This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/db/7886f4-5fcc-4d44-bd62-10982e040d53/1/SoVFcNc1lU_1SEfGUkw_ciUcpAQ.roa File: SoVFcNc1lU_1SEfGUkw_ciUcpAQ.roa (raw, json) Hash identifier: I90mbwCIchHVNf7BLD+pAvrY/vzh+76mAoOiyMR3xRk= Subject key identifier: 4A:85:45:70:D7:35:95:4F:F5:48:47:C6:52:4C:3F:72:25:1C:A4:04 Certificate issuer: /CN=9a1e69368abd34538fe77ddaabcdc835af595eba Certificate serial: 019B7AC789E4E1BB19F501C8541EE02362A9 Authority key identifier: 9A:1E:69:36:8A:BD:34:53:8F:E7:7D:DA:AB:CD:C8:35:AF:59:5E:BA Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mh5pNoq9NFOP533aq83INa9ZXro.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/db/7886f4-5fcc-4d44-bd62-10982e040d53/1/SoVFcNc1lU_1SEfGUkw_ciUcpAQ.roa Signing time: Thu 01 Jan 2026 18:17:35 +0000 ROA not before: Thu 01 Jan 2026 18:17:35 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 15402 IP address blocks: 85.9.76.0/24 maxlen: 24 185.126.18.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/db/7886f4-5fcc-4d44-bd62-10982e040d53/1/mh5pNoq9NFOP533aq83INa9ZXro.crl rsync://rpki.ripe.net/repository/DEFAULT/db/7886f4-5fcc-4d44-bd62-10982e040d53/1/mh5pNoq9NFOP533aq83INa9ZXro.mft rsync://rpki.ripe.net/repository/DEFAULT/mh5pNoq9NFOP533aq83INa9ZXro.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 12 Jan 2026 18:00:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7a:c7:89:e4:e1:bb:19:f5:01:c8:54:1e:e0:23:62:a9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9a1e69368abd34538fe77ddaabcdc835af595eba Validity Not Before: Jan 1 18:17:35 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=4a854570d735954ff54847c6524c3f72251ca404 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:4b:ef:d4:dc:fc:a9:41:b9:48:70:25:dc:d1: d4:26:7f:25:2d:75:38:98:02:96:ad:94:af:c4:a5: 04:df:96:ab:9e:6b:6b:de:91:5f:c4:42:c9:e9:12: f6:4e:db:e6:ce:70:67:0c:b6:79:72:4f:d6:52:89: b0:5e:a4:7f:55:67:57:13:06:df:40:25:bc:34:b8: 26:a0:ea:10:54:a9:2b:c0:1a:b7:67:76:17:f3:16: a2:2d:a3:37:5b:74:8d:a5:79:3e:f3:d7:55:74:55: e7:a4:c4:b9:3f:57:d2:7a:79:c8:a4:5b:5d:91:25: ff:29:5c:3a:8a:34:72:57:46:a2:61:95:45:3f:bb: 9d:78:ca:30:cc:9d:f9:d5:7b:03:dc:70:5e:ac:01: e8:47:ed:7b:d3:66:71:1d:9a:0e:0e:3a:32:6e:17: 9f:e8:6f:5b:6b:9c:3e:00:7c:c4:c5:43:46:d3:d0: 02:ed:32:c2:8f:a0:77:d2:47:e6:69:6c:3e:54:97: f6:51:7a:f9:e2:8d:39:19:19:34:b8:06:6f:ff:d8: 25:46:3d:c5:c7:dd:a6:a0:1f:1d:1d:7f:14:5a:20: cc:5f:8d:8e:20:35:b0:20:7d:91:a4:94:45:57:f3: 63:47:30:08:c3:49:07:38:a9:ab:19:93:be:25:44: 14:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4A:85:45:70:D7:35:95:4F:F5:48:47:C6:52:4C:3F:72:25:1C:A4:04 X509v3 Authority Key Identifier: keyid:9A:1E:69:36:8A:BD:34:53:8F:E7:7D:DA:AB:CD:C8:35:AF:59:5E:BA X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mh5pNoq9NFOP533aq83INa9ZXro.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/db/7886f4-5fcc-4d44-bd62-10982e040d53/1/SoVFcNc1lU_1SEfGUkw_ciUcpAQ.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/db/7886f4-5fcc-4d44-bd62-10982e040d53/1/mh5pNoq9NFOP533aq83INa9ZXro.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 85.9.76.0/24 185.126.18.0/23 Signature Algorithm: sha256WithRSAEncryption 26:c6:c5:78:65:b8:ef:29:dc:94:82:f6:32:e0:25:26:a0:31: 95:4e:ab:ca:44:4b:c5:46:a0:31:2d:33:ca:d4:df:30:aa:3b: c2:9a:ff:31:66:91:7e:0b:7a:a3:ba:a2:27:f3:78:de:04:49: f2:04:68:cd:0f:31:e0:02:fc:62:b7:dc:fa:29:f6:8a:3f:6a: 03:0b:df:a3:35:7e:95:ee:7c:2b:14:a6:a9:40:f8:88:6d:57: 16:c8:e7:48:2f:ff:c9:ac:45:3b:43:61:b4:19:3c:0d:58:3c: ec:8d:d1:31:94:11:25:16:5b:4b:8a:65:51:fa:dd:d4:4a:47: f3:43:0f:fb:98:48:23:b3:b0:73:31:52:ca:d8:bf:e8:07:76: 17:ae:1b:b5:7e:f3:0f:59:30:82:ab:74:d5:f2:20:ab:ba:81: 09:3a:01:f9:62:f7:3c:3e:ac:44:f9:89:4c:23:4a:53:13:54: b7:ac:fc:ed:a7:d8:f9:da:d4:53:1f:85:65:d6:eb:63:53:90: 64:cc:19:11:37:64:f0:0d:ae:8f:e8:b3:46:b4:0d:44:7d:54: b0:fd:ed:de:49:f9:b5:48:83:b4:f6:f0:66:8b:4c:1f:de:d9: 66:6e:87:e9:b3:69:63:12:44:f1:5d:2c:ed:7d:c8:a3:48:c1: da:0c:4b:b0 -----BEGIN CERTIFICATE----- MIIFAzCCA+ugAwIBAgISAZt6x4nk4bsZ9QHIVB7gI2KpMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDlhMWU2OTM2OGFiZDM0NTM4ZmU3N2RkYWFiY2RjODM1YWY1 OTVlYmEwHhcNMjYwMTAxMTgxNzM1WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg0YTg1NDU3MGQ3MzU5NTRmZjU0ODQ3YzY1MjRjM2Y3MjI1MWNhNDA0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAu0vv1Nz8qUG5SHAl3NHUJn8lLXU4 mAKWrZSvxKUE35arnmtr3pFfxELJ6RL2TtvmznBnDLZ5ck/WUomwXqR/VWdXEwbf QCW8NLgmoOoQVKkrwBq3Z3YX8xaiLaM3W3SNpXk+89dVdFXnpMS5P1fSennIpFtd kSX/KVw6ijRyV0aiYZVFP7udeMowzJ351XsD3HBerAHoR+1702ZxHZoODjoybhef 6G9ba5w+AHzExUNG09AC7TLCj6B30kfmaWw+VJf2UXr54o05GRk0uAZv/9glRj3F x92moB8dHX8UWiDMX42OIDWwIH2RpJRFV/NjRzAIw0kHOKmrGZO+JUQUHwIDAQAB o4ICDzCCAgswHQYDVR0OBBYEFEqFRXDXNZVP9UhHxlJMP3IlHKQEMB8GA1UdIwQY MBaAFJoeaTaKvTRTj+d92qvNyDWvWV66MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvbWg1cE5vcTlORk9QNTMzYXE4M0lOYTlaWHJvLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kYi83ODg2ZjQtNWZjYy00ZDQ0LWJkNjIt MTA5ODJlMDQwZDUzLzEvU29WRmNOYzFsVV8xU0VmR1Vrd19jaVVjcEFRLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kYi83ODg2ZjQtNWZjYy00ZDQ0LWJkNjItMTA5ODJlMDQwZDUz LzEvbWg1cE5vcTlORk9QNTMzYXE4M0lOYTlaWHJvLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQAVQlMAwQB uX4SMA0GCSqGSIb3DQEBCwUAA4IBAQAmxsV4ZbjvKdyUgvYy4CUmoDGVTqvKREvF RqAxLTPK1N8wqjvCmv8xZpF+C3qjuqIn83jeBEnyBGjNDzHgAvxit9z6KfaKP2oD C9+jNX6V7nwrFKapQPiIbVcWyOdIL//JrEU7Q2G0GTwNWDzsjdExlBElFltLimVR +t3USkfzQw/7mEgjs7BzMVLK2L/oB3YXrhu1fvMPWTCCq3TV8iCruoEJOgH5Yvc8 PqxE+YlMI0pTE1S3rPztp9j52tRTH4Vl1utjU5BkzBkRN2TwDa6P6LNGtA1EfVSw /e3eSfm1SIO09vBmi0wf3tlmbofps2ljEkTxXSztfcijSMHaDEuw -----END CERTIFICATE-----Generated at Sun Jan 11 23:53:51 2026 by rpki-client