This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/bWYOOC4FvopInNC1yCxZ1RmYtbU.roa File: bWYOOC4FvopInNC1yCxZ1RmYtbU.roa (raw, json) Hash identifier: grqWc91qP4HYhwqYfSxLfCGo9MidPdq1OKgIOOXg6uw= Subject key identifier: 6D:66:0E:38:2E:05:BE:8A:48:9C:D0:B5:C8:2C:59:D5:19:98:B5:B5 Certificate issuer: /CN=22c4ac3e3c43d70d05349c815baadd38ad775e9d Certificate serial: 019B78A31AC77C3E326D73CEA6AF89EF08F5 Authority key identifier: 22:C4:AC:3E:3C:43:D7:0D:05:34:9C:81:5B:AA:DD:38:AD:77:5E:9D Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/bWYOOC4FvopInNC1yCxZ1RmYtbU.roa Signing time: Thu 01 Jan 2026 08:18:33 +0000 ROA not before: Thu 01 Jan 2026 08:18:33 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 197450 IP address blocks: 45.128.233.0/24 maxlen: 24 185.221.64.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/IsSsPjxD1w0FNJyBW6rdOK13Xp0.crl rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/IsSsPjxD1w0FNJyBW6rdOK13Xp0.mft rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 03 Jan 2026 02:00:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:78:a3:1a:c7:7c:3e:32:6d:73:ce:a6:af:89:ef:08:f5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=22c4ac3e3c43d70d05349c815baadd38ad775e9d Validity Not Before: Jan 1 08:18:33 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=6d660e382e05be8a489cd0b5c82c59d51998b5b5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:1b:84:18:ef:0c:f3:51:70:ea:8a:29:3c:93: ff:b3:32:89:ad:f0:51:63:ac:d4:a7:d5:c5:ed:95: ba:bc:67:6d:b5:54:7c:12:fc:88:a6:3a:a5:9c:2e: 0f:34:28:de:5f:3b:bc:0f:b6:59:f6:03:4e:25:89: 5c:2b:8c:bd:69:05:9a:53:36:08:fa:20:70:4b:fd: f8:71:10:c9:b9:d2:20:d9:a5:b1:1e:6e:27:e7:b7: 5d:1e:0e:03:c9:83:d9:f6:61:60:2c:ce:e2:88:8c: 02:25:21:63:65:e4:d8:fb:80:82:3b:88:8a:5e:0c: fb:eb:38:51:57:f0:ea:6e:4a:7f:7b:9f:86:5c:52: cd:04:3f:94:ac:7d:22:54:3d:37:49:f0:aa:58:0e: 64:6f:a8:e1:67:95:3a:48:30:97:fc:d1:e0:50:88: 91:28:6b:1d:aa:99:9d:77:2f:1b:a6:02:d0:9c:8a: 00:89:c3:a7:61:a5:5a:b0:40:41:92:40:c6:55:e6: fa:81:be:12:49:32:ee:29:92:c1:b1:e8:ed:a0:01: 49:cf:8a:64:22:48:8f:3f:3e:ce:4c:01:af:e7:7c: 1f:43:19:b5:71:2c:42:42:5f:94:f0:e8:14:f7:02: be:85:e7:f0:d0:ca:41:28:79:68:01:88:05:18:06: 00:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6D:66:0E:38:2E:05:BE:8A:48:9C:D0:B5:C8:2C:59:D5:19:98:B5:B5 X509v3 Authority Key Identifier: keyid:22:C4:AC:3E:3C:43:D7:0D:05:34:9C:81:5B:AA:DD:38:AD:77:5E:9D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/bWYOOC4FvopInNC1yCxZ1RmYtbU.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/IsSsPjxD1w0FNJyBW6rdOK13Xp0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 45.128.233.0/24 185.221.64.0/24 Signature Algorithm: sha256WithRSAEncryption 1e:e6:2a:e0:1c:3a:33:b5:21:ce:42:9e:1e:0d:a6:2f:06:c7: fb:c2:7e:7d:8e:58:87:18:49:c1:61:33:ac:36:3d:f5:3a:75: 42:36:22:44:49:ea:cc:1d:dc:02:6b:6a:56:ce:9e:dc:46:28: 93:87:15:33:8d:b4:78:f6:66:ac:02:09:9d:6b:a7:aa:46:63: 2f:33:e6:d0:92:95:90:00:af:ea:c6:cd:f9:50:57:dc:30:f1: fe:63:57:47:a0:20:f7:28:8c:3a:af:00:a0:3b:5e:90:19:f1: d3:48:7d:2a:48:52:65:33:c8:a5:5b:ad:dc:3f:be:7e:0a:1b: 7d:bf:ba:82:e8:40:5f:6e:a0:a6:5c:b1:d5:e7:71:8c:18:fa: e5:d0:40:00:ac:58:f1:28:7d:c6:17:c5:70:a7:8f:8a:7b:e9: 35:8c:98:fe:61:ac:43:6e:6a:41:b5:d0:54:ed:2e:53:68:44: 71:74:9f:f8:0c:8c:f6:f5:e8:26:cb:95:cd:29:c0:7d:58:f0: 86:b4:b0:d6:8c:48:26:a5:73:4c:48:0f:4e:41:1b:1e:7c:ef: 41:6e:a4:87:73:3d:27:39:14:44:c9:5c:56:99:b7:dd:1f:bc: de:6a:89:8d:74:57:a7:64:8a:c4:be:31:ac:31:66:4e:ce:61: 91:16:03:04 -----BEGIN CERTIFICATE----- MIIFAzCCA+ugAwIBAgISAZt4oxrHfD4ybXPOpq+J7wj1MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDIyYzRhYzNlM2M0M2Q3MGQwNTM0OWM4MTViYWFkZDM4YWQ3 NzVlOWQwHhcNMjYwMTAxMDgxODMzWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg2ZDY2MGUzODJlMDViZThhNDg5Y2QwYjVjODJjNTlkNTE5OThiNWI1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnhuEGO8M81Fw6oopPJP/szKJrfBR Y6zUp9XF7ZW6vGdttVR8EvyIpjqlnC4PNCjeXzu8D7ZZ9gNOJYlcK4y9aQWaUzYI +iBwS/34cRDJudIg2aWxHm4n57ddHg4DyYPZ9mFgLM7iiIwCJSFjZeTY+4CCO4iK Xgz76zhRV/Dqbkp/e5+GXFLNBD+UrH0iVD03SfCqWA5kb6jhZ5U6SDCX/NHgUIiR KGsdqpmddy8bpgLQnIoAicOnYaVasEBBkkDGVeb6gb4SSTLuKZLBsejtoAFJz4pk IkiPPz7OTAGv53wfQxm1cSxCQl+U8OgU9wK+hefw0MpBKHloAYgFGAYAlQIDAQAB o4ICDzCCAgswHQYDVR0OBBYEFG1mDjguBb6KSJzQtcgsWdUZmLW1MB8GA1UdIwQY MBaAFCLErD48Q9cNBTScgVuq3Titd16dMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSXNTc1BqeEQxdzBGTkp5Qlc2cmRPSzEzWHAwLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wMy85MTNhM2EtZjU1MC00NmYwLWFjYzct Y2QzY2E1OTc1NzEyLzEvYldZT09DNEZ2b3BJbk5DMXlDeFoxUm1ZdGJVLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wMy85MTNhM2EtZjU1MC00NmYwLWFjYzctY2QzY2E1OTc1NzEy LzEvSXNTc1BqeEQxdzBGTkp5Qlc2cmRPSzEzWHAwLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQALYDpAwQA ud1AMA0GCSqGSIb3DQEBCwUAA4IBAQAe5irgHDoztSHOQp4eDaYvBsf7wn59jliH GEnBYTOsNj31OnVCNiJESerMHdwCa2pWzp7cRiiThxUzjbR49masAgmda6eqRmMv M+bQkpWQAK/qxs35UFfcMPH+Y1dHoCD3KIw6rwCgO16QGfHTSH0qSFJlM8ilW63c P75+Cht9v7qC6EBfbqCmXLHV53GMGPrl0EAArFjxKH3GF8Vwp4+Ke+k1jJj+YaxD bmpBtdBU7S5TaERxdJ/4DIz29egmy5XNKcB9WPCGtLDWjEgmpXNMSA9OQRsefO9B bqSHcz0nORREyVxWmbfdH7zeaomNdFenZIrEvjGsMWZOzmGRFgME -----END CERTIFICATE-----Generated at Fri Jan 2 12:06:11 2026 by rpki-client