This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/Bb8VShj6dlOGyub849lsnfCB09w.roa File: Bb8VShj6dlOGyub849lsnfCB09w.roa (raw, json) Hash identifier: 9C5M3HSFkH0EvbklwOnbWeSwuxmMf5zOcpGyDVNkgwE= Subject key identifier: 05:BF:15:4A:18:FA:76:53:86:CA:E6:FC:E3:D9:6C:9D:F0:81:D3:DC Certificate issuer: /CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7 Certificate serial: 019B7F857802D91B53945D282CA18936A221 Authority key identifier: 35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/Bb8VShj6dlOGyub849lsnfCB09w.roa Signing time: Fri 02 Jan 2026 16:23:31 +0000 ROA not before: Fri 02 Jan 2026 16:23:31 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 216024 IP address blocks: 193.124.203.0/24 maxlen: 24 194.87.148.0/24 maxlen: 24 194.87.189.0/24 maxlen: 24 195.133.2.0/24 maxlen: 24 195.133.28.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/NWkPXjLVyGrx4TSd_U6M7rcOGsc.crl rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/NWkPXjLVyGrx4TSd_U6M7rcOGsc.mft rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 20 Jan 2026 13:02:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7f:85:78:02:d9:1b:53:94:5d:28:2c:a1:89:36:a2:21 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7 Validity Not Before: Jan 2 16:23:31 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=05bf154a18fa765386cae6fce3d96c9df081d3dc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:ff:cf:dc:b2:a6:70:38:68:13:aa:1b:b9:f4: 37:51:33:5e:5e:92:94:fe:d3:57:20:7f:00:6b:b4: 83:90:8b:03:b3:dd:81:b2:24:5a:d7:7f:30:30:e3: 9a:39:6a:5c:77:f4:1e:68:3c:79:47:fd:a4:65:40: 55:69:1a:f1:ca:0f:a8:d1:2b:6c:d6:5a:00:6f:49: 99:36:59:54:6c:34:de:1d:39:52:5f:52:e5:3f:1e: 5f:d2:9a:26:6d:b5:01:15:38:72:c0:18:ed:b7:e1: e8:ea:77:88:e0:54:d8:3e:73:f2:31:3b:98:0d:38: 81:48:80:eb:a8:3b:29:8b:35:75:1c:70:77:19:93: 27:c7:22:40:48:52:f8:15:f2:75:d9:97:bb:be:44: d0:da:0f:79:76:36:21:d4:42:a0:67:cc:b0:27:77: 6d:9c:52:38:09:11:d5:6f:a5:34:6a:3d:4d:c3:36: e8:d4:69:e4:6e:65:e2:be:bc:b7:d2:91:e6:c9:af: 48:13:41:d3:4f:7a:e7:0c:9d:cf:2a:af:eb:18:0f: 4c:3b:72:27:7a:fd:22:a8:3c:8c:d4:c1:09:7e:5c: 9d:ac:fc:dc:3e:cc:0d:59:55:f6:0b:47:76:22:28: 4d:92:01:8a:d1:37:05:fb:af:df:c0:99:c4:cb:f0: ad:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 05:BF:15:4A:18:FA:76:53:86:CA:E6:FC:E3:D9:6C:9D:F0:81:D3:DC X509v3 Authority Key Identifier: keyid:35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/Bb8VShj6dlOGyub849lsnfCB09w.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/NWkPXjLVyGrx4TSd_U6M7rcOGsc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 193.124.203.0/24 194.87.148.0/24 194.87.189.0/24 195.133.2.0/24 195.133.28.0/24 Signature Algorithm: sha256WithRSAEncryption 45:cf:0a:b8:08:10:3d:f3:bd:55:89:8b:99:37:4e:39:9a:63: d1:e6:96:dc:c3:3f:7f:19:70:da:12:47:40:ae:c0:54:3c:85: 1b:7b:a7:b0:4f:1e:99:db:74:51:f2:a8:d5:55:1b:3c:40:72: 8f:16:99:49:3a:f2:e0:d2:09:ee:56:57:c6:bf:be:84:b7:19: df:05:cb:a3:ac:25:80:26:98:2d:83:7c:a0:68:91:18:54:9f: 4c:a5:11:1b:10:9e:a3:c8:d1:81:6f:d6:a5:6f:8b:76:51:44: 33:aa:45:5e:09:57:1d:23:33:cf:f4:05:a2:42:5c:5d:41:bd: e5:6a:0a:55:d8:b6:7d:c8:0f:dc:67:2c:2a:eb:76:a0:82:34: 82:81:b5:63:e6:0e:aa:48:57:33:6c:d6:ea:8e:c8:7b:1f:cb: 70:62:53:d6:68:7c:53:53:01:a2:3f:78:fa:26:d8:fb:b5:85: f0:35:93:0e:ba:38:4f:94:a4:bb:16:00:91:6c:b2:1e:c2:90: 8d:83:b7:cf:59:a2:d6:ef:24:fd:4c:2c:0e:49:22:6f:d8:b3: 82:66:4b:2c:fa:84:5f:38:27:0b:62:f8:ec:95:94:ca:ed:97: 6b:5d:51:06:8d:fe:18:ad:11:b1:8d:b0:2b:ac:52:59:3d:a7: 57:6f:4d:50 -----BEGIN CERTIFICATE----- MIIFFTCCA/2gAwIBAgISAZt/hXgC2RtTlF0oLKGJNqIhMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDM1NjkwZjVlMzJkNWM4NmFmMWUxMzQ5ZGZkNGU4Y2VlYjcw ZTFhYzcwHhcNMjYwMTAyMTYyMzMxWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygwNWJmMTU0YTE4ZmE3NjUzODZjYWU2ZmNlM2Q5NmM5ZGYwODFkM2RjMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtf/P3LKmcDhoE6obufQ3UTNeXpKU /tNXIH8Aa7SDkIsDs92BsiRa138wMOOaOWpcd/QeaDx5R/2kZUBVaRrxyg+o0Sts 1loAb0mZNllUbDTeHTlSX1LlPx5f0pombbUBFThywBjtt+Ho6neI4FTYPnPyMTuY DTiBSIDrqDspizV1HHB3GZMnxyJASFL4FfJ12Ze7vkTQ2g95djYh1EKgZ8ywJ3dt nFI4CRHVb6U0aj1Nwzbo1GnkbmXivry30pHmya9IE0HTT3rnDJ3PKq/rGA9MO3In ev0iqDyM1MEJflydrPzcPswNWVX2C0d2IihNkgGK0TcF+6/fwJnEy/CtJwIDAQAB o4ICITCCAh0wHQYDVR0OBBYEFAW/FUoY+nZThsrm/OPZbJ3wgdPcMB8GA1UdIwQY MBaAFDVpD14y1chq8eE0nf1OjO63DhrHMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvTldrUFhqTFZ5R3J4NFRTZF9VNk03cmNPR3NjLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wMC9lMTQ0N2EtOGYxOC00YTgwLWE0MjIt NWE0MjQyOGYxMTQzLzEvQmI4VlNoajZkbE9HeXViODQ5bHNuZkNCMDl3LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wMC9lMTQ0N2EtOGYxOC00YTgwLWE0MjItNWE0MjQyOGYxMTQz LzEvTldrUFhqTFZ5R3J4NFRTZF9VNk03cmNPR3NjLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMDcGCCsGAQUFBwEHAQH/BCgwJjAkBAIAATAeAwQAwXzLAwQA wleUAwQAwle9AwQAw4UCAwQAw4UcMA0GCSqGSIb3DQEBCwUAA4IBAQBFzwq4CBA9 871ViYuZN045mmPR5pbcwz9/GXDaEkdArsBUPIUbe6ewTx6Z23RR8qjVVRs8QHKP FplJOvLg0gnuVlfGv76EtxnfBcujrCWAJpgtg3ygaJEYVJ9MpREbEJ6jyNGBb9al b4t2UUQzqkVeCVcdIzPP9AWiQlxdQb3lagpV2LZ9yA/cZywq63aggjSCgbVj5g6q SFczbNbqjsh7H8twYlPWaHxTUwGiP3j6Jtj7tYXwNZMOujhPlKS7FgCRbLIewpCN g7fPWaLW7yT9TCwOSSJv2LOCZkss+oRfOCcLYvjslZTK7ZdrXVEGjf4YrRGxjbAr rFJZPadXb01Q -----END CERTIFICATE-----Generated at Mon Jan 19 20:00:06 2026 by rpki-client