This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/25/3a0026-2847-4276-96ba-1747378e6594/1/b5oUI_QaX4CIrD9gVfpSglG-l0g.roa File: b5oUI_QaX4CIrD9gVfpSglG-l0g.roa (raw, json) Hash identifier: yb9qoXzX3+CuYySvgkHy2fr0k4HAjW35z3hNaIhuEm8= Subject key identifier: 6F:9A:14:23:F4:1A:5F:80:88:AC:3F:60:55:FA:52:82:51:BE:97:48 Certificate issuer: /CN=8309f81737d6f17e7c1ad58849aff71c50064f04 Certificate serial: 019B797EB969F747CA5CEEAE3AF4D30B4C86 Authority key identifier: 83:09:F8:17:37:D6:F1:7E:7C:1A:D5:88:49:AF:F7:1C:50:06:4F:04 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gwn4FzfW8X58GtWISa_3HFAGTwQ.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/25/3a0026-2847-4276-96ba-1747378e6594/1/b5oUI_QaX4CIrD9gVfpSglG-l0g.roa Signing time: Thu 01 Jan 2026 12:18:26 +0000 ROA not before: Thu 01 Jan 2026 12:18:26 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 212944 IP address blocks: 89.35.78.0/23 maxlen: 24 185.163.51.0/24 maxlen: 24 2a07:dfc0::/32 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/25/3a0026-2847-4276-96ba-1747378e6594/1/gwn4FzfW8X58GtWISa_3HFAGTwQ.crl rsync://rpki.ripe.net/repository/DEFAULT/25/3a0026-2847-4276-96ba-1747378e6594/1/gwn4FzfW8X58GtWISa_3HFAGTwQ.mft rsync://rpki.ripe.net/repository/DEFAULT/gwn4FzfW8X58GtWISa_3HFAGTwQ.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 12:00:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:79:7e:b9:69:f7:47:ca:5c:ee:ae:3a:f4:d3:0b:4c:86 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8309f81737d6f17e7c1ad58849aff71c50064f04 Validity Not Before: Jan 1 12:18:26 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=6f9a1423f41a5f8088ac3f6055fa528251be9748 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:89:3f:29:e9:6e:a5:5f:bf:02:dc:44:20:67: bc:58:a6:10:03:46:a1:36:8b:3e:cb:cf:c7:98:cc: 36:2b:29:63:b0:97:91:66:ca:72:60:ab:98:49:1c: 68:b7:a5:8b:77:fc:53:12:66:39:70:92:56:41:81: 22:42:ef:6a:0f:af:53:7b:6f:20:59:f8:20:99:aa: 78:3f:30:69:b2:20:5d:96:11:c8:19:4b:97:93:25: e5:24:d5:d0:c1:dc:e1:18:fb:1a:04:13:fa:58:a1: bf:e3:db:f0:01:d9:fd:ae:d5:88:05:c9:52:00:46: d2:a9:b7:21:ee:ff:72:8e:c2:ee:3a:8a:b4:f9:0d: 89:a0:41:c6:65:3d:55:9b:8f:b2:12:cd:ce:00:31: 15:22:9e:79:b6:0b:81:5a:e9:54:63:07:2c:55:a1: 62:18:c7:24:3f:a3:65:0a:b8:82:96:04:d7:c3:db: c3:43:e8:63:74:84:97:32:18:62:e6:9f:59:36:c6: f1:f8:66:5b:5a:3c:8b:da:c7:4f:81:46:1b:dc:e4: 16:aa:9a:54:ca:c9:84:70:a0:78:55:5d:d4:56:9e: f0:28:7f:1f:32:a8:7e:4e:1b:e1:4c:1b:a7:db:cf: ad:d5:93:89:54:bb:cc:b2:8a:4e:bf:25:54:a1:c6: e3:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6F:9A:14:23:F4:1A:5F:80:88:AC:3F:60:55:FA:52:82:51:BE:97:48 X509v3 Authority Key Identifier: keyid:83:09:F8:17:37:D6:F1:7E:7C:1A:D5:88:49:AF:F7:1C:50:06:4F:04 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gwn4FzfW8X58GtWISa_3HFAGTwQ.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/25/3a0026-2847-4276-96ba-1747378e6594/1/b5oUI_QaX4CIrD9gVfpSglG-l0g.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/25/3a0026-2847-4276-96ba-1747378e6594/1/gwn4FzfW8X58GtWISa_3HFAGTwQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 89.35.78.0/23 185.163.51.0/24 IPv6: 2a07:dfc0::/32 Signature Algorithm: sha256WithRSAEncryption 92:bf:67:46:b5:f1:97:dd:48:5b:f8:ad:f0:7c:80:68:3c:c4: 6f:ad:48:3b:ca:fd:d8:e6:9a:e3:d2:de:b0:8b:80:32:d7:35: c9:31:c9:9e:d2:01:9b:d0:44:42:cf:9d:83:2c:ce:e5:3b:84: ef:a5:db:1d:87:ee:dd:13:c1:50:2f:e2:40:e1:93:39:6a:8c: e6:a4:c6:35:35:9d:6a:32:c2:1e:a2:ab:30:a1:5a:b3:7b:55: ed:3a:da:8c:18:52:83:01:a0:d7:cb:a3:9f:63:a2:bf:26:c5: d5:d5:61:d0:32:a0:8f:7c:e1:3e:fa:a2:bd:e8:0b:1d:cb:19: f2:4b:b7:61:c8:9d:4f:38:a9:dd:4f:64:05:9d:58:7e:fa:e5: 1c:c2:7d:27:92:0a:bd:88:ef:bc:b1:0f:61:f2:ab:53:c6:5c: 52:1b:f0:87:7a:ba:59:eb:64:33:f4:52:b9:cd:29:fa:77:c3: a9:f2:ef:13:c6:8d:fe:1e:5d:ae:c8:54:ab:ab:27:a6:b0:c0: 64:bd:a0:9a:e8:14:80:16:8e:c4:b1:41:12:cf:c9:3e:be:cf: 6c:91:49:1e:1a:c0:ff:91:1b:29:59:b4:48:7b:00:3e:70:87: 47:d2:ae:ae:eb:16:9e:ac:56:ac:99:17:6a:1c:8e:df:3b:04: 23:65:4a:9c -----BEGIN CERTIFICATE----- MIIFEjCCA/qgAwIBAgISAZt5frlp90fKXO6uOvTTC0yGMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDgzMDlmODE3MzdkNmYxN2U3YzFhZDU4ODQ5YWZmNzFjNTAw NjRmMDQwHhcNMjYwMTAxMTIxODI2WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg2ZjlhMTQyM2Y0MWE1ZjgwODhhYzNmNjA1NWZhNTI4MjUxYmU5NzQ4MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAoYk/KelupV+/AtxEIGe8WKYQA0ah Nos+y8/HmMw2KyljsJeRZspyYKuYSRxot6WLd/xTEmY5cJJWQYEiQu9qD69Te28g Wfggmap4PzBpsiBdlhHIGUuXkyXlJNXQwdzhGPsaBBP6WKG/49vwAdn9rtWIBclS AEbSqbch7v9yjsLuOoq0+Q2JoEHGZT1Vm4+yEs3OADEVIp55tguBWulUYwcsVaFi GMckP6NlCriClgTXw9vDQ+hjdISXMhhi5p9ZNsbx+GZbWjyL2sdPgUYb3OQWqppU ysmEcKB4VV3UVp7wKH8fMqh+ThvhTBun28+t1ZOJVLvMsopOvyVUocbj/wIDAQAB o4ICHjCCAhowHQYDVR0OBBYEFG+aFCP0Gl+AiKw/YFX6UoJRvpdIMB8GA1UdIwQY MBaAFIMJ+Bc31vF+fBrViEmv9xxQBk8EMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvZ3duNEZ6Zlc4WDU4R3RXSVNhXzNIRkFHVHdRLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yNS8zYTAwMjYtMjg0Ny00Mjc2LTk2YmEt MTc0NzM3OGU2NTk0LzEvYjVvVUlfUWFYNENJckQ5Z1ZmcFNnbEctbDBnLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yNS8zYTAwMjYtMjg0Ny00Mjc2LTk2YmEtMTc0NzM3OGU2NTk0 LzEvZ3duNEZ6Zlc4WDU4R3RXSVNhXzNIRkFHVHdRLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMDQGCCsGAQUFBwEHAQH/BCUwIzASBAIAATAMAwQBWSNOAwQA uaMzMA0EAgACMAcDBQAqB9/AMA0GCSqGSIb3DQEBCwUAA4IBAQCSv2dGtfGX3Uhb +K3wfIBoPMRvrUg7yv3Y5prj0t6wi4Ay1zXJMcme0gGb0ERCz52DLM7lO4Tvpdsd h+7dE8FQL+JA4ZM5aozmpMY1NZ1qMsIeoqswoVqze1XtOtqMGFKDAaDXy6OfY6K/ JsXV1WHQMqCPfOE++qK96AsdyxnyS7dhyJ1POKndT2QFnVh++uUcwn0nkgq9iO+8 sQ9h8qtTxlxSG/CHerpZ62Qz9FK5zSn6d8Op8u8Txo3+Hl2uyFSrqyemsMBkvaCa 6BSAFo7EsUESz8k+vs9skUkeGsD/kRspWbRIewA+cIdH0q6u6xaerFasmRdqHI7f OwQjZUqc -----END CERTIFICATE-----Generated at Mon Feb 9 21:00:56 2026 by rpki-client