This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/73/77a699-055b-407c-b12b-ad9542ad4f43/1/a9jZwxcqI34mhuCt3thAAI-XO7Q.roa File: a9jZwxcqI34mhuCt3thAAI-XO7Q.roa (raw, json) Hash identifier: aj2CjjO2duZcrFHfSQxM4wde7HcT3fufS42YR1B/tQQ= Subject key identifier: 6B:D8:D9:C3:17:2A:23:7E:26:86:E0:AD:DE:D8:40:00:8F:97:3B:B4 Certificate issuer: /CN=046e52810740a6ec134993dbc9ad11b6454d9a7a Certificate serial: 019B7DCA43F8638785FB7B43D4D7E9D62E7F Authority key identifier: 04:6E:52:81:07:40:A6:EC:13:49:93:DB:C9:AD:11:B6:45:4D:9A:7A Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BG5SgQdApuwTSZPbya0RtkVNmno.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/73/77a699-055b-407c-b12b-ad9542ad4f43/1/a9jZwxcqI34mhuCt3thAAI-XO7Q.roa Signing time: Fri 02 Jan 2026 08:19:26 +0000 ROA not before: Fri 02 Jan 2026 08:19:26 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 203460 IP address blocks: 185.115.60.0/22 maxlen: 22 2a06:7580::/29 maxlen: 29 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/73/77a699-055b-407c-b12b-ad9542ad4f43/1/BG5SgQdApuwTSZPbya0RtkVNmno.crl rsync://rpki.ripe.net/repository/DEFAULT/73/77a699-055b-407c-b12b-ad9542ad4f43/1/BG5SgQdApuwTSZPbya0RtkVNmno.mft rsync://rpki.ripe.net/repository/DEFAULT/BG5SgQdApuwTSZPbya0RtkVNmno.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 21:05:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7d:ca:43:f8:63:87:85:fb:7b:43:d4:d7:e9:d6:2e:7f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=046e52810740a6ec134993dbc9ad11b6454d9a7a Validity Not Before: Jan 2 08:19:26 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=6bd8d9c3172a237e2686e0added840008f973bb4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9b:1a:0a:ac:cd:74:c0:6f:34:66:5b:31:3f:13: 6a:53:71:f0:c1:f8:71:d4:7c:c8:fd:31:e0:19:2e: 2b:66:a3:10:b5:ce:11:01:81:51:31:1a:4e:52:3a: 4a:c8:35:87:e6:66:21:3c:b4:c0:1c:4a:57:ef:e4: 49:a8:0f:ed:1f:c5:54:07:d8:53:33:e6:c6:74:09: c9:80:16:dd:a6:4c:3e:84:72:f2:1b:b6:67:3b:6c: cf:14:b9:a6:5d:82:73:86:4e:b2:e3:86:46:5f:dc: 09:73:a2:66:e3:aa:88:3f:de:d5:07:04:02:2c:7a: eb:0e:c4:9f:7b:99:29:ad:09:a4:4d:28:08:6e:a1: 61:c7:42:88:44:da:b2:5e:d1:4f:38:c4:84:74:bb: f8:a3:76:b8:26:99:44:4f:d9:79:ab:fd:f1:08:b4: 57:a9:3c:34:a5:d4:bc:7f:65:61:c8:9b:3d:78:3b: 8d:15:b9:89:1e:d2:d9:2c:7c:2e:32:10:78:a6:2a: c8:a2:27:42:30:19:58:65:88:69:bc:8c:17:12:3b: 44:20:92:b4:48:c2:93:b8:fe:f6:a5:fb:89:42:10: d9:18:32:75:46:2f:3d:91:61:65:2f:4b:b8:16:4e: 9f:ad:99:ca:d7:3a:a1:2c:d8:d5:c6:05:70:3f:ac: ef:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6B:D8:D9:C3:17:2A:23:7E:26:86:E0:AD:DE:D8:40:00:8F:97:3B:B4 X509v3 Authority Key Identifier: keyid:04:6E:52:81:07:40:A6:EC:13:49:93:DB:C9:AD:11:B6:45:4D:9A:7A X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BG5SgQdApuwTSZPbya0RtkVNmno.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/73/77a699-055b-407c-b12b-ad9542ad4f43/1/a9jZwxcqI34mhuCt3thAAI-XO7Q.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/73/77a699-055b-407c-b12b-ad9542ad4f43/1/BG5SgQdApuwTSZPbya0RtkVNmno.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.115.60.0/22 IPv6: 2a06:7580::/29 Signature Algorithm: sha256WithRSAEncryption 55:95:78:0c:49:35:3f:28:27:76:64:96:15:14:8d:34:3d:4e: 89:25:14:16:6b:af:44:c5:de:44:ae:5b:59:d2:19:10:a5:64: 59:bb:48:0b:e8:f7:96:29:6b:aa:bd:6c:65:53:2c:23:21:cd: 48:22:b0:b1:3a:53:44:5c:93:74:54:51:2e:78:6d:b4:3d:e5: 5c:eb:52:88:0c:5b:59:f9:00:23:ad:0a:4b:1c:87:2b:e3:0d: c3:ae:3e:60:9e:2e:81:95:49:ce:44:c0:df:f8:07:1c:35:1d: e6:09:9f:06:6f:2c:7a:3d:df:6a:d6:b2:64:1b:7c:ca:de:85: 4e:ef:38:29:0e:12:3f:c6:79:0a:40:0c:9c:e4:9c:7e:ff:2b: d5:5d:21:7b:9f:39:53:1f:99:a4:83:c7:4e:87:3a:88:a1:9b: 61:52:b5:85:e9:31:5a:22:19:de:ac:53:a5:2e:d9:9e:93:3e: 83:61:98:b6:d3:5a:df:41:0e:09:c7:41:82:98:9e:6a:eb:73: b7:d6:9b:b0:25:7c:f9:ec:40:b1:2b:09:1e:ee:3e:60:19:50: fa:77:60:3a:f6:46:dc:0d:32:37:ec:d0:ad:4d:50:af:13:eb: f9:a7:02:6b:78:dd:a9:8d:56:a2:41:2a:c1:3b:4f:5e:73:1e: 23:1a:c1:89 -----BEGIN CERTIFICATE----- MIIFDDCCA/SgAwIBAgISAZt9ykP4Y4eF+3tD1Nfp1i5/MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDA0NmU1MjgxMDc0MGE2ZWMxMzQ5OTNkYmM5YWQxMWI2NDU0 ZDlhN2EwHhcNMjYwMTAyMDgxOTI2WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg2YmQ4ZDljMzE3MmEyMzdlMjY4NmUwYWRkZWQ4NDAwMDhmOTczYmI0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmxoKrM10wG80ZlsxPxNqU3Hwwfhx 1HzI/THgGS4rZqMQtc4RAYFRMRpOUjpKyDWH5mYhPLTAHEpX7+RJqA/tH8VUB9hT M+bGdAnJgBbdpkw+hHLyG7ZnO2zPFLmmXYJzhk6y44ZGX9wJc6Jm46qIP97VBwQC LHrrDsSfe5kprQmkTSgIbqFhx0KIRNqyXtFPOMSEdLv4o3a4JplET9l5q/3xCLRX qTw0pdS8f2VhyJs9eDuNFbmJHtLZLHwuMhB4pirIoidCMBlYZYhpvIwXEjtEIJK0 SMKTuP72pfuJQhDZGDJ1Ri89kWFlL0u4Fk6frZnK1zqhLNjVxgVwP6zvGwIDAQAB o4ICGDCCAhQwHQYDVR0OBBYEFGvY2cMXKiN+Jobgrd7YQACPlzu0MB8GA1UdIwQY MBaAFARuUoEHQKbsE0mT28mtEbZFTZp6MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvQkc1U2dRZEFwdXdUU1pQYnlhMFJ0a1ZObW5vLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83My83N2E2OTktMDU1Yi00MDdjLWIxMmIt YWQ5NTQyYWQ0ZjQzLzEvYTlqWnd4Y3FJMzRtaHVDdDN0aEFBSS1YTzdRLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC83My83N2E2OTktMDU1Yi00MDdjLWIxMmItYWQ5NTQyYWQ0ZjQz LzEvQkc1U2dRZEFwdXdUU1pQYnlhMFJ0a1ZObW5vLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMC4GCCsGAQUFBwEHAQH/BB8wHTAMBAIAATAGAwQCuXM8MA0E AgACMAcDBQMqBnWAMA0GCSqGSIb3DQEBCwUAA4IBAQBVlXgMSTU/KCd2ZJYVFI00 PU6JJRQWa69Exd5ErltZ0hkQpWRZu0gL6PeWKWuqvWxlUywjIc1IIrCxOlNEXJN0 VFEueG20PeVc61KIDFtZ+QAjrQpLHIcr4w3Drj5gni6BlUnORMDf+AccNR3mCZ8G byx6Pd9q1rJkG3zK3oVO7zgpDhI/xnkKQAyc5Jx+/yvVXSF7nzlTH5mkg8dOhzqI oZthUrWF6TFaIhnerFOlLtmekz6DYZi201rfQQ4Jx0GCmJ5q63O31puwJXz57ECx Kwke7j5gGVD6d2A69kbcDTI37NCtTVCvE+v5pwJreN2pjVaiQSrBO09ecx4jGsGJ -----END CERTIFICATE-----Generated at Tue Feb 10 04:16:40 2026 by rpki-client