This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f1/cf23e7-73be-4e30-a9e8-3d1a0ebd0f59/1/9MnmN8BJQf0kOHp6EAYtsFBmQ8A.roa File: 9MnmN8BJQf0kOHp6EAYtsFBmQ8A.roa (raw, json) Hash identifier: GaU3NhS7R0xUqYKJ24HpGBHtr1NKfsNpWx13se1RpD8= Subject key identifier: F4:C9:E6:37:C0:49:41:FD:24:38:7A:7A:10:06:2D:B0:50:66:43:C0 Certificate issuer: /CN=49f2702d1a0726175e39af16974e5375dcaefc31 Certificate serial: 019B7A5B196444E128541FAFC5C3FD401826 Authority key identifier: 49:F2:70:2D:1A:07:26:17:5E:39:AF:16:97:4E:53:75:DC:AE:FC:31 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/SfJwLRoHJhdeOa8Wl05Tddyu_DE.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f1/cf23e7-73be-4e30-a9e8-3d1a0ebd0f59/1/9MnmN8BJQf0kOHp6EAYtsFBmQ8A.roa Signing time: Thu 01 Jan 2026 16:19:09 +0000 ROA not before: Thu 01 Jan 2026 16:19:09 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 51305 IP address blocks: 195.226.198.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f1/cf23e7-73be-4e30-a9e8-3d1a0ebd0f59/1/SfJwLRoHJhdeOa8Wl05Tddyu_DE.crl rsync://rpki.ripe.net/repository/DEFAULT/f1/cf23e7-73be-4e30-a9e8-3d1a0ebd0f59/1/SfJwLRoHJhdeOa8Wl05Tddyu_DE.mft rsync://rpki.ripe.net/repository/DEFAULT/SfJwLRoHJhdeOa8Wl05Tddyu_DE.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 27 Jan 2026 09:01:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7a:5b:19:64:44:e1:28:54:1f:af:c5:c3:fd:40:18:26 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=49f2702d1a0726175e39af16974e5375dcaefc31 Validity Not Before: Jan 1 16:19:09 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=f4c9e637c04941fd24387a7a10062db0506643c0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:64:08:0c:9d:18:7c:7d:ea:62:aa:51:a6:6b: df:ee:8f:2d:21:bd:c5:42:6a:45:00:88:24:83:f5: 47:73:5f:18:ae:64:eb:50:d2:42:53:61:04:f5:20: d8:fb:3a:65:e1:3d:81:9c:d4:35:15:e8:a3:f0:4b: 95:0f:80:91:fd:f9:1f:84:ca:48:fb:1f:b6:65:b3: ab:78:40:a1:2f:c1:0a:fb:8e:da:cc:0a:f9:72:97: 3c:93:2c:64:13:7d:6c:56:21:1e:6e:27:a3:63:c3: 51:46:6f:50:92:d3:3d:34:e1:c4:bf:d7:b7:bd:d5: a3:f3:b2:2d:89:81:07:3c:c8:00:e5:61:eb:0b:9a: 59:ad:e7:d1:18:0e:fb:19:81:00:74:6c:23:fb:e4: 9e:af:25:40:d9:b2:29:63:19:b4:9f:fe:62:2f:ba: 37:68:86:ca:fa:c7:28:18:32:20:60:3b:22:c6:81: dd:b9:65:fc:0d:d8:8b:42:b1:62:6c:0f:92:0c:4f: d2:93:1d:76:4b:f4:95:02:aa:c4:64:bc:cb:cb:15: 7f:56:d7:8e:d8:96:0b:b8:f2:fd:1f:7d:18:9c:2b: 73:5b:b0:76:f6:4c:2a:b3:05:cf:16:47:a0:1f:ba: c5:bb:dc:56:fe:ee:5e:f4:fb:50:a1:87:7b:bd:dc: bd:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F4:C9:E6:37:C0:49:41:FD:24:38:7A:7A:10:06:2D:B0:50:66:43:C0 X509v3 Authority Key Identifier: keyid:49:F2:70:2D:1A:07:26:17:5E:39:AF:16:97:4E:53:75:DC:AE:FC:31 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/SfJwLRoHJhdeOa8Wl05Tddyu_DE.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f1/cf23e7-73be-4e30-a9e8-3d1a0ebd0f59/1/9MnmN8BJQf0kOHp6EAYtsFBmQ8A.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/f1/cf23e7-73be-4e30-a9e8-3d1a0ebd0f59/1/SfJwLRoHJhdeOa8Wl05Tddyu_DE.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 195.226.198.0/24 Signature Algorithm: sha256WithRSAEncryption 5d:b9:e6:4d:9c:e5:c4:cf:6a:16:27:d7:57:f7:8d:5b:cc:69: 3f:66:0e:d2:d6:b4:c4:e0:50:e7:8a:05:50:e5:e5:42:94:94: de:cf:4e:ca:6d:56:21:91:f1:45:e5:f3:09:44:8a:7e:ea:82: 96:de:20:04:e4:87:77:d3:99:f5:55:68:d6:8f:8b:26:f1:af: 52:27:21:a0:36:54:7f:e6:1d:2e:3f:8c:58:52:4d:c0:a8:0a: 8a:18:f0:53:0a:85:e8:b8:d4:41:45:f7:60:49:a3:0f:d7:ed: 66:68:16:d0:b5:cb:84:e8:5e:ca:81:b8:e9:cc:a1:b6:c5:a5: 28:11:ac:58:03:99:df:f8:00:4c:ea:0a:4f:08:46:a3:4b:42: 39:75:36:a9:69:4c:8a:e7:09:05:e4:67:3a:bb:0c:e8:70:00: a0:71:88:ac:c1:6f:33:81:9d:92:01:f2:22:af:dc:16:1b:9f: 9f:17:aa:8e:90:28:7a:f1:b4:db:df:ad:fa:f1:21:80:4a:fc: b2:d9:00:12:be:af:c5:df:be:c5:37:9c:73:b5:c5:d8:67:8e: de:27:0f:83:8a:a7:c9:4b:ec:b6:6f:31:8c:72:f2:cd:5a:40: 7f:10:80:4c:74:20:02:eb:21:92:3c:b4:86:99:e6:de:95:93: 3d:e4:8e:46 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt6WxlkROEoVB+vxcP9QBgmMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDQ5ZjI3MDJkMWEwNzI2MTc1ZTM5YWYxNjk3NGU1Mzc1ZGNh ZWZjMzEwHhcNMjYwMTAxMTYxOTA5WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhmNGM5ZTYzN2MwNDk0MWZkMjQzODdhN2ExMDA2MmRiMDUwNjY0M2MwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1WQIDJ0YfH3qYqpRpmvf7o8tIb3F QmpFAIgkg/VHc18YrmTrUNJCU2EE9SDY+zpl4T2BnNQ1Feij8EuVD4CR/fkfhMpI +x+2ZbOreEChL8EK+47azAr5cpc8kyxkE31sViEebiejY8NRRm9QktM9NOHEv9e3 vdWj87ItiYEHPMgA5WHrC5pZrefRGA77GYEAdGwj++SeryVA2bIpYxm0n/5iL7o3 aIbK+scoGDIgYDsixoHduWX8DdiLQrFibA+SDE/Skx12S/SVAqrEZLzLyxV/VteO 2JYLuPL9H30YnCtzW7B29kwqswXPFkegH7rFu9xW/u5e9PtQoYd7vdy9ywIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFPTJ5jfASUH9JDh6ehAGLbBQZkPAMB8GA1UdIwQY MBaAFEnycC0aByYXXjmvFpdOU3XcrvwxMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvU2ZKd0xSb0hKaGRlT2E4V2wwNVRkZHl1X0RFLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mMS9jZjIzZTctNzNiZS00ZTMwLWE5ZTgt M2QxYTBlYmQwZjU5LzEvOU1ubU44QkpRZjBrT0hwNkVBWXRzRkJtUThBLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9mMS9jZjIzZTctNzNiZS00ZTMwLWE5ZTgtM2QxYTBlYmQwZjU5 LzEvU2ZKd0xSb0hKaGRlT2E4V2wwNVRkZHl1X0RFLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAw+LGMA0G CSqGSIb3DQEBCwUAA4IBAQBdueZNnOXEz2oWJ9dX941bzGk/Zg7S1rTE4FDnigVQ 5eVClJTez07KbVYhkfFF5fMJRIp+6oKW3iAE5Id305n1VWjWj4sm8a9SJyGgNlR/ 5h0uP4xYUk3AqAqKGPBTCoXouNRBRfdgSaMP1+1maBbQtcuE6F7KgbjpzKG2xaUo EaxYA5nf+ABM6gpPCEajS0I5dTapaUyK5wkF5Gc6uwzocACgcYiswW8zgZ2SAfIi r9wWG5+fF6qOkCh68bTb36368SGASvyy2QASvq/F377FN5xztcXYZ47eJw+DiqfJ S+y2bzGMcvLNWkB/EIBMdCAC6yGSPLSGmebelZM95I5G -----END CERTIFICATE-----Generated at Mon Jan 26 14:53:33 2026 by rpki-client