This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/19/0b7271-0221-460e-831a-dc884f1be3e5/1/RB5D86Eez18oD-QABqEilaFp2nQ.roa File: RB5D86Eez18oD-QABqEilaFp2nQ.roa (raw, json) Hash identifier: cNT5vI1+Epdr8/RiwTV50sHhN6dBP41X/USYdNru1kM= Subject key identifier: 44:1E:43:F3:A1:1E:CF:5F:28:0F:E4:00:06:A1:22:95:A1:69:DA:74 Certificate issuer: /CN=c6cfd94237efd200dd0b116e1f6f9b7bca659ca7 Certificate serial: 019B7CED92C9191B1BAEC978099B4DCE97B6 Authority key identifier: C6:CF:D9:42:37:EF:D2:00:DD:0B:11:6E:1F:6F:9B:7B:CA:65:9C:A7 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xs_ZQjfv0gDdCxFuH2-be8plnKc.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/19/0b7271-0221-460e-831a-dc884f1be3e5/1/RB5D86Eez18oD-QABqEilaFp2nQ.roa Signing time: Fri 02 Jan 2026 04:18:22 +0000 ROA not before: Fri 02 Jan 2026 04:18:22 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 8991 IP address blocks: 192.135.166.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/19/0b7271-0221-460e-831a-dc884f1be3e5/1/xs_ZQjfv0gDdCxFuH2-be8plnKc.crl rsync://rpki.ripe.net/repository/DEFAULT/19/0b7271-0221-460e-831a-dc884f1be3e5/1/xs_ZQjfv0gDdCxFuH2-be8plnKc.mft rsync://rpki.ripe.net/repository/DEFAULT/xs_ZQjfv0gDdCxFuH2-be8plnKc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 03 Feb 2026 06:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7c:ed:92:c9:19:1b:1b:ae:c9:78:09:9b:4d:ce:97:b6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=c6cfd94237efd200dd0b116e1f6f9b7bca659ca7 Validity Not Before: Jan 2 04:18:22 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=441e43f3a11ecf5f280fe40006a12295a169da74 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:f9:fc:39:d9:c8:45:31:76:49:9a:2e:0d:00: 33:c8:da:da:a4:8c:ab:7c:a6:49:36:84:b7:b5:c0: 02:37:3e:fd:31:a7:43:38:9e:17:2e:30:ee:61:8f: 9c:0e:87:3e:4c:07:79:4c:35:74:55:39:34:2c:32: 9d:e1:cb:6e:a2:58:41:8b:ff:95:97:ba:2d:b3:37: 32:7f:14:3f:4f:52:92:93:83:32:74:ea:ab:02:b9: 1f:b9:13:e0:8f:14:ce:11:f1:ef:0f:d7:17:9e:9e: 8e:21:6b:ea:cd:bb:6d:a5:d6:14:9b:77:48:2a:7f: f2:b2:6b:2d:5b:7b:e7:39:d6:5a:eb:b3:c1:b1:ed: f6:7d:55:be:55:fb:79:32:db:3a:6c:b0:a2:53:40: 4d:0c:b3:f1:8f:4a:a1:e0:d8:55:52:96:59:52:73: e0:02:2d:3c:d9:f8:76:bf:bf:7c:8f:db:22:74:b2: 96:8d:4e:11:a5:c3:53:d2:24:4b:20:c1:3a:66:dd: 9c:eb:a0:bd:c3:7e:2c:db:2a:8d:58:bc:ca:bc:b4: c7:bd:2a:d2:5d:ff:db:45:66:98:98:85:74:1e:f0: 30:7a:71:64:8e:ff:53:a0:9f:4a:ac:d5:79:61:3e: dd:8a:e1:80:d9:3b:37:1b:b7:3a:b9:ad:4a:d7:aa: 21:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 44:1E:43:F3:A1:1E:CF:5F:28:0F:E4:00:06:A1:22:95:A1:69:DA:74 X509v3 Authority Key Identifier: keyid:C6:CF:D9:42:37:EF:D2:00:DD:0B:11:6E:1F:6F:9B:7B:CA:65:9C:A7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xs_ZQjfv0gDdCxFuH2-be8plnKc.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/19/0b7271-0221-460e-831a-dc884f1be3e5/1/RB5D86Eez18oD-QABqEilaFp2nQ.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/19/0b7271-0221-460e-831a-dc884f1be3e5/1/xs_ZQjfv0gDdCxFuH2-be8plnKc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 192.135.166.0/24 Signature Algorithm: sha256WithRSAEncryption 07:a5:d2:9b:55:0f:34:4e:c7:13:62:af:11:d0:9a:7c:91:76: 85:21:fb:1a:0c:ed:a6:28:16:03:74:30:34:13:8a:09:50:53: df:e7:46:5e:ee:8b:e6:ad:6b:c8:12:e8:05:f6:b9:19:35:57: 44:ee:46:5d:98:f5:62:fe:ad:60:85:f8:2c:fc:3c:9a:0d:7c: ec:a3:5a:df:f1:3a:dd:fa:67:50:64:32:aa:1a:4b:73:b2:57: 97:17:0a:84:66:3d:42:88:cf:66:d9:08:20:a1:b0:ec:f5:ae: 54:f9:4f:9b:fc:cf:12:de:c4:b2:a9:5a:bd:8b:cd:e8:93:26: d0:7e:44:ea:6f:35:86:63:1f:86:b3:5e:e3:7e:f9:e9:23:80: ee:cb:70:4b:4e:c8:df:d3:e1:1a:52:45:8a:a3:38:26:c9:a4: c5:dc:89:07:dc:aa:5f:c6:a0:3f:8d:79:56:45:86:d3:93:fb: 07:91:cb:0d:4f:01:ac:cd:ec:50:5e:e5:c8:69:2b:7f:be:2f: 2c:95:e0:06:4c:dd:d5:7b:7d:07:b9:1d:75:80:eb:bd:de:86: 2c:60:45:f9:cb:2e:c0:b6:2d:14:5c:a5:ba:93:7d:8b:ab:5b: 22:30:f3:de:73:28:19:07:58:96:8a:6e:3c:d9:58:4d:2a:8d: 93:02:fb:01 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt87ZLJGRsbrsl4CZtNzpe2MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGM2Y2ZkOTQyMzdlZmQyMDBkZDBiMTE2ZTFmNmY5YjdiY2E2 NTljYTcwHhcNMjYwMTAyMDQxODIyWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg0NDFlNDNmM2ExMWVjZjVmMjgwZmU0MDAwNmExMjI5NWExNjlkYTc0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxvn8OdnIRTF2SZouDQAzyNrapIyr fKZJNoS3tcACNz79MadDOJ4XLjDuYY+cDoc+TAd5TDV0VTk0LDKd4ctuolhBi/+V l7otszcyfxQ/T1KSk4MydOqrArkfuRPgjxTOEfHvD9cXnp6OIWvqzbttpdYUm3dI Kn/ysmstW3vnOdZa67PBse32fVW+Vft5Mts6bLCiU0BNDLPxj0qh4NhVUpZZUnPg Ai082fh2v798j9sidLKWjU4RpcNT0iRLIME6Zt2c66C9w34s2yqNWLzKvLTHvSrS Xf/bRWaYmIV0HvAwenFkjv9ToJ9KrNV5YT7diuGA2Ts3G7c6ua1K16ohawIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFEQeQ/OhHs9fKA/kAAahIpWhadp0MB8GA1UdIwQY MBaAFMbP2UI379IA3QsRbh9vm3vKZZynMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQveHNfWlFqZnYwZ0RkQ3hGdUgyLWJlOHBsbktjLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xOS8wYjcyNzEtMDIyMS00NjBlLTgzMWEt ZGM4ODRmMWJlM2U1LzEvUkI1RDg2RWV6MThvRC1RQUJxRWlsYUZwMm5RLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xOS8wYjcyNzEtMDIyMS00NjBlLTgzMWEtZGM4ODRmMWJlM2U1 LzEveHNfWlFqZnYwZ0RkQ3hGdUgyLWJlOHBsbktjLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAwIemMA0G CSqGSIb3DQEBCwUAA4IBAQAHpdKbVQ80TscTYq8R0Jp8kXaFIfsaDO2mKBYDdDA0 E4oJUFPf50Ze7ovmrWvIEugF9rkZNVdE7kZdmPVi/q1ghfgs/DyaDXzso1rf8Trd +mdQZDKqGktzsleXFwqEZj1CiM9m2QggobDs9a5U+U+b/M8S3sSyqVq9i83okybQ fkTqbzWGYx+Gs17jfvnpI4Duy3BLTsjf0+EaUkWKozgmyaTF3IkH3KpfxqA/jXlW RYbTk/sHkcsNTwGszexQXuXIaSt/vi8sleAGTN3Ve30HuR11gOu93oYsYEX5yy7A ti0UXKW6k32Lq1siMPPecygZB1iWim482VhNKo2TAvsB -----END CERTIFICATE-----Generated at Mon Feb 2 14:03:22 2026 by rpki-client