This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/82/20c187-00fd-459e-aae4-467f4f7f5ded/1/9L-IlJy1MALfVsDOjOGM0zg9wIs.roa File: 9L-IlJy1MALfVsDOjOGM0zg9wIs.roa (raw, json) Hash identifier: 25Zaxi4I4wwSZ07o8zwt446xfOQvwC6RY9wELrAw/sQ= Subject key identifier: F4:BF:88:94:9C:B5:30:02:DF:56:C0:CE:8C:E1:8C:D3:38:3D:C0:8B Certificate issuer: /CN=dfd524a05d477b82fbca93e7a504aa31a3ad6863 Certificate serial: 019B7C1260D034FB534EC0A52D75B671C2C3 Authority key identifier: DF:D5:24:A0:5D:47:7B:82:FB:CA:93:E7:A5:04:AA:31:A3:AD:68:63 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/39UkoF1He4L7ypPnpQSqMaOtaGM.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/82/20c187-00fd-459e-aae4-467f4f7f5ded/1/9L-IlJy1MALfVsDOjOGM0zg9wIs.roa Signing time: Fri 02 Jan 2026 00:18:57 +0000 ROA not before: Fri 02 Jan 2026 00:18:57 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 48678 IP address blocks: 185.28.60.0/24 maxlen: 24 185.28.61.0/24 maxlen: 24 185.28.63.0/24 maxlen: 24 185.103.196.0/24 maxlen: 24 185.103.197.0/24 maxlen: 24 185.103.198.0/24 maxlen: 24 185.103.199.0/24 maxlen: 24 185.106.20.0/24 maxlen: 24 185.106.21.0/24 maxlen: 24 185.106.22.0/24 maxlen: 24 185.106.23.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/82/20c187-00fd-459e-aae4-467f4f7f5ded/1/39UkoF1He4L7ypPnpQSqMaOtaGM.crl rsync://rpki.ripe.net/repository/DEFAULT/82/20c187-00fd-459e-aae4-467f4f7f5ded/1/39UkoF1He4L7ypPnpQSqMaOtaGM.mft rsync://rpki.ripe.net/repository/DEFAULT/39UkoF1He4L7ypPnpQSqMaOtaGM.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 20 Jan 2026 06:01:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7c:12:60:d0:34:fb:53:4e:c0:a5:2d:75:b6:71:c2:c3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=dfd524a05d477b82fbca93e7a504aa31a3ad6863 Validity Not Before: Jan 2 00:18:57 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=f4bf88949cb53002df56c0ce8ce18cd3383dc08b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:e1:9a:14:c1:69:a0:6f:11:10:69:4e:4d:e0: 31:80:53:a4:94:59:ba:f6:b4:6f:68:2c:b4:4c:82: 51:1b:10:3e:eb:8e:59:a3:8f:a5:4b:6a:d7:ed:44: 17:a5:fa:e5:b4:96:c5:c1:50:71:15:44:f8:66:64: b9:97:7d:6f:86:c4:a6:98:c4:34:56:6b:f0:41:6e: ff:82:9f:cb:f2:6f:57:fd:52:82:86:35:6d:54:17: 6c:ef:d7:fb:6c:37:6f:1d:a2:49:8d:bb:e9:b3:57: 62:de:c2:db:8d:b6:67:f3:f8:99:cb:46:ac:3e:cc: ac:e7:10:d2:84:b7:c8:ad:a6:3b:4c:ec:10:0d:9b: f9:48:fc:f5:58:22:44:a7:9e:84:f2:ca:fc:90:fd: 57:4e:11:a1:81:5b:e1:7f:de:51:9b:53:10:e3:95: 4a:f6:af:a6:97:79:3f:a6:fe:28:02:56:93:7e:4f: 49:fc:f0:f0:3e:f8:9d:75:35:32:23:a2:05:39:c7: 93:d9:70:05:e0:13:00:99:4e:c9:25:5c:af:70:4b: 3f:67:a6:a9:a8:3d:db:29:3b:d6:fb:f9:e7:ee:1a: 7b:ba:d2:b4:79:e7:24:29:09:6b:1f:ee:b4:20:dc: bf:81:c9:02:19:ed:f3:0b:4f:69:88:8b:55:79:7a: 35:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F4:BF:88:94:9C:B5:30:02:DF:56:C0:CE:8C:E1:8C:D3:38:3D:C0:8B X509v3 Authority Key Identifier: keyid:DF:D5:24:A0:5D:47:7B:82:FB:CA:93:E7:A5:04:AA:31:A3:AD:68:63 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/39UkoF1He4L7ypPnpQSqMaOtaGM.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/82/20c187-00fd-459e-aae4-467f4f7f5ded/1/9L-IlJy1MALfVsDOjOGM0zg9wIs.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/82/20c187-00fd-459e-aae4-467f4f7f5ded/1/39UkoF1He4L7ypPnpQSqMaOtaGM.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.28.60.0/23 185.28.63.0/24 185.103.196.0/22 185.106.20.0/22 Signature Algorithm: sha256WithRSAEncryption cb:05:f7:6a:05:be:f9:a4:33:58:9c:37:cd:c2:a5:ff:57:d3: 56:e9:3e:40:10:78:21:2b:4b:33:6d:02:dd:26:b9:62:38:a1: 4c:d6:f5:d3:64:b7:fb:42:7f:25:25:90:01:d4:9f:13:63:3f: 78:2a:16:2d:c1:12:b2:e4:28:c2:84:54:75:03:88:f8:0a:7f: b4:e6:e2:be:16:36:5d:25:be:89:63:87:e1:cf:9f:12:a3:5a: 07:f0:c2:f7:5f:5f:50:e3:8d:4b:23:a1:a2:c8:38:6b:02:60: 33:d0:98:aa:df:7b:f0:5a:9c:b1:68:72:33:cf:97:e4:6c:1a: b9:c6:10:38:cd:62:14:94:a9:e6:1b:ab:23:2b:ea:4e:8e:50: c1:c8:54:66:c3:d2:e6:9f:1d:8f:84:67:1f:29:90:fc:9a:0f: 80:bf:ea:88:c5:c9:1d:5f:fc:55:ac:b5:d7:4d:d6:44:23:af: d1:0b:37:24:91:64:da:b5:3a:02:b7:c7:1b:49:9f:91:a8:3e: ad:07:74:75:68:8e:52:11:be:8f:78:ee:8c:9b:b0:c9:64:82: 45:79:f7:a4:fc:cf:3a:a6:eb:e2:6d:2e:70:aa:51:98:37:29: 60:84:27:e8:fe:59:e8:64:cd:bf:b9:99:8c:c8:89:51:01:18: 00:94:a1:d0 -----BEGIN CERTIFICATE----- MIIFDzCCA/egAwIBAgISAZt8EmDQNPtTTsClLXW2ccLDMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGRmZDUyNGEwNWQ0NzdiODJmYmNhOTNlN2E1MDRhYTMxYTNh ZDY4NjMwHhcNMjYwMTAyMDAxODU3WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhmNGJmODg5NDljYjUzMDAyZGY1NmMwY2U4Y2UxOGNkMzM4M2RjMDhiMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAo+GaFMFpoG8REGlOTeAxgFOklFm6 9rRvaCy0TIJRGxA+645Zo4+lS2rX7UQXpfrltJbFwVBxFUT4ZmS5l31vhsSmmMQ0 VmvwQW7/gp/L8m9X/VKChjVtVBds79f7bDdvHaJJjbvps1di3sLbjbZn8/iZy0as Psys5xDShLfIraY7TOwQDZv5SPz1WCJEp56E8sr8kP1XThGhgVvhf95Rm1MQ45VK 9q+ml3k/pv4oAlaTfk9J/PDwPviddTUyI6IFOceT2XAF4BMAmU7JJVyvcEs/Z6ap qD3bKTvW+/nn7hp7utK0eeckKQlrH+60INy/gckCGe3zC09piItVeXo1tQIDAQAB o4ICGzCCAhcwHQYDVR0OBBYEFPS/iJSctTAC31bAzozhjNM4PcCLMB8GA1UdIwQY MBaAFN/VJKBdR3uC+8qT56UEqjGjrWhjMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvMzlVa29GMUhlNEw3eXBQbnBRU3FNYU90YUdNLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84Mi8yMGMxODctMDBmZC00NTllLWFhZTQt NDY3ZjRmN2Y1ZGVkLzEvOUwtSWxKeTFNQUxmVnNET2pPR00wemc5d0lzLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC84Mi8yMGMxODctMDBmZC00NTllLWFhZTQtNDY3ZjRmN2Y1ZGVk LzEvMzlVa29GMUhlNEw3eXBQbnBRU3FNYU90YUdNLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMDEGCCsGAQUFBwEHAQH/BCIwIDAeBAIAATAYAwQBuRw8AwQA uRw/AwQCuWfEAwQCuWoUMA0GCSqGSIb3DQEBCwUAA4IBAQDLBfdqBb75pDNYnDfN wqX/V9NW6T5AEHghK0szbQLdJrliOKFM1vXTZLf7Qn8lJZAB1J8TYz94KhYtwRKy 5CjChFR1A4j4Cn+05uK+FjZdJb6JY4fhz58So1oH8ML3X19Q441LI6GiyDhrAmAz 0Jiq33vwWpyxaHIzz5fkbBq5xhA4zWIUlKnmG6sjK+pOjlDByFRmw9Lmnx2PhGcf KZD8mg+Av+qIxckdX/xVrLXXTdZEI6/RCzckkWTatToCt8cbSZ+RqD6tB3R1aI5S Eb6PeO6Mm7DJZIJFefek/M86puvibS5wqlGYNylghCfo/lnoZM2/uZmMyIlRARgA lKHQ -----END CERTIFICATE-----Generated at Mon Jan 19 16:52:00 2026 by rpki-client