This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/db/7886f4-5fcc-4d44-bd62-10982e040d53/1/Ke0VSjrkP1jgta_WS5ntQtfKR38.roa File: Ke0VSjrkP1jgta_WS5ntQtfKR38.roa (raw, json) Hash identifier: yxWTZVrICzskJJpD6AIg7gNqPSzszPgc+Bf6OnBQWQw= Subject key identifier: 29:ED:15:4A:3A:E4:3F:58:E0:B5:AF:D6:4B:99:ED:42:D7:CA:47:7F Certificate issuer: /CN=9a1e69368abd34538fe77ddaabcdc835af595eba Certificate serial: 019B7AC790EAA7E19918CE8221A8D2DE4ED7 Authority key identifier: 9A:1E:69:36:8A:BD:34:53:8F:E7:7D:DA:AB:CD:C8:35:AF:59:5E:BA Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mh5pNoq9NFOP533aq83INa9ZXro.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/db/7886f4-5fcc-4d44-bd62-10982e040d53/1/Ke0VSjrkP1jgta_WS5ntQtfKR38.roa Signing time: Thu 01 Jan 2026 18:17:37 +0000 ROA not before: Thu 01 Jan 2026 18:17:37 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 56466 IP address blocks: 185.155.9.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/db/7886f4-5fcc-4d44-bd62-10982e040d53/1/mh5pNoq9NFOP533aq83INa9ZXro.crl rsync://rpki.ripe.net/repository/DEFAULT/db/7886f4-5fcc-4d44-bd62-10982e040d53/1/mh5pNoq9NFOP533aq83INa9ZXro.mft rsync://rpki.ripe.net/repository/DEFAULT/mh5pNoq9NFOP533aq83INa9ZXro.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 12 Jan 2026 18:00:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7a:c7:90:ea:a7:e1:99:18:ce:82:21:a8:d2:de:4e:d7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9a1e69368abd34538fe77ddaabcdc835af595eba Validity Not Before: Jan 1 18:17:37 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=29ed154a3ae43f58e0b5afd64b99ed42d7ca477f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:db:45:0d:0c:90:8f:54:f4:40:c6:15:6f:7e: 9f:d7:df:88:41:17:3c:63:7b:93:de:86:ac:d6:4b: 1c:d3:1f:a6:1d:c2:1d:b1:b9:1c:a7:b1:71:f5:93: 18:e1:c4:1c:e8:44:b5:d2:c2:2c:50:72:49:56:38: fc:45:f5:6a:4d:d7:fa:1a:79:03:65:94:e8:ea:d3: 33:95:b0:cd:cb:52:08:94:a9:35:bc:25:b3:3d:bc: e0:29:80:d9:bb:8a:77:cc:35:b5:ce:d3:e7:4f:0d: 07:54:ee:41:f8:99:e8:1f:be:2b:fd:00:6b:89:b9: 75:84:e2:e9:b5:38:5e:96:ae:83:1f:e4:b7:d9:32: 8a:f2:77:13:65:75:30:ee:33:8c:ad:4a:10:04:f2: 23:31:e5:71:14:0c:dd:2b:80:be:d3:46:f6:80:83: 2f:0f:2e:6c:65:00:cf:1c:98:ff:dc:9f:f4:2e:0d: b6:d6:e7:66:54:b4:fb:9b:d4:5e:a5:95:6c:43:04: bc:cb:1b:a6:6e:5e:07:bf:ea:e3:a9:ca:e5:40:28: b2:69:cf:9a:3f:a4:99:d3:5e:55:10:38:08:12:3b: 79:91:d8:81:65:b9:8a:8b:ab:11:af:82:5e:30:86: f3:55:a8:4f:e4:6a:39:09:e6:36:ba:60:65:ed:f7: 84:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 29:ED:15:4A:3A:E4:3F:58:E0:B5:AF:D6:4B:99:ED:42:D7:CA:47:7F X509v3 Authority Key Identifier: keyid:9A:1E:69:36:8A:BD:34:53:8F:E7:7D:DA:AB:CD:C8:35:AF:59:5E:BA X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mh5pNoq9NFOP533aq83INa9ZXro.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/db/7886f4-5fcc-4d44-bd62-10982e040d53/1/Ke0VSjrkP1jgta_WS5ntQtfKR38.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/db/7886f4-5fcc-4d44-bd62-10982e040d53/1/mh5pNoq9NFOP533aq83INa9ZXro.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.155.9.0/24 Signature Algorithm: sha256WithRSAEncryption 71:68:c1:81:32:18:1b:42:9e:b1:18:2a:b1:d5:d5:e3:75:bf: 90:11:b3:16:fd:0d:41:d7:23:e3:c7:34:34:d4:43:e3:e0:df: 5b:cd:0e:f4:02:ed:72:04:a5:ff:70:8d:8f:96:c7:62:2c:c1: 17:40:4d:86:dd:c0:ab:47:e9:85:b8:65:3a:81:81:a7:f8:64: 36:74:07:09:82:86:d0:2a:a1:aa:aa:b5:32:e5:44:0f:25:dc: 3d:a2:47:8d:b7:84:61:ef:1d:95:71:6a:18:d9:50:51:33:58: 94:0e:1a:bf:17:03:86:09:18:86:35:8f:42:e4:db:37:ee:f9: 11:35:08:31:24:c1:01:a1:49:99:ec:ac:45:67:b0:6e:10:6b: df:2c:a4:23:71:6c:0e:1f:ba:c2:72:43:ce:67:b3:75:b8:17: 73:2c:8a:40:31:4d:f9:1a:2a:dc:a1:5c:8c:31:9c:c9:cd:af: 51:88:c1:af:42:b6:ce:9c:74:e0:55:c4:c2:ce:bb:e3:a8:1d: 87:ef:0a:59:c4:a3:c9:d5:5f:72:25:49:1d:f7:80:05:61:68: b5:99:66:71:7a:52:8f:1f:a0:fc:dd:9f:96:d5:d7:98:37:27: 0b:90:11:52:f1:b8:7e:02:41:48:03:03:0c:58:6e:aa:c5:b5: 69:ce:dd:e9 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt6x5Dqp+GZGM6CIajS3k7XMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDlhMWU2OTM2OGFiZDM0NTM4ZmU3N2RkYWFiY2RjODM1YWY1 OTVlYmEwHhcNMjYwMTAxMTgxNzM3WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygyOWVkMTU0YTNhZTQzZjU4ZTBiNWFmZDY0Yjk5ZWQ0MmQ3Y2E0NzdmMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwdtFDQyQj1T0QMYVb36f19+IQRc8 Y3uT3oas1ksc0x+mHcIdsbkcp7Fx9ZMY4cQc6ES10sIsUHJJVjj8RfVqTdf6GnkD ZZTo6tMzlbDNy1IIlKk1vCWzPbzgKYDZu4p3zDW1ztPnTw0HVO5B+JnoH74r/QBr ibl1hOLptThelq6DH+S32TKK8ncTZXUw7jOMrUoQBPIjMeVxFAzdK4C+00b2gIMv Dy5sZQDPHJj/3J/0Lg221udmVLT7m9RepZVsQwS8yxumbl4Hv+rjqcrlQCiyac+a P6SZ015VEDgIEjt5kdiBZbmKi6sRr4JeMIbzVahP5Go5CeY2umBl7feE6QIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFCntFUo65D9Y4LWv1kuZ7ULXykd/MB8GA1UdIwQY MBaAFJoeaTaKvTRTj+d92qvNyDWvWV66MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvbWg1cE5vcTlORk9QNTMzYXE4M0lOYTlaWHJvLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kYi83ODg2ZjQtNWZjYy00ZDQ0LWJkNjIt MTA5ODJlMDQwZDUzLzEvS2UwVlNqcmtQMWpndGFfV1M1bnRRdGZLUjM4LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kYi83ODg2ZjQtNWZjYy00ZDQ0LWJkNjItMTA5ODJlMDQwZDUz LzEvbWg1cE5vcTlORk9QNTMzYXE4M0lOYTlaWHJvLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAuZsJMA0G CSqGSIb3DQEBCwUAA4IBAQBxaMGBMhgbQp6xGCqx1dXjdb+QEbMW/Q1B1yPjxzQ0 1EPj4N9bzQ70Au1yBKX/cI2PlsdiLMEXQE2G3cCrR+mFuGU6gYGn+GQ2dAcJgobQ KqGqqrUy5UQPJdw9okeNt4Rh7x2VcWoY2VBRM1iUDhq/FwOGCRiGNY9C5Ns37vkR NQgxJMEBoUmZ7KxFZ7BuEGvfLKQjcWwOH7rCckPOZ7N1uBdzLIpAMU35GircoVyM MZzJza9RiMGvQrbOnHTgVcTCzrvjqB2H7wpZxKPJ1V9yJUkd94AFYWi1mWZxelKP H6D83Z+W1deYNycLkBFS8bh+AkFIAwMMWG6qxbVpzt3p -----END CERTIFICATE-----Generated at Sun Jan 11 23:53:50 2026 by rpki-client