This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/df/26d193-40c2-417b-bd52-5c10bdb866e0/1/9Hmh9m38mGNmN4Pp6ZWTawq0DmQ.roa File: 9Hmh9m38mGNmN4Pp6ZWTawq0DmQ.roa (raw, json) Hash identifier: HMoQ8f4iT6ChZh4ybS/urKDZ7WBqnYWqnn6iUi5rfzU= Subject key identifier: F4:79:A1:F6:6D:FC:98:63:66:37:83:E9:E9:95:93:6B:0A:B4:0E:64 Certificate issuer: /CN=d3abf8f4cdf8963a182da0cdf908c38447fa7a09 Certificate serial: 019B77C66204A0E2A430DF9A1198F6408EB9 Authority key identifier: D3:AB:F8:F4:CD:F8:96:3A:18:2D:A0:CD:F9:08:C3:84:47:FA:7A:09 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/06v49M34ljoYLaDN-QjDhEf6egk.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/df/26d193-40c2-417b-bd52-5c10bdb866e0/1/9Hmh9m38mGNmN4Pp6ZWTawq0DmQ.roa Signing time: Thu 01 Jan 2026 04:17:28 +0000 ROA not before: Thu 01 Jan 2026 04:17:28 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 50673 IP address blocks: 185.146.216.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/df/26d193-40c2-417b-bd52-5c10bdb866e0/1/06v49M34ljoYLaDN-QjDhEf6egk.crl rsync://rpki.ripe.net/repository/DEFAULT/df/26d193-40c2-417b-bd52-5c10bdb866e0/1/06v49M34ljoYLaDN-QjDhEf6egk.mft rsync://rpki.ripe.net/repository/DEFAULT/06v49M34ljoYLaDN-QjDhEf6egk.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 12 Jan 2026 07:01:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:77:c6:62:04:a0:e2:a4:30:df:9a:11:98:f6:40:8e:b9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d3abf8f4cdf8963a182da0cdf908c38447fa7a09 Validity Not Before: Jan 1 04:17:28 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=f479a1f66dfc9863663783e9e995936b0ab40e64 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:de:b4:51:60:cb:b3:f7:8d:ba:07:80:34:1a: ba:67:bb:7f:14:fa:45:ee:17:c4:08:4d:52:83:cc: cc:30:3e:5b:63:35:81:3c:53:f7:7a:e7:6c:2b:b4: 6a:79:31:8b:6b:10:a7:a9:16:b5:9d:f8:0e:dd:c6: be:80:f7:73:00:3e:1d:9e:0e:cd:5a:3e:eb:49:e2: f3:66:45:96:03:cd:f0:da:7b:92:a8:aa:76:f6:05: 25:0a:5d:e7:4e:b1:14:3c:03:82:82:8c:d1:44:23: b0:d5:a2:27:d1:25:8f:50:0e:8a:4a:8f:e0:a0:42: 29:67:26:f5:9e:8f:d9:2b:71:02:ad:4d:fb:69:d7: 7b:89:1d:12:0e:ae:45:f5:22:11:ae:4f:09:43:8a: 83:27:80:46:e0:1f:54:5d:d2:8c:9c:03:7a:97:c5: c8:97:69:72:40:14:65:5e:e9:8c:00:fe:bf:77:a6: 43:1a:a2:d7:a3:a7:62:52:5f:f8:ca:d4:08:b1:3d: a1:80:12:29:37:52:d1:00:ed:1a:9c:5a:07:04:2f: 31:76:bf:a2:ca:e1:ea:95:d9:5e:11:96:f6:ea:6e: 5a:3b:b9:5c:f2:22:8c:6b:be:ae:32:87:6e:45:6d: f4:ac:0b:40:75:15:89:13:55:0a:d6:61:a6:65:0a: dd:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F4:79:A1:F6:6D:FC:98:63:66:37:83:E9:E9:95:93:6B:0A:B4:0E:64 X509v3 Authority Key Identifier: keyid:D3:AB:F8:F4:CD:F8:96:3A:18:2D:A0:CD:F9:08:C3:84:47:FA:7A:09 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/06v49M34ljoYLaDN-QjDhEf6egk.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/df/26d193-40c2-417b-bd52-5c10bdb866e0/1/9Hmh9m38mGNmN4Pp6ZWTawq0DmQ.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/df/26d193-40c2-417b-bd52-5c10bdb866e0/1/06v49M34ljoYLaDN-QjDhEf6egk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.146.216.0/22 Signature Algorithm: sha256WithRSAEncryption 50:da:5a:39:27:71:a9:3f:01:0b:ba:1f:22:c9:54:a6:13:62: 22:f0:18:f4:72:1c:8e:2d:bb:a1:0d:a0:e3:9e:ed:04:c8:09: e5:8b:0e:96:2f:7b:2f:91:09:0b:42:15:58:e1:33:13:9b:b9: af:89:86:be:68:ad:b8:47:b3:12:7b:ff:26:b6:9c:c5:03:c9: dc:84:53:e1:42:b1:85:8e:26:77:05:01:41:08:0f:1f:37:ea: 9b:98:3c:70:01:8d:96:5c:6a:74:12:a2:94:14:1c:ec:1d:da: 15:43:8c:bc:17:5b:87:44:b8:77:94:6b:03:b1:fd:da:ba:2a: 2e:18:a1:5a:be:50:94:82:f9:8c:3b:d6:43:a8:18:73:8c:60: 55:dc:63:21:3d:a3:fc:10:e5:22:69:a2:8b:18:21:f6:e2:57: f8:cc:b7:36:8b:64:e6:44:8e:d2:cc:92:e2:98:45:c9:1d:9a: 91:9e:b6:c9:85:11:70:7c:75:ff:84:ff:f9:06:18:68:d8:d5: a9:82:03:56:d4:4a:d7:67:88:f9:9e:1e:b3:ae:50:62:9f:0e: 9c:28:ad:1a:fe:25:72:4b:da:ca:3b:8d:80:3d:39:67:68:90: 41:28:59:27:09:23:27:0c:f2:ee:f5:bc:44:e9:cc:e7:7f:5c: f9:b7:75:15 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt3xmIEoOKkMN+aEZj2QI65MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGQzYWJmOGY0Y2RmODk2M2ExODJkYTBjZGY5MDhjMzg0NDdm YTdhMDkwHhcNMjYwMTAxMDQxNzI4WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhmNDc5YTFmNjZkZmM5ODYzNjYzNzgzZTllOTk1OTM2YjBhYjQwZTY0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAq960UWDLs/eNugeANBq6Z7t/FPpF 7hfECE1Sg8zMMD5bYzWBPFP3eudsK7RqeTGLaxCnqRa1nfgO3ca+gPdzAD4dng7N Wj7rSeLzZkWWA83w2nuSqKp29gUlCl3nTrEUPAOCgozRRCOw1aIn0SWPUA6KSo/g oEIpZyb1no/ZK3ECrU37add7iR0SDq5F9SIRrk8JQ4qDJ4BG4B9UXdKMnAN6l8XI l2lyQBRlXumMAP6/d6ZDGqLXo6diUl/4ytQIsT2hgBIpN1LRAO0anFoHBC8xdr+i yuHqldleEZb26m5aO7lc8iKMa76uModuRW30rAtAdRWJE1UK1mGmZQrd/QIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFPR5ofZt/JhjZjeD6emVk2sKtA5kMB8GA1UdIwQY MBaAFNOr+PTN+JY6GC2gzfkIw4RH+noJMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvMDZ2NDlNMzRsam9ZTGFETi1RakRoRWY2ZWdrLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kZi8yNmQxOTMtNDBjMi00MTdiLWJkNTIt NWMxMGJkYjg2NmUwLzEvOUhtaDltMzhtR05tTjRQcDZaV1Rhd3EwRG1RLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kZi8yNmQxOTMtNDBjMi00MTdiLWJkNTItNWMxMGJkYjg2NmUw LzEvMDZ2NDlNMzRsam9ZTGFETi1RakRoRWY2ZWdrLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCuZLYMA0G CSqGSIb3DQEBCwUAA4IBAQBQ2lo5J3GpPwELuh8iyVSmE2Ii8Bj0chyOLbuhDaDj nu0EyAnliw6WL3svkQkLQhVY4TMTm7mviYa+aK24R7MSe/8mtpzFA8nchFPhQrGF jiZ3BQFBCA8fN+qbmDxwAY2WXGp0EqKUFBzsHdoVQ4y8F1uHRLh3lGsDsf3auiou GKFavlCUgvmMO9ZDqBhzjGBV3GMhPaP8EOUiaaKLGCH24lf4zLc2i2TmRI7SzJLi mEXJHZqRnrbJhRFwfHX/hP/5Bhho2NWpggNW1ErXZ4j5nh6zrlBinw6cKK0a/iVy S9rKO42APTlnaJBBKFknCSMnDPLu9bxE6cznf1z5t3UV -----END CERTIFICATE-----Generated at Sun Jan 11 11:45:47 2026 by rpki-client