This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3d/82233d-ec07-42fb-8799-ed30b9bb12d5/1/d9cqCh7w_HREeS5tpm1EQv7bdkc.roa File: d9cqCh7w_HREeS5tpm1EQv7bdkc.roa (raw, json) Hash identifier: DnP+rNEbo3897fPDs3e26jS0WYx/AYH67Gkmxad3fpM= Subject key identifier: 77:D7:2A:0A:1E:F0:FC:74:44:79:2E:6D:A6:6D:44:42:FE:DB:76:47 Certificate issuer: /CN=60fcd55b9130858d8ea583c0987dad00f614db39 Certificate serial: 019B7B367A98887AE16BE061925E0B359143 Authority key identifier: 60:FC:D5:5B:91:30:85:8D:8E:A5:83:C0:98:7D:AD:00:F6:14:DB:39 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YPzVW5EwhY2OpYPAmH2tAPYU2zk.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3d/82233d-ec07-42fb-8799-ed30b9bb12d5/1/d9cqCh7w_HREeS5tpm1EQv7bdkc.roa Signing time: Thu 01 Jan 2026 20:18:46 +0000 ROA not before: Thu 01 Jan 2026 20:18:46 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 135402 IP address blocks: 185.128.226.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3d/82233d-ec07-42fb-8799-ed30b9bb12d5/1/YPzVW5EwhY2OpYPAmH2tAPYU2zk.crl rsync://rpki.ripe.net/repository/DEFAULT/3d/82233d-ec07-42fb-8799-ed30b9bb12d5/1/YPzVW5EwhY2OpYPAmH2tAPYU2zk.mft rsync://rpki.ripe.net/repository/DEFAULT/YPzVW5EwhY2OpYPAmH2tAPYU2zk.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 20 Jan 2026 18:00:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7b:36:7a:98:88:7a:e1:6b:e0:61:92:5e:0b:35:91:43 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=60fcd55b9130858d8ea583c0987dad00f614db39 Validity Not Before: Jan 1 20:18:46 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=77d72a0a1ef0fc7444792e6da66d4442fedb7647 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:ec:59:22:49:69:d6:04:a6:90:08:b3:2f:13: 0a:a7:4a:35:2f:42:68:10:c5:49:42:6c:4e:08:c2: f8:01:d4:65:08:e0:fe:7a:70:0a:bd:06:f5:e7:81: 7e:c3:0f:d6:00:8a:97:fb:c4:64:47:fb:27:41:e0: 49:63:55:af:79:06:d3:60:70:a5:09:26:af:d3:3d: 6b:9a:c8:53:4d:c2:4b:eb:ce:1c:fe:db:26:ab:0e: a5:78:7b:49:e8:0e:39:7e:00:36:99:58:a2:cc:41: 17:16:3e:1a:b2:33:45:da:c8:af:65:80:a3:51:f0: f1:cf:ec:21:9c:dc:be:c5:26:cc:ba:04:91:5f:ac: 57:69:ed:5f:53:44:ea:52:7a:ae:47:27:a0:08:0d: 22:41:b1:c8:6b:13:74:39:36:55:db:27:36:08:f5: 43:dc:b9:6c:f1:68:a7:f7:53:e8:d8:79:73:28:c6: ff:90:60:19:b4:4f:d0:0d:f2:c1:79:9a:b3:49:3a: a0:8d:08:a4:ca:af:47:d6:e1:7d:7a:af:70:68:1c: be:c3:07:8c:dd:de:bb:98:46:34:6c:83:85:b1:66: 98:99:db:1d:4e:7b:75:ee:9f:c9:60:ad:45:60:7f: 4f:ca:d9:d2:d1:f3:fa:7f:e3:f1:fa:dc:59:c1:c6: 2e:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 77:D7:2A:0A:1E:F0:FC:74:44:79:2E:6D:A6:6D:44:42:FE:DB:76:47 X509v3 Authority Key Identifier: keyid:60:FC:D5:5B:91:30:85:8D:8E:A5:83:C0:98:7D:AD:00:F6:14:DB:39 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YPzVW5EwhY2OpYPAmH2tAPYU2zk.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3d/82233d-ec07-42fb-8799-ed30b9bb12d5/1/d9cqCh7w_HREeS5tpm1EQv7bdkc.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/3d/82233d-ec07-42fb-8799-ed30b9bb12d5/1/YPzVW5EwhY2OpYPAmH2tAPYU2zk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.128.226.0/24 Signature Algorithm: sha256WithRSAEncryption 39:63:66:42:26:ef:ca:32:63:73:87:cf:2f:57:cc:a6:94:e0: f0:a6:72:ab:c0:4b:7b:0f:a9:c8:c3:b5:41:1d:08:0d:fb:8b: 41:a8:7c:42:ad:50:cc:94:bd:63:3b:46:1c:d7:9f:01:9a:0e: a8:ac:3f:72:39:42:7f:a6:3b:df:bd:40:99:50:ac:cf:7f:7d: e9:8c:96:dd:d3:9c:d4:c3:c0:d9:b6:82:47:71:89:86:7b:82: 8a:0d:70:dd:41:f2:fc:77:d2:4f:8e:38:45:5a:87:40:01:16: 60:00:ac:46:e4:40:4c:15:1b:32:16:7b:ec:48:9e:88:4d:79: 97:1e:5e:b6:66:5b:b3:68:f9:58:0e:bb:3f:ce:89:e8:33:ae: 00:d3:15:00:97:7c:c4:62:cd:0b:ad:ad:8e:53:69:74:af:07: 32:a9:03:9b:6f:5d:ad:0e:f1:bd:18:8a:cf:54:41:87:1e:87: d6:fb:84:26:2e:84:3d:0a:b9:3d:33:d9:a7:dc:87:fa:8a:82: 0f:f2:9a:d6:9a:39:ff:60:af:c7:92:6b:d2:68:e9:79:a9:10: 26:fe:0f:70:46:b6:7a:f9:bf:02:07:b0:27:4b:b4:4d:5e:41: b7:6e:c6:2e:7a:98:94:fd:39:13:3b:a2:1a:1f:9b:20:27:77: fe:3d:8b:15 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt7NnqYiHrha+Bhkl4LNZFDMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDYwZmNkNTViOTEzMDg1OGQ4ZWE1ODNjMDk4N2RhZDAwZjYx NGRiMzkwHhcNMjYwMTAxMjAxODQ2WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg3N2Q3MmEwYTFlZjBmYzc0NDQ3OTJlNmRhNjZkNDQ0MmZlZGI3NjQ3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzuxZIklp1gSmkAizLxMKp0o1L0Jo EMVJQmxOCML4AdRlCOD+enAKvQb154F+ww/WAIqX+8RkR/snQeBJY1WveQbTYHCl CSav0z1rmshTTcJL684c/tsmqw6leHtJ6A45fgA2mViizEEXFj4asjNF2sivZYCj UfDxz+whnNy+xSbMugSRX6xXae1fU0TqUnquRyegCA0iQbHIaxN0OTZV2yc2CPVD 3Lls8Win91Po2HlzKMb/kGAZtE/QDfLBeZqzSTqgjQikyq9H1uF9eq9waBy+wweM 3d67mEY0bIOFsWaYmdsdTnt17p/JYK1FYH9PytnS0fP6f+Px+txZwcYuWQIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFHfXKgoe8Px0RHkubaZtREL+23ZHMB8GA1UdIwQY MBaAFGD81VuRMIWNjqWDwJh9rQD2FNs5MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvWVB6Vlc1RXdoWTJPcFlQQW1IMnRBUFlVMnprLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zZC84MjIzM2QtZWMwNy00MmZiLTg3OTkt ZWQzMGI5YmIxMmQ1LzEvZDljcUNoN3dfSFJFZVM1dHBtMUVRdjdiZGtjLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zZC84MjIzM2QtZWMwNy00MmZiLTg3OTktZWQzMGI5YmIxMmQ1 LzEvWVB6Vlc1RXdoWTJPcFlQQW1IMnRBUFlVMnprLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAuYDiMA0G CSqGSIb3DQEBCwUAA4IBAQA5Y2ZCJu/KMmNzh88vV8ymlODwpnKrwEt7D6nIw7VB HQgN+4tBqHxCrVDMlL1jO0Yc158Bmg6orD9yOUJ/pjvfvUCZUKzPf33pjJbd05zU w8DZtoJHcYmGe4KKDXDdQfL8d9JPjjhFWodAARZgAKxG5EBMFRsyFnvsSJ6ITXmX Hl62ZluzaPlYDrs/zonoM64A0xUAl3zEYs0Lra2OU2l0rwcyqQObb12tDvG9GIrP VEGHHofW+4QmLoQ9Crk9M9mn3If6ioIP8prWmjn/YK/HkmvSaOl5qRAm/g9wRrZ6 +b8CB7AnS7RNXkG3bsYuepiU/TkTO6IaH5sgJ3f+PYsV -----END CERTIFICATE-----Generated at Mon Jan 19 23:21:43 2026 by rpki-client