This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/db/b5f80d-2a7d-4bab-aaaa-bf264a215b32/1/rCaZ9Cy0alwfhMcrkhs7A3NYfB8.roa File: rCaZ9Cy0alwfhMcrkhs7A3NYfB8.roa (raw, json) Hash identifier: 7fg83l1F4WyPmXoTljaULo+YFLoO2z4vAMFAKMJkors= Subject key identifier: AC:26:99:F4:2C:B4:6A:5C:1F:84:C7:2B:92:1B:3B:03:73:58:7C:1F Certificate issuer: /CN=9ed76829ba6314a035fda799fc0370336657083e Certificate serial: 019B77C6A22B8560924D337DF587E7E3DA8C Authority key identifier: 9E:D7:68:29:BA:63:14:A0:35:FD:A7:99:FC:03:70:33:66:57:08:3E Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ntdoKbpjFKA1_aeZ_ANwM2ZXCD4.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/db/b5f80d-2a7d-4bab-aaaa-bf264a215b32/1/rCaZ9Cy0alwfhMcrkhs7A3NYfB8.roa Signing time: Thu 01 Jan 2026 04:17:44 +0000 ROA not before: Thu 01 Jan 2026 04:17:44 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 203120 IP address blocks: 185.144.180.0/23 maxlen: 23 185.144.182.0/23 maxlen: 23 2a07:4180::/29 maxlen: 29 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/db/b5f80d-2a7d-4bab-aaaa-bf264a215b32/1/ntdoKbpjFKA1_aeZ_ANwM2ZXCD4.crl rsync://rpki.ripe.net/repository/DEFAULT/db/b5f80d-2a7d-4bab-aaaa-bf264a215b32/1/ntdoKbpjFKA1_aeZ_ANwM2ZXCD4.mft rsync://rpki.ripe.net/repository/DEFAULT/ntdoKbpjFKA1_aeZ_ANwM2ZXCD4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 13:01:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:77:c6:a2:2b:85:60:92:4d:33:7d:f5:87:e7:e3:da:8c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9ed76829ba6314a035fda799fc0370336657083e Validity Not Before: Jan 1 04:17:44 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=ac2699f42cb46a5c1f84c72b921b3b0373587c1f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:90:42:f5:77:90:6d:ea:67:71:63:c4:58:d2: 82:72:4c:5f:a2:b0:0a:fc:db:f0:88:bb:3b:72:c7: cd:0a:fd:68:3f:08:b3:e6:f8:83:76:64:00:23:ff: d5:11:03:e3:fd:b2:e4:e6:98:f2:f8:94:b9:35:a5: d0:b7:13:a1:cb:5a:f8:fb:c2:30:bb:15:8f:81:95: f7:ed:60:2d:7b:b7:88:42:1e:89:e4:dc:7a:55:5b: fa:c8:bd:a5:d4:c9:2d:dc:d3:cd:cc:2d:2b:89:15: 60:b6:4a:5d:9c:60:1f:63:db:79:97:6d:3b:cc:4d: 9a:e8:ae:49:3f:b9:5e:bc:87:b1:69:e9:06:49:4b: 49:13:9d:c5:26:5d:72:7d:bf:9d:ac:0c:6c:a4:b8: d7:3b:5b:53:d9:2d:5e:8e:a2:57:fa:b0:73:bf:d9: 6f:d1:32:dc:ea:36:62:a2:7f:ed:93:27:35:a5:c1: 1f:14:5d:5b:fb:4c:ee:55:08:f3:86:40:63:00:63: f9:f1:eb:68:b4:2c:fa:64:5b:e2:da:35:41:d7:0e: d3:fd:e0:51:fc:da:a0:a8:55:56:a5:9e:22:34:45: 5a:b4:2c:85:ec:61:f5:08:8b:c9:d3:2d:59:a3:95: 5d:80:4b:f6:04:00:35:da:16:d5:b0:13:89:d5:c8: a2:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AC:26:99:F4:2C:B4:6A:5C:1F:84:C7:2B:92:1B:3B:03:73:58:7C:1F X509v3 Authority Key Identifier: keyid:9E:D7:68:29:BA:63:14:A0:35:FD:A7:99:FC:03:70:33:66:57:08:3E X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ntdoKbpjFKA1_aeZ_ANwM2ZXCD4.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/db/b5f80d-2a7d-4bab-aaaa-bf264a215b32/1/rCaZ9Cy0alwfhMcrkhs7A3NYfB8.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/db/b5f80d-2a7d-4bab-aaaa-bf264a215b32/1/ntdoKbpjFKA1_aeZ_ANwM2ZXCD4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.144.180.0/22 IPv6: 2a07:4180::/29 Signature Algorithm: sha256WithRSAEncryption 8c:ab:39:da:3d:26:f1:e6:17:3c:97:2b:5b:21:d6:ef:8a:7b: c1:a2:66:b1:77:2c:d6:5c:c9:95:42:4c:3f:57:de:52:b3:0c: 70:ab:fa:89:a1:a8:10:1d:a6:99:61:0d:1f:90:fa:e9:e5:4c: cf:4e:7a:ee:14:e3:4a:49:46:31:99:9b:16:7f:c5:7a:92:f7: 64:38:2a:23:60:09:8a:37:2c:32:3d:96:22:70:4a:ee:0e:20: 95:cd:1f:33:da:35:9e:d6:91:30:7c:96:72:9c:dc:60:01:7e: ea:bf:45:30:61:5a:06:ed:dd:73:60:37:c8:5a:10:a1:c1:71: ca:c8:e5:47:0b:fe:a3:46:50:96:18:bd:cc:a3:af:b3:3c:4e: 20:eb:b3:14:8a:5e:53:03:0c:a7:eb:ad:58:a3:54:60:8d:f3: 86:da:f2:3b:e4:10:99:8d:4d:f8:5b:93:93:a5:68:8c:e6:c0: bc:ff:6c:71:a1:03:3d:4e:33:31:7c:eb:87:c0:63:56:75:14: 98:51:81:69:f5:f1:09:d6:ec:5f:26:25:f4:a0:0c:0a:70:7a: fe:86:c7:d2:52:9e:4c:2a:fa:b4:d5:8a:4a:89:52:11:4a:0d: 20:4f:6b:f4:7e:3d:70:a0:d9:06:21:e0:78:db:22:2e:bc:4e: a6:94:d1:06 -----BEGIN CERTIFICATE----- MIIFDDCCA/SgAwIBAgISAZt3xqIrhWCSTTN99Yfn49qMMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDllZDc2ODI5YmE2MzE0YTAzNWZkYTc5OWZjMDM3MDMzNjY1 NzA4M2UwHhcNMjYwMTAxMDQxNzQ0WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhhYzI2OTlmNDJjYjQ2YTVjMWY4NGM3MmI5MjFiM2IwMzczNTg3YzFmMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAo5BC9XeQbepncWPEWNKCckxforAK /NvwiLs7csfNCv1oPwiz5viDdmQAI//VEQPj/bLk5pjy+JS5NaXQtxOhy1r4+8Iw uxWPgZX37WAte7eIQh6J5Nx6VVv6yL2l1Mkt3NPNzC0riRVgtkpdnGAfY9t5l207 zE2a6K5JP7levIexaekGSUtJE53FJl1yfb+drAxspLjXO1tT2S1ejqJX+rBzv9lv 0TLc6jZion/tkyc1pcEfFF1b+0zuVQjzhkBjAGP58etotCz6ZFvi2jVB1w7T/eBR /NqgqFVWpZ4iNEVatCyF7GH1CIvJ0y1Zo5VdgEv2BAA12hbVsBOJ1ciimQIDAQAB o4ICGDCCAhQwHQYDVR0OBBYEFKwmmfQstGpcH4THK5IbOwNzWHwfMB8GA1UdIwQY MBaAFJ7XaCm6YxSgNf2nmfwDcDNmVwg+MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvbnRkb0ticGpGS0ExX2FlWl9BTndNMlpYQ0Q0LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kYi9iNWY4MGQtMmE3ZC00YmFiLWFhYWEt YmYyNjRhMjE1YjMyLzEvckNhWjlDeTBhbHdmaE1jcmtoczdBM05ZZkI4LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kYi9iNWY4MGQtMmE3ZC00YmFiLWFhYWEtYmYyNjRhMjE1YjMy LzEvbnRkb0ticGpGS0ExX2FlWl9BTndNMlpYQ0Q0LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMC4GCCsGAQUFBwEHAQH/BB8wHTAMBAIAATAGAwQCuZC0MA0E AgACMAcDBQMqB0GAMA0GCSqGSIb3DQEBCwUAA4IBAQCMqznaPSbx5hc8lytbIdbv invBomaxdyzWXMmVQkw/V95Sswxwq/qJoagQHaaZYQ0fkPrp5UzPTnruFONKSUYx mZsWf8V6kvdkOCojYAmKNywyPZYicEruDiCVzR8z2jWe1pEwfJZynNxgAX7qv0Uw YVoG7d1zYDfIWhChwXHKyOVHC/6jRlCWGL3Mo6+zPE4g67MUil5TAwyn661Yo1Rg jfOG2vI75BCZjU34W5OTpWiM5sC8/2xxoQM9TjMxfOuHwGNWdRSYUYFp9fEJ1uxf JiX0oAwKcHr+hsfSUp5MKvq01YpKiVIRSg0gT2v0fj1woNkGIeB42yIuvE6mlNEG -----END CERTIFICATE-----Generated at Sun Jan 25 19:16:25 2026 by rpki-client