This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/98/791c33-a10e-43a9-ac29-e0d13230b9d5/1/r9Mcr5UDzWdIgeL8kqJ0bGMMVmw.roa File: r9Mcr5UDzWdIgeL8kqJ0bGMMVmw.roa (raw, json) Hash identifier: 6WGd0CgD9hacqiqe9ZbfPd53REDLfBpVe+xRlENuS3E= Subject key identifier: AF:D3:1C:AF:95:03:CD:67:48:81:E2:FC:92:A2:74:6C:63:0C:56:6C Certificate issuer: /CN=59d0a3f9c34307b0a5b36d2e6d1899aefe7bbeb4 Certificate serial: 019B7C80DA4D02F28F51DC06C8E8D4B2D6F5 Authority key identifier: 59:D0:A3:F9:C3:43:07:B0:A5:B3:6D:2E:6D:18:99:AE:FE:7B:BE:B4 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/WdCj-cNDB7Cls20ubRiZrv57vrQ.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/98/791c33-a10e-43a9-ac29-e0d13230b9d5/1/r9Mcr5UDzWdIgeL8kqJ0bGMMVmw.roa Signing time: Fri 02 Jan 2026 02:19:37 +0000 ROA not before: Fri 02 Jan 2026 02:19:37 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 43352 IP address blocks: 37.9.200.0/21 maxlen: 24 185.4.208.0/22 maxlen: 24 185.4.211.0/24 maxlen: 24 195.155.128.0/19 maxlen: 24 195.155.135.0/24 maxlen: 24 195.155.155.0/24 maxlen: 24 2a02:cb00::/29 maxlen: 48 2a02:cb04:4::/48 maxlen: 48 2a02:cb04:5::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/98/791c33-a10e-43a9-ac29-e0d13230b9d5/1/WdCj-cNDB7Cls20ubRiZrv57vrQ.crl rsync://rpki.ripe.net/repository/DEFAULT/98/791c33-a10e-43a9-ac29-e0d13230b9d5/1/WdCj-cNDB7Cls20ubRiZrv57vrQ.mft rsync://rpki.ripe.net/repository/DEFAULT/WdCj-cNDB7Cls20ubRiZrv57vrQ.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 17:01:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7c:80:da:4d:02:f2:8f:51:dc:06:c8:e8:d4:b2:d6:f5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=59d0a3f9c34307b0a5b36d2e6d1899aefe7bbeb4 Validity Not Before: Jan 2 02:19:37 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=afd31caf9503cd674881e2fc92a2746c630c566c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:e3:75:2f:72:3c:07:61:ee:68:57:87:99:46: 06:79:9e:bc:dd:10:8f:c3:12:77:a8:f1:a7:f5:e6: 62:be:ee:98:60:ba:77:24:7b:18:8b:4b:39:c8:23: ad:76:cd:9a:c4:64:ef:c3:17:19:74:8f:5e:52:0c: 1c:79:15:c1:d1:bb:e0:40:a7:5b:d5:fc:e7:6f:27: c2:01:ea:33:20:b2:5b:c4:ba:90:2f:1a:b1:5e:d8: a7:a0:df:06:df:ec:d2:04:47:ba:b9:fc:b9:aa:6b: 3d:5f:52:cf:05:29:a4:f0:3c:4f:1c:b6:55:cb:ef: b4:af:0e:5b:cd:68:10:ba:29:25:96:34:e7:0e:f4: 2a:d7:16:d7:35:e7:a0:8b:b6:d1:1d:59:8d:a5:2a: 60:5b:5d:5b:1d:ff:dd:10:b3:58:98:da:61:a0:21: 65:6b:bc:0b:f0:15:94:a7:d9:28:ad:f0:ff:de:46: 61:f0:1e:1f:10:10:13:5c:0e:04:72:02:0f:f3:fd: 78:b8:6b:1c:eb:05:33:4b:d0:10:60:22:52:41:63: 28:2c:69:04:19:99:c1:2e:c7:54:5f:fc:62:1d:46: 04:a4:8b:de:9d:05:e9:82:bc:13:33:5c:fb:98:7c: 18:a0:ef:93:58:bd:ed:70:6a:ed:49:80:61:ec:d1: 0e:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AF:D3:1C:AF:95:03:CD:67:48:81:E2:FC:92:A2:74:6C:63:0C:56:6C X509v3 Authority Key Identifier: keyid:59:D0:A3:F9:C3:43:07:B0:A5:B3:6D:2E:6D:18:99:AE:FE:7B:BE:B4 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/WdCj-cNDB7Cls20ubRiZrv57vrQ.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/98/791c33-a10e-43a9-ac29-e0d13230b9d5/1/r9Mcr5UDzWdIgeL8kqJ0bGMMVmw.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/98/791c33-a10e-43a9-ac29-e0d13230b9d5/1/WdCj-cNDB7Cls20ubRiZrv57vrQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 37.9.200.0/21 185.4.208.0/22 195.155.128.0/19 IPv6: 2a02:cb00::/29 Signature Algorithm: sha256WithRSAEncryption b5:3f:9c:53:c0:8b:22:cd:dc:38:29:04:5c:6b:70:1d:6d:85: 43:61:51:54:4e:0b:3c:0e:d5:99:1f:f0:8d:ea:57:c7:94:5d: 12:06:65:1d:c8:0d:a1:94:f3:a1:d3:bd:19:ad:ae:fa:ba:4e: 28:fa:bb:b7:48:cd:05:99:fd:26:ec:04:44:55:d4:74:31:fd: 67:5e:73:a1:66:0e:7b:7b:2c:30:22:26:df:12:08:f5:79:a3: fd:d1:79:2d:43:d9:f8:57:1c:3b:a9:cb:58:6f:ab:ae:f5:68: 26:9f:eb:e6:69:1c:ed:81:1c:f7:6c:6f:4a:11:2f:a5:19:f8: fd:44:c1:f6:a8:d9:eb:66:8f:71:d2:aa:3b:e0:de:60:9c:99: 72:62:bd:88:04:c7:89:d0:72:ad:ed:d7:8b:fe:04:72:33:d3: 84:7a:ca:b5:57:32:ed:bf:77:4c:5d:fa:e9:96:02:3e:e3:a0: 66:9d:85:d5:90:be:41:a6:aa:bb:32:50:cd:1c:e7:2d:87:1c: 29:f4:fc:cd:fe:b9:3d:5c:c2:01:40:11:c1:51:a9:dd:49:82: e9:16:94:83:a2:dd:fe:62:ec:ba:11:81:b0:6c:60:a4:da:5d: 13:72:cb:48:ac:fa:78:87:d6:40:a5:e4:42:a1:60:a8:51:27: 3a:28:01:b5 -----BEGIN CERTIFICATE----- MIIFGDCCBACgAwIBAgISAZt8gNpNAvKPUdwGyOjUstb1MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDU5ZDBhM2Y5YzM0MzA3YjBhNWIzNmQyZTZkMTg5OWFlZmU3 YmJlYjQwHhcNMjYwMTAyMDIxOTM3WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhhZmQzMWNhZjk1MDNjZDY3NDg4MWUyZmM5MmEyNzQ2YzYzMGM1NjZjMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwON1L3I8B2HuaFeHmUYGeZ683RCP wxJ3qPGn9eZivu6YYLp3JHsYi0s5yCOtds2axGTvwxcZdI9eUgwceRXB0bvgQKdb 1fznbyfCAeozILJbxLqQLxqxXtinoN8G3+zSBEe6ufy5qms9X1LPBSmk8DxPHLZV y++0rw5bzWgQuiklljTnDvQq1xbXNeegi7bRHVmNpSpgW11bHf/dELNYmNphoCFl a7wL8BWUp9korfD/3kZh8B4fEBATXA4EcgIP8/14uGsc6wUzS9AQYCJSQWMoLGkE GZnBLsdUX/xiHUYEpIvenQXpgrwTM1z7mHwYoO+TWL3tcGrtSYBh7NEOHQIDAQAB o4ICJDCCAiAwHQYDVR0OBBYEFK/THK+VA81nSIHi/JKidGxjDFZsMB8GA1UdIwQY MBaAFFnQo/nDQwewpbNtLm0Yma7+e760MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvV2RDai1jTkRCN0NsczIwdWJSaVpydjU3dnJRLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85OC83OTFjMzMtYTEwZS00M2E5LWFjMjkt ZTBkMTMyMzBiOWQ1LzEvcjlNY3I1VUR6V2RJZ2VMOGtxSjBiR01NVm13LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC85OC83OTFjMzMtYTEwZS00M2E5LWFjMjktZTBkMTMyMzBiOWQ1 LzEvV2RDai1jTkRCN0NsczIwdWJSaVpydjU3dnJRLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMDoGCCsGAQUFBwEHAQH/BCswKTAYBAIAATASAwQDJQnIAwQC uQTQAwQFw5uAMA0EAgACMAcDBQMqAssAMA0GCSqGSIb3DQEBCwUAA4IBAQC1P5xT wIsizdw4KQRca3AdbYVDYVFUTgs8DtWZH/CN6lfHlF0SBmUdyA2hlPOh070Zra76 uk4o+ru3SM0Fmf0m7AREVdR0Mf1nXnOhZg57eywwIibfEgj1eaP90XktQ9n4Vxw7 qctYb6uu9Wgmn+vmaRztgRz3bG9KES+lGfj9RMH2qNnrZo9x0qo74N5gnJlyYr2I BMeJ0HKt7deL/gRyM9OEesq1VzLtv3dMXfrplgI+46BmnYXVkL5Bpqq7MlDNHOct hxwp9PzN/rk9XMIBQBHBUandSYLpFpSDot3+Yuy6EYGwbGCk2l0TcstIrPp4h9ZA peRCoWCoUSc6KAG1 -----END CERTIFICATE-----Generated at Mon Jan 26 02:44:06 2026 by rpki-client