This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a3/ec29e2-3440-409a-986a-b250997fc75d/1/G9O4g34wmhpRqqqyNq64bnjh27k.roa File: G9O4g34wmhpRqqqyNq64bnjh27k.roa (raw, json) Hash identifier: lYlheaBAaMmywrolWQWx4QnBFOXnz365592aJuQe6Mw= Subject key identifier: 1B:D3:B8:83:7E:30:9A:1A:51:AA:AA:B2:36:AE:B8:6E:78:E1:DB:B9 Certificate issuer: /CN=b9ea8936f8e53063b4b3bdf0f3b15b2ae667ef13 Certificate serial: 019B79ED480F7C1C618C94097C6776310B1E Authority key identifier: B9:EA:89:36:F8:E5:30:63:B4:B3:BD:F0:F3:B1:5B:2A:E6:67:EF:13 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ueqJNvjlMGO0s73w87FbKuZn7xM.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a3/ec29e2-3440-409a-986a-b250997fc75d/1/G9O4g34wmhpRqqqyNq64bnjh27k.roa Signing time: Thu 01 Jan 2026 14:19:12 +0000 ROA not before: Thu 01 Jan 2026 14:19:12 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 205290 IP address blocks: 185.69.220.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a3/ec29e2-3440-409a-986a-b250997fc75d/1/ueqJNvjlMGO0s73w87FbKuZn7xM.crl rsync://rpki.ripe.net/repository/DEFAULT/a3/ec29e2-3440-409a-986a-b250997fc75d/1/ueqJNvjlMGO0s73w87FbKuZn7xM.mft rsync://rpki.ripe.net/repository/DEFAULT/ueqJNvjlMGO0s73w87FbKuZn7xM.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 13:21:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:79:ed:48:0f:7c:1c:61:8c:94:09:7c:67:76:31:0b:1e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b9ea8936f8e53063b4b3bdf0f3b15b2ae667ef13 Validity Not Before: Jan 1 14:19:12 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=1bd3b8837e309a1a51aaaab236aeb86e78e1dbb9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:f1:b9:54:05:d0:c6:b4:50:4f:7b:48:4e:05: ff:9e:ba:3d:58:c3:7d:2b:06:d9:4e:80:72:41:21: af:7a:e5:3f:8e:cb:a7:cb:38:42:8c:ac:89:ed:0b: 27:07:cb:49:87:82:2c:f4:c9:aa:35:08:e5:9f:fa: ea:48:88:22:21:0c:23:bc:d1:c4:0c:f1:02:e7:44: 8b:fc:62:d5:4c:c5:fa:38:01:cc:b5:e7:de:e2:b2: 83:48:40:a3:1a:03:2d:86:ea:58:bc:9c:d0:1f:6e: db:fe:c0:c6:c3:62:5b:48:24:04:d2:4b:89:52:2f: b6:1b:b9:f8:ba:4a:2b:76:fe:25:68:6a:6a:ec:63: 21:2f:e1:28:04:06:4e:a2:a8:77:11:ea:aa:86:3a: 7e:a5:43:01:9c:2a:7f:65:4d:cc:2e:0d:eb:39:9d: 1c:fc:37:4d:f0:3f:09:d4:2c:67:fd:e5:58:64:da: bd:5b:87:66:02:ce:5b:7c:aa:72:79:02:f7:b9:08: db:28:da:32:0c:c4:7a:ee:dc:1f:84:ac:96:3b:35: 49:29:17:f9:08:47:cf:58:16:ec:99:8b:61:9f:b2: fe:a1:8b:5a:41:8b:e9:71:9e:b6:5a:6b:3c:c4:dc: 84:90:29:61:b9:d0:ea:f3:73:3a:46:e3:06:6f:f9: 47:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1B:D3:B8:83:7E:30:9A:1A:51:AA:AA:B2:36:AE:B8:6E:78:E1:DB:B9 X509v3 Authority Key Identifier: keyid:B9:EA:89:36:F8:E5:30:63:B4:B3:BD:F0:F3:B1:5B:2A:E6:67:EF:13 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ueqJNvjlMGO0s73w87FbKuZn7xM.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/ec29e2-3440-409a-986a-b250997fc75d/1/G9O4g34wmhpRqqqyNq64bnjh27k.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/ec29e2-3440-409a-986a-b250997fc75d/1/ueqJNvjlMGO0s73w87FbKuZn7xM.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.69.220.0/24 Signature Algorithm: sha256WithRSAEncryption 76:6d:6e:9a:21:5f:a0:4a:26:a8:dc:12:40:b3:a5:b4:bd:ef: 7a:e2:62:65:cd:ef:20:7f:ff:f4:e0:bb:62:00:cb:e7:71:84: d5:f0:62:b5:13:b8:f6:ab:19:e0:79:2f:2f:9b:26:7a:48:e7: c2:9f:03:cc:3b:9b:c3:24:29:32:6c:35:89:e0:80:15:90:95: ca:9c:28:fb:77:be:a1:77:99:be:8d:79:93:e8:29:d2:35:e0: ce:37:81:86:b0:6b:56:a0:e2:bf:b8:f1:ee:6c:3a:36:41:d2: 45:4c:31:f1:54:a9:49:16:0c:39:4f:c3:fe:b1:0a:76:3c:ff: 65:df:fd:1a:4e:a2:bc:ca:7f:ac:e7:f5:d2:fd:89:85:fc:a3: 58:43:af:df:9b:67:93:1c:b7:2f:58:37:93:9b:38:af:e6:63: c1:fe:57:d1:2c:21:d1:ad:21:c8:f0:6f:f4:58:55:5b:bc:1f: cd:2b:25:c9:fc:38:98:4b:47:ba:2d:6a:4c:07:36:8b:57:75: 52:74:6c:07:8d:ed:22:c6:17:68:9d:a4:48:e5:38:7a:f6:d0: 33:1a:4b:9b:8e:68:68:2a:14:71:59:41:56:86:b8:d6:7b:2b: 4a:ee:1a:73:e2:2c:ed:a0:a4:d8:7d:01:b2:3d:bc:18:de:e9: 6a:82:51:09 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt57UgPfBxhjJQJfGd2MQseMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGI5ZWE4OTM2ZjhlNTMwNjNiNGIzYmRmMGYzYjE1YjJhZTY2 N2VmMTMwHhcNMjYwMTAxMTQxOTEyWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygxYmQzYjg4MzdlMzA5YTFhNTFhYWFhYjIzNmFlYjg2ZTc4ZTFkYmI5MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAq/G5VAXQxrRQT3tITgX/nro9WMN9 KwbZToByQSGveuU/jsunyzhCjKyJ7QsnB8tJh4Is9MmqNQjln/rqSIgiIQwjvNHE DPEC50SL/GLVTMX6OAHMtefe4rKDSECjGgMthupYvJzQH27b/sDGw2JbSCQE0kuJ Ui+2G7n4ukordv4laGpq7GMhL+EoBAZOoqh3Eeqqhjp+pUMBnCp/ZU3MLg3rOZ0c /DdN8D8J1Cxn/eVYZNq9W4dmAs5bfKpyeQL3uQjbKNoyDMR67twfhKyWOzVJKRf5 CEfPWBbsmYthn7L+oYtaQYvpcZ62Wms8xNyEkClhudDq83M6RuMGb/lH/QIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFBvTuIN+MJoaUaqqsjauuG544du5MB8GA1UdIwQY MBaAFLnqiTb45TBjtLO98POxWyrmZ+8TMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvdWVxSk52amxNR08wczczdzg3RmJLdVpuN3hNLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hMy9lYzI5ZTItMzQ0MC00MDlhLTk4NmEt YjI1MDk5N2ZjNzVkLzEvRzlPNGczNHdtaHBScXFxeU5xNjRibmpoMjdrLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9hMy9lYzI5ZTItMzQ0MC00MDlhLTk4NmEtYjI1MDk5N2ZjNzVk LzEvdWVxSk52amxNR08wczczdzg3RmJLdVpuN3hNLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAuUXcMA0G CSqGSIb3DQEBCwUAA4IBAQB2bW6aIV+gSiao3BJAs6W0ve964mJlze8gf//04Lti AMvncYTV8GK1E7j2qxngeS8vmyZ6SOfCnwPMO5vDJCkybDWJ4IAVkJXKnCj7d76h d5m+jXmT6CnSNeDON4GGsGtWoOK/uPHubDo2QdJFTDHxVKlJFgw5T8P+sQp2PP9l 3/0aTqK8yn+s5/XS/YmF/KNYQ6/fm2eTHLcvWDeTmziv5mPB/lfRLCHRrSHI8G/0 WFVbvB/NKyXJ/DiYS0e6LWpMBzaLV3VSdGwHje0ixhdonaRI5Th69tAzGkubjmho KhRxWUFWhrjWeytK7hpz4iztoKTYfQGyPbwY3ulqglEJ -----END CERTIFICATE-----Generated at Sun Jan 25 21:06:21 2026 by rpki-client