This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/16/b5af47-9452-4c55-bc2f-5746007cb2a3/1/9lfxpqvnzkC1l7LuLpA3lEV1oPk.roa File: 9lfxpqvnzkC1l7LuLpA3lEV1oPk.roa (raw, json) Hash identifier: th7K1/T63+0Jd6NuXOYrvk7FBSUYm4oVyo1+FY93Tws= Subject key identifier: F6:57:F1:A6:AB:E7:CE:40:B5:97:B2:EE:2E:90:37:94:45:75:A0:F9 Certificate issuer: /CN=49bd4d28c52c2f12e46a1efbe113241be00ca58f Certificate serial: 019B77C68AEB7BF893EE92E3B146D56E0BF2 Authority key identifier: 49:BD:4D:28:C5:2C:2F:12:E4:6A:1E:FB:E1:13:24:1B:E0:0C:A5:8F Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Sb1NKMUsLxLkah774RMkG-AMpY8.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/16/b5af47-9452-4c55-bc2f-5746007cb2a3/1/9lfxpqvnzkC1l7LuLpA3lEV1oPk.roa Signing time: Thu 01 Jan 2026 04:17:38 +0000 ROA not before: Thu 01 Jan 2026 04:17:38 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 3320 IP address blocks: 193.56.194.0/23 maxlen: 23 2a14:9600::/29 maxlen: 29 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/16/b5af47-9452-4c55-bc2f-5746007cb2a3/1/Sb1NKMUsLxLkah774RMkG-AMpY8.crl rsync://rpki.ripe.net/repository/DEFAULT/16/b5af47-9452-4c55-bc2f-5746007cb2a3/1/Sb1NKMUsLxLkah774RMkG-AMpY8.mft rsync://rpki.ripe.net/repository/DEFAULT/Sb1NKMUsLxLkah774RMkG-AMpY8.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 20 Jan 2026 04:01:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:77:c6:8a:eb:7b:f8:93:ee:92:e3:b1:46:d5:6e:0b:f2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=49bd4d28c52c2f12e46a1efbe113241be00ca58f Validity Not Before: Jan 1 04:17:38 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=f657f1a6abe7ce40b597b2ee2e9037944575a0f9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:fe:c5:e5:42:10:1f:7d:11:87:d1:00:23:e4: 5f:5c:01:1e:0c:32:54:b7:31:d6:3a:92:ad:f0:bf: bd:45:6a:01:0f:c1:dd:c5:f8:5b:8a:3f:8c:73:83: cb:98:ea:fd:8a:c0:2d:a9:7d:05:d2:e3:ca:77:33: a9:f5:31:b9:bb:fe:16:d7:38:b4:80:f2:28:56:70: b5:ae:8a:85:a8:1e:ae:05:3a:d4:79:7f:0d:6e:8e: c2:55:eb:d1:e6:d0:53:e7:13:21:9e:dc:68:ac:bd: cc:2d:39:24:64:eb:e5:05:3d:ca:b2:da:a7:0b:a7: b9:13:e9:1f:e9:b4:ce:1e:7c:0d:07:6f:c8:93:00: 3c:63:e4:db:2d:bd:cc:f3:37:5b:2c:c0:c5:1a:f3: 62:88:4e:4f:c8:4b:27:42:e1:90:be:c9:9e:24:c1: 42:a5:39:03:c4:7f:57:3f:46:82:b9:2d:41:3c:fe: 0e:68:64:96:15:8a:f4:c2:b1:92:60:8c:23:1a:51: 76:9e:99:9e:8a:31:e8:b8:4e:51:14:f1:59:22:10: 89:03:b0:f7:6d:2a:e7:44:a2:04:ca:b5:9d:46:55: fb:3a:bb:c3:84:90:76:58:b0:6b:48:4b:4a:17:3b: a1:f5:ed:f9:61:25:d6:34:17:27:97:6e:ee:cf:7c: ac:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F6:57:F1:A6:AB:E7:CE:40:B5:97:B2:EE:2E:90:37:94:45:75:A0:F9 X509v3 Authority Key Identifier: keyid:49:BD:4D:28:C5:2C:2F:12:E4:6A:1E:FB:E1:13:24:1B:E0:0C:A5:8F X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Sb1NKMUsLxLkah774RMkG-AMpY8.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/16/b5af47-9452-4c55-bc2f-5746007cb2a3/1/9lfxpqvnzkC1l7LuLpA3lEV1oPk.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/16/b5af47-9452-4c55-bc2f-5746007cb2a3/1/Sb1NKMUsLxLkah774RMkG-AMpY8.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 193.56.194.0/23 IPv6: 2a14:9600::/29 Signature Algorithm: sha256WithRSAEncryption 67:cd:4f:88:dc:9a:65:26:49:90:28:ce:05:7e:e9:53:c7:b2: c2:d8:4d:91:30:86:40:42:9e:8a:61:7c:5f:e9:c4:a2:b2:d8: b3:54:8e:e1:73:10:67:8f:37:1b:3c:0e:14:e7:f9:60:30:4f: b8:14:fb:67:a7:17:ed:ec:da:e4:33:7d:4c:2a:7b:5e:f6:c4: a8:57:28:42:d3:96:a5:f7:ba:39:eb:e0:82:20:3f:a5:75:82: 01:a3:09:66:28:9e:14:d0:19:92:6f:b3:b7:85:58:cc:d5:e4: c8:17:da:dd:69:5b:ff:a3:e5:69:c4:94:68:66:b6:ab:16:74: ec:99:16:07:d2:63:e6:be:c4:88:44:c0:4b:6e:31:ec:56:73: 9f:fc:e1:50:3b:ee:f4:a8:5d:2c:df:93:23:4a:58:ea:91:17: 93:98:fd:64:8a:ec:ff:16:10:2e:27:6a:7d:0f:90:6a:97:e7: cf:fe:b7:e8:46:67:c7:18:5d:18:9d:a3:25:d8:e7:95:d6:5b: 66:8d:65:42:7e:3b:cf:af:43:92:8e:37:f2:02:41:37:25:5f: bd:56:7f:89:01:c7:65:ab:38:e0:15:c5:50:70:29:b7:79:01: 7a:05:8a:d7:e1:e1:a8:57:21:31:43:6b:40:01:91:d1:59:ba: a4:02:29:d8 -----BEGIN CERTIFICATE----- MIIFDDCCA/SgAwIBAgISAZt3xorre/iT7pLjsUbVbgvyMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDQ5YmQ0ZDI4YzUyYzJmMTJlNDZhMWVmYmUxMTMyNDFiZTAw Y2E1OGYwHhcNMjYwMTAxMDQxNzM4WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhmNjU3ZjFhNmFiZTdjZTQwYjU5N2IyZWUyZTkwMzc5NDQ1NzVhMGY5MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAo/7F5UIQH30Rh9EAI+RfXAEeDDJU tzHWOpKt8L+9RWoBD8Hdxfhbij+Mc4PLmOr9isAtqX0F0uPKdzOp9TG5u/4W1zi0 gPIoVnC1roqFqB6uBTrUeX8Nbo7CVevR5tBT5xMhntxorL3MLTkkZOvlBT3Kstqn C6e5E+kf6bTOHnwNB2/IkwA8Y+TbLb3M8zdbLMDFGvNiiE5PyEsnQuGQvsmeJMFC pTkDxH9XP0aCuS1BPP4OaGSWFYr0wrGSYIwjGlF2npmeijHouE5RFPFZIhCJA7D3 bSrnRKIEyrWdRlX7OrvDhJB2WLBrSEtKFzuh9e35YSXWNBcnl27uz3ysLwIDAQAB o4ICGDCCAhQwHQYDVR0OBBYEFPZX8aar585AtZey7i6QN5RFdaD5MB8GA1UdIwQY MBaAFEm9TSjFLC8S5Goe++ETJBvgDKWPMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvU2IxTktNVXNMeExrYWg3NzRSTWtHLUFNcFk4LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xNi9iNWFmNDctOTQ1Mi00YzU1LWJjMmYt NTc0NjAwN2NiMmEzLzEvOWxmeHBxdm56a0MxbDdMdUxwQTNsRVYxb1BrLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xNi9iNWFmNDctOTQ1Mi00YzU1LWJjMmYtNTc0NjAwN2NiMmEz LzEvU2IxTktNVXNMeExrYWg3NzRSTWtHLUFNcFk4LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMC4GCCsGAQUFBwEHAQH/BB8wHTAMBAIAATAGAwQBwTjCMA0E AgACMAcDBQMqFJYAMA0GCSqGSIb3DQEBCwUAA4IBAQBnzU+I3JplJkmQKM4FfulT x7LC2E2RMIZAQp6KYXxf6cSistizVI7hcxBnjzcbPA4U5/lgME+4FPtnpxft7Nrk M31MKnte9sSoVyhC05al97o56+CCID+ldYIBowlmKJ4U0BmSb7O3hVjM1eTIF9rd aVv/o+VpxJRoZrarFnTsmRYH0mPmvsSIRMBLbjHsVnOf/OFQO+70qF0s35MjSljq kReTmP1kiuz/FhAuJ2p9D5Bql+fP/rfoRmfHGF0YnaMl2OeV1ltmjWVCfjvPr0OS jjfyAkE3JV+9Vn+JAcdlqzjgFcVQcCm3eQF6BYrX4eGoVyExQ2tAAZHRWbqkAinY -----END CERTIFICATE-----Generated at Mon Jan 19 11:49:48 2026 by rpki-client