This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/95/087513-d2d6-43c6-9b79-22f0aaa81327/1/9DO8d9woQowqNiDzxlMl1Ect3bo.roa File: 9DO8d9woQowqNiDzxlMl1Ect3bo.roa (raw, json) Hash identifier: fzBgjDacb2JVb/qyd2WOo94sgyv6vVFqac/sTPnx2ow= Subject key identifier: F4:33:BC:77:DC:28:42:8C:2A:36:20:F3:C6:53:25:D4:47:2D:DD:BA Certificate issuer: /CN=6eef3973d6e07681419bae867bd514545e7df5da Certificate serial: 019B78A2560139D1F4944AF48E1E72919B5A Authority key identifier: 6E:EF:39:73:D6:E0:76:81:41:9B:AE:86:7B:D5:14:54:5E:7D:F5:DA Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bu85c9bgdoFBm66Ge9UUVF599do.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/95/087513-d2d6-43c6-9b79-22f0aaa81327/1/9DO8d9woQowqNiDzxlMl1Ect3bo.roa Signing time: Thu 01 Jan 2026 08:17:43 +0000 ROA not before: Thu 01 Jan 2026 08:17:43 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 8075 IP address blocks: 2.58.103.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/95/087513-d2d6-43c6-9b79-22f0aaa81327/1/bu85c9bgdoFBm66Ge9UUVF599do.crl rsync://rpki.ripe.net/repository/DEFAULT/95/087513-d2d6-43c6-9b79-22f0aaa81327/1/bu85c9bgdoFBm66Ge9UUVF599do.mft rsync://rpki.ripe.net/repository/DEFAULT/bu85c9bgdoFBm66Ge9UUVF599do.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 19 Jan 2026 05:01:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:78:a2:56:01:39:d1:f4:94:4a:f4:8e:1e:72:91:9b:5a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6eef3973d6e07681419bae867bd514545e7df5da Validity Not Before: Jan 1 08:17:43 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=f433bc77dc28428c2a3620f3c65325d4472dddba Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:3c:ce:b3:ed:e2:1e:3d:b2:70:ab:c9:a9:0a: 80:8f:cd:97:6f:d1:b3:de:bf:96:8e:18:25:44:c5: 73:06:b4:71:25:a3:55:bd:0f:88:f7:68:d7:d3:4f: f4:09:d8:d7:18:50:13:25:ea:00:c4:fa:09:ce:a9: 63:cd:f5:1a:17:f2:8d:48:ab:30:60:29:93:d0:f9: 6b:6d:0f:93:3b:bd:9a:4b:f7:0d:a5:f0:10:ca:13: 52:2b:2f:eb:b9:23:66:c2:ba:df:8c:7b:b7:ce:98: 00:1f:dc:82:63:80:78:f4:7a:9b:20:1f:3d:18:40: ce:18:fb:98:f3:34:82:f9:8d:e7:b0:eb:ee:9a:f3: 2b:7e:9e:36:3a:7b:5b:67:f5:a3:58:d4:fb:f6:08: 3b:99:49:24:65:0d:d6:5c:ca:6f:f0:e6:77:11:15: 50:92:79:1b:e8:a3:65:0a:11:0b:80:ba:37:43:f4: fc:f7:28:fb:a5:d9:ae:63:3e:7d:8a:27:c2:46:21: 0c:e5:42:96:c9:83:a2:b0:d4:61:7a:f5:28:4a:01: f8:53:47:d1:74:98:d3:c6:e8:48:57:c4:f8:5c:5c: 1e:fd:9a:2f:b3:d8:98:6d:fd:04:f1:9f:ca:6e:41: a0:f2:15:e3:d6:2d:b8:98:32:f4:36:f7:3c:af:80: fd:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F4:33:BC:77:DC:28:42:8C:2A:36:20:F3:C6:53:25:D4:47:2D:DD:BA X509v3 Authority Key Identifier: keyid:6E:EF:39:73:D6:E0:76:81:41:9B:AE:86:7B:D5:14:54:5E:7D:F5:DA X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bu85c9bgdoFBm66Ge9UUVF599do.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/95/087513-d2d6-43c6-9b79-22f0aaa81327/1/9DO8d9woQowqNiDzxlMl1Ect3bo.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/95/087513-d2d6-43c6-9b79-22f0aaa81327/1/bu85c9bgdoFBm66Ge9UUVF599do.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 2.58.103.0/24 Signature Algorithm: sha256WithRSAEncryption 0e:62:be:08:84:85:57:18:d4:ae:3c:56:94:75:24:46:08:83: f1:ec:02:94:3c:dc:51:bb:bd:3e:b0:f6:b5:69:10:98:03:e0: 88:04:26:7d:e0:3e:d9:ec:ac:6a:58:52:f0:a5:ad:51:81:95: e7:e0:b5:0a:a7:7e:57:32:59:65:53:13:b4:d9:27:a6:0c:bb: 23:11:d1:7e:93:9b:3a:82:2f:2e:76:21:31:b2:fd:8c:9a:da: 05:69:d7:ee:9b:48:e7:5c:89:bf:4a:39:1c:42:2c:9b:1b:22: 82:5b:08:3a:ba:53:91:3a:cb:a4:ce:71:e7:44:cc:31:d2:92: 65:51:f6:bc:ff:6f:a7:40:62:5b:cf:d0:9a:8c:55:07:ff:1b: f7:d9:96:f3:41:3b:55:6d:80:27:38:73:b2:a4:b0:1b:00:0b: f8:7c:83:2c:ac:84:af:01:0d:01:b1:22:95:ce:48:f6:0e:94: 15:4b:6f:62:9b:05:32:56:ed:d3:93:79:b4:27:6e:d2:c3:ba: b7:d5:12:fd:31:2e:d0:13:75:03:1b:39:de:39:90:dc:90:9e: 2c:fd:05:34:9d:e5:d7:fa:30:ad:b8:bd:ea:7d:9b:63:79:b2: d0:44:31:ea:45:d2:3a:83:d4:e2:88:c2:89:ea:df:5f:43:f0: c4:ca:4f:c5 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt4olYBOdH0lEr0jh5ykZtaMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDZlZWYzOTczZDZlMDc2ODE0MTliYWU4NjdiZDUxNDU0NWU3 ZGY1ZGEwHhcNMjYwMTAxMDgxNzQzWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhmNDMzYmM3N2RjMjg0MjhjMmEzNjIwZjNjNjUzMjVkNDQ3MmRkZGJhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqDzOs+3iHj2ycKvJqQqAj82Xb9Gz 3r+WjhglRMVzBrRxJaNVvQ+I92jX00/0CdjXGFATJeoAxPoJzqljzfUaF/KNSKsw YCmT0PlrbQ+TO72aS/cNpfAQyhNSKy/ruSNmwrrfjHu3zpgAH9yCY4B49HqbIB89 GEDOGPuY8zSC+Y3nsOvumvMrfp42OntbZ/WjWNT79gg7mUkkZQ3WXMpv8OZ3ERVQ knkb6KNlChELgLo3Q/T89yj7pdmuYz59iifCRiEM5UKWyYOisNRhevUoSgH4U0fR dJjTxuhIV8T4XFwe/Zovs9iYbf0E8Z/KbkGg8hXj1i24mDL0Nvc8r4D9UwIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFPQzvHfcKEKMKjYg88ZTJdRHLd26MB8GA1UdIwQY MBaAFG7vOXPW4HaBQZuuhnvVFFReffXaMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvYnU4NWM5Ymdkb0ZCbTY2R2U5VVVWRjU5OWRvLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85NS8wODc1MTMtZDJkNi00M2M2LTliNzkt MjJmMGFhYTgxMzI3LzEvOURPOGQ5d29Rb3dxTmlEenhsTWwxRWN0M2JvLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC85NS8wODc1MTMtZDJkNi00M2M2LTliNzktMjJmMGFhYTgxMzI3 LzEvYnU4NWM5Ymdkb0ZCbTY2R2U5VVVWRjU5OWRvLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAAjpnMA0G CSqGSIb3DQEBCwUAA4IBAQAOYr4IhIVXGNSuPFaUdSRGCIPx7AKUPNxRu70+sPa1 aRCYA+CIBCZ94D7Z7KxqWFLwpa1RgZXn4LUKp35XMlllUxO02SemDLsjEdF+k5s6 gi8udiExsv2MmtoFadfum0jnXIm/SjkcQiybGyKCWwg6ulOROsukznHnRMwx0pJl Ufa8/2+nQGJbz9CajFUH/xv32ZbzQTtVbYAnOHOypLAbAAv4fIMsrISvAQ0BsSKV zkj2DpQVS29imwUyVu3Tk3m0J27Sw7q31RL9MS7QE3UDGzneOZDckJ4s/QU0neXX +jCtuL3qfZtjebLQRDHqRdI6g9TiiMKJ6t9fQ/DEyk/F -----END CERTIFICATE-----Generated at Sun Jan 18 15:29:22 2026 by rpki-client