This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/be/1f6458-dc75-4add-ae72-91e3184bb0ab/1/9YOLRf7UgvHm6WSS32OxNs7-BB8.roa File: 9YOLRf7UgvHm6WSS32OxNs7-BB8.roa (raw, json) Hash identifier: +uQTUHAyt2piiMZ3fQyBEk2qIxPYqqYIm7wQHSwnXVw= Subject key identifier: F5:83:8B:45:FE:D4:82:F1:E6:E9:64:92:DF:63:B1:36:CE:FE:04:1F Certificate issuer: /CN=1aca63df248b7adf3ddd07e8c2d3eedd02cef933 Certificate serial: 019B7D5D0C11BDB10A1787379F705734FAD4 Authority key identifier: 1A:CA:63:DF:24:8B:7A:DF:3D:DD:07:E8:C2:D3:EE:DD:02:CE:F9:33 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Gspj3ySLet893QfowtPu3QLO-TM.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/be/1f6458-dc75-4add-ae72-91e3184bb0ab/1/9YOLRf7UgvHm6WSS32OxNs7-BB8.roa Signing time: Fri 02 Jan 2026 06:20:08 +0000 ROA not before: Fri 02 Jan 2026 06:20:08 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 204009 IP address blocks: 85.219.229.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/be/1f6458-dc75-4add-ae72-91e3184bb0ab/1/Gspj3ySLet893QfowtPu3QLO-TM.crl rsync://rpki.ripe.net/repository/DEFAULT/be/1f6458-dc75-4add-ae72-91e3184bb0ab/1/Gspj3ySLet893QfowtPu3QLO-TM.mft rsync://rpki.ripe.net/repository/DEFAULT/Gspj3ySLet893QfowtPu3QLO-TM.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 12:01:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7d:5d:0c:11:bd:b1:0a:17:87:37:9f:70:57:34:fa:d4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1aca63df248b7adf3ddd07e8c2d3eedd02cef933 Validity Not Before: Jan 2 06:20:08 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=f5838b45fed482f1e6e96492df63b136cefe041f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:a1:46:e5:f8:b3:8e:f2:60:6f:f9:cf:d2:91: aa:4a:e6:c1:5f:37:f2:6f:3a:7b:45:27:1a:b2:a8: 48:02:7b:cc:80:55:a7:f2:67:bc:9f:8d:a1:7e:36: c9:b0:10:b7:38:29:b2:13:a1:ee:f7:31:9f:b9:61: 8a:8e:e2:b1:94:37:aa:dd:d4:8c:ab:e6:80:2f:78: 1d:93:e0:f6:e3:a1:b1:90:ba:3f:67:7e:4f:2d:73: 98:7c:4f:16:3c:46:78:d7:9a:06:b8:d6:57:6e:e5: ed:8a:1e:08:4e:6b:98:45:30:b0:15:ff:4e:11:b6: ba:b7:77:ac:92:55:4f:8b:ef:10:da:48:94:f4:76: 39:ed:34:6e:f5:07:7f:87:22:39:54:d9:42:7a:01: c6:bb:e8:72:ce:e6:2c:99:e3:db:32:12:2b:26:48: d5:1b:1b:67:2f:47:c9:b5:fe:0a:5a:66:eb:13:a7: d6:a8:88:c0:1c:99:4d:2e:17:5b:ca:f6:ee:ae:42: 8d:80:93:dd:46:39:25:84:72:3e:e8:0d:a0:68:e2: 1e:33:b3:fd:92:70:88:a4:1d:6e:d7:31:b1:dd:75: ac:b1:02:95:0e:94:93:da:bf:54:9c:38:32:70:ab: 27:74:0f:f7:38:b2:ce:75:a2:91:79:e4:ea:fe:30: 3b:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F5:83:8B:45:FE:D4:82:F1:E6:E9:64:92:DF:63:B1:36:CE:FE:04:1F X509v3 Authority Key Identifier: keyid:1A:CA:63:DF:24:8B:7A:DF:3D:DD:07:E8:C2:D3:EE:DD:02:CE:F9:33 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Gspj3ySLet893QfowtPu3QLO-TM.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/be/1f6458-dc75-4add-ae72-91e3184bb0ab/1/9YOLRf7UgvHm6WSS32OxNs7-BB8.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/be/1f6458-dc75-4add-ae72-91e3184bb0ab/1/Gspj3ySLet893QfowtPu3QLO-TM.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 85.219.229.0/24 Signature Algorithm: sha256WithRSAEncryption 10:0d:1e:0e:9a:d0:a9:7e:4c:2f:b1:b9:47:30:1a:d5:23:63: f7:40:cf:e6:0e:f9:7c:ff:d3:0d:26:f2:9a:d0:22:3d:78:00: 32:8a:aa:ed:a3:1d:a7:83:2c:a6:4a:1d:b0:9e:b7:a1:a1:76: 01:fa:33:35:9c:8b:0e:49:8d:6d:5b:4c:af:2b:41:e3:03:07: 9d:89:c7:47:70:21:9e:59:8e:87:0b:44:8e:01:82:c1:13:cd: 5e:0c:2b:bd:8a:35:1e:8f:f7:60:b0:cd:19:ca:69:7a:8c:ad: bd:5d:d0:e8:04:48:e1:54:ae:12:f1:81:fd:47:bf:11:0a:d3: 77:43:ca:22:ab:01:ad:2c:2c:08:d5:6f:37:f5:b4:43:b7:29: 13:b0:93:56:e1:20:4b:db:29:b0:65:45:bc:c4:d8:ff:64:87: 0d:83:59:f6:1c:1a:fc:dd:07:ec:3b:15:06:24:f8:25:49:c5: 04:8b:ba:bb:bc:1c:31:00:c6:03:ab:b7:86:8b:48:c8:29:67: 6e:3d:ee:fe:59:30:5c:d6:08:90:00:fc:6a:0a:06:0b:e6:6d: b2:5b:9c:45:6f:6a:35:2f:88:39:3b:f0:cf:e7:97:53:20:5a: c9:e8:34:7e:9c:77:07:7d:80:31:77:29:df:0c:b7:59:2d:ae: 5d:10:86:fb -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt9XQwRvbEKF4c3n3BXNPrUMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDFhY2E2M2RmMjQ4YjdhZGYzZGRkMDdlOGMyZDNlZWRkMDJj ZWY5MzMwHhcNMjYwMTAyMDYyMDA4WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhmNTgzOGI0NWZlZDQ4MmYxZTZlOTY0OTJkZjYzYjEzNmNlZmUwNDFmMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAo6FG5fizjvJgb/nP0pGqSubBXzfy bzp7RScasqhIAnvMgFWn8me8n42hfjbJsBC3OCmyE6Hu9zGfuWGKjuKxlDeq3dSM q+aAL3gdk+D246GxkLo/Z35PLXOYfE8WPEZ415oGuNZXbuXtih4ITmuYRTCwFf9O Eba6t3esklVPi+8Q2kiU9HY57TRu9Qd/hyI5VNlCegHGu+hyzuYsmePbMhIrJkjV GxtnL0fJtf4KWmbrE6fWqIjAHJlNLhdbyvburkKNgJPdRjklhHI+6A2gaOIeM7P9 knCIpB1u1zGx3XWssQKVDpST2r9UnDgycKsndA/3OLLOdaKReeTq/jA7nwIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFPWDi0X+1ILx5ulkkt9jsTbO/gQfMB8GA1UdIwQY MBaAFBrKY98ki3rfPd0H6MLT7t0CzvkzMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvR3NwajN5U0xldDg5M1Fmb3d0UHUzUUxPLVRNLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iZS8xZjY0NTgtZGM3NS00YWRkLWFlNzIt OTFlMzE4NGJiMGFiLzEvOVlPTFJmN1VndkhtNldTUzMyT3hOczctQkI4LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iZS8xZjY0NTgtZGM3NS00YWRkLWFlNzItOTFlMzE4NGJiMGFi LzEvR3NwajN5U0xldDg5M1Fmb3d0UHUzUUxPLVRNLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAVdvlMA0G CSqGSIb3DQEBCwUAA4IBAQAQDR4OmtCpfkwvsblHMBrVI2P3QM/mDvl8/9MNJvKa 0CI9eAAyiqrtox2ngyymSh2wnrehoXYB+jM1nIsOSY1tW0yvK0HjAwedicdHcCGe WY6HC0SOAYLBE81eDCu9ijUej/dgsM0Zyml6jK29XdDoBEjhVK4S8YH9R78RCtN3 Q8oiqwGtLCwI1W839bRDtykTsJNW4SBL2ymwZUW8xNj/ZIcNg1n2HBr83QfsOxUG JPglScUEi7q7vBwxAMYDq7eGi0jIKWduPe7+WTBc1giQAPxqCgYL5m2yW5xFb2o1 L4g5O/DP55dTIFrJ6DR+nHcHfYAxdynfDLdZLa5dEIb7 -----END CERTIFICATE-----Generated at Sun Jan 25 19:16:23 2026 by rpki-client