This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/07/a83337-6e16-4cd9-921a-87b010ea6235/1/bes3Ak7lAYiWjjD6sUuNX8KOJ5k.roa File: bes3Ak7lAYiWjjD6sUuNX8KOJ5k.roa (raw, json) Hash identifier: lgQ99fWD6Q82webEcbroGsEXSi8mGfzgwcI7IvYH5SE= Subject key identifier: 6D:EB:37:02:4E:E5:01:88:96:8E:30:FA:B1:4B:8D:5F:C2:8E:27:99 Certificate issuer: /CN=a7a538aac33778460e19701aab5952c7aa25f05c Certificate serial: 019B7A59D1C4CA9BA90888D2FC08E0330833 Authority key identifier: A7:A5:38:AA:C3:37:78:46:0E:19:70:1A:AB:59:52:C7:AA:25:F0:5C Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/p6U4qsM3eEYOGXAaq1lSx6ol8Fw.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/07/a83337-6e16-4cd9-921a-87b010ea6235/1/bes3Ak7lAYiWjjD6sUuNX8KOJ5k.roa Signing time: Thu 01 Jan 2026 16:17:45 +0000 ROA not before: Thu 01 Jan 2026 16:17:45 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 41745 IP address blocks: 194.147.33.0/24 maxlen: 24 194.147.34.0/24 maxlen: 24 194.147.35.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/07/a83337-6e16-4cd9-921a-87b010ea6235/1/p6U4qsM3eEYOGXAaq1lSx6ol8Fw.crl rsync://rpki.ripe.net/repository/DEFAULT/07/a83337-6e16-4cd9-921a-87b010ea6235/1/p6U4qsM3eEYOGXAaq1lSx6ol8Fw.mft rsync://rpki.ripe.net/repository/DEFAULT/p6U4qsM3eEYOGXAaq1lSx6ol8Fw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 21 Jan 2026 09:01:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7a:59:d1:c4:ca:9b:a9:08:88:d2:fc:08:e0:33:08:33 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=a7a538aac33778460e19701aab5952c7aa25f05c Validity Not Before: Jan 1 16:17:45 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=6deb37024ee50188968e30fab14b8d5fc28e2799 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:7a:e1:6a:1b:61:ae:aa:23:af:bb:91:a3:2d: 13:3f:a6:86:df:7b:0e:01:04:ab:41:23:fb:81:1a: 3f:75:de:f8:0d:14:93:40:22:2f:e1:e3:02:a5:82: 19:ae:50:1d:9a:3b:05:9a:22:12:a9:17:9b:03:76: d4:0c:04:b7:1b:7e:fb:9d:a1:6c:85:a1:0d:6d:15: e1:b6:67:16:5f:dd:65:80:03:01:a5:d3:32:71:52: 82:0f:85:8d:97:18:f7:94:95:17:02:28:a3:fd:96: 78:8e:e4:b7:f7:61:c9:64:78:c3:36:aa:c7:c2:3c: 98:e4:72:bc:74:a0:83:52:bc:4b:14:a4:bd:a2:72: 72:5f:de:f1:38:14:1c:4c:f3:83:d2:48:97:ff:e0: 5f:70:ff:58:6b:c5:59:46:9a:81:46:da:a3:50:21: ed:cb:46:2a:dd:a8:90:d4:d7:8d:1c:e3:69:60:01: 13:2e:5f:2e:75:ab:3e:9c:53:71:10:a7:b1:4a:f8: cb:9d:6c:3e:a6:c1:23:07:79:51:29:eb:cb:52:57: bd:d9:5b:5c:b3:9c:ef:50:74:61:d2:fe:39:c3:c2: 63:26:23:6b:14:b8:73:20:1e:fc:7e:41:f0:af:79: c6:b1:43:50:ab:eb:c3:7d:19:7e:31:40:13:b5:e5: ff:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6D:EB:37:02:4E:E5:01:88:96:8E:30:FA:B1:4B:8D:5F:C2:8E:27:99 X509v3 Authority Key Identifier: keyid:A7:A5:38:AA:C3:37:78:46:0E:19:70:1A:AB:59:52:C7:AA:25:F0:5C X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/p6U4qsM3eEYOGXAaq1lSx6ol8Fw.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/07/a83337-6e16-4cd9-921a-87b010ea6235/1/bes3Ak7lAYiWjjD6sUuNX8KOJ5k.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/07/a83337-6e16-4cd9-921a-87b010ea6235/1/p6U4qsM3eEYOGXAaq1lSx6ol8Fw.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 194.147.33.0-194.147.35.255 Signature Algorithm: sha256WithRSAEncryption 4c:ac:77:e7:ea:89:5c:b1:b0:6b:75:46:f5:a1:5f:a4:01:fb: e7:9a:50:25:39:94:d6:28:26:be:21:00:f6:fb:1d:e0:58:44: 14:32:ca:98:49:f5:99:60:ce:af:0f:a8:a7:82:b2:a6:e6:aa: b3:38:ad:f0:fb:8b:22:0b:50:ce:a8:57:22:40:63:28:2d:f2: eb:42:8d:72:56:81:a6:a8:d7:d2:e4:cd:aa:6a:4f:12:6a:b1: 9c:37:7d:66:5f:12:10:8e:f1:61:2c:19:23:62:2d:09:64:80: 80:60:b5:a4:27:ef:52:12:66:99:b2:35:ce:b1:86:c5:de:38: 92:9b:56:5c:c5:41:de:15:82:37:b0:ed:fd:ed:10:92:e4:ab: cb:1c:38:2a:15:86:fd:8e:ce:81:a9:85:3e:18:41:49:3a:13: 63:81:2b:54:19:d0:03:21:f8:80:5c:59:38:37:54:6d:20:e3: ed:19:66:a1:d9:56:99:51:0f:67:27:61:54:ee:a8:bd:df:e5: 71:12:2f:85:b1:0a:09:f6:b0:c3:8f:de:54:61:c6:5a:04:66: d6:5f:28:13:4c:2b:38:a9:93:e7:6d:b8:75:cd:6c:4d:48:5c: 7b:64:06:7d:d9:b2:a2:c8:b6:ad:9d:77:94:31:91:4e:2d:fe: 6e:38:39:86 -----BEGIN CERTIFICATE----- MIIFBTCCA+2gAwIBAgISAZt6WdHEypupCIjS/AjgMwgzMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGE3YTUzOGFhYzMzNzc4NDYwZTE5NzAxYWFiNTk1MmM3YWEy NWYwNWMwHhcNMjYwMTAxMTYxNzQ1WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg2ZGViMzcwMjRlZTUwMTg4OTY4ZTMwZmFiMTRiOGQ1ZmMyOGUyNzk5MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA2Xrhahthrqojr7uRoy0TP6aG33sO AQSrQSP7gRo/dd74DRSTQCIv4eMCpYIZrlAdmjsFmiISqRebA3bUDAS3G377naFs haENbRXhtmcWX91lgAMBpdMycVKCD4WNlxj3lJUXAiij/ZZ4juS392HJZHjDNqrH wjyY5HK8dKCDUrxLFKS9onJyX97xOBQcTPOD0kiX/+BfcP9Ya8VZRpqBRtqjUCHt y0Yq3aiQ1NeNHONpYAETLl8udas+nFNxEKexSvjLnWw+psEjB3lRKevLUle92Vtc s5zvUHRh0v45w8JjJiNrFLhzIB78fkHwr3nGsUNQq+vDfRl+MUATteX/WwIDAQAB o4ICETCCAg0wHQYDVR0OBBYEFG3rNwJO5QGIlo4w+rFLjV/CjieZMB8GA1UdIwQY MBaAFKelOKrDN3hGDhlwGqtZUseqJfBcMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvcDZVNHFzTTNlRVlPR1hBYXExbFN4Nm9sOEZ3LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wNy9hODMzMzctNmUxNi00Y2Q5LTkyMWEt ODdiMDEwZWE2MjM1LzEvYmVzM0FrN2xBWWlXampENnNVdU5YOEtPSjVrLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wNy9hODMzMzctNmUxNi00Y2Q5LTkyMWEtODdiMDEwZWE2MjM1 LzEvcDZVNHFzTTNlRVlPR1hBYXExbFN4Nm9sOEZ3LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCcGCCsGAQUFBwEHAQH/BBgwFjAUBAIAATAOMAwDBADCkyED BALCkyAwDQYJKoZIhvcNAQELBQADggEBAEysd+fqiVyxsGt1RvWhX6QB++eaUCU5 lNYoJr4hAPb7HeBYRBQyyphJ9Zlgzq8PqKeCsqbmqrM4rfD7iyILUM6oVyJAYygt 8utCjXJWgaao19LkzapqTxJqsZw3fWZfEhCO8WEsGSNiLQlkgIBgtaQn71ISZpmy Nc6xhsXeOJKbVlzFQd4Vgjew7f3tEJLkq8scOCoVhv2OzoGphT4YQUk6E2OBK1QZ 0AMh+IBcWTg3VG0g4+0ZZqHZVplRD2cnYVTuqL3f5XESL4WxCgn2sMOP3lRhxloE ZtZfKBNMKzipk+dtuHXNbE1IXHtkBn3ZsqLItq2dd5QxkU4t/m44OYY= -----END CERTIFICATE-----Generated at Tue Jan 20 14:15:36 2026 by rpki-client