This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2f/c212a2-37e9-4ad6-bbe6-835a5842b94c/1/SwYgBW9ALm4cVPOKM-XYBIFXbys.roa File: SwYgBW9ALm4cVPOKM-XYBIFXbys.roa (raw, json) Hash identifier: 19/i8e+hgUTh6yjnRYpTxmz4YU3y1nqkTgNB/sr2lZs= Subject key identifier: 4B:06:20:05:6F:40:2E:6E:1C:54:F3:8A:33:E5:D8:04:81:57:6F:2B Certificate issuer: /CN=bb4731884ba0f573fa618b6e7ad503a12c965af3 Certificate serial: 019B7A59F622D0B45B75588AD9B1A590F164 Authority key identifier: BB:47:31:88:4B:A0:F5:73:FA:61:8B:6E:7A:D5:03:A1:2C:96:5A:F3 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/u0cxiEug9XP6YYtuetUDoSyWWvM.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2f/c212a2-37e9-4ad6-bbe6-835a5842b94c/1/SwYgBW9ALm4cVPOKM-XYBIFXbys.roa Signing time: Thu 01 Jan 2026 16:17:54 +0000 ROA not before: Thu 01 Jan 2026 16:17:54 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 200308 IP address blocks: 185.248.28.0/22 maxlen: 24 195.189.245.0/24 maxlen: 24 2a0d:dd80::/29 maxlen: 29 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2f/c212a2-37e9-4ad6-bbe6-835a5842b94c/1/u0cxiEug9XP6YYtuetUDoSyWWvM.crl rsync://rpki.ripe.net/repository/DEFAULT/2f/c212a2-37e9-4ad6-bbe6-835a5842b94c/1/u0cxiEug9XP6YYtuetUDoSyWWvM.mft rsync://rpki.ripe.net/repository/DEFAULT/u0cxiEug9XP6YYtuetUDoSyWWvM.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 22 Jan 2026 03:00:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7a:59:f6:22:d0:b4:5b:75:58:8a:d9:b1:a5:90:f1:64 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=bb4731884ba0f573fa618b6e7ad503a12c965af3 Validity Not Before: Jan 1 16:17:54 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=4b0620056f402e6e1c54f38a33e5d80481576f2b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:c6:05:66:df:10:ab:64:20:de:02:02:aa:0b: 46:20:a3:b6:3a:b8:d2:a1:0d:44:7b:53:0d:4e:26: 87:bf:17:72:83:be:cc:28:d4:db:74:93:f0:64:2a: 19:ea:9c:b2:53:8e:fc:b3:2d:ed:6b:dd:18:5c:0f: 98:23:b2:a8:dc:ba:99:fb:a1:4b:cc:c8:10:32:06: e1:56:17:a6:33:f5:f5:e3:ae:5c:4a:21:97:eb:d2: 07:bd:61:af:13:31:02:3c:33:19:ad:07:3c:51:a6: 67:45:d5:76:3b:2c:9e:e8:49:e5:e7:00:30:4b:b0: 88:52:5c:3e:08:76:bd:b4:31:f6:69:63:d4:88:24: 10:a9:0a:32:00:cf:1f:d1:22:a4:58:4b:1f:bc:45: a8:59:e9:09:ad:9f:d7:95:27:3e:58:b8:c3:5b:c0: 70:1f:ad:f6:23:fa:d3:ac:2e:ab:2d:72:e5:b3:2c: d6:23:0c:2f:29:00:eb:6d:14:47:56:5b:ef:92:e4: 85:10:ea:6c:68:c5:95:18:6b:79:e2:11:c7:d7:75: e6:c1:36:51:91:0c:1f:04:6b:23:4c:d6:3e:46:80: 30:65:ef:45:42:2f:bf:4b:42:7a:bc:0d:ed:bb:d4: 7c:43:d7:75:ae:7b:b1:6e:25:2a:93:3f:2a:00:ca: e4:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4B:06:20:05:6F:40:2E:6E:1C:54:F3:8A:33:E5:D8:04:81:57:6F:2B X509v3 Authority Key Identifier: keyid:BB:47:31:88:4B:A0:F5:73:FA:61:8B:6E:7A:D5:03:A1:2C:96:5A:F3 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/u0cxiEug9XP6YYtuetUDoSyWWvM.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/c212a2-37e9-4ad6-bbe6-835a5842b94c/1/SwYgBW9ALm4cVPOKM-XYBIFXbys.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/c212a2-37e9-4ad6-bbe6-835a5842b94c/1/u0cxiEug9XP6YYtuetUDoSyWWvM.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.248.28.0/22 195.189.245.0/24 IPv6: 2a0d:dd80::/29 Signature Algorithm: sha256WithRSAEncryption 3a:9d:79:57:56:8d:87:25:6f:77:26:84:e1:90:80:43:35:6a: 4a:43:11:4a:71:d7:fb:c1:d4:40:81:ef:ea:c6:c7:90:37:68: 3b:f8:55:40:e8:24:ab:e6:b2:87:14:34:4b:15:b7:ce:a9:81: 1d:c3:ea:26:1d:24:c8:d3:5d:d5:3e:31:e7:59:52:80:df:76: b6:fa:16:b7:4c:b7:78:11:16:26:bc:96:44:90:26:21:56:db: b3:ab:cd:ed:b8:73:15:e9:4d:cf:65:c6:0c:be:ab:35:65:3a: 26:40:90:9c:f7:41:44:7c:c6:ab:21:fb:06:10:c3:89:9f:e9: 6b:15:49:5a:59:d7:f4:67:ee:46:5e:a8:d1:bf:8c:a9:67:61: 6e:cc:6f:d3:6c:3e:b4:ad:23:d7:76:20:0c:d7:cd:56:35:21: 08:65:f0:26:94:7a:64:c8:e8:52:12:b9:39:20:b2:0a:82:3b: fe:55:0a:1f:2f:41:cb:ed:a1:8a:c6:2b:b9:85:30:1d:a6:31: cd:6e:89:19:ed:eb:4d:68:3f:a1:8c:d0:6c:62:64:16:7a:3d: 8c:9c:c5:98:bb:27:68:6f:28:ea:fc:90:28:63:5d:3d:5e:81: de:bc:f3:c8:92:0a:7b:5e:b7:a9:c9:c3:71:5b:d7:66:d5:7b: 15:29:cf:83 -----BEGIN CERTIFICATE----- MIIFEjCCA/qgAwIBAgISAZt6WfYi0LRbdViK2bGlkPFkMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGJiNDczMTg4NGJhMGY1NzNmYTYxOGI2ZTdhZDUwM2ExMmM5 NjVhZjMwHhcNMjYwMTAxMTYxNzU0WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg0YjA2MjAwNTZmNDAyZTZlMWM1NGYzOGEzM2U1ZDgwNDgxNTc2ZjJiMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAw8YFZt8Qq2Qg3gICqgtGIKO2OrjS oQ1Ee1MNTiaHvxdyg77MKNTbdJPwZCoZ6pyyU478sy3ta90YXA+YI7Ko3LqZ+6FL zMgQMgbhVhemM/X1465cSiGX69IHvWGvEzECPDMZrQc8UaZnRdV2Oyye6Enl5wAw S7CIUlw+CHa9tDH2aWPUiCQQqQoyAM8f0SKkWEsfvEWoWekJrZ/XlSc+WLjDW8Bw H632I/rTrC6rLXLlsyzWIwwvKQDrbRRHVlvvkuSFEOpsaMWVGGt54hHH13XmwTZR kQwfBGsjTNY+RoAwZe9FQi+/S0J6vA3tu9R8Q9d1rnuxbiUqkz8qAMrkzQIDAQAB o4ICHjCCAhowHQYDVR0OBBYEFEsGIAVvQC5uHFTzijPl2ASBV28rMB8GA1UdIwQY MBaAFLtHMYhLoPVz+mGLbnrVA6EsllrzMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvdTBjeGlFdWc5WFA2WVl0dWV0VURvU3lXV3ZNLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yZi9jMjEyYTItMzdlOS00YWQ2LWJiZTYt ODM1YTU4NDJiOTRjLzEvU3dZZ0JXOUFMbTRjVlBPS00tWFlCSUZYYnlzLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yZi9jMjEyYTItMzdlOS00YWQ2LWJiZTYtODM1YTU4NDJiOTRj LzEvdTBjeGlFdWc5WFA2WVl0dWV0VURvU3lXV3ZNLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMDQGCCsGAQUFBwEHAQH/BCUwIzASBAIAATAMAwQCufgcAwQA w731MA0EAgACMAcDBQMqDd2AMA0GCSqGSIb3DQEBCwUAA4IBAQA6nXlXVo2HJW93 JoThkIBDNWpKQxFKcdf7wdRAge/qxseQN2g7+FVA6CSr5rKHFDRLFbfOqYEdw+om HSTI013VPjHnWVKA33a2+ha3TLd4ERYmvJZEkCYhVtuzq83tuHMV6U3PZcYMvqs1 ZTomQJCc90FEfMarIfsGEMOJn+lrFUlaWdf0Z+5GXqjRv4ypZ2FuzG/TbD60rSPX diAM181WNSEIZfAmlHpkyOhSErk5ILIKgjv+VQofL0HL7aGKxiu5hTAdpjHNbokZ 7etNaD+hjNBsYmQWej2MnMWYuydobyjq/JAoY109XoHevPPIkgp7XrepycNxW9dm 1XsVKc+D -----END CERTIFICATE-----Generated at Wed Jan 21 10:35:00 2026 by rpki-client