This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/40/c3f995-86ef-4a67-acac-e4391fbcaf14/1/9r8kEPo4Ro8lOBvQIbJAndcJdE4.roa File: 9r8kEPo4Ro8lOBvQIbJAndcJdE4.roa (raw, json) Hash identifier: 2P9k8xWZyyhAgwgcrLsXCdtwf5v3K304PlZNuStdbuA= Subject key identifier: F6:BF:24:10:FA:38:46:8F:25:38:1B:D0:21:B2:40:9D:D7:09:74:4E Certificate issuer: /CN=6ce3fb867861daafd781279897fe25a8eb371468 Certificate serial: 019B7FF22543087803DCDBBD596A7AC08CE8 Authority key identifier: 6C:E3:FB:86:78:61:DA:AF:D7:81:27:98:97:FE:25:A8:EB:37:14:68 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bOP7hnhh2q_XgSeYl_4lqOs3FGg.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/40/c3f995-86ef-4a67-acac-e4391fbcaf14/1/9r8kEPo4Ro8lOBvQIbJAndcJdE4.roa Signing time: Fri 02 Jan 2026 18:22:14 +0000 ROA not before: Fri 02 Jan 2026 18:22:14 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 196954 IP address blocks: 185.28.116.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/40/c3f995-86ef-4a67-acac-e4391fbcaf14/1/bOP7hnhh2q_XgSeYl_4lqOs3FGg.crl rsync://rpki.ripe.net/repository/DEFAULT/40/c3f995-86ef-4a67-acac-e4391fbcaf14/1/bOP7hnhh2q_XgSeYl_4lqOs3FGg.mft rsync://rpki.ripe.net/repository/DEFAULT/bOP7hnhh2q_XgSeYl_4lqOs3FGg.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 29 Jan 2026 09:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7f:f2:25:43:08:78:03:dc:db:bd:59:6a:7a:c0:8c:e8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ce3fb867861daafd781279897fe25a8eb371468 Validity Not Before: Jan 2 18:22:14 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=f6bf2410fa38468f25381bd021b2409dd709744e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:64:1f:2c:55:b6:da:be:4c:ed:a8:22:ff:a9: 1f:d5:a6:75:25:08:f7:03:3f:13:e0:88:50:75:72: 23:73:6c:af:42:df:f0:54:40:6a:ce:28:c1:d2:54: 00:c3:43:d2:11:3d:e9:e1:74:9d:f5:91:48:10:fe: 83:9a:fc:43:22:1f:8e:78:c1:37:1b:6b:9a:55:43: a0:ea:4f:5a:f3:07:f7:14:90:ed:ed:fa:69:dd:fa: 2a:e0:a7:df:c4:60:16:13:ea:17:54:9f:3b:32:0d: 33:7f:a0:76:da:47:d8:dc:f4:98:54:12:69:8c:7b: 7c:a5:5a:05:db:ca:44:cd:4c:d0:e8:25:d4:e5:40: 92:55:8d:4a:cd:6d:bb:d8:96:4e:a6:b6:83:ad:97: 56:46:79:4b:da:66:50:34:83:10:8e:f2:60:a0:78: f8:4a:e5:a4:ee:f6:cb:75:8e:b0:69:b0:6d:60:bd: bb:4c:bf:33:f6:3c:11:38:fd:26:1e:1c:e2:0e:ea: b3:a2:1f:27:f0:dc:69:aa:ad:a2:ae:47:98:58:1e: a1:62:c0:16:ba:f4:b7:9a:9f:60:8f:02:e1:85:86: 72:71:fe:fd:2c:8b:c6:8a:04:ea:47:94:32:e8:f0: fb:0e:ae:75:f6:83:79:49:e5:e1:f6:f2:e2:14:df: 29:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F6:BF:24:10:FA:38:46:8F:25:38:1B:D0:21:B2:40:9D:D7:09:74:4E X509v3 Authority Key Identifier: keyid:6C:E3:FB:86:78:61:DA:AF:D7:81:27:98:97:FE:25:A8:EB:37:14:68 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bOP7hnhh2q_XgSeYl_4lqOs3FGg.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/40/c3f995-86ef-4a67-acac-e4391fbcaf14/1/9r8kEPo4Ro8lOBvQIbJAndcJdE4.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/40/c3f995-86ef-4a67-acac-e4391fbcaf14/1/bOP7hnhh2q_XgSeYl_4lqOs3FGg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.28.116.0/24 Signature Algorithm: sha256WithRSAEncryption 2c:df:d5:ff:fb:06:eb:ef:0f:c5:50:85:d2:6f:08:61:6b:66: ce:68:fc:bd:7e:3c:0a:ae:80:c4:bb:91:ba:e1:61:78:88:9a: 3c:35:e0:ed:3d:04:30:0e:65:ac:fe:0f:e8:70:2a:f9:ad:a1: 4d:e8:66:32:0a:e2:a5:16:41:a9:75:ef:1b:ec:99:f7:a4:93: 10:fe:0d:20:1c:60:56:f2:98:db:c0:09:14:c7:76:0d:52:09: 6a:0c:50:4d:1d:48:46:4c:dc:a1:9e:82:f9:8a:68:e5:89:1d: ca:bf:c0:b2:ca:be:5f:b9:39:5b:39:83:3e:80:c0:ea:e9:74: 5b:85:aa:79:2c:be:aa:15:35:10:9d:3e:46:d0:3f:e5:6f:cf: 88:25:61:34:31:67:66:96:e7:e7:75:b5:40:02:91:e9:4c:d0: d9:1d:97:dc:a7:99:53:e5:86:a0:0a:fd:fe:18:78:47:01:2a: 9b:2b:19:7c:fc:22:d9:16:81:79:14:e9:db:9a:c6:26:0b:4b: 0b:2a:70:00:23:8f:59:2f:1f:16:15:64:2f:b9:79:e2:e7:9f: 9f:0a:78:e2:76:30:08:f2:ff:9a:9b:df:fb:6d:56:19:7c:d2: 81:7e:41:ba:73:9e:59:4c:75:bd:41:ca:b4:7a:9e:3b:24:25: cc:b2:b2:78 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt/8iVDCHgD3Nu9WWp6wIzoMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDZjZTNmYjg2Nzg2MWRhYWZkNzgxMjc5ODk3ZmUyNWE4ZWIz NzE0NjgwHhcNMjYwMTAyMTgyMjE0WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhmNmJmMjQxMGZhMzg0NjhmMjUzODFiZDAyMWIyNDA5ZGQ3MDk3NDRlMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAv2QfLFW22r5M7agi/6kf1aZ1JQj3 Az8T4IhQdXIjc2yvQt/wVEBqzijB0lQAw0PSET3p4XSd9ZFIEP6DmvxDIh+OeME3 G2uaVUOg6k9a8wf3FJDt7fpp3foq4KffxGAWE+oXVJ87Mg0zf6B22kfY3PSYVBJp jHt8pVoF28pEzUzQ6CXU5UCSVY1KzW272JZOpraDrZdWRnlL2mZQNIMQjvJgoHj4 SuWk7vbLdY6wabBtYL27TL8z9jwROP0mHhziDuqzoh8n8Nxpqq2irkeYWB6hYsAW uvS3mp9gjwLhhYZycf79LIvGigTqR5Qy6PD7Dq519oN5SeXh9vLiFN8pdQIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFPa/JBD6OEaPJTgb0CGyQJ3XCXROMB8GA1UdIwQY MBaAFGzj+4Z4Ydqv14EnmJf+JajrNxRoMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvYk9QN2huaGgycV9YZ1NlWWxfNGxxT3MzRkdnLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80MC9jM2Y5OTUtODZlZi00YTY3LWFjYWMt ZTQzOTFmYmNhZjE0LzEvOXI4a0VQbzRSbzhsT0J2UUliSkFuZGNKZEU0LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC80MC9jM2Y5OTUtODZlZi00YTY3LWFjYWMtZTQzOTFmYmNhZjE0 LzEvYk9QN2huaGgycV9YZ1NlWWxfNGxxT3MzRkdnLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAuRx0MA0G CSqGSIb3DQEBCwUAA4IBAQAs39X/+wbr7w/FUIXSbwhha2bOaPy9fjwKroDEu5G6 4WF4iJo8NeDtPQQwDmWs/g/ocCr5raFN6GYyCuKlFkGpde8b7Jn3pJMQ/g0gHGBW 8pjbwAkUx3YNUglqDFBNHUhGTNyhnoL5imjliR3Kv8Cyyr5fuTlbOYM+gMDq6XRb hap5LL6qFTUQnT5G0D/lb8+IJWE0MWdmlufndbVAApHpTNDZHZfcp5lT5YagCv3+ GHhHASqbKxl8/CLZFoF5FOnbmsYmC0sLKnAAI49ZLx8WFWQvuXni55+fCnjidjAI 8v+am9/7bVYZfNKBfkG6c55ZTHW9Qcq0ep47JCXMsrJ4 -----END CERTIFICATE-----Generated at Wed Jan 28 17:03:32 2026 by rpki-client