This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5a/0ccbda-d6f1-4527-8106-cd7e06cbb531/1/sQkPFwuOJy6itfz51Nu2nz-gnL4.roa File: sQkPFwuOJy6itfz51Nu2nz-gnL4.roa (raw, json) Hash identifier: r7fKCAb4geawCmtnTZvmaYuS2fSooENl2ghvh7ooNys= Subject key identifier: B1:09:0F:17:0B:8E:27:2E:A2:B5:FC:F9:D4:DB:B6:9F:3F:A0:9C:BE Certificate issuer: /CN=0534c49fcfa8a45041d95ed4d8d4fc69c727a467 Certificate serial: 019B7C13258D5BDC4EC12B7D8B44B97B9B1F Authority key identifier: 05:34:C4:9F:CF:A8:A4:50:41:D9:5E:D4:D8:D4:FC:69:C7:27:A4:67 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BTTEn8-opFBB2V7U2NT8accnpGc.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5a/0ccbda-d6f1-4527-8106-cd7e06cbb531/1/sQkPFwuOJy6itfz51Nu2nz-gnL4.roa Signing time: Fri 02 Jan 2026 00:19:47 +0000 ROA not before: Fri 02 Jan 2026 00:19:47 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 43419 IP address blocks: 185.229.218.0/24 maxlen: 24 2a04:3a40:8000::/33 maxlen: 33 2a0a:e9c4::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5a/0ccbda-d6f1-4527-8106-cd7e06cbb531/1/BTTEn8-opFBB2V7U2NT8accnpGc.crl rsync://rpki.ripe.net/repository/DEFAULT/5a/0ccbda-d6f1-4527-8106-cd7e06cbb531/1/BTTEn8-opFBB2V7U2NT8accnpGc.mft rsync://rpki.ripe.net/repository/DEFAULT/BTTEn8-opFBB2V7U2NT8accnpGc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 24 Jan 2026 18:47:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7c:13:25:8d:5b:dc:4e:c1:2b:7d:8b:44:b9:7b:9b:1f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0534c49fcfa8a45041d95ed4d8d4fc69c727a467 Validity Not Before: Jan 2 00:19:47 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=b1090f170b8e272ea2b5fcf9d4dbb69f3fa09cbe Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:d8:2a:75:0c:a1:21:bc:95:cb:77:e4:f0:a8: 7a:5c:fe:e7:42:1b:83:38:c9:69:35:98:0e:3b:7e: 8e:b5:d9:d4:41:71:05:ea:f9:9d:0f:23:17:ef:9a: d2:f6:b0:5c:c5:f1:1c:a8:84:7d:50:c8:f2:90:7f: a1:19:52:15:9b:33:82:8c:d1:a4:de:8d:57:d0:c1: 2a:05:be:df:23:f3:78:42:05:f6:78:ff:d6:f0:4c: e2:6d:a5:9d:a4:03:41:45:e8:87:e1:a4:06:c9:ba: 89:bf:44:23:e2:3f:7b:a8:9a:5a:e9:57:86:10:6b: 71:36:14:c5:73:8a:72:7e:a9:4c:78:25:a1:00:78: 1a:7d:77:a0:72:c8:d3:fd:6f:62:c4:95:7a:5c:77: 7d:87:9c:97:f6:b0:13:52:2d:62:44:f9:98:71:1f: 16:e0:8e:51:eb:d4:f6:3a:dc:dc:30:39:6b:21:67: 20:0f:b7:0f:1c:d4:98:66:6a:57:5a:f4:6d:81:e8: 55:f9:6b:d0:23:f0:d7:94:38:83:98:e4:86:08:75: 6f:58:06:db:c8:b7:0f:b1:57:6e:b4:39:ba:11:e7: 37:c3:80:be:c2:98:af:78:02:6d:67:98:b0:31:27: 36:7f:83:9e:9d:93:4e:bf:0b:29:d9:c2:10:d1:c2: 1e:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B1:09:0F:17:0B:8E:27:2E:A2:B5:FC:F9:D4:DB:B6:9F:3F:A0:9C:BE X509v3 Authority Key Identifier: keyid:05:34:C4:9F:CF:A8:A4:50:41:D9:5E:D4:D8:D4:FC:69:C7:27:A4:67 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BTTEn8-opFBB2V7U2NT8accnpGc.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/0ccbda-d6f1-4527-8106-cd7e06cbb531/1/sQkPFwuOJy6itfz51Nu2nz-gnL4.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/0ccbda-d6f1-4527-8106-cd7e06cbb531/1/BTTEn8-opFBB2V7U2NT8accnpGc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.229.218.0/24 IPv6: 2a04:3a40:8000::/33 2a0a:e9c4::/32 Signature Algorithm: sha256WithRSAEncryption 64:cb:e6:bc:9a:26:fb:a7:e3:87:cc:5d:c3:83:e6:28:e5:e9: 9e:12:c6:c0:e3:67:5e:fb:fb:d3:01:b9:58:3b:22:f1:b2:68: c4:65:7d:77:e5:fa:cc:01:98:c4:e2:ad:35:cf:8a:83:5f:bf: a1:43:cc:c7:7f:82:6d:e2:28:bb:17:ba:01:7a:2d:99:bf:9e: d7:3b:c6:5f:40:50:75:93:f9:45:98:89:79:d3:b1:8d:58:7f: d1:5f:85:fc:fa:a9:ff:5f:45:9f:4c:39:92:86:44:8e:69:56: a7:99:fa:47:04:6d:d8:05:0d:11:63:26:1a:8f:68:ef:10:56: f2:36:69:25:c9:fd:4e:0a:db:9d:0b:ed:2f:75:dd:14:7e:e0: 49:ad:83:11:d2:66:e7:d3:d1:f8:e5:1d:c7:76:e8:91:3b:77: cc:00:97:80:5a:4a:5e:3c:da:38:04:7a:0e:c6:91:39:ff:af: e6:5b:51:ce:22:a1:ef:91:b8:02:e4:87:3d:1a:1b:a3:be:7f: 76:7f:9e:a7:30:5b:53:13:66:88:b3:07:8d:14:fe:bc:4e:47: 6a:d8:0d:9b:37:c0:f6:8e:07:16:45:3a:91:da:5c:d6:b3:51: 23:8d:bf:c9:f6:62:6e:84:8e:3c:32:c4:38:e9:85:e2:79:c2: b2:ee:e8:47 -----BEGIN CERTIFICATE----- MIIFFDCCA/ygAwIBAgISAZt8EyWNW9xOwSt9i0S5e5sfMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDA1MzRjNDlmY2ZhOGE0NTA0MWQ5NWVkNGQ4ZDRmYzY5Yzcy N2E0NjcwHhcNMjYwMTAyMDAxOTQ3WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhiMTA5MGYxNzBiOGUyNzJlYTJiNWZjZjlkNGRiYjY5ZjNmYTA5Y2JlMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAw9gqdQyhIbyVy3fk8Kh6XP7nQhuD OMlpNZgOO36OtdnUQXEF6vmdDyMX75rS9rBcxfEcqIR9UMjykH+hGVIVmzOCjNGk 3o1X0MEqBb7fI/N4QgX2eP/W8EzibaWdpANBReiH4aQGybqJv0Qj4j97qJpa6VeG EGtxNhTFc4pyfqlMeCWhAHgafXegcsjT/W9ixJV6XHd9h5yX9rATUi1iRPmYcR8W 4I5R69T2OtzcMDlrIWcgD7cPHNSYZmpXWvRtgehV+WvQI/DXlDiDmOSGCHVvWAbb yLcPsVdutDm6Eec3w4C+wpiveAJtZ5iwMSc2f4OenZNOvwsp2cIQ0cIemwIDAQAB o4ICIDCCAhwwHQYDVR0OBBYEFLEJDxcLjicuorX8+dTbtp8/oJy+MB8GA1UdIwQY MBaAFAU0xJ/PqKRQQdle1NjU/GnHJ6RnMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvQlRURW44LW9wRkJCMlY3VTJOVDhhY2NucEdjLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81YS8wY2NiZGEtZDZmMS00NTI3LTgxMDYt Y2Q3ZTA2Y2JiNTMxLzEvc1FrUEZ3dU9KeTZpdGZ6NTFOdTJuei1nbkw0LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81YS8wY2NiZGEtZDZmMS00NTI3LTgxMDYtY2Q3ZTA2Y2JiNTMx LzEvQlRURW44LW9wRkJCMlY3VTJOVDhhY2NucEdjLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMDYGCCsGAQUFBwEHAQH/BCcwJTAMBAIAATAGAwQAueXaMBUE AgACMA8DBgcqBDpAgAMFACoK6cQwDQYJKoZIhvcNAQELBQADggEBAGTL5ryaJvun 44fMXcOD5ijl6Z4SxsDjZ177+9MBuVg7IvGyaMRlfXfl+swBmMTirTXPioNfv6FD zMd/gm3iKLsXugF6LZm/ntc7xl9AUHWT+UWYiXnTsY1Yf9Ffhfz6qf9fRZ9MOZKG RI5pVqeZ+kcEbdgFDRFjJhqPaO8QVvI2aSXJ/U4K250L7S913RR+4EmtgxHSZufT 0fjlHcd26JE7d8wAl4BaSl482jgEeg7GkTn/r+ZbUc4ioe+RuALkhz0aG6O+f3Z/ nqcwW1MTZoizB40U/rxOR2rYDZs3wPaOBxZFOpHaXNazUSONv8n2Ym6EjjwyxDjp heJ5wrLu6Ec= -----END CERTIFICATE-----Generated at Fri Jan 23 21:38:40 2026 by rpki-client