This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9b/91af66-d394-42fa-a0c6-b16cb4dfadd3/1/1-UMvRKVvD5QzsC1RJIFAioK-mEs.roa File: 1-UMvRKVvD5QzsC1RJIFAioK-mEs.roa (raw, json) Hash identifier: cY/EkTeqSslspKNTMCfMPqb7ocfNcYNdxMAXgd+AwHE= Subject key identifier: F9:43:2F:44:A5:6F:0F:94:33:B0:2D:51:24:81:40:8A:82:BE:98:4B Certificate issuer: /CN=827603a93bca31b018f511f6d4b0b7546e963362 Certificate serial: 019B7C7F7CF1620396A8748D50363217E3E0 Authority key identifier: 82:76:03:A9:3B:CA:31:B0:18:F5:11:F6:D4:B0:B7:54:6E:96:33:62 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gnYDqTvKMbAY9RH21LC3VG6WM2I.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9b/91af66-d394-42fa-a0c6-b16cb4dfadd3/1/1-UMvRKVvD5QzsC1RJIFAioK-mEs.roa Signing time: Fri 02 Jan 2026 02:18:08 +0000 ROA not before: Fri 02 Jan 2026 02:18:08 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 212335 IP address blocks: 2.56.184.0/24 maxlen: 24 2.56.185.0/24 maxlen: 24 2.56.186.0/24 maxlen: 24 2.56.187.0/24 maxlen: 24 45.11.154.0/24 maxlen: 24 85.8.168.0/24 maxlen: 24 85.8.169.0/24 maxlen: 24 85.8.171.0/24 maxlen: 24 185.124.241.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9b/91af66-d394-42fa-a0c6-b16cb4dfadd3/1/gnYDqTvKMbAY9RH21LC3VG6WM2I.crl rsync://rpki.ripe.net/repository/DEFAULT/9b/91af66-d394-42fa-a0c6-b16cb4dfadd3/1/gnYDqTvKMbAY9RH21LC3VG6WM2I.mft rsync://rpki.ripe.net/repository/DEFAULT/gnYDqTvKMbAY9RH21LC3VG6WM2I.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 20 Jan 2026 08:02:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7c:7f:7c:f1:62:03:96:a8:74:8d:50:36:32:17:e3:e0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=827603a93bca31b018f511f6d4b0b7546e963362 Validity Not Before: Jan 2 02:18:08 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=f9432f44a56f0f9433b02d512481408a82be984b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:6d:b6:6b:8a:8f:80:06:e9:c3:a2:64:79:8a: 99:bc:9d:b2:52:9e:9a:2e:21:77:21:b5:cb:d3:e8: 1b:83:20:f5:33:c9:95:fb:de:6f:ed:dd:b7:7d:9f: f9:79:ef:d3:f8:fd:14:fc:2e:ab:9f:58:17:c1:9b: 6f:49:3e:f1:39:89:ae:e0:98:25:17:83:5c:93:d0: b2:00:40:66:ca:60:9a:c5:c4:27:ad:47:96:32:80: 0a:a9:0f:48:47:e2:00:3e:58:49:b0:7b:25:59:bf: 82:29:e8:ae:b6:83:39:c1:30:4f:5e:f8:5b:c9:a9: 33:4c:5a:b8:1b:a3:7f:09:fb:a7:6d:0a:98:b6:2d: 89:13:e3:8b:8e:c2:87:af:bd:3a:09:5b:29:73:df: dc:1c:ad:7e:08:72:bc:7a:e2:a5:f6:53:2a:1b:1f: 8b:8a:9c:8a:53:c1:65:cd:42:5f:05:14:e7:b5:76: 1e:bb:87:40:31:4c:2a:69:17:bf:da:08:a4:29:e3: 87:6c:61:a3:b8:dd:48:36:ae:48:7c:80:5a:97:51: 64:c9:7c:7d:83:c8:92:1f:33:bb:2f:9f:ad:6b:df: a7:bc:14:2a:a2:8a:13:68:ae:5d:10:81:03:30:11: ad:89:f2:c9:d7:aa:fb:8d:37:f8:fa:cc:27:a3:77: f8:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F9:43:2F:44:A5:6F:0F:94:33:B0:2D:51:24:81:40:8A:82:BE:98:4B X509v3 Authority Key Identifier: keyid:82:76:03:A9:3B:CA:31:B0:18:F5:11:F6:D4:B0:B7:54:6E:96:33:62 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gnYDqTvKMbAY9RH21LC3VG6WM2I.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9b/91af66-d394-42fa-a0c6-b16cb4dfadd3/1/1-UMvRKVvD5QzsC1RJIFAioK-mEs.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/9b/91af66-d394-42fa-a0c6-b16cb4dfadd3/1/gnYDqTvKMbAY9RH21LC3VG6WM2I.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 2.56.184.0/22 45.11.154.0/24 85.8.168.0/23 85.8.171.0/24 185.124.241.0/24 Signature Algorithm: sha256WithRSAEncryption 1f:a3:b3:6e:08:b0:31:c6:a5:87:63:ab:ef:6f:6c:0b:ec:e9: 64:01:48:59:43:ed:16:82:39:3d:1a:80:4c:86:56:61:f7:b1: cb:e5:d4:70:9d:29:7c:94:b5:69:e6:0b:b3:46:1a:1d:03:d2: 3b:6d:bc:b8:d6:44:9e:9e:28:e3:f7:15:44:67:1e:1a:08:32: a4:62:31:17:e7:a1:0a:07:fc:29:a9:24:d5:42:bb:fd:ad:8f: 8d:5c:23:f1:e2:6c:d8:4f:4d:e3:84:86:19:f2:91:bb:4e:d3: c5:d7:50:c4:6d:96:ed:13:f4:a7:bb:7a:ef:20:97:6e:b1:78: 66:a7:e8:4c:ca:e7:63:c2:be:fc:87:a9:d1:58:b6:48:d7:d1: 3c:53:98:8b:2b:fe:55:df:a3:a8:56:c0:ff:fb:38:cf:d6:7f: 68:70:0a:e8:5d:92:e2:c5:7a:b5:8b:c6:65:e1:a4:04:4c:ef: b7:25:8a:03:86:76:0d:05:cd:52:b4:a9:3a:d1:b9:cf:99:7b: 55:74:c2:0e:f0:cd:a3:e5:a9:e1:57:e6:60:b6:d2:94:66:6c: 56:4f:9c:a8:09:3b:2a:1b:8f:a5:b9:07:5c:9e:90:99:28:4e: 0c:d2:06:6b:1d:e0:c6:fa:7e:87:f9:31:ae:2b:00:8a:60:a6: 18:88:7b:69 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZt8f3zxYgOWqHSNUDYyF+PgMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDgyNzYwM2E5M2JjYTMxYjAxOGY1MTFmNmQ0YjBiNzU0NmU5 NjMzNjIwHhcNMjYwMTAyMDIxODA4WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhmOTQzMmY0NGE1NmYwZjk0MzNiMDJkNTEyNDgxNDA4YTgyYmU5ODRiMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvW22a4qPgAbpw6JkeYqZvJ2yUp6a LiF3IbXL0+gbgyD1M8mV+95v7d23fZ/5ee/T+P0U/C6rn1gXwZtvST7xOYmu4Jgl F4Nck9CyAEBmymCaxcQnrUeWMoAKqQ9IR+IAPlhJsHslWb+CKeiutoM5wTBPXvhb yakzTFq4G6N/CfunbQqYti2JE+OLjsKHr706CVspc9/cHK1+CHK8euKl9lMqGx+L ipyKU8FlzUJfBRTntXYeu4dAMUwqaRe/2gikKeOHbGGjuN1INq5IfIBal1FkyXx9 g8iSHzO7L5+ta9+nvBQqoooTaK5dEIEDMBGtifLJ16r7jTf4+swno3f4mwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFPlDL0Slbw+UM7AtUSSBQIqCvphLMB8GA1UdIwQY MBaAFIJ2A6k7yjGwGPUR9tSwt1RuljNiMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvZ25ZRHFUdktNYkFZOVJIMjFMQzNWRzZXTTJJLmNlcjCB jgYIKwYBBQUHAQsEgYEwfzB9BggrBgEFBQcwC4ZxcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85Yi85MWFmNjYtZDM5NC00MmZhLWEwYzYt YjE2Y2I0ZGZhZGQzLzEvMS1VTXZSS1Z2RDVRenNDMVJKSUZBaW9LLW1Fcy5yb2Ew gYEGA1UdHwR6MHgwdqB0oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0 b3J5L0RFRkFVTFQvOWIvOTFhZjY2LWQzOTQtNDJmYS1hMGM2LWIxNmNiNGRmYWRk My8xL2duWURxVHZLTWJBWTlSSDIxTEMzVkc2V00ySS5jcmwwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjA3BggrBgEFBQcBBwEB/wQoMCYwJAQCAAEwHgMEAgI4uAME AC0LmgMEAVUIqAMEAFUIqwMEALl88TANBgkqhkiG9w0BAQsFAAOCAQEAH6Ozbgiw Mcalh2Or729sC+zpZAFIWUPtFoI5PRqATIZWYfexy+XUcJ0pfJS1aeYLs0YaHQPS O228uNZEnp4o4/cVRGceGggypGIxF+ehCgf8Kakk1UK7/a2PjVwj8eJs2E9N44SG GfKRu07TxddQxG2W7RP0p7t67yCXbrF4ZqfoTMrnY8K+/Iep0Vi2SNfRPFOYiyv+ Vd+jqFbA//s4z9Z/aHAK6F2S4sV6tYvGZeGkBEzvtyWKA4Z2DQXNUrSpOtG5z5l7 VXTCDvDNo+Wp4VfmYLbSlGZsVk+cqAk7KhuPpbkHXJ6QmShODNIGax3gxvp+h/kx risAimCmGIh7aQ== -----END CERTIFICATE-----Generated at Mon Jan 19 16:54:17 2026 by rpki-client