This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b9/4bb5a7-346c-4195-9d0f-59f5984b64ea/1/rwid864otSc2caBOwHGaSFtuYfU.roa File: rwid864otSc2caBOwHGaSFtuYfU.roa (raw, json) Hash identifier: 36zoJ53OOCRGlpIyib1zJrHiukI78yrS/aL/uOH14CY= Subject key identifier: AF:08:9D:F3:AE:28:B5:27:36:71:A0:4E:C0:71:9A:48:5B:6E:61:F5 Certificate issuer: /CN=d48a27f44b10404c52f6ffc4e08dc82bf8b5dee4 Certificate serial: 019B77C74DA21770F0307310730E5D186FE7 Authority key identifier: D4:8A:27:F4:4B:10:40:4C:52:F6:FF:C4:E0:8D:C8:2B:F8:B5:DE:E4 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1Ion9EsQQExS9v_E4I3IK_i13uQ.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b9/4bb5a7-346c-4195-9d0f-59f5984b64ea/1/rwid864otSc2caBOwHGaSFtuYfU.roa Signing time: Thu 01 Jan 2026 04:18:28 +0000 ROA not before: Thu 01 Jan 2026 04:18:28 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 211192 IP address blocks: 94.177.113.0/24 maxlen: 24 94.177.118.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b9/4bb5a7-346c-4195-9d0f-59f5984b64ea/1/1Ion9EsQQExS9v_E4I3IK_i13uQ.crl rsync://rpki.ripe.net/repository/DEFAULT/b9/4bb5a7-346c-4195-9d0f-59f5984b64ea/1/1Ion9EsQQExS9v_E4I3IK_i13uQ.mft rsync://rpki.ripe.net/repository/DEFAULT/1Ion9EsQQExS9v_E4I3IK_i13uQ.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 02 Jan 2026 13:01:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:77:c7:4d:a2:17:70:f0:30:73:10:73:0e:5d:18:6f:e7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d48a27f44b10404c52f6ffc4e08dc82bf8b5dee4 Validity Not Before: Jan 1 04:18:28 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=af089df3ae28b5273671a04ec0719a485b6e61f5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:91:e8:bc:6f:23:7a:99:d4:c5:4b:b5:44:9f:ef: c9:b1:9f:3d:04:0b:11:3a:30:03:16:95:e5:21:f9: e6:6e:35:d7:40:6f:56:12:4e:19:cc:bf:a9:a3:8c: e7:0a:68:e4:30:a0:d9:08:76:6c:0b:54:c6:8d:94: 6a:6e:48:e2:1e:db:1b:d6:5d:f6:b5:41:b2:6f:85: cd:9a:d5:5f:d6:cf:a0:ef:3d:50:7a:51:63:27:6a: 3c:4b:3c:30:5d:5a:f1:49:58:ca:ad:89:b3:e3:5f: 4d:61:1f:0c:20:1d:6f:83:6e:be:0e:43:5d:af:0b: 73:cb:99:8f:51:e5:79:24:18:e4:b4:d0:e8:60:10: 97:75:6d:38:fa:a3:d0:35:cd:14:54:04:f3:be:30: be:dc:54:97:5b:7e:e9:a4:f2:bc:07:c4:e1:ad:78: 9b:b5:6d:7d:89:78:00:31:d6:3e:6d:2c:ab:bf:cc: 4a:8d:5b:e3:ab:60:cf:61:32:9c:56:4c:09:69:5d: fa:8d:68:60:94:07:88:16:b8:60:63:cb:f5:66:02: 3b:1e:c2:cc:f5:ce:5d:28:61:b9:30:6c:ea:d4:80: 30:91:e0:f5:99:1a:e0:a0:ff:79:08:88:e1:08:15: 8a:96:9c:03:65:aa:18:4e:35:c4:69:90:97:da:9c: a0:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AF:08:9D:F3:AE:28:B5:27:36:71:A0:4E:C0:71:9A:48:5B:6E:61:F5 X509v3 Authority Key Identifier: keyid:D4:8A:27:F4:4B:10:40:4C:52:F6:FF:C4:E0:8D:C8:2B:F8:B5:DE:E4 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1Ion9EsQQExS9v_E4I3IK_i13uQ.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b9/4bb5a7-346c-4195-9d0f-59f5984b64ea/1/rwid864otSc2caBOwHGaSFtuYfU.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/b9/4bb5a7-346c-4195-9d0f-59f5984b64ea/1/1Ion9EsQQExS9v_E4I3IK_i13uQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 94.177.113.0/24 94.177.118.0/24 Signature Algorithm: sha256WithRSAEncryption 19:5d:6b:b6:99:80:27:c5:a7:98:e4:85:65:e2:44:9a:93:bc: ac:93:77:bd:7f:90:84:fa:4a:f6:28:c1:6a:c0:58:bf:0e:43: 0d:9a:5c:fa:eb:c1:85:18:33:fe:8c:77:d4:7a:86:83:c8:86: 86:84:7d:46:3c:6f:33:99:14:80:fa:c3:6c:89:50:b1:cb:81: 10:16:6c:07:13:80:28:50:02:24:31:84:b2:d3:cf:71:c5:83: 3b:18:ec:66:75:27:10:46:49:fa:f3:cc:58:f3:0a:19:fe:d5: 3e:7c:35:84:a9:49:13:1b:07:19:98:03:62:f6:c7:50:29:5d: ac:7a:7d:44:fd:c8:8e:ec:a4:e6:48:f7:7f:6c:1a:c3:cd:44: d5:c3:c6:47:45:9c:c6:ce:6a:d3:23:95:c8:e8:9e:d4:91:9d: 75:ba:ea:7c:ad:8b:b8:93:cb:d9:a5:2e:42:13:17:5b:19:61: 23:6b:53:3c:cf:7d:f5:49:0d:e0:97:15:61:c5:b4:93:0b:8d: c9:ea:9e:d0:8e:88:b9:c0:73:c2:bf:0a:63:e4:cf:de:9a:25: 51:e0:99:d9:eb:7e:a8:30:59:f3:d7:60:b5:cc:b6:3e:b8:df: 8c:54:56:d7:7b:3d:fa:8e:20:50:db:ab:4b:69:72:91:f1:da: a4:33:3b:3b -----BEGIN CERTIFICATE----- MIIFAzCCA+ugAwIBAgISAZt3x02iF3DwMHMQcw5dGG/nMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGQ0OGEyN2Y0NGIxMDQwNGM1MmY2ZmZjNGUwOGRjODJiZjhi NWRlZTQwHhcNMjYwMTAxMDQxODI4WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhhZjA4OWRmM2FlMjhiNTI3MzY3MWEwNGVjMDcxOWE0ODViNmU2MWY1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAkei8byN6mdTFS7VEn+/JsZ89BAsR OjADFpXlIfnmbjXXQG9WEk4ZzL+po4znCmjkMKDZCHZsC1TGjZRqbkjiHtsb1l32 tUGyb4XNmtVf1s+g7z1QelFjJ2o8SzwwXVrxSVjKrYmz419NYR8MIB1vg26+DkNd rwtzy5mPUeV5JBjktNDoYBCXdW04+qPQNc0UVATzvjC+3FSXW37ppPK8B8ThrXib tW19iXgAMdY+bSyrv8xKjVvjq2DPYTKcVkwJaV36jWhglAeIFrhgY8v1ZgI7HsLM 9c5dKGG5MGzq1IAwkeD1mRrgoP95CIjhCBWKlpwDZaoYTjXEaZCX2pygfQIDAQAB o4ICDzCCAgswHQYDVR0OBBYEFK8InfOuKLUnNnGgTsBxmkhbbmH1MB8GA1UdIwQY MBaAFNSKJ/RLEEBMUvb/xOCNyCv4td7kMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvMUlvbjlFc1FRRXhTOXZfRTRJM0lLX2kxM3VRLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iOS80YmI1YTctMzQ2Yy00MTk1LTlkMGYt NTlmNTk4NGI2NGVhLzEvcndpZDg2NG90U2MyY2FCT3dIR2FTRnR1WWZVLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iOS80YmI1YTctMzQ2Yy00MTk1LTlkMGYtNTlmNTk4NGI2NGVh LzEvMUlvbjlFc1FRRXhTOXZfRTRJM0lLX2kxM3VRLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQAXrFxAwQA XrF2MA0GCSqGSIb3DQEBCwUAA4IBAQAZXWu2mYAnxaeY5IVl4kSak7ysk3e9f5CE +kr2KMFqwFi/DkMNmlz668GFGDP+jHfUeoaDyIaGhH1GPG8zmRSA+sNsiVCxy4EQ FmwHE4AoUAIkMYSy089xxYM7GOxmdScQRkn688xY8woZ/tU+fDWEqUkTGwcZmANi 9sdQKV2sen1E/ciO7KTmSPd/bBrDzUTVw8ZHRZzGzmrTI5XI6J7UkZ11uup8rYu4 k8vZpS5CExdbGWEja1M8z331SQ3glxVhxbSTC43J6p7Qjoi5wHPCvwpj5M/emiVR 4JnZ636oMFnz12C1zLY+uN+MVFbXez36jiBQ26tLaXKR8dqkMzs7 -----END CERTIFICATE-----Generated at Thu Jan 1 20:22:28 2026 by rpki-client