This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ac/52a10d-d851-40ae-a8b0-a1028eda6383/1/bZWk4AhB-ix13SfItg99WGR-iHE.roa File: bZWk4AhB-ix13SfItg99WGR-iHE.roa (raw, json) Hash identifier: /vtIcpptaY2u+l35mug1F/OipcmBaaaq9NSFgSW4I9A= Subject key identifier: 6D:95:A4:E0:08:41:FA:2C:75:DD:27:C8:B6:0F:7D:58:64:7E:88:71 Certificate issuer: /CN=8d89223c1f335c0cc569359fa2dda349a2236ccb Certificate serial: 019BA28522B42C7F3D0533FB344E0F6680F6 Authority key identifier: 8D:89:22:3C:1F:33:5C:0C:C5:69:35:9F:A2:DD:A3:49:A2:23:6C:CB Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jYkiPB8zXAzFaTWfot2jSaIjbMs.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ac/52a10d-d851-40ae-a8b0-a1028eda6383/1/bZWk4AhB-ix13SfItg99WGR-iHE.roa Signing time: Fri 09 Jan 2026 11:29:52 +0000 ROA not before: Fri 09 Jan 2026 11:29:52 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 42083 IP address blocks: 185.213.169.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ac/52a10d-d851-40ae-a8b0-a1028eda6383/1/jYkiPB8zXAzFaTWfot2jSaIjbMs.crl rsync://rpki.ripe.net/repository/DEFAULT/ac/52a10d-d851-40ae-a8b0-a1028eda6383/1/jYkiPB8zXAzFaTWfot2jSaIjbMs.mft rsync://rpki.ripe.net/repository/DEFAULT/jYkiPB8zXAzFaTWfot2jSaIjbMs.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 22 Jan 2026 20:01:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:a2:85:22:b4:2c:7f:3d:05:33:fb:34:4e:0f:66:80:f6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8d89223c1f335c0cc569359fa2dda349a2236ccb Validity Not Before: Jan 9 11:29:52 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=6d95a4e00841fa2c75dd27c8b60f7d58647e8871 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:f9:98:49:ed:5a:10:44:9f:f3:e7:50:1e:29: 8e:a1:c2:1a:51:5c:60:0c:c6:01:0d:28:43:ef:19: ec:1b:c2:af:50:09:39:e4:11:30:69:b9:75:fb:d6: b5:dd:c4:00:5c:46:8a:01:17:ab:c6:65:85:86:de: c5:48:df:39:4a:dc:cf:0d:2f:c6:01:c3:67:b2:ef: cf:53:8d:5e:ea:e8:f9:20:0d:42:91:15:e7:28:7b: 8f:77:54:ae:8d:8d:1b:54:de:65:24:ef:fb:5a:a3: 70:75:78:aa:83:e4:34:3f:c1:51:b1:cd:7b:d9:e1: ae:3d:fb:24:1c:f1:e2:ab:cc:a3:3f:99:35:0c:82: 53:ac:ef:0e:fc:ea:2a:95:de:73:5b:3f:32:a0:7d: 8b:81:f6:0f:75:e6:e1:78:b3:4c:5e:e0:99:7e:30: 5a:57:e8:29:2a:a9:2c:54:e9:cb:39:3f:69:9f:c9: 18:ff:a3:48:81:04:f1:1c:ac:2a:b7:d1:d4:16:89: 21:50:85:18:be:cd:0f:d9:c1:b6:67:7b:57:e7:57: de:74:5b:4e:00:8f:aa:ca:4f:93:e4:ac:b8:70:40: eb:9a:64:a8:30:f0:2f:d4:0b:4b:fe:6d:d6:90:0c: 63:9e:1b:07:01:73:b3:0c:7f:1f:fc:67:a0:e4:0d: 56:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6D:95:A4:E0:08:41:FA:2C:75:DD:27:C8:B6:0F:7D:58:64:7E:88:71 X509v3 Authority Key Identifier: keyid:8D:89:22:3C:1F:33:5C:0C:C5:69:35:9F:A2:DD:A3:49:A2:23:6C:CB X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jYkiPB8zXAzFaTWfot2jSaIjbMs.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ac/52a10d-d851-40ae-a8b0-a1028eda6383/1/bZWk4AhB-ix13SfItg99WGR-iHE.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/ac/52a10d-d851-40ae-a8b0-a1028eda6383/1/jYkiPB8zXAzFaTWfot2jSaIjbMs.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.213.169.0/24 Signature Algorithm: sha256WithRSAEncryption 00:ea:83:45:ab:20:c5:95:3c:d2:1c:76:01:6f:bf:49:ce:ca: ef:f8:85:8f:41:42:7e:74:89:85:4a:d8:eb:35:00:27:53:ba: 5e:4f:56:ff:de:89:a1:ba:05:f9:af:c9:a7:ba:e1:8e:5f:96: e9:94:bb:16:5f:9d:a1:bd:52:e8:80:fb:db:f2:18:15:aa:8b: eb:a8:8b:34:14:ad:3e:96:4a:83:e4:d5:4b:74:ac:09:ef:c3: 85:c7:c0:e2:8c:48:8b:16:fd:78:b6:9f:65:2c:89:9b:cc:c0: 17:e4:1e:35:45:7e:d1:f7:d3:cd:8a:83:9b:77:71:72:86:29: 6a:ff:b9:7f:f0:9e:61:10:b1:b3:6d:9f:bf:78:20:6e:30:e1: 32:e6:35:24:89:08:1c:b4:8b:cd:b1:80:5c:20:a8:2d:2c:5a: 30:4a:cf:28:cd:df:50:54:e9:3f:ca:ef:ee:38:c3:94:8d:ec: 39:37:17:8c:ac:13:a3:ea:b4:76:1f:f3:1e:60:89:8a:6c:fa: 3f:28:0a:98:4a:e0:5a:41:61:b2:b3:6e:62:55:0d:a4:90:91: 33:71:cf:17:f5:d1:c7:fb:42:b7:b8:5d:97:2c:bf:13:3e:84: 93:e0:3b:72:b5:2e:f4:f9:e2:70:78:20:7b:c7:12:17:2c:c6: f3:43:f1:19 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZuihSK0LH89BTP7NE4PZoD2MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDhkODkyMjNjMWYzMzVjMGNjNTY5MzU5ZmEyZGRhMzQ5YTIy MzZjY2IwHhcNMjYwMTA5MTEyOTUyWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg2ZDk1YTRlMDA4NDFmYTJjNzVkZDI3YzhiNjBmN2Q1ODY0N2U4ODcxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsvmYSe1aEESf8+dQHimOocIaUVxg DMYBDShD7xnsG8KvUAk55BEwabl1+9a13cQAXEaKARerxmWFht7FSN85StzPDS/G AcNnsu/PU41e6uj5IA1CkRXnKHuPd1SujY0bVN5lJO/7WqNwdXiqg+Q0P8FRsc17 2eGuPfskHPHiq8yjP5k1DIJTrO8O/Ooqld5zWz8yoH2LgfYPdebheLNMXuCZfjBa V+gpKqksVOnLOT9pn8kY/6NIgQTxHKwqt9HUFokhUIUYvs0P2cG2Z3tX51fedFtO AI+qyk+T5Ky4cEDrmmSoMPAv1AtL/m3WkAxjnhsHAXOzDH8f/Geg5A1WLwIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFG2VpOAIQfosdd0nyLYPfVhkfohxMB8GA1UdIwQY MBaAFI2JIjwfM1wMxWk1n6Ldo0miI2zLMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvallraVBCOHpYQXpGYVRXZm90MmpTYUlqYk1zLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hYy81MmExMGQtZDg1MS00MGFlLWE4YjAt YTEwMjhlZGE2MzgzLzEvYlpXazRBaEItaXgxM1NmSXRnOTlXR1ItaUhFLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9hYy81MmExMGQtZDg1MS00MGFlLWE4YjAtYTEwMjhlZGE2Mzgz LzEvallraVBCOHpYQXpGYVRXZm90MmpTYUlqYk1zLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAudWpMA0G CSqGSIb3DQEBCwUAA4IBAQAA6oNFqyDFlTzSHHYBb79Jzsrv+IWPQUJ+dImFStjr NQAnU7peT1b/3omhugX5r8mnuuGOX5bplLsWX52hvVLogPvb8hgVqovrqIs0FK0+ lkqD5NVLdKwJ78OFx8DijEiLFv14tp9lLImbzMAX5B41RX7R99PNioObd3Fyhilq /7l/8J5hELGzbZ+/eCBuMOEy5jUkiQgctIvNsYBcIKgtLFowSs8ozd9QVOk/yu/u OMOUjew5NxeMrBOj6rR2H/MeYImKbPo/KAqYSuBaQWGys25iVQ2kkJEzcc8X9dHH +0K3uF2XLL8TPoST4DtytS70+eJweCB7xxIXLMbzQ/EZ -----END CERTIFICATE-----Generated at Thu Jan 22 01:29:25 2026 by rpki-client