This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e5/5d454b-9d1d-4e7d-ae73-7f5f4d604731/1/9yn0ZWrwWlwVQcTY4DZrDaNSuqU.roa File: 9yn0ZWrwWlwVQcTY4DZrDaNSuqU.roa (raw, json) Hash identifier: XESXJFfuiD+BaGLEcM4v4ajEMguCnVi9qwOcF7gca0c= Subject key identifier: F7:29:F4:65:6A:F0:5A:5C:15:41:C4:D8:E0:36:6B:0D:A3:52:BA:A5 Certificate issuer: /CN=441d4b92dd150364c65b7d21299028678b0a5296 Certificate serial: 019B7CEE1065D8C6D9585CA009A6FC964B29 Authority key identifier: 44:1D:4B:92:DD:15:03:64:C6:5B:7D:21:29:90:28:67:8B:0A:52:96 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/RB1Lkt0VA2TGW30hKZAoZ4sKUpY.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e5/5d454b-9d1d-4e7d-ae73-7f5f4d604731/1/9yn0ZWrwWlwVQcTY4DZrDaNSuqU.roa Signing time: Fri 02 Jan 2026 04:18:55 +0000 ROA not before: Fri 02 Jan 2026 04:18:55 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 6837 IP address blocks: 144.2.64.0/18 maxlen: 26 185.119.176.0/22 maxlen: 27 2a02:21b0::/29 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e5/5d454b-9d1d-4e7d-ae73-7f5f4d604731/1/RB1Lkt0VA2TGW30hKZAoZ4sKUpY.crl rsync://rpki.ripe.net/repository/DEFAULT/e5/5d454b-9d1d-4e7d-ae73-7f5f4d604731/1/RB1Lkt0VA2TGW30hKZAoZ4sKUpY.mft rsync://rpki.ripe.net/repository/DEFAULT/RB1Lkt0VA2TGW30hKZAoZ4sKUpY.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 27 Jan 2026 15:35:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7c:ee:10:65:d8:c6:d9:58:5c:a0:09:a6:fc:96:4b:29 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=441d4b92dd150364c65b7d21299028678b0a5296 Validity Not Before: Jan 2 04:18:55 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=f729f4656af05a5c1541c4d8e0366b0da352baa5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:de:26:53:5f:1f:45:19:64:b9:f2:01:e1:7e: 49:e3:69:45:62:43:4f:0e:d8:37:3f:b5:bf:ca:a6: 10:b9:72:e4:c6:24:3f:6f:6d:9c:4f:4d:45:45:f9: e8:9b:3a:c2:c8:d9:ef:c2:29:fd:2f:eb:19:7f:41: f4:df:8a:72:e5:41:cd:60:42:c5:a7:4a:a3:f9:0e: 99:47:7a:97:12:01:ff:f3:af:f2:35:e6:79:14:57: 11:a3:d1:9a:36:fd:fe:82:bf:ce:f8:08:9e:9c:92: 37:e2:f9:ca:8a:95:48:03:f1:54:86:aa:61:c0:df: c0:80:f0:f0:91:3a:81:3f:ab:4a:ef:df:7c:f9:10: f8:41:ec:77:aa:70:46:f6:44:46:f6:76:c7:c6:19: e7:50:50:80:52:7b:77:86:28:79:a7:64:68:12:88: c7:77:02:97:ce:cf:4e:29:f9:c9:51:f7:78:9b:a5: 64:8d:30:f0:22:59:82:a1:59:11:29:28:21:1f:97: bf:1d:c2:43:ba:d7:ce:8a:97:9e:ef:16:0a:78:4b: 17:f5:1c:db:61:30:cb:6f:e8:84:3b:af:a4:3c:e9: 79:bc:cd:e4:4c:5a:d3:0c:ea:77:81:9f:c7:dc:3c: 18:d6:05:5d:00:0f:af:81:a6:b7:f0:bf:3f:af:a2: cc:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F7:29:F4:65:6A:F0:5A:5C:15:41:C4:D8:E0:36:6B:0D:A3:52:BA:A5 X509v3 Authority Key Identifier: keyid:44:1D:4B:92:DD:15:03:64:C6:5B:7D:21:29:90:28:67:8B:0A:52:96 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/RB1Lkt0VA2TGW30hKZAoZ4sKUpY.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/5d454b-9d1d-4e7d-ae73-7f5f4d604731/1/9yn0ZWrwWlwVQcTY4DZrDaNSuqU.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/5d454b-9d1d-4e7d-ae73-7f5f4d604731/1/RB1Lkt0VA2TGW30hKZAoZ4sKUpY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 144.2.64.0/18 185.119.176.0/22 IPv6: 2a02:21b0::/29 Signature Algorithm: sha256WithRSAEncryption 14:1f:cb:47:02:ce:fd:e6:1a:73:d9:13:3d:15:19:1e:0c:a9: e9:e6:b1:2f:dc:b5:2b:06:6d:79:a7:53:3f:20:a1:80:21:fd: 79:1c:75:2a:08:6d:d2:b7:27:76:ee:73:c4:66:a8:91:d0:f2: c2:1b:a6:b0:1a:81:80:9a:92:9f:4e:ed:70:ce:60:cf:dd:53: 84:9c:56:42:26:80:10:f3:06:ec:ed:3b:d4:d4:91:89:8f:b8: de:06:24:36:88:57:31:57:57:d0:0a:c7:7d:04:99:89:5e:cc: ed:4b:12:f4:b9:87:de:30:c6:6e:45:c1:6f:0f:31:5b:a1:a5: 4f:79:bf:8a:50:1b:0e:f1:95:ec:51:04:23:79:55:6d:c7:d3: 69:ea:0d:15:67:d3:8c:a5:cf:a1:5d:1e:47:79:be:31:cd:cb: b3:ac:ab:a6:a4:f7:17:9e:83:22:ae:fc:f0:d5:d9:b4:e4:fd: 44:02:8f:9a:df:a2:47:35:db:9e:41:97:74:64:84:1e:bd:36: 7f:4a:c7:1e:9c:9f:cd:c7:84:b6:48:e2:97:b2:96:40:90:a6: f2:8a:b9:8a:90:8a:1f:79:27:fe:af:5e:02:da:be:18:3f:45: c2:49:a1:f6:dd:a0:5a:e6:55:3c:cf:cf:d8:d1:dc:6a:41:dd: b9:94:27:e3 -----BEGIN CERTIFICATE----- MIIFEjCCA/qgAwIBAgISAZt87hBl2MbZWFygCab8lkspMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDQ0MWQ0YjkyZGQxNTAzNjRjNjViN2QyMTI5OTAyODY3OGIw YTUyOTYwHhcNMjYwMTAyMDQxODU1WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhmNzI5ZjQ2NTZhZjA1YTVjMTU0MWM0ZDhlMDM2NmIwZGEzNTJiYWE1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA2d4mU18fRRlkufIB4X5J42lFYkNP Dtg3P7W/yqYQuXLkxiQ/b22cT01FRfnomzrCyNnvwin9L+sZf0H034py5UHNYELF p0qj+Q6ZR3qXEgH/86/yNeZ5FFcRo9GaNv3+gr/O+AienJI34vnKipVIA/FUhqph wN/AgPDwkTqBP6tK7998+RD4Qex3qnBG9kRG9nbHxhnnUFCAUnt3hih5p2RoEojH dwKXzs9OKfnJUfd4m6VkjTDwIlmCoVkRKSghH5e/HcJDutfOipee7xYKeEsX9Rzb YTDLb+iEO6+kPOl5vM3kTFrTDOp3gZ/H3DwY1gVdAA+vgaa38L8/r6LMJwIDAQAB o4ICHjCCAhowHQYDVR0OBBYEFPcp9GVq8FpcFUHE2OA2aw2jUrqlMB8GA1UdIwQY MBaAFEQdS5LdFQNkxlt9ISmQKGeLClKWMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvUkIxTGt0MFZBMlRHVzMwaEtaQW9aNHNLVXBZLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lNS81ZDQ1NGItOWQxZC00ZTdkLWFlNzMt N2Y1ZjRkNjA0NzMxLzEvOXluMFpXcndXbHdWUWNUWTREWnJEYU5TdXFVLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9lNS81ZDQ1NGItOWQxZC00ZTdkLWFlNzMtN2Y1ZjRkNjA0NzMx LzEvUkIxTGt0MFZBMlRHVzMwaEtaQW9aNHNLVXBZLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMDQGCCsGAQUFBwEHAQH/BCUwIzASBAIAATAMAwQGkAJAAwQC uXewMA0EAgACMAcDBQMqAiGwMA0GCSqGSIb3DQEBCwUAA4IBAQAUH8tHAs795hpz 2RM9FRkeDKnp5rEv3LUrBm15p1M/IKGAIf15HHUqCG3Styd27nPEZqiR0PLCG6aw GoGAmpKfTu1wzmDP3VOEnFZCJoAQ8wbs7TvU1JGJj7jeBiQ2iFcxV1fQCsd9BJmJ XsztSxL0uYfeMMZuRcFvDzFboaVPeb+KUBsO8ZXsUQQjeVVtx9Np6g0VZ9OMpc+h XR5Heb4xzcuzrKumpPcXnoMirvzw1dm05P1EAo+a36JHNdueQZd0ZIQevTZ/Ssce nJ/Nx4S2SOKXspZAkKbyirmKkIofeSf+r14C2r4YP0XCSaH23aBa5lU8z8/Y0dxq Qd25lCfj -----END CERTIFICATE-----Generated at Mon Jan 26 23:48:47 2026 by rpki-client