This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a8/c61092-734a-4eef-9d67-4905243bc828/1/Rmb8dY6MEZ-17RmC6GopO-wnOYM.roa File: Rmb8dY6MEZ-17RmC6GopO-wnOYM.roa (raw, json) Hash identifier: CRHZTDQQRYXEHvw2JRIQU/l6pO1eBCjns1FA8CuV7VQ= Subject key identifier: 46:66:FC:75:8E:8C:11:9F:B5:ED:19:82:E8:6A:29:3B:EC:27:39:83 Certificate issuer: /CN=05b1d13c2e26e12786246a5ec4c5bea69864b20f Certificate serial: 019B7AC9051587D9D2BB4D0631EB527F5738 Authority key identifier: 05:B1:D1:3C:2E:26:E1:27:86:24:6A:5E:C4:C5:BE:A6:98:64:B2:0F Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BbHRPC4m4SeGJGpexMW-pphksg8.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a8/c61092-734a-4eef-9d67-4905243bc828/1/Rmb8dY6MEZ-17RmC6GopO-wnOYM.roa Signing time: Thu 01 Jan 2026 18:19:12 +0000 ROA not before: Thu 01 Jan 2026 18:19:12 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 48763 IP address blocks: 5.44.40.0/24 maxlen: 24 5.44.41.0/24 maxlen: 24 194.28.193.0/24 maxlen: 24 217.171.147.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a8/c61092-734a-4eef-9d67-4905243bc828/1/BbHRPC4m4SeGJGpexMW-pphksg8.crl rsync://rpki.ripe.net/repository/DEFAULT/a8/c61092-734a-4eef-9d67-4905243bc828/1/BbHRPC4m4SeGJGpexMW-pphksg8.mft rsync://rpki.ripe.net/repository/DEFAULT/BbHRPC4m4SeGJGpexMW-pphksg8.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 22 Jan 2026 06:01:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7a:c9:05:15:87:d9:d2:bb:4d:06:31:eb:52:7f:57:38 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=05b1d13c2e26e12786246a5ec4c5bea69864b20f Validity Not Before: Jan 1 18:19:12 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=4666fc758e8c119fb5ed1982e86a293bec273983 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:7a:3f:50:0c:62:c5:f4:58:21:49:aa:6d:8e: 10:c0:59:74:8f:ba:b2:6f:98:ac:15:5f:d4:49:0c: a4:4c:87:37:b1:be:be:e6:5b:e6:71:64:c9:d0:69: ce:25:44:c2:89:a6:cc:a5:b5:6e:c3:0d:02:e9:61: ba:16:f2:4b:84:0a:72:77:c4:01:06:af:3e:bc:d3: 6a:65:24:62:9e:c3:23:23:d3:c1:64:a6:74:07:24: 34:2c:5b:f0:8c:d0:4a:04:83:52:bc:90:e6:40:5d: 89:5d:e8:b4:54:05:a7:19:21:de:1b:99:2d:88:cb: a1:b8:91:5e:17:68:fe:90:38:2a:a2:db:2a:1f:df: f3:9e:a5:68:06:fb:ed:50:45:5c:fd:df:af:4f:1f: 07:9b:18:17:3f:92:4c:a8:56:f3:db:8d:b5:6d:68: 69:a8:d9:06:50:c9:59:ef:87:ed:f0:a3:6a:37:66: 94:a3:70:2e:da:28:76:bc:e6:c3:23:c5:97:a5:b2: a2:e9:f3:df:c2:54:47:14:1c:24:e9:a8:06:45:68: fc:63:29:c2:cc:3e:cc:da:00:80:0e:8f:94:4b:10: e7:7f:75:69:b0:00:1a:f5:ac:a6:13:46:4e:0b:13: 85:00:7a:10:b9:ef:90:b3:e1:61:6a:57:f7:67:18: a7:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 46:66:FC:75:8E:8C:11:9F:B5:ED:19:82:E8:6A:29:3B:EC:27:39:83 X509v3 Authority Key Identifier: keyid:05:B1:D1:3C:2E:26:E1:27:86:24:6A:5E:C4:C5:BE:A6:98:64:B2:0F X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BbHRPC4m4SeGJGpexMW-pphksg8.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a8/c61092-734a-4eef-9d67-4905243bc828/1/Rmb8dY6MEZ-17RmC6GopO-wnOYM.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/a8/c61092-734a-4eef-9d67-4905243bc828/1/BbHRPC4m4SeGJGpexMW-pphksg8.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 5.44.40.0/23 194.28.193.0/24 217.171.147.0/24 Signature Algorithm: sha256WithRSAEncryption 4b:b0:c7:9c:df:8b:12:c7:23:e9:04:e7:af:a4:1b:d1:14:34: 2f:36:18:4a:f7:35:a6:7b:fd:30:ec:c2:4b:e9:a0:e2:e2:49: 1f:50:ec:fb:e9:aa:63:46:6b:d0:8f:1a:60:6f:14:83:c2:12: 08:0f:e7:61:40:23:b7:2c:25:b0:f9:ac:02:af:3a:37:02:27: 5c:4c:d0:9e:f2:ac:5a:fc:87:a5:81:3f:1d:2a:a4:5b:06:ae: 07:9b:d4:f5:35:e0:d6:86:f4:50:f3:d6:a2:f7:dc:1e:f8:14: 7d:96:bd:43:af:a8:b3:cc:9b:51:47:b6:89:64:ca:16:6d:0d: c8:54:18:69:7d:84:ee:5b:de:f6:cb:c1:db:84:6b:ca:e5:f8: 05:5f:d4:2d:01:73:22:65:97:53:e4:26:b7:70:3a:10:be:13: e4:4c:fc:69:2e:72:f6:a5:f0:b8:6a:b7:c0:e0:54:62:23:3b: 77:fe:0c:07:80:ff:12:0a:6f:75:c9:f0:3f:f9:42:3f:e2:a5: 87:1f:65:6e:2b:28:04:c3:98:de:c3:d8:08:d0:ac:2a:50:3a: 3b:09:33:02:cf:9b:dc:a4:ff:37:d2:4c:46:76:54:7b:14:98: 1f:32:04:3b:66:9c:3a:37:26:17:97:60:cb:d9:27:4e:af:e5: 01:19:fc:c5 -----BEGIN CERTIFICATE----- MIIFCTCCA/GgAwIBAgISAZt6yQUVh9nSu00GMetSf1c4MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDA1YjFkMTNjMmUyNmUxMjc4NjI0NmE1ZWM0YzViZWE2OTg2 NGIyMGYwHhcNMjYwMTAxMTgxOTEyWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg0NjY2ZmM3NThlOGMxMTlmYjVlZDE5ODJlODZhMjkzYmVjMjczOTgzMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsHo/UAxixfRYIUmqbY4QwFl0j7qy b5isFV/USQykTIc3sb6+5lvmcWTJ0GnOJUTCiabMpbVuww0C6WG6FvJLhApyd8QB Bq8+vNNqZSRinsMjI9PBZKZ0ByQ0LFvwjNBKBINSvJDmQF2JXei0VAWnGSHeG5kt iMuhuJFeF2j+kDgqotsqH9/znqVoBvvtUEVc/d+vTx8HmxgXP5JMqFbz2421bWhp qNkGUMlZ74ft8KNqN2aUo3Au2ih2vObDI8WXpbKi6fPfwlRHFBwk6agGRWj8YynC zD7M2gCADo+USxDnf3VpsAAa9aymE0ZOCxOFAHoQue+Qs+Fhalf3ZxinKQIDAQAB o4ICFTCCAhEwHQYDVR0OBBYEFEZm/HWOjBGfte0ZguhqKTvsJzmDMB8GA1UdIwQY MBaAFAWx0TwuJuEnhiRqXsTFvqaYZLIPMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvQmJIUlBDNG00U2VHSkdwZXhNVy1wcGhrc2c4LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hOC9jNjEwOTItNzM0YS00ZWVmLTlkNjct NDkwNTI0M2JjODI4LzEvUm1iOGRZNk1FWi0xN1JtQzZHb3BPLXduT1lNLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9hOC9jNjEwOTItNzM0YS00ZWVmLTlkNjctNDkwNTI0M2JjODI4 LzEvQmJIUlBDNG00U2VHSkdwZXhNVy1wcGhrc2c4LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCsGCCsGAQUFBwEHAQH/BBwwGjAYBAIAATASAwQBBSwoAwQA whzBAwQA2auTMA0GCSqGSIb3DQEBCwUAA4IBAQBLsMec34sSxyPpBOevpBvRFDQv NhhK9zWme/0w7MJL6aDi4kkfUOz76apjRmvQjxpgbxSDwhIID+dhQCO3LCWw+awC rzo3AidcTNCe8qxa/IelgT8dKqRbBq4Hm9T1NeDWhvRQ89ai99we+BR9lr1Dr6iz zJtRR7aJZMoWbQ3IVBhpfYTuW972y8HbhGvK5fgFX9QtAXMiZZdT5Ca3cDoQvhPk TPxpLnL2pfC4arfA4FRiIzt3/gwHgP8SCm91yfA/+UI/4qWHH2VuKygEw5jew9gI 0KwqUDo7CTMCz5vcpP830kxGdlR7FJgfMgQ7Zpw6NyYXl2DL2SdOr+UBGfzF -----END CERTIFICATE-----Generated at Wed Jan 21 14:11:48 2026 by rpki-client