This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9b/3c92fa-c3d5-4a36-9e17-37e9e86a9279/1/1-bShfWRGm-TQCjM_Y3n8hxLi1-I.roa File: 1-bShfWRGm-TQCjM_Y3n8hxLi1-I.roa (raw, json) Hash identifier: wGYwNx5Kv0DKEFJu4HUzIBbe8JuzhGj3QdIJepSq7/Q= Subject key identifier: F9:B4:A1:7D:64:46:9B:E4:D0:0A:33:3F:63:79:FC:87:12:E2:D7:E2 Certificate issuer: /CN=a50cd3b9fb6464915ad0d3760934c0182889f1fb Certificate serial: 019B7C125049E04EA85F7FED93248C52DB83 Authority key identifier: A5:0C:D3:B9:FB:64:64:91:5A:D0:D3:76:09:34:C0:18:28:89:F1:FB Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pQzTuftkZJFa0NN2CTTAGCiJ8fs.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9b/3c92fa-c3d5-4a36-9e17-37e9e86a9279/1/1-bShfWRGm-TQCjM_Y3n8hxLi1-I.roa Signing time: Fri 02 Jan 2026 00:18:53 +0000 ROA not before: Fri 02 Jan 2026 00:18:53 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 25540 IP address blocks: 185.232.200.0/22 maxlen: 22 2a0d:9bc0::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9b/3c92fa-c3d5-4a36-9e17-37e9e86a9279/1/pQzTuftkZJFa0NN2CTTAGCiJ8fs.crl rsync://rpki.ripe.net/repository/DEFAULT/9b/3c92fa-c3d5-4a36-9e17-37e9e86a9279/1/pQzTuftkZJFa0NN2CTTAGCiJ8fs.mft rsync://rpki.ripe.net/repository/DEFAULT/pQzTuftkZJFa0NN2CTTAGCiJ8fs.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 22:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7c:12:50:49:e0:4e:a8:5f:7f:ed:93:24:8c:52:db:83 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=a50cd3b9fb6464915ad0d3760934c0182889f1fb Validity Not Before: Jan 2 00:18:53 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=f9b4a17d64469be4d00a333f6379fc8712e2d7e2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:93:3e:e8:b4:e5:8f:ec:15:36:b0:58:bf:2a:6a: 96:d4:6f:a5:d5:22:44:2b:88:3b:82:d7:02:ff:31: 53:f9:02:1e:a4:a0:46:41:41:e8:42:df:f7:e4:87: 16:ef:31:4c:7c:0e:12:a8:ee:bd:ce:c1:6c:3d:cb: e3:ea:e9:a7:fa:5e:7c:a4:d0:98:04:d3:f1:c0:85: 3f:8f:ea:b0:f3:c6:53:da:d6:a4:04:ec:bb:0d:56: 3c:f8:35:f5:ee:a7:1d:ef:fe:ff:14:c6:d1:b4:d3: b7:a6:ba:61:e9:0a:d4:13:58:2b:05:8a:e2:32:de: d8:ba:23:09:54:c0:01:cc:9d:91:89:f0:0c:8b:29: e6:89:08:1f:96:d3:74:40:72:68:32:3d:87:11:cc: 24:79:2d:48:4b:db:16:be:65:a0:79:f6:82:9c:64: 50:31:3b:50:26:58:2f:55:92:26:6c:1d:78:24:16: c4:64:45:6a:48:ee:d0:fc:48:c9:83:17:99:a0:46: e8:33:53:14:f4:ec:b9:a0:d0:5c:32:d0:f7:ef:ff: 0c:09:f6:9c:4d:18:cc:c2:58:39:36:65:8f:73:41: ec:f9:34:36:13:be:f3:3b:b7:6b:e3:b6:cb:2a:88: e8:26:5c:f8:35:7e:95:56:c4:46:2c:bc:3d:55:d9: 83:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F9:B4:A1:7D:64:46:9B:E4:D0:0A:33:3F:63:79:FC:87:12:E2:D7:E2 X509v3 Authority Key Identifier: keyid:A5:0C:D3:B9:FB:64:64:91:5A:D0:D3:76:09:34:C0:18:28:89:F1:FB X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pQzTuftkZJFa0NN2CTTAGCiJ8fs.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9b/3c92fa-c3d5-4a36-9e17-37e9e86a9279/1/1-bShfWRGm-TQCjM_Y3n8hxLi1-I.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/9b/3c92fa-c3d5-4a36-9e17-37e9e86a9279/1/pQzTuftkZJFa0NN2CTTAGCiJ8fs.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.232.200.0/22 IPv6: 2a0d:9bc0::/32 Signature Algorithm: sha256WithRSAEncryption 0f:f0:84:93:af:4b:f8:2a:43:9b:69:cb:40:f1:d8:21:a9:fd: 60:14:14:9c:a2:9d:a8:9e:f8:57:22:4d:90:db:18:ca:0a:9a: 3f:5a:59:35:93:54:78:4f:35:38:ae:78:c6:b1:06:6b:3c:3e: de:1a:3f:7d:e2:d9:87:9e:b9:fb:b2:e2:38:1c:16:c3:74:a2: eb:7e:f3:19:a6:70:72:78:9c:58:c7:d4:13:60:48:51:09:7b: f0:f2:8a:83:9b:7a:56:7f:d5:28:e7:49:e6:9d:16:f8:a8:d3: a0:d5:36:c8:9a:f3:85:13:cd:e8:9c:39:75:83:36:5c:f5:1f: f8:df:98:04:9c:8e:2f:51:68:a9:9e:b0:a3:9b:bc:d2:6c:a7: ff:60:e7:4d:f1:7e:e3:96:7e:15:16:d3:61:96:ba:41:79:4a: 82:96:41:1c:fd:d3:bb:0d:c2:88:d4:79:9b:88:8b:70:d4:fb: 2d:63:ea:59:6c:d4:2b:bf:31:fa:fc:6d:f9:8a:32:7f:de:eb: 0e:d7:ee:8b:99:f0:cf:36:03:1f:42:b2:c0:0a:2b:df:55:c6: 07:eb:ff:3f:27:92:9a:d3:fa:cb:87:c6:73:49:85:c8:92:f8: 4d:e8:1a:1d:f9:33:7f:e1:c0:c2:40:8c:e6:94:e5:5f:6e:b6: ee:56:20:cc -----BEGIN CERTIFICATE----- MIIFDTCCA/WgAwIBAgISAZt8ElBJ4E6oX3/tkySMUtuDMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGE1MGNkM2I5ZmI2NDY0OTE1YWQwZDM3NjA5MzRjMDE4Mjg4 OWYxZmIwHhcNMjYwMTAyMDAxODUzWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhmOWI0YTE3ZDY0NDY5YmU0ZDAwYTMzM2Y2Mzc5ZmM4NzEyZTJkN2UyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAkz7otOWP7BU2sFi/KmqW1G+l1SJE K4g7gtcC/zFT+QIepKBGQUHoQt/35IcW7zFMfA4SqO69zsFsPcvj6umn+l58pNCY BNPxwIU/j+qw88ZT2takBOy7DVY8+DX17qcd7/7/FMbRtNO3prph6QrUE1grBYri Mt7YuiMJVMABzJ2RifAMiynmiQgfltN0QHJoMj2HEcwkeS1IS9sWvmWgefaCnGRQ MTtQJlgvVZImbB14JBbEZEVqSO7Q/EjJgxeZoEboM1MU9Oy5oNBcMtD37/8MCfac TRjMwlg5NmWPc0Hs+TQ2E77zO7dr47bLKojoJlz4NX6VVsRGLLw9VdmDEwIDAQAB o4ICGTCCAhUwHQYDVR0OBBYEFPm0oX1kRpvk0AozP2N5/IcS4tfiMB8GA1UdIwQY MBaAFKUM07n7ZGSRWtDTdgk0wBgoifH7MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvcFF6VHVmdGtaSkZhME5OMkNUVEFHQ2lKOGZzLmNlcjCB jgYIKwYBBQUHAQsEgYEwfzB9BggrBgEFBQcwC4ZxcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85Yi8zYzkyZmEtYzNkNS00YTM2LTllMTct MzdlOWU4NmE5Mjc5LzEvMS1iU2hmV1JHbS1UUUNqTV9ZM244aHhMaTEtSS5yb2Ew gYEGA1UdHwR6MHgwdqB0oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0 b3J5L0RFRkFVTFQvOWIvM2M5MmZhLWMzZDUtNGEzNi05ZTE3LTM3ZTllODZhOTI3 OS8xL3BRelR1ZnRrWkpGYTBOTjJDVFRBR0NpSjhmcy5jcmwwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAuBggrBgEFBQcBBwEB/wQfMB0wDAQCAAEwBgMEArnoyDAN BAIAAjAHAwUAKg2bwDANBgkqhkiG9w0BAQsFAAOCAQEAD/CEk69L+CpDm2nLQPHY Ian9YBQUnKKdqJ74VyJNkNsYygqaP1pZNZNUeE81OK54xrEGazw+3ho/feLZh565 +7LiOBwWw3Si637zGaZwcnicWMfUE2BIUQl78PKKg5t6Vn/VKOdJ5p0W+KjToNU2 yJrzhRPN6Jw5dYM2XPUf+N+YBJyOL1FoqZ6wo5u80myn/2DnTfF+45Z+FRbTYZa6 QXlKgpZBHP3Tuw3CiNR5m4iLcNT7LWPqWWzUK78x+vxt+Yoyf97rDtfui5nwzzYD H0KywAor31XGB+v/PyeSmtP6y4fGc0mFyJL4TegaHfkzf+HAwkCM5pTlX2627lYg zA== -----END CERTIFICATE-----Generated at Mon Jan 26 04:50:31 2026 by rpki-client