This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4d/4fc787-e681-4e16-b1ec-a1c5d7eb4bd7/1/T9rz93pJrKV5HZUDPNt-auvowcY.roa File: T9rz93pJrKV5HZUDPNt-auvowcY.roa (raw, json) Hash identifier: Y2TAvhfs7O4nAyyTTSyBt46eHZbCQZ13ePvrQ4ueMNo= Subject key identifier: 4F:DA:F3:F7:7A:49:AC:A5:79:1D:95:03:3C:DB:7E:6A:EB:E8:C1:C6 Certificate issuer: /CN=f7e679e58e4b8bf63e95002b54be471d634b9506 Certificate serial: 019B7F15D22BF0CC6FC823EAA1B00407EB6B Authority key identifier: F7:E6:79:E5:8E:4B:8B:F6:3E:95:00:2B:54:BE:47:1D:63:4B:95:06 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/9-Z55Y5Li_Y-lQArVL5HHWNLlQY.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4d/4fc787-e681-4e16-b1ec-a1c5d7eb4bd7/1/T9rz93pJrKV5HZUDPNt-auvowcY.roa Signing time: Fri 02 Jan 2026 14:21:34 +0000 ROA not before: Fri 02 Jan 2026 14:21:34 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 1299 IP address blocks: 152.89.68.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4d/4fc787-e681-4e16-b1ec-a1c5d7eb4bd7/1/9-Z55Y5Li_Y-lQArVL5HHWNLlQY.crl rsync://rpki.ripe.net/repository/DEFAULT/4d/4fc787-e681-4e16-b1ec-a1c5d7eb4bd7/1/9-Z55Y5Li_Y-lQArVL5HHWNLlQY.mft rsync://rpki.ripe.net/repository/DEFAULT/9-Z55Y5Li_Y-lQArVL5HHWNLlQY.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 21 Jan 2026 23:01:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7f:15:d2:2b:f0:cc:6f:c8:23:ea:a1:b0:04:07:eb:6b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=f7e679e58e4b8bf63e95002b54be471d634b9506 Validity Not Before: Jan 2 14:21:34 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=4fdaf3f77a49aca5791d95033cdb7e6aebe8c1c6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:93:50:d6:7b:09:55:cf:3d:dd:ab:b3:e9:2c: b3:a0:c2:14:39:8a:ea:47:41:a5:30:51:47:43:41: 21:19:36:26:f7:57:cf:06:3a:75:ec:54:0d:08:50: c3:9d:b0:c4:b0:e8:21:90:69:22:44:df:15:6d:ac: da:91:1c:b5:8d:6c:a5:b3:cd:0e:1e:6f:9c:40:ec: d3:c9:2f:22:c8:64:02:05:9f:90:2a:84:b7:a0:49: 65:eb:f1:ff:c4:40:7a:bc:c0:f8:eb:63:bf:84:4e: d9:0d:bc:2b:0e:66:af:ed:d7:87:8b:42:25:49:af: 5c:5b:45:a8:d0:e7:85:ae:9c:f1:32:c2:7c:0b:45: ba:ea:0f:85:39:9f:84:2d:60:74:3b:24:d0:69:de: 8f:a1:d3:33:12:32:79:83:31:78:97:8a:b8:19:29: ce:1b:cf:fa:00:4d:10:2f:2e:ab:6d:af:38:67:de: a8:b0:7d:9e:1b:11:aa:a0:be:9e:f7:ba:51:d0:85: 64:d2:28:ae:e6:5f:8c:c9:5c:03:46:e8:de:b2:5e: 90:1e:0f:93:0a:ad:0e:de:b8:c6:39:f4:28:0d:2e: 69:e3:e9:c3:3c:a9:91:2e:d7:79:c0:a1:08:0d:fb: ea:98:a8:1a:ba:8d:85:c8:58:47:a6:cb:6d:6e:a1: 8f:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4F:DA:F3:F7:7A:49:AC:A5:79:1D:95:03:3C:DB:7E:6A:EB:E8:C1:C6 X509v3 Authority Key Identifier: keyid:F7:E6:79:E5:8E:4B:8B:F6:3E:95:00:2B:54:BE:47:1D:63:4B:95:06 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/9-Z55Y5Li_Y-lQArVL5HHWNLlQY.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/4fc787-e681-4e16-b1ec-a1c5d7eb4bd7/1/T9rz93pJrKV5HZUDPNt-auvowcY.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/4fc787-e681-4e16-b1ec-a1c5d7eb4bd7/1/9-Z55Y5Li_Y-lQArVL5HHWNLlQY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 152.89.68.0/22 Signature Algorithm: sha256WithRSAEncryption 5d:3c:f7:a6:c5:64:3b:9a:a5:dc:e0:a0:18:3f:7e:e0:66:eb: 33:10:38:54:69:4d:53:c6:2a:b1:d5:f4:12:1f:23:29:34:46: 55:47:9a:fe:1b:6f:62:69:3b:98:ac:a5:1a:ee:dd:73:68:42: 29:0f:7f:30:76:a5:aa:85:de:20:c4:d2:88:70:da:6e:6f:bf: 93:61:a5:44:81:90:56:c4:d0:9f:ba:f7:34:9c:0c:2a:55:2d: 89:86:9a:fe:ce:74:f1:0e:20:f9:08:75:94:cf:e3:d0:e9:c0: f0:b1:79:76:53:b0:f4:c6:90:ed:a7:a3:1c:7a:9b:fa:d4:e2: b2:a4:df:4d:47:ca:83:39:19:44:e4:d3:be:cb:9b:26:59:fd: 4b:1f:dd:0f:e7:7f:bc:c9:0d:b8:15:57:59:32:b8:3a:10:98: 7c:76:50:8f:ba:cf:1d:7f:ad:6e:f4:b2:19:31:96:fa:6e:47: c9:24:2b:6c:95:7f:86:27:bf:b7:f0:d9:c2:08:1c:c6:0c:43: e9:a5:ab:a1:8d:07:ee:b7:ed:6c:f6:4f:bd:5e:b5:e5:98:05: ac:8c:e1:ed:97:40:6a:1a:ac:7a:d6:80:c4:33:ae:05:b0:d8: b5:2b:1f:11:6a:b7:c5:19:f0:b1:a5:82:be:8b:6d:a9:fa:28: e1:0f:9b:78 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt/FdIr8MxvyCPqobAEB+trMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGY3ZTY3OWU1OGU0YjhiZjYzZTk1MDAyYjU0YmU0NzFkNjM0 Yjk1MDYwHhcNMjYwMTAyMTQyMTM0WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg0ZmRhZjNmNzdhNDlhY2E1NzkxZDk1MDMzY2RiN2U2YWViZThjMWM2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0ZNQ1nsJVc893auz6SyzoMIUOYrq R0GlMFFHQ0EhGTYm91fPBjp17FQNCFDDnbDEsOghkGkiRN8VbazakRy1jWyls80O Hm+cQOzTyS8iyGQCBZ+QKoS3oEll6/H/xEB6vMD462O/hE7ZDbwrDmav7deHi0Il Sa9cW0Wo0OeFrpzxMsJ8C0W66g+FOZ+ELWB0OyTQad6PodMzEjJ5gzF4l4q4GSnO G8/6AE0QLy6rba84Z96osH2eGxGqoL6e97pR0IVk0iiu5l+MyVwDRujesl6QHg+T Cq0O3rjGOfQoDS5p4+nDPKmRLtd5wKEIDfvqmKgauo2FyFhHpsttbqGPhQIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFE/a8/d6SayleR2VAzzbfmrr6MHGMB8GA1UdIwQY MBaAFPfmeeWOS4v2PpUAK1S+Rx1jS5UGMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvOS1aNTVZNUxpX1ktbFFBclZMNUhIV05MbFFZLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80ZC80ZmM3ODctZTY4MS00ZTE2LWIxZWMt YTFjNWQ3ZWI0YmQ3LzEvVDlyejkzcEpyS1Y1SFpVRFBOdC1hdXZvd2NZLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC80ZC80ZmM3ODctZTY4MS00ZTE2LWIxZWMtYTFjNWQ3ZWI0YmQ3 LzEvOS1aNTVZNUxpX1ktbFFBclZMNUhIV05MbFFZLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCmFlEMA0G CSqGSIb3DQEBCwUAA4IBAQBdPPemxWQ7mqXc4KAYP37gZuszEDhUaU1Txiqx1fQS HyMpNEZVR5r+G29iaTuYrKUa7t1zaEIpD38wdqWqhd4gxNKIcNpub7+TYaVEgZBW xNCfuvc0nAwqVS2Jhpr+znTxDiD5CHWUz+PQ6cDwsXl2U7D0xpDtp6Mcepv61OKy pN9NR8qDORlE5NO+y5smWf1LH90P53+8yQ24FVdZMrg6EJh8dlCPus8df61u9LIZ MZb6bkfJJCtslX+GJ7+38NnCCBzGDEPppauhjQfut+1s9k+9XrXlmAWsjOHtl0Bq Gqx61oDEM64FsNi1Kx8RarfFGfCxpYK+i22p+ijhD5t4 -----END CERTIFICATE-----Generated at Wed Jan 21 07:22:13 2026 by rpki-client