This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9a/40d9a5-2566-49e1-a57b-d1abf4ee32cb/1/k3ayP4DiWUp9a1MNUSDdf93Vz8M.roa File: k3ayP4DiWUp9a1MNUSDdf93Vz8M.roa (raw, json) Hash identifier: QfCyKwRzJHu3kJc4+Hlfq/pjF8bZH2qQwXvmpvH6rS4= Subject key identifier: 93:76:B2:3F:80:E2:59:4A:7D:6B:53:0D:51:20:DD:7F:DD:D5:CF:C3 Certificate issuer: /CN=359f0f5ff620e0db5311f64736909973ac60f6f3 Certificate serial: 019B797E42AFC986BD0C5BF3BC8219FF5E63 Authority key identifier: 35:9F:0F:5F:F6:20:E0:DB:53:11:F6:47:36:90:99:73:AC:60:F6:F3 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NZ8PX_Yg4NtTEfZHNpCZc6xg9vM.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9a/40d9a5-2566-49e1-a57b-d1abf4ee32cb/1/k3ayP4DiWUp9a1MNUSDdf93Vz8M.roa Signing time: Thu 01 Jan 2026 12:17:56 +0000 ROA not before: Thu 01 Jan 2026 12:17:56 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 200059 IP address blocks: 109.235.0.0/21 maxlen: 32 185.40.80.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9a/40d9a5-2566-49e1-a57b-d1abf4ee32cb/1/NZ8PX_Yg4NtTEfZHNpCZc6xg9vM.crl rsync://rpki.ripe.net/repository/DEFAULT/9a/40d9a5-2566-49e1-a57b-d1abf4ee32cb/1/NZ8PX_Yg4NtTEfZHNpCZc6xg9vM.mft rsync://rpki.ripe.net/repository/DEFAULT/NZ8PX_Yg4NtTEfZHNpCZc6xg9vM.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 16:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:79:7e:42:af:c9:86:bd:0c:5b:f3:bc:82:19:ff:5e:63 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=359f0f5ff620e0db5311f64736909973ac60f6f3 Validity Not Before: Jan 1 12:17:56 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=9376b23f80e2594a7d6b530d5120dd7fddd5cfc3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:89:69:36:6d:7a:2e:4a:0b:75:2a:01:e3:18: ea:6b:ed:2c:43:90:05:2b:34:18:25:ec:42:7d:04: aa:80:c4:87:04:8c:5c:68:52:25:d4:45:5b:37:86: 2f:3f:36:8e:5a:dc:68:e0:a8:3e:ef:e7:b6:7d:02: 7d:3d:dc:87:71:ba:e6:e9:3b:07:87:cb:4f:74:72: 5d:5d:31:33:0c:f9:85:be:e4:db:ac:0b:53:8c:b0: 23:43:34:96:b6:bc:3c:04:5c:96:48:22:3a:7c:69: 02:71:ac:a8:c1:97:72:ff:0d:2d:1f:e0:f7:c4:3c: 8e:05:19:85:93:98:1e:dc:cc:fd:dc:e1:92:cf:89: 11:ba:3d:b5:b8:0b:17:aa:10:48:b4:8e:be:8b:69: 73:2a:45:ec:7f:34:95:02:2b:57:23:48:a7:65:67: 40:6a:5b:1b:45:46:bf:89:50:0a:8d:b4:e3:e9:37: b2:78:4f:61:c5:c1:08:40:94:7f:ec:bc:7e:d8:c4: 5e:ee:35:8b:86:9a:a3:8c:e3:f6:86:46:10:c6:11: 88:ab:7b:e8:41:dc:63:69:8a:39:ea:f7:d5:5e:f2: 8d:25:1a:cd:ee:0b:0f:ea:41:7b:ae:2f:6d:7d:30: bb:87:e1:c6:44:04:0e:de:7d:3a:65:49:59:f0:4b: 23:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 93:76:B2:3F:80:E2:59:4A:7D:6B:53:0D:51:20:DD:7F:DD:D5:CF:C3 X509v3 Authority Key Identifier: keyid:35:9F:0F:5F:F6:20:E0:DB:53:11:F6:47:36:90:99:73:AC:60:F6:F3 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NZ8PX_Yg4NtTEfZHNpCZc6xg9vM.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9a/40d9a5-2566-49e1-a57b-d1abf4ee32cb/1/k3ayP4DiWUp9a1MNUSDdf93Vz8M.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/9a/40d9a5-2566-49e1-a57b-d1abf4ee32cb/1/NZ8PX_Yg4NtTEfZHNpCZc6xg9vM.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 109.235.0.0/21 185.40.80.0/22 Signature Algorithm: sha256WithRSAEncryption 97:7c:44:d1:5a:74:d5:81:b7:07:ab:22:7d:90:ed:ee:7b:7d: 92:64:41:c2:2f:cc:71:e6:b5:35:fd:a5:71:55:d5:cb:83:56: 54:07:45:6a:b5:ac:50:20:22:65:39:39:a5:ec:1d:08:20:f8: 12:7c:45:fc:bd:25:fe:87:5c:e3:7e:6e:96:f2:5d:8d:3f:48: 85:3d:0b:5d:29:ce:da:c7:11:87:f8:72:3d:c4:60:c7:e2:48: b8:42:a8:b4:17:14:be:ae:13:d6:1f:43:9d:a5:7f:17:b2:ca: 11:f3:94:9b:7f:32:de:3b:f0:51:06:81:c0:2c:ac:d3:04:0c: 1a:82:75:54:c9:97:a0:fd:34:21:43:24:14:0c:26:f3:3f:64: e2:27:7e:22:c8:fa:8d:ff:a4:ea:c1:8e:24:23:61:81:51:39: 13:7f:1b:56:6a:62:15:c1:15:8a:cf:02:25:3a:8f:9b:09:cb: 61:6a:a5:a9:90:33:0c:a2:3c:b0:1d:0b:32:1f:71:43:2d:96: af:44:e6:f3:2c:6d:5e:e6:e6:40:74:57:ee:09:d2:3c:de:f5: 6b:87:77:4c:a1:1f:ab:2d:35:ce:da:c5:e3:85:d1:47:07:e0: 8c:ad:4f:d0:99:2d:92:5d:a5:80:d4:d9:7f:b6:53:cd:b4:5c: 91:ec:d8:63 -----BEGIN CERTIFICATE----- MIIFAzCCA+ugAwIBAgISAZt5fkKvyYa9DFvzvIIZ/15jMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDM1OWYwZjVmZjYyMGUwZGI1MzExZjY0NzM2OTA5OTczYWM2 MGY2ZjMwHhcNMjYwMTAxMTIxNzU2WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg5Mzc2YjIzZjgwZTI1OTRhN2Q2YjUzMGQ1MTIwZGQ3ZmRkZDVjZmMzMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzIlpNm16LkoLdSoB4xjqa+0sQ5AF KzQYJexCfQSqgMSHBIxcaFIl1EVbN4YvPzaOWtxo4Kg+7+e2fQJ9PdyHcbrm6TsH h8tPdHJdXTEzDPmFvuTbrAtTjLAjQzSWtrw8BFyWSCI6fGkCcayowZdy/w0tH+D3 xDyOBRmFk5ge3Mz93OGSz4kRuj21uAsXqhBItI6+i2lzKkXsfzSVAitXI0inZWdA alsbRUa/iVAKjbTj6TeyeE9hxcEIQJR/7Lx+2MRe7jWLhpqjjOP2hkYQxhGIq3vo QdxjaYo56vfVXvKNJRrN7gsP6kF7ri9tfTC7h+HGRAQO3n06ZUlZ8EsjFQIDAQAB o4ICDzCCAgswHQYDVR0OBBYEFJN2sj+A4llKfWtTDVEg3X/d1c/DMB8GA1UdIwQY MBaAFDWfD1/2IODbUxH2RzaQmXOsYPbzMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvTlo4UFhfWWc0TnRURWZaSE5wQ1pjNnhnOXZNLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85YS80MGQ5YTUtMjU2Ni00OWUxLWE1N2It ZDFhYmY0ZWUzMmNiLzEvazNheVA0RGlXVXA5YTFNTlVTRGRmOTNWejhNLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC85YS80MGQ5YTUtMjU2Ni00OWUxLWE1N2ItZDFhYmY0ZWUzMmNi LzEvTlo4UFhfWWc0TnRURWZaSE5wQ1pjNnhnOXZNLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQDbesAAwQC uShQMA0GCSqGSIb3DQEBCwUAA4IBAQCXfETRWnTVgbcHqyJ9kO3ue32SZEHCL8xx 5rU1/aVxVdXLg1ZUB0VqtaxQICJlOTml7B0IIPgSfEX8vSX+h1zjfm6W8l2NP0iF PQtdKc7axxGH+HI9xGDH4ki4Qqi0FxS+rhPWH0OdpX8XssoR85SbfzLeO/BRBoHA LKzTBAwagnVUyZeg/TQhQyQUDCbzP2TiJ34iyPqN/6TqwY4kI2GBUTkTfxtWamIV wRWKzwIlOo+bCcthaqWpkDMMojywHQsyH3FDLZavRObzLG1e5uZAdFfuCdI83vVr h3dMoR+rLTXO2sXjhdFHB+CMrU/QmS2SXaWA1Nl/tlPNtFyR7Nhj -----END CERTIFICATE-----Generated at Mon Jan 26 01:01:45 2026 by rpki-client