This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/65/161c3f-b83d-45b1-aa8e-d1bb6b4dd701/1/9Z9moOZMdjY1r0zisn1yG40T_Cs.roa File: 9Z9moOZMdjY1r0zisn1yG40T_Cs.roa (raw, json) Hash identifier: 4qv97AavysG7gQ9zDpXhKGyy5MypOYdpddszCCL6JGA= Subject key identifier: F5:9F:66:A0:E6:4C:76:36:35:AF:4C:E2:B2:7D:72:1B:8D:13:FC:2B Certificate issuer: /CN=14bee0ebd06b4b812f9e13716e25f1c3c3d14cc6 Certificate serial: 019B7E38918CAB6D0C6B507F857C26E70298 Authority key identifier: 14:BE:E0:EB:D0:6B:4B:81:2F:9E:13:71:6E:25:F1:C3:C3:D1:4C:C6 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/FL7g69BrS4EvnhNxbiXxw8PRTMY.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/65/161c3f-b83d-45b1-aa8e-d1bb6b4dd701/1/9Z9moOZMdjY1r0zisn1yG40T_Cs.roa Signing time: Fri 02 Jan 2026 10:19:55 +0000 ROA not before: Fri 02 Jan 2026 10:19:55 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 399471 IP address blocks: 85.202.168.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/65/161c3f-b83d-45b1-aa8e-d1bb6b4dd701/1/FL7g69BrS4EvnhNxbiXxw8PRTMY.crl rsync://rpki.ripe.net/repository/DEFAULT/65/161c3f-b83d-45b1-aa8e-d1bb6b4dd701/1/FL7g69BrS4EvnhNxbiXxw8PRTMY.mft rsync://rpki.ripe.net/repository/DEFAULT/FL7g69BrS4EvnhNxbiXxw8PRTMY.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 25 Jan 2026 10:01:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7e:38:91:8c:ab:6d:0c:6b:50:7f:85:7c:26:e7:02:98 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=14bee0ebd06b4b812f9e13716e25f1c3c3d14cc6 Validity Not Before: Jan 2 10:19:55 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=f59f66a0e64c763635af4ce2b27d721b8d13fc2b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:e4:e9:15:ba:c0:d8:f5:b2:79:a7:10:50:cb: 17:a7:fe:63:dc:37:fa:01:ae:b2:18:98:46:84:fb: ab:7c:44:69:6e:1f:27:48:e5:f7:86:15:7c:37:73: 9c:f3:20:79:d8:3c:a3:16:3e:eb:3d:7d:e3:0a:4d: a9:09:e0:17:ae:05:b6:9d:f9:58:33:cc:47:aa:d9: 8b:fd:f8:cc:ed:e9:14:27:ba:fe:d0:ea:2e:26:8c: da:4a:c0:9c:ba:34:28:98:1b:5f:7a:bf:4a:c0:0f: 6d:69:59:00:46:3d:0d:3c:a2:96:ec:b4:9a:42:10: c1:0b:64:b5:59:30:bf:0c:ed:68:db:60:d8:e9:43: 72:2a:f9:62:4a:9f:dd:28:3b:06:4d:5c:27:b0:d3: d3:9a:0e:b5:65:92:6a:5a:01:2e:17:d9:62:c5:ca: e3:2d:9b:37:0b:b6:1d:2f:c6:44:c7:f9:3e:99:b1: 06:8a:d2:65:9c:39:2b:3e:8f:a1:1f:e2:1b:18:67: 3a:41:61:f3:6b:9b:28:45:c2:e9:88:3b:b6:44:ce: 99:89:e2:2a:a5:4f:e4:db:27:e8:bc:a9:37:2b:90: b2:84:e3:3e:80:0d:4c:99:af:fa:85:a8:88:a7:99: d5:ba:85:56:5f:99:47:05:12:10:1c:89:0c:b4:78: 0a:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F5:9F:66:A0:E6:4C:76:36:35:AF:4C:E2:B2:7D:72:1B:8D:13:FC:2B X509v3 Authority Key Identifier: keyid:14:BE:E0:EB:D0:6B:4B:81:2F:9E:13:71:6E:25:F1:C3:C3:D1:4C:C6 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/FL7g69BrS4EvnhNxbiXxw8PRTMY.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/65/161c3f-b83d-45b1-aa8e-d1bb6b4dd701/1/9Z9moOZMdjY1r0zisn1yG40T_Cs.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/65/161c3f-b83d-45b1-aa8e-d1bb6b4dd701/1/FL7g69BrS4EvnhNxbiXxw8PRTMY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 85.202.168.0/23 Signature Algorithm: sha256WithRSAEncryption 3b:54:4b:a3:a1:c2:ec:45:8e:f6:0b:42:30:fa:7c:65:94:51: 3f:98:57:2b:b2:fd:b4:1d:15:fe:bb:48:30:de:bd:16:6b:f2: 3d:2a:35:b9:dd:fd:13:b6:fb:15:46:20:8c:7c:7c:d0:35:2f: 34:8b:00:d9:96:bf:82:2d:07:fa:89:ce:38:5b:e0:fd:34:d0: 61:1f:04:61:d9:e1:65:f8:a5:0d:15:80:da:46:29:83:67:e4: d2:00:31:6c:96:a9:c6:b0:2c:be:6f:2a:e7:bf:d4:7e:42:52: ad:ec:dc:65:47:25:46:f0:47:f3:83:54:d4:bf:70:d7:4f:2c: 70:e6:a7:07:6a:5c:e5:63:29:84:3b:b0:86:db:e1:7a:05:36: a6:33:c4:f0:87:b0:e4:26:31:ca:f9:17:06:1f:7d:31:5f:a5: c2:28:e5:38:3c:f3:38:58:26:eb:04:17:4a:d5:43:48:ec:2b: 52:86:99:e6:18:fa:c7:e1:83:69:63:3d:29:db:4a:10:81:fe: 5d:4a:d5:3a:ae:08:ed:60:19:1a:dd:85:dd:38:d3:52:6d:4f: f8:5f:1e:f3:e5:14:93:3e:79:c8:4a:cc:a5:ee:ff:2f:a3:f0: 98:89:0e:7e:3d:d8:9a:72:4c:12:69:cc:ae:0e:49:30:23:d4: 85:c8:0d:c5 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt+OJGMq20Ma1B/hXwm5wKYMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDE0YmVlMGViZDA2YjRiODEyZjllMTM3MTZlMjVmMWMzYzNk MTRjYzYwHhcNMjYwMTAyMTAxOTU1WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhmNTlmNjZhMGU2NGM3NjM2MzVhZjRjZTJiMjdkNzIxYjhkMTNmYzJiMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtOTpFbrA2PWyeacQUMsXp/5j3Df6 Aa6yGJhGhPurfERpbh8nSOX3hhV8N3Oc8yB52DyjFj7rPX3jCk2pCeAXrgW2nflY M8xHqtmL/fjM7ekUJ7r+0OouJozaSsCcujQomBtfer9KwA9taVkARj0NPKKW7LSa QhDBC2S1WTC/DO1o22DY6UNyKvliSp/dKDsGTVwnsNPTmg61ZZJqWgEuF9lixcrj LZs3C7YdL8ZEx/k+mbEGitJlnDkrPo+hH+IbGGc6QWHza5soRcLpiDu2RM6ZieIq pU/k2yfovKk3K5CyhOM+gA1Mma/6haiIp5nVuoVWX5lHBRIQHIkMtHgKDwIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFPWfZqDmTHY2Na9M4rJ9chuNE/wrMB8GA1UdIwQY MBaAFBS+4OvQa0uBL54TcW4l8cPD0UzGMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvRkw3ZzY5QnJTNEV2bmhOeGJpWHh3OFBSVE1ZLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82NS8xNjFjM2YtYjgzZC00NWIxLWFhOGUt ZDFiYjZiNGRkNzAxLzEvOVo5bW9PWk1kalkxcjB6aXNuMXlHNDBUX0NzLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC82NS8xNjFjM2YtYjgzZC00NWIxLWFhOGUtZDFiYjZiNGRkNzAx LzEvRkw3ZzY5QnJTNEV2bmhOeGJpWHh3OFBSVE1ZLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBVcqoMA0G CSqGSIb3DQEBCwUAA4IBAQA7VEujocLsRY72C0Iw+nxllFE/mFcrsv20HRX+u0gw 3r0Wa/I9KjW53f0TtvsVRiCMfHzQNS80iwDZlr+CLQf6ic44W+D9NNBhHwRh2eFl +KUNFYDaRimDZ+TSADFslqnGsCy+byrnv9R+QlKt7NxlRyVG8Efzg1TUv3DXTyxw 5qcHalzlYymEO7CG2+F6BTamM8Twh7DkJjHK+RcGH30xX6XCKOU4PPM4WCbrBBdK 1UNI7CtShpnmGPrH4YNpYz0p20oQgf5dStU6rgjtYBka3YXdONNSbU/4Xx7z5RST PnnISsyl7v8vo/CYiQ5+PdiackwSacyuDkkwI9SFyA3F -----END CERTIFICATE-----Generated at Sat Jan 24 20:09:00 2026 by rpki-client