This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/65/321cdc-2143-4b5c-9733-16699c96dd5e/1/9wfxcyasgblDs3pi4JFLKmIpdn8.roa File: 9wfxcyasgblDs3pi4JFLKmIpdn8.roa (raw, json) Hash identifier: iCz4FA+NWOHhJfO24yjX4s4reLHLqX6hq4HbiC0XsdY= Subject key identifier: F7:07:F1:73:26:AC:81:B9:43:B3:7A:62:E0:91:4B:2A:62:29:76:7F Certificate issuer: /CN=885b857706dac54e20ca0d11bd6416cb634203b4 Certificate serial: 019B77C6AFDBCFEE2A54F3011553B8BEBD83 Authority key identifier: 88:5B:85:77:06:DA:C5:4E:20:CA:0D:11:BD:64:16:CB:63:42:03:B4 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iFuFdwbaxU4gyg0RvWQWy2NCA7Q.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/65/321cdc-2143-4b5c-9733-16699c96dd5e/1/9wfxcyasgblDs3pi4JFLKmIpdn8.roa Signing time: Thu 01 Jan 2026 04:17:48 +0000 ROA not before: Thu 01 Jan 2026 04:17:48 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 206247 IP address blocks: 109.248.5.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/65/321cdc-2143-4b5c-9733-16699c96dd5e/1/iFuFdwbaxU4gyg0RvWQWy2NCA7Q.crl rsync://rpki.ripe.net/repository/DEFAULT/65/321cdc-2143-4b5c-9733-16699c96dd5e/1/iFuFdwbaxU4gyg0RvWQWy2NCA7Q.mft rsync://rpki.ripe.net/repository/DEFAULT/iFuFdwbaxU4gyg0RvWQWy2NCA7Q.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 07:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:77:c6:af:db:cf:ee:2a:54:f3:01:15:53:b8:be:bd:83 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=885b857706dac54e20ca0d11bd6416cb634203b4 Validity Not Before: Jan 1 04:17:48 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=f707f17326ac81b943b37a62e0914b2a6229767f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:a2:1b:86:24:d8:62:0f:b3:7d:a1:a5:da:f2: f5:65:a8:66:ab:81:95:aa:7d:fd:82:d8:17:d5:13: f3:a3:a0:e0:40:ed:dd:5a:30:9e:77:f4:79:45:1d: b6:98:d1:3f:dc:10:84:63:91:64:d1:95:bf:3e:ec: 46:cc:8a:51:95:9e:1d:d8:7e:d5:89:c5:30:a0:b3: e7:1a:d5:9a:84:5a:f2:24:80:91:1f:6c:2f:98:56: dd:a7:af:8d:36:d7:d4:03:88:07:b2:7b:2f:3b:48: 8f:02:71:63:d9:6e:da:f7:48:61:66:a3:18:d5:78: a5:06:c3:fe:01:19:7a:76:19:d7:cf:66:13:ab:a1: 4e:13:48:70:88:35:f8:9d:d2:a2:dd:60:b3:c6:f7: a1:04:44:9f:84:09:96:0d:e7:6e:74:34:76:fe:91: 52:2c:e7:29:b6:f2:c4:69:bb:61:dd:ed:fe:19:01: 24:9b:cb:69:3f:19:dc:c8:7b:01:3d:8d:ff:b5:a7: be:16:cc:24:1a:ac:fe:74:0e:9d:8d:ca:a6:e6:d5: c4:c8:ea:b0:3b:26:3c:31:62:fc:cc:5a:71:81:93: d4:20:8d:ef:5e:57:11:7b:8c:2a:6b:ea:d5:7d:7d: 7a:fb:98:52:7a:6a:c6:2d:b5:d8:2b:47:3f:c9:32: fd:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F7:07:F1:73:26:AC:81:B9:43:B3:7A:62:E0:91:4B:2A:62:29:76:7F X509v3 Authority Key Identifier: keyid:88:5B:85:77:06:DA:C5:4E:20:CA:0D:11:BD:64:16:CB:63:42:03:B4 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iFuFdwbaxU4gyg0RvWQWy2NCA7Q.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/65/321cdc-2143-4b5c-9733-16699c96dd5e/1/9wfxcyasgblDs3pi4JFLKmIpdn8.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/65/321cdc-2143-4b5c-9733-16699c96dd5e/1/iFuFdwbaxU4gyg0RvWQWy2NCA7Q.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 109.248.5.0/24 Signature Algorithm: sha256WithRSAEncryption a3:44:f2:46:fa:51:aa:d8:97:9b:41:07:de:cf:48:81:d5:c4: 1c:54:84:6a:6d:67:11:2a:39:fd:e7:09:8f:ec:5b:bc:e4:81: ae:d3:81:c1:b8:3c:25:ef:a8:2f:a5:0a:ff:9f:e8:c1:c6:60: 83:b0:8b:0c:2f:f4:94:06:0e:a9:48:7b:aa:d2:ce:9c:80:cf: db:53:e3:51:a4:70:e8:0c:82:17:af:a5:80:c0:ee:4e:7d:f8: a6:a0:fe:a2:ec:7c:7d:48:a4:99:9f:61:da:41:6e:3a:d2:de: cd:20:36:d8:92:63:72:64:89:3a:69:09:b0:2a:da:b2:af:57: 92:fb:80:bc:58:69:c1:03:49:e8:39:d1:ec:a4:30:b4:3d:60: 28:c8:51:13:89:3f:4c:d7:19:4a:d3:54:11:0a:a0:ee:f6:c2: d1:76:23:51:b8:3d:af:90:be:0f:3c:52:f2:17:5a:29:ed:51: cb:57:b1:cd:15:44:98:02:db:34:75:b0:8e:a6:d0:6f:17:ec: 0d:90:71:c6:41:cd:13:34:0a:5f:e4:7e:3a:fd:f7:08:c7:63: e6:31:4b:f9:9a:b9:de:f5:38:a8:14:c3:52:77:eb:c7:62:69: fe:de:eb:dc:43:9b:b7:46:21:23:4d:ed:c8:a6:dd:a4:9c:a5: 02:08:39:28 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt3xq/bz+4qVPMBFVO4vr2DMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDg4NWI4NTc3MDZkYWM1NGUyMGNhMGQxMWJkNjQxNmNiNjM0 MjAzYjQwHhcNMjYwMTAxMDQxNzQ4WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhmNzA3ZjE3MzI2YWM4MWI5NDNiMzdhNjJlMDkxNGIyYTYyMjk3NjdmMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0aIbhiTYYg+zfaGl2vL1Zahmq4GV qn39gtgX1RPzo6DgQO3dWjCed/R5RR22mNE/3BCEY5Fk0ZW/PuxGzIpRlZ4d2H7V icUwoLPnGtWahFryJICRH2wvmFbdp6+NNtfUA4gHsnsvO0iPAnFj2W7a90hhZqMY 1XilBsP+ARl6dhnXz2YTq6FOE0hwiDX4ndKi3WCzxvehBESfhAmWDedudDR2/pFS LOcptvLEabth3e3+GQEkm8tpPxncyHsBPY3/tae+FswkGqz+dA6djcqm5tXEyOqw OyY8MWL8zFpxgZPUII3vXlcRe4wqa+rVfX16+5hSemrGLbXYK0c/yTL9YQIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFPcH8XMmrIG5Q7N6YuCRSypiKXZ/MB8GA1UdIwQY MBaAFIhbhXcG2sVOIMoNEb1kFstjQgO0MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvaUZ1RmR3YmF4VTRneWcwUnZXUVd5Mk5DQTdRLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82NS8zMjFjZGMtMjE0My00YjVjLTk3MzMt MTY2OTljOTZkZDVlLzEvOXdmeGN5YXNnYmxEczNwaTRKRkxLbUlwZG44LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC82NS8zMjFjZGMtMjE0My00YjVjLTk3MzMtMTY2OTljOTZkZDVl LzEvaUZ1RmR3YmF4VTRneWcwUnZXUVd5Mk5DQTdRLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAbfgFMA0G CSqGSIb3DQEBCwUAA4IBAQCjRPJG+lGq2JebQQfez0iB1cQcVIRqbWcRKjn95wmP 7Fu85IGu04HBuDwl76gvpQr/n+jBxmCDsIsML/SUBg6pSHuq0s6cgM/bU+NRpHDo DIIXr6WAwO5OffimoP6i7Hx9SKSZn2HaQW460t7NIDbYkmNyZIk6aQmwKtqyr1eS +4C8WGnBA0noOdHspDC0PWAoyFETiT9M1xlK01QRCqDu9sLRdiNRuD2vkL4PPFLy F1op7VHLV7HNFUSYAts0dbCOptBvF+wNkHHGQc0TNApf5H46/fcIx2PmMUv5mrne 9TioFMNSd+vHYmn+3uvcQ5u3RiEjTe3Ipt2knKUCCDko -----END CERTIFICATE-----Generated at Sun Jan 25 17:41:31 2026 by rpki-client