This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/05/46f5b9-6000-4072-89f2-4c82ace72c85/1/bRiAj1-hf7sNdEiD1YkRkRllIpg.roa File: bRiAj1-hf7sNdEiD1YkRkRllIpg.roa (raw, json) Hash identifier: QwlE0RKPjkh4vpQe1ZoXKOsV7QKRd+qV+VA/PdPxz0M= Subject key identifier: 6D:18:80:8F:5F:A1:7F:BB:0D:74:48:83:D5:89:11:91:19:65:22:98 Certificate issuer: /CN=dc44e19e2bb4e7023cc1ba10d49b74ede4bf865c Certificate serial: 019B7C8006810CD3B35C78470B97D7DED7D4 Authority key identifier: DC:44:E1:9E:2B:B4:E7:02:3C:C1:BA:10:D4:9B:74:ED:E4:BF:86:5C Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3EThniu05wI8wboQ1Jt07eS_hlw.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/05/46f5b9-6000-4072-89f2-4c82ace72c85/1/bRiAj1-hf7sNdEiD1YkRkRllIpg.roa Signing time: Fri 02 Jan 2026 02:18:43 +0000 ROA not before: Fri 02 Jan 2026 02:18:43 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 13335 IP address blocks: 25.25.25.0/24 maxlen: 24 25.26.27.0/24 maxlen: 24 25.129.196.0/23 maxlen: 23 25.129.198.0/23 maxlen: 23 2a08:600::/48 maxlen: 48 2a08:600:e0::/47 maxlen: 47 2a08:600:ee::/47 maxlen: 47 2a08:600:ff::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/05/46f5b9-6000-4072-89f2-4c82ace72c85/1/3EThniu05wI8wboQ1Jt07eS_hlw.crl rsync://rpki.ripe.net/repository/DEFAULT/05/46f5b9-6000-4072-89f2-4c82ace72c85/1/3EThniu05wI8wboQ1Jt07eS_hlw.mft rsync://rpki.ripe.net/repository/DEFAULT/3EThniu05wI8wboQ1Jt07eS_hlw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 19 Jan 2026 05:00:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7c:80:06:81:0c:d3:b3:5c:78:47:0b:97:d7:de:d7:d4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=dc44e19e2bb4e7023cc1ba10d49b74ede4bf865c Validity Not Before: Jan 2 02:18:43 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=6d18808f5fa17fbb0d744883d589119119652298 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:a2:d3:06:0e:2b:85:36:b5:61:06:e2:60:99: 0e:40:2f:ab:ce:64:80:10:2e:a2:40:04:84:5d:2f: 5b:30:01:b9:ef:a1:0e:7e:f7:f9:c3:c9:32:c2:51: 37:9c:fc:95:e3:6a:f4:75:49:76:9e:a9:92:b5:83: 6c:ab:6c:8b:23:77:66:60:da:38:54:c8:ea:eb:10: 96:28:fb:26:e0:11:8e:ff:bf:06:68:eb:3f:32:25: c3:cf:73:b4:07:93:dd:8a:b9:21:ed:da:9c:e3:3d: 6b:37:09:74:5f:bb:16:64:67:e7:a0:40:bd:12:9f: 00:d2:60:15:7d:a9:e6:84:c0:b4:4a:71:f9:5b:93: 5a:e1:58:2e:79:fd:bb:18:c7:78:f2:93:77:12:7b: 2d:41:c6:4d:85:35:95:21:b1:6f:b9:21:83:b9:76: 17:4e:d1:2a:41:bc:21:80:19:fe:69:93:b1:7c:0f: ad:e1:37:05:b2:13:a1:6c:a0:7d:c7:7d:2e:ea:6a: 71:8f:a1:ce:33:d3:1b:2e:66:d5:37:17:00:7a:ff: cf:4b:47:37:d6:5d:ee:f8:81:1e:53:34:59:12:26: 1c:77:9d:f4:d4:53:10:e3:4a:d1:8d:8d:5b:63:bb: cc:11:7c:0d:6d:27:17:3c:1a:ca:2d:96:77:91:a3: 44:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6D:18:80:8F:5F:A1:7F:BB:0D:74:48:83:D5:89:11:91:19:65:22:98 X509v3 Authority Key Identifier: keyid:DC:44:E1:9E:2B:B4:E7:02:3C:C1:BA:10:D4:9B:74:ED:E4:BF:86:5C X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3EThniu05wI8wboQ1Jt07eS_hlw.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/05/46f5b9-6000-4072-89f2-4c82ace72c85/1/bRiAj1-hf7sNdEiD1YkRkRllIpg.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/05/46f5b9-6000-4072-89f2-4c82ace72c85/1/3EThniu05wI8wboQ1Jt07eS_hlw.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 25.25.25.0/24 25.26.27.0/24 25.129.196.0/22 IPv6: 2a08:600::/48 2a08:600:e0::/47 2a08:600:ee::/47 2a08:600:ff::/48 Signature Algorithm: sha256WithRSAEncryption ea:85:5e:c0:1a:3a:62:3d:9a:93:01:8e:1e:38:93:64:65:55: c5:37:fe:6d:5e:69:20:cf:95:45:d8:3d:fa:7e:57:de:f9:c0: 2b:28:02:13:50:22:2b:1f:c5:50:e6:38:89:f8:09:93:4c:ed: b8:df:f3:a7:05:1a:66:8f:32:ee:f9:59:03:bf:e8:ab:a7:de: 68:29:d8:89:b0:46:fa:56:94:3b:4b:00:98:f9:22:72:08:20: 46:68:02:da:70:6f:a5:8b:d4:c2:56:74:20:d9:08:3c:cf:fe: 0c:b6:0b:f6:fe:85:94:dc:f9:55:2d:51:8a:22:eb:ea:d0:e4: 26:a8:1e:ec:fa:0a:e1:67:d3:ec:a2:2c:dd:29:bd:a4:6d:01: fe:6e:c9:6c:e6:44:3a:92:73:c6:39:f9:cf:20:c9:a8:c6:31: 89:f1:30:d2:a8:63:89:c3:19:c7:08:54:ee:a4:87:d8:d6:f9: 74:9d:53:2e:d3:78:df:db:13:9a:90:e4:50:5a:39:7c:93:ab: cb:0d:b4:b1:69:f1:5d:12:c8:b6:0c:f9:30:f6:d3:b5:d4:97: d7:b0:57:f7:31:66:e5:78:b4:9a:8a:e1:76:35:31:d7:4d:99: 27:ec:ef:03:be:ab:49:a2:0d:09:f4:4c:d9:e0:b0:c2:d6:f2: ba:ce:cf:3b -----BEGIN CERTIFICATE----- MIIFNTCCBB2gAwIBAgISAZt8gAaBDNOzXHhHC5fX3tfUMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGRjNDRlMTllMmJiNGU3MDIzY2MxYmExMGQ0OWI3NGVkZTRi Zjg2NWMwHhcNMjYwMTAyMDIxODQzWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg2ZDE4ODA4ZjVmYTE3ZmJiMGQ3NDQ4ODNkNTg5MTE5MTE5NjUyMjk4MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvKLTBg4rhTa1YQbiYJkOQC+rzmSA EC6iQASEXS9bMAG576EOfvf5w8kywlE3nPyV42r0dUl2nqmStYNsq2yLI3dmYNo4 VMjq6xCWKPsm4BGO/78GaOs/MiXDz3O0B5Pdirkh7dqc4z1rNwl0X7sWZGfnoEC9 Ep8A0mAVfanmhMC0SnH5W5Na4Vguef27GMd48pN3EnstQcZNhTWVIbFvuSGDuXYX TtEqQbwhgBn+aZOxfA+t4TcFshOhbKB9x30u6mpxj6HOM9MbLmbVNxcAev/PS0c3 1l3u+IEeUzRZEiYcd5301FMQ40rRjY1bY7vMEXwNbScXPBrKLZZ3kaNEcwIDAQAB o4ICQTCCAj0wHQYDVR0OBBYEFG0YgI9foX+7DXRIg9WJEZEZZSKYMB8GA1UdIwQY MBaAFNxE4Z4rtOcCPMG6ENSbdO3kv4ZcMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvM0VUaG5pdTA1d0k4d2JvUTFKdDA3ZVNfaGx3LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wNS80NmY1YjktNjAwMC00MDcyLTg5ZjIt NGM4MmFjZTcyYzg1LzEvYlJpQWoxLWhmN3NOZEVpRDFZa1JrUmxsSXBnLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wNS80NmY1YjktNjAwMC00MDcyLTg5ZjItNGM4MmFjZTcyYzg1 LzEvM0VUaG5pdTA1d0k4d2JvUTFKdDA3ZVNfaGx3LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMFcGCCsGAQUFBwEHAQH/BEgwRjAYBAIAATASAwQAGRkZAwQA GRobAwQCGYHEMCoEAgACMCQDBwAqCAYAAAADBwEqCAYAAOADBwEqCAYAAO4DBwAq CAYAAP8wDQYJKoZIhvcNAQELBQADggEBAOqFXsAaOmI9mpMBjh44k2RlVcU3/m1e aSDPlUXYPfp+V975wCsoAhNQIisfxVDmOIn4CZNM7bjf86cFGmaPMu75WQO/6Kun 3mgp2ImwRvpWlDtLAJj5InIIIEZoAtpwb6WL1MJWdCDZCDzP/gy2C/b+hZTc+VUt UYoi6+rQ5CaoHuz6CuFn0+yiLN0pvaRtAf5uyWzmRDqSc8Y5+c8gyajGMYnxMNKo Y4nDGccIVO6kh9jW+XSdUy7TeN/bE5qQ5FBaOXyTq8sNtLFp8V0SyLYM+TD207XU l9ewV/cxZuV4tJqK4XY1MddNmSfs7wO+q0miDQn0TNngsMLW8rrOzzs= -----END CERTIFICATE-----Generated at Sun Jan 18 11:04:35 2026 by rpki-client