This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/42/7d64f1-3d64-42eb-a275-2179644f3788/1/IxBdYAo13YF7sRrVQg3Z0e5Vbt0.roa File: IxBdYAo13YF7sRrVQg3Z0e5Vbt0.roa (raw, json) Hash identifier: tlcEeyFCaaPVcJ/vf8BbCsm35ivqUr1FJnJrFhHoj6A= Subject key identifier: 23:10:5D:60:0A:35:DD:81:7B:B1:1A:D5:42:0D:D9:D1:EE:55:6E:DD Certificate issuer: /CN=a5bec32d6c64ffb601e270cedbcd3efff5ce7a40 Certificate serial: 019B7C7FDB5024CE5BB9DAB8B96C92B107D6 Authority key identifier: A5:BE:C3:2D:6C:64:FF:B6:01:E2:70:CE:DB:CD:3E:FF:F5:CE:7A:40 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pb7DLWxk_7YB4nDO280-__XOekA.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/42/7d64f1-3d64-42eb-a275-2179644f3788/1/IxBdYAo13YF7sRrVQg3Z0e5Vbt0.roa Signing time: Fri 02 Jan 2026 02:18:32 +0000 ROA not before: Fri 02 Jan 2026 02:18:32 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 137 IP address blocks: 156.14.0.0/16 maxlen: 16 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/42/7d64f1-3d64-42eb-a275-2179644f3788/1/pb7DLWxk_7YB4nDO280-__XOekA.crl rsync://rpki.ripe.net/repository/DEFAULT/42/7d64f1-3d64-42eb-a275-2179644f3788/1/pb7DLWxk_7YB4nDO280-__XOekA.mft rsync://rpki.ripe.net/repository/DEFAULT/pb7DLWxk_7YB4nDO280-__XOekA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7c:7f:db:50:24:ce:5b:b9:da:b8:b9:6c:92:b1:07:d6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=a5bec32d6c64ffb601e270cedbcd3efff5ce7a40 Validity Not Before: Jan 2 02:18:32 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=23105d600a35dd817bb11ad5420dd9d1ee556edd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:ba:4e:25:e0:72:64:7e:78:f5:a2:c2:49:cd: b2:b2:cd:c3:40:e1:d6:d2:80:6c:54:42:6b:9e:bb: 8b:d3:71:3b:fa:d2:55:ce:fd:c6:66:0c:b0:fb:be: 5e:b9:4c:93:bf:c2:33:3c:5c:93:3f:31:c3:0e:66: 3e:04:4e:5a:d4:21:d7:19:8b:71:9f:38:6c:f2:5d: dc:9e:dd:db:de:a7:a6:b2:62:db:b0:aa:a2:1f:76: 88:6b:45:05:69:ed:8d:18:88:c0:00:a1:7d:ca:d7: 1d:63:37:15:76:38:b2:00:41:2c:b5:f7:05:d5:9f: a8:86:8d:d9:6d:3a:f6:66:ae:ca:0e:cb:03:d0:98: d4:ac:47:64:a1:5a:57:a0:b9:3f:c4:00:ac:fe:44: aa:c4:f0:d9:aa:69:65:39:03:40:c4:32:4f:31:c4: 2f:bf:d8:75:6f:b6:81:90:78:da:19:cd:ab:dd:d7: b5:a4:0a:bb:e1:f9:98:22:6d:7b:60:eb:b3:3d:22: 3e:f3:ef:e8:5c:0a:e3:c0:fe:5d:5c:7a:89:f0:63: 37:30:34:03:fa:45:87:d3:13:8a:ef:97:b6:95:21: 42:13:76:53:0d:2b:de:55:c4:cf:69:77:c6:14:19: 60:f4:12:7f:a0:a1:ec:48:d1:be:07:0e:f0:83:cf: ce:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 23:10:5D:60:0A:35:DD:81:7B:B1:1A:D5:42:0D:D9:D1:EE:55:6E:DD X509v3 Authority Key Identifier: keyid:A5:BE:C3:2D:6C:64:FF:B6:01:E2:70:CE:DB:CD:3E:FF:F5:CE:7A:40 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pb7DLWxk_7YB4nDO280-__XOekA.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/42/7d64f1-3d64-42eb-a275-2179644f3788/1/IxBdYAo13YF7sRrVQg3Z0e5Vbt0.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/42/7d64f1-3d64-42eb-a275-2179644f3788/1/pb7DLWxk_7YB4nDO280-__XOekA.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 156.14.0.0/16 Signature Algorithm: sha256WithRSAEncryption 4b:ec:0f:8f:35:c5:5b:93:78:54:b0:35:25:6b:ab:03:e4:eb: b3:d5:89:db:35:c8:ba:f8:44:b0:f5:df:d7:8d:ee:be:5e:57: 06:c9:03:c0:de:2d:dd:6b:66:f2:14:fd:22:0d:f2:77:b9:79: df:29:86:76:1c:83:fb:85:cf:00:18:1d:7a:ec:10:cf:53:e4: 72:40:c2:dc:57:cf:d7:21:40:e8:42:9a:47:19:5e:62:eb:01: c8:50:fd:04:c7:12:6e:4a:16:a6:29:1d:7b:72:ec:b8:d1:0a: 31:b9:b1:9a:9f:2e:58:fb:9b:32:2d:7d:c7:86:7e:6a:da:be: 95:4a:ce:f4:d6:f6:df:f5:a2:cb:e6:63:b8:45:fe:0f:68:6e: ea:98:d9:b4:89:47:0f:15:a7:30:d7:36:c0:c1:ed:e1:29:68: 13:68:9a:ac:38:a5:96:1f:ac:5a:ea:8f:c1:2d:3b:f4:71:25: a8:f2:59:30:1a:58:4f:73:0d:f4:34:92:fc:d0:70:5a:d6:b6: 2d:1c:79:25:5f:57:a6:2f:50:15:8d:35:25:d9:ed:8f:bd:62: 7c:d5:ef:4d:f7:82:73:98:62:8c:0f:3c:2e:96:ea:dd:a8:2d: 3f:72:9c:06:c5:4c:2f:a6:ed:09:54:17:d3:98:43:30:21:4a: 57:b1:b8:f8 -----BEGIN CERTIFICATE----- MIIE/DCCA+SgAwIBAgISAZt8f9tQJM5budq4uWySsQfWMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGE1YmVjMzJkNmM2NGZmYjYwMWUyNzBjZWRiY2QzZWZmZjVj ZTdhNDAwHhcNMjYwMTAyMDIxODMyWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygyMzEwNWQ2MDBhMzVkZDgxN2JiMTFhZDU0MjBkZDlkMWVlNTU2ZWRkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAq7pOJeByZH549aLCSc2yss3DQOHW 0oBsVEJrnruL03E7+tJVzv3GZgyw+75euUyTv8IzPFyTPzHDDmY+BE5a1CHXGYtx nzhs8l3cnt3b3qemsmLbsKqiH3aIa0UFae2NGIjAAKF9ytcdYzcVdjiyAEEstfcF 1Z+oho3ZbTr2Zq7KDssD0JjUrEdkoVpXoLk/xACs/kSqxPDZqmllOQNAxDJPMcQv v9h1b7aBkHjaGc2r3de1pAq74fmYIm17YOuzPSI+8+/oXArjwP5dXHqJ8GM3MDQD +kWH0xOK75e2lSFCE3ZTDSveVcTPaXfGFBlg9BJ/oKHsSNG+Bw7wg8/OsQIDAQAB o4ICCDCCAgQwHQYDVR0OBBYEFCMQXWAKNd2Be7Ea1UIN2dHuVW7dMB8GA1UdIwQY MBaAFKW+wy1sZP+2AeJwztvNPv/1znpAMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvcGI3RExXeGtfN1lCNG5ETzI4MC1fX1hPZWtBLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80Mi83ZDY0ZjEtM2Q2NC00MmViLWEyNzUt MjE3OTY0NGYzNzg4LzEvSXhCZFlBbzEzWUY3c1JyVlFnM1owZTVWYnQwLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC80Mi83ZDY0ZjEtM2Q2NC00MmViLWEyNzUtMjE3OTY0NGYzNzg4 LzEvcGI3RExXeGtfN1lCNG5ETzI4MC1fX1hPZWtBLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB4GCCsGAQUFBwEHAQH/BA8wDTALBAIAATAFAwMAnA4wDQYJ KoZIhvcNAQELBQADggEBAEvsD481xVuTeFSwNSVrqwPk67PVids1yLr4RLD139eN 7r5eVwbJA8DeLd1rZvIU/SIN8ne5ed8phnYcg/uFzwAYHXrsEM9T5HJAwtxXz9ch QOhCmkcZXmLrAchQ/QTHEm5KFqYpHXty7LjRCjG5sZqfLlj7mzItfceGfmravpVK zvTW9t/1osvmY7hF/g9obuqY2bSJRw8VpzDXNsDB7eEpaBNomqw4pZYfrFrqj8Et O/RxJajyWTAaWE9zDfQ0kvzQcFrWti0ceSVfV6YvUBWNNSXZ7Y+9YnzV7033gnOY YowPPC6W6t2oLT9ynAbFTC+m7QlUF9OYQzAhSlexuPg= -----END CERTIFICATE-----Generated at Mon Feb 9 20:46:23 2026 by rpki-client