This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/49/e3e40f-1505-42e9-96f1-fea74e81051a/1/B70dl_4-b5eVhvQvZuPSWgvFpmU.roa File: B70dl_4-b5eVhvQvZuPSWgvFpmU.roa (raw, json) Hash identifier: PEnqRbyIXEVxwwcn6v1NmFYPEb0k725A2k724/MK0vI= Subject key identifier: 07:BD:1D:97:FE:3E:6F:97:95:86:F4:2F:66:E3:D2:5A:0B:C5:A6:65 Certificate issuer: /CN=3fac68f91205c44e730336e600b6334f8c81e8c2 Certificate serial: 019B7DC9F201A0CAE8BE331769647DAB0EE7 Authority key identifier: 3F:AC:68:F9:12:05:C4:4E:73:03:36:E6:00:B6:33:4F:8C:81:E8:C2 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/P6xo-RIFxE5zAzbmALYzT4yB6MI.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/49/e3e40f-1505-42e9-96f1-fea74e81051a/1/B70dl_4-b5eVhvQvZuPSWgvFpmU.roa Signing time: Fri 02 Jan 2026 08:19:05 +0000 ROA not before: Fri 02 Jan 2026 08:19:05 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 211071 IP address blocks: 143.223.100.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/49/e3e40f-1505-42e9-96f1-fea74e81051a/1/P6xo-RIFxE5zAzbmALYzT4yB6MI.crl rsync://rpki.ripe.net/repository/DEFAULT/49/e3e40f-1505-42e9-96f1-fea74e81051a/1/P6xo-RIFxE5zAzbmALYzT4yB6MI.mft rsync://rpki.ripe.net/repository/DEFAULT/P6xo-RIFxE5zAzbmALYzT4yB6MI.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 14:00:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7d:c9:f2:01:a0:ca:e8:be:33:17:69:64:7d:ab:0e:e7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3fac68f91205c44e730336e600b6334f8c81e8c2 Validity Not Before: Jan 2 08:19:05 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=07bd1d97fe3e6f979586f42f66e3d25a0bc5a665 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:01:b1:90:ca:07:5a:27:42:cc:67:42:8e:73: be:84:1a:c7:10:e0:1b:02:57:02:12:35:b0:6d:72: da:b2:bc:28:d9:9e:01:79:c5:7d:c0:bb:9c:80:93: 3a:8e:72:81:36:91:c2:82:71:69:99:1d:d8:78:e6: a4:c8:e5:fc:8e:d6:dc:ba:42:43:71:00:c7:fe:6e: 58:66:fe:73:d3:1a:f7:ed:c4:83:0a:b2:93:19:8c: 12:ce:87:f1:12:15:08:e9:d4:1e:b4:72:af:02:ca: 72:33:e9:cf:0a:7b:22:83:05:2f:fe:eb:ba:1e:d9: 99:73:51:db:bd:db:68:dc:ad:2b:9c:82:b7:dd:ad: d6:69:fe:f1:73:52:5b:12:f9:27:ac:50:b9:2c:79: e1:24:24:3a:98:7d:43:97:d0:40:9b:05:4d:e0:8d: db:fc:f3:82:69:d3:eb:25:87:13:70:d5:ea:6b:87: b4:68:07:30:63:c2:ff:88:7c:b4:22:0a:8e:32:77: 5b:94:a8:be:4f:dd:4a:9a:f1:dd:a5:01:5a:cd:a8: 48:12:57:7c:a8:33:0c:47:13:c3:ef:d0:cd:bd:61: 97:d6:54:d7:bd:4b:e1:5b:5c:3e:32:a0:e4:fc:a6: fb:d7:8c:e2:6b:84:70:c6:18:91:f9:bf:47:cf:e3: 2b:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 07:BD:1D:97:FE:3E:6F:97:95:86:F4:2F:66:E3:D2:5A:0B:C5:A6:65 X509v3 Authority Key Identifier: keyid:3F:AC:68:F9:12:05:C4:4E:73:03:36:E6:00:B6:33:4F:8C:81:E8:C2 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/P6xo-RIFxE5zAzbmALYzT4yB6MI.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/49/e3e40f-1505-42e9-96f1-fea74e81051a/1/B70dl_4-b5eVhvQvZuPSWgvFpmU.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/49/e3e40f-1505-42e9-96f1-fea74e81051a/1/P6xo-RIFxE5zAzbmALYzT4yB6MI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 143.223.100.0/24 Signature Algorithm: sha256WithRSAEncryption 10:0c:2d:1f:70:4f:7e:22:f8:68:c0:2e:af:3a:7a:11:e4:98: a5:94:5c:65:13:30:eb:27:36:1c:52:42:aa:1e:97:3f:14:14: ca:2f:ba:8a:1f:57:73:ad:40:63:9e:9a:e9:21:e4:a3:da:61: 9a:ed:f0:e3:16:dc:2f:7e:e7:04:25:b4:fa:4a:b8:c5:f1:c7: 77:4c:1e:ae:28:42:a6:b9:f1:c6:84:5c:77:c0:1d:fa:b3:4c: 2d:1a:5a:2d:e0:cb:2f:4c:39:cf:97:de:10:e2:93:cd:82:20: d5:ea:6d:12:06:e1:67:29:fb:60:d3:45:16:eb:b6:d5:8a:ca: 09:c2:e9:07:23:d2:dd:e2:48:28:47:39:f5:34:db:4e:97:0c: 4a:0d:db:06:c5:05:1e:9e:f8:a5:2e:49:3b:80:d5:b8:46:2f: 46:35:99:16:ed:46:2e:a1:89:43:09:e6:bb:cb:ba:37:56:7d: fd:a3:c1:65:60:83:67:37:10:9b:57:0d:34:23:2d:a4:96:20: 92:7a:0c:d5:ae:d5:fa:50:a4:02:ac:ba:ea:d9:08:0c:12:44: d0:22:50:dc:65:8e:e9:52:4d:bb:52:ad:e5:cf:f2:3a:b4:32: f5:49:06:21:03:85:23:4e:b3:d3:60:4d:21:4d:9f:ec:89:88: f4:7b:ae:5b -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt9yfIBoMrovjMXaWR9qw7nMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDNmYWM2OGY5MTIwNWM0NGU3MzAzMzZlNjAwYjYzMzRmOGM4 MWU4YzIwHhcNMjYwMTAyMDgxOTA1WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygwN2JkMWQ5N2ZlM2U2Zjk3OTU4NmY0MmY2NmUzZDI1YTBiYzVhNjY1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArQGxkMoHWidCzGdCjnO+hBrHEOAb AlcCEjWwbXLasrwo2Z4BecV9wLucgJM6jnKBNpHCgnFpmR3YeOakyOX8jtbcukJD cQDH/m5YZv5z0xr37cSDCrKTGYwSzofxEhUI6dQetHKvAspyM+nPCnsigwUv/uu6 HtmZc1Hbvdto3K0rnIK33a3Waf7xc1JbEvknrFC5LHnhJCQ6mH1Dl9BAmwVN4I3b /POCadPrJYcTcNXqa4e0aAcwY8L/iHy0IgqOMndblKi+T91KmvHdpQFazahIEld8 qDMMRxPD79DNvWGX1lTXvUvhW1w+MqDk/Kb714zia4RwxhiR+b9Hz+MrwwIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFAe9HZf+Pm+XlYb0L2bj0loLxaZlMB8GA1UdIwQY MBaAFD+saPkSBcROcwM25gC2M0+MgejCMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvUDZ4by1SSUZ4RTV6QXpibUFMWXpUNHlCNk1JLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80OS9lM2U0MGYtMTUwNS00MmU5LTk2ZjEt ZmVhNzRlODEwNTFhLzEvQjcwZGxfNC1iNWVWaHZRdlp1UFNXZ3ZGcG1VLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC80OS9lM2U0MGYtMTUwNS00MmU5LTk2ZjEtZmVhNzRlODEwNTFh LzEvUDZ4by1SSUZ4RTV6QXpibUFMWXpUNHlCNk1JLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAj99kMA0G CSqGSIb3DQEBCwUAA4IBAQAQDC0fcE9+IvhowC6vOnoR5JillFxlEzDrJzYcUkKq Hpc/FBTKL7qKH1dzrUBjnprpIeSj2mGa7fDjFtwvfucEJbT6SrjF8cd3TB6uKEKm ufHGhFx3wB36s0wtGlot4MsvTDnPl94Q4pPNgiDV6m0SBuFnKftg00UW67bVisoJ wukHI9Ld4kgoRzn1NNtOlwxKDdsGxQUenvilLkk7gNW4Ri9GNZkW7UYuoYlDCea7 y7o3Vn39o8FlYINnNxCbVw00Iy2kliCSegzVrtX6UKQCrLrq2QgMEkTQIlDcZY7p Uk27Uq3lz/I6tDL1SQYhA4UjTrPTYE0hTZ/siYj0e65b -----END CERTIFICATE-----Generated at Mon Feb 9 20:59:26 2026 by rpki-client