This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d6/23e16e-943e-4595-9530-a82f658a2aa1/1/9vx2XHNWHndFrjTSPacl3vO1GTQ.roa File: 9vx2XHNWHndFrjTSPacl3vO1GTQ.roa (raw, json) Hash identifier: 8bG3jDVYbzmPXbQy6D2viyefbs6wApE4s1YZOWhHiD4= Subject key identifier: F6:FC:76:5C:73:56:1E:77:45:AE:34:D2:3D:A7:25:DE:F3:B5:19:34 Certificate issuer: /CN=940ff880330af762ae6cc050de5f34b5f57b0b09 Certificate serial: 019B783507CD6E120D2038F3B2D9BDA520D4 Authority key identifier: 94:0F:F8:80:33:0A:F7:62:AE:6C:C0:50:DE:5F:34:B5:F5:7B:0B:09 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lA_4gDMK92KubMBQ3l80tfV7Cwk.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d6/23e16e-943e-4595-9530-a82f658a2aa1/1/9vx2XHNWHndFrjTSPacl3vO1GTQ.roa Signing time: Thu 01 Jan 2026 06:18:19 +0000 ROA not before: Thu 01 Jan 2026 06:18:19 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 20723 IP address blocks: 79.170.248.0/21 maxlen: 21 131.117.208.0/21 maxlen: 21 178.20.136.0/21 maxlen: 21 185.84.232.0/22 maxlen: 22 217.112.160.0/20 maxlen: 20 217.115.240.0/20 maxlen: 20 2a00:6500::/29 maxlen: 29 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d6/23e16e-943e-4595-9530-a82f658a2aa1/1/lA_4gDMK92KubMBQ3l80tfV7Cwk.crl rsync://rpki.ripe.net/repository/DEFAULT/d6/23e16e-943e-4595-9530-a82f658a2aa1/1/lA_4gDMK92KubMBQ3l80tfV7Cwk.mft rsync://rpki.ripe.net/repository/DEFAULT/lA_4gDMK92KubMBQ3l80tfV7Cwk.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 21:05:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:78:35:07:cd:6e:12:0d:20:38:f3:b2:d9:bd:a5:20:d4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=940ff880330af762ae6cc050de5f34b5f57b0b09 Validity Not Before: Jan 1 06:18:19 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=f6fc765c73561e7745ae34d23da725def3b51934 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:20:d7:78:25:6a:12:ba:18:78:a0:a7:b4:b1: 13:42:42:d8:16:f3:87:6e:66:9d:1b:68:60:f2:42: 9d:47:27:e4:50:5c:ce:9c:bc:2c:20:ed:81:14:fd: 5a:a3:87:bf:08:49:09:08:1a:73:9a:82:7a:26:3e: 20:8c:11:8e:16:14:a7:f5:79:79:32:cd:25:38:25: cf:b2:cd:f7:b1:da:a3:1a:0e:0d:ee:dc:e7:ff:3d: e4:13:a2:4a:1e:2a:9e:b6:5e:5a:b0:9b:58:4c:69: d5:86:9b:f4:36:a0:79:7a:1f:38:d3:25:fd:d7:34: 01:4a:db:76:42:02:77:60:7a:87:c4:4f:09:f5:39: 3f:f8:6f:d1:e8:28:3e:01:3b:d8:f5:6f:ab:15:02: af:de:f3:c7:e2:1d:b0:05:1e:77:1d:6e:86:8f:45: 79:4f:7e:34:8d:72:fd:2a:53:91:79:3d:3d:93:15: aa:3f:41:1a:a1:fa:1e:ea:d4:42:95:d7:ee:39:e7: 30:bb:cb:86:ca:b6:45:1f:4a:5e:99:7c:0e:07:da: 3c:cb:df:b2:5f:30:fb:f5:e2:e0:75:6f:a8:cf:30: 77:2a:0f:37:63:b4:d4:ca:9b:3f:6a:9d:31:9b:13: 69:7a:3c:8a:d3:c1:d7:90:98:96:7b:af:50:85:35: 3d:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F6:FC:76:5C:73:56:1E:77:45:AE:34:D2:3D:A7:25:DE:F3:B5:19:34 X509v3 Authority Key Identifier: keyid:94:0F:F8:80:33:0A:F7:62:AE:6C:C0:50:DE:5F:34:B5:F5:7B:0B:09 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lA_4gDMK92KubMBQ3l80tfV7Cwk.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d6/23e16e-943e-4595-9530-a82f658a2aa1/1/9vx2XHNWHndFrjTSPacl3vO1GTQ.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/d6/23e16e-943e-4595-9530-a82f658a2aa1/1/lA_4gDMK92KubMBQ3l80tfV7Cwk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 79.170.248.0/21 131.117.208.0/21 178.20.136.0/21 185.84.232.0/22 217.112.160.0/20 217.115.240.0/20 IPv6: 2a00:6500::/29 Signature Algorithm: sha256WithRSAEncryption 4f:fa:53:e1:63:05:ea:06:9d:ec:6c:90:4f:79:26:c2:f9:9b: d7:4a:a9:2f:22:5f:bb:81:e1:af:ec:9a:d6:ca:d5:30:0d:e4: 1e:08:28:23:25:cb:7a:aa:6a:2d:b4:38:69:b6:c8:2c:cb:17: 97:d3:7c:33:d5:d0:a8:aa:38:59:ae:35:de:bf:5e:3c:f9:ce: 57:ea:0b:7c:78:35:af:1e:5a:22:b0:fd:36:66:9a:27:df:c6: da:19:1b:b4:4f:f5:23:bd:59:51:ae:50:cd:7f:56:33:e6:16: 30:09:d8:ee:68:25:44:ea:56:e1:a6:8e:a4:3e:0c:88:8f:5e: 76:dd:43:fd:51:7d:99:83:7c:bd:23:fc:60:c7:bd:a0:5b:d8: b6:a9:2a:96:cc:2c:a9:31:c8:74:a7:3f:99:80:bf:be:07:38: de:af:61:84:d2:0d:24:b1:11:d6:f5:40:d5:94:c9:c2:09:9a: 94:0e:22:a6:bc:7e:ad:60:9e:39:2c:1d:9b:7f:49:d5:c9:f2: 73:e8:f6:42:0b:f2:10:aa:e1:58:cc:bb:60:e7:2a:6e:15:94: 92:bf:20:40:c3:7a:7b:f3:60:d5:ab:9a:f8:11:f6:7d:76:77: 8f:ca:a6:88:b4:fa:44:7e:f4:0b:1d:12:35:80:36:44:16:26: 2f:17:2e:92 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgISAZt4NQfNbhINIDjzstm9pSDUMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDk0MGZmODgwMzMwYWY3NjJhZTZjYzA1MGRlNWYzNGI1ZjU3 YjBiMDkwHhcNMjYwMTAxMDYxODE5WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhmNmZjNzY1YzczNTYxZTc3NDVhZTM0ZDIzZGE3MjVkZWYzYjUxOTM0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvSDXeCVqEroYeKCntLETQkLYFvOH bmadG2hg8kKdRyfkUFzOnLwsIO2BFP1ao4e/CEkJCBpzmoJ6Jj4gjBGOFhSn9Xl5 Ms0lOCXPss33sdqjGg4N7tzn/z3kE6JKHiqetl5asJtYTGnVhpv0NqB5eh840yX9 1zQBStt2QgJ3YHqHxE8J9Tk/+G/R6Cg+ATvY9W+rFQKv3vPH4h2wBR53HW6Gj0V5 T340jXL9KlOReT09kxWqP0Eaofoe6tRCldfuOecwu8uGyrZFH0pemXwOB9o8y9+y XzD79eLgdW+ozzB3Kg83Y7TUyps/ap0xmxNpejyK08HXkJiWe69QhTU9swIDAQAB o4ICNjCCAjIwHQYDVR0OBBYEFPb8dlxzVh53Ra400j2nJd7ztRk0MB8GA1UdIwQY MBaAFJQP+IAzCvdirmzAUN5fNLX1ewsJMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvbEFfNGdETUs5Mkt1Yk1CUTNsODB0ZlY3Q3drLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kNi8yM2UxNmUtOTQzZS00NTk1LTk1MzAt YTgyZjY1OGEyYWExLzEvOXZ4MlhITldIbmRGcmpUU1BhY2wzdk8xR1RRLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kNi8yM2UxNmUtOTQzZS00NTk1LTk1MzAtYTgyZjY1OGEyYWEx LzEvbEFfNGdETUs5Mkt1Yk1CUTNsODB0ZlY3Q3drLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMEwGCCsGAQUFBwEHAQH/BD0wOzAqBAIAATAkAwQDT6r4AwQD g3XQAwQDshSIAwQCuVToAwQE2XCgAwQE2XPwMA0EAgACMAcDBQMqAGUAMA0GCSqG SIb3DQEBCwUAA4IBAQBP+lPhYwXqBp3sbJBPeSbC+ZvXSqkvIl+7geGv7JrWytUw DeQeCCgjJct6qmottDhptsgsyxeX03wz1dCoqjhZrjXev148+c5X6gt8eDWvHloi sP02Zpon38baGRu0T/UjvVlRrlDNf1Yz5hYwCdjuaCVE6lbhpo6kPgyIj1523UP9 UX2Zg3y9I/xgx72gW9i2qSqWzCypMch0pz+ZgL++Bzjer2GE0g0ksRHW9UDVlMnC CZqUDiKmvH6tYJ45LB2bf0nVyfJz6PZCC/IQquFYzLtg5ypuFZSSvyBAw3p782DV q5r4EfZ9dnePyqaItPpEfvQLHRI1gDZEFiYvFy6S -----END CERTIFICATE-----Generated at Tue Feb 10 04:15:09 2026 by rpki-client