This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fe/3796fa-c02e-45f9-a1a4-622bb4899887/1/9z2R7mR7CTqEMhJ2KlrHCYJ3vjc.roa File: 9z2R7mR7CTqEMhJ2KlrHCYJ3vjc.roa (raw, json) Hash identifier: FvuJb6Wc0/pGsiV3BQi7hOtAMeCwlp8+eAq8AekfMKM= Subject key identifier: F7:3D:91:EE:64:7B:09:3A:84:32:12:76:2A:5A:C7:09:82:77:BE:37 Certificate issuer: /CN=0e086b67d8989653baeb68b8d24ab9e9bd0caf2a Certificate serial: 019B7C7FC7FAA34DC32AC9C8D711F87F4A46 Authority key identifier: 0E:08:6B:67:D8:98:96:53:BA:EB:68:B8:D2:4A:B9:E9:BD:0C:AF:2A Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DghrZ9iYllO662i40kq56b0Mryo.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fe/3796fa-c02e-45f9-a1a4-622bb4899887/1/9z2R7mR7CTqEMhJ2KlrHCYJ3vjc.roa Signing time: Fri 02 Jan 2026 02:18:27 +0000 ROA not before: Fri 02 Jan 2026 02:18:27 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 51964 IP address blocks: 193.17.48.0/24 maxlen: 24 194.9.141.0/24 maxlen: 24 194.9.142.0/24 maxlen: 24 194.9.145.0/24 maxlen: 24 194.9.149.0/24 maxlen: 24 194.9.164.0/24 maxlen: 24 194.9.166.0/24 maxlen: 24 2a04:1447::/45 maxlen: 45 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fe/3796fa-c02e-45f9-a1a4-622bb4899887/1/DghrZ9iYllO662i40kq56b0Mryo.crl rsync://rpki.ripe.net/repository/DEFAULT/fe/3796fa-c02e-45f9-a1a4-622bb4899887/1/DghrZ9iYllO662i40kq56b0Mryo.mft rsync://rpki.ripe.net/repository/DEFAULT/DghrZ9iYllO662i40kq56b0Mryo.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 24 Jan 2026 10:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7c:7f:c7:fa:a3:4d:c3:2a:c9:c8:d7:11:f8:7f:4a:46 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0e086b67d8989653baeb68b8d24ab9e9bd0caf2a Validity Not Before: Jan 2 02:18:27 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=f73d91ee647b093a843212762a5ac7098277be37 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e9:83:5d:0f:87:75:46:e8:33:97:27:ee:36:37: 2f:47:cc:24:13:6f:54:13:77:18:81:3f:e9:f9:2e: 52:f2:64:2b:aa:6d:aa:4d:9a:a3:88:42:40:40:2a: c2:c8:0a:c9:cd:28:93:ca:4a:9d:e3:cc:a2:a4:f2: a9:21:2d:05:50:7a:9e:e3:27:e8:a2:3f:23:4c:5c: e5:70:60:10:d0:14:34:f4:fa:57:69:33:6c:4d:fb: 43:6b:d2:a4:ff:dc:21:5f:13:d4:89:02:72:2d:d1: ea:34:10:b2:4a:6c:83:b3:68:5c:c9:ba:85:7c:c4: 07:21:e3:85:48:02:44:75:e2:f2:f7:20:c8:3a:29: cc:20:ff:47:ef:36:6d:5e:19:55:00:54:b0:b5:e3: 84:15:57:b4:a0:a5:4e:c2:47:fc:24:91:10:b1:98: d3:6d:67:a2:64:c3:4a:86:52:33:3e:72:1f:c5:d3: 23:b4:25:54:cf:3b:6c:c5:0b:ac:7e:01:a1:18:ad: cd:c4:11:f3:0c:b4:bc:fc:bf:37:32:a3:9a:89:32: 64:64:e7:f2:60:8a:9d:28:e6:f0:45:29:70:f0:b6: c0:f3:5c:d3:51:8b:e5:b6:fc:55:9e:f3:04:61:e6: ee:f8:a5:4a:eb:81:f9:f1:96:85:0e:aa:00:3e:f0: 33:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F7:3D:91:EE:64:7B:09:3A:84:32:12:76:2A:5A:C7:09:82:77:BE:37 X509v3 Authority Key Identifier: keyid:0E:08:6B:67:D8:98:96:53:BA:EB:68:B8:D2:4A:B9:E9:BD:0C:AF:2A X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DghrZ9iYllO662i40kq56b0Mryo.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/3796fa-c02e-45f9-a1a4-622bb4899887/1/9z2R7mR7CTqEMhJ2KlrHCYJ3vjc.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/3796fa-c02e-45f9-a1a4-622bb4899887/1/DghrZ9iYllO662i40kq56b0Mryo.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 193.17.48.0/24 194.9.141.0-194.9.142.255 194.9.145.0/24 194.9.149.0/24 194.9.164.0/24 194.9.166.0/24 IPv6: 2a04:1447::/45 Signature Algorithm: sha256WithRSAEncryption 5f:84:9d:fe:4c:da:a3:e0:a4:b2:79:48:5b:d0:40:a2:d5:c3: 53:1d:55:64:cf:c9:cd:02:22:e9:fb:01:48:e1:0e:00:9b:77: fc:eb:fb:1c:2f:96:c7:a4:58:82:62:1c:d2:c7:99:01:ed:cb: 8d:cd:38:66:ed:aa:d4:9f:fe:22:70:f9:45:19:7b:75:9a:4e: 47:bf:6f:31:4b:4a:f7:c4:7e:6f:d8:32:a3:c6:8e:96:cb:39: 9f:bf:fd:13:39:62:41:0b:69:f2:c1:5d:d1:75:ba:cb:4e:ff: 46:3c:c1:d3:fb:d4:8d:d1:fb:d4:4f:ea:c3:e1:46:5c:28:58: f2:6f:1e:02:f2:5f:14:ab:78:3f:bd:e6:76:42:69:68:e9:a3: f8:c8:aa:82:92:60:b0:2b:fe:51:61:87:a1:60:50:97:66:6e: e2:99:2a:cd:df:18:5b:a9:a6:52:30:d9:42:47:ce:94:2c:bb: 4c:a7:4c:fd:70:16:be:ab:35:8d:72:db:c5:7c:fa:57:99:62: 40:93:2b:6b:92:94:56:75:e3:36:bd:13:5c:3a:71:6b:60:77: f5:95:fd:05:39:99:b8:36:e5:04:ff:88:6e:3f:ca:85:46:52: a5:68:92:37:4b:92:4c:3f:8d:fa:c2:74:c4:75:9e:9b:a5:0b: b9:a9:83:1a -----BEGIN CERTIFICATE----- MIIFNDCCBBygAwIBAgISAZt8f8f6o03DKsnI1xH4f0pGMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDBlMDg2YjY3ZDg5ODk2NTNiYWViNjhiOGQyNGFiOWU5YmQw Y2FmMmEwHhcNMjYwMTAyMDIxODI3WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhmNzNkOTFlZTY0N2IwOTNhODQzMjEyNzYyYTVhYzcwOTgyNzdiZTM3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA6YNdD4d1RugzlyfuNjcvR8wkE29U E3cYgT/p+S5S8mQrqm2qTZqjiEJAQCrCyArJzSiTykqd48yipPKpIS0FUHqe4yfo oj8jTFzlcGAQ0BQ09PpXaTNsTftDa9Kk/9whXxPUiQJyLdHqNBCySmyDs2hcybqF fMQHIeOFSAJEdeLy9yDIOinMIP9H7zZtXhlVAFSwteOEFVe0oKVOwkf8JJEQsZjT bWeiZMNKhlIzPnIfxdMjtCVUzztsxQusfgGhGK3NxBHzDLS8/L83MqOaiTJkZOfy YIqdKObwRSlw8LbA81zTUYvltvxVnvMEYebu+KVK64H58ZaFDqoAPvAzAwIDAQAB o4ICQDCCAjwwHQYDVR0OBBYEFPc9ke5kewk6hDISdipaxwmCd743MB8GA1UdIwQY MBaAFA4Ia2fYmJZTuutouNJKuem9DK8qMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvRGdoclo5aVlsbE82NjJpNDBrcTU2YjBNcnlvLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mZS8zNzk2ZmEtYzAyZS00NWY5LWExYTQt NjIyYmI0ODk5ODg3LzEvOXoyUjdtUjdDVHFFTWhKMktsckhDWUozdmpjLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9mZS8zNzk2ZmEtYzAyZS00NWY5LWExYTQtNjIyYmI0ODk5ODg3 LzEvRGdoclo5aVlsbE82NjJpNDBrcTU2YjBNcnlvLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMFYGCCsGAQUFBwEHAQH/BEcwRTAyBAIAATAsAwQAwREwMAwD BADCCY0DBADCCY4DBADCCZEDBADCCZUDBADCCaQDBADCCaYwDwQCAAIwCQMHAyoE FEcAADANBgkqhkiG9w0BAQsFAAOCAQEAX4Sd/kzao+CksnlIW9BAotXDUx1VZM/J zQIi6fsBSOEOAJt3/Ov7HC+Wx6RYgmIc0seZAe3Ljc04Zu2q1J/+InD5RRl7dZpO R79vMUtK98R+b9gyo8aOlss5n7/9EzliQQtp8sFd0XW6y07/RjzB0/vUjdH71E/q w+FGXChY8m8eAvJfFKt4P73mdkJpaOmj+MiqgpJgsCv+UWGHoWBQl2Zu4pkqzd8Y W6mmUjDZQkfOlCy7TKdM/XAWvqs1jXLbxXz6V5liQJMra5KUVnXjNr0TXDpxa2B3 9ZX9BTmZuDblBP+Ibj/KhUZSpWiSN0uSTD+N+sJ0xHWem6ULuamDGg== -----END CERTIFICATE-----Generated at Fri Jan 23 15:11:33 2026 by rpki-client