This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/09/541c05-8d7d-42b8-ab00-7fbbae6f9437/1/B9naFTKxhb2HmNfGcaMa2LwRQkQ.roa File: B9naFTKxhb2HmNfGcaMa2LwRQkQ.roa (raw, json) Hash identifier: aa/5PDXayrOWTB0No26ZJ4DaEmXtw+ey3rueJcKl2v8= Subject key identifier: 07:D9:DA:15:32:B1:85:BD:87:98:D7:C6:71:A3:1A:D8:BC:11:42:44 Certificate issuer: /CN=0548cedf17029ed98a108113c6c109ecaccd82ec Certificate serial: 019B797EC52165643036E1E2E3EEBAF11845 Authority key identifier: 05:48:CE:DF:17:02:9E:D9:8A:10:81:13:C6:C1:09:EC:AC:CD:82:EC Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BUjO3xcCntmKEIETxsEJ7KzNguw.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/09/541c05-8d7d-42b8-ab00-7fbbae6f9437/1/B9naFTKxhb2HmNfGcaMa2LwRQkQ.roa Signing time: Thu 01 Jan 2026 12:18:29 +0000 ROA not before: Thu 01 Jan 2026 12:18:29 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 59484 IP address blocks: 87.227.140.0/24 maxlen: 24 151.251.32.0/24 maxlen: 24 151.251.33.0/24 maxlen: 24 151.251.34.0/24 maxlen: 24 151.251.35.0/24 maxlen: 24 151.251.40.0/24 maxlen: 24 151.251.41.0/24 maxlen: 24 151.251.42.0/24 maxlen: 24 151.251.60.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/09/541c05-8d7d-42b8-ab00-7fbbae6f9437/1/BUjO3xcCntmKEIETxsEJ7KzNguw.crl rsync://rpki.ripe.net/repository/DEFAULT/09/541c05-8d7d-42b8-ab00-7fbbae6f9437/1/BUjO3xcCntmKEIETxsEJ7KzNguw.mft rsync://rpki.ripe.net/repository/DEFAULT/BUjO3xcCntmKEIETxsEJ7KzNguw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 27 Jan 2026 15:01:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:79:7e:c5:21:65:64:30:36:e1:e2:e3:ee:ba:f1:18:45 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0548cedf17029ed98a108113c6c109ecaccd82ec Validity Not Before: Jan 1 12:18:29 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=07d9da1532b185bd8798d7c671a31ad8bc114244 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:e5:44:7b:5f:45:6b:36:86:96:be:04:1c:22: d8:61:0b:5d:64:a7:df:85:5b:47:44:3a:cc:d4:8c: e3:aa:cc:ff:b0:49:b1:f3:00:57:ce:ec:a0:1e:ce: aa:5b:0d:14:ad:74:84:dd:96:18:49:98:0b:8e:ea: 6b:77:97:bf:c9:35:45:9b:13:48:06:79:fd:b3:ab: 43:e2:2a:6a:b7:8b:dd:3b:0f:75:e0:53:28:b7:bf: 6c:c6:ba:17:56:82:7e:74:04:8d:de:1a:b9:be:2f: 95:dc:18:38:60:6b:ec:1f:f8:06:aa:f1:65:1e:93: 80:22:6e:bd:6b:8b:be:59:96:ca:3f:8f:a6:3a:3b: 19:60:a6:12:29:00:d4:f8:ab:c8:f4:96:ac:d3:8a: c5:e9:46:d6:d0:53:0c:30:54:d5:88:07:7a:52:51: ae:b4:13:20:63:cb:c0:88:ea:3a:67:5c:16:04:69: e2:5f:73:c6:83:a9:55:16:b3:6c:4b:5e:5e:35:a3: e1:e2:f5:81:45:c7:d4:0c:5f:b7:d1:ea:bf:39:22: ea:b6:af:03:a0:2d:48:e9:39:56:a0:0d:59:fa:96: 86:92:d0:ad:7c:19:e1:c2:c1:37:d6:f6:b2:9d:70: b1:f3:d8:ff:e7:c1:d2:f1:7c:ee:4a:ac:8d:5d:48: eb:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 07:D9:DA:15:32:B1:85:BD:87:98:D7:C6:71:A3:1A:D8:BC:11:42:44 X509v3 Authority Key Identifier: keyid:05:48:CE:DF:17:02:9E:D9:8A:10:81:13:C6:C1:09:EC:AC:CD:82:EC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BUjO3xcCntmKEIETxsEJ7KzNguw.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/09/541c05-8d7d-42b8-ab00-7fbbae6f9437/1/B9naFTKxhb2HmNfGcaMa2LwRQkQ.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/09/541c05-8d7d-42b8-ab00-7fbbae6f9437/1/BUjO3xcCntmKEIETxsEJ7KzNguw.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 87.227.140.0/24 151.251.32.0/22 151.251.40.0-151.251.42.255 151.251.60.0/24 Signature Algorithm: sha256WithRSAEncryption 7b:de:54:97:70:c8:4c:3d:ff:31:e5:d4:cf:7f:7d:dc:22:24: 8d:5d:b3:69:f6:2e:59:ab:c3:f6:28:a5:99:04:2b:46:d7:70: 9f:a3:74:a3:ed:fe:b3:b7:53:c5:df:8d:56:6b:05:26:ce:9e: 1d:4e:df:95:ee:d4:c7:37:e8:ed:6a:8a:7f:cc:1c:4c:af:57: c8:2f:2c:d3:19:17:e3:2c:be:9d:cc:e6:59:25:8d:86:8a:4c: dc:4b:c4:52:11:b8:c9:f1:d5:dd:0c:1b:6f:94:1e:18:d3:b6: 8c:39:a9:60:f4:a9:27:2c:9b:43:bb:1a:d1:9e:8d:b5:2f:43: 52:bc:41:4e:a0:d8:8d:e3:23:8f:3f:ca:75:bc:3c:2c:d5:4b: 36:7d:0b:41:19:25:b0:9e:8c:d6:a2:be:60:c4:72:20:7b:8d: 01:a4:d3:52:73:de:39:27:d8:a9:63:25:bb:8a:77:25:0b:e7: ae:4a:43:2b:bd:75:74:01:74:93:6b:4e:9e:a6:02:97:8f:ab: 87:7b:bb:50:3c:13:01:fb:27:14:97:d5:f4:cf:a3:e7:f3:54: e7:64:a1:d9:be:0e:01:6b:d6:c0:39:5c:94:48:0f:5d:80:88: 3b:49:ed:7b:5a:48:a3:c3:19:36:0e:b1:a2:90:24:6f:06:01: bb:47:e8:42 -----BEGIN CERTIFICATE----- MIIFFzCCA/+gAwIBAgISAZt5fsUhZWQwNuHi4+668RhFMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDA1NDhjZWRmMTcwMjllZDk4YTEwODExM2M2YzEwOWVjYWNj ZDgyZWMwHhcNMjYwMTAxMTIxODI5WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygwN2Q5ZGExNTMyYjE4NWJkODc5OGQ3YzY3MWEzMWFkOGJjMTE0MjQ0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAp+VEe19FazaGlr4EHCLYYQtdZKff hVtHRDrM1Izjqsz/sEmx8wBXzuygHs6qWw0UrXSE3ZYYSZgLjuprd5e/yTVFmxNI Bnn9s6tD4ipqt4vdOw914FMot79sxroXVoJ+dASN3hq5vi+V3Bg4YGvsH/gGqvFl HpOAIm69a4u+WZbKP4+mOjsZYKYSKQDU+KvI9Jas04rF6UbW0FMMMFTViAd6UlGu tBMgY8vAiOo6Z1wWBGniX3PGg6lVFrNsS15eNaPh4vWBRcfUDF+30eq/OSLqtq8D oC1I6TlWoA1Z+paGktCtfBnhwsE31vaynXCx89j/58HS8XzuSqyNXUjruQIDAQAB o4ICIzCCAh8wHQYDVR0OBBYEFAfZ2hUysYW9h5jXxnGjGti8EUJEMB8GA1UdIwQY MBaAFAVIzt8XAp7ZihCBE8bBCeyszYLsMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvQlVqTzN4Y0NudG1LRUlFVHhzRUo3S3pOZ3V3LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wOS81NDFjMDUtOGQ3ZC00MmI4LWFiMDAt N2ZiYmFlNmY5NDM3LzEvQjluYUZUS3hoYjJIbU5mR2NhTWEyTHdSUWtRLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wOS81NDFjMDUtOGQ3ZC00MmI4LWFiMDAtN2ZiYmFlNmY5NDM3 LzEvQlVqTzN4Y0NudG1LRUlFVHhzRUo3S3pOZ3V3LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMDkGCCsGAQUFBwEHAQH/BCowKDAmBAIAATAgAwQAV+OMAwQC l/sgMAwDBAOX+ygDBACX+yoDBACX+zwwDQYJKoZIhvcNAQELBQADggEBAHveVJdw yEw9/zHl1M9/fdwiJI1ds2n2Llmrw/YopZkEK0bXcJ+jdKPt/rO3U8XfjVZrBSbO nh1O35Xu1Mc36O1qin/MHEyvV8gvLNMZF+Msvp3M5lkljYaKTNxLxFIRuMnx1d0M G2+UHhjTtow5qWD0qScsm0O7GtGejbUvQ1K8QU6g2I3jI48/ynW8PCzVSzZ9C0EZ JbCejNaivmDEciB7jQGk01Jz3jkn2KljJbuKdyUL565KQyu9dXQBdJNrTp6mApeP q4d7u1A8EwH7JxSX1fTPo+fzVOdkodm+DgFr1sA5XJRID12AiDtJ7XtaSKPDGTYO saKQJG8GAbtH6EI= -----END CERTIFICATE-----Generated at Mon Jan 26 17:24:27 2026 by rpki-client