVbM+2hJgzm8saeN4WqtS3MQHRU6ODeEa6qL -----END CERTIFICATE-----Generated at Sun Jan 25 22:49:27 2026 by rpki-client