This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/78/da3398-6698-45f2-baae-92e25fe16331/1/F9yBuw9Mtu0eSjnV1WRrQoENNhQ.roa File: F9yBuw9Mtu0eSjnV1WRrQoENNhQ.roa (raw, json) Hash identifier: vip30qGvUlJCn8YI2/XE+sq1zV6qLDkPodO4iGT/wTc= Subject key identifier: 17:DC:81:BB:0F:4C:B6:ED:1E:4A:39:D5:D5:64:6B:42:81:0D:36:14 Certificate issuer: /CN=f8e62634e1bd5133a9de4512ae98cad1b2219b59 Certificate serial: 019B77595C71DCF0A4749B851A9646759681 Authority key identifier: F8:E6:26:34:E1:BD:51:33:A9:DE:45:12:AE:98:CA:D1:B2:21:9B:59 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-OYmNOG9UTOp3kUSrpjK0bIhm1k.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/78/da3398-6698-45f2-baae-92e25fe16331/1/F9yBuw9Mtu0eSjnV1WRrQoENNhQ.roa Signing time: Thu 01 Jan 2026 02:18:23 +0000 ROA not before: Thu 01 Jan 2026 02:18:23 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 59735 IP address blocks: 89.46.5.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/78/da3398-6698-45f2-baae-92e25fe16331/1/1-OYmNOG9UTOp3kUSrpjK0bIhm1k.crl rsync://rpki.ripe.net/repository/DEFAULT/78/da3398-6698-45f2-baae-92e25fe16331/1/1-OYmNOG9UTOp3kUSrpjK0bIhm1k.mft rsync://rpki.ripe.net/repository/DEFAULT/1-OYmNOG9UTOp3kUSrpjK0bIhm1k.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 07:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:77:59:5c:71:dc:f0:a4:74:9b:85:1a:96:46:75:96:81 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=f8e62634e1bd5133a9de4512ae98cad1b2219b59 Validity Not Before: Jan 1 02:18:23 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=17dc81bb0f4cb6ed1e4a39d5d5646b42810d3614 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:97:5f:61:d4:d5:65:b2:df:97:e1:69:41:e0:b2: cb:43:f6:4e:1d:70:71:02:e4:39:30:95:9e:d7:77: d2:0f:b3:0b:9c:09:fd:a6:d2:7e:a5:54:5d:08:25: 84:13:03:cc:35:2b:7f:3e:c1:ab:39:8e:fd:1e:06: a3:b0:3f:8b:12:2e:df:94:5f:08:52:29:b7:19:5e: 8d:1c:f3:35:31:2c:3f:9a:53:43:2e:e1:19:ac:f7: f2:16:3b:b0:1e:b5:11:60:8c:20:04:0a:44:8a:92: 08:90:f6:f6:14:44:f2:01:23:38:8f:af:ff:c4:ef: 14:87:48:43:57:09:11:2d:71:1c:e9:30:41:fd:d4: e2:61:97:0e:b8:b4:25:ba:80:b7:83:3f:a6:e2:b6: 8c:75:0d:ae:83:57:4a:57:4e:4f:06:af:31:b3:2f: 4e:65:04:d7:c1:c5:19:36:71:9a:54:09:36:e8:14: 74:55:21:2a:4b:42:ca:33:6c:e7:de:b5:f2:c3:98: 5d:d0:14:81:64:40:e5:1e:65:50:6b:47:e0:6d:24: 89:03:f3:4e:18:dd:ff:e0:1a:70:fb:89:21:6b:cf: 1f:7a:d0:33:7d:17:86:26:e7:4e:f0:de:97:7e:68: d1:99:88:8d:c1:05:04:5a:11:6a:28:60:f6:54:f9: 11:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 17:DC:81:BB:0F:4C:B6:ED:1E:4A:39:D5:D5:64:6B:42:81:0D:36:14 X509v3 Authority Key Identifier: keyid:F8:E6:26:34:E1:BD:51:33:A9:DE:45:12:AE:98:CA:D1:B2:21:9B:59 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-OYmNOG9UTOp3kUSrpjK0bIhm1k.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/78/da3398-6698-45f2-baae-92e25fe16331/1/F9yBuw9Mtu0eSjnV1WRrQoENNhQ.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/78/da3398-6698-45f2-baae-92e25fe16331/1/1-OYmNOG9UTOp3kUSrpjK0bIhm1k.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 89.46.5.0/24 Signature Algorithm: sha256WithRSAEncryption 32:df:c7:73:40:49:44:39:06:13:d4:2f:07:a8:c1:8a:82:7f: ba:ec:e3:06:45:c5:c1:ac:f6:79:a7:11:a4:69:73:cb:3a:29: ee:f8:6a:de:d7:5b:8d:1c:10:d4:06:1c:eb:3b:58:f4:68:c4: 7c:4b:b1:a6:14:43:47:16:fc:cb:5c:3f:07:14:0f:a4:d8:ec: f1:f2:39:aa:e9:0c:e8:42:a8:7b:d4:39:2c:4e:0e:ea:f2:7e: 2a:61:06:e1:af:45:d5:b9:c3:b6:d9:8a:f2:fc:34:ae:41:85: 5e:f6:f6:90:44:26:5d:36:1c:be:e2:ab:bb:4a:4c:ef:ca:75: 55:b8:21:f5:82:8e:15:07:d8:0e:f7:d6:52:59:8d:50:1e:ff: 10:48:96:b0:3c:a4:9a:66:03:b3:1c:3e:b8:2a:75:57:ad:33: 03:dc:e7:02:27:62:ee:2f:35:9d:6f:a6:66:df:fa:ca:5d:51: 5c:17:03:3e:38:17:16:b2:69:bd:04:68:eb:67:03:6d:2c:39: 4e:aa:44:cc:41:13:0e:1d:53:ea:c9:25:8a:0f:fc:c5:e2:12: 77:88:e0:14:61:b8:62:41:0c:6d:06:4a:b0:eb:b9:3b:f1:8d: c7:04:6f:78:e6:8d:3b:5c:77:81:ea:9c:d7:d1:77:f8:80:f0: 4b:36:cf:85 -----BEGIN CERTIFICATE----- MIIE/zCCA+egAwIBAgISAZt3WVxx3PCkdJuFGpZGdZaBMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGY4ZTYyNjM0ZTFiZDUxMzNhOWRlNDUxMmFlOThjYWQxYjIy MTliNTkwHhcNMjYwMTAxMDIxODIzWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygxN2RjODFiYjBmNGNiNmVkMWU0YTM5ZDVkNTY0NmI0MjgxMGQzNjE0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAl19h1NVlst+X4WlB4LLLQ/ZOHXBx AuQ5MJWe13fSD7MLnAn9ptJ+pVRdCCWEEwPMNSt/PsGrOY79HgajsD+LEi7flF8I Uim3GV6NHPM1MSw/mlNDLuEZrPfyFjuwHrURYIwgBApEipIIkPb2FETyASM4j6// xO8Uh0hDVwkRLXEc6TBB/dTiYZcOuLQluoC3gz+m4raMdQ2ug1dKV05PBq8xsy9O ZQTXwcUZNnGaVAk26BR0VSEqS0LKM2zn3rXyw5hd0BSBZEDlHmVQa0fgbSSJA/NO GN3/4Bpw+4kha88fetAzfReGJudO8N6XfmjRmYiNwQUEWhFqKGD2VPkR3wIDAQAB o4ICCzCCAgcwHQYDVR0OBBYEFBfcgbsPTLbtHko51dVka0KBDTYUMB8GA1UdIwQY MBaAFPjmJjThvVEzqd5FEq6YytGyIZtZMA4GA1UdDwEB/wQEAwIHgDBlBggrBgEF BQcBAQRZMFcwVQYIKwYBBQUHMAKGSXJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvMS1PWW1OT0c5VVRPcDNrVVNycGpLMGJJaG0xay5jZXIw gY0GCCsGAQUFBwELBIGAMH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBl Lm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNzgvZGEzMzk4LTY2OTgtNDVmMi1iYWFl LTkyZTI1ZmUxNjMzMS8xL0Y5eUJ1dzlNdHUwZVNqblYxV1JyUW9FTk5oUS5yb2Ew gYIGA1UdHwR7MHkwd6B1oHOGcXJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0 b3J5L0RFRkFVTFQvNzgvZGEzMzk4LTY2OTgtNDVmMi1iYWFlLTkyZTI1ZmUxNjMz MS8xLzEtT1ltTk9HOVVUT3Aza1VTcnBqSzBiSWhtMWsuY3JsMBgGA1UdIAEB/wQO MAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABZLgUw DQYJKoZIhvcNAQELBQADggEBADLfx3NASUQ5BhPULweowYqCf7rs4wZFxcGs9nmn EaRpc8s6Ke74at7XW40cENQGHOs7WPRoxHxLsaYUQ0cW/MtcPwcUD6TY7PHyOarp DOhCqHvUOSxODuryfiphBuGvRdW5w7bZivL8NK5BhV729pBEJl02HL7iq7tKTO/K dVW4IfWCjhUH2A731lJZjVAe/xBIlrA8pJpmA7McPrgqdVetMwPc5wInYu4vNZ1v pmbf+spdUVwXAz44Fxayab0EaOtnA20sOU6qRMxBEw4dU+rJJYoP/MXiEneI4BRh uGJBDG0GSrDruTvxjccEb3jmjTtcd4HqnNfRd/iA8Es2z4U= -----END CERTIFICATE-----Generated at Sun Jan 25 13:03:34 2026 by rpki-client