This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e1/945dbd-2fb7-4dd1-96a6-0585de4d4ee7/1/D9L3F0MjFuI1mkGvBm8mGmwB0aE.roa File: D9L3F0MjFuI1mkGvBm8mGmwB0aE.roa (raw, json) Hash identifier: d55W5CU5JP2xCsUj9oSlJV+ga7nmSkprH9KBPjXNOz0= Subject key identifier: 0F:D2:F7:17:43:23:16:E2:35:9A:41:AF:06:6F:26:1A:6C:01:D1:A1 Certificate issuer: /CN=44007172df9fc2d4a2ddbba934cebc9f0286d3ca Certificate serial: 019B78344A52EE27181D00D9690B38418153 Authority key identifier: 44:00:71:72:DF:9F:C2:D4:A2:DD:BB:A9:34:CE:BC:9F:02:86:D3:CA Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/RABxct-fwtSi3bupNM68nwKG08o.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e1/945dbd-2fb7-4dd1-96a6-0585de4d4ee7/1/D9L3F0MjFuI1mkGvBm8mGmwB0aE.roa Signing time: Thu 01 Jan 2026 06:17:31 +0000 ROA not before: Thu 01 Jan 2026 06:17:31 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 210374 IP address blocks: 185.83.215.0/24 maxlen: 24 2a05:9f04::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e1/945dbd-2fb7-4dd1-96a6-0585de4d4ee7/1/RABxct-fwtSi3bupNM68nwKG08o.crl rsync://rpki.ripe.net/repository/DEFAULT/e1/945dbd-2fb7-4dd1-96a6-0585de4d4ee7/1/RABxct-fwtSi3bupNM68nwKG08o.mft rsync://rpki.ripe.net/repository/DEFAULT/RABxct-fwtSi3bupNM68nwKG08o.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 22:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:78:34:4a:52:ee:27:18:1d:00:d9:69:0b:38:41:81:53 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=44007172df9fc2d4a2ddbba934cebc9f0286d3ca Validity Not Before: Jan 1 06:17:31 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=0fd2f717432316e2359a41af066f261a6c01d1a1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:c0:90:10:20:e8:10:78:9d:bc:a4:b3:bd:77: 68:ee:58:9b:a7:d7:6d:d4:eb:96:9d:a6:1b:79:27: 4d:da:c4:7f:46:4d:fe:1d:2c:af:ef:4a:ea:5f:b0: b4:b5:35:1c:36:df:b8:c9:da:05:cd:27:77:d6:02: c4:c9:20:15:87:e8:25:81:76:fd:59:2c:f5:75:f5: 08:fe:3b:b8:c0:99:1c:f4:7a:84:6e:ef:5c:52:79: b2:cf:87:48:4c:3a:b4:a7:40:c3:e9:da:54:06:2e: a9:c0:21:4c:8b:95:f3:2b:cc:47:ac:bb:6d:39:5d: 24:ec:d6:73:ed:f3:a5:e1:b6:f5:5c:94:d2:8e:a6: 3d:3a:27:2b:49:f6:a7:ef:a4:73:35:10:3a:b5:46: be:0e:47:d3:d6:f2:0d:d7:ca:ef:d9:94:33:74:c2: b8:e3:dd:bb:d5:25:b1:63:5f:20:3b:81:fc:9e:2d: f7:4c:0b:93:4e:2a:fc:e5:59:08:4c:89:bd:d9:eb: 22:9d:c0:af:dc:39:23:fb:06:c6:be:b2:9a:a2:47: b3:13:b9:2a:59:41:a1:01:d6:49:3f:2b:e2:28:ac: d5:69:38:3e:2a:fb:48:77:0a:35:8c:1d:b5:29:26: 9d:55:ac:e9:1b:7e:5a:a4:1c:dd:3b:60:0d:33:93: 2b:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0F:D2:F7:17:43:23:16:E2:35:9A:41:AF:06:6F:26:1A:6C:01:D1:A1 X509v3 Authority Key Identifier: keyid:44:00:71:72:DF:9F:C2:D4:A2:DD:BB:A9:34:CE:BC:9F:02:86:D3:CA X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/RABxct-fwtSi3bupNM68nwKG08o.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e1/945dbd-2fb7-4dd1-96a6-0585de4d4ee7/1/D9L3F0MjFuI1mkGvBm8mGmwB0aE.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/e1/945dbd-2fb7-4dd1-96a6-0585de4d4ee7/1/RABxct-fwtSi3bupNM68nwKG08o.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.83.215.0/24 IPv6: 2a05:9f04::/40 Signature Algorithm: sha256WithRSAEncryption 23:e3:a2:05:5c:d3:52:d6:21:0f:36:8c:0d:8d:86:89:3e:67: 32:44:d6:34:ab:25:ea:53:da:86:b1:14:62:cd:ec:32:ec:c2: 44:42:6d:81:85:89:c5:c0:a0:a4:77:53:89:5f:87:c4:92:49: 3e:f8:64:10:92:5f:bc:e0:48:67:79:93:9a:1d:7e:18:0e:fe: 2e:d1:ad:86:c8:7f:9d:90:86:2c:ed:bf:de:84:44:c7:81:9f: 4a:52:e2:98:25:fa:09:4e:33:f2:e0:e1:fb:c3:92:67:bf:62: c9:b2:d2:af:2f:c5:37:fb:fa:d9:ff:aa:02:61:8d:52:bd:2e: eb:c2:68:93:db:d4:c2:e2:50:5c:73:50:54:fe:d8:6e:c4:f5: a9:9c:22:51:c9:ad:29:f4:58:d0:5b:75:d2:e9:24:4f:9c:04: 73:cf:dd:78:1f:09:48:e4:5b:1c:74:ce:de:32:57:6e:35:2f: 1b:3b:24:ba:c6:78:f2:9b:c7:5c:ee:7c:2a:70:d3:2e:32:c0: 38:df:ea:5d:45:ed:10:00:3b:ed:53:1d:df:01:94:a3:34:26: 6a:fa:52:04:58:f9:2c:97:4d:39:5f:a3:98:90:fc:10:4e:39: 94:d1:5e:a3:e8:6b:ab:90:c5:c7:0b:3a:cc:7a:d0:2e:11:6e: f4:d7:ff:fe -----BEGIN CERTIFICATE----- MIIFDTCCA/WgAwIBAgISAZt4NEpS7icYHQDZaQs4QYFTMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDQ0MDA3MTcyZGY5ZmMyZDRhMmRkYmJhOTM0Y2ViYzlmMDI4 NmQzY2EwHhcNMjYwMTAxMDYxNzMxWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygwZmQyZjcxNzQzMjMxNmUyMzU5YTQxYWYwNjZmMjYxYTZjMDFkMWExMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvcCQECDoEHidvKSzvXdo7libp9dt 1OuWnaYbeSdN2sR/Rk3+HSyv70rqX7C0tTUcNt+4ydoFzSd31gLEySAVh+glgXb9 WSz1dfUI/ju4wJkc9HqEbu9cUnmyz4dITDq0p0DD6dpUBi6pwCFMi5XzK8xHrLtt OV0k7NZz7fOl4bb1XJTSjqY9OicrSfan76RzNRA6tUa+DkfT1vIN18rv2ZQzdMK4 49271SWxY18gO4H8ni33TAuTTir85VkITIm92esincCv3Dkj+wbGvrKaokezE7kq WUGhAdZJPyviKKzVaTg+KvtIdwo1jB21KSadVazpG35apBzdO2ANM5MrdQIDAQAB o4ICGTCCAhUwHQYDVR0OBBYEFA/S9xdDIxbiNZpBrwZvJhpsAdGhMB8GA1UdIwQY MBaAFEQAcXLfn8LUot27qTTOvJ8ChtPKMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvUkFCeGN0LWZ3dFNpM2J1cE5NNjhud0tHMDhvLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lMS85NDVkYmQtMmZiNy00ZGQxLTk2YTYt MDU4NWRlNGQ0ZWU3LzEvRDlMM0YwTWpGdUkxbWtHdkJtOG1HbXdCMGFFLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9lMS85NDVkYmQtMmZiNy00ZGQxLTk2YTYtMDU4NWRlNGQ0ZWU3 LzEvUkFCeGN0LWZ3dFNpM2J1cE5NNjhud0tHMDhvLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMC8GCCsGAQUFBwEHAQH/BCAwHjAMBAIAATAGAwQAuVPXMA4E AgACMAgDBgAqBZ8EADANBgkqhkiG9w0BAQsFAAOCAQEAI+OiBVzTUtYhDzaMDY2G iT5nMkTWNKsl6lPahrEUYs3sMuzCREJtgYWJxcCgpHdTiV+HxJJJPvhkEJJfvOBI Z3mTmh1+GA7+LtGthsh/nZCGLO2/3oREx4GfSlLimCX6CU4z8uDh+8OSZ79iybLS ry/FN/v62f+qAmGNUr0u68Jok9vUwuJQXHNQVP7YbsT1qZwiUcmtKfRY0Ft10ukk T5wEc8/deB8JSORbHHTO3jJXbjUvGzskusZ48pvHXO58KnDTLjLAON/qXUXtEAA7 7VMd3wGUozQmavpSBFj5LJdNOV+jmJD8EE45lNFeo+hrq5DFxws6zHrQLhFu9Nf/ /g== -----END CERTIFICATE-----Generated at Mon Jan 26 05:14:57 2026 by rpki-client