This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6a/4eef03-91fe-445a-a7cd-595919be0f52/1/1-poRw1eFyj6cHnpX6jhcnrovucM.roa File: 1-poRw1eFyj6cHnpX6jhcnrovucM.roa (raw, json) Hash identifier: exJnBsL3FhsYcVwE6Jm8wuXjW1OAjQMMx4txHG99Zxc= Subject key identifier: FA:9A:11:C3:57:85:CA:3E:9C:1E:7A:57:EA:38:5C:9E:BA:2F:B9:C3 Certificate issuer: /CN=9799140b42db6cb6bf8c6dd413747fcf4a6fd9b5 Certificate serial: 019BB28D7789F11F3B481AFCC6B007A48FDB Authority key identifier: 97:99:14:0B:42:DB:6C:B6:BF:8C:6D:D4:13:74:7F:CF:4A:6F:D9:B5 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/l5kUC0LbbLa_jG3UE3R_z0pv2bU.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6a/4eef03-91fe-445a-a7cd-595919be0f52/1/1-poRw1eFyj6cHnpX6jhcnrovucM.roa Signing time: Mon 12 Jan 2026 14:12:54 +0000 ROA not before: Mon 12 Jan 2026 14:12:54 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 834 IP address blocks: 82.206.2.0/23 maxlen: 23 82.206.4.0/22 maxlen: 24 82.206.8.0/23 maxlen: 24 82.206.16.0/22 maxlen: 22 82.206.16.0/23 maxlen: 23 82.206.16.0/24 maxlen: 24 82.206.18.0/24 maxlen: 24 82.206.72.0/21 maxlen: 21 82.206.80.0/21 maxlen: 21 82.206.88.0/21 maxlen: 24 82.206.96.0/19 maxlen: 19 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/6a/4eef03-91fe-445a-a7cd-595919be0f52/1/l5kUC0LbbLa_jG3UE3R_z0pv2bU.crl rsync://rpki.ripe.net/repository/DEFAULT/6a/4eef03-91fe-445a-a7cd-595919be0f52/1/l5kUC0LbbLa_jG3UE3R_z0pv2bU.mft rsync://rpki.ripe.net/repository/DEFAULT/l5kUC0LbbLa_jG3UE3R_z0pv2bU.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 20 Jan 2026 17:01:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:b2:8d:77:89:f1:1f:3b:48:1a:fc:c6:b0:07:a4:8f:db Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9799140b42db6cb6bf8c6dd413747fcf4a6fd9b5 Validity Not Before: Jan 12 14:12:54 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=fa9a11c35785ca3e9c1e7a57ea385c9eba2fb9c3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:38:91:08:c9:c7:f4:95:1c:5a:10:ad:71:c8: af:63:0c:74:53:3e:89:aa:19:60:84:22:6c:c7:da: 21:db:75:04:11:4e:a5:f5:32:73:4e:78:cb:dd:88: fc:36:cf:06:cc:5c:a8:2e:3d:11:c5:87:f0:30:35: 71:28:2c:f4:f0:6b:70:06:af:2e:b8:f7:fa:b2:da: e4:47:c5:16:78:b6:c6:db:ba:c9:69:15:af:6e:aa: 9d:ba:74:d9:8a:ac:ad:6b:8d:8c:b1:5c:88:15:17: 82:f0:ee:3f:81:97:ed:a5:07:e7:c9:9a:fe:46:ac: da:69:5a:61:81:ef:f5:bb:ad:c9:2b:a8:11:1b:00: be:22:74:46:15:f9:95:56:e2:95:a3:33:0a:72:6d: 27:70:6d:7d:18:4c:9b:96:a6:98:a9:62:8e:b9:3c: cb:1f:a2:80:c3:55:04:0b:2b:4f:79:f8:78:7c:eb: d5:17:ef:c3:8d:dd:a6:f7:6e:5b:0d:0d:35:95:21: 99:a9:ba:1c:46:3a:54:ba:3f:78:a7:b9:35:c6:0f: 54:66:97:38:33:7b:f6:96:6a:41:28:db:35:78:60: 59:a4:97:d8:9c:ae:35:d2:ab:07:8a:bf:68:f2:a6: 43:0b:fe:6e:bb:b7:67:51:cc:0f:e4:9a:27:cb:c6: 61:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FA:9A:11:C3:57:85:CA:3E:9C:1E:7A:57:EA:38:5C:9E:BA:2F:B9:C3 X509v3 Authority Key Identifier: keyid:97:99:14:0B:42:DB:6C:B6:BF:8C:6D:D4:13:74:7F:CF:4A:6F:D9:B5 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/l5kUC0LbbLa_jG3UE3R_z0pv2bU.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6a/4eef03-91fe-445a-a7cd-595919be0f52/1/1-poRw1eFyj6cHnpX6jhcnrovucM.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/6a/4eef03-91fe-445a-a7cd-595919be0f52/1/l5kUC0LbbLa_jG3UE3R_z0pv2bU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 82.206.2.0-82.206.9.255 82.206.16.0/22 82.206.72.0-82.206.127.255 Signature Algorithm: sha256WithRSAEncryption 94:be:28:db:b8:f0:82:bf:38:66:e7:1f:13:66:13:d5:c3:cf: 88:e4:81:14:85:75:d0:ac:4c:1e:e8:2e:69:b2:64:95:6e:4a: 93:e0:f9:54:94:d4:2a:c5:33:8c:ae:1e:76:dd:9e:2f:b4:20: d5:48:3d:2d:0b:de:0c:b3:c0:a3:7f:93:5f:9f:e8:bc:e4:4d: 11:55:df:34:1f:f1:bb:f5:33:7f:0c:9d:ff:1d:99:7b:db:21: 59:fe:e6:ce:25:bd:10:f9:45:f5:e5:d1:45:e3:17:84:5e:d9: 71:9b:41:39:91:db:72:f3:e8:c9:d3:d6:06:cd:38:bf:26:ee: f4:43:f1:9d:ce:47:2f:43:fd:09:14:f9:6c:d2:6d:18:cc:43: 01:9b:19:bf:38:56:0d:5f:85:d6:91:88:98:f4:56:7c:93:c5: 00:82:f8:aa:87:9c:d9:35:92:49:e3:c3:72:d7:e6:ba:f1:a1: be:fd:6c:9e:40:ba:1e:2b:cb:8f:43:9b:2e:6a:07:84:d5:c9: 6c:35:30:3b:f3:d9:8a:d6:0d:00:13:a9:92:8f:ba:8f:71:a9: a8:c2:39:4a:2d:43:19:1d:25:e9:80:10:46:0b:f4:4b:82:28: 96:30:84:1c:56:d4:2d:e1:cc:e4:23:08:b6:e6:4e:d3:bc:a1: 6c:ad:a8:73 -----BEGIN CERTIFICATE----- MIIFGjCCBAKgAwIBAgISAZuyjXeJ8R87SBr8xrAHpI/bMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDk3OTkxNDBiNDJkYjZjYjZiZjhjNmRkNDEzNzQ3ZmNmNGE2 ZmQ5YjUwHhcNMjYwMTEyMTQxMjU0WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhmYTlhMTFjMzU3ODVjYTNlOWMxZTdhNTdlYTM4NWM5ZWJhMmZiOWMzMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApziRCMnH9JUcWhCtccivYwx0Uz6J qhlghCJsx9oh23UEEU6l9TJzTnjL3Yj8Ns8GzFyoLj0RxYfwMDVxKCz08GtwBq8u uPf6strkR8UWeLbG27rJaRWvbqqdunTZiqyta42MsVyIFReC8O4/gZftpQfnyZr+ RqzaaVphge/1u63JK6gRGwC+InRGFfmVVuKVozMKcm0ncG19GEyblqaYqWKOuTzL H6KAw1UECytPefh4fOvVF+/Djd2m925bDQ01lSGZqbocRjpUuj94p7k1xg9UZpc4 M3v2lmpBKNs1eGBZpJfYnK410qsHir9o8qZDC/5uu7dnUcwP5Jony8ZhFwIDAQAB o4ICJjCCAiIwHQYDVR0OBBYEFPqaEcNXhco+nB56V+o4XJ66L7nDMB8GA1UdIwQY MBaAFJeZFAtC22y2v4xt1BN0f89Kb9m1MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvbDVrVUMwTGJiTGFfakczVUUzUl96MHB2MmJVLmNlcjCB jgYIKwYBBQUHAQsEgYEwfzB9BggrBgEFBQcwC4ZxcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82YS80ZWVmMDMtOTFmZS00NDVhLWE3Y2Qt NTk1OTE5YmUwZjUyLzEvMS1wb1J3MWVGeWo2Y0hucFg2amhjbnJvdnVjTS5yb2Ew gYEGA1UdHwR6MHgwdqB0oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0 b3J5L0RFRkFVTFQvNmEvNGVlZjAzLTkxZmUtNDQ1YS1hN2NkLTU5NTkxOWJlMGY1 Mi8xL2w1a1VDMExiYkxhX2pHM1VFM1JfejBwdjJiVS5jcmwwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjA7BggrBgEFBQcBBwEB/wQsMCowKAQCAAEwIjAMAwQBUs4C AwQBUs4IAwQCUs4QMAwDBANSzkgDBAdSzgAwDQYJKoZIhvcNAQELBQADggEBAJS+ KNu48IK/OGbnHxNmE9XDz4jkgRSFddCsTB7oLmmyZJVuSpPg+VSU1CrFM4yuHnbd ni+0INVIPS0L3gyzwKN/k1+f6LzkTRFV3zQf8bv1M38Mnf8dmXvbIVn+5s4lvRD5 RfXl0UXjF4Re2XGbQTmR23Lz6MnT1gbNOL8m7vRD8Z3ORy9D/QkU+WzSbRjMQwGb Gb84Vg1fhdaRiJj0VnyTxQCC+KqHnNk1kknjw3LX5rrxob79bJ5Auh4ry49Dmy5q B4TVyWw1MDvz2YrWDQATqZKPuo9xqajCOUotQxkdJemAEEYL9EuCKJYwhBxW1C3h zOQjCLbmTtO8oWytqHM= -----END CERTIFICATE-----Generated at Tue Jan 20 02:56:26 2026 by rpki-client