This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/40/82e253-0177-4a20-befe-918ac6462679/1/9hSF9_m6E_QEGhZoRgn1sKNDX_I.roa File: 9hSF9_m6E_QEGhZoRgn1sKNDX_I.roa (raw, json) Hash identifier: uX2KZuH1HNSuiUyY3/fev5N9zVqM5EZwqCVjYVsOg5o= Subject key identifier: F6:14:85:F7:F9:BA:13:F4:04:1A:16:68:46:09:F5:B0:A3:43:5F:F2 Certificate issuer: /CN=17d03f298180cc109f19d4b1992c7d71c56c8dcc Certificate serial: 019B7B3607402B17FF964E1241CC2371BF2E Authority key identifier: 17:D0:3F:29:81:80:CC:10:9F:19:D4:B1:99:2C:7D:71:C5:6C:8D:CC Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/F9A_KYGAzBCfGdSxmSx9ccVsjcw.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/40/82e253-0177-4a20-befe-918ac6462679/1/9hSF9_m6E_QEGhZoRgn1sKNDX_I.roa Signing time: Thu 01 Jan 2026 20:18:16 +0000 ROA not before: Thu 01 Jan 2026 20:18:16 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 141718 IP address blocks: 45.155.90.0/24 maxlen: 24 45.155.226.0/24 maxlen: 24 45.156.222.0/24 maxlen: 24 45.156.223.0/24 maxlen: 24 103.100.169.0/24 maxlen: 24 103.211.103.0/24 maxlen: 24 172.110.220.0/24 maxlen: 24 172.110.221.0/24 maxlen: 24 185.233.17.0/24 maxlen: 24 202.71.10.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/40/82e253-0177-4a20-befe-918ac6462679/1/F9A_KYGAzBCfGdSxmSx9ccVsjcw.crl rsync://rpki.ripe.net/repository/DEFAULT/40/82e253-0177-4a20-befe-918ac6462679/1/F9A_KYGAzBCfGdSxmSx9ccVsjcw.mft rsync://rpki.ripe.net/repository/DEFAULT/F9A_KYGAzBCfGdSxmSx9ccVsjcw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 22 Jan 2026 00:00:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7b:36:07:40:2b:17:ff:96:4e:12:41:cc:23:71:bf:2e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=17d03f298180cc109f19d4b1992c7d71c56c8dcc Validity Not Before: Jan 1 20:18:16 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=f61485f7f9ba13f4041a16684609f5b0a3435ff2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:73:f4:8b:cf:10:90:ea:b9:01:12:32:62:61: 62:44:1e:89:8d:02:da:8b:bd:d4:47:a7:85:51:df: 88:c9:20:d1:fd:6b:c3:b6:18:0d:7f:15:d2:58:dc: 88:d4:7f:1b:d2:94:23:5b:55:3d:c0:79:7d:14:db: a2:c0:14:d3:d1:1b:87:52:b7:6a:c1:11:c4:b7:f6: 8b:37:16:fc:62:ac:dc:bf:3e:b6:c8:8c:d2:58:95: 27:14:e1:c2:62:b8:d5:38:ef:2c:c5:49:d0:e0:66: ad:f9:5a:42:1f:01:03:88:7a:77:9f:68:66:80:90: ca:56:b9:8c:92:05:f9:49:27:c5:83:da:3d:71:93: 50:05:eb:32:39:d5:48:88:b4:99:48:a9:c6:c9:f2: b7:40:41:49:18:43:42:9c:22:72:dc:dd:85:bc:da: 32:c6:ee:7d:71:f8:39:19:3d:85:14:5a:ca:e2:33: 42:bd:bd:55:fe:62:e6:1c:d0:23:80:05:0b:90:61: 6a:de:50:32:75:f3:dd:8a:61:97:fd:85:6f:cf:c7: c8:79:6f:1c:6d:c8:31:72:fc:3d:7e:10:24:94:a6: e8:39:89:c7:23:ae:5f:74:0b:94:c9:87:92:90:8a: 1c:05:34:33:82:ad:3e:1e:df:6f:44:7f:ed:57:21: 1a:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F6:14:85:F7:F9:BA:13:F4:04:1A:16:68:46:09:F5:B0:A3:43:5F:F2 X509v3 Authority Key Identifier: keyid:17:D0:3F:29:81:80:CC:10:9F:19:D4:B1:99:2C:7D:71:C5:6C:8D:CC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/F9A_KYGAzBCfGdSxmSx9ccVsjcw.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/40/82e253-0177-4a20-befe-918ac6462679/1/9hSF9_m6E_QEGhZoRgn1sKNDX_I.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/40/82e253-0177-4a20-befe-918ac6462679/1/F9A_KYGAzBCfGdSxmSx9ccVsjcw.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 45.155.90.0/24 45.155.226.0/24 45.156.222.0/23 103.100.169.0/24 103.211.103.0/24 172.110.220.0/23 185.233.17.0/24 202.71.10.0/24 Signature Algorithm: sha256WithRSAEncryption 4d:96:d8:bf:45:90:24:6f:57:f5:67:a6:62:d1:e4:2c:e3:13: 6b:da:30:b2:3e:80:19:85:36:6c:57:fa:7d:a5:3e:1c:1c:ce: 48:07:b7:0e:2e:30:71:2e:fb:75:5d:da:80:ab:f0:d8:89:c1: 31:0e:46:83:75:58:1c:96:21:a6:f7:1e:e9:6a:ed:b0:97:5d: 4d:b7:15:f5:32:f4:15:1f:a0:8d:b7:b5:bf:96:07:c9:20:89: 01:50:0d:83:4d:12:70:cf:91:c7:e3:ca:8b:8c:a4:4b:da:e6: 98:db:33:88:d8:ed:3d:ba:03:73:ee:71:02:fe:d7:42:04:3d: fb:90:b8:98:6d:11:a0:0f:7b:02:31:35:f7:78:d0:ff:82:39: 96:d9:b6:21:c2:c9:38:ab:1f:0b:6f:64:16:db:eb:60:3a:89: 5c:5c:9e:b5:db:95:86:54:07:da:e0:03:84:42:86:35:b3:42: d6:86:c5:b1:ca:76:c6:bf:d4:d3:0e:c7:ba:4d:4d:5f:29:96: 63:16:00:cf:21:4e:d0:7b:38:43:8f:61:ce:af:5f:fb:52:e8: 76:fe:2f:b2:c9:f5:61:75:22:77:6f:fc:86:e9:78:bf:2f:98: 08:35:56:31:bb:47:77:12:a0:ce:4f:d0:67:e0:e9:cf:dd:99: 1b:c8:b9:ab -----BEGIN CERTIFICATE----- MIIFJzCCBA+gAwIBAgISAZt7NgdAKxf/lk4SQcwjcb8uMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDE3ZDAzZjI5ODE4MGNjMTA5ZjE5ZDRiMTk5MmM3ZDcxYzU2 YzhkY2MwHhcNMjYwMTAxMjAxODE2WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhmNjE0ODVmN2Y5YmExM2Y0MDQxYTE2Njg0NjA5ZjViMGEzNDM1ZmYyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArXP0i88QkOq5ARIyYmFiRB6JjQLa i73UR6eFUd+IySDR/WvDthgNfxXSWNyI1H8b0pQjW1U9wHl9FNuiwBTT0RuHUrdq wRHEt/aLNxb8Yqzcvz62yIzSWJUnFOHCYrjVOO8sxUnQ4Gat+VpCHwEDiHp3n2hm gJDKVrmMkgX5SSfFg9o9cZNQBesyOdVIiLSZSKnGyfK3QEFJGENCnCJy3N2FvNoy xu59cfg5GT2FFFrK4jNCvb1V/mLmHNAjgAULkGFq3lAydfPdimGX/YVvz8fIeW8c bcgxcvw9fhAklKboOYnHI65fdAuUyYeSkIocBTQzgq0+Ht9vRH/tVyEalwIDAQAB o4ICMzCCAi8wHQYDVR0OBBYEFPYUhff5uhP0BBoWaEYJ9bCjQ1/yMB8GA1UdIwQY MBaAFBfQPymBgMwQnxnUsZksfXHFbI3MMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvRjlBX0tZR0F6QkNmR2RTeG1TeDljY1ZzamN3LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80MC84MmUyNTMtMDE3Ny00YTIwLWJlZmUt OTE4YWM2NDYyNjc5LzEvOWhTRjlfbTZFX1FFR2hab1JnbjFzS05EWF9JLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC80MC84MmUyNTMtMDE3Ny00YTIwLWJlZmUtOTE4YWM2NDYyNjc5 LzEvRjlBX0tZR0F6QkNmR2RTeG1TeDljY1ZzamN3LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMEkGCCsGAQUFBwEHAQH/BDowODA2BAIAATAwAwQALZtaAwQA LZviAwQBLZzeAwQAZ2SpAwQAZ9NnAwQBrG7cAwQAuekRAwQAykcKMA0GCSqGSIb3 DQEBCwUAA4IBAQBNlti/RZAkb1f1Z6Zi0eQs4xNr2jCyPoAZhTZsV/p9pT4cHM5I B7cOLjBxLvt1XdqAq/DYicExDkaDdVgcliGm9x7pau2wl11NtxX1MvQVH6CNt7W/ lgfJIIkBUA2DTRJwz5HH48qLjKRL2uaY2zOI2O09ugNz7nEC/tdCBD37kLiYbRGg D3sCMTX3eND/gjmW2bYhwsk4qx8Lb2QW2+tgOolcXJ6125WGVAfa4AOEQoY1s0LW hsWxynbGv9TTDse6TU1fKZZjFgDPIU7QezhDj2HOr1/7Uuh2/i+yyfVhdSJ3b/yG 6Xi/L5gINVYxu0d3EqDOT9Bn4OnP3ZkbyLmr -----END CERTIFICATE-----Generated at Wed Jan 21 09:24:14 2026 by rpki-client