This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/32/5d842f-6324-4122-b850-2c6a2c69212b/1/9ohQVxC-KoPkbm4r6SUis5fiOY0.roa File: 9ohQVxC-KoPkbm4r6SUis5fiOY0.roa (raw, json) Hash identifier: kQNZRrcsqnI0k3alY/Q+x1zv2+n5L4SsrUZMO9HGPzQ= Subject key identifier: F6:88:50:57:10:BE:2A:83:E4:6E:6E:2B:E9:25:22:B3:97:E2:39:8D Certificate issuer: /CN=75b5abb35fca3070d48122a339ec5cbeff0be97a Certificate serial: 019B7EA70D16B4278F5AFCA085FE488B6F95 Authority key identifier: 75:B5:AB:B3:5F:CA:30:70:D4:81:22:A3:39:EC:5C:BE:FF:0B:E9:7A Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dbWrs1_KMHDUgSKjOexcvv8L6Xo.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/32/5d842f-6324-4122-b850-2c6a2c69212b/1/9ohQVxC-KoPkbm4r6SUis5fiOY0.roa Signing time: Fri 02 Jan 2026 12:20:35 +0000 ROA not before: Fri 02 Jan 2026 12:20:35 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 60016 IP address blocks: 185.244.252.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/32/5d842f-6324-4122-b850-2c6a2c69212b/1/dbWrs1_KMHDUgSKjOexcvv8L6Xo.crl rsync://rpki.ripe.net/repository/DEFAULT/32/5d842f-6324-4122-b850-2c6a2c69212b/1/dbWrs1_KMHDUgSKjOexcvv8L6Xo.mft rsync://rpki.ripe.net/repository/DEFAULT/dbWrs1_KMHDUgSKjOexcvv8L6Xo.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7e:a7:0d:16:b4:27:8f:5a:fc:a0:85:fe:48:8b:6f:95 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=75b5abb35fca3070d48122a339ec5cbeff0be97a Validity Not Before: Jan 2 12:20:35 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=f688505710be2a83e46e6e2be92522b397e2398d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:9d:42:87:60:04:e0:8c:18:9b:3b:3e:8c:8a: fa:11:c4:0f:c0:cd:75:70:cf:54:09:0f:49:df:51: d7:2c:fa:0d:4c:08:61:3d:5d:97:d3:83:8b:a2:05: ce:ee:34:77:86:d8:5e:c8:23:d8:b7:f5:56:fc:01: e0:08:a5:db:9b:03:eb:be:3a:22:d9:cb:75:c0:62: ac:b8:f9:33:1c:be:13:22:51:42:30:1d:d7:93:29: 0f:c1:e4:7e:f0:27:ac:1a:25:bc:29:ee:da:f1:76: 9f:5a:bb:49:27:57:5f:63:38:64:32:7c:97:69:ad: cd:78:74:86:8b:ce:8e:6b:f5:86:f2:4d:f4:17:bb: 8c:27:b1:9d:22:2b:85:21:6d:37:c0:d0:a7:76:9f: 99:89:16:79:cf:aa:a6:65:57:6a:15:4a:6b:e9:8b: 21:c8:a7:45:44:03:10:49:46:ab:02:0d:60:82:77: cc:da:d1:b9:6c:b5:03:d6:de:c4:b3:b8:19:52:73: f9:8f:e7:f2:63:07:61:00:2d:39:ac:5b:a3:18:58: 5a:54:16:dc:1d:7c:2b:66:d3:fd:3f:2e:43:0d:be: 58:ff:ae:19:b0:67:f5:3b:7d:c0:b6:77:b3:84:ce: 81:f0:f1:b4:9f:ed:d2:9f:98:d6:10:08:67:e0:92: c2:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F6:88:50:57:10:BE:2A:83:E4:6E:6E:2B:E9:25:22:B3:97:E2:39:8D X509v3 Authority Key Identifier: keyid:75:B5:AB:B3:5F:CA:30:70:D4:81:22:A3:39:EC:5C:BE:FF:0B:E9:7A X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dbWrs1_KMHDUgSKjOexcvv8L6Xo.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/32/5d842f-6324-4122-b850-2c6a2c69212b/1/9ohQVxC-KoPkbm4r6SUis5fiOY0.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/32/5d842f-6324-4122-b850-2c6a2c69212b/1/dbWrs1_KMHDUgSKjOexcvv8L6Xo.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.244.252.0/22 Signature Algorithm: sha256WithRSAEncryption 34:e9:6a:08:04:ef:38:95:af:14:57:bc:3b:18:c2:bd:d7:40: ad:9c:25:44:0e:17:a0:12:24:d1:b0:fb:39:a0:98:2e:0c:82: a0:34:fa:e0:f1:27:e3:32:aa:af:d2:90:33:b0:38:be:84:f6: a8:0d:87:80:92:47:02:08:8b:05:33:cd:38:dc:46:03:4c:05: 98:f9:3f:59:43:e0:22:bf:ba:ca:6b:b3:08:5d:16:df:a3:e4: b8:13:11:b1:0f:a7:b1:3d:e4:3d:d8:95:83:e9:ea:39:7d:ba: 5a:54:65:68:11:a1:ce:96:3b:ec:11:11:68:b5:75:57:47:a7: 94:7c:1e:1b:2f:a2:bb:3f:08:db:5c:f1:a0:a1:e7:56:93:9f: 52:37:57:b5:99:de:b0:a9:20:d1:52:4d:b6:bd:92:18:b3:73: 77:90:79:6a:da:78:a8:53:6d:69:be:8d:47:c5:cf:93:c0:ce: 7c:5f:d8:a7:18:fb:f3:79:fb:1b:c1:36:be:7f:21:f2:db:87: 53:91:84:43:98:db:0a:95:32:e7:29:db:14:f3:c9:93:6d:cc: 35:86:63:e1:3e:66:d8:cc:03:f7:f2:4d:9e:16:75:16:30:9c: fd:fa:6b:74:a3:cc:58:ac:3e:ab:94:86:93:3e:f2:4d:ab:e8: 8c:76:fb:c6 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt+pw0WtCePWvyghf5Ii2+VMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDc1YjVhYmIzNWZjYTMwNzBkNDgxMjJhMzM5ZWM1Y2JlZmYw YmU5N2EwHhcNMjYwMTAyMTIyMDM1WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhmNjg4NTA1NzEwYmUyYTgzZTQ2ZTZlMmJlOTI1MjJiMzk3ZTIzOThkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsJ1Ch2AE4IwYmzs+jIr6EcQPwM11 cM9UCQ9J31HXLPoNTAhhPV2X04OLogXO7jR3htheyCPYt/VW/AHgCKXbmwPrvjoi 2ct1wGKsuPkzHL4TIlFCMB3XkykPweR+8CesGiW8Ke7a8XafWrtJJ1dfYzhkMnyX aa3NeHSGi86Oa/WG8k30F7uMJ7GdIiuFIW03wNCndp+ZiRZ5z6qmZVdqFUpr6Ysh yKdFRAMQSUarAg1ggnfM2tG5bLUD1t7Es7gZUnP5j+fyYwdhAC05rFujGFhaVBbc HXwrZtP9Py5DDb5Y/64ZsGf1O33AtnezhM6B8PG0n+3Sn5jWEAhn4JLCywIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFPaIUFcQviqD5G5uK+klIrOX4jmNMB8GA1UdIwQY MBaAFHW1q7NfyjBw1IEioznsXL7/C+l6MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvZGJXcnMxX0tNSERVZ1NLak9leGN2djhMNlhvLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zMi81ZDg0MmYtNjMyNC00MTIyLWI4NTAt MmM2YTJjNjkyMTJiLzEvOW9oUVZ4Qy1Lb1BrYm00cjZTVWlzNWZpT1kwLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zMi81ZDg0MmYtNjMyNC00MTIyLWI4NTAtMmM2YTJjNjkyMTJi LzEvZGJXcnMxX0tNSERVZ1NLak9leGN2djhMNlhvLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCufT8MA0G CSqGSIb3DQEBCwUAA4IBAQA06WoIBO84la8UV7w7GMK910CtnCVEDhegEiTRsPs5 oJguDIKgNPrg8SfjMqqv0pAzsDi+hPaoDYeAkkcCCIsFM8043EYDTAWY+T9ZQ+Ai v7rKa7MIXRbfo+S4ExGxD6exPeQ92JWD6eo5fbpaVGVoEaHOljvsERFotXVXR6eU fB4bL6K7PwjbXPGgoedWk59SN1e1md6wqSDRUk22vZIYs3N3kHlq2nioU21pvo1H xc+TwM58X9inGPvzefsbwTa+fyHy24dTkYRDmNsKlTLnKdsU88mTbcw1hmPhPmbY zAP38k2eFnUWMJz9+mt0o8xYrD6rlIaTPvJNq+iMdvvG -----END CERTIFICATE-----Generated at Mon Feb 9 19:55:30 2026 by rpki-client