This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ec/259879-7b1e-4544-8013-15e41c40aec9/1/ha9gNtI2Det0BHkc3WoBLr_4eN0.roa File: ha9gNtI2Det0BHkc3WoBLr_4eN0.roa (raw, json) Hash identifier: 3ZwCki1NyOWEqytxpVSycbqzMVm9+ptmvP6m+BbcDfQ= Subject key identifier: 85:AF:60:36:D2:36:0D:EB:74:04:79:1C:DD:6A:01:2E:BF:F8:78:DD Certificate issuer: /CN=f54e3b797f4ba37ebf7189a4c14f0520d7cf30d7 Certificate serial: 019B78A2384D4D213883EAB8C788C8ACA82F Authority key identifier: F5:4E:3B:79:7F:4B:A3:7E:BF:71:89:A4:C1:4F:05:20:D7:CF:30:D7 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/9U47eX9Lo36_cYmkwU8FINfPMNc.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ec/259879-7b1e-4544-8013-15e41c40aec9/1/ha9gNtI2Det0BHkc3WoBLr_4eN0.roa Signing time: Thu 01 Jan 2026 08:17:35 +0000 ROA not before: Thu 01 Jan 2026 08:17:35 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 58282 IP address blocks: 193.3.234.0/23 maxlen: 23 193.163.131.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ec/259879-7b1e-4544-8013-15e41c40aec9/1/9U47eX9Lo36_cYmkwU8FINfPMNc.crl rsync://rpki.ripe.net/repository/DEFAULT/ec/259879-7b1e-4544-8013-15e41c40aec9/1/9U47eX9Lo36_cYmkwU8FINfPMNc.mft rsync://rpki.ripe.net/repository/DEFAULT/9U47eX9Lo36_cYmkwU8FINfPMNc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:78:a2:38:4d:4d:21:38:83:ea:b8:c7:88:c8:ac:a8:2f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=f54e3b797f4ba37ebf7189a4c14f0520d7cf30d7 Validity Not Before: Jan 1 08:17:35 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=85af6036d2360deb7404791cdd6a012ebff878dd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:71:aa:15:1d:51:cd:67:e3:e0:6b:61:8a:51: 9a:81:21:37:8f:fa:9e:00:54:81:02:bc:5a:25:61: 9f:bf:0e:46:7d:56:c4:a9:b4:0f:10:65:38:32:9a: e0:04:89:11:f1:10:9f:f5:c3:69:4f:3b:ad:d5:d7: c8:ec:0c:70:39:6f:f8:2e:a8:f9:d1:78:cc:86:1e: 84:c8:41:96:bf:ee:62:35:ca:58:24:fd:0b:d5:73: e8:d0:33:fa:e1:a3:15:c6:95:8f:81:3e:70:e4:e1: 06:9c:83:61:c7:36:1d:81:7a:59:65:8a:af:47:89: bf:4d:4f:83:da:f5:00:e0:38:5b:22:a4:18:14:f6: 7a:79:eb:13:27:97:0a:a9:74:43:bd:9c:98:63:db: 5b:a5:73:80:3b:f5:9d:8d:36:80:85:b4:61:d5:86: 55:41:6c:96:e5:51:60:0a:5e:ae:3c:4f:12:e5:1d: a3:2d:31:b5:b1:9c:df:61:37:fd:60:87:b2:8f:e6: a5:87:b8:cb:8d:40:6e:f6:61:75:f0:05:c5:24:6c: c8:f2:ab:db:6c:f9:b2:69:9a:6e:0c:96:65:a7:6e: 57:1f:61:71:d6:54:1b:3d:6b:92:bc:0e:af:f6:f1: 49:ad:d1:9a:e6:39:b6:be:39:02:57:fc:79:50:18: fd:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 85:AF:60:36:D2:36:0D:EB:74:04:79:1C:DD:6A:01:2E:BF:F8:78:DD X509v3 Authority Key Identifier: keyid:F5:4E:3B:79:7F:4B:A3:7E:BF:71:89:A4:C1:4F:05:20:D7:CF:30:D7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/9U47eX9Lo36_cYmkwU8FINfPMNc.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ec/259879-7b1e-4544-8013-15e41c40aec9/1/ha9gNtI2Det0BHkc3WoBLr_4eN0.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/ec/259879-7b1e-4544-8013-15e41c40aec9/1/9U47eX9Lo36_cYmkwU8FINfPMNc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 193.3.234.0/23 193.163.131.0/24 Signature Algorithm: sha256WithRSAEncryption 63:3e:54:ca:cc:ea:d3:c8:0b:86:f2:1f:39:12:c4:3e:c1:2e: 46:e1:bc:76:71:2f:f6:f3:db:bd:08:fb:38:c6:33:e4:2c:df: e0:28:e3:d1:4d:6d:1f:00:91:a3:b9:66:86:b9:0a:af:8c:3b: bf:e7:64:48:01:20:11:9b:a5:32:62:bc:1c:d8:2d:2c:74:b1: 4a:4e:1e:5d:30:53:ba:79:56:45:c1:c9:81:9a:71:5d:8a:51: ca:5a:f1:17:d9:a5:8c:0b:05:d3:28:d1:5e:ee:8e:7a:3b:9d: f4:81:2c:f2:f3:5c:c0:0d:cc:7e:4f:b8:5c:4e:4d:ec:7d:18: eb:96:27:27:38:e5:32:ef:f1:7a:d5:cb:5a:2e:29:17:b7:04: 2e:d4:d6:9d:18:ed:8a:26:54:22:86:bf:28:7d:1b:97:d9:6a: f3:94:dc:22:6e:28:98:7e:7c:8e:44:98:47:ea:88:63:a1:ea: 95:a0:1b:d4:c8:f5:41:f4:99:dc:87:ab:50:95:cc:fb:e4:e7: 51:ab:90:0e:3e:4c:9b:df:32:48:40:c1:2b:f2:ac:b5:43:28: 6d:a8:22:10:b3:48:a8:47:97:46:50:9d:ee:87:c7:fc:e2:fb: 35:ba:72:aa:51:4c:12:72:f9:9c:1c:b7:93:e1:9a:c5:6d:9d: 4c:76:3b:a8 -----BEGIN CERTIFICATE----- MIIFAzCCA+ugAwIBAgISAZt4ojhNTSE4g+q4x4jIrKgvMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGY1NGUzYjc5N2Y0YmEzN2ViZjcxODlhNGMxNGYwNTIwZDdj ZjMwZDcwHhcNMjYwMTAxMDgxNzM1WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg4NWFmNjAzNmQyMzYwZGViNzQwNDc5MWNkZDZhMDEyZWJmZjg3OGRkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAonGqFR1RzWfj4GthilGagSE3j/qe AFSBArxaJWGfvw5GfVbEqbQPEGU4MprgBIkR8RCf9cNpTzut1dfI7AxwOW/4Lqj5 0XjMhh6EyEGWv+5iNcpYJP0L1XPo0DP64aMVxpWPgT5w5OEGnINhxzYdgXpZZYqv R4m/TU+D2vUA4DhbIqQYFPZ6eesTJ5cKqXRDvZyYY9tbpXOAO/WdjTaAhbRh1YZV QWyW5VFgCl6uPE8S5R2jLTG1sZzfYTf9YIeyj+alh7jLjUBu9mF18AXFJGzI8qvb bPmyaZpuDJZlp25XH2Fx1lQbPWuSvA6v9vFJrdGa5jm2vjkCV/x5UBj9QQIDAQAB o4ICDzCCAgswHQYDVR0OBBYEFIWvYDbSNg3rdAR5HN1qAS6/+HjdMB8GA1UdIwQY MBaAFPVOO3l/S6N+v3GJpMFPBSDXzzDXMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvOVU0N2VYOUxvMzZfY1lta3dVOEZJTmZQTU5jLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lYy8yNTk4NzktN2IxZS00NTQ0LTgwMTMt MTVlNDFjNDBhZWM5LzEvaGE5Z050STJEZXQwQkhrYzNXb0JMcl80ZU4wLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9lYy8yNTk4NzktN2IxZS00NTQ0LTgwMTMtMTVlNDFjNDBhZWM5 LzEvOVU0N2VYOUxvMzZfY1lta3dVOEZJTmZQTU5jLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQBwQPqAwQA waODMA0GCSqGSIb3DQEBCwUAA4IBAQBjPlTKzOrTyAuG8h85EsQ+wS5G4bx2cS/2 89u9CPs4xjPkLN/gKOPRTW0fAJGjuWaGuQqvjDu/52RIASARm6UyYrwc2C0sdLFK Th5dMFO6eVZFwcmBmnFdilHKWvEX2aWMCwXTKNFe7o56O530gSzy81zADcx+T7hc Tk3sfRjrlicnOOUy7/F61ctaLikXtwQu1NadGO2KJlQihr8ofRuX2WrzlNwibiiY fnyORJhH6ohjoeqVoBvUyPVB9Jnch6tQlcz75OdRq5AOPkyb3zJIQMEr8qy1Qyht qCIQs0ioR5dGUJ3uh8f84vs1unKqUUwScvmcHLeT4ZrFbZ1Mdjuo -----END CERTIFICATE-----Generated at Mon Feb 9 20:55:24 2026 by rpki-client