This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/92/8b532f-6782-4044-9efb-6725d98196c6/1/9k5FkeN_fWmrpsWfMXq1owb9sA8.roa File: 9k5FkeN_fWmrpsWfMXq1owb9sA8.roa (raw, json) Hash identifier: a4c0BaAc3yyNgPTpyNMZf5cnp0vSbewJvrUCORbkA94= Subject key identifier: F6:4E:45:91:E3:7F:7D:69:AB:A6:C5:9F:31:7A:B5:A3:06:FD:B0:0F Certificate issuer: /CN=d6ce49255f406a725593c62e1c408779586d56ef Certificate serial: 019B78A305CC1CF41820317F0BA4CBE1ED5A Authority key identifier: D6:CE:49:25:5F:40:6A:72:55:93:C6:2E:1C:40:87:79:58:6D:56:EF Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1s5JJV9AanJVk8YuHECHeVhtVu8.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/92/8b532f-6782-4044-9efb-6725d98196c6/1/9k5FkeN_fWmrpsWfMXq1owb9sA8.roa Signing time: Thu 01 Jan 2026 08:18:28 +0000 ROA not before: Thu 01 Jan 2026 08:18:28 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 43372 IP address blocks: 45.158.4.0/23 maxlen: 23 45.158.6.0/23 maxlen: 23 185.186.152.0/23 maxlen: 23 185.186.154.0/23 maxlen: 23 185.236.96.0/23 maxlen: 23 185.236.98.0/23 maxlen: 23 185.236.108.0/23 maxlen: 23 185.236.110.0/23 maxlen: 23 2a0b:7e80::/29 maxlen: 29 2a0b:7e80:0:100::/56 maxlen: 56 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/92/8b532f-6782-4044-9efb-6725d98196c6/1/1s5JJV9AanJVk8YuHECHeVhtVu8.crl rsync://rpki.ripe.net/repository/DEFAULT/92/8b532f-6782-4044-9efb-6725d98196c6/1/1s5JJV9AanJVk8YuHECHeVhtVu8.mft rsync://rpki.ripe.net/repository/DEFAULT/1s5JJV9AanJVk8YuHECHeVhtVu8.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 17:01:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:78:a3:05:cc:1c:f4:18:20:31:7f:0b:a4:cb:e1:ed:5a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d6ce49255f406a725593c62e1c408779586d56ef Validity Not Before: Jan 1 08:18:28 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=f64e4591e37f7d69aba6c59f317ab5a306fdb00f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:95:ee:1d:0e:a9:85:85:9c:1f:89:de:b3:27:9c: ea:8d:6f:bc:89:bb:3f:e8:f0:82:9e:08:b6:d9:02: 56:2b:6e:0b:9c:a2:75:a8:d8:b5:f8:5b:2b:20:a7: df:4d:50:1f:42:85:0f:82:3d:a2:00:89:37:28:1f: 7f:6a:bb:55:93:a4:b5:d4:1a:29:b9:ce:f6:81:11: ae:3e:ba:38:e5:68:a9:46:da:91:05:ff:9f:9f:86: 33:e8:53:2b:c8:58:96:d0:75:67:e0:88:5d:5c:eb: 33:fd:80:eb:e9:46:55:f3:5a:a1:01:74:88:a4:5c: 51:b8:31:06:69:b8:7b:fe:06:cf:30:0e:46:96:7c: 52:27:f3:2c:5c:08:e3:34:9b:ec:45:40:e9:6f:88: ed:28:16:05:3b:0b:c0:18:5a:6b:a5:44:2a:fa:94: b3:75:c4:75:1d:41:02:d8:a2:18:da:11:fd:4d:9c: da:80:fb:a2:f8:42:6c:59:cb:9f:9d:11:2e:4e:37: 90:89:b5:5c:f4:72:3c:57:c1:bf:67:e2:c2:e8:e3: 65:a1:3f:e4:ca:6f:3d:ef:ae:ab:4e:20:31:84:a0: d5:cb:2c:c1:bd:aa:9b:89:8f:f6:b3:e8:ac:aa:d9: 41:d2:02:26:cf:5a:fe:62:fc:22:e3:ba:70:2b:1b: d9:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F6:4E:45:91:E3:7F:7D:69:AB:A6:C5:9F:31:7A:B5:A3:06:FD:B0:0F X509v3 Authority Key Identifier: keyid:D6:CE:49:25:5F:40:6A:72:55:93:C6:2E:1C:40:87:79:58:6D:56:EF X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1s5JJV9AanJVk8YuHECHeVhtVu8.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/92/8b532f-6782-4044-9efb-6725d98196c6/1/9k5FkeN_fWmrpsWfMXq1owb9sA8.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/92/8b532f-6782-4044-9efb-6725d98196c6/1/1s5JJV9AanJVk8YuHECHeVhtVu8.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 45.158.4.0/22 185.186.152.0/22 185.236.96.0/22 185.236.108.0/22 IPv6: 2a0b:7e80::/29 Signature Algorithm: sha256WithRSAEncryption 3a:8e:e9:0f:6d:1a:6e:6b:0f:cd:2f:a7:5b:2d:f2:23:66:46: e2:ed:7d:a2:c1:a6:31:b3:fa:9e:b6:6d:f3:9b:0b:1f:de:a5: 77:4e:78:f1:86:43:46:e1:23:4d:68:12:82:19:0d:4c:e1:1e: a2:cd:fe:c9:c7:bd:03:0e:3a:0c:b8:8d:7c:5c:90:9a:27:78: 52:79:71:e7:a1:03:ed:7b:e7:7f:56:c1:96:c0:24:12:77:ac: bb:99:ca:00:61:6a:fc:08:64:43:6b:58:e1:5f:da:38:06:eb: f1:83:f7:01:5d:c0:ae:3d:71:9a:ee:9e:a0:c0:99:cc:b0:a9: 03:7a:c1:30:4c:99:6e:5a:db:48:a4:f3:98:db:0a:ce:01:17: cf:d7:91:87:e8:f7:ce:91:e2:bd:98:e9:c1:41:01:cb:9e:4b: b6:cd:b3:fc:90:a0:89:2f:c3:a8:6f:f2:3b:d7:2c:68:29:b5: db:e2:02:69:39:8a:c3:b8:ca:e2:28:93:0f:00:29:cc:f2:08: 7f:71:32:bf:44:d2:ba:18:6a:3c:d1:1b:15:f3:6d:71:9b:ba: 09:ea:2f:de:6a:29:9f:49:ba:bb:2b:3b:15:4a:5d:9c:d5:6f: ee:3b:81:c9:ab:1e:6f:e3:85:77:e8:da:17:ad:22:6d:7a:b5: 63:62:dc:e2 -----BEGIN CERTIFICATE----- MIIFHjCCBAagAwIBAgISAZt4owXMHPQYIDF/C6TL4e1aMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGQ2Y2U0OTI1NWY0MDZhNzI1NTkzYzYyZTFjNDA4Nzc5NTg2 ZDU2ZWYwHhcNMjYwMTAxMDgxODI4WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhmNjRlNDU5MWUzN2Y3ZDY5YWJhNmM1OWYzMTdhYjVhMzA2ZmRiMDBmMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAle4dDqmFhZwfid6zJ5zqjW+8ibs/ 6PCCngi22QJWK24LnKJ1qNi1+FsrIKffTVAfQoUPgj2iAIk3KB9/artVk6S11Bop uc72gRGuPro45WipRtqRBf+fn4Yz6FMryFiW0HVn4IhdXOsz/YDr6UZV81qhAXSI pFxRuDEGabh7/gbPMA5GlnxSJ/MsXAjjNJvsRUDpb4jtKBYFOwvAGFprpUQq+pSz dcR1HUEC2KIY2hH9TZzagPui+EJsWcufnREuTjeQibVc9HI8V8G/Z+LC6ONloT/k ym89766rTiAxhKDVyyzBvaqbiY/2s+isqtlB0gImz1r+Yvwi47pwKxvZiQIDAQAB o4ICKjCCAiYwHQYDVR0OBBYEFPZORZHjf31pq6bFnzF6taMG/bAPMB8GA1UdIwQY MBaAFNbOSSVfQGpyVZPGLhxAh3lYbVbvMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvMXM1SkpWOUFhbkpWazhZdUhFQ0hlVmh0VnU4LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85Mi84YjUzMmYtNjc4Mi00MDQ0LTllZmIt NjcyNWQ5ODE5NmM2LzEvOWs1RmtlTl9mV21ycHNXZk1YcTFvd2I5c0E4LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC85Mi84YjUzMmYtNjc4Mi00MDQ0LTllZmItNjcyNWQ5ODE5NmM2 LzEvMXM1SkpWOUFhbkpWazhZdUhFQ0hlVmh0VnU4LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMEAGCCsGAQUFBwEHAQH/BDEwLzAeBAIAATAYAwQCLZ4EAwQC ubqYAwQCuexgAwQCuexsMA0EAgACMAcDBQMqC36AMA0GCSqGSIb3DQEBCwUAA4IB AQA6jukPbRpuaw/NL6dbLfIjZkbi7X2iwaYxs/qetm3zmwsf3qV3TnjxhkNG4SNN aBKCGQ1M4R6izf7Jx70DDjoMuI18XJCaJ3hSeXHnoQPte+d/VsGWwCQSd6y7mcoA YWr8CGRDa1jhX9o4Buvxg/cBXcCuPXGa7p6gwJnMsKkDesEwTJluWttIpPOY2wrO ARfP15GH6PfOkeK9mOnBQQHLnku2zbP8kKCJL8Oob/I71yxoKbXb4gJpOYrDuMri KJMPACnM8gh/cTK/RNK6GGo80RsV821xm7oJ6i/eaimfSbq7KzsVSl2c1W/uO4HJ qx5v44V36NoXrSJterVjYtzi -----END CERTIFICATE-----Generated at Mon Jan 26 02:43:55 2026 by rpki-client