This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/24/3ad9c1-3e09-41ac-acca-d11339fe7df0/1/u9-8FtTHX-Iha_x3C5q4_edNJaM.roa File: u9-8FtTHX-Iha_x3C5q4_edNJaM.roa (raw, json) Hash identifier: BJecwIh123OLgBTMSQtQt7fraFVyOfqi7zQMkz1z9tA= Subject key identifier: BB:DF:BC:16:D4:C7:5F:E2:21:6B:FC:77:0B:9A:B8:FD:E7:4D:25:A3 Certificate issuer: /CN=34f481a9ddcfb48591f78938c4fcc7b8b67c6302 Certificate serial: 019B79ED514C1E41F5F7895B1CFF5C5E0D48 Authority key identifier: 34:F4:81:A9:DD:CF:B4:85:91:F7:89:38:C4:FC:C7:B8:B6:7C:63:02 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NPSBqd3PtIWR94k4xPzHuLZ8YwI.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/24/3ad9c1-3e09-41ac-acca-d11339fe7df0/1/u9-8FtTHX-Iha_x3C5q4_edNJaM.roa Signing time: Thu 01 Jan 2026 14:19:14 +0000 ROA not before: Thu 01 Jan 2026 14:19:14 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 199216 IP address blocks: 193.56.204.0/22 maxlen: 24 2a0c:8f40::/29 maxlen: 64 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/24/3ad9c1-3e09-41ac-acca-d11339fe7df0/1/NPSBqd3PtIWR94k4xPzHuLZ8YwI.crl rsync://rpki.ripe.net/repository/DEFAULT/24/3ad9c1-3e09-41ac-acca-d11339fe7df0/1/NPSBqd3PtIWR94k4xPzHuLZ8YwI.mft rsync://rpki.ripe.net/repository/DEFAULT/NPSBqd3PtIWR94k4xPzHuLZ8YwI.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 27 Jan 2026 01:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:79:ed:51:4c:1e:41:f5:f7:89:5b:1c:ff:5c:5e:0d:48 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=34f481a9ddcfb48591f78938c4fcc7b8b67c6302 Validity Not Before: Jan 1 14:19:14 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=bbdfbc16d4c75fe2216bfc770b9ab8fde74d25a3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:97:5a:4d:24:a3:00:8b:78:fe:9e:d5:f8:3b:dc: 12:ad:7f:01:12:24:46:f5:a9:80:e9:57:c4:42:cc: 51:19:82:a8:57:b8:b3:0a:99:e2:18:1d:30:32:54: 9d:ad:4c:5b:1a:09:d5:0f:83:75:6b:b9:fa:79:1b: 76:fb:25:2d:ed:97:10:1a:4f:4b:71:dd:a0:2e:0c: 91:c3:e5:e3:f2:ec:90:17:75:f8:bd:2e:a8:ce:0b: 50:6e:32:0b:fb:0d:39:c1:45:aa:8c:c7:ca:7f:65: e6:2f:7b:60:1e:20:fc:53:bc:65:cd:d5:ff:67:af: 51:ce:9b:c6:69:0b:78:7d:b0:de:b7:22:b0:a2:9c: f3:25:66:31:73:20:39:0c:20:08:c6:72:05:80:36: 1a:c9:39:f8:bc:c5:ac:c2:ac:6d:f0:a4:11:99:f1: 46:ee:fe:aa:f2:c2:d1:a4:c3:56:36:ec:5b:bf:ab: a1:36:1c:86:07:74:f9:64:e5:31:6b:cb:4b:56:65: b3:74:93:c4:0a:a1:90:ce:46:f2:a2:23:19:d9:19: 91:eb:3b:97:44:6c:72:c4:8f:9b:cf:98:0f:f2:3b: 18:55:cc:97:3a:eb:2e:4f:39:ca:01:1d:28:4b:6a: 4e:46:93:3c:6d:90:2f:dd:fa:c3:90:33:fd:47:6c: fc:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BB:DF:BC:16:D4:C7:5F:E2:21:6B:FC:77:0B:9A:B8:FD:E7:4D:25:A3 X509v3 Authority Key Identifier: keyid:34:F4:81:A9:DD:CF:B4:85:91:F7:89:38:C4:FC:C7:B8:B6:7C:63:02 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NPSBqd3PtIWR94k4xPzHuLZ8YwI.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/24/3ad9c1-3e09-41ac-acca-d11339fe7df0/1/u9-8FtTHX-Iha_x3C5q4_edNJaM.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/24/3ad9c1-3e09-41ac-acca-d11339fe7df0/1/NPSBqd3PtIWR94k4xPzHuLZ8YwI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 193.56.204.0/22 IPv6: 2a0c:8f40::/29 Signature Algorithm: sha256WithRSAEncryption a7:c9:3d:c8:39:ae:4c:00:6b:0b:33:59:62:82:10:c6:44:68: 52:55:36:3a:da:55:38:bb:f1:5b:5f:4a:43:10:ba:91:ef:fe: 3e:af:2a:c4:ea:cf:41:99:7f:a2:97:0f:28:75:99:37:ae:b5: c7:13:02:1d:62:7d:6d:68:d3:a3:a7:58:21:71:0f:ac:3d:75: 44:fe:a5:5c:fe:a3:12:7e:97:38:bf:e2:89:a5:4e:c3:f0:e0: a3:49:b8:be:00:e7:9c:19:68:f7:9f:7a:df:52:35:92:79:9f: 02:d6:4f:7f:52:b3:44:22:1e:6a:77:33:85:08:56:8b:12:ae: 8f:d9:9a:b1:68:aa:cb:73:f4:e7:b9:30:6e:c9:72:a2:fd:25: 5e:b2:bd:f5:1a:15:ef:09:e2:c5:25:93:2c:bf:0c:ad:3e:1a: 33:b5:51:51:75:82:e7:4e:48:96:73:14:01:aa:1e:8d:87:3d: d3:bc:4c:6c:6f:ee:99:10:5f:45:72:07:85:d3:c7:79:84:28: 99:8e:11:87:63:68:94:f3:aa:5b:bb:9f:f5:79:a9:54:5d:26: 44:ad:c8:e0:5a:5f:95:aa:b6:94:e9:4a:84:2f:9a:5a:64:71: 0a:cd:1f:2b:8c:39:0c:57:07:13:f9:6d:d8:ed:3b:e9:d9:6e: a6:8b:63:dd -----BEGIN CERTIFICATE----- MIIFDDCCA/SgAwIBAgISAZt57VFMHkH194lbHP9cXg1IMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDM0ZjQ4MWE5ZGRjZmI0ODU5MWY3ODkzOGM0ZmNjN2I4YjY3 YzYzMDIwHhcNMjYwMTAxMTQxOTE0WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhiYmRmYmMxNmQ0Yzc1ZmUyMjE2YmZjNzcwYjlhYjhmZGU3NGQyNWEzMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAl1pNJKMAi3j+ntX4O9wSrX8BEiRG 9amA6VfEQsxRGYKoV7izCpniGB0wMlSdrUxbGgnVD4N1a7n6eRt2+yUt7ZcQGk9L cd2gLgyRw+Xj8uyQF3X4vS6ozgtQbjIL+w05wUWqjMfKf2XmL3tgHiD8U7xlzdX/ Z69RzpvGaQt4fbDetyKwopzzJWYxcyA5DCAIxnIFgDYayTn4vMWswqxt8KQRmfFG 7v6q8sLRpMNWNuxbv6uhNhyGB3T5ZOUxa8tLVmWzdJPECqGQzkbyoiMZ2RmR6zuX RGxyxI+bz5gP8jsYVcyXOusuTznKAR0oS2pORpM8bZAv3frDkDP9R2z8GwIDAQAB o4ICGDCCAhQwHQYDVR0OBBYEFLvfvBbUx1/iIWv8dwuauP3nTSWjMB8GA1UdIwQY MBaAFDT0gandz7SFkfeJOMT8x7i2fGMCMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvTlBTQnFkM1B0SVdSOTRrNHhQekh1TFo4WXdJLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yNC8zYWQ5YzEtM2UwOS00MWFjLWFjY2Et ZDExMzM5ZmU3ZGYwLzEvdTktOEZ0VEhYLUloYV94M0M1cTRfZWROSmFNLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yNC8zYWQ5YzEtM2UwOS00MWFjLWFjY2EtZDExMzM5ZmU3ZGYw LzEvTlBTQnFkM1B0SVdSOTRrNHhQekh1TFo4WXdJLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMC4GCCsGAQUFBwEHAQH/BB8wHTAMBAIAATAGAwQCwTjMMA0E AgACMAcDBQMqDI9AMA0GCSqGSIb3DQEBCwUAA4IBAQCnyT3IOa5MAGsLM1lighDG RGhSVTY62lU4u/FbX0pDELqR7/4+ryrE6s9BmX+ilw8odZk3rrXHEwIdYn1taNOj p1ghcQ+sPXVE/qVc/qMSfpc4v+KJpU7D8OCjSbi+AOecGWj3n3rfUjWSeZ8C1k9/ UrNEIh5qdzOFCFaLEq6P2ZqxaKrLc/TnuTBuyXKi/SVesr31GhXvCeLFJZMsvwyt PhoztVFRdYLnTkiWcxQBqh6Nhz3TvExsb+6ZEF9FcgeF08d5hCiZjhGHY2iU86pb u5/1ealUXSZErcjgWl+VqraU6UqEL5paZHEKzR8rjDkMVwcT+W3Y7Tvp2W6mi2Pd -----END CERTIFICATE-----Generated at Mon Jan 26 10:24:45 2026 by rpki-client