This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/98/6b6d1f-5421-48b9-b7eb-da1fe9ebee8e/1/Z9JeEfbUacbPejs83feX3rOWWFQ.roa File: Z9JeEfbUacbPejs83feX3rOWWFQ.roa (raw, json) Hash identifier: 95xTXyYYFl8H6HfH94TyCSJzuX0rhB4J8JlbTbJdO0M= Subject key identifier: 67:D2:5E:11:F6:D4:69:C6:CF:7A:3B:3C:DD:F7:97:DE:B3:96:58:54 Certificate issuer: /CN=9b8151ae164a5b782b103de7f7c8a8948932aebf Certificate serial: 019B78352BA2A88F093E3B04A021E61AE499 Authority key identifier: 9B:81:51:AE:16:4A:5B:78:2B:10:3D:E7:F7:C8:A8:94:89:32:AE:BF Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/m4FRrhZKW3grED3n98iolIkyrr8.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/98/6b6d1f-5421-48b9-b7eb-da1fe9ebee8e/1/Z9JeEfbUacbPejs83feX3rOWWFQ.roa Signing time: Thu 01 Jan 2026 06:18:29 +0000 ROA not before: Thu 01 Jan 2026 06:18:29 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 48926 IP address blocks: 37.44.16.0/20 maxlen: 20 37.143.112.0/21 maxlen: 21 94.142.232.0/21 maxlen: 21 178.248.248.0/21 maxlen: 21 185.75.116.0/22 maxlen: 22 2a01:6b40::/32 maxlen: 32 2a03:a900::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/98/6b6d1f-5421-48b9-b7eb-da1fe9ebee8e/1/m4FRrhZKW3grED3n98iolIkyrr8.crl rsync://rpki.ripe.net/repository/DEFAULT/98/6b6d1f-5421-48b9-b7eb-da1fe9ebee8e/1/m4FRrhZKW3grED3n98iolIkyrr8.mft rsync://rpki.ripe.net/repository/DEFAULT/m4FRrhZKW3grED3n98iolIkyrr8.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 22:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:78:35:2b:a2:a8:8f:09:3e:3b:04:a0:21:e6:1a:e4:99 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9b8151ae164a5b782b103de7f7c8a8948932aebf Validity Not Before: Jan 1 06:18:29 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=67d25e11f6d469c6cf7a3b3cddf797deb3965854 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:04:d2:87:ed:38:d9:cc:e4:3d:49:1b:7b:37: aa:ec:66:2c:2b:c2:ba:16:6c:24:04:ee:48:b0:ef: fa:a0:d2:54:5e:0f:a1:7d:06:05:cd:d7:88:40:76: b5:c2:a4:34:97:c0:4b:f2:e3:1e:4a:3c:81:88:0a: 83:a4:96:c2:d7:81:1f:c3:4f:68:d6:98:3a:57:d9: aa:31:fb:00:67:ff:b0:e1:68:23:f9:6d:31:54:45: 0d:28:b8:2a:1c:1b:a6:75:f1:0b:e3:c5:34:42:47: 52:1f:71:d8:50:98:76:08:36:86:b5:d4:bf:4f:b8: 8b:61:6d:90:e1:2e:84:21:24:ac:16:50:4e:88:c2: 08:cc:93:b0:33:7b:ef:1c:0b:58:4d:78:10:ff:72: 61:90:ce:36:8f:c8:25:85:74:f5:c0:56:e2:a2:52: 18:d0:9b:bf:c0:e4:8d:43:33:ef:96:28:16:b0:0e: 00:e7:75:cc:b8:96:a7:27:80:62:90:51:ee:02:cf: d1:79:7b:b7:24:52:ac:3a:de:ff:62:7f:97:9b:13: 0f:67:f7:9e:f8:95:6c:b9:be:b2:78:bc:57:34:ef: 02:cc:77:09:41:31:18:90:de:ea:38:59:47:44:e4: 10:71:4d:4c:76:34:c3:ce:89:35:da:af:04:f8:4e: 0b:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 67:D2:5E:11:F6:D4:69:C6:CF:7A:3B:3C:DD:F7:97:DE:B3:96:58:54 X509v3 Authority Key Identifier: keyid:9B:81:51:AE:16:4A:5B:78:2B:10:3D:E7:F7:C8:A8:94:89:32:AE:BF X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/m4FRrhZKW3grED3n98iolIkyrr8.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/98/6b6d1f-5421-48b9-b7eb-da1fe9ebee8e/1/Z9JeEfbUacbPejs83feX3rOWWFQ.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/98/6b6d1f-5421-48b9-b7eb-da1fe9ebee8e/1/m4FRrhZKW3grED3n98iolIkyrr8.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 37.44.16.0/20 37.143.112.0/21 94.142.232.0/21 178.248.248.0/21 185.75.116.0/22 IPv6: 2a01:6b40::/32 2a03:a900::/32 Signature Algorithm: sha256WithRSAEncryption 8b:97:68:12:8f:fc:82:bd:f4:6c:bc:f9:80:d7:a9:16:1d:a1: 63:6b:c7:2a:bf:63:2d:46:3a:e4:fb:ea:0a:b8:83:8c:da:91: 95:5d:2c:12:c6:e9:60:ee:2d:6e:03:9c:b7:ff:d8:62:46:8f: 88:e0:50:1e:38:25:17:bf:91:04:ce:5c:7f:58:e2:e9:0f:0c: bd:51:3d:53:30:51:24:7a:36:b7:9c:ce:31:c0:7d:e3:d2:2b: 6c:a6:66:9d:83:9b:41:d9:0e:61:ca:bc:08:4d:81:1f:63:c5: 3e:c2:bf:95:da:16:74:68:95:41:59:84:01:71:57:1c:c8:1e: b1:e9:07:d0:80:0a:91:ee:67:55:0e:02:3e:3a:19:f2:22:ee: 35:7f:c9:b0:30:ee:14:b8:83:1a:91:2a:60:39:62:a5:47:a6: f0:cb:27:a3:6e:22:66:15:75:4f:9c:74:5b:f3:41:07:16:ca: 50:c7:af:0b:e9:37:88:da:4b:49:d3:48:bb:f6:f0:f8:90:70: b7:1b:ab:97:fd:85:1e:fa:93:86:a5:16:1b:ac:f2:51:91:c2: d3:b0:95:af:2c:2b:39:a5:b5:3b:fc:cf:a9:3d:12:b1:f2:06: b7:f4:a3:42:f5:13:4a:0a:aa:be:c1:a0:90:45:98:ba:69:92: c4:39:79:15 -----BEGIN CERTIFICATE----- MIIFKzCCBBOgAwIBAgISAZt4NSuiqI8JPjsEoCHmGuSZMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDliODE1MWFlMTY0YTViNzgyYjEwM2RlN2Y3YzhhODk0ODkz MmFlYmYwHhcNMjYwMTAxMDYxODI5WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg2N2QyNWUxMWY2ZDQ2OWM2Y2Y3YTNiM2NkZGY3OTdkZWIzOTY1ODU0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAoQTSh+042czkPUkbezeq7GYsK8K6 FmwkBO5IsO/6oNJUXg+hfQYFzdeIQHa1wqQ0l8BL8uMeSjyBiAqDpJbC14Efw09o 1pg6V9mqMfsAZ/+w4Wgj+W0xVEUNKLgqHBumdfEL48U0QkdSH3HYUJh2CDaGtdS/ T7iLYW2Q4S6EISSsFlBOiMIIzJOwM3vvHAtYTXgQ/3JhkM42j8glhXT1wFbiolIY 0Ju/wOSNQzPvligWsA4A53XMuJanJ4BikFHuAs/ReXu3JFKsOt7/Yn+XmxMPZ/ee +JVsub6yeLxXNO8CzHcJQTEYkN7qOFlHROQQcU1MdjTDzok12q8E+E4LZwIDAQAB o4ICNzCCAjMwHQYDVR0OBBYEFGfSXhH21GnGz3o7PN33l96zllhUMB8GA1UdIwQY MBaAFJuBUa4WSlt4KxA95/fIqJSJMq6/MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvbTRGUnJoWktXM2dyRUQzbjk4aW9sSWt5cnI4LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85OC82YjZkMWYtNTQyMS00OGI5LWI3ZWIt ZGExZmU5ZWJlZThlLzEvWjlKZUVmYlVhY2JQZWpzODNmZVgzck9XV0ZRLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC85OC82YjZkMWYtNTQyMS00OGI5LWI3ZWItZGExZmU5ZWJlZThl LzEvbTRGUnJoWktXM2dyRUQzbjk4aW9sSWt5cnI4LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CME0GCCsGAQUFBwEHAQH/BD4wPDAkBAIAATAeAwQEJSwQAwQD JY9wAwQDXo7oAwQDsvj4AwQCuUt0MBQEAgACMA4DBQAqAWtAAwUAKgOpADANBgkq hkiG9w0BAQsFAAOCAQEAi5doEo/8gr30bLz5gNepFh2hY2vHKr9jLUY65PvqCriD jNqRlV0sEsbpYO4tbgOct//YYkaPiOBQHjglF7+RBM5cf1ji6Q8MvVE9UzBRJHo2 t5zOMcB949IrbKZmnYObQdkOYcq8CE2BH2PFPsK/ldoWdGiVQVmEAXFXHMgesekH 0IAKke5nVQ4CPjoZ8iLuNX/JsDDuFLiDGpEqYDlipUem8Msno24iZhV1T5x0W/NB BxbKUMevC+k3iNpLSdNIu/bw+JBwtxurl/2FHvqThqUWG6zyUZHC07CVrywrOaW1 O/zPqT0SsfIGt/SjQvUTSgqqvsGgkEWYummSxDl5FQ== -----END CERTIFICATE-----Generated at Mon Jan 26 04:38:55 2026 by rpki-client