This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/36/ddf8b3-1c08-495c-8ddf-fae5dbed3b1b/1/bJbilb5K1b4BF0Vn-pYhpEwwrxI.roa File: bJbilb5K1b4BF0Vn-pYhpEwwrxI.roa (raw, json) Hash identifier: PGilhdtzAHjxeYaoch8yqrrQR43NQpviV9BxMb9LC24= Subject key identifier: 6C:96:E2:95:BE:4A:D5:BE:01:17:45:67:FA:96:21:A4:4C:30:AF:12 Certificate issuer: /CN=6f84e4738a70ea39c08cef210432ae399ec7e915 Certificate serial: 019B797EC0D72A5610C2CC2864BD65BB1919 Authority key identifier: 6F:84:E4:73:8A:70:EA:39:C0:8C:EF:21:04:32:AE:39:9E:C7:E9:15 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/b4Tkc4pw6jnAjO8hBDKuOZ7H6RU.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/36/ddf8b3-1c08-495c-8ddf-fae5dbed3b1b/1/bJbilb5K1b4BF0Vn-pYhpEwwrxI.roa Signing time: Thu 01 Jan 2026 12:18:28 +0000 ROA not before: Thu 01 Jan 2026 12:18:28 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 20648 IP address blocks: 188.255.185.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/36/ddf8b3-1c08-495c-8ddf-fae5dbed3b1b/1/b4Tkc4pw6jnAjO8hBDKuOZ7H6RU.crl rsync://rpki.ripe.net/repository/DEFAULT/36/ddf8b3-1c08-495c-8ddf-fae5dbed3b1b/1/b4Tkc4pw6jnAjO8hBDKuOZ7H6RU.mft rsync://rpki.ripe.net/repository/DEFAULT/b4Tkc4pw6jnAjO8hBDKuOZ7H6RU.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 09 Jan 2026 00:00:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:79:7e:c0:d7:2a:56:10:c2:cc:28:64:bd:65:bb:19:19 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6f84e4738a70ea39c08cef210432ae399ec7e915 Validity Not Before: Jan 1 12:18:28 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=6c96e295be4ad5be01174567fa9621a44c30af12 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:a8:17:b7:78:b1:f2:7e:2d:a7:9e:18:f1:81: b0:72:3c:46:cd:a7:c8:de:b2:af:02:98:34:ee:f8: d5:9e:38:66:eb:01:6d:c1:35:7d:64:a1:89:39:86: 32:53:7f:78:02:34:5c:58:fb:71:ec:33:a4:fc:f7: 88:2e:bf:4e:6b:85:9d:10:c0:a1:00:6f:ae:cd:dc: 80:8f:f7:05:40:fd:31:04:c1:8b:be:43:a2:99:da: 35:27:6c:79:59:56:66:ba:3a:4e:25:04:b8:5b:b9: 09:fc:9d:95:48:6e:4d:3a:9d:84:06:66:10:31:2e: 44:4e:4a:7a:5c:c7:09:6c:c9:25:c3:0f:14:68:44: a8:4c:8f:42:79:75:59:47:da:97:ea:6e:0a:bb:43: f4:85:1c:fd:f6:03:3d:60:75:e7:d7:2b:73:37:57: a3:d7:c3:53:73:80:45:d3:08:d0:e3:a3:8b:86:9a: 0f:c3:da:44:a9:25:48:d0:7f:c1:68:48:32:1b:3a: 8c:89:e2:82:62:2d:1d:ae:d4:ae:be:72:95:68:be: c9:33:cb:ff:06:28:55:00:80:c6:0e:d4:ed:62:e4: 49:b6:5d:bd:4a:b3:ff:c4:a0:82:ca:a1:03:e2:c8: 39:c2:bd:64:ff:2f:60:07:06:c0:58:c8:93:92:1f: 55:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6C:96:E2:95:BE:4A:D5:BE:01:17:45:67:FA:96:21:A4:4C:30:AF:12 X509v3 Authority Key Identifier: keyid:6F:84:E4:73:8A:70:EA:39:C0:8C:EF:21:04:32:AE:39:9E:C7:E9:15 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/b4Tkc4pw6jnAjO8hBDKuOZ7H6RU.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/36/ddf8b3-1c08-495c-8ddf-fae5dbed3b1b/1/bJbilb5K1b4BF0Vn-pYhpEwwrxI.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/36/ddf8b3-1c08-495c-8ddf-fae5dbed3b1b/1/b4Tkc4pw6jnAjO8hBDKuOZ7H6RU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 188.255.185.0/24 Signature Algorithm: sha256WithRSAEncryption 50:aa:46:1a:0b:8d:e1:d9:20:fe:db:b7:87:4d:fe:72:2c:02: 20:58:1c:0b:4c:bb:fd:82:cc:03:b2:34:52:b5:68:28:6a:8a: dd:f2:0f:09:11:1e:f6:00:e7:1f:5f:89:e3:e4:97:a5:57:a0: f9:b6:b0:48:a8:5a:bb:7b:66:f9:7b:17:f8:53:88:aa:6a:92: 73:88:fa:de:9b:74:c7:8e:42:dd:7a:05:04:e3:bd:53:db:47: c0:f7:1b:46:67:59:1e:03:9a:c3:40:38:c5:b8:a1:f8:48:a9: 5c:7b:a5:7a:2e:97:d3:d0:eb:c2:c1:ac:95:c9:7c:66:f2:db: 2d:87:1d:a5:57:6d:7d:bb:87:e8:8f:9e:9e:54:00:af:ab:aa: 6a:61:61:77:96:b5:b2:a4:db:3f:d5:30:ab:47:8a:10:04:a7: 30:4e:01:11:9c:ba:e2:cf:97:af:8a:3d:1b:df:8d:c0:eb:f0: 68:d2:21:fd:5c:70:d9:fe:89:3b:93:21:18:1d:bf:2e:e1:3c: 4a:96:6c:6b:99:07:ad:d7:f8:c7:d5:f4:f0:ff:59:45:5e:d4: 87:34:9d:b2:3e:ef:58:4f:6b:b6:5e:d7:d7:f6:5b:ab:64:39: 37:7c:ea:a4:81:27:23:15:c9:be:22:de:2e:70:d3:d8:9f:47: 5b:5e:bd:2d -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt5fsDXKlYQwswoZL1luxkZMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDZmODRlNDczOGE3MGVhMzljMDhjZWYyMTA0MzJhZTM5OWVj N2U5MTUwHhcNMjYwMTAxMTIxODI4WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg2Yzk2ZTI5NWJlNGFkNWJlMDExNzQ1NjdmYTk2MjFhNDRjMzBhZjEyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzKgXt3ix8n4tp54Y8YGwcjxGzafI 3rKvApg07vjVnjhm6wFtwTV9ZKGJOYYyU394AjRcWPtx7DOk/PeILr9Oa4WdEMCh AG+uzdyAj/cFQP0xBMGLvkOimdo1J2x5WVZmujpOJQS4W7kJ/J2VSG5NOp2EBmYQ MS5ETkp6XMcJbMklww8UaESoTI9CeXVZR9qX6m4Ku0P0hRz99gM9YHXn1ytzN1ej 18NTc4BF0wjQ46OLhpoPw9pEqSVI0H/BaEgyGzqMieKCYi0drtSuvnKVaL7JM8v/ BihVAIDGDtTtYuRJtl29SrP/xKCCyqED4sg5wr1k/y9gBwbAWMiTkh9VtwIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFGyW4pW+StW+ARdFZ/qWIaRMMK8SMB8GA1UdIwQY MBaAFG+E5HOKcOo5wIzvIQQyrjmex+kVMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvYjRUa2M0cHc2am5Bak84aEJES3VPWjdINlJVLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zNi9kZGY4YjMtMWMwOC00OTVjLThkZGYt ZmFlNWRiZWQzYjFiLzEvYkpiaWxiNUsxYjRCRjBWbi1wWWhwRXd3cnhJLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zNi9kZGY4YjMtMWMwOC00OTVjLThkZGYtZmFlNWRiZWQzYjFi LzEvYjRUa2M0cHc2am5Bak84aEJES3VPWjdINlJVLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAvP+5MA0G CSqGSIb3DQEBCwUAA4IBAQBQqkYaC43h2SD+27eHTf5yLAIgWBwLTLv9gswDsjRS tWgoaord8g8JER72AOcfX4nj5JelV6D5trBIqFq7e2b5exf4U4iqapJziPrem3TH jkLdegUE471T20fA9xtGZ1keA5rDQDjFuKH4SKlce6V6LpfT0OvCwayVyXxm8tst hx2lV219u4foj56eVACvq6pqYWF3lrWypNs/1TCrR4oQBKcwTgERnLriz5evij0b 343A6/Bo0iH9XHDZ/ok7kyEYHb8u4TxKlmxrmQet1/jH1fTw/1lFXtSHNJ2yPu9Y T2u2XtfX9lurZDk3fOqkgScjFcm+It4ucNPYn0dbXr0t -----END CERTIFICATE-----Generated at Thu Jan 8 08:55:14 2026 by rpki-client