This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/2ba97e-598b-48dd-8d56-f5fb71b9a51f/1/bOZBkZPVVYD0--xHf3C9T62XWSE.roa File: bOZBkZPVVYD0--xHf3C9T62XWSE.roa (raw, json) Hash identifier: P4pM7B4cXnOlSe/MLtXD1oKFhRazb8ZxmswmGbXbVdw= Subject key identifier: 6C:E6:41:91:93:D5:55:80:F4:FB:EC:47:7F:70:BD:4F:AD:97:59:21 Certificate issuer: /CN=f04a58047f37bbc057944bbf8cad8742879592da Certificate serial: 019B7E37C208720EBC080CF14FA3EFBEF905 Authority key identifier: F0:4A:58:04:7F:37:BB:C0:57:94:4B:BF:8C:AD:87:42:87:95:92:DA Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8EpYBH83u8BXlEu_jK2HQoeVkto.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/2ba97e-598b-48dd-8d56-f5fb71b9a51f/1/bOZBkZPVVYD0--xHf3C9T62XWSE.roa Signing time: Fri 02 Jan 2026 10:19:01 +0000 ROA not before: Fri 02 Jan 2026 10:19:01 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 202591 IP address blocks: 158.173.144.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/66/2ba97e-598b-48dd-8d56-f5fb71b9a51f/1/8EpYBH83u8BXlEu_jK2HQoeVkto.crl rsync://rpki.ripe.net/repository/DEFAULT/66/2ba97e-598b-48dd-8d56-f5fb71b9a51f/1/8EpYBH83u8BXlEu_jK2HQoeVkto.mft rsync://rpki.ripe.net/repository/DEFAULT/8EpYBH83u8BXlEu_jK2HQoeVkto.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 24 Jan 2026 00:00:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7e:37:c2:08:72:0e:bc:08:0c:f1:4f:a3:ef:be:f9:05 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=f04a58047f37bbc057944bbf8cad8742879592da Validity Not Before: Jan 2 10:19:01 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=6ce6419193d55580f4fbec477f70bd4fad975921 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:f2:ce:f9:b1:6a:55:ed:45:b4:9f:7b:84:ca: 9b:65:2b:b7:63:fc:09:6f:93:14:99:c3:d6:ba:3b: af:3b:a5:06:9c:ca:7a:07:65:fe:ac:d8:48:44:3d: b4:47:73:7d:9c:a9:2b:c9:0f:bc:67:34:29:6b:8d: 3a:e5:33:09:0c:b8:00:c7:4b:74:16:bc:c1:92:fb: b8:3c:99:40:74:9b:d2:5d:33:08:b0:2c:63:a6:f9: 07:21:1f:73:6c:2c:8d:b9:e3:9f:45:5c:6f:3b:b2: a5:89:72:4a:85:36:5e:6b:a2:9a:5f:5b:4c:ed:a0: 00:16:63:cd:e4:67:29:da:9c:31:ef:14:a1:2e:39: e0:2e:07:75:29:a2:02:28:3c:29:ff:8b:13:d4:29: b5:39:6f:fe:7f:6f:a6:b8:59:59:88:ad:5a:ff:94: 1e:43:82:00:99:75:2f:53:7a:e2:13:91:a5:18:33: 0f:de:57:70:1a:d2:af:3f:45:f6:f4:71:99:af:2b: 40:d4:31:34:6d:00:db:03:e1:e0:9a:ca:fc:3d:38: b7:17:b7:b6:88:7c:85:d5:86:0f:2d:ba:ed:02:c0: 0c:1c:67:16:57:a5:49:90:7e:fc:4a:18:e0:18:cb: 2f:68:68:29:66:32:de:c4:8a:8f:bf:c2:5c:a9:9f: 99:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6C:E6:41:91:93:D5:55:80:F4:FB:EC:47:7F:70:BD:4F:AD:97:59:21 X509v3 Authority Key Identifier: keyid:F0:4A:58:04:7F:37:BB:C0:57:94:4B:BF:8C:AD:87:42:87:95:92:DA X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8EpYBH83u8BXlEu_jK2HQoeVkto.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/2ba97e-598b-48dd-8d56-f5fb71b9a51f/1/bOZBkZPVVYD0--xHf3C9T62XWSE.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/66/2ba97e-598b-48dd-8d56-f5fb71b9a51f/1/8EpYBH83u8BXlEu_jK2HQoeVkto.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 158.173.144.0/24 Signature Algorithm: sha256WithRSAEncryption c0:8c:ed:ca:fd:5d:7c:9a:30:59:ec:b9:8d:b7:d4:70:aa:78: ca:b0:d0:fe:46:ae:72:b9:8e:bf:23:e4:08:e2:d3:b4:d2:07: 1c:a7:77:59:25:31:5a:20:9f:de:e7:f5:7f:51:ff:75:09:d1: e5:0e:46:22:df:ea:69:29:7a:04:83:5a:ff:49:eb:6d:5f:f1: 83:ff:2d:ad:ef:f8:c4:f8:60:0b:c2:26:a5:4d:5d:02:2f:8d: ad:bd:74:fe:22:81:c0:cd:85:81:64:ff:17:53:de:89:3b:60: 6e:c9:7d:ef:49:96:8f:7c:e6:2d:c9:44:4e:b1:e2:0f:ac:8e: 3c:31:f4:8c:e8:37:e7:78:25:82:bb:76:71:1d:d2:99:35:f4: fe:04:0d:b7:25:98:09:ce:eb:f7:20:ee:6d:b6:21:77:89:7e: 5c:b5:f6:a4:47:e2:de:ca:c9:28:38:b5:e6:c7:54:bd:02:da: 3e:dd:1b:f6:42:6b:05:dd:a3:86:b2:7b:63:ce:7d:b7:4a:01: c8:16:c0:68:06:fc:0e:ee:ce:63:ad:a9:01:2c:19:fe:4b:6b: 7b:43:3f:33:70:82:75:bd:bf:7c:b6:68:e2:77:a8:d8:f0:4f: fe:3f:22:9e:52:13:61:a7:8f:26:ab:1f:8d:46:0f:83:dd:7e: 23:b4:79:3d -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt+N8IIcg68CAzxT6PvvvkFMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGYwNGE1ODA0N2YzN2JiYzA1Nzk0NGJiZjhjYWQ4NzQyODc5 NTkyZGEwHhcNMjYwMTAyMTAxOTAxWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg2Y2U2NDE5MTkzZDU1NTgwZjRmYmVjNDc3ZjcwYmQ0ZmFkOTc1OTIxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwvLO+bFqVe1FtJ97hMqbZSu3Y/wJ b5MUmcPWujuvO6UGnMp6B2X+rNhIRD20R3N9nKkryQ+8ZzQpa4065TMJDLgAx0t0 FrzBkvu4PJlAdJvSXTMIsCxjpvkHIR9zbCyNueOfRVxvO7KliXJKhTZea6KaX1tM 7aAAFmPN5Gcp2pwx7xShLjngLgd1KaICKDwp/4sT1Cm1OW/+f2+muFlZiK1a/5Qe Q4IAmXUvU3riE5GlGDMP3ldwGtKvP0X29HGZrytA1DE0bQDbA+Hgmsr8PTi3F7e2 iHyF1YYPLbrtAsAMHGcWV6VJkH78ShjgGMsvaGgpZjLexIqPv8JcqZ+ZKQIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFGzmQZGT1VWA9PvsR39wvU+tl1khMB8GA1UdIwQY MBaAFPBKWAR/N7vAV5RLv4yth0KHlZLaMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvOEVwWUJIODN1OEJYbEV1X2pLMkhRb2VWa3RvLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82Ni8yYmE5N2UtNTk4Yi00OGRkLThkNTYt ZjVmYjcxYjlhNTFmLzEvYk9aQmtaUFZWWUQwLS14SGYzQzlUNjJYV1NFLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC82Ni8yYmE5N2UtNTk4Yi00OGRkLThkNTYtZjVmYjcxYjlhNTFm LzEvOEVwWUJIODN1OEJYbEV1X2pLMkhRb2VWa3RvLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAnq2QMA0G CSqGSIb3DQEBCwUAA4IBAQDAjO3K/V18mjBZ7LmNt9RwqnjKsND+Rq5yuY6/I+QI 4tO00gccp3dZJTFaIJ/e5/V/Uf91CdHlDkYi3+ppKXoEg1r/SettX/GD/y2t7/jE +GALwialTV0CL42tvXT+IoHAzYWBZP8XU96JO2BuyX3vSZaPfOYtyUROseIPrI48 MfSM6DfneCWCu3ZxHdKZNfT+BA23JZgJzuv3IO5ttiF3iX5ctfakR+LeyskoOLXm x1S9Ato+3Rv2QmsF3aOGsntjzn23SgHIFsBoBvwO7s5jrakBLBn+S2t7Qz8zcIJ1 vb98tmjid6jY8E/+PyKeUhNhp48mqx+NRg+D3X4jtHk9 -----END CERTIFICATE-----Generated at Fri Jan 23 04:39:09 2026 by rpki-client