This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d9/680b78-96af-4a85-ac02-943d03321326/1/ipq9YcAYnvrFr3vqcqcr947YdMg.roa File: ipq9YcAYnvrFr3vqcqcr947YdMg.roa (raw, json) Hash identifier: 5bi2ErlqCm4qbH54sBMbvuS3P5od6hC4MqJwITyM1xA= Subject key identifier: 8A:9A:BD:61:C0:18:9E:FA:C5:AF:7B:EA:72:A7:2B:F7:8E:D8:74:C8 Certificate issuer: /CN=2135c7f571eefeb67404ab6c45fd475551adaf1b Certificate serial: 019B783460640AFA80B513DDFDB8C2C445E2 Authority key identifier: 21:35:C7:F5:71:EE:FE:B6:74:04:AB:6C:45:FD:47:55:51:AD:AF:1B Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ITXH9XHu_rZ0BKtsRf1HVVGtrxs.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d9/680b78-96af-4a85-ac02-943d03321326/1/ipq9YcAYnvrFr3vqcqcr947YdMg.roa Signing time: Thu 01 Jan 2026 06:17:36 +0000 ROA not before: Thu 01 Jan 2026 06:17:36 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 44515 IP address blocks: 193.181.194.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d9/680b78-96af-4a85-ac02-943d03321326/1/ITXH9XHu_rZ0BKtsRf1HVVGtrxs.crl rsync://rpki.ripe.net/repository/DEFAULT/d9/680b78-96af-4a85-ac02-943d03321326/1/ITXH9XHu_rZ0BKtsRf1HVVGtrxs.mft rsync://rpki.ripe.net/repository/DEFAULT/ITXH9XHu_rZ0BKtsRf1HVVGtrxs.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 05:00:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:78:34:60:64:0a:fa:80:b5:13:dd:fd:b8:c2:c4:45:e2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2135c7f571eefeb67404ab6c45fd475551adaf1b Validity Not Before: Jan 1 06:17:36 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=8a9abd61c0189efac5af7bea72a72bf78ed874c8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:8f:c0:33:3d:c6:b1:72:e4:24:fe:71:03:8b: 88:d1:50:05:45:00:45:59:52:d9:83:bf:3e:d8:d4: 91:ec:9f:79:49:27:2b:56:a7:c2:09:01:ac:50:0d: df:f9:8f:b9:93:5e:06:a0:50:2e:b5:b2:ef:39:1a: 83:f6:11:3f:93:53:52:6e:54:85:25:ef:10:b3:24: 84:38:b6:23:33:fb:16:44:d2:d1:22:f4:fb:23:e2: a6:82:cf:42:06:01:ff:4d:6c:1c:fb:67:66:d5:8a: a6:c0:11:0a:f0:3e:82:3e:c7:46:c8:92:cd:dc:3f: d1:45:bb:37:ee:2e:1c:e3:dd:09:8a:0b:9f:19:5c: b4:e1:e8:d5:2b:c4:f7:b7:5a:5f:3e:3b:fc:f7:1a: 1d:14:ea:df:4f:c4:28:78:8a:c6:5e:eb:05:be:70: 8c:50:61:3e:d9:ed:4e:20:ff:25:df:28:40:a5:ef: da:48:a0:99:1c:19:14:7e:37:ff:a3:f2:c9:80:69: 05:25:9c:31:4d:57:6d:07:a1:fd:92:5e:2f:e9:a2: 2a:1e:9f:55:96:32:b7:b3:5f:9f:6d:77:94:ae:5b: ba:ce:b9:00:7a:ea:21:d7:c1:8f:00:2e:cf:8e:9f: c2:4a:9d:dd:d3:57:ae:34:ba:52:e9:f4:b7:db:dd: 6b:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8A:9A:BD:61:C0:18:9E:FA:C5:AF:7B:EA:72:A7:2B:F7:8E:D8:74:C8 X509v3 Authority Key Identifier: keyid:21:35:C7:F5:71:EE:FE:B6:74:04:AB:6C:45:FD:47:55:51:AD:AF:1B X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ITXH9XHu_rZ0BKtsRf1HVVGtrxs.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/680b78-96af-4a85-ac02-943d03321326/1/ipq9YcAYnvrFr3vqcqcr947YdMg.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/680b78-96af-4a85-ac02-943d03321326/1/ITXH9XHu_rZ0BKtsRf1HVVGtrxs.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 193.181.194.0/24 Signature Algorithm: sha256WithRSAEncryption ac:3a:ef:9d:75:7c:ac:28:e5:e9:74:7e:5d:fc:ea:ff:6e:68: 81:70:d2:87:5c:2d:df:e2:35:06:90:36:37:62:0e:40:3e:49: a9:46:1c:77:25:89:e8:8f:c0:ad:0f:6f:85:92:d8:72:c8:19: a2:11:8b:ee:05:4e:b7:ef:a7:53:8f:a7:e4:05:b6:f2:fc:5f: bb:e3:db:0a:f5:ad:95:13:67:75:99:da:63:10:ee:4c:f5:d2: bc:e5:9a:d3:3f:32:b0:16:78:fc:60:f5:6a:70:f8:41:94:22: 53:ff:5f:b1:a6:b9:8d:3f:cf:f1:d4:07:98:24:7a:d5:37:35: 1e:ee:36:db:96:b5:80:ed:63:4b:c8:67:85:15:77:89:ca:45: 2f:ef:3d:1d:4c:01:e3:91:bf:da:8c:7e:14:75:ff:43:ed:3a: 88:a3:c9:36:3c:17:1f:d1:df:75:00:59:2d:38:a2:18:66:f5: fc:d7:5c:0a:16:49:b0:78:7c:17:31:0e:19:d7:76:b8:27:46: 01:a5:df:e9:3c:5c:50:c8:8f:48:3d:1a:19:c4:fc:5b:97:05: 08:a4:df:b7:ea:ac:8e:33:28:74:36:b4:db:78:fd:a4:60:32: ae:2d:57:9e:02:25:e2:90:90:f5:0f:e5:96:96:bf:4b:5d:83: d6:ce:1e:11 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt4NGBkCvqAtRPd/bjCxEXiMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDIxMzVjN2Y1NzFlZWZlYjY3NDA0YWI2YzQ1ZmQ0NzU1NTFh ZGFmMWIwHhcNMjYwMTAxMDYxNzM2WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg4YTlhYmQ2MWMwMTg5ZWZhYzVhZjdiZWE3MmE3MmJmNzhlZDg3NGM4MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAu4/AMz3GsXLkJP5xA4uI0VAFRQBF WVLZg78+2NSR7J95SScrVqfCCQGsUA3f+Y+5k14GoFAutbLvORqD9hE/k1NSblSF Je8QsySEOLYjM/sWRNLRIvT7I+Kmgs9CBgH/TWwc+2dm1YqmwBEK8D6CPsdGyJLN 3D/RRbs37i4c490JigufGVy04ejVK8T3t1pfPjv89xodFOrfT8QoeIrGXusFvnCM UGE+2e1OIP8l3yhApe/aSKCZHBkUfjf/o/LJgGkFJZwxTVdtB6H9kl4v6aIqHp9V ljK3s1+fbXeUrlu6zrkAeuoh18GPAC7Pjp/CSp3d01euNLpS6fS3291rpwIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFIqavWHAGJ76xa976nKnK/eO2HTIMB8GA1UdIwQY MBaAFCE1x/Vx7v62dASrbEX9R1VRra8bMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSVRYSDlYSHVfclowQkt0c1JmMUhWVkd0cnhzLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kOS82ODBiNzgtOTZhZi00YTg1LWFjMDIt OTQzZDAzMzIxMzI2LzEvaXBxOVljQVludnJGcjN2cWNxY3I5NDdZZE1nLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kOS82ODBiNzgtOTZhZi00YTg1LWFjMDItOTQzZDAzMzIxMzI2 LzEvSVRYSDlYSHVfclowQkt0c1JmMUhWVkd0cnhzLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAwbXCMA0G CSqGSIb3DQEBCwUAA4IBAQCsOu+ddXysKOXpdH5d/Or/bmiBcNKHXC3f4jUGkDY3 Yg5APkmpRhx3JYnoj8CtD2+FkthyyBmiEYvuBU6376dTj6fkBbby/F+749sK9a2V E2d1mdpjEO5M9dK85ZrTPzKwFnj8YPVqcPhBlCJT/1+xprmNP8/x1AeYJHrVNzUe 7jbblrWA7WNLyGeFFXeJykUv7z0dTAHjkb/ajH4Udf9D7TqIo8k2PBcf0d91AFkt OKIYZvX811wKFkmweHwXMQ4Z13a4J0YBpd/pPFxQyI9IPRoZxPxblwUIpN+36qyO Myh0NrTbeP2kYDKuLVeeAiXikJD1D+WWlr9LXYPWzh4R -----END CERTIFICATE-----Generated at Sun Jan 25 13:43:39 2026 by rpki-client