This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/17/cffff8-3530-4e5b-a5e2-c77905fbba7b/1/RBeFCjxIM7miAZu7QTFUMKs99XY.roa File: RBeFCjxIM7miAZu7QTFUMKs99XY.roa (raw, json) Hash identifier: 632Ss4tpXpsH0DMtGlQw8IheEnppDKOHlGmiaPoTHgE= Subject key identifier: 44:17:85:0A:3C:48:33:B9:A2:01:9B:BB:41:31:54:30:AB:3D:F5:76 Certificate issuer: /CN=45bbd2193642530a017f4f1cbe562e2170b3dfbd Certificate serial: 019B7FF18B029ECBFA755B1592D27A0C72FF Authority key identifier: 45:BB:D2:19:36:42:53:0A:01:7F:4F:1C:BE:56:2E:21:70:B3:DF:BD Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/RbvSGTZCUwoBf08cvlYuIXCz370.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/17/cffff8-3530-4e5b-a5e2-c77905fbba7b/1/RBeFCjxIM7miAZu7QTFUMKs99XY.roa Signing time: Fri 02 Jan 2026 18:21:34 +0000 ROA not before: Fri 02 Jan 2026 18:21:34 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 3257 IP address blocks: 2a07:bdc1::/32 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/17/cffff8-3530-4e5b-a5e2-c77905fbba7b/1/RbvSGTZCUwoBf08cvlYuIXCz370.crl rsync://rpki.ripe.net/repository/DEFAULT/17/cffff8-3530-4e5b-a5e2-c77905fbba7b/1/RbvSGTZCUwoBf08cvlYuIXCz370.mft rsync://rpki.ripe.net/repository/DEFAULT/RbvSGTZCUwoBf08cvlYuIXCz370.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 17 Jan 2026 18:00:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7f:f1:8b:02:9e:cb:fa:75:5b:15:92:d2:7a:0c:72:ff Signature Algorithm: sha256WithRSAEncryption Issuer: CN=45bbd2193642530a017f4f1cbe562e2170b3dfbd Validity Not Before: Jan 2 18:21:34 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=4417850a3c4833b9a2019bbb41315430ab3df576 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:93:cc:c1:2c:3b:f1:42:98:2e:67:12:d9:32: 14:91:9e:56:7d:d9:6e:b7:85:f3:f0:11:56:76:f2: de:62:a6:d4:3f:8e:23:92:5f:a6:05:06:c7:f1:9e: f7:9f:6e:65:fb:70:0a:de:14:86:7b:5a:32:25:3e: 1f:eb:4e:93:d1:a6:1b:f8:01:b2:ae:ed:5b:42:e9: 7d:2b:e8:05:85:43:19:aa:7c:7f:93:c9:e9:59:11: f3:f3:24:13:a8:ad:45:b4:e7:97:90:12:dd:93:00: 87:12:e1:58:fc:5c:d6:0d:39:80:b9:b9:23:52:fd: c7:4a:67:30:43:4b:8d:82:2c:b0:c0:b8:b9:c1:75: ca:e5:50:0f:cc:28:18:3e:82:a1:99:14:3d:29:74: 1b:0d:11:ef:5d:dc:1f:13:21:df:76:07:07:35:fb: c6:31:aa:e6:fb:a2:af:8f:ff:f3:03:2c:3e:16:1d: 0d:74:c7:22:3e:56:d5:d8:41:39:ba:b4:a8:bb:84: ce:55:86:73:84:c3:99:67:fe:e5:45:1b:14:9e:3a: f7:f9:f5:1a:3e:c8:fb:c5:8e:ae:70:4b:aa:19:a5: 77:2a:84:39:b2:cc:02:a9:4b:df:a6:55:0e:8e:b4: c8:55:d9:29:50:ae:aa:6c:fe:00:ba:02:ea:43:b4: 74:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 44:17:85:0A:3C:48:33:B9:A2:01:9B:BB:41:31:54:30:AB:3D:F5:76 X509v3 Authority Key Identifier: keyid:45:BB:D2:19:36:42:53:0A:01:7F:4F:1C:BE:56:2E:21:70:B3:DF:BD X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/RbvSGTZCUwoBf08cvlYuIXCz370.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/17/cffff8-3530-4e5b-a5e2-c77905fbba7b/1/RBeFCjxIM7miAZu7QTFUMKs99XY.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/17/cffff8-3530-4e5b-a5e2-c77905fbba7b/1/RbvSGTZCUwoBf08cvlYuIXCz370.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a07:bdc1::/32 Signature Algorithm: sha256WithRSAEncryption 04:a6:15:c6:34:6c:2a:05:4b:41:16:90:ef:74:de:a0:67:dc: 9e:17:31:cf:12:e7:d8:fb:ca:b2:1d:09:5b:90:49:c8:af:fa: 16:7f:15:96:e9:ac:66:54:fd:9a:8b:1a:b0:d5:99:10:6f:e5: ee:df:0e:ab:22:f1:89:f1:4b:30:7c:d4:59:e0:2b:d8:fc:e3: 86:06:87:7b:cd:51:01:c6:5b:e8:a0:8e:d9:0e:28:ed:d8:9c: 89:74:a6:87:28:a7:25:8f:f9:0c:3a:d6:5f:a5:aa:1e:56:41: 7a:d9:de:a2:19:38:64:03:95:92:6c:ea:82:a0:28:40:38:08: b9:4b:29:0d:53:09:e5:3b:e3:91:95:37:d7:5e:53:2c:29:09: 24:ca:8a:48:02:2f:1e:0f:d1:7a:cd:db:c5:59:e9:ef:4c:d0: fe:54:44:ee:f2:4b:2b:d4:bb:14:29:99:5e:79:d0:66:2c:54: 57:61:ac:e5:85:8f:74:b1:4d:43:aa:df:21:26:27:c6:fb:29: 21:9c:45:c1:74:97:3f:58:4a:84:ca:9d:bd:20:7b:c6:24:df: 1d:a2:2d:12:f0:35:5b:2b:4f:ca:69:9d:c1:2c:4c:ed:e5:49: fa:26:72:af:c0:7e:1c:d3:15:ae:29:e3:95:79:bd:47:a5:ce: cb:9c:af:33 -----BEGIN CERTIFICATE----- MIIE/jCCA+agAwIBAgISAZt/8YsCnsv6dVsVktJ6DHL/MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDQ1YmJkMjE5MzY0MjUzMGEwMTdmNGYxY2JlNTYyZTIxNzBi M2RmYmQwHhcNMjYwMTAyMTgyMTM0WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg0NDE3ODUwYTNjNDgzM2I5YTIwMTliYmI0MTMxNTQzMGFiM2RmNTc2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAu5PMwSw78UKYLmcS2TIUkZ5Wfdlu t4Xz8BFWdvLeYqbUP44jkl+mBQbH8Z73n25l+3AK3hSGe1oyJT4f606T0aYb+AGy ru1bQul9K+gFhUMZqnx/k8npWRHz8yQTqK1FtOeXkBLdkwCHEuFY/FzWDTmAubkj Uv3HSmcwQ0uNgiywwLi5wXXK5VAPzCgYPoKhmRQ9KXQbDRHvXdwfEyHfdgcHNfvG Marm+6Kvj//zAyw+Fh0NdMciPlbV2EE5urSou4TOVYZzhMOZZ/7lRRsUnjr3+fUa Psj7xY6ucEuqGaV3KoQ5sswCqUvfplUOjrTIVdkpUK6qbP4AugLqQ7R0PQIDAQAB o4ICCjCCAgYwHQYDVR0OBBYEFEQXhQo8SDO5ogGbu0ExVDCrPfV2MB8GA1UdIwQY MBaAFEW70hk2QlMKAX9PHL5WLiFws9+9MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvUmJ2U0dUWkNVd29CZjA4Y3ZsWXVJWEN6MzcwLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xNy9jZmZmZjgtMzUzMC00ZTViLWE1ZTIt Yzc3OTA1ZmJiYTdiLzEvUkJlRkNqeElNN21pQVp1N1FURlVNS3M5OVhZLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xNy9jZmZmZjgtMzUzMC00ZTViLWE1ZTItYzc3OTA1ZmJiYTdi LzEvUmJ2U0dUWkNVd29CZjA4Y3ZsWXVJWEN6MzcwLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCAGCCsGAQUFBwEHAQH/BBEwDzANBAIAAjAHAwUAKge9wTAN BgkqhkiG9w0BAQsFAAOCAQEABKYVxjRsKgVLQRaQ73TeoGfcnhcxzxLn2PvKsh0J W5BJyK/6Fn8VlumsZlT9mosasNWZEG/l7t8OqyLxifFLMHzUWeAr2PzjhgaHe81R AcZb6KCO2Q4o7diciXSmhyinJY/5DDrWX6WqHlZBetneohk4ZAOVkmzqgqAoQDgI uUspDVMJ5TvjkZU3115TLCkJJMqKSAIvHg/Res3bxVnp70zQ/lRE7vJLK9S7FCmZ XnnQZixUV2Gs5YWPdLFNQ6rfISYnxvspIZxFwXSXP1hKhMqdvSB7xiTfHaItEvA1 WytPymmdwSxM7eVJ+iZyr8B+HNMVrinjlXm9R6XOy5yvMw== -----END CERTIFICATE-----Generated at Sat Jan 17 02:48:32 2026 by rpki-client