This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f0/ef536c-03d3-4ac5-b125-5d1fa66c363b/1/s9XpH50IUJBDqGm5liaMw7s6Njs.roa File: s9XpH50IUJBDqGm5liaMw7s6Njs.roa (raw, json) Hash identifier: 3HgZKcrh15EUGsnYKA6GPUieZc8k28J7WsTmBzdNTZs= Subject key identifier: B3:D5:E9:1F:9D:08:50:90:43:A8:69:B9:96:26:8C:C3:BB:3A:36:3B Certificate issuer: /CN=cd5e39658a3ef6f13ca21cc11a4e33ebcd946702 Certificate serial: 019B77C71DADA82B44DAC0AAA0D351626185 Authority key identifier: CD:5E:39:65:8A:3E:F6:F1:3C:A2:1C:C1:1A:4E:33:EB:CD:94:67:02 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zV45ZYo-9vE8ohzBGk4z682UZwI.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f0/ef536c-03d3-4ac5-b125-5d1fa66c363b/1/s9XpH50IUJBDqGm5liaMw7s6Njs.roa Signing time: Thu 01 Jan 2026 04:18:16 +0000 ROA not before: Thu 01 Jan 2026 04:18:16 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 215350 IP address blocks: 85.133.207.0/24 maxlen: 24 85.133.215.0/24 maxlen: 24 85.133.220.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f0/ef536c-03d3-4ac5-b125-5d1fa66c363b/1/zV45ZYo-9vE8ohzBGk4z682UZwI.crl rsync://rpki.ripe.net/repository/DEFAULT/f0/ef536c-03d3-4ac5-b125-5d1fa66c363b/1/zV45ZYo-9vE8ohzBGk4z682UZwI.mft rsync://rpki.ripe.net/repository/DEFAULT/zV45ZYo-9vE8ohzBGk4z682UZwI.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 16:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:77:c7:1d:ad:a8:2b:44:da:c0:aa:a0:d3:51:62:61:85 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=cd5e39658a3ef6f13ca21cc11a4e33ebcd946702 Validity Not Before: Jan 1 04:18:16 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=b3d5e91f9d08509043a869b996268cc3bb3a363b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:95:95:11:15:4f:14:ee:f7:47:01:ce:7d:1a: d2:e0:de:05:e3:10:61:9a:7a:90:18:7c:3f:21:18: b9:78:ac:e7:7a:d3:9d:a2:c3:c6:8f:ca:10:22:55: dc:d7:ac:b0:8d:e4:e3:cb:18:98:7f:10:e5:0b:7d: 79:4d:50:ee:63:90:b1:46:17:63:f6:1a:22:7c:87: 68:7a:e5:fd:6b:86:dc:9b:fe:c3:5f:36:4c:aa:13: 72:1e:ed:da:b6:d3:23:4b:29:b6:d4:0b:95:4e:b7: 87:4a:16:29:89:d0:8e:62:9a:5a:84:9e:40:d5:41: 55:77:be:bc:24:b3:2f:80:93:cb:fd:5e:0d:53:ca: 5d:64:ba:92:5c:db:5f:f2:2c:d6:06:a7:d8:1b:57: 7b:15:0a:71:80:fb:ef:f5:54:0b:d0:48:c4:af:07: a9:1b:02:81:16:5e:03:4f:e7:25:5f:8e:c6:c5:27: b3:05:6e:1f:1c:50:c7:c6:9b:9c:1d:74:35:ab:c1: 51:52:7a:45:7b:c3:5e:a4:1e:4b:bb:7e:6a:ca:57: 7f:91:2c:e0:b1:fc:ce:b9:dc:63:a4:67:98:9b:31: 8e:d7:e5:bf:3d:00:fc:20:a3:92:fc:89:ff:79:52: 8c:b8:8d:d2:36:fc:f4:8a:77:28:06:d4:e6:40:dc: f5:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B3:D5:E9:1F:9D:08:50:90:43:A8:69:B9:96:26:8C:C3:BB:3A:36:3B X509v3 Authority Key Identifier: keyid:CD:5E:39:65:8A:3E:F6:F1:3C:A2:1C:C1:1A:4E:33:EB:CD:94:67:02 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zV45ZYo-9vE8ohzBGk4z682UZwI.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f0/ef536c-03d3-4ac5-b125-5d1fa66c363b/1/s9XpH50IUJBDqGm5liaMw7s6Njs.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/f0/ef536c-03d3-4ac5-b125-5d1fa66c363b/1/zV45ZYo-9vE8ohzBGk4z682UZwI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 85.133.207.0/24 85.133.215.0/24 85.133.220.0/24 Signature Algorithm: sha256WithRSAEncryption 6c:e1:63:7e:b6:5e:cd:a5:bb:cd:a5:a8:cc:4a:57:37:ad:46: 17:8e:da:e0:bf:49:20:d8:5e:73:61:f1:49:ce:5a:ca:81:70: c7:25:93:55:cd:8b:ee:cb:d9:2e:6d:46:8c:fe:c8:73:7b:42: 7a:c2:78:be:c6:fc:af:c5:db:01:f5:57:e5:18:a1:39:d6:fb: e6:0c:f0:5f:e8:ba:d1:ad:a7:53:65:13:03:5a:b2:7d:47:30: 13:ad:bd:dd:ee:cf:b9:ea:14:d7:0c:6d:56:bf:5f:38:e1:d8: de:f2:f1:1b:54:8c:a8:54:8d:aa:03:86:cb:ff:b6:c3:08:0e: 7d:4a:7b:a9:bb:b0:32:3c:75:68:77:ec:09:26:92:a3:f8:38: 5e:f7:70:05:6d:51:f3:85:5e:8f:84:ea:33:3e:68:40:15:13: f3:0d:fd:be:00:48:aa:dd:52:cc:e9:a0:6b:d3:55:84:de:6d: a4:3b:e9:26:ca:6a:81:bd:64:b5:7f:3e:1e:64:dc:37:7e:d0: 86:fb:59:4b:8c:f3:36:d3:70:55:25:f7:5f:2e:4e:d1:2c:fb: 9d:65:1a:7b:87:b4:9e:4c:23:dd:f0:1f:00:8d:36:bd:2e:e1: 7f:62:0d:b0:50:79:fa:03:2f:11:29:cf:9a:7c:62:0f:a3:35: 6b:d3:de:63 -----BEGIN CERTIFICATE----- MIIFCTCCA/GgAwIBAgISAZt3xx2tqCtE2sCqoNNRYmGFMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGNkNWUzOTY1OGEzZWY2ZjEzY2EyMWNjMTFhNGUzM2ViY2Q5 NDY3MDIwHhcNMjYwMTAxMDQxODE2WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhiM2Q1ZTkxZjlkMDg1MDkwNDNhODY5Yjk5NjI2OGNjM2JiM2EzNjNiMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtpWVERVPFO73RwHOfRrS4N4F4xBh mnqQGHw/IRi5eKznetOdosPGj8oQIlXc16ywjeTjyxiYfxDlC315TVDuY5CxRhdj 9hoifIdoeuX9a4bcm/7DXzZMqhNyHu3attMjSym21AuVTreHShYpidCOYppahJ5A 1UFVd768JLMvgJPL/V4NU8pdZLqSXNtf8izWBqfYG1d7FQpxgPvv9VQL0EjErwep GwKBFl4DT+clX47GxSezBW4fHFDHxpucHXQ1q8FRUnpFe8NepB5Lu35qyld/kSzg sfzOudxjpGeYmzGO1+W/PQD8IKOS/In/eVKMuI3SNvz0incoBtTmQNz1GQIDAQAB o4ICFTCCAhEwHQYDVR0OBBYEFLPV6R+dCFCQQ6hpuZYmjMO7OjY7MB8GA1UdIwQY MBaAFM1eOWWKPvbxPKIcwRpOM+vNlGcCMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvelY0NVpZby05dkU4b2h6QkdrNHo2ODJVWndJLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mMC9lZjUzNmMtMDNkMy00YWM1LWIxMjUt NWQxZmE2NmMzNjNiLzEvczlYcEg1MElVSkJEcUdtNWxpYU13N3M2TmpzLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9mMC9lZjUzNmMtMDNkMy00YWM1LWIxMjUtNWQxZmE2NmMzNjNi LzEvelY0NVpZby05dkU4b2h6QkdrNHo2ODJVWndJLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCsGCCsGAQUFBwEHAQH/BBwwGjAYBAIAATASAwQAVYXPAwQA VYXXAwQAVYXcMA0GCSqGSIb3DQEBCwUAA4IBAQBs4WN+tl7NpbvNpajMSlc3rUYX jtrgv0kg2F5zYfFJzlrKgXDHJZNVzYvuy9kubUaM/shze0J6wni+xvyvxdsB9Vfl GKE51vvmDPBf6LrRradTZRMDWrJ9RzATrb3d7s+56hTXDG1Wv1844dje8vEbVIyo VI2qA4bL/7bDCA59Snupu7AyPHVod+wJJpKj+Dhe93AFbVHzhV6PhOozPmhAFRPz Df2+AEiq3VLM6aBr01WE3m2kO+kmymqBvWS1fz4eZNw3ftCG+1lLjPM203BVJfdf Lk7RLPudZRp7h7SeTCPd8B8AjTa9LuF/Yg2wUHn6Ay8RKc+afGIPozVr095j -----END CERTIFICATE-----Generated at Mon Jan 26 01:17:29 2026 by rpki-client