This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/03/ca4114-2fb9-43d1-b528-032af836c172/1/9WDzni9fLgS4Y1Z4NykfP7TpMa0.roa File: 9WDzni9fLgS4Y1Z4NykfP7TpMa0.roa (raw, json) Hash identifier: tKJRFaY2YcR7s8GJcJFATvbLWJiSSXElLCi1btrAeAw= Subject key identifier: F5:60:F3:9E:2F:5F:2E:04:B8:63:56:78:37:29:1F:3F:B4:E9:31:AD Certificate issuer: /CN=85238ce7eaf69a5ba2f0947b2ba053394b45b6cd Certificate serial: 019B79ECB800368A407E9D43F8574186D8D0 Authority key identifier: 85:23:8C:E7:EA:F6:9A:5B:A2:F0:94:7B:2B:A0:53:39:4B:45:B6:CD Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hSOM5-r2mlui8JR7K6BTOUtFts0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/03/ca4114-2fb9-43d1-b528-032af836c172/1/9WDzni9fLgS4Y1Z4NykfP7TpMa0.roa Signing time: Thu 01 Jan 2026 14:18:35 +0000 ROA not before: Thu 01 Jan 2026 14:18:35 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 8508 IP address blocks: 91.220.103.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/03/ca4114-2fb9-43d1-b528-032af836c172/1/hSOM5-r2mlui8JR7K6BTOUtFts0.crl rsync://rpki.ripe.net/repository/DEFAULT/03/ca4114-2fb9-43d1-b528-032af836c172/1/hSOM5-r2mlui8JR7K6BTOUtFts0.mft rsync://rpki.ripe.net/repository/DEFAULT/hSOM5-r2mlui8JR7K6BTOUtFts0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 14:00:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:79:ec:b8:00:36:8a:40:7e:9d:43:f8:57:41:86:d8:d0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=85238ce7eaf69a5ba2f0947b2ba053394b45b6cd Validity Not Before: Jan 1 14:18:35 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=f560f39e2f5f2e04b863567837291f3fb4e931ad Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:a9:df:5e:ab:2f:e9:d3:b4:d4:6c:f4:df:1d: 1e:2e:0f:23:7b:63:33:0b:93:6d:84:b2:78:ee:24: f8:d5:74:18:ac:54:4d:cc:da:dc:d9:5c:3c:35:16: b6:84:fd:27:5a:bd:45:c1:d3:b4:ae:00:89:20:6a: 73:ab:58:56:a5:82:4f:53:32:42:7d:97:2a:0a:f5: d4:96:cb:63:b9:6d:7c:24:51:98:01:d5:4a:19:6c: 16:05:c7:98:3a:51:a8:24:70:0b:97:66:d7:e5:ca: 04:4d:52:c4:d2:b9:82:c8:51:6b:f6:03:db:b7:78: ac:b9:44:d6:c6:72:da:2c:00:5f:b5:f1:23:43:2a: dd:bf:24:d6:53:ee:2f:54:15:3d:ac:f5:8b:87:bc: af:1b:d9:9a:e3:b6:16:2c:62:dc:8d:61:61:d5:8d: 76:7a:3f:96:09:30:8e:82:73:10:b6:b5:82:b3:92: 06:03:4e:99:32:ea:74:f1:63:06:dc:a2:6f:9d:29: 1c:90:47:98:43:cd:38:57:bb:47:b3:dd:ab:5f:7f: c4:2b:1a:ee:24:d5:85:27:aa:2e:d2:ca:f3:32:3d: bd:0a:bc:ab:9c:ba:5e:d1:94:5a:a8:c2:8a:26:d8: d6:69:c4:8d:18:a6:21:ce:96:69:57:fa:0b:d2:37: 5e:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F5:60:F3:9E:2F:5F:2E:04:B8:63:56:78:37:29:1F:3F:B4:E9:31:AD X509v3 Authority Key Identifier: keyid:85:23:8C:E7:EA:F6:9A:5B:A2:F0:94:7B:2B:A0:53:39:4B:45:B6:CD X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hSOM5-r2mlui8JR7K6BTOUtFts0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/03/ca4114-2fb9-43d1-b528-032af836c172/1/9WDzni9fLgS4Y1Z4NykfP7TpMa0.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/03/ca4114-2fb9-43d1-b528-032af836c172/1/hSOM5-r2mlui8JR7K6BTOUtFts0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 91.220.103.0/24 Signature Algorithm: sha256WithRSAEncryption 30:3f:55:ee:1b:9c:f7:a1:0d:80:e5:78:e1:a3:5a:a9:54:47: cb:ca:bc:c1:09:bd:ed:73:37:63:33:38:d6:9c:4f:7e:3a:7c: 3e:b3:6b:f4:fa:e7:fa:f2:eb:e3:c3:b8:e7:ad:eb:1e:cb:80: 05:9b:66:e0:8d:a7:f4:8f:6a:eb:1f:48:a0:cc:a0:6c:9a:26: ae:5f:64:ea:80:8c:1f:f6:59:46:13:e2:d5:b8:ed:e0:c9:27: 9c:42:2f:40:14:63:7f:1a:6f:18:5c:85:7e:d5:ae:29:09:e7: 23:bb:35:d7:3b:6d:bc:d6:80:33:06:2c:47:10:31:47:8f:e0: 75:19:34:9b:c8:64:10:00:46:eb:ac:24:45:44:6c:56:b7:cc: bf:4b:73:61:8d:87:d6:4c:f3:66:20:f7:6f:f6:aa:f3:83:61: 5f:c8:b2:98:c5:75:4a:f4:69:70:7e:f6:87:c6:50:3b:6a:38: 76:23:bd:ee:1b:ca:51:ab:81:28:ed:9b:a2:19:6d:9d:90:31: 8a:f5:18:2a:f6:ff:94:24:26:f1:99:52:09:0b:e8:e7:6a:5f: 74:ad:9a:2e:6c:f1:ff:fb:49:49:72:28:f3:07:fe:a5:c0:5e: b2:a1:f7:96:f0:cb:f1:4c:ba:f5:48:aa:98:c9:fe:9d:8d:f2: b9:24:1c:1b -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt57LgANopAfp1D+FdBhtjQMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDg1MjM4Y2U3ZWFmNjlhNWJhMmYwOTQ3YjJiYTA1MzM5NGI0 NWI2Y2QwHhcNMjYwMTAxMTQxODM1WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhmNTYwZjM5ZTJmNWYyZTA0Yjg2MzU2NzgzNzI5MWYzZmI0ZTkzMWFkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqKnfXqsv6dO01Gz03x0eLg8je2Mz C5NthLJ47iT41XQYrFRNzNrc2Vw8NRa2hP0nWr1FwdO0rgCJIGpzq1hWpYJPUzJC fZcqCvXUlstjuW18JFGYAdVKGWwWBceYOlGoJHALl2bX5coETVLE0rmCyFFr9gPb t3isuUTWxnLaLABftfEjQyrdvyTWU+4vVBU9rPWLh7yvG9ma47YWLGLcjWFh1Y12 ej+WCTCOgnMQtrWCs5IGA06ZMup08WMG3KJvnSkckEeYQ804V7tHs92rX3/EKxru JNWFJ6ou0srzMj29CryrnLpe0ZRaqMKKJtjWacSNGKYhzpZpV/oL0jdeawIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFPVg854vXy4EuGNWeDcpHz+06TGtMB8GA1UdIwQY MBaAFIUjjOfq9ppbovCUeyugUzlLRbbNMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvaFNPTTUtcjJtbHVpOEpSN0s2QlRPVXRGdHMwLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wMy9jYTQxMTQtMmZiOS00M2QxLWI1Mjgt MDMyYWY4MzZjMTcyLzEvOVdEem5pOWZMZ1M0WTFaNE55a2ZQN1RwTWEwLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wMy9jYTQxMTQtMmZiOS00M2QxLWI1MjgtMDMyYWY4MzZjMTcy LzEvaFNPTTUtcjJtbHVpOEpSN0s2QlRPVXRGdHMwLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAW9xnMA0G CSqGSIb3DQEBCwUAA4IBAQAwP1XuG5z3oQ2A5Xjho1qpVEfLyrzBCb3tczdjMzjW nE9+Onw+s2v0+uf68uvjw7jnresey4AFm2bgjaf0j2rrH0igzKBsmiauX2TqgIwf 9llGE+LVuO3gySecQi9AFGN/Gm8YXIV+1a4pCecjuzXXO2281oAzBixHEDFHj+B1 GTSbyGQQAEbrrCRFRGxWt8y/S3NhjYfWTPNmIPdv9qrzg2FfyLKYxXVK9GlwfvaH xlA7ajh2I73uG8pRq4Eo7ZuiGW2dkDGK9Rgq9v+UJCbxmVIJC+jnal90rZoubPH/ +0lJcijzB/6lwF6yofeW8MvxTLr1SKqYyf6djfK5JBwb -----END CERTIFICATE-----Generated at Mon Feb 9 21:25:17 2026 by rpki-client