This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/69/b27203-9d48-49a5-af25-49d40a13cbc2/1/pBSEGBT8tXaU0NeoPRwW40s9iBc.roa File: pBSEGBT8tXaU0NeoPRwW40s9iBc.roa (raw, json) Hash identifier: Qu7iPlmy4hOGYYOFKdh3y29vuJGBwj/CI4K+uxEBhOE= Subject key identifier: A4:14:84:18:14:FC:B5:76:94:D0:D7:A8:3D:1C:16:E3:4B:3D:88:17 Certificate issuer: /CN=c25cb7132c19f7d51f002ed4ad811aecf5b20f57 Certificate serial: 019B78A2A4144479B6EDDF28FF2C471508FB Authority key identifier: C2:5C:B7:13:2C:19:F7:D5:1F:00:2E:D4:AD:81:1A:EC:F5:B2:0F:57 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/wly3EywZ99UfAC7UrYEa7PWyD1c.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/69/b27203-9d48-49a5-af25-49d40a13cbc2/1/pBSEGBT8tXaU0NeoPRwW40s9iBc.roa Signing time: Thu 01 Jan 2026 08:18:03 +0000 ROA not before: Thu 01 Jan 2026 08:18:03 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 48584 IP address blocks: 193.68.114.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/69/b27203-9d48-49a5-af25-49d40a13cbc2/1/wly3EywZ99UfAC7UrYEa7PWyD1c.crl rsync://rpki.ripe.net/repository/DEFAULT/69/b27203-9d48-49a5-af25-49d40a13cbc2/1/wly3EywZ99UfAC7UrYEa7PWyD1c.mft rsync://rpki.ripe.net/repository/DEFAULT/wly3EywZ99UfAC7UrYEa7PWyD1c.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 24 Jan 2026 11:00:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:78:a2:a4:14:44:79:b6:ed:df:28:ff:2c:47:15:08:fb Signature Algorithm: sha256WithRSAEncryption Issuer: CN=c25cb7132c19f7d51f002ed4ad811aecf5b20f57 Validity Not Before: Jan 1 08:18:03 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=a414841814fcb57694d0d7a83d1c16e34b3d8817 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:81:d1:10:44:05:cb:bf:2e:e1:4b:73:a8:65: 47:d3:80:fb:78:c6:53:9a:55:cb:91:f9:ba:91:1a: 1b:12:a8:c5:c7:2e:36:db:d8:d1:45:50:9e:d7:09: 56:8d:95:08:90:07:2c:a3:b2:74:6c:5c:d4:0e:2b: ec:94:3f:5b:bd:fb:86:59:e2:0f:33:47:ee:38:39: 77:4f:69:73:71:28:c8:b7:9a:3c:2a:81:2a:8a:63: 94:ce:5e:43:df:3e:f3:d5:a9:01:b3:62:6b:79:dc: b3:af:05:42:f4:5d:f9:5d:64:1f:76:9a:8d:f1:d9: c1:88:ba:e2:6f:2a:82:09:25:18:68:de:fe:64:78: 8d:ff:ba:93:6b:24:f0:d7:a2:4b:65:36:cd:67:36: c0:34:b7:68:c8:56:e7:87:50:3b:8e:66:bb:16:11: fc:4a:67:be:32:95:6b:52:c6:43:98:16:59:08:f6: 6f:6e:e9:92:0c:a9:a7:d3:3e:75:b8:f7:fb:d3:c7: 82:2f:84:d0:34:6a:95:3b:38:44:ee:e6:7d:bd:0b: 1a:bb:a8:40:aa:bd:c1:52:15:65:db:75:d8:6f:60: 85:04:18:1e:81:47:79:0e:e6:95:2d:af:b6:ca:de: 08:0b:9d:93:0b:51:21:86:c0:86:04:12:da:52:e5: b6:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A4:14:84:18:14:FC:B5:76:94:D0:D7:A8:3D:1C:16:E3:4B:3D:88:17 X509v3 Authority Key Identifier: keyid:C2:5C:B7:13:2C:19:F7:D5:1F:00:2E:D4:AD:81:1A:EC:F5:B2:0F:57 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/wly3EywZ99UfAC7UrYEa7PWyD1c.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/69/b27203-9d48-49a5-af25-49d40a13cbc2/1/pBSEGBT8tXaU0NeoPRwW40s9iBc.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/69/b27203-9d48-49a5-af25-49d40a13cbc2/1/wly3EywZ99UfAC7UrYEa7PWyD1c.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 193.68.114.0/23 Signature Algorithm: sha256WithRSAEncryption af:b4:c9:bb:90:1f:6c:df:a7:0f:9c:27:f6:e2:fa:22:68:ca: 8d:1a:8a:71:a8:fd:61:2c:3a:08:7b:16:d6:ce:09:d4:bf:92: 72:fe:d5:61:59:c3:b5:dc:dc:50:62:fe:37:e9:2d:f5:2b:07: 59:80:22:ca:bf:9e:28:e5:1f:75:b3:2c:23:05:26:b4:bf:30: 66:16:e8:25:a5:d4:d5:14:ee:77:9a:41:6f:6e:ee:23:46:18: 30:97:31:85:b4:01:30:6f:a3:21:7e:b6:e7:75:5a:b9:9f:b6: 53:c3:c2:06:59:0d:e3:8c:4a:be:80:44:1a:5a:73:a2:c9:92: 7b:40:9f:79:cc:f6:af:d2:8e:6f:f7:cd:ba:02:42:eb:c8:29: db:44:66:a6:d7:da:35:b4:0a:30:90:6b:b5:26:82:2a:b6:b6: 83:d0:10:0c:28:c7:f8:b3:13:71:8b:09:63:3c:bb:3c:2e:69: 6d:b6:b5:87:25:55:49:99:19:de:60:c1:90:04:d2:1d:90:d8: ff:ae:28:be:fd:7a:38:9a:4f:da:d1:63:f7:d6:ff:4c:16:31: 4a:09:0f:df:d8:dd:5e:f1:d5:ae:06:c6:f6:5e:7f:89:de:7d: f2:e1:b6:47:19:09:87:fe:84:df:55:cf:d3:6f:51:1b:b5:f0: 30:2b:20:7e -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt4oqQURHm27d8o/yxHFQj7MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGMyNWNiNzEzMmMxOWY3ZDUxZjAwMmVkNGFkODExYWVjZjVi MjBmNTcwHhcNMjYwMTAxMDgxODAzWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhhNDE0ODQxODE0ZmNiNTc2OTRkMGQ3YTgzZDFjMTZlMzRiM2Q4ODE3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA14HREEQFy78u4UtzqGVH04D7eMZT mlXLkfm6kRobEqjFxy4229jRRVCe1wlWjZUIkAcso7J0bFzUDivslD9bvfuGWeIP M0fuODl3T2lzcSjIt5o8KoEqimOUzl5D3z7z1akBs2JredyzrwVC9F35XWQfdpqN 8dnBiLribyqCCSUYaN7+ZHiN/7qTayTw16JLZTbNZzbANLdoyFbnh1A7jma7FhH8 Sme+MpVrUsZDmBZZCPZvbumSDKmn0z51uPf708eCL4TQNGqVOzhE7uZ9vQsau6hA qr3BUhVl23XYb2CFBBgegUd5DuaVLa+2yt4IC52TC1EhhsCGBBLaUuW2+QIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFKQUhBgU/LV2lNDXqD0cFuNLPYgXMB8GA1UdIwQY MBaAFMJctxMsGffVHwAu1K2BGuz1sg9XMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvd2x5M0V5d1o5OVVmQUM3VXJZRWE3UFd5RDFjLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82OS9iMjcyMDMtOWQ0OC00OWE1LWFmMjUt NDlkNDBhMTNjYmMyLzEvcEJTRUdCVDh0WGFVME5lb1BSd1c0MHM5aUJjLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC82OS9iMjcyMDMtOWQ0OC00OWE1LWFmMjUtNDlkNDBhMTNjYmMy LzEvd2x5M0V5d1o5OVVmQUM3VXJZRWE3UFd5RDFjLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBwURyMA0G CSqGSIb3DQEBCwUAA4IBAQCvtMm7kB9s36cPnCf24voiaMqNGopxqP1hLDoIexbW zgnUv5Jy/tVhWcO13NxQYv436S31KwdZgCLKv54o5R91sywjBSa0vzBmFuglpdTV FO53mkFvbu4jRhgwlzGFtAEwb6MhfrbndVq5n7ZTw8IGWQ3jjEq+gEQaWnOiyZJ7 QJ95zPav0o5v9826AkLryCnbRGam19o1tAowkGu1JoIqtraD0BAMKMf4sxNxiwlj PLs8LmlttrWHJVVJmRneYMGQBNIdkNj/rii+/Xo4mk/a0WP31v9MFjFKCQ/f2N1e 8dWuBsb2Xn+J3n3y4bZHGQmH/oTfVc/Tb1EbtfAwKyB+ -----END CERTIFICATE-----Generated at Fri Jan 23 21:39:55 2026 by rpki-client