This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/72/c6d6be-bf4a-43e5-a908-5ca016a10054/1/l9M-HY9HYwu0IeNgYK8VKzx8G3E.roa File: l9M-HY9HYwu0IeNgYK8VKzx8G3E.roa (raw, json) Hash identifier: a4lW399+WbpGuEK9SK/2CbcA9FosvJCfA4a/RalFyOA= Subject key identifier: 97:D3:3E:1D:8F:47:63:0B:B4:21:E3:60:60:AF:15:2B:3C:7C:1B:71 Certificate issuer: /CN=aca1f4713024804c445403af63fa644b2a935d24 Certificate serial: 019B7F13880A0E0CDC041DCC36E9949B3B43 Authority key identifier: AC:A1:F4:71:30:24:80:4C:44:54:03:AF:63:FA:64:4B:2A:93:5D:24 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rKH0cTAkgExEVAOvY_pkSyqTXSQ.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/72/c6d6be-bf4a-43e5-a908-5ca016a10054/1/l9M-HY9HYwu0IeNgYK8VKzx8G3E.roa Signing time: Fri 02 Jan 2026 14:19:05 +0000 ROA not before: Fri 02 Jan 2026 14:19:05 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 12902 IP address blocks: 79.98.168.0/21 maxlen: 24 79.98.170.0/24 maxlen: 24 185.32.232.0/22 maxlen: 24 185.45.116.0/22 maxlen: 24 185.47.20.0/22 maxlen: 24 185.50.92.0/22 maxlen: 24 185.50.93.0/24 maxlen: 24 185.50.95.0/24 maxlen: 24 185.225.220.0/24 maxlen: 24 185.240.112.0/22 maxlen: 24 194.180.219.0/24 maxlen: 24 217.77.128.0/19 maxlen: 24 217.77.144.0/24 maxlen: 24 2001:9c0::/32 maxlen: 32 2a00:c660::/29 maxlen: 29 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/72/c6d6be-bf4a-43e5-a908-5ca016a10054/1/rKH0cTAkgExEVAOvY_pkSyqTXSQ.crl rsync://rpki.ripe.net/repository/DEFAULT/72/c6d6be-bf4a-43e5-a908-5ca016a10054/1/rKH0cTAkgExEVAOvY_pkSyqTXSQ.mft rsync://rpki.ripe.net/repository/DEFAULT/rKH0cTAkgExEVAOvY_pkSyqTXSQ.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 27 Jan 2026 20:39:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7f:13:88:0a:0e:0c:dc:04:1d:cc:36:e9:94:9b:3b:43 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=aca1f4713024804c445403af63fa644b2a935d24 Validity Not Before: Jan 2 14:19:05 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=97d33e1d8f47630bb421e36060af152b3c7c1b71 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:72:31:ae:9e:26:ff:cb:66:eb:e0:ff:dc:be: 39:8e:a0:83:1a:6d:7a:4b:db:af:31:c1:88:dd:84: cf:1a:79:bf:dd:a5:eb:8a:4a:cf:0b:ba:45:0c:0a: 2f:5a:69:6a:69:7c:8d:26:5a:0c:df:f6:71:c7:d0: 66:2b:97:2f:d3:0e:3e:2f:89:32:d1:2f:d2:41:97: 6f:a3:92:e3:6d:8f:6f:01:de:65:4d:69:f3:46:df: 3f:58:c3:3e:69:4b:fb:f9:c4:a7:83:9c:43:85:e1: 92:f9:16:67:82:13:d5:e4:8e:8a:83:80:df:84:f3: 33:1b:58:6e:39:cd:3a:39:c6:ec:23:e0:55:20:0f: de:59:35:89:20:cf:6c:d1:01:49:12:7f:37:0d:86: 1f:f5:f4:a8:de:f7:84:00:a6:26:88:dd:f5:90:a2: 74:60:64:af:4a:c7:2d:ff:be:b5:41:7e:e8:70:a1: 46:32:25:6b:1a:88:36:c4:60:2b:37:aa:fc:c6:3a: 0d:d4:76:c5:ff:1a:56:58:86:fe:ff:8d:24:9d:07: f8:0b:70:d6:3e:90:ee:f0:79:65:1a:28:99:72:e5: f0:a2:c0:d5:86:1d:f2:b4:b9:6c:74:5e:75:11:db: 48:bf:ec:7c:09:e5:56:3c:5b:53:f5:9b:c2:f0:73: 7b:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 97:D3:3E:1D:8F:47:63:0B:B4:21:E3:60:60:AF:15:2B:3C:7C:1B:71 X509v3 Authority Key Identifier: keyid:AC:A1:F4:71:30:24:80:4C:44:54:03:AF:63:FA:64:4B:2A:93:5D:24 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rKH0cTAkgExEVAOvY_pkSyqTXSQ.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/72/c6d6be-bf4a-43e5-a908-5ca016a10054/1/l9M-HY9HYwu0IeNgYK8VKzx8G3E.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/72/c6d6be-bf4a-43e5-a908-5ca016a10054/1/rKH0cTAkgExEVAOvY_pkSyqTXSQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 79.98.168.0/21 185.32.232.0/22 185.45.116.0/22 185.47.20.0/22 185.50.92.0/22 185.225.220.0/24 185.240.112.0/22 194.180.219.0/24 217.77.128.0/19 IPv6: 2001:9c0::/32 2a00:c660::/29 Signature Algorithm: sha256WithRSAEncryption bb:08:d4:a3:ea:aa:aa:27:69:85:23:66:96:3e:a5:ce:ba:21: e6:a4:cc:93:fa:58:74:19:1a:3c:67:47:eb:be:a6:20:b2:3e: 52:98:52:39:13:68:59:2d:d8:47:92:33:1c:0a:50:be:0e:21: a1:0a:b5:21:a1:f5:86:d1:3d:89:34:d7:65:96:34:1f:13:8e: b4:ba:12:ed:31:2e:51:64:ef:b7:f8:2a:5b:dd:86:c7:fb:0e: 5a:cc:f5:f5:b9:ef:64:9b:bd:15:c3:aa:55:51:91:5a:4c:33: a9:6c:c1:ac:48:33:ca:ff:9c:66:b1:0b:1f:5f:c1:e3:53:a4: 76:e7:a8:7c:26:7a:21:93:91:d9:c8:d8:36:2c:ba:b5:a6:fc: b9:89:94:53:f8:60:3c:ce:46:ef:02:4e:a5:82:bb:57:4b:ee: 06:f5:c5:bd:8b:58:ba:cb:07:21:f0:c6:e3:d1:b7:9d:95:53: fe:fb:f0:7f:b2:7c:6b:c3:57:60:64:4b:21:8a:70:c8:a5:9a: 30:0c:95:6d:01:2d:18:e0:c2:f0:85:05:21:14:0e:24:be:4b: e4:8e:3b:11:f4:f7:12:2d:05:04:72:73:f1:15:c3:81:40:23: bf:89:ca:99:9b:86:24:d4:61:04:3f:8d:02:cc:34:52:5e:a3: 1a:82:16:3d -----BEGIN CERTIFICATE----- MIIFQzCCBCugAwIBAgISAZt/E4gKDgzcBB3MNumUmztDMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGFjYTFmNDcxMzAyNDgwNGM0NDU0MDNhZjYzZmE2NDRiMmE5 MzVkMjQwHhcNMjYwMTAyMTQxOTA1WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg5N2QzM2UxZDhmNDc2MzBiYjQyMWUzNjA2MGFmMTUyYjNjN2MxYjcxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwXIxrp4m/8tm6+D/3L45jqCDGm16 S9uvMcGI3YTPGnm/3aXrikrPC7pFDAovWmlqaXyNJloM3/Zxx9BmK5cv0w4+L4ky 0S/SQZdvo5LjbY9vAd5lTWnzRt8/WMM+aUv7+cSng5xDheGS+RZnghPV5I6Kg4Df hPMzG1huOc06OcbsI+BVIA/eWTWJIM9s0QFJEn83DYYf9fSo3veEAKYmiN31kKJ0 YGSvSsct/761QX7ocKFGMiVrGog2xGArN6r8xjoN1HbF/xpWWIb+/40knQf4C3DW PpDu8HllGiiZcuXwosDVhh3ytLlsdF51EdtIv+x8CeVWPFtT9ZvC8HN7twIDAQAB o4ICTzCCAkswHQYDVR0OBBYEFJfTPh2PR2MLtCHjYGCvFSs8fBtxMB8GA1UdIwQY MBaAFKyh9HEwJIBMRFQDr2P6ZEsqk10kMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvcktIMGNUQWtnRXhFVkFPdllfcGtTeXFUWFNRLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83Mi9jNmQ2YmUtYmY0YS00M2U1LWE5MDgt NWNhMDE2YTEwMDU0LzEvbDlNLUhZOUhZd3UwSWVOZ1lLOFZLeng4RzNFLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC83Mi9jNmQ2YmUtYmY0YS00M2U1LWE5MDgtNWNhMDE2YTEwMDU0 LzEvcktIMGNUQWtnRXhFVkFPdllfcGtTeXFUWFNRLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMGUGCCsGAQUFBwEHAQH/BFYwVDA8BAIAATA2AwQDT2KoAwQC uSDoAwQCuS10AwQCuS8UAwQCuTJcAwQAueHcAwQCufBwAwQAwrTbAwQF2U2AMBQE AgACMA4DBQAgAQnAAwUDKgDGYDANBgkqhkiG9w0BAQsFAAOCAQEAuwjUo+qqqidp hSNmlj6lzroh5qTMk/pYdBkaPGdH676mILI+UphSORNoWS3YR5IzHApQvg4hoQq1 IaH1htE9iTTXZZY0HxOOtLoS7TEuUWTvt/gqW92Gx/sOWsz19bnvZJu9FcOqVVGR WkwzqWzBrEgzyv+cZrELH1/B41OkdueofCZ6IZOR2cjYNiy6tab8uYmUU/hgPM5G 7wJOpYK7V0vuBvXFvYtYussHIfDG49G3nZVT/vvwf7J8a8NXYGRLIYpwyKWaMAyV bQEtGODC8IUFIRQOJL5L5I47EfT3Ei0FBHJz8RXDgUAjv4nKmZuGJNRhBD+NAsw0 Ul6jGoIWPQ== -----END CERTIFICATE-----Generated at Tue Jan 27 04:23:16 2026 by rpki-client