This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/27/f2c5e8-8d37-4838-a33b-ecc49bdc2ad8/1/9KcHIAUvzuR2GWge4D-VK2067f8.roa File: 9KcHIAUvzuR2GWge4D-VK2067f8.roa (raw, json) Hash identifier: 9sijw09CpBSxcD1XyR49IxKSXJ+lbUtfOT6XCsfhPs4= Subject key identifier: F4:A7:07:20:05:2F:CE:E4:76:19:68:1E:E0:3F:95:2B:6D:3A:ED:FF Certificate issuer: /CN=bfb097a36c2325d1031ff4091ba00a86459d4288 Certificate serial: 019B7BA3E3D6543213D0BD83A578B85F06EC Authority key identifier: BF:B0:97:A3:6C:23:25:D1:03:1F:F4:09:1B:A0:0A:86:45:9D:42:88 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/v7CXo2wjJdEDH_QJG6AKhkWdQog.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/27/f2c5e8-8d37-4838-a33b-ecc49bdc2ad8/1/9KcHIAUvzuR2GWge4D-VK2067f8.roa Signing time: Thu 01 Jan 2026 22:18:16 +0000 ROA not before: Thu 01 Jan 2026 22:18:16 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 42232 IP address blocks: 91.83.112.0/21 maxlen: 24 213.163.9.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/27/f2c5e8-8d37-4838-a33b-ecc49bdc2ad8/1/v7CXo2wjJdEDH_QJG6AKhkWdQog.crl rsync://rpki.ripe.net/repository/DEFAULT/27/f2c5e8-8d37-4838-a33b-ecc49bdc2ad8/1/v7CXo2wjJdEDH_QJG6AKhkWdQog.mft rsync://rpki.ripe.net/repository/DEFAULT/v7CXo2wjJdEDH_QJG6AKhkWdQog.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 03:00:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7b:a3:e3:d6:54:32:13:d0:bd:83:a5:78:b8:5f:06:ec Signature Algorithm: sha256WithRSAEncryption Issuer: CN=bfb097a36c2325d1031ff4091ba00a86459d4288 Validity Not Before: Jan 1 22:18:16 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=f4a70720052fcee47619681ee03f952b6d3aedff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:97:08:e1:b8:50:f0:00:c6:89:a1:67:07:2b:fb: d4:c2:4a:6f:92:ca:fb:e0:98:ed:60:51:2d:56:a8: f8:58:ed:d2:86:28:1e:83:f8:01:ef:a6:75:30:96: cb:c8:37:eb:bc:01:4e:81:75:a0:47:89:e7:ad:89: 8f:ca:3d:07:2b:40:36:d0:83:d8:d2:05:21:c2:40: e2:2f:b4:a2:50:7a:e8:2a:62:20:c9:7c:2c:96:f9: d9:15:02:b4:f2:3c:f5:e2:ff:d5:83:c0:a2:1d:e4: 72:10:dd:3e:5a:c2:b5:73:fc:f6:cb:17:80:83:32: f8:af:4c:a3:05:8e:21:ee:d6:6d:04:66:8e:ef:4c: 5e:6d:2e:db:8d:ad:6a:3c:4c:60:4b:9c:8b:49:ee: 5a:fb:3d:88:45:eb:a6:ca:61:b8:1d:7e:03:00:8c: 13:62:19:3e:f4:3a:62:79:5c:2c:25:5f:04:62:71: ec:1b:1e:88:2e:2d:7c:a3:c0:56:6f:74:c6:b1:1a: 42:e8:1c:a0:3d:4c:d6:90:4a:88:6c:0b:b7:5b:eb: ee:93:a8:24:63:87:f0:85:29:12:a9:f9:2b:64:45: 3d:16:bd:79:a7:0a:2e:00:d4:16:53:40:75:56:02: 1e:ea:0a:2b:1b:ef:4c:5a:97:ac:bc:f0:32:bc:af: 0a:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F4:A7:07:20:05:2F:CE:E4:76:19:68:1E:E0:3F:95:2B:6D:3A:ED:FF X509v3 Authority Key Identifier: keyid:BF:B0:97:A3:6C:23:25:D1:03:1F:F4:09:1B:A0:0A:86:45:9D:42:88 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/v7CXo2wjJdEDH_QJG6AKhkWdQog.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/27/f2c5e8-8d37-4838-a33b-ecc49bdc2ad8/1/9KcHIAUvzuR2GWge4D-VK2067f8.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/27/f2c5e8-8d37-4838-a33b-ecc49bdc2ad8/1/v7CXo2wjJdEDH_QJG6AKhkWdQog.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 91.83.112.0/21 213.163.9.0/24 Signature Algorithm: sha256WithRSAEncryption 56:b7:50:8c:14:8f:10:50:32:f1:d6:4e:c6:11:f1:d4:7e:4d: 17:49:b4:8f:10:eb:59:c0:31:35:38:bc:5c:93:5a:ee:c5:f3: 35:34:24:5f:42:f4:fe:de:c6:21:c4:f2:42:45:0d:d8:04:39: 6c:18:0d:ec:96:90:00:e0:51:0f:48:91:6d:73:17:ca:31:b9: 83:b6:4b:94:97:1b:d6:e6:94:c3:bd:d5:ac:14:e4:a8:94:46: 37:c3:a0:d1:5a:de:4a:89:43:37:e4:96:3e:95:4d:32:10:2a: 0d:37:be:51:bc:05:ca:8a:7e:db:e1:c1:e5:fb:59:19:c6:05: a4:40:d1:8c:cc:77:ae:ee:a1:e8:ee:0a:58:15:fc:32:7d:71: c7:b0:2a:1a:f6:90:05:43:7d:ad:74:e8:5d:f0:e1:e3:dd:77: b0:dc:bb:cd:10:0d:c0:95:9b:9c:5b:0b:f3:99:87:39:35:cd: 6e:db:e5:87:94:e7:74:24:e0:da:b7:89:ac:0e:f1:cb:38:b9: 0c:1b:f4:0b:06:49:6d:3e:0c:ab:a1:3a:16:1b:c9:ae:10:a1: b6:80:6e:95:80:f1:43:16:53:30:65:9b:bb:ce:e0:78:6e:02: ff:16:85:b1:fd:78:63:bf:84:35:4c:0b:39:0a:c6:11:22:11: 38:da:8d:00 -----BEGIN CERTIFICATE----- MIIFAzCCA+ugAwIBAgISAZt7o+PWVDIT0L2DpXi4XwbsMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGJmYjA5N2EzNmMyMzI1ZDEwMzFmZjQwOTFiYTAwYTg2NDU5 ZDQyODgwHhcNMjYwMTAxMjIxODE2WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhmNGE3MDcyMDA1MmZjZWU0NzYxOTY4MWVlMDNmOTUyYjZkM2FlZGZmMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAlwjhuFDwAMaJoWcHK/vUwkpvksr7 4JjtYFEtVqj4WO3Shigeg/gB76Z1MJbLyDfrvAFOgXWgR4nnrYmPyj0HK0A20IPY 0gUhwkDiL7SiUHroKmIgyXwslvnZFQK08jz14v/Vg8CiHeRyEN0+WsK1c/z2yxeA gzL4r0yjBY4h7tZtBGaO70xebS7bja1qPExgS5yLSe5a+z2IReumymG4HX4DAIwT Yhk+9DpieVwsJV8EYnHsGx6ILi18o8BWb3TGsRpC6BygPUzWkEqIbAu3W+vuk6gk Y4fwhSkSqfkrZEU9Fr15pwouANQWU0B1VgIe6gorG+9MWpesvPAyvK8KQQIDAQAB o4ICDzCCAgswHQYDVR0OBBYEFPSnByAFL87kdhloHuA/lSttOu3/MB8GA1UdIwQY MBaAFL+wl6NsIyXRAx/0CRugCoZFnUKIMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvdjdDWG8yd2pKZEVESF9RSkc2QUtoa1dkUW9nLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yNy9mMmM1ZTgtOGQzNy00ODM4LWEzM2It ZWNjNDliZGMyYWQ4LzEvOUtjSElBVXZ6dVIyR1dnZTRELVZLMjA2N2Y4LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yNy9mMmM1ZTgtOGQzNy00ODM4LWEzM2ItZWNjNDliZGMyYWQ4 LzEvdjdDWG8yd2pKZEVESF9RSkc2QUtoa1dkUW9nLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQDW1NwAwQA 1aMJMA0GCSqGSIb3DQEBCwUAA4IBAQBWt1CMFI8QUDLx1k7GEfHUfk0XSbSPEOtZ wDE1OLxck1ruxfM1NCRfQvT+3sYhxPJCRQ3YBDlsGA3slpAA4FEPSJFtcxfKMbmD tkuUlxvW5pTDvdWsFOSolEY3w6DRWt5KiUM35JY+lU0yECoNN75RvAXKin7b4cHl +1kZxgWkQNGMzHeu7qHo7gpYFfwyfXHHsCoa9pAFQ32tdOhd8OHj3Xew3LvNEA3A lZucWwvzmYc5Nc1u2+WHlOd0JODat4msDvHLOLkMG/QLBkltPgyroToWG8muEKG2 gG6VgPFDFlMwZZu7zuB4bgL/FoWx/Xhjv4Q1TAs5CsYRIhE42o0A -----END CERTIFICATE-----Generated at Sun Jan 25 12:18:12 2026 by rpki-client