This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/97/34e91f-a8a9-4937-9fb5-7a01bddd6560/1/9aFjflm38MN581vnLtWpsCX-q7Y.roa File: 9aFjflm38MN581vnLtWpsCX-q7Y.roa (raw, json) Hash identifier: yLjtSs5KlibIMz+VoXmAGRKRF617RWal83eBR+rXqCQ= Subject key identifier: F5:A1:63:7E:59:B7:F0:C3:79:F3:5B:E7:2E:D5:A9:B0:25:FE:AB:B6 Certificate issuer: /CN=99d35619ed210be0ac29d170a2bb5cd7455693bc Certificate serial: 019B7911208800216C8CD174CA50DBF27CF9 Authority key identifier: 99:D3:56:19:ED:21:0B:E0:AC:29:D1:70:A2:BB:5C:D7:45:56:93:BC Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mdNWGe0hC-CsKdFwortc10VWk7w.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/97/34e91f-a8a9-4937-9fb5-7a01bddd6560/1/9aFjflm38MN581vnLtWpsCX-q7Y.roa Signing time: Thu 01 Jan 2026 10:18:44 +0000 ROA not before: Thu 01 Jan 2026 10:18:44 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 207905 IP address blocks: 195.39.194.0/23 maxlen: 24 195.39.202.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/97/34e91f-a8a9-4937-9fb5-7a01bddd6560/1/mdNWGe0hC-CsKdFwortc10VWk7w.crl rsync://rpki.ripe.net/repository/DEFAULT/97/34e91f-a8a9-4937-9fb5-7a01bddd6560/1/mdNWGe0hC-CsKdFwortc10VWk7w.mft rsync://rpki.ripe.net/repository/DEFAULT/mdNWGe0hC-CsKdFwortc10VWk7w.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 10:00:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:79:11:20:88:00:21:6c:8c:d1:74:ca:50:db:f2:7c:f9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=99d35619ed210be0ac29d170a2bb5cd7455693bc Validity Not Before: Jan 1 10:18:44 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=f5a1637e59b7f0c379f35be72ed5a9b025feabb6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:68:bd:4e:e9:7b:41:80:bd:d2:a1:15:dd:7e: 3e:2e:48:5a:95:4b:12:83:fe:b5:03:15:cf:24:f1: fc:8c:bc:a2:18:fe:70:a3:49:2b:41:58:63:04:87: a6:77:ea:fa:76:4c:9f:77:0c:82:88:09:94:8c:7d: a3:60:d5:b2:a7:43:ca:43:3f:69:df:55:84:5f:ef: 4a:66:b8:94:e7:1f:db:a1:3f:8e:41:04:06:21:e4: 21:c0:73:3e:bd:8b:73:c3:a2:17:b6:41:e8:da:2f: 3f:7f:13:07:9c:ff:98:aa:23:51:46:52:cb:dc:88: a3:25:07:d6:c3:12:37:f7:42:38:8a:e9:25:35:e3: 07:29:47:83:d3:51:51:8d:93:eb:13:2c:5e:a3:d6: cb:53:35:0f:67:be:d0:2d:92:e9:d1:72:4a:fa:2a: f9:c9:ff:2a:89:94:f4:ce:b1:83:bc:43:f4:78:0f: f5:48:1c:7c:ee:bb:fb:b1:da:5d:19:28:90:2b:1e: 98:e7:ee:d2:9f:ac:86:d0:11:6d:04:01:a2:80:eb: d7:97:82:56:e8:36:0a:95:ee:91:ba:1d:f6:ab:39: 24:81:4a:75:a7:8d:08:d5:3d:64:e6:2a:58:56:22: 8f:ec:56:46:a0:ec:46:cd:b6:cd:44:74:18:dc:8b: 4c:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F5:A1:63:7E:59:B7:F0:C3:79:F3:5B:E7:2E:D5:A9:B0:25:FE:AB:B6 X509v3 Authority Key Identifier: keyid:99:D3:56:19:ED:21:0B:E0:AC:29:D1:70:A2:BB:5C:D7:45:56:93:BC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mdNWGe0hC-CsKdFwortc10VWk7w.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/97/34e91f-a8a9-4937-9fb5-7a01bddd6560/1/9aFjflm38MN581vnLtWpsCX-q7Y.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/97/34e91f-a8a9-4937-9fb5-7a01bddd6560/1/mdNWGe0hC-CsKdFwortc10VWk7w.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 195.39.194.0/23 195.39.202.0/23 Signature Algorithm: sha256WithRSAEncryption 5d:2b:ad:50:12:6b:ba:e0:ee:0f:df:5d:26:00:ff:41:72:e7: 02:cb:dc:73:34:1d:78:e5:67:67:3a:c5:c9:d6:83:07:3c:3f: ae:f7:34:f5:2f:0e:63:7f:8b:2d:ae:bb:72:58:3b:16:33:2d: 48:85:17:73:10:d7:de:9e:aa:05:c4:79:cd:f1:66:47:98:e6: 22:f3:52:20:68:b0:6b:9e:de:45:f0:8d:94:8c:1b:58:70:15: 9a:fa:3b:df:58:6b:58:22:12:8a:82:3c:e2:aa:30:ea:4f:63: 87:6d:67:88:4e:cf:21:a3:e5:7b:47:38:f1:eb:5d:bb:ce:b3: 01:e1:a4:72:a4:45:23:c8:de:8e:f3:b1:48:11:87:8e:44:ef: 0d:a8:98:55:54:76:e1:0f:5c:a2:1e:0a:a1:b6:57:b1:c4:5f: a0:3c:ff:a4:5b:a5:e3:aa:d3:d2:8f:88:a4:4d:da:f6:25:cd: 8a:8b:80:5b:9a:c9:30:bc:64:c3:5c:42:db:23:f9:da:55:c9: d2:c1:32:69:8f:4b:bf:c1:09:a2:20:a5:1b:94:71:5a:68:f8: 2a:43:e9:bb:8e:84:94:4a:bc:72:f7:43:1b:00:0a:e2:6d:4e: 36:b8:48:b5:95:88:0c:a5:5e:87:3d:27:c8:fc:04:08:08:76: da:6f:74:db -----BEGIN CERTIFICATE----- MIIFAzCCA+ugAwIBAgISAZt5ESCIACFsjNF0ylDb8nz5MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDk5ZDM1NjE5ZWQyMTBiZTBhYzI5ZDE3MGEyYmI1Y2Q3NDU1 NjkzYmMwHhcNMjYwMTAxMTAxODQ0WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhmNWExNjM3ZTU5YjdmMGMzNzlmMzViZTcyZWQ1YTliMDI1ZmVhYmI2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA42i9Tul7QYC90qEV3X4+LkhalUsS g/61AxXPJPH8jLyiGP5wo0krQVhjBIemd+r6dkyfdwyCiAmUjH2jYNWyp0PKQz9p 31WEX+9KZriU5x/boT+OQQQGIeQhwHM+vYtzw6IXtkHo2i8/fxMHnP+YqiNRRlLL 3IijJQfWwxI390I4iuklNeMHKUeD01FRjZPrEyxeo9bLUzUPZ77QLZLp0XJK+ir5 yf8qiZT0zrGDvEP0eA/1SBx87rv7sdpdGSiQKx6Y5+7Sn6yG0BFtBAGigOvXl4JW 6DYKle6Ruh32qzkkgUp1p40I1T1k5ipYViKP7FZGoOxGzbbNRHQY3ItMSQIDAQAB o4ICDzCCAgswHQYDVR0OBBYEFPWhY35Zt/DDefNb5y7VqbAl/qu2MB8GA1UdIwQY MBaAFJnTVhntIQvgrCnRcKK7XNdFVpO8MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvbWROV0dlMGhDLUNzS2RGd29ydGMxMFZXazd3LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85Ny8zNGU5MWYtYThhOS00OTM3LTlmYjUt N2EwMWJkZGQ2NTYwLzEvOWFGamZsbTM4TU41ODF2bkx0V3BzQ1gtcTdZLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC85Ny8zNGU5MWYtYThhOS00OTM3LTlmYjUtN2EwMWJkZGQ2NTYw LzEvbWROV0dlMGhDLUNzS2RGd29ydGMxMFZXazd3LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQBwyfCAwQB wyfKMA0GCSqGSIb3DQEBCwUAA4IBAQBdK61QEmu64O4P310mAP9BcucCy9xzNB14 5WdnOsXJ1oMHPD+u9zT1Lw5jf4strrtyWDsWMy1IhRdzENfenqoFxHnN8WZHmOYi 81IgaLBrnt5F8I2UjBtYcBWa+jvfWGtYIhKKgjziqjDqT2OHbWeITs8ho+V7Rzjx 6127zrMB4aRypEUjyN6O87FIEYeORO8NqJhVVHbhD1yiHgqhtlexxF+gPP+kW6Xj qtPSj4ikTdr2Jc2Ki4BbmskwvGTDXELbI/naVcnSwTJpj0u/wQmiIKUblHFaaPgq Q+m7joSUSrxy90MbAAribU42uEi1lYgMpV6HPSfI/AQICHbab3Tb -----END CERTIFICATE-----Generated at Sun Jan 25 20:47:05 2026 by rpki-client