This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a1/f4319f-3dfb-42ea-ba95-492ab372689d/1/9D820He12zEiGHJY2yEp95HuOYo.roa File: 9D820He12zEiGHJY2yEp95HuOYo.roa (raw, json) Hash identifier: JgNweIsliEaUH1GQxpLBgGrSQ23iPTPHkKTdFr797ts= Subject key identifier: F4:3F:36:D0:77:B5:DB:31:22:18:72:58:DB:21:29:F7:91:EE:39:8A Certificate issuer: /CN=5fbe65ae23f207fa695255f55a907ac1608be094 Certificate serial: 019B7DCA78671C421BF4037DAB0FA9F5AD2A Authority key identifier: 5F:BE:65:AE:23:F2:07:FA:69:52:55:F5:5A:90:7A:C1:60:8B:E0:94 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/X75lriPyB_ppUlX1WpB6wWCL4JQ.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a1/f4319f-3dfb-42ea-ba95-492ab372689d/1/9D820He12zEiGHJY2yEp95HuOYo.roa Signing time: Fri 02 Jan 2026 08:19:39 +0000 ROA not before: Fri 02 Jan 2026 08:19:39 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 29226 IP address blocks: 130.49.143.0/24 maxlen: 24 130.49.146.0/24 maxlen: 24 130.49.153.0/24 maxlen: 24 155.212.245.0/24 maxlen: 24 155.212.246.0/24 maxlen: 24 155.212.247.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a1/f4319f-3dfb-42ea-ba95-492ab372689d/1/X75lriPyB_ppUlX1WpB6wWCL4JQ.crl rsync://rpki.ripe.net/repository/DEFAULT/a1/f4319f-3dfb-42ea-ba95-492ab372689d/1/X75lriPyB_ppUlX1WpB6wWCL4JQ.mft rsync://rpki.ripe.net/repository/DEFAULT/X75lriPyB_ppUlX1WpB6wWCL4JQ.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 07:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7d:ca:78:67:1c:42:1b:f4:03:7d:ab:0f:a9:f5:ad:2a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5fbe65ae23f207fa695255f55a907ac1608be094 Validity Not Before: Jan 2 08:19:39 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=f43f36d077b5db3122187258db2129f791ee398a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:26:b2:97:83:0e:3b:dc:fa:9b:66:46:77:22: fd:e6:97:79:6a:9d:88:e2:30:86:2e:eb:e0:7d:12: a3:4e:48:cc:e4:52:a9:c4:3b:c7:ed:77:0b:fb:b4: ea:16:33:37:3b:c6:be:b8:c0:eb:80:11:c2:67:ff: 3d:42:36:14:76:64:4d:0e:af:78:ed:c9:48:00:0e: 08:48:57:a9:3f:3c:5b:c5:5a:d3:f7:91:6e:02:d6: c4:b0:f4:57:f8:6e:f1:74:e4:ca:70:81:a6:83:e2: ba:56:a3:c2:59:aa:9c:56:2a:1a:7d:99:99:c7:b3: f5:21:6e:6c:b6:7b:16:c0:63:b0:fd:25:5a:e8:ba: 78:a9:25:7f:72:f8:ab:73:dc:ac:4b:7b:3e:1e:86: 67:cd:2b:c3:43:73:8a:de:cd:c4:2e:56:81:68:7d: d3:c3:bf:3c:17:82:85:36:43:a5:c7:cd:d5:b4:43: bf:c1:82:73:ed:c0:1d:90:0f:81:75:05:02:37:b9: 08:e4:57:ac:77:50:cf:a2:2a:89:2d:d8:65:f1:95: f0:e4:d7:34:de:55:3e:7d:23:2d:66:18:8b:1e:60: 0c:cd:85:d0:15:c8:c0:fb:1b:bd:da:73:42:8a:54: df:9b:b2:93:0b:19:91:d5:2c:7d:a8:ce:b6:e3:15: 5a:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F4:3F:36:D0:77:B5:DB:31:22:18:72:58:DB:21:29:F7:91:EE:39:8A X509v3 Authority Key Identifier: keyid:5F:BE:65:AE:23:F2:07:FA:69:52:55:F5:5A:90:7A:C1:60:8B:E0:94 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/X75lriPyB_ppUlX1WpB6wWCL4JQ.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a1/f4319f-3dfb-42ea-ba95-492ab372689d/1/9D820He12zEiGHJY2yEp95HuOYo.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/a1/f4319f-3dfb-42ea-ba95-492ab372689d/1/X75lriPyB_ppUlX1WpB6wWCL4JQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 130.49.143.0/24 130.49.146.0/24 130.49.153.0/24 155.212.245.0-155.212.247.255 Signature Algorithm: sha256WithRSAEncryption 2d:1a:13:62:07:1d:4f:b9:ed:60:71:ba:32:3f:e1:8c:16:ff: 49:d1:da:26:bd:7a:75:53:1e:a4:c7:82:8f:84:5a:2e:6f:2b: ee:4f:b7:ab:da:89:e6:a7:cb:8f:ac:e5:db:40:d1:c9:c9:55: 73:b0:e0:25:9b:13:38:4f:b5:a4:ad:35:4c:0c:17:56:25:6f: 1b:ed:df:f8:a0:5d:bc:9a:82:78:77:7c:3a:e6:c1:4e:47:aa: 6a:30:48:4d:cb:02:24:ec:83:cf:ba:fe:7d:87:ef:d5:47:df: bc:6d:19:ed:44:99:99:4c:74:99:db:12:ce:4f:ef:74:7c:0f: 96:da:b6:48:10:e4:b1:83:2e:ad:43:f7:7e:62:0c:04:79:38: b5:d3:24:a0:08:fa:de:c9:01:52:55:c3:30:b5:3f:c0:52:2e: 4f:f0:4b:95:1f:b5:d9:fe:73:30:8d:c6:23:9c:9d:d2:37:f1: c1:e1:91:74:1b:52:b8:82:4c:d8:f5:c1:79:c1:bd:b0:16:dc: 14:46:91:f8:36:ec:23:dd:a7:91:d0:c9:ac:82:bd:ef:81:de: 98:a2:fe:ac:90:f8:58:ec:14:74:99:ae:55:c4:cc:78:29:18: 8f:24:d7:fa:78:f0:f4:11:8c:39:55:2d:98:86:b4:33:cf:f2: 27:8c:86:1d -----BEGIN CERTIFICATE----- MIIFFzCCA/+gAwIBAgISAZt9ynhnHEIb9AN9qw+p9a0qMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDVmYmU2NWFlMjNmMjA3ZmE2OTUyNTVmNTVhOTA3YWMxNjA4 YmUwOTQwHhcNMjYwMTAyMDgxOTM5WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhmNDNmMzZkMDc3YjVkYjMxMjIxODcyNThkYjIxMjlmNzkxZWUzOThhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0Sayl4MOO9z6m2ZGdyL95pd5ap2I 4jCGLuvgfRKjTkjM5FKpxDvH7XcL+7TqFjM3O8a+uMDrgBHCZ/89QjYUdmRNDq94 7clIAA4ISFepPzxbxVrT95FuAtbEsPRX+G7xdOTKcIGmg+K6VqPCWaqcVioafZmZ x7P1IW5stnsWwGOw/SVa6Lp4qSV/cvirc9ysS3s+HoZnzSvDQ3OK3s3ELlaBaH3T w788F4KFNkOlx83VtEO/wYJz7cAdkA+BdQUCN7kI5Fesd1DPoiqJLdhl8ZXw5Nc0 3lU+fSMtZhiLHmAMzYXQFcjA+xu92nNCilTfm7KTCxmR1Sx9qM624xVaIQIDAQAB o4ICIzCCAh8wHQYDVR0OBBYEFPQ/NtB3tdsxIhhyWNshKfeR7jmKMB8GA1UdIwQY MBaAFF++Za4j8gf6aVJV9VqQesFgi+CUMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvWDc1bHJpUHlCX3BwVWxYMVdwQjZ3V0NMNEpRLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hMS9mNDMxOWYtM2RmYi00MmVhLWJhOTUt NDkyYWIzNzI2ODlkLzEvOUQ4MjBIZTEyekVpR0hKWTJ5RXA5NUh1T1lvLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9hMS9mNDMxOWYtM2RmYi00MmVhLWJhOTUtNDkyYWIzNzI2ODlk LzEvWDc1bHJpUHlCX3BwVWxYMVdwQjZ3V0NMNEpRLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMDkGCCsGAQUFBwEHAQH/BCowKDAmBAIAATAgAwQAgjGPAwQA gjGSAwQAgjGZMAwDBACb1PUDBAOb1PAwDQYJKoZIhvcNAQELBQADggEBAC0aE2IH HU+57WBxujI/4YwW/0nR2ia9enVTHqTHgo+EWi5vK+5Pt6vaieany4+s5dtA0cnJ VXOw4CWbEzhPtaStNUwMF1Ylbxvt3/igXbyagnh3fDrmwU5HqmowSE3LAiTsg8+6 /n2H79VH37xtGe1EmZlMdJnbEs5P73R8D5batkgQ5LGDLq1D935iDAR5OLXTJKAI +t7JAVJVwzC1P8BSLk/wS5Uftdn+czCNxiOcndI38cHhkXQbUriCTNj1wXnBvbAW 3BRGkfg27CPdp5HQyayCve+B3pii/qyQ+FjsFHSZrlXEzHgpGI8k1/p48PQRjDlV LZiGtDPP8ieMhh0= -----END CERTIFICATE-----Generated at Sun Jan 25 14:39:31 2026 by rpki-client