This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/90/4a9e5b-aa40-4dc2-8ded-a276ed0ba1bc/1/CdMLNjkWN_LbBmbtyqVRIvBxVHQ.roa File: CdMLNjkWN_LbBmbtyqVRIvBxVHQ.roa (raw, json) Hash identifier: 86QotpjDcKjFxnBx3ug0BvDhMYnHrgdBwrKCM9Nq8eg= Subject key identifier: 09:D3:0B:36:39:16:37:F2:DB:06:66:ED:CA:A5:51:22:F0:71:54:74 Certificate issuer: /CN=e9f4510444a17add7327146152943495ababb968 Certificate serial: 019B7BA47A280A2ACEB170FE7D2F613D6B39 Authority key identifier: E9:F4:51:04:44:A1:7A:DD:73:27:14:61:52:94:34:95:AB:AB:B9:68 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6fRRBEShet1zJxRhUpQ0lauruWg.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/90/4a9e5b-aa40-4dc2-8ded-a276ed0ba1bc/1/CdMLNjkWN_LbBmbtyqVRIvBxVHQ.roa Signing time: Thu 01 Jan 2026 22:18:55 +0000 ROA not before: Thu 01 Jan 2026 22:18:55 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 8758 IP address blocks: 185.168.143.0/24 maxlen: 24 2a0d:ec00::/29 maxlen: 29 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/90/4a9e5b-aa40-4dc2-8ded-a276ed0ba1bc/1/6fRRBEShet1zJxRhUpQ0lauruWg.crl rsync://rpki.ripe.net/repository/DEFAULT/90/4a9e5b-aa40-4dc2-8ded-a276ed0ba1bc/1/6fRRBEShet1zJxRhUpQ0lauruWg.mft rsync://rpki.ripe.net/repository/DEFAULT/6fRRBEShet1zJxRhUpQ0lauruWg.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 27 Jan 2026 07:01:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7b:a4:7a:28:0a:2a:ce:b1:70:fe:7d:2f:61:3d:6b:39 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=e9f4510444a17add7327146152943495ababb968 Validity Not Before: Jan 1 22:18:55 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=09d30b36391637f2db0666edcaa55122f0715474 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:07:2d:29:db:e6:a6:9b:a8:ee:73:c1:3b:d2: 14:5f:73:b1:e7:5f:0c:45:d9:45:5c:8a:78:01:dc: 91:b9:4b:aa:39:fc:ad:3a:57:b6:c9:b2:a2:98:63: f5:8a:75:df:9b:6c:49:9d:04:43:2e:f1:72:6b:a3: 47:70:b2:a9:d5:9a:a8:50:19:44:64:99:fa:3d:7f: 2d:f5:01:81:21:4e:19:51:c0:2a:c9:7a:93:c4:d4: a9:1c:39:7f:e3:37:94:62:0d:78:47:2d:67:52:08: a9:b4:3f:e2:93:33:79:e9:14:71:fa:b7:4c:2a:c1: da:7b:24:49:12:46:bc:ac:a3:62:ed:6f:e0:f5:c5: 66:88:ab:c5:89:37:3f:de:93:0d:6b:37:f0:73:51: 43:87:b1:f4:0a:6b:04:cd:39:c3:ac:4e:19:06:9b: ce:20:ae:59:e3:f7:d9:38:35:34:a6:3a:7a:da:00: 2e:46:4e:fd:41:56:6a:8f:fd:2d:a0:5c:d7:c0:11: 46:9b:81:c9:2a:42:94:a7:da:36:a3:94:de:6c:d4: d6:34:bc:a3:c3:dd:5b:93:42:72:3c:a3:2e:04:4c: 35:57:26:9a:d3:d7:ba:94:ce:ca:b3:3d:9f:10:08: c1:09:69:c7:25:d8:c7:17:d1:92:04:3a:2d:4a:76: 57:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 09:D3:0B:36:39:16:37:F2:DB:06:66:ED:CA:A5:51:22:F0:71:54:74 X509v3 Authority Key Identifier: keyid:E9:F4:51:04:44:A1:7A:DD:73:27:14:61:52:94:34:95:AB:AB:B9:68 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6fRRBEShet1zJxRhUpQ0lauruWg.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/90/4a9e5b-aa40-4dc2-8ded-a276ed0ba1bc/1/CdMLNjkWN_LbBmbtyqVRIvBxVHQ.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/90/4a9e5b-aa40-4dc2-8ded-a276ed0ba1bc/1/6fRRBEShet1zJxRhUpQ0lauruWg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.168.143.0/24 IPv6: 2a0d:ec00::/29 Signature Algorithm: sha256WithRSAEncryption 2e:50:d0:8c:ab:8d:11:34:e5:89:18:74:ee:fa:b7:a3:0d:54: ff:82:32:20:96:6f:69:25:48:5d:b1:4e:0a:2c:6f:0d:37:1a: 10:5c:29:97:a0:1c:45:1f:32:a6:80:c4:81:02:bb:9a:d3:2a: e0:f4:38:17:ad:73:1c:1b:38:75:ab:22:3f:09:64:cc:f1:76: 63:31:4e:e4:3f:2c:7f:e4:16:a1:4e:11:4d:60:ab:36:bd:da: ec:99:36:4d:cd:af:26:ef:cb:9f:c6:f7:99:77:c0:4b:e3:59: da:2f:f4:7d:20:1e:e6:b4:3a:75:58:05:e6:80:b2:18:cb:1b: e8:ad:77:e8:69:3d:62:c4:49:09:d1:dd:45:ae:87:4c:e6:fa: f1:f0:8a:72:8b:b2:ec:f5:50:ed:69:15:35:24:a1:9f:7b:a2: 04:37:3a:35:e9:bd:fa:65:ab:48:b4:47:a1:87:e5:e2:4d:1f: 17:4b:25:50:5c:a3:3a:17:e6:7d:7e:ee:9c:01:76:23:fe:23: d6:2c:0b:4a:4c:15:76:13:36:a1:3b:98:b4:0d:50:94:fe:b1: ea:6b:48:1e:33:a3:36:ab:db:b0:a0:35:d5:2c:49:90:99:81: 56:dd:2b:03:51:3e:17:f4:9c:65:43:ec:e3:b1:72:a5:d9:9d: be:f4:be:90 -----BEGIN CERTIFICATE----- MIIFDDCCA/SgAwIBAgISAZt7pHooCirOsXD+fS9hPWs5MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGU5ZjQ1MTA0NDRhMTdhZGQ3MzI3MTQ2MTUyOTQzNDk1YWJh YmI5NjgwHhcNMjYwMTAxMjIxODU1WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygwOWQzMGIzNjM5MTYzN2YyZGIwNjY2ZWRjYWE1NTEyMmYwNzE1NDc0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsQctKdvmppuo7nPBO9IUX3Ox518M RdlFXIp4AdyRuUuqOfytOle2ybKimGP1inXfm2xJnQRDLvFya6NHcLKp1ZqoUBlE ZJn6PX8t9QGBIU4ZUcAqyXqTxNSpHDl/4zeUYg14Ry1nUgiptD/ikzN56RRx+rdM KsHaeyRJEka8rKNi7W/g9cVmiKvFiTc/3pMNazfwc1FDh7H0CmsEzTnDrE4ZBpvO IK5Z4/fZODU0pjp62gAuRk79QVZqj/0toFzXwBFGm4HJKkKUp9o2o5TebNTWNLyj w91bk0JyPKMuBEw1Vyaa09e6lM7Ksz2fEAjBCWnHJdjHF9GSBDotSnZXAwIDAQAB o4ICGDCCAhQwHQYDVR0OBBYEFAnTCzY5Fjfy2wZm7cqlUSLwcVR0MB8GA1UdIwQY MBaAFOn0UQREoXrdcycUYVKUNJWrq7loMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvNmZSUkJFU2hldDF6SnhSaFVwUTBsYXVydVdnLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85MC80YTllNWItYWE0MC00ZGMyLThkZWQt YTI3NmVkMGJhMWJjLzEvQ2RNTE5qa1dOX0xiQm1idHlxVlJJdkJ4VkhRLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC85MC80YTllNWItYWE0MC00ZGMyLThkZWQtYTI3NmVkMGJhMWJj LzEvNmZSUkJFU2hldDF6SnhSaFVwUTBsYXVydVdnLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMC4GCCsGAQUFBwEHAQH/BB8wHTAMBAIAATAGAwQAuaiPMA0E AgACMAcDBQMqDewAMA0GCSqGSIb3DQEBCwUAA4IBAQAuUNCMq40RNOWJGHTu+rej DVT/gjIglm9pJUhdsU4KLG8NNxoQXCmXoBxFHzKmgMSBArua0yrg9DgXrXMcGzh1 qyI/CWTM8XZjMU7kPyx/5BahThFNYKs2vdrsmTZNza8m78ufxveZd8BL41naL/R9 IB7mtDp1WAXmgLIYyxvorXfoaT1ixEkJ0d1FrodM5vrx8Ipyi7Ls9VDtaRU1JKGf e6IENzo16b36ZatItEehh+XiTR8XSyVQXKM6F+Z9fu6cAXYj/iPWLAtKTBV2Ezah O5i0DVCU/rHqa0geM6M2q9uwoDXVLEmQmYFW3SsDUT4X9JxlQ+zjsXKl2Z2+9L6Q -----END CERTIFICATE-----Generated at Mon Jan 26 14:52:22 2026 by rpki-client