This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8e/9d8598-e9e2-4709-b535-6b04aadeef10/1/1bsriQWY4jSatQMxmY8Qxs1dbnk.roa File: 1bsriQWY4jSatQMxmY8Qxs1dbnk.roa (raw, json) Hash identifier: dpKGUl9f27lorQFox2dicEed3HaPMPgfTGyDEbSeAn0= Subject key identifier: D5:BB:2B:89:05:98:E2:34:9A:B5:03:31:99:8F:10:C6:CD:5D:6E:79 Certificate issuer: /CN=086282e751286fbbecc75ea6edcc254192c55c76 Certificate serial: 019B7BA508E0ECD10F466077D17A64582E43 Authority key identifier: 08:62:82:E7:51:28:6F:BB:EC:C7:5E:A6:ED:CC:25:41:92:C5:5C:76 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CGKC51Eob7vsx16m7cwlQZLFXHY.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8e/9d8598-e9e2-4709-b535-6b04aadeef10/1/1bsriQWY4jSatQMxmY8Qxs1dbnk.roa Signing time: Thu 01 Jan 2026 22:19:31 +0000 ROA not before: Thu 01 Jan 2026 22:19:31 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 34086 IP address blocks: 46.29.96.0/21 maxlen: 24 82.192.98.0/23 maxlen: 24 93.188.240.0/21 maxlen: 24 94.100.240.0/20 maxlen: 24 160.44.0.0/16 maxlen: 24 160.44.192.0/20 maxlen: 24 160.44.192.0/21 maxlen: 21 160.44.200.0/21 maxlen: 21 185.9.216.0/22 maxlen: 24 217.150.144.0/20 maxlen: 24 2a00:da8::/32 maxlen: 32 2a00:da8:fffb::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8e/9d8598-e9e2-4709-b535-6b04aadeef10/1/CGKC51Eob7vsx16m7cwlQZLFXHY.crl rsync://rpki.ripe.net/repository/DEFAULT/8e/9d8598-e9e2-4709-b535-6b04aadeef10/1/CGKC51Eob7vsx16m7cwlQZLFXHY.mft rsync://rpki.ripe.net/repository/DEFAULT/CGKC51Eob7vsx16m7cwlQZLFXHY.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 11 Jan 2026 22:01:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7b:a5:08:e0:ec:d1:0f:46:60:77:d1:7a:64:58:2e:43 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=086282e751286fbbecc75ea6edcc254192c55c76 Validity Not Before: Jan 1 22:19:31 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=d5bb2b890598e2349ab50331998f10c6cd5d6e79 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:31:f1:18:4b:a8:33:ec:a3:4d:73:1a:85:03: 80:a5:87:d9:dd:6b:b3:8c:f4:8e:ea:0e:09:7f:58: 09:8a:3e:80:e0:48:fc:07:57:b1:33:50:53:ea:49: 82:22:5c:9c:aa:1e:bf:6a:65:3b:7b:8b:25:92:ec: 17:b3:6a:73:5b:e8:9b:b7:26:53:27:36:27:07:7f: f1:c7:0d:1d:6b:4c:3b:af:a1:4b:39:8d:67:b7:20: 15:a1:1b:9c:4c:3d:e3:0d:d8:49:52:23:2e:e3:ea: 73:c8:35:46:6a:dc:43:7a:f7:0b:38:ba:2e:6d:2f: 7b:0c:42:79:a4:2c:d3:5f:3b:c1:3b:21:5e:2c:bd: 02:9c:cc:5f:3c:3e:58:dd:85:0f:33:79:e6:55:26: e3:84:2c:d6:8e:36:0f:1c:da:74:8f:38:85:d5:4a: 08:c5:9f:44:43:2e:73:8e:03:01:a2:17:6b:12:8f: bb:4a:44:e6:c7:31:3a:4f:f5:10:e6:de:7f:41:d2: fe:e6:fe:d8:6c:47:fd:44:20:d8:cb:bc:56:b0:d0: 3c:79:61:28:f0:7f:93:c6:c0:c1:2c:7c:66:48:52: f0:e2:36:f6:a9:36:65:15:94:91:f1:a0:e2:c0:e5: be:5a:47:d4:a0:0d:ab:f0:50:fa:3a:72:a7:2d:fa: 8b:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D5:BB:2B:89:05:98:E2:34:9A:B5:03:31:99:8F:10:C6:CD:5D:6E:79 X509v3 Authority Key Identifier: keyid:08:62:82:E7:51:28:6F:BB:EC:C7:5E:A6:ED:CC:25:41:92:C5:5C:76 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CGKC51Eob7vsx16m7cwlQZLFXHY.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/9d8598-e9e2-4709-b535-6b04aadeef10/1/1bsriQWY4jSatQMxmY8Qxs1dbnk.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/9d8598-e9e2-4709-b535-6b04aadeef10/1/CGKC51Eob7vsx16m7cwlQZLFXHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 46.29.96.0/21 82.192.98.0/23 93.188.240.0/21 94.100.240.0/20 160.44.0.0/16 185.9.216.0/22 217.150.144.0/20 IPv6: 2a00:da8::/32 Signature Algorithm: sha256WithRSAEncryption 3c:8d:1c:dc:d5:fb:ad:2f:b9:12:fe:8c:9f:b4:af:98:b6:4f: 20:b1:f1:01:79:ca:57:0d:48:df:77:d2:d2:08:98:c7:57:f7: a2:74:4d:ca:60:49:7b:b6:2d:a8:ed:f8:ce:4a:71:df:d1:9e: d0:18:04:81:fb:82:b8:06:17:58:f6:74:b7:e2:6f:34:93:84: 46:cd:f7:a2:d4:19:de:bc:f7:93:05:87:ab:d0:5f:a5:2a:fa: 91:18:45:b2:32:eb:b0:1f:57:4b:bb:19:a4:1f:b7:84:7f:29: 8c:ac:00:68:e3:e8:c5:82:7b:7b:b3:1d:8d:42:cb:cd:e0:c6: 18:58:91:3f:54:95:b9:18:4e:09:14:1b:f0:45:77:bc:05:94: a4:d3:79:6c:eb:c9:bf:fa:af:d2:29:d5:47:52:a3:0f:6a:77: f9:6d:f6:c9:18:ef:ba:80:cf:02:b3:6e:dd:48:c5:13:26:99: 8f:78:a0:df:7c:33:cc:4b:07:19:b8:4e:67:78:80:c3:75:0f: c4:4b:dd:df:39:ea:5e:78:85:48:c8:53:20:cc:84:4b:b1:6c: 4b:7e:e4:c6:33:09:52:0c:a6:a9:8f:07:36:33:5d:b1:a1:0a: 61:d2:78:5d:2b:1b:e7:e7:4a:7d:e8:89:d2:52:62:24:65:e1: c6:9f:ca:43 -----BEGIN CERTIFICATE----- MIIFLzCCBBegAwIBAgISAZt7pQjg7NEPRmB30XpkWC5DMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDA4NjI4MmU3NTEyODZmYmJlY2M3NWVhNmVkY2MyNTQxOTJj NTVjNzYwHhcNMjYwMTAxMjIxOTMxWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhkNWJiMmI4OTA1OThlMjM0OWFiNTAzMzE5OThmMTBjNmNkNWQ2ZTc5MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqzHxGEuoM+yjTXMahQOApYfZ3Wuz jPSO6g4Jf1gJij6A4Ej8B1exM1BT6kmCIlycqh6/amU7e4slkuwXs2pzW+ibtyZT JzYnB3/xxw0da0w7r6FLOY1ntyAVoRucTD3jDdhJUiMu4+pzyDVGatxDevcLOLou bS97DEJ5pCzTXzvBOyFeLL0CnMxfPD5Y3YUPM3nmVSbjhCzWjjYPHNp0jziF1UoI xZ9EQy5zjgMBohdrEo+7SkTmxzE6T/UQ5t5/QdL+5v7YbEf9RCDYy7xWsNA8eWEo 8H+TxsDBLHxmSFLw4jb2qTZlFZSR8aDiwOW+WkfUoA2r8FD6OnKnLfqLOwIDAQAB o4ICOzCCAjcwHQYDVR0OBBYEFNW7K4kFmOI0mrUDMZmPEMbNXW55MB8GA1UdIwQY MBaAFAhigudRKG+77Mdepu3MJUGSxVx2MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvQ0dLQzUxRW9iN3ZzeDE2bTdjd2xRWkxGWEhZLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84ZS85ZDg1OTgtZTllMi00NzA5LWI1MzUt NmIwNGFhZGVlZjEwLzEvMWJzcmlRV1k0alNhdFFNeG1ZOFF4czFkYm5rLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC84ZS85ZDg1OTgtZTllMi00NzA5LWI1MzUtNmIwNGFhZGVlZjEw LzEvQ0dLQzUxRW9iN3ZzeDE2bTdjd2xRWkxGWEhZLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMFEGCCsGAQUFBwEHAQH/BEIwQDAvBAIAATApAwQDLh1gAwQB UsBiAwQDXbzwAwQEXmTwAwMAoCwDBAK5CdgDBATZlpAwDQQCAAIwBwMFACoADagw DQYJKoZIhvcNAQELBQADggEBADyNHNzV+60vuRL+jJ+0r5i2TyCx8QF5ylcNSN93 0tIImMdX96J0TcpgSXu2Lajt+M5Kcd/RntAYBIH7grgGF1j2dLfibzSThEbN96LU Gd6895MFh6vQX6Uq+pEYRbIy67AfV0u7GaQft4R/KYysAGjj6MWCe3uzHY1Cy83g xhhYkT9UlbkYTgkUG/BFd7wFlKTTeWzryb/6r9Ip1UdSow9qd/lt9skY77qAzwKz bt1IxRMmmY94oN98M8xLBxm4Tmd4gMN1D8RL3d856l54hUjIUyDMhEuxbEt+5MYz CVIMpqmPBzYzXbGhCmHSeF0rG+fnSn3oidJSYiRl4cafykM= -----END CERTIFICATE-----Generated at Sun Jan 11 07:39:55 2026 by rpki-client