This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/73/dac732-4aca-4bf8-a6db-e07952db967b/1/bwUes-crYnDaWmfkSgjmaGPderc.roa File: bwUes-crYnDaWmfkSgjmaGPderc.roa (raw, json) Hash identifier: X7axPRZQ+Fy3248GsJnvoTWbu+uAo3jc8nap7n2R83o= Subject key identifier: 6F:05:1E:B3:E7:2B:62:70:DA:5A:67:E4:4A:08:E6:68:63:DD:7A:B7 Certificate issuer: /CN=d095364395ccfd8543977358fa9b71f9271544f6 Certificate serial: 019B79EBB3EC98C1A05480163A63A366061C Authority key identifier: D0:95:36:43:95:CC:FD:85:43:97:73:58:FA:9B:71:F9:27:15:44:F6 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0JU2Q5XM_YVDl3NY-ptx-ScVRPY.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/73/dac732-4aca-4bf8-a6db-e07952db967b/1/bwUes-crYnDaWmfkSgjmaGPderc.roa Signing time: Thu 01 Jan 2026 14:17:28 +0000 ROA not before: Thu 01 Jan 2026 14:17:28 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 57659 IP address blocks: 176.104.168.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/73/dac732-4aca-4bf8-a6db-e07952db967b/1/0JU2Q5XM_YVDl3NY-ptx-ScVRPY.crl rsync://rpki.ripe.net/repository/DEFAULT/73/dac732-4aca-4bf8-a6db-e07952db967b/1/0JU2Q5XM_YVDl3NY-ptx-ScVRPY.mft rsync://rpki.ripe.net/repository/DEFAULT/0JU2Q5XM_YVDl3NY-ptx-ScVRPY.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 27 Jan 2026 20:39:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:79:eb:b3:ec:98:c1:a0:54:80:16:3a:63:a3:66:06:1c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d095364395ccfd8543977358fa9b71f9271544f6 Validity Not Before: Jan 1 14:17:28 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=6f051eb3e72b6270da5a67e44a08e66863dd7ab7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:79:52:3e:c0:1b:01:f7:55:af:7c:4e:6a:3c: 7a:f5:41:ac:d2:a8:3a:af:0e:e0:22:af:08:80:f1: f8:22:7e:a1:2f:99:e7:e0:23:ba:cc:16:64:96:64: c4:b6:30:36:f8:ea:87:0f:2f:46:9d:a0:d0:e8:47: 7c:4a:92:b8:81:0f:cf:18:f7:d1:38:4a:1f:7a:db: 38:79:03:53:06:f6:aa:9b:05:1c:d9:ff:99:b7:26: 65:9e:6b:3e:bf:44:14:0c:e3:6d:b2:e6:75:4c:7f: 2b:11:bb:45:e1:50:00:5e:8d:d1:b9:75:4e:f0:52: cd:ec:85:73:1a:57:17:ea:fa:a2:3a:85:55:b5:c6: 3e:8f:3f:b5:a3:6b:cb:64:ba:ca:1f:ad:71:7d:c8: fb:2f:ea:48:24:03:81:c8:31:a1:5e:f7:3f:b0:03: b3:07:25:3b:1f:08:2a:a5:8f:3a:45:62:c9:7c:9e: ab:6b:5b:57:0f:4c:28:63:0f:c4:e4:11:c7:2d:c0: fb:85:6d:99:bc:4e:2a:4e:58:ff:7a:15:7b:fd:0e: c7:cf:f5:a1:6c:0c:9c:6a:13:27:06:6e:93:76:98: 8d:cc:69:bf:d4:35:08:62:bf:2a:69:b5:eb:39:bf: 6d:1e:10:e4:c1:13:fe:f2:6d:9f:7b:88:16:5a:2b: 39:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6F:05:1E:B3:E7:2B:62:70:DA:5A:67:E4:4A:08:E6:68:63:DD:7A:B7 X509v3 Authority Key Identifier: keyid:D0:95:36:43:95:CC:FD:85:43:97:73:58:FA:9B:71:F9:27:15:44:F6 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0JU2Q5XM_YVDl3NY-ptx-ScVRPY.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/73/dac732-4aca-4bf8-a6db-e07952db967b/1/bwUes-crYnDaWmfkSgjmaGPderc.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/73/dac732-4aca-4bf8-a6db-e07952db967b/1/0JU2Q5XM_YVDl3NY-ptx-ScVRPY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 176.104.168.0/21 Signature Algorithm: sha256WithRSAEncryption 20:d2:1e:6d:d3:e3:81:61:4e:a9:80:9f:03:31:2b:49:ac:d2: 62:0c:3e:d9:81:b2:2a:33:02:58:13:3d:fa:aa:6b:e5:fa:ba: b0:36:44:c7:b5:93:83:b8:26:74:3a:14:a5:57:72:18:b7:ea: bf:5e:a8:cd:36:e1:c5:b9:8e:d5:f9:67:ae:92:ec:52:3c:eb: 3c:c7:7e:24:e3:75:96:7d:d2:bb:a2:8f:31:0d:80:5c:7a:44: 05:6c:10:4d:30:a8:c8:33:d3:c2:da:5f:10:e7:a4:5d:79:2a: 1a:72:16:29:88:b7:5a:53:18:23:12:b5:cb:e1:53:ab:c8:1c: 23:01:3f:0c:b6:a1:be:7c:2a:e4:38:13:a4:32:09:10:84:d9: c0:62:a0:b9:e9:f5:b3:95:83:66:03:fb:2d:ad:5e:27:10:92: 00:e9:2e:cf:4c:54:d0:f1:f3:5e:90:60:ab:c9:c3:15:84:21: 45:b8:3d:f0:40:be:bc:f6:45:67:14:e2:a6:24:88:ee:b9:32: b4:80:19:bf:86:32:a0:f2:9d:21:4e:d3:0e:d7:b9:e6:82:ec: 1d:dc:63:a3:c4:4c:7d:a6:50:0e:7c:35:7f:dc:38:de:be:56: eb:8e:88:5b:e5:22:45:e9:0c:fe:f6:61:18:7c:00:47:88:36: 7e:59:a6:39 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt567PsmMGgVIAWOmOjZgYcMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGQwOTUzNjQzOTVjY2ZkODU0Mzk3NzM1OGZhOWI3MWY5Mjcx NTQ0ZjYwHhcNMjYwMTAxMTQxNzI4WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg2ZjA1MWViM2U3MmI2MjcwZGE1YTY3ZTQ0YTA4ZTY2ODYzZGQ3YWI3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxHlSPsAbAfdVr3xOajx69UGs0qg6 rw7gIq8IgPH4In6hL5nn4CO6zBZklmTEtjA2+OqHDy9GnaDQ6Ed8SpK4gQ/PGPfR OEofets4eQNTBvaqmwUc2f+ZtyZlnms+v0QUDONtsuZ1TH8rEbtF4VAAXo3RuXVO 8FLN7IVzGlcX6vqiOoVVtcY+jz+1o2vLZLrKH61xfcj7L+pIJAOByDGhXvc/sAOz ByU7HwgqpY86RWLJfJ6ra1tXD0woYw/E5BHHLcD7hW2ZvE4qTlj/ehV7/Q7Hz/Wh bAycahMnBm6TdpiNzGm/1DUIYr8qabXrOb9tHhDkwRP+8m2fe4gWWis5iwIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFG8FHrPnK2Jw2lpn5EoI5mhj3Xq3MB8GA1UdIwQY MBaAFNCVNkOVzP2FQ5dzWPqbcfknFUT2MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvMEpVMlE1WE1fWVZEbDNOWS1wdHgtU2NWUlBZLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83My9kYWM3MzItNGFjYS00YmY4LWE2ZGIt ZTA3OTUyZGI5NjdiLzEvYndVZXMtY3JZbkRhV21ma1Nnam1hR1BkZXJjLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC83My9kYWM3MzItNGFjYS00YmY4LWE2ZGItZTA3OTUyZGI5Njdi LzEvMEpVMlE1WE1fWVZEbDNOWS1wdHgtU2NWUlBZLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQDsGioMA0G CSqGSIb3DQEBCwUAA4IBAQAg0h5t0+OBYU6pgJ8DMStJrNJiDD7ZgbIqMwJYEz36 qmvl+rqwNkTHtZODuCZ0OhSlV3IYt+q/XqjNNuHFuY7V+WeukuxSPOs8x34k43WW fdK7oo8xDYBcekQFbBBNMKjIM9PC2l8Q56RdeSoachYpiLdaUxgjErXL4VOryBwj AT8MtqG+fCrkOBOkMgkQhNnAYqC56fWzlYNmA/strV4nEJIA6S7PTFTQ8fNekGCr ycMVhCFFuD3wQL689kVnFOKmJIjuuTK0gBm/hjKg8p0hTtMO17nmguwd3GOjxEx9 plAOfDV/3Djevlbrjohb5SJF6Qz+9mEYfABHiDZ+WaY5 -----END CERTIFICATE-----Generated at Tue Jan 27 07:10:01 2026 by rpki-client