This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/20/d7cf94-ac61-4fbf-adf0-57eaf833ab0b/1/dh9HELJ4HeZmOUN7AF9in9ZZ-Wk.roa File: dh9HELJ4HeZmOUN7AF9in9ZZ-Wk.roa (raw, json) Hash identifier: QD9afYe9Euena6uMhuaF6GPrPcYje7bkgfG0gL/2Snw= Subject key identifier: 76:1F:47:10:B2:78:1D:E6:66:39:43:7B:00:5F:62:9F:D6:59:F9:69 Certificate issuer: /CN=0b356087c20c7a325416fda803cb76f3da7947a9 Certificate serial: 019B79110472A08238AB38CB34B2CEC42FA6 Authority key identifier: 0B:35:60:87:C2:0C:7A:32:54:16:FD:A8:03:CB:76:F3:DA:79:47:A9 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CzVgh8IMejJUFv2oA8t289p5R6k.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/20/d7cf94-ac61-4fbf-adf0-57eaf833ab0b/1/dh9HELJ4HeZmOUN7AF9in9ZZ-Wk.roa Signing time: Thu 01 Jan 2026 10:18:36 +0000 ROA not before: Thu 01 Jan 2026 10:18:36 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 42446 IP address blocks: 91.199.247.0/24 maxlen: 24 193.142.0.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/20/d7cf94-ac61-4fbf-adf0-57eaf833ab0b/1/CzVgh8IMejJUFv2oA8t289p5R6k.crl rsync://rpki.ripe.net/repository/DEFAULT/20/d7cf94-ac61-4fbf-adf0-57eaf833ab0b/1/CzVgh8IMejJUFv2oA8t289p5R6k.mft rsync://rpki.ripe.net/repository/DEFAULT/CzVgh8IMejJUFv2oA8t289p5R6k.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 10:01:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:79:11:04:72:a0:82:38:ab:38:cb:34:b2:ce:c4:2f:a6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0b356087c20c7a325416fda803cb76f3da7947a9 Validity Not Before: Jan 1 10:18:36 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=761f4710b2781de66639437b005f629fd659f969 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:b4:40:f9:52:46:16:da:f2:6d:7b:d9:6a:fc: 1f:53:f8:53:6e:a0:a6:31:e8:f3:de:28:b8:8f:7f: fa:05:1d:88:8c:71:59:80:31:53:fb:10:52:44:2a: a6:37:30:22:63:01:dc:36:6d:9f:00:eb:71:ee:01: 47:9a:49:e6:3e:84:79:4e:da:07:a7:1f:5f:a8:aa: 3d:00:44:c7:c1:42:98:8c:84:34:da:3e:6f:ab:8a: 3a:ae:0e:1d:da:74:31:e5:6c:64:4d:45:b2:a5:9d: 35:cd:5e:7c:da:eb:7d:03:95:17:77:01:43:1a:a0: 4c:16:1f:4b:fe:c9:0c:f5:99:6b:c0:73:1a:b1:3a: 55:dc:72:9d:ce:d9:27:fb:04:47:7e:33:f0:f3:f4: b1:6f:25:73:4a:fa:b9:4e:cd:9b:bc:6e:3c:ca:76: fb:c7:61:e9:ab:43:64:13:c6:f7:6a:6c:2b:05:f6: 52:3a:9a:56:24:ca:2a:ac:c0:08:d5:92:22:c7:35: 09:0a:f1:f0:70:7c:50:75:b7:31:97:8d:0f:f6:e3: b9:d6:ce:9d:5c:35:b7:c3:8d:70:65:80:8a:e3:19: e9:05:d5:94:69:c8:5c:47:49:df:71:c0:c7:d2:3a: 91:60:47:70:e3:45:a8:55:26:c1:e2:f4:b9:ed:2c: 7d:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 76:1F:47:10:B2:78:1D:E6:66:39:43:7B:00:5F:62:9F:D6:59:F9:69 X509v3 Authority Key Identifier: keyid:0B:35:60:87:C2:0C:7A:32:54:16:FD:A8:03:CB:76:F3:DA:79:47:A9 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CzVgh8IMejJUFv2oA8t289p5R6k.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/20/d7cf94-ac61-4fbf-adf0-57eaf833ab0b/1/dh9HELJ4HeZmOUN7AF9in9ZZ-Wk.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/20/d7cf94-ac61-4fbf-adf0-57eaf833ab0b/1/CzVgh8IMejJUFv2oA8t289p5R6k.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 91.199.247.0/24 193.142.0.0/24 Signature Algorithm: sha256WithRSAEncryption 73:1f:69:62:e5:a2:36:0e:fd:a0:a3:ea:97:f6:a8:45:d6:64: 8a:2b:e9:7c:e9:97:f3:3e:75:b1:83:d4:48:dd:a5:17:e6:15: 23:92:df:bb:ca:4d:f7:f5:ea:8e:b1:8d:0a:75:2c:74:b4:40: 42:45:cc:48:53:41:3f:f2:bc:43:0c:70:63:00:d9:7c:b4:a3: 3b:22:da:5d:84:55:cd:f7:8e:ce:ce:09:9e:dc:b6:af:7c:61: 04:b3:2a:6d:66:30:a1:58:9e:c0:a6:68:f3:8b:b9:d1:99:88: 19:91:2b:38:d6:77:2b:a7:2f:14:be:7e:63:85:70:7c:52:4e: c6:bb:ca:38:17:50:ae:f2:8a:cd:d4:23:32:5a:97:97:b9:07: ed:18:52:d7:3c:bc:ba:09:e5:46:1e:49:20:a9:0f:e9:67:09: 8a:80:81:81:4e:5d:fc:52:85:24:92:a2:00:99:e2:97:9d:63: 32:54:81:a6:6c:0c:af:1c:f7:7b:e3:8c:dc:4e:79:9d:9f:49: 6a:d5:29:39:b9:62:a3:a6:db:da:e4:65:49:94:eb:a1:d0:91: 60:d5:78:1c:2b:66:89:eb:17:b7:4c:40:71:5e:ce:63:fd:0b: 4f:ed:fb:ab:90:6f:38:44:c4:86:a8:fa:1e:53:49:58:b5:d8: 17:8c:1c:d1 -----BEGIN CERTIFICATE----- MIIFAzCCA+ugAwIBAgISAZt5EQRyoII4qzjLNLLOxC+mMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDBiMzU2MDg3YzIwYzdhMzI1NDE2ZmRhODAzY2I3NmYzZGE3 OTQ3YTkwHhcNMjYwMTAxMTAxODM2WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg3NjFmNDcxMGIyNzgxZGU2NjYzOTQzN2IwMDVmNjI5ZmQ2NTlmOTY5MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzbRA+VJGFtrybXvZavwfU/hTbqCm Mejz3ii4j3/6BR2IjHFZgDFT+xBSRCqmNzAiYwHcNm2fAOtx7gFHmknmPoR5TtoH px9fqKo9AETHwUKYjIQ02j5vq4o6rg4d2nQx5WxkTUWypZ01zV582ut9A5UXdwFD GqBMFh9L/skM9ZlrwHMasTpV3HKdztkn+wRHfjPw8/SxbyVzSvq5Ts2bvG48ynb7 x2Hpq0NkE8b3amwrBfZSOppWJMoqrMAI1ZIixzUJCvHwcHxQdbcxl40P9uO51s6d XDW3w41wZYCK4xnpBdWUachcR0nfccDH0jqRYEdw40WoVSbB4vS57Sx9swIDAQAB o4ICDzCCAgswHQYDVR0OBBYEFHYfRxCyeB3mZjlDewBfYp/WWflpMB8GA1UdIwQY MBaAFAs1YIfCDHoyVBb9qAPLdvPaeUepMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvQ3pWZ2g4SU1lakpVRnYyb0E4dDI4OXA1UjZrLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yMC9kN2NmOTQtYWM2MS00ZmJmLWFkZjAt NTdlYWY4MzNhYjBiLzEvZGg5SEVMSjRIZVptT1VON0FGOWluOVpaLVdrLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yMC9kN2NmOTQtYWM2MS00ZmJmLWFkZjAtNTdlYWY4MzNhYjBi LzEvQ3pWZ2g4SU1lakpVRnYyb0E4dDI4OXA1UjZrLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQAW8f3AwQA wY4AMA0GCSqGSIb3DQEBCwUAA4IBAQBzH2li5aI2Dv2go+qX9qhF1mSKK+l86Zfz PnWxg9RI3aUX5hUjkt+7yk339eqOsY0KdSx0tEBCRcxIU0E/8rxDDHBjANl8tKM7 ItpdhFXN947Ozgme3LavfGEEsyptZjChWJ7Apmjzi7nRmYgZkSs41ncrpy8Uvn5j hXB8Uk7Gu8o4F1Cu8orN1CMyWpeXuQftGFLXPLy6CeVGHkkgqQ/pZwmKgIGBTl38 UoUkkqIAmeKXnWMyVIGmbAyvHPd744zcTnmdn0lq1Sk5uWKjptva5GVJlOuh0JFg 1XgcK2aJ6xe3TEBxXs5j/QtP7furkG84RMSGqPoeU0lYtdgXjBzR -----END CERTIFICATE-----Generated at Mon Feb 9 20:05:26 2026 by rpki-client