This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9e/9e16c1-310f-410c-b341-41d82329f26d/1/z9e4MYEp5ML-wSYz0dIO1W_R8-M.roa File: z9e4MYEp5ML-wSYz0dIO1W_R8-M.roa (raw, json) Hash identifier: 9rf8k+M//WSQYyuu/prsp6q1l8xGdsVv2M04htviNLA= Subject key identifier: CF:D7:B8:31:81:29:E4:C2:FE:C1:26:33:D1:D2:0E:D5:6F:D1:F3:E3 Certificate issuer: /CN=c24d5bd3ceeaab0786ce151a3178dadc107bf280 Certificate serial: 019B7910B57DEB0B1AC0EACCCFD6C31A3396 Authority key identifier: C2:4D:5B:D3:CE:EA:AB:07:86:CE:15:1A:31:78:DA:DC:10:7B:F2:80 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/wk1b087qqweGzhUaMXja3BB78oA.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9e/9e16c1-310f-410c-b341-41d82329f26d/1/z9e4MYEp5ML-wSYz0dIO1W_R8-M.roa Signing time: Thu 01 Jan 2026 10:18:16 +0000 ROA not before: Thu 01 Jan 2026 10:18:16 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 205714 IP address blocks: 86.32.0.0/15 maxlen: 15 86.32.80.0/21 maxlen: 21 86.32.88.0/21 maxlen: 21 86.32.96.0/21 maxlen: 21 86.32.104.0/21 maxlen: 21 86.32.112.0/21 maxlen: 21 86.33.0.0/21 maxlen: 21 86.33.8.0/21 maxlen: 21 86.33.16.0/21 maxlen: 21 86.33.24.0/21 maxlen: 21 86.33.32.0/21 maxlen: 21 86.33.40.0/21 maxlen: 21 2a10:5700::/29 maxlen: 29 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9e/9e16c1-310f-410c-b341-41d82329f26d/1/wk1b087qqweGzhUaMXja3BB78oA.crl rsync://rpki.ripe.net/repository/DEFAULT/9e/9e16c1-310f-410c-b341-41d82329f26d/1/wk1b087qqweGzhUaMXja3BB78oA.mft rsync://rpki.ripe.net/repository/DEFAULT/wk1b087qqweGzhUaMXja3BB78oA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 27 Jan 2026 13:00:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:79:10:b5:7d:eb:0b:1a:c0:ea:cc:cf:d6:c3:1a:33:96 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=c24d5bd3ceeaab0786ce151a3178dadc107bf280 Validity Not Before: Jan 1 10:18:16 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=cfd7b8318129e4c2fec12633d1d20ed56fd1f3e3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:19:6b:42:35:d8:d8:b3:f7:7a:35:35:28:62: 05:e9:f4:84:1b:5c:e7:77:47:be:5e:3e:41:0f:03: ac:20:4e:97:91:a2:fd:14:41:6c:23:ec:5d:7e:3d: 7b:e0:62:19:f9:75:96:28:de:1d:57:9b:9f:cf:63: a8:84:7c:6b:e6:6a:45:67:a5:c9:26:32:8f:d6:83: 0f:7a:17:f8:5e:ef:94:e4:2b:15:6b:3a:3a:4c:c8: 43:bd:f4:04:a3:2c:b2:6a:de:82:32:14:30:c4:0c: 60:99:ed:86:b0:fa:02:68:6c:c2:15:dc:d8:14:4e: 21:82:52:5d:44:8d:f3:04:ba:ea:b0:a5:c8:2c:5f: 09:7d:82:45:af:e2:ff:4a:b7:62:22:89:25:4b:ac: da:dc:2c:0a:ed:45:10:13:17:df:42:30:4b:3b:16: 52:83:25:ee:7b:01:ce:62:5e:02:36:1f:3d:76:e7: 16:91:19:50:d6:d8:ea:e4:93:9b:d9:6f:4d:a7:77: ee:8e:e6:28:ca:6b:81:ad:27:60:fc:84:02:7c:a2: 97:4f:ee:c6:5c:8d:6e:68:f4:74:05:31:87:8c:26: 83:07:4b:32:9c:9d:75:13:30:c1:d6:e8:9e:99:25: 15:23:90:7b:6b:89:c6:c1:25:57:5f:6a:49:92:87: 54:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CF:D7:B8:31:81:29:E4:C2:FE:C1:26:33:D1:D2:0E:D5:6F:D1:F3:E3 X509v3 Authority Key Identifier: keyid:C2:4D:5B:D3:CE:EA:AB:07:86:CE:15:1A:31:78:DA:DC:10:7B:F2:80 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/wk1b087qqweGzhUaMXja3BB78oA.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9e/9e16c1-310f-410c-b341-41d82329f26d/1/z9e4MYEp5ML-wSYz0dIO1W_R8-M.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/9e/9e16c1-310f-410c-b341-41d82329f26d/1/wk1b087qqweGzhUaMXja3BB78oA.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 86.32.0.0/15 IPv6: 2a10:5700::/29 Signature Algorithm: sha256WithRSAEncryption af:a3:d7:4a:74:8d:cb:9e:be:5e:c0:5a:ec:41:66:2a:cf:fa: ae:b5:3e:94:87:19:86:ac:de:50:b2:43:cb:63:41:03:82:da: 14:36:2a:4a:9d:36:9a:e9:b2:eb:43:84:4e:6c:b5:70:bc:2f: 7f:57:46:78:54:2a:ab:3c:cb:1a:24:f6:cc:42:49:fd:ed:b2: cd:0c:33:e0:49:91:50:ba:df:00:bd:bb:fd:1e:38:8f:fb:7b: ad:b5:0e:26:5f:4e:d2:ea:b3:48:39:c5:c7:e4:75:ba:04:59: 55:65:8b:19:7f:8d:2b:59:ff:9a:75:65:6b:cb:0a:c7:0c:bd: 1d:18:85:df:df:ad:12:a5:13:5e:ec:f8:d2:61:03:61:3b:6a: d8:e2:bb:30:f3:3a:4f:65:79:e8:5b:53:bf:22:12:40:a9:5a: c2:2b:42:af:d9:ef:9a:d4:27:dd:26:d3:38:9d:04:23:82:08: 70:f5:41:31:ba:b5:a8:88:85:bb:d2:70:b5:11:ce:a1:66:f5: 15:55:7b:90:4e:5f:e2:69:a0:8a:0c:2d:d8:8c:44:bd:91:0e: 2a:43:c5:d6:0f:af:ac:b7:98:2a:f2:92:25:7c:60:f3:89:f8: 09:c0:bd:32:c0:ec:30:03:35:7e:83:6a:52:a1:7f:c6:4a:12: 20:d8:dc:4a -----BEGIN CERTIFICATE----- MIIFCzCCA/OgAwIBAgISAZt5ELV96wsawOrMz9bDGjOWMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGMyNGQ1YmQzY2VlYWFiMDc4NmNlMTUxYTMxNzhkYWRjMTA3 YmYyODAwHhcNMjYwMTAxMTAxODE2WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhjZmQ3YjgzMTgxMjllNGMyZmVjMTI2MzNkMWQyMGVkNTZmZDFmM2UzMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAshlrQjXY2LP3ejU1KGIF6fSEG1zn d0e+Xj5BDwOsIE6XkaL9FEFsI+xdfj174GIZ+XWWKN4dV5ufz2OohHxr5mpFZ6XJ JjKP1oMPehf4Xu+U5CsVazo6TMhDvfQEoyyyat6CMhQwxAxgme2GsPoCaGzCFdzY FE4hglJdRI3zBLrqsKXILF8JfYJFr+L/SrdiIoklS6za3CwK7UUQExffQjBLOxZS gyXuewHOYl4CNh89ducWkRlQ1tjq5JOb2W9Np3fujuYoymuBrSdg/IQCfKKXT+7G XI1uaPR0BTGHjCaDB0synJ11EzDB1uiemSUVI5B7a4nGwSVXX2pJkodURQIDAQAB o4ICFzCCAhMwHQYDVR0OBBYEFM/XuDGBKeTC/sEmM9HSDtVv0fPjMB8GA1UdIwQY MBaAFMJNW9PO6qsHhs4VGjF42twQe/KAMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvd2sxYjA4N3Fxd2VHemhVYU1YamEzQkI3OG9BLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85ZS85ZTE2YzEtMzEwZi00MTBjLWIzNDEt NDFkODIzMjlmMjZkLzEvejllNE1ZRXA1TUwtd1NZejBkSU8xV19SOC1NLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC85ZS85ZTE2YzEtMzEwZi00MTBjLWIzNDEtNDFkODIzMjlmMjZk LzEvd2sxYjA4N3Fxd2VHemhVYU1YamEzQkI3OG9BLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMC0GCCsGAQUFBwEHAQH/BB4wHDALBAIAATAFAwMBViAwDQQC AAIwBwMFAyoQVwAwDQYJKoZIhvcNAQELBQADggEBAK+j10p0jcuevl7AWuxBZirP +q61PpSHGYas3lCyQ8tjQQOC2hQ2KkqdNprpsutDhE5stXC8L39XRnhUKqs8yxok 9sxCSf3tss0MM+BJkVC63wC9u/0eOI/7e621DiZfTtLqs0g5xcfkdboEWVVlixl/ jStZ/5p1ZWvLCscMvR0Yhd/frRKlE17s+NJhA2E7atjiuzDzOk9leehbU78iEkCp WsIrQq/Z75rUJ90m0zidBCOCCHD1QTG6taiIhbvScLURzqFm9RVVe5BOX+JpoIoM LdiMRL2RDipDxdYPr6y3mCrykiV8YPOJ+AnAvTLA7DADNX6DalKhf8ZKEiDY3Eo= -----END CERTIFICATE-----Generated at Mon Jan 26 17:24:33 2026 by rpki-client