This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/60/8ddc38-7a1a-4906-a8ed-4433229a8473/1/9j9Cr3fnwmgjqkXx14urDbJasp0.roa File: 9j9Cr3fnwmgjqkXx14urDbJasp0.roa (raw, json) Hash identifier: KW0VD6lDdNbgIp4ZsL2MGrtyxm+1LW6cNcgokA6BqI8= Subject key identifier: F6:3F:42:AF:77:E7:C2:68:23:AA:45:F1:D7:8B:AB:0D:B2:5A:B2:9D Certificate issuer: /CN=21bad74e7f6c0949a2736a57478496d7d8b450e6 Certificate serial: 019B7CEDA227B9EB038002F93C8A3E60B9E6 Authority key identifier: 21:BA:D7:4E:7F:6C:09:49:A2:73:6A:57:47:84:96:D7:D8:B4:50:E6 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IbrXTn9sCUmic2pXR4SW19i0UOY.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/60/8ddc38-7a1a-4906-a8ed-4433229a8473/1/9j9Cr3fnwmgjqkXx14urDbJasp0.roa Signing time: Fri 02 Jan 2026 04:18:26 +0000 ROA not before: Fri 02 Jan 2026 04:18:26 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 213442 IP address blocks: 147.234.22.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/60/8ddc38-7a1a-4906-a8ed-4433229a8473/1/IbrXTn9sCUmic2pXR4SW19i0UOY.crl rsync://rpki.ripe.net/repository/DEFAULT/60/8ddc38-7a1a-4906-a8ed-4433229a8473/1/IbrXTn9sCUmic2pXR4SW19i0UOY.mft rsync://rpki.ripe.net/repository/DEFAULT/IbrXTn9sCUmic2pXR4SW19i0UOY.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 27 Jan 2026 15:35:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7c:ed:a2:27:b9:eb:03:80:02:f9:3c:8a:3e:60:b9:e6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=21bad74e7f6c0949a2736a57478496d7d8b450e6 Validity Not Before: Jan 2 04:18:26 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=f63f42af77e7c26823aa45f1d78bab0db25ab29d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:3a:5a:e6:48:67:4e:bf:97:90:67:ab:1f:e0: 2d:dd:cb:55:ef:60:fc:75:6a:30:53:2d:0b:76:70: 03:80:bc:81:e3:45:34:20:dc:f2:0a:0c:f0:cb:f6: 55:fd:5d:5e:5b:04:a4:4d:f7:fc:1a:32:5a:7b:f9: 8c:3f:f9:38:24:1d:0e:8c:da:dd:cb:31:1c:f3:9d: 7c:0c:e3:eb:37:5e:5a:be:ca:91:f9:89:07:08:21: b3:a2:5c:db:a2:f3:5d:79:fc:97:c4:12:de:16:03: cc:32:b4:0b:7a:15:34:e2:2b:ae:69:a5:5d:0a:35: 80:99:5c:6d:de:84:b4:9c:fc:b9:c1:34:39:33:5b: cc:48:20:ed:d5:0e:0b:49:07:2b:a2:53:33:24:40: 4c:8f:70:0f:17:58:f4:f9:26:3f:bd:f8:29:27:a2: 04:55:fa:ad:a2:4a:3c:99:58:f5:88:d6:9d:8d:28: cf:c0:0b:76:5e:09:d4:b1:c5:46:89:61:00:c9:be: 9b:e1:78:31:c1:63:96:d7:f8:be:9c:ea:a4:0e:e7: 81:6e:f8:3b:b2:d1:28:70:a3:79:76:d2:1c:a5:92: 87:5e:b5:f5:75:86:0c:0a:eb:bf:0d:bc:01:be:0b: 74:4e:29:ef:bc:8f:83:74:1d:27:6b:ea:6c:35:17: 48:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F6:3F:42:AF:77:E7:C2:68:23:AA:45:F1:D7:8B:AB:0D:B2:5A:B2:9D X509v3 Authority Key Identifier: keyid:21:BA:D7:4E:7F:6C:09:49:A2:73:6A:57:47:84:96:D7:D8:B4:50:E6 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IbrXTn9sCUmic2pXR4SW19i0UOY.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/60/8ddc38-7a1a-4906-a8ed-4433229a8473/1/9j9Cr3fnwmgjqkXx14urDbJasp0.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/60/8ddc38-7a1a-4906-a8ed-4433229a8473/1/IbrXTn9sCUmic2pXR4SW19i0UOY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 147.234.22.0/24 Signature Algorithm: sha256WithRSAEncryption 77:b8:d3:78:7c:b8:c6:ca:ae:5a:76:2c:e0:5c:70:15:72:90: 96:f3:10:c3:aa:ed:f7:e3:11:07:e8:6d:c9:00:07:54:4e:3c: c3:79:49:fc:b9:55:a5:04:36:83:cd:72:56:2a:ab:f8:5f:75: 80:ef:e5:85:b9:76:d2:db:09:69:79:51:33:69:a8:95:46:12: 46:b4:4d:47:1d:07:8a:a6:42:39:5c:64:dd:8e:d7:39:3f:ba: 8b:4e:dd:11:e1:7e:aa:92:2e:d3:bb:b5:7f:cd:56:bb:94:a6: aa:5d:3d:20:ac:d3:a7:66:c9:a4:11:3a:d1:8c:e8:b8:76:88: 87:17:71:33:46:b4:35:0a:1e:a9:03:77:e3:78:59:57:9c:97: d8:96:42:7a:05:5d:e1:dd:c1:6e:b7:41:06:d6:f0:77:db:e6: 8b:31:96:ab:55:ea:13:e0:7d:bd:71:4a:63:93:fe:43:5a:d5: e7:a0:df:46:0d:42:76:7b:65:77:21:cb:7d:93:d2:79:07:23: af:db:41:43:02:66:a0:b1:a0:83:4d:c6:42:1f:bd:a4:f1:ad: af:93:b4:8c:67:68:4c:de:af:d5:c5:a3:bc:46:2e:89:67:d1: ce:94:5d:11:a9:a9:10:d4:98:1a:c3:e1:af:56:02:c4:ab:4d: 0a:44:b1:b7 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt87aInuesDgAL5PIo+YLnmMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDIxYmFkNzRlN2Y2YzA5NDlhMjczNmE1NzQ3ODQ5NmQ3ZDhi NDUwZTYwHhcNMjYwMTAyMDQxODI2WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhmNjNmNDJhZjc3ZTdjMjY4MjNhYTQ1ZjFkNzhiYWIwZGIyNWFiMjlkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAozpa5khnTr+XkGerH+At3ctV72D8 dWowUy0LdnADgLyB40U0INzyCgzwy/ZV/V1eWwSkTff8GjJae/mMP/k4JB0OjNrd yzEc8518DOPrN15avsqR+YkHCCGzolzbovNdefyXxBLeFgPMMrQLehU04iuuaaVd CjWAmVxt3oS0nPy5wTQ5M1vMSCDt1Q4LSQcrolMzJEBMj3APF1j0+SY/vfgpJ6IE Vfqtoko8mVj1iNadjSjPwAt2XgnUscVGiWEAyb6b4XgxwWOW1/i+nOqkDueBbvg7 stEocKN5dtIcpZKHXrX1dYYMCuu/DbwBvgt0TinvvI+DdB0na+psNRdIXwIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFPY/Qq9358JoI6pF8deLqw2yWrKdMB8GA1UdIwQY MBaAFCG6105/bAlJonNqV0eEltfYtFDmMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSWJyWFRuOXNDVW1pYzJwWFI0U1cxOWkwVU9ZLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82MC84ZGRjMzgtN2ExYS00OTA2LWE4ZWQt NDQzMzIyOWE4NDczLzEvOWo5Q3IzZm53bWdqcWtYeDE0dXJEYkphc3AwLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC82MC84ZGRjMzgtN2ExYS00OTA2LWE4ZWQtNDQzMzIyOWE4NDcz LzEvSWJyWFRuOXNDVW1pYzJwWFI0U1cxOWkwVU9ZLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAk+oWMA0G CSqGSIb3DQEBCwUAA4IBAQB3uNN4fLjGyq5adizgXHAVcpCW8xDDqu334xEH6G3J AAdUTjzDeUn8uVWlBDaDzXJWKqv4X3WA7+WFuXbS2wlpeVEzaaiVRhJGtE1HHQeK pkI5XGTdjtc5P7qLTt0R4X6qki7Tu7V/zVa7lKaqXT0grNOnZsmkETrRjOi4doiH F3EzRrQ1Ch6pA3fjeFlXnJfYlkJ6BV3h3cFut0EG1vB32+aLMZarVeoT4H29cUpj k/5DWtXnoN9GDUJ2e2V3Ict9k9J5ByOv20FDAmagsaCDTcZCH72k8a2vk7SMZ2hM 3q/VxaO8Ri6JZ9HOlF0RqakQ1Jgaw+GvVgLEq00KRLG3 -----END CERTIFICATE-----Generated at Mon Jan 26 23:46:49 2026 by rpki-client