This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ae/74b280-e1b4-4310-8085-d65617bd3b4f/1/mzDYp7n26mDiWHNdtuApd9PtwRI.roa File: mzDYp7n26mDiWHNdtuApd9PtwRI.roa (raw, json) Hash identifier: B9knfXLtUIlMboxQnejwbYi+kBKU6xfPLrCe2Bf2F4Y= Subject key identifier: 9B:30:D8:A7:B9:F6:EA:60:E2:58:73:5D:B6:E0:29:77:D3:ED:C1:12 Certificate issuer: /CN=f5cb856d4269219ed3a0c0dc47333236f155953a Certificate serial: 019B7AC83EE2EDCDAEC2D9CD702A4571717A Authority key identifier: F5:CB:85:6D:42:69:21:9E:D3:A0:C0:DC:47:33:32:36:F1:55:95:3A Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/9cuFbUJpIZ7ToMDcRzMyNvFVlTo.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ae/74b280-e1b4-4310-8085-d65617bd3b4f/1/mzDYp7n26mDiWHNdtuApd9PtwRI.roa Signing time: Thu 01 Jan 2026 18:18:22 +0000 ROA not before: Thu 01 Jan 2026 18:18:22 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 19905 IP address blocks: 82.85.16.0/24 maxlen: 24 82.85.18.0/24 maxlen: 24 82.85.24.0/24 maxlen: 24 82.85.27.0/24 maxlen: 24 82.85.28.0/24 maxlen: 24 82.85.61.0/24 maxlen: 24 82.85.154.0/24 maxlen: 24 94.32.64.0/20 maxlen: 24 94.32.80.0/21 maxlen: 24 94.32.96.0/23 maxlen: 24 94.32.100.0/22 maxlen: 24 94.32.102.0/24 maxlen: 24 94.32.104.0/21 maxlen: 24 94.32.115.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ae/74b280-e1b4-4310-8085-d65617bd3b4f/1/9cuFbUJpIZ7ToMDcRzMyNvFVlTo.crl rsync://rpki.ripe.net/repository/DEFAULT/ae/74b280-e1b4-4310-8085-d65617bd3b4f/1/9cuFbUJpIZ7ToMDcRzMyNvFVlTo.mft rsync://rpki.ripe.net/repository/DEFAULT/9cuFbUJpIZ7ToMDcRzMyNvFVlTo.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 20 Jan 2026 18:00:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7a:c8:3e:e2:ed:cd:ae:c2:d9:cd:70:2a:45:71:71:7a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=f5cb856d4269219ed3a0c0dc47333236f155953a Validity Not Before: Jan 1 18:18:22 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=9b30d8a7b9f6ea60e258735db6e02977d3edc112 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:40:af:f8:11:6c:b0:1e:b7:a4:96:4a:a8:a2: b4:db:3a:af:1c:04:c1:e3:46:2e:38:8f:20:bb:35: af:7d:ff:b2:0f:c2:4d:40:0d:8f:d2:c1:86:31:99: 5f:90:9c:dc:5d:88:09:9f:11:20:b1:c0:6d:51:8e: 36:00:9a:bd:b7:88:29:ca:e5:f2:0b:d9:94:0c:cf: ef:12:84:76:3f:7c:33:1b:9c:9e:9a:39:56:c3:2b: 0e:2e:05:2c:48:43:e6:89:86:1a:a7:30:22:3f:d0: d6:7f:fe:9b:ea:27:f6:18:eb:f6:b1:1b:70:ef:f6: 0f:b7:df:fe:8b:c9:5c:32:2d:68:cd:60:ad:83:e8: f8:7d:1f:c7:60:d6:97:58:fe:65:1b:ee:31:74:99: df:62:8c:76:bc:f1:36:81:6a:2c:87:5a:de:3d:4c: 0d:d3:c8:82:bd:ee:df:a7:6e:be:e3:a3:b0:f2:8b: 3d:4b:ca:67:c0:33:94:3e:52:fc:de:79:1b:c2:7b: 6d:36:f6:ed:1d:f4:92:fc:ec:37:97:43:2d:c8:a7: ae:ea:11:8e:0b:4c:c4:28:75:3a:c6:7a:56:11:f3: 15:56:ef:99:6d:98:d7:63:54:98:8b:55:60:11:b3: 21:5c:1a:68:35:3e:f8:01:fc:d8:b0:ab:1b:d4:65: 0a:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9B:30:D8:A7:B9:F6:EA:60:E2:58:73:5D:B6:E0:29:77:D3:ED:C1:12 X509v3 Authority Key Identifier: keyid:F5:CB:85:6D:42:69:21:9E:D3:A0:C0:DC:47:33:32:36:F1:55:95:3A X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/9cuFbUJpIZ7ToMDcRzMyNvFVlTo.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ae/74b280-e1b4-4310-8085-d65617bd3b4f/1/mzDYp7n26mDiWHNdtuApd9PtwRI.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/ae/74b280-e1b4-4310-8085-d65617bd3b4f/1/9cuFbUJpIZ7ToMDcRzMyNvFVlTo.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 82.85.16.0/24 82.85.18.0/24 82.85.24.0/24 82.85.27.0-82.85.28.255 82.85.61.0/24 82.85.154.0/24 94.32.64.0-94.32.87.255 94.32.96.0/23 94.32.100.0-94.32.111.255 94.32.115.0/24 Signature Algorithm: sha256WithRSAEncryption 77:71:c7:2a:6c:9e:a7:24:12:ed:4e:94:f3:47:af:3b:1e:cf: 0d:fd:14:f3:46:4a:52:13:1b:bf:a5:73:8d:f4:bb:85:f9:54: cf:3f:d1:64:c4:2a:de:0d:a3:60:2f:93:ff:5f:59:e5:ea:72: 2d:b6:50:81:c5:0c:da:3f:79:1c:fe:0f:a5:35:b7:c4:d1:69: a8:ee:83:2d:bd:3a:ef:f8:a6:4a:c8:c2:ce:cf:c9:74:a9:04: 5e:6c:db:31:91:28:cd:9f:34:bb:58:1f:f2:6e:e3:68:04:1d: ed:dd:6e:42:6c:81:d3:bf:9a:1d:59:a3:82:2c:5d:14:77:80: 9f:df:6e:28:b0:65:15:23:3d:92:d5:75:93:34:7a:4e:55:1f: 51:aa:56:db:43:0e:aa:e7:97:62:50:b0:3f:38:3e:a5:41:fb: 40:f0:a4:2f:07:2a:4e:18:cb:93:70:75:c3:86:20:7f:ca:df: d4:37:56:13:31:e7:5e:73:d2:a7:9e:73:11:b4:7e:84:5b:86: ff:30:63:66:37:c6:e4:03:24:40:dd:c9:e3:9f:54:df:ad:d9: 37:b5:47:93:05:b3:a9:fb:e6:0d:95:a1:c6:c9:4e:17:43:cc: 50:e3:b2:58:93:01:19:a3:39:98:41:1f:75:b7:a9:12:4b:12: 98:2d:02:75 -----BEGIN CERTIFICATE----- MIIFSzCCBDOgAwIBAgISAZt6yD7i7c2uwtnNcCpFcXF6MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGY1Y2I4NTZkNDI2OTIxOWVkM2EwYzBkYzQ3MzMzMjM2ZjE1 NTk1M2EwHhcNMjYwMTAxMTgxODIyWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg5YjMwZDhhN2I5ZjZlYTYwZTI1ODczNWRiNmUwMjk3N2QzZWRjMTEyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0ECv+BFssB63pJZKqKK02zqvHATB 40YuOI8guzWvff+yD8JNQA2P0sGGMZlfkJzcXYgJnxEgscBtUY42AJq9t4gpyuXy C9mUDM/vEoR2P3wzG5yemjlWwysOLgUsSEPmiYYapzAiP9DWf/6b6if2GOv2sRtw 7/YPt9/+i8lcMi1ozWCtg+j4fR/HYNaXWP5lG+4xdJnfYox2vPE2gWosh1rePUwN 08iCve7fp26+46Ow8os9S8pnwDOUPlL83nkbwnttNvbtHfSS/Ow3l0MtyKeu6hGO C0zEKHU6xnpWEfMVVu+ZbZjXY1SYi1VgEbMhXBpoNT74AfzYsKsb1GUK2wIDAQAB o4ICVzCCAlMwHQYDVR0OBBYEFJsw2Ke59upg4lhzXbbgKXfT7cESMB8GA1UdIwQY MBaAFPXLhW1CaSGe06DA3EczMjbxVZU6MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvOWN1RmJVSnBJWjdUb01EY1J6TXlOdkZWbFRvLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hZS83NGIyODAtZTFiNC00MzEwLTgwODUt ZDY1NjE3YmQzYjRmLzEvbXpEWXA3bjI2bURpV0hOZHR1QXBkOVB0d1JJLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9hZS83NGIyODAtZTFiNC00MzEwLTgwODUtZDY1NjE3YmQzYjRm LzEvOWN1RmJVSnBJWjdUb01EY1J6TXlOdkZWbFRvLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMG0GCCsGAQUFBwEHAQH/BF4wXDBaBAIAATBUAwQAUlUQAwQA UlUSAwQAUlUYMAwDBABSVRsDBABSVRwDBABSVT0DBABSVZowDAMEBl4gQAMEA14g UAMEAV4gYDAMAwQCXiBkAwQEXiBgAwQAXiBzMA0GCSqGSIb3DQEBCwUAA4IBAQB3 cccqbJ6nJBLtTpTzR687Hs8N/RTzRkpSExu/pXON9LuF+VTPP9FkxCreDaNgL5P/ X1nl6nIttlCBxQzaP3kc/g+lNbfE0Wmo7oMtvTrv+KZKyMLOz8l0qQRebNsxkSjN nzS7WB/ybuNoBB3t3W5CbIHTv5odWaOCLF0Ud4Cf324osGUVIz2S1XWTNHpOVR9R qlbbQw6q55diULA/OD6lQftA8KQvBypOGMuTcHXDhiB/yt/UN1YTMedec9KnnnMR tH6EW4b/MGNmN8bkAyRA3cnjn1Tfrdk3tUeTBbOp++YNlaHGyU4XQ8xQ47JYkwEZ ozmYQR91t6kSSxKYLQJ1 -----END CERTIFICATE-----Generated at Tue Jan 20 01:19:53 2026 by rpki-client