This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/84/962fb1-3df0-4ec2-b50a-b36a24d39427/1/PvOMcu6kkYu1VaD3XwX_1ePatyY.roa File: PvOMcu6kkYu1VaD3XwX_1ePatyY.roa (raw, json) Hash identifier: FOWoO0sh/7LnR+o/5+ENcU9IVroksYKfAOK89ZHzs8M= Subject key identifier: 3E:F3:8C:72:EE:A4:91:8B:B5:55:A0:F7:5F:05:FF:D5:E3:DA:B7:26 Certificate issuer: /CN=835bc9bb547e27788d221bc8bbd5fb02e024480f Certificate serial: 019B76EB63E667096D8F8DEF31D55946F242 Authority key identifier: 83:5B:C9:BB:54:7E:27:78:8D:22:1B:C8:BB:D5:FB:02:E0:24:48:0F Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/g1vJu1R-J3iNIhvIu9X7AuAkSA8.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/84/962fb1-3df0-4ec2-b50a-b36a24d39427/1/PvOMcu6kkYu1VaD3XwX_1ePatyY.roa Signing time: Thu 01 Jan 2026 00:18:16 +0000 ROA not before: Thu 01 Jan 2026 00:18:16 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 200639 IP address blocks: 185.186.9.0/24 maxlen: 24 185.186.10.0/24 maxlen: 24 2a0b:6b84::/32 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/84/962fb1-3df0-4ec2-b50a-b36a24d39427/1/g1vJu1R-J3iNIhvIu9X7AuAkSA8.crl rsync://rpki.ripe.net/repository/DEFAULT/84/962fb1-3df0-4ec2-b50a-b36a24d39427/1/g1vJu1R-J3iNIhvIu9X7AuAkSA8.mft rsync://rpki.ripe.net/repository/DEFAULT/g1vJu1R-J3iNIhvIu9X7AuAkSA8.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 07:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:76:eb:63:e6:67:09:6d:8f:8d:ef:31:d5:59:46:f2:42 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=835bc9bb547e27788d221bc8bbd5fb02e024480f Validity Not Before: Jan 1 00:18:16 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=3ef38c72eea4918bb555a0f75f05ffd5e3dab726 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9c:be:d4:cf:65:89:5f:3a:1c:66:86:01:27:d4: 1a:8e:37:c4:8e:b3:93:57:26:df:23:31:89:c8:3d: 6c:c7:50:32:7d:f2:4b:55:4a:68:4c:52:d7:36:71: c5:3d:79:27:d5:58:21:f1:b2:9b:a5:36:dd:2e:77: c1:41:a2:a2:db:c5:89:49:d4:b6:52:03:ea:c5:45: 41:e9:79:b4:8b:78:44:af:24:f0:40:05:35:42:da: 30:04:60:c9:d7:f4:7d:6f:b8:82:6b:45:c1:4e:f6: e3:55:b3:62:75:83:d8:b2:5f:21:f3:7f:82:61:a4: 63:56:a8:5d:ab:8a:5d:29:54:d4:28:db:25:44:51: ec:fc:88:c5:6e:96:1a:08:a3:12:1a:ac:0c:25:29: 17:a3:de:90:47:88:27:7e:4c:5d:9c:ed:c2:8f:0e: 9c:c6:2c:9d:53:57:ff:17:20:0c:ec:7c:c1:6c:a1: cc:a7:b9:d5:42:2a:24:77:a1:d4:6d:27:ec:f1:2b: 7b:92:c1:74:a9:a3:66:9b:21:36:21:41:0e:7f:2e: 22:ff:80:1e:03:03:95:4c:fd:c7:eb:28:88:14:9f: ca:a8:92:83:fd:60:e0:4c:7f:80:e2:4b:c9:6f:8a: f4:43:01:2b:ea:2e:ae:00:53:e6:6a:37:1d:85:2f: 43:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3E:F3:8C:72:EE:A4:91:8B:B5:55:A0:F7:5F:05:FF:D5:E3:DA:B7:26 X509v3 Authority Key Identifier: keyid:83:5B:C9:BB:54:7E:27:78:8D:22:1B:C8:BB:D5:FB:02:E0:24:48:0F X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/g1vJu1R-J3iNIhvIu9X7AuAkSA8.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/84/962fb1-3df0-4ec2-b50a-b36a24d39427/1/PvOMcu6kkYu1VaD3XwX_1ePatyY.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/84/962fb1-3df0-4ec2-b50a-b36a24d39427/1/g1vJu1R-J3iNIhvIu9X7AuAkSA8.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.186.9.0-185.186.10.255 IPv6: 2a0b:6b84::/32 Signature Algorithm: sha256WithRSAEncryption a0:41:fe:22:a1:aa:60:46:21:e7:2e:16:c2:12:f4:07:79:ce: b3:a0:d7:7d:92:66:48:96:60:82:d1:f5:61:a0:d8:fa:94:d5: a2:f3:97:1e:a5:ca:3d:d6:8c:02:9a:ff:20:05:92:25:cf:a2: 17:47:eb:2a:2e:91:f5:5f:f3:71:18:31:8d:fa:35:e3:ee:f5: 6d:62:15:be:3c:5e:54:de:79:92:23:5b:08:76:89:77:c6:81: 3d:3d:bf:de:a0:43:f9:4c:03:f7:b2:79:2a:59:8e:2c:83:d0: fe:50:e4:d3:cb:a5:97:2b:37:23:58:34:ff:7e:42:67:2f:6d: fb:28:84:ed:db:9d:16:c4:b5:0a:06:3e:c4:e9:e7:a0:ef:f9: b7:d7:76:90:2e:57:d6:a1:a9:f9:ea:ea:89:ba:85:e5:33:42: 5a:9d:77:03:ca:21:24:46:70:66:43:0a:e0:f1:f2:d7:c5:61: 5a:32:f8:7d:fd:f8:c5:c6:69:f2:5d:07:53:79:6f:11:10:da: 71:23:5c:fe:c6:b5:b3:d6:50:48:3d:7c:82:0e:90:49:f6:22: 74:bb:2c:8e:5e:18:86:84:5f:69:77:bd:a6:07:41:d7:f9:b8: 2a:17:d4:db:66:96:7f:8f:80:55:4f:3f:f7:ab:59:09:e8:e5: b9:37:b9:92 -----BEGIN CERTIFICATE----- MIIFFDCCA/ygAwIBAgISAZt262PmZwltj43vMdVZRvJCMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDgzNWJjOWJiNTQ3ZTI3Nzg4ZDIyMWJjOGJiZDVmYjAyZTAy NDQ4MGYwHhcNMjYwMTAxMDAxODE2WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygzZWYzOGM3MmVlYTQ5MThiYjU1NWEwZjc1ZjA1ZmZkNWUzZGFiNzI2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnL7Uz2WJXzocZoYBJ9QajjfEjrOT VybfIzGJyD1sx1AyffJLVUpoTFLXNnHFPXkn1Vgh8bKbpTbdLnfBQaKi28WJSdS2 UgPqxUVB6Xm0i3hEryTwQAU1QtowBGDJ1/R9b7iCa0XBTvbjVbNidYPYsl8h83+C YaRjVqhdq4pdKVTUKNslRFHs/IjFbpYaCKMSGqwMJSkXo96QR4gnfkxdnO3Cjw6c xiydU1f/FyAM7HzBbKHMp7nVQiokd6HUbSfs8St7ksF0qaNmmyE2IUEOfy4i/4Ae AwOVTP3H6yiIFJ/KqJKD/WDgTH+A4kvJb4r0QwEr6i6uAFPmajcdhS9DgwIDAQAB o4ICIDCCAhwwHQYDVR0OBBYEFD7zjHLupJGLtVWg918F/9Xj2rcmMB8GA1UdIwQY MBaAFINbybtUfid4jSIbyLvV+wLgJEgPMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvZzF2SnUxUi1KM2lOSWh2SXU5WDdBdUFrU0E4LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84NC85NjJmYjEtM2RmMC00ZWMyLWI1MGEt YjM2YTI0ZDM5NDI3LzEvUHZPTWN1NmtrWXUxVmFEM1h3WF8xZVBhdHlZLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC84NC85NjJmYjEtM2RmMC00ZWMyLWI1MGEtYjM2YTI0ZDM5NDI3 LzEvZzF2SnUxUi1KM2lOSWh2SXU5WDdBdUFrU0E4LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMDYGCCsGAQUFBwEHAQH/BCcwJTAUBAIAATAOMAwDBAC5ugkD BAC5ugowDQQCAAIwBwMFACoLa4QwDQYJKoZIhvcNAQELBQADggEBAKBB/iKhqmBG IecuFsIS9Ad5zrOg132SZkiWYILR9WGg2PqU1aLzlx6lyj3WjAKa/yAFkiXPohdH 6youkfVf83EYMY36NePu9W1iFb48XlTeeZIjWwh2iXfGgT09v96gQ/lMA/eyeSpZ jiyD0P5Q5NPLpZcrNyNYNP9+QmcvbfsohO3bnRbEtQoGPsTp56Dv+bfXdpAuV9ah qfnq6om6heUzQlqddwPKISRGcGZDCuDx8tfFYVoy+H39+MXGafJdB1N5bxEQ2nEj XP7GtbPWUEg9fIIOkEn2InS7LI5eGIaEX2l3vaYHQdf5uCoX1Ntmln+PgFVPP/er WQno5bk3uZI= -----END CERTIFICATE-----Generated at Sun Jan 25 15:29:05 2026 by rpki-client