This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/34/28e9cb-8ef3-482a-8ed1-2f50708ac57f/1/bdduhsz8vwLBqSyTE27HjB5Ob78.roa File: bdduhsz8vwLBqSyTE27HjB5Ob78.roa (raw, json) Hash identifier: aokpOL01pXRHSdD/dTgVwAX6LVkz2WKtZLNrBNvxDiw= Subject key identifier: 6D:D7:6E:86:CC:FC:BF:02:C1:A9:2C:93:13:6E:C7:8C:1E:4E:6F:BF Certificate issuer: /CN=08175e0a36c789d31420b33303fbc7324c7c574b Certificate serial: 019B7EA4863F751E037CAF4453FDCE81B2E4 Authority key identifier: 08:17:5E:0A:36:C7:89:D3:14:20:B3:33:03:FB:C7:32:4C:7C:57:4B Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CBdeCjbHidMUILMzA_vHMkx8V0s.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/34/28e9cb-8ef3-482a-8ed1-2f50708ac57f/1/bdduhsz8vwLBqSyTE27HjB5Ob78.roa Signing time: Fri 02 Jan 2026 12:17:49 +0000 ROA not before: Fri 02 Jan 2026 12:17:49 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 62248 IP address blocks: 185.42.168.0/24 maxlen: 24 185.42.169.0/24 maxlen: 24 185.42.170.0/24 maxlen: 24 185.42.171.0/24 maxlen: 24 185.73.132.0/24 maxlen: 24 185.73.134.0/24 maxlen: 24 185.73.135.0/24 maxlen: 24 2a01:6560::/32 maxlen: 48 2a05:4280::/29 maxlen: 29 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/34/28e9cb-8ef3-482a-8ed1-2f50708ac57f/1/CBdeCjbHidMUILMzA_vHMkx8V0s.crl rsync://rpki.ripe.net/repository/DEFAULT/34/28e9cb-8ef3-482a-8ed1-2f50708ac57f/1/CBdeCjbHidMUILMzA_vHMkx8V0s.mft rsync://rpki.ripe.net/repository/DEFAULT/CBdeCjbHidMUILMzA_vHMkx8V0s.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7e:a4:86:3f:75:1e:03:7c:af:44:53:fd:ce:81:b2:e4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=08175e0a36c789d31420b33303fbc7324c7c574b Validity Not Before: Jan 2 12:17:49 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=6dd76e86ccfcbf02c1a92c93136ec78c1e4e6fbf Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:f5:b2:0a:f0:86:d7:2e:94:8c:6d:bf:bc:d7: 1e:57:5e:66:57:ce:54:36:20:a5:e7:6c:e3:fe:1b: 5d:fd:9f:55:31:92:2c:94:1d:de:3f:30:8a:79:ca: ee:ff:44:ed:1c:5e:1a:95:21:39:46:45:f9:c0:61: e8:e1:2b:26:0b:42:b7:8f:4d:51:6e:60:bc:3a:19: ed:5b:27:c9:37:12:1b:b1:b0:1d:25:36:8e:90:0b: f8:fa:22:b7:a1:2c:d0:bd:e5:ed:63:6c:51:0b:12: 60:c0:36:12:63:e9:d1:92:58:40:d5:29:e4:16:46: 4b:d3:c1:24:70:e6:02:43:06:19:9e:c9:9b:86:f7: e7:71:70:b3:f4:22:af:ea:63:39:ff:d5:eb:a9:86: 25:11:aa:6d:5d:52:ed:9e:3a:3c:ae:b7:a5:32:0e: f5:5a:cd:0a:99:36:79:42:de:84:05:0e:0f:53:87: 7d:03:f4:8f:1d:dd:d4:b1:0a:5a:cd:69:e7:07:cd: 31:56:cb:fa:aa:6a:e1:31:18:c8:9f:c5:46:29:bc: 14:15:45:ad:8f:e2:79:af:d4:49:0b:02:d8:e2:25: 18:56:28:29:ea:eb:87:04:88:82:74:db:e5:ac:51: 6a:28:35:a7:bb:1c:55:03:a3:49:fd:09:81:8b:01: 0b:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6D:D7:6E:86:CC:FC:BF:02:C1:A9:2C:93:13:6E:C7:8C:1E:4E:6F:BF X509v3 Authority Key Identifier: keyid:08:17:5E:0A:36:C7:89:D3:14:20:B3:33:03:FB:C7:32:4C:7C:57:4B X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CBdeCjbHidMUILMzA_vHMkx8V0s.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/34/28e9cb-8ef3-482a-8ed1-2f50708ac57f/1/bdduhsz8vwLBqSyTE27HjB5Ob78.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/34/28e9cb-8ef3-482a-8ed1-2f50708ac57f/1/CBdeCjbHidMUILMzA_vHMkx8V0s.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.42.168.0/22 185.73.132.0/24 185.73.134.0/23 IPv6: 2a01:6560::/32 2a05:4280::/29 Signature Algorithm: sha256WithRSAEncryption 9d:70:11:ce:ac:3a:7a:ea:ec:c3:0a:c2:28:af:51:b9:9e:f1: 07:be:82:f4:cb:44:21:db:a1:08:9f:22:a8:5e:c1:d9:7c:0e: e4:05:c8:5f:ea:4f:e8:42:9e:fc:0d:18:93:df:98:d1:ab:b8: f9:74:ea:58:3e:c3:75:f9:3b:62:bc:f0:51:93:6f:51:67:24: b4:73:a8:a6:ef:d9:d1:14:c3:75:35:79:22:de:d5:d2:a9:99: 01:2d:65:ec:d0:3e:ce:a1:05:8c:95:49:24:ba:fd:76:0d:83: ab:ac:07:4e:5c:2c:13:ef:d3:54:76:90:c4:9d:7f:f3:f0:60: af:3f:cd:d7:7a:71:67:c9:74:81:1a:a6:36:ac:02:fb:4a:e5: 8f:d8:3a:d5:75:9c:38:69:5e:9e:43:b5:05:9b:d2:2c:c6:5c: 3b:be:34:03:79:06:8f:1f:43:11:93:25:86:7e:30:60:87:62: 5f:03:50:65:20:62:ce:8f:4f:2f:dc:0d:bf:92:b4:a8:5d:95: 12:a8:93:99:16:7d:42:82:9d:23:c7:6a:11:4f:51:3d:80:59: 3a:4e:8d:3f:5f:2f:3a:6a:1a:3e:b5:3d:a9:6d:5a:eb:21:10: 88:1a:a6:5a:3d:2f:a4:9a:c4:26:a6:47:96:3c:8b:53:85:ab: 82:f0:40:23 -----BEGIN CERTIFICATE----- MIIFHzCCBAegAwIBAgISAZt+pIY/dR4DfK9EU/3OgbLkMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDA4MTc1ZTBhMzZjNzg5ZDMxNDIwYjMzMzAzZmJjNzMyNGM3 YzU3NGIwHhcNMjYwMTAyMTIxNzQ5WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg2ZGQ3NmU4NmNjZmNiZjAyYzFhOTJjOTMxMzZlYzc4YzFlNGU2ZmJmMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxPWyCvCG1y6UjG2/vNceV15mV85U NiCl52zj/htd/Z9VMZIslB3ePzCKecru/0TtHF4alSE5RkX5wGHo4SsmC0K3j01R bmC8OhntWyfJNxIbsbAdJTaOkAv4+iK3oSzQveXtY2xRCxJgwDYSY+nRklhA1Snk FkZL08EkcOYCQwYZnsmbhvfncXCz9CKv6mM5/9XrqYYlEaptXVLtnjo8rrelMg71 Ws0KmTZ5Qt6EBQ4PU4d9A/SPHd3UsQpazWnnB80xVsv6qmrhMRjIn8VGKbwUFUWt j+J5r9RJCwLY4iUYVigp6uuHBIiCdNvlrFFqKDWnuxxVA6NJ/QmBiwELFQIDAQAB o4ICKzCCAicwHQYDVR0OBBYEFG3XbobM/L8CwakskxNux4weTm+/MB8GA1UdIwQY MBaAFAgXXgo2x4nTFCCzMwP7xzJMfFdLMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvQ0JkZUNqYkhpZE1VSUxNekFfdkhNa3g4VjBzLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zNC8yOGU5Y2ItOGVmMy00ODJhLThlZDEt MmY1MDcwOGFjNTdmLzEvYmRkdWhzejh2d0xCcVN5VEUyN0hqQjVPYjc4LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zNC8yOGU5Y2ItOGVmMy00ODJhLThlZDEtMmY1MDcwOGFjNTdm LzEvQ0JkZUNqYkhpZE1VSUxNekFfdkhNa3g4VjBzLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMEEGCCsGAQUFBwEHAQH/BDIwMDAYBAIAATASAwQCuSqoAwQA uUmEAwQBuUmGMBQEAgACMA4DBQAqAWVgAwUDKgVCgDANBgkqhkiG9w0BAQsFAAOC AQEAnXARzqw6eurswwrCKK9RuZ7xB76C9MtEIduhCJ8iqF7B2XwO5AXIX+pP6EKe /A0Yk9+Y0au4+XTqWD7Ddfk7YrzwUZNvUWcktHOopu/Z0RTDdTV5It7V0qmZAS1l 7NA+zqEFjJVJJLr9dg2Dq6wHTlwsE+/TVHaQxJ1/8/Bgrz/N13pxZ8l0gRqmNqwC +0rlj9g61XWcOGlenkO1BZvSLMZcO740A3kGjx9DEZMlhn4wYIdiXwNQZSBizo9P L9wNv5K0qF2VEqiTmRZ9QoKdI8dqEU9RPYBZOk6NP18vOmoaPrU9qW1a6yEQiBqm Wj0vpJrEJqZHljyLU4WrgvBAIw== -----END CERTIFICATE-----Generated at Mon Feb 9 23:42:03 2026 by rpki-client