This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ac/3e2165-3bb5-45c3-989a-2953894b1f6d/1/9oyInYSuVnIf7zTVtB6sDcf1XhI.roa File: 9oyInYSuVnIf7zTVtB6sDcf1XhI.roa (raw, json) Hash identifier: l1RSHVmCnQUWX+RzMHEaP0MGuYdTYp413ef1exVSOrk= Subject key identifier: F6:8C:88:9D:84:AE:56:72:1F:EF:34:D5:B4:1E:AC:0D:C7:F5:5E:12 Certificate issuer: /CN=351a14ce9d25239b92fe5abce532515044c1aba4 Certificate serial: 019B7DCB0D4EA89CE786C3A5B5B0F4332472 Authority key identifier: 35:1A:14:CE:9D:25:23:9B:92:FE:5A:BC:E5:32:51:50:44:C1:AB:A4 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NRoUzp0lI5uS_lq85TJRUETBq6Q.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ac/3e2165-3bb5-45c3-989a-2953894b1f6d/1/9oyInYSuVnIf7zTVtB6sDcf1XhI.roa Signing time: Fri 02 Jan 2026 08:20:17 +0000 ROA not before: Fri 02 Jan 2026 08:20:17 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 42405 IP address blocks: 89.42.200.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ac/3e2165-3bb5-45c3-989a-2953894b1f6d/1/NRoUzp0lI5uS_lq85TJRUETBq6Q.crl rsync://rpki.ripe.net/repository/DEFAULT/ac/3e2165-3bb5-45c3-989a-2953894b1f6d/1/NRoUzp0lI5uS_lq85TJRUETBq6Q.mft rsync://rpki.ripe.net/repository/DEFAULT/NRoUzp0lI5uS_lq85TJRUETBq6Q.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 27 Jan 2026 08:00:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7d:cb:0d:4e:a8:9c:e7:86:c3:a5:b5:b0:f4:33:24:72 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=351a14ce9d25239b92fe5abce532515044c1aba4 Validity Not Before: Jan 2 08:20:17 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=f68c889d84ae56721fef34d5b41eac0dc7f55e12 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:bc:ef:f0:5e:91:a3:b4:95:ca:c4:e7:89:7a: e5:4e:c8:cf:df:08:fc:58:66:84:2b:1f:50:ab:2d: 1d:d3:e1:62:9b:35:43:36:53:bc:bc:5a:44:25:b5: 97:86:8f:d5:a8:85:72:7e:b2:5e:6b:87:49:f7:56: dd:cc:07:b4:b5:b9:35:b4:cc:85:64:73:fe:3a:31: 59:c9:68:1d:6f:c2:22:c9:bc:9a:2b:b6:25:2f:2c: 42:aa:19:ac:b0:62:0c:0f:26:db:fa:a7:dd:dc:30: 8d:be:eb:30:9b:82:19:b9:39:17:e4:2e:74:e6:2f: f3:ea:44:53:df:92:63:17:a4:3d:92:07:66:f8:4f: d3:d6:24:7a:e3:93:6b:7a:b3:a5:3d:65:70:47:38: 23:a9:a0:8a:b5:4b:81:29:53:d3:3a:8d:51:0e:4a: 39:c0:a9:2e:6a:82:3a:4f:02:5f:e6:e4:d4:10:7b: 02:e5:78:6b:78:83:8f:78:62:f8:e7:06:3d:ec:1b: e3:e8:64:b9:dc:fb:4e:3b:80:51:02:82:77:79:9f: 44:f2:f3:5b:bf:16:f6:e2:59:7b:e9:6f:14:8e:dc: 68:18:66:b1:86:7e:09:58:13:c0:2c:f7:45:7c:7a: d0:82:d5:69:65:2e:45:96:47:69:31:1b:40:1c:b0: 2e:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F6:8C:88:9D:84:AE:56:72:1F:EF:34:D5:B4:1E:AC:0D:C7:F5:5E:12 X509v3 Authority Key Identifier: keyid:35:1A:14:CE:9D:25:23:9B:92:FE:5A:BC:E5:32:51:50:44:C1:AB:A4 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NRoUzp0lI5uS_lq85TJRUETBq6Q.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ac/3e2165-3bb5-45c3-989a-2953894b1f6d/1/9oyInYSuVnIf7zTVtB6sDcf1XhI.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/ac/3e2165-3bb5-45c3-989a-2953894b1f6d/1/NRoUzp0lI5uS_lq85TJRUETBq6Q.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 89.42.200.0/22 Signature Algorithm: sha256WithRSAEncryption 94:88:bf:ca:54:7d:4c:ba:20:e5:a3:8a:1d:b7:c0:7a:bd:23: f5:a2:80:c7:06:8b:f8:50:af:b5:48:86:d0:6b:90:ea:50:64: 6c:74:9c:e2:b6:9b:c5:83:76:3c:38:49:b8:41:1e:6f:66:5d: 2f:55:5e:c4:77:94:85:d3:f5:7a:9a:10:a6:70:28:fe:b2:69: 69:b6:f6:52:81:d8:e4:30:08:b2:5e:ed:d5:ec:36:0d:6c:c3: f6:54:3c:c8:09:31:dd:3b:e3:6a:da:33:10:d0:9d:0a:8c:7d: ba:cf:85:da:f3:1a:b5:bd:28:74:89:5a:e9:d4:ca:87:c2:ae: dc:18:15:41:5b:63:bd:53:06:fd:ed:f0:69:c9:42:ef:b4:46: ac:82:bd:34:f2:bb:bf:13:51:09:5b:bd:8b:e6:e0:09:6a:cf: de:1c:e8:87:9d:2b:c0:bb:b3:ed:06:35:99:4c:c4:94:65:74: c9:7d:18:d6:fa:ee:16:f6:7c:41:40:59:77:c1:13:ce:45:89: e4:b4:15:fd:84:a6:8f:01:1d:15:72:bd:bc:f9:9f:33:cc:07: 5f:21:2d:86:e2:6b:8c:5b:22:32:cf:10:80:f1:40:b0:1b:f0: 68:63:0d:1e:d7:8c:9d:ba:02:5e:9c:74:22:d8:7d:0b:32:1e: 7e:4b:d1:fd -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt9yw1OqJznhsOltbD0MyRyMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDM1MWExNGNlOWQyNTIzOWI5MmZlNWFiY2U1MzI1MTUwNDRj MWFiYTQwHhcNMjYwMTAyMDgyMDE3WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhmNjhjODg5ZDg0YWU1NjcyMWZlZjM0ZDViNDFlYWMwZGM3ZjU1ZTEyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAr7zv8F6Ro7SVysTniXrlTsjP3wj8 WGaEKx9Qqy0d0+FimzVDNlO8vFpEJbWXho/VqIVyfrJea4dJ91bdzAe0tbk1tMyF ZHP+OjFZyWgdb8IiybyaK7YlLyxCqhmssGIMDybb+qfd3DCNvuswm4IZuTkX5C50 5i/z6kRT35JjF6Q9kgdm+E/T1iR645NrerOlPWVwRzgjqaCKtUuBKVPTOo1RDko5 wKkuaoI6TwJf5uTUEHsC5XhreIOPeGL45wY97Bvj6GS53PtOO4BRAoJ3eZ9E8vNb vxb24ll76W8UjtxoGGaxhn4JWBPALPdFfHrQgtVpZS5FlkdpMRtAHLAuIQIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFPaMiJ2ErlZyH+801bQerA3H9V4SMB8GA1UdIwQY MBaAFDUaFM6dJSObkv5avOUyUVBEwaukMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvTlJvVXpwMGxJNXVTX2xxODVUSlJVRVRCcTZRLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hYy8zZTIxNjUtM2JiNS00NWMzLTk4OWEt Mjk1Mzg5NGIxZjZkLzEvOW95SW5ZU3VWbklmN3pUVnRCNnNEY2YxWGhJLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9hYy8zZTIxNjUtM2JiNS00NWMzLTk4OWEtMjk1Mzg5NGIxZjZk LzEvTlJvVXpwMGxJNXVTX2xxODVUSlJVRVRCcTZRLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCWSrIMA0G CSqGSIb3DQEBCwUAA4IBAQCUiL/KVH1MuiDlo4odt8B6vSP1ooDHBov4UK+1SIbQ a5DqUGRsdJzitpvFg3Y8OEm4QR5vZl0vVV7Ed5SF0/V6mhCmcCj+smlptvZSgdjk MAiyXu3V7DYNbMP2VDzICTHdO+Nq2jMQ0J0KjH26z4Xa8xq1vSh0iVrp1MqHwq7c GBVBW2O9Uwb97fBpyULvtEasgr008ru/E1EJW72L5uAJas/eHOiHnSvAu7PtBjWZ TMSUZXTJfRjW+u4W9nxBQFl3wRPORYnktBX9hKaPAR0Vcr28+Z8zzAdfIS2G4muM WyIyzxCA8UCwG/BoYw0e14ydugJenHQi2H0LMh5+S9H9 -----END CERTIFICATE-----Generated at Mon Jan 26 17:25:42 2026 by rpki-client