This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/16/bf656b-ff93-454b-a39e-3b1131e504b8/1/tCO87qgLeHdiJcQ1IV_bd46Jvho.roa File: tCO87qgLeHdiJcQ1IV_bd46Jvho.roa (raw, json) Hash identifier: 2SSHDUuNwyIUrIbmZYF0QjOFxPKwxanOkPswUq79oUo= Subject key identifier: B4:23:BC:EE:A8:0B:78:77:62:25:C4:35:21:5F:DB:77:8E:89:BE:1A Certificate issuer: /CN=601331eccd96d02c1035734cd00a390e8311d942 Certificate serial: 019B7C7F98AC69C568CD876E57591B7A102A Authority key identifier: 60:13:31:EC:CD:96:D0:2C:10:35:73:4C:D0:0A:39:0E:83:11:D9:42 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YBMx7M2W0CwQNXNM0Ao5DoMR2UI.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/16/bf656b-ff93-454b-a39e-3b1131e504b8/1/tCO87qgLeHdiJcQ1IV_bd46Jvho.roa Signing time: Fri 02 Jan 2026 02:18:15 +0000 ROA not before: Fri 02 Jan 2026 02:18:15 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 200076 IP address blocks: 194.59.24.0/22 maxlen: 22 2a0c:fac0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/16/bf656b-ff93-454b-a39e-3b1131e504b8/1/YBMx7M2W0CwQNXNM0Ao5DoMR2UI.crl rsync://rpki.ripe.net/repository/DEFAULT/16/bf656b-ff93-454b-a39e-3b1131e504b8/1/YBMx7M2W0CwQNXNM0Ao5DoMR2UI.mft rsync://rpki.ripe.net/repository/DEFAULT/YBMx7M2W0CwQNXNM0Ao5DoMR2UI.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 27 Jan 2026 15:35:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7c:7f:98:ac:69:c5:68:cd:87:6e:57:59:1b:7a:10:2a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=601331eccd96d02c1035734cd00a390e8311d942 Validity Not Before: Jan 2 02:18:15 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=b423bceea80b78776225c435215fdb778e89be1a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:b6:6f:f0:7e:19:1f:b1:bc:c4:24:4c:e6:c7: e4:b0:31:0c:81:a1:80:de:0d:74:73:93:28:96:9d: ce:cd:5c:f2:49:8c:5f:fe:bf:35:02:d9:e9:c8:b5: ed:52:b8:00:6d:b3:cf:ec:1c:d1:48:3e:9c:bd:17: d3:b4:46:85:97:9d:65:f3:f1:2e:73:56:6a:4c:1b: ca:e9:21:48:2f:90:64:7a:f8:e2:50:48:05:ab:5c: d8:d7:fa:46:ca:14:0a:d6:a7:27:f4:d0:ee:35:99: dd:b3:60:b7:22:ee:5b:26:76:fc:78:a5:5e:6d:1b: c5:73:d9:e1:77:38:5a:09:d3:e2:02:c6:0c:36:1e: a4:fc:3c:79:0f:f5:cb:20:9b:e7:1d:06:cd:3a:14: f4:f4:c3:99:87:da:ca:d1:3f:d8:69:68:da:db:62: ac:d1:27:e7:79:73:42:df:f5:47:d2:53:d9:36:49: 61:14:11:d3:25:a6:ee:39:b6:b3:fc:f2:d0:33:e8: 68:bf:07:7e:4f:ef:5b:59:bb:83:22:25:39:71:65: 12:72:5c:b0:4e:32:22:8f:12:42:70:67:ce:f3:51: ba:72:9c:82:49:76:f5:9b:bc:25:94:b1:a2:5e:9c: 4c:64:a7:be:44:f8:db:d4:e4:29:47:5a:4b:23:53: a5:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B4:23:BC:EE:A8:0B:78:77:62:25:C4:35:21:5F:DB:77:8E:89:BE:1A X509v3 Authority Key Identifier: keyid:60:13:31:EC:CD:96:D0:2C:10:35:73:4C:D0:0A:39:0E:83:11:D9:42 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YBMx7M2W0CwQNXNM0Ao5DoMR2UI.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/16/bf656b-ff93-454b-a39e-3b1131e504b8/1/tCO87qgLeHdiJcQ1IV_bd46Jvho.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/16/bf656b-ff93-454b-a39e-3b1131e504b8/1/YBMx7M2W0CwQNXNM0Ao5DoMR2UI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 194.59.24.0/22 IPv6: 2a0c:fac0::/48 Signature Algorithm: sha256WithRSAEncryption 7f:b0:a7:f8:fd:a0:8b:62:4d:a6:d1:34:19:75:ba:70:99:20: 00:df:c3:7c:ed:cc:c8:c3:c6:57:1a:e5:c6:ce:b2:2c:61:34: 09:a7:24:f8:be:84:9a:d3:78:dd:72:2c:e5:84:32:9e:04:28: 05:6f:07:7d:c3:c8:c3:5d:d7:0a:14:29:7d:77:92:60:39:08: c0:ce:ea:66:3d:97:c2:37:be:36:e9:55:8a:86:d3:97:e8:ff: 38:96:e5:d6:5d:ef:87:0c:1b:35:66:6a:bb:44:18:3b:60:e1: 48:c8:cb:0f:78:70:3f:1a:a4:f7:ab:34:e2:ec:e4:f2:33:41: 6e:09:2e:eb:f9:73:ff:49:99:b6:f3:42:73:e2:21:33:eb:ab: 9d:51:06:f8:d4:86:ba:78:42:a5:c8:8c:7d:ba:ff:6c:f3:18: 19:7f:25:88:9c:ee:dc:33:3c:aa:c0:d0:98:58:9e:24:d4:07: 38:bb:c9:16:1d:8a:71:7f:26:d7:90:bb:ea:27:51:16:ca:34: 18:50:9d:d2:bd:b6:b4:af:ac:34:5e:ab:75:6f:fa:e2:2e:22: ab:8b:ab:53:55:17:f1:55:b6:2f:45:e6:bb:2d:f8:bf:24:35: 23:40:a9:93:80:fb:9b:fa:6d:48:15:15:5d:cf:32:8c:b1:ff: 60:00:48:a1 -----BEGIN CERTIFICATE----- MIIFDjCCA/agAwIBAgISAZt8f5isacVozYduV1kbehAqMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDYwMTMzMWVjY2Q5NmQwMmMxMDM1NzM0Y2QwMGEzOTBlODMx MWQ5NDIwHhcNMjYwMTAyMDIxODE1WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhiNDIzYmNlZWE4MGI3ODc3NjIyNWM0MzUyMTVmZGI3NzhlODliZTFhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwLZv8H4ZH7G8xCRM5sfksDEMgaGA 3g10c5Molp3OzVzySYxf/r81AtnpyLXtUrgAbbPP7BzRSD6cvRfTtEaFl51l8/Eu c1ZqTBvK6SFIL5BkevjiUEgFq1zY1/pGyhQK1qcn9NDuNZnds2C3Iu5bJnb8eKVe bRvFc9nhdzhaCdPiAsYMNh6k/Dx5D/XLIJvnHQbNOhT09MOZh9rK0T/YaWja22Ks 0SfneXNC3/VH0lPZNklhFBHTJabuObaz/PLQM+hovwd+T+9bWbuDIiU5cWUSclyw TjIijxJCcGfO81G6cpyCSXb1m7wllLGiXpxMZKe+RPjb1OQpR1pLI1Ol2wIDAQAB o4ICGjCCAhYwHQYDVR0OBBYEFLQjvO6oC3h3YiXENSFf23eOib4aMB8GA1UdIwQY MBaAFGATMezNltAsEDVzTNAKOQ6DEdlCMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvWUJNeDdNMlcwQ3dRTlhOTTBBbzVEb01SMlVJLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xNi9iZjY1NmItZmY5My00NTRiLWEzOWUt M2IxMTMxZTUwNGI4LzEvdENPODdxZ0xlSGRpSmNRMUlWX2JkNDZKdmhvLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xNi9iZjY1NmItZmY5My00NTRiLWEzOWUtM2IxMTMxZTUwNGI4 LzEvWUJNeDdNMlcwQ3dRTlhOTTBBbzVEb01SMlVJLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMDAGCCsGAQUFBwEHAQH/BCEwHzAMBAIAATAGAwQCwjsYMA8E AgACMAkDBwAqDPrAAAAwDQYJKoZIhvcNAQELBQADggEBAH+wp/j9oItiTabRNBl1 unCZIADfw3ztzMjDxlca5cbOsixhNAmnJPi+hJrTeN1yLOWEMp4EKAVvB33DyMNd 1woUKX13kmA5CMDO6mY9l8I3vjbpVYqG05fo/ziW5dZd74cMGzVmartEGDtg4UjI yw94cD8apPerNOLs5PIzQW4JLuv5c/9JmbbzQnPiITPrq51RBvjUhrp4QqXIjH26 /2zzGBl/JYic7twzPKrA0JhYniTUBzi7yRYdinF/JteQu+onURbKNBhQndK9trSv rDReq3Vv+uIuIquLq1NVF/FVti9F5rst+L8kNSNAqZOA+5v6bUgVFV3PMoyx/2AA SKE= -----END CERTIFICATE-----Generated at Mon Jan 26 22:36:34 2026 by rpki-client