This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fd/6277a7-290f-4994-b286-25d6e8613dc4/1/kEw9rNT7b4WnmBTnJkhnSvQpmJU.roa File: kEw9rNT7b4WnmBTnJkhnSvQpmJU.roa (raw, json) Hash identifier: 8ygbL45xfX44BSp7tVTrAniW2EqVVMi7g3VOHgdtiPg= Subject key identifier: 90:4C:3D:AC:D4:FB:6F:85:A7:98:14:E7:26:48:67:4A:F4:29:98:95 Certificate issuer: /CN=1e9a2f083f471dfb9507b4c973cb5c3acd49759d Certificate serial: 019B797E80CB8A6845832C2E35E9522D8313 Authority key identifier: 1E:9A:2F:08:3F:47:1D:FB:95:07:B4:C9:73:CB:5C:3A:CD:49:75:9D Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HpovCD9HHfuVB7TJc8tcOs1JdZ0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fd/6277a7-290f-4994-b286-25d6e8613dc4/1/kEw9rNT7b4WnmBTnJkhnSvQpmJU.roa Signing time: Thu 01 Jan 2026 12:18:12 +0000 ROA not before: Thu 01 Jan 2026 12:18:12 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 14618 IP address blocks: 109.232.88.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fd/6277a7-290f-4994-b286-25d6e8613dc4/1/HpovCD9HHfuVB7TJc8tcOs1JdZ0.crl rsync://rpki.ripe.net/repository/DEFAULT/fd/6277a7-290f-4994-b286-25d6e8613dc4/1/HpovCD9HHfuVB7TJc8tcOs1JdZ0.mft rsync://rpki.ripe.net/repository/DEFAULT/HpovCD9HHfuVB7TJc8tcOs1JdZ0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 08 Jan 2026 15:30:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:79:7e:80:cb:8a:68:45:83:2c:2e:35:e9:52:2d:83:13 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1e9a2f083f471dfb9507b4c973cb5c3acd49759d Validity Not Before: Jan 1 12:18:12 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=904c3dacd4fb6f85a79814e72648674af4299895 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ee:9e:58:53:8f:18:1d:fe:37:05:fb:c7:48:bd: c4:d9:d8:03:03:4c:57:09:15:f9:39:d0:52:63:25: c4:28:07:11:a4:9c:b5:c3:30:09:02:b5:e3:ef:92: 11:20:b6:36:3c:35:dd:68:c3:0d:f5:eb:b6:89:5a: b7:7e:9f:27:e0:ce:06:1b:6d:98:04:ba:f9:5a:0f: 04:05:7a:17:eb:b1:69:0a:ba:2e:7a:83:4a:32:c5: 7a:37:53:c2:fe:23:33:05:ab:98:04:9f:6a:4d:88: 86:c8:40:6c:ee:9d:e3:ec:a5:05:48:9c:b6:59:4b: 96:43:9b:48:42:6f:b1:da:0d:0d:b5:47:9d:f8:d6: fa:01:b8:b6:1a:ac:21:8e:7d:16:62:8f:dd:60:eb: df:de:cf:47:5d:91:85:be:41:80:6d:b6:c0:1b:43: 90:e9:2d:70:c4:4d:8f:c9:68:a7:64:d0:f4:44:49: df:9f:3c:98:54:f1:39:14:a1:d0:ad:a0:76:c6:9c: a2:82:bc:cc:fa:da:ff:48:d7:65:4a:e3:c9:91:3a: de:1c:21:8a:2e:18:5f:07:fe:7a:36:4f:1c:64:be: 37:8d:b7:3e:8f:86:51:90:38:2d:45:a3:36:f6:49: 89:30:e0:08:74:3e:4e:b8:36:2e:50:6a:8f:36:f1: 1e:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 90:4C:3D:AC:D4:FB:6F:85:A7:98:14:E7:26:48:67:4A:F4:29:98:95 X509v3 Authority Key Identifier: keyid:1E:9A:2F:08:3F:47:1D:FB:95:07:B4:C9:73:CB:5C:3A:CD:49:75:9D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HpovCD9HHfuVB7TJc8tcOs1JdZ0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/6277a7-290f-4994-b286-25d6e8613dc4/1/kEw9rNT7b4WnmBTnJkhnSvQpmJU.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/6277a7-290f-4994-b286-25d6e8613dc4/1/HpovCD9HHfuVB7TJc8tcOs1JdZ0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 109.232.88.0/21 Signature Algorithm: sha256WithRSAEncryption 31:55:ed:22:30:bc:df:09:2a:74:8e:15:15:1a:39:88:76:c1: eb:a5:c3:d0:4c:ab:66:95:c1:cb:4a:8b:f0:3b:9b:3a:b0:69: c3:04:57:eb:1d:a3:42:bb:0f:aa:b5:4f:f8:7a:31:75:72:e4: 22:68:da:fd:83:31:34:8d:8b:35:48:8f:cc:d9:02:0a:02:cf: c0:6b:b3:9b:c2:b4:83:d9:13:48:88:1a:d8:81:97:bf:f8:1f: 5d:4c:9c:01:48:37:fb:29:47:0f:b9:03:bd:1e:2a:ba:44:c2: da:ba:2e:b5:31:5c:de:21:2c:1a:54:a7:d2:dc:f3:cf:e7:a6: c6:12:d9:77:ae:d4:e6:1f:0f:e8:15:f7:9c:bc:8c:92:3e:b1: ba:9a:75:ce:8a:63:9e:18:86:bb:1b:ce:66:79:af:ae:31:c1: e9:12:01:ab:64:63:cb:2a:45:96:c3:c2:1f:cf:50:f7:92:f9: 36:a6:33:cd:73:bd:e0:9c:7d:2c:4f:36:d8:55:e8:76:da:95: b5:aa:02:32:2c:0e:e8:f8:ef:bc:d3:97:f5:33:52:23:ca:0b: 94:f5:a7:9a:bb:1e:16:32:df:32:59:54:c0:a0:52:ff:af:55: c2:d7:84:07:97:b9:da:d7:12:a5:d8:cb:25:4f:2b:de:f5:07: a3:14:4d:4d -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt5foDLimhFgywuNelSLYMTMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDFlOWEyZjA4M2Y0NzFkZmI5NTA3YjRjOTczY2I1YzNhY2Q0 OTc1OWQwHhcNMjYwMTAxMTIxODEyWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg5MDRjM2RhY2Q0ZmI2Zjg1YTc5ODE0ZTcyNjQ4Njc0YWY0Mjk5ODk1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA7p5YU48YHf43BfvHSL3E2dgDA0xX CRX5OdBSYyXEKAcRpJy1wzAJArXj75IRILY2PDXdaMMN9eu2iVq3fp8n4M4GG22Y BLr5Wg8EBXoX67FpCroueoNKMsV6N1PC/iMzBauYBJ9qTYiGyEBs7p3j7KUFSJy2 WUuWQ5tIQm+x2g0NtUed+Nb6Abi2Gqwhjn0WYo/dYOvf3s9HXZGFvkGAbbbAG0OQ 6S1wxE2PyWinZND0REnfnzyYVPE5FKHQraB2xpyigrzM+tr/SNdlSuPJkTreHCGK LhhfB/56Nk8cZL43jbc+j4ZRkDgtRaM29kmJMOAIdD5OuDYuUGqPNvEeMQIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFJBMPazU+2+Fp5gU5yZIZ0r0KZiVMB8GA1UdIwQY MBaAFB6aLwg/Rx37lQe0yXPLXDrNSXWdMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSHBvdkNEOUhIZnVWQjdUSmM4dGNPczFKZFowLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mZC82Mjc3YTctMjkwZi00OTk0LWIyODYt MjVkNmU4NjEzZGM0LzEva0V3OXJOVDdiNFdubUJUbkpraG5TdlFwbUpVLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9mZC82Mjc3YTctMjkwZi00OTk0LWIyODYtMjVkNmU4NjEzZGM0 LzEvSHBvdkNEOUhIZnVWQjdUSmM4dGNPczFKZFowLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQDbehYMA0G CSqGSIb3DQEBCwUAA4IBAQAxVe0iMLzfCSp0jhUVGjmIdsHrpcPQTKtmlcHLSovw O5s6sGnDBFfrHaNCuw+qtU/4ejF1cuQiaNr9gzE0jYs1SI/M2QIKAs/Aa7ObwrSD 2RNIiBrYgZe/+B9dTJwBSDf7KUcPuQO9Hiq6RMLaui61MVzeISwaVKfS3PPP56bG Etl3rtTmHw/oFfecvIySPrG6mnXOimOeGIa7G85mea+uMcHpEgGrZGPLKkWWw8If z1D3kvk2pjPNc73gnH0sTzbYVeh22pW1qgIyLA7o+O+805f1M1IjyguU9aeaux4W Mt8yWVTAoFL/r1XC14QHl7na1xKl2MslTyve9QejFE1N -----END CERTIFICATE-----Generated at Wed Jan 7 23:47:58 2026 by rpki-client