This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/af/31b11f-2b6b-4252-990b-516ca84fe5fe/1/Bl6ecBYyvP74akh6LYMNk-UPmww.roa File: Bl6ecBYyvP74akh6LYMNk-UPmww.roa (raw, json) Hash identifier: WdzzNwRANJ0xSBXtIJYAS4hehtEEYmmyefLmgeY2F3M= Subject key identifier: 06:5E:9E:70:16:32:BC:FE:F8:6A:48:7A:2D:83:0D:93:E5:0F:9B:0C Certificate issuer: /CN=e66e7726ff53a13c80ccbca4d5d394e4e8aef542 Certificate serial: 019B7CECEF4FA58D727C27EB28C19D3F36B5 Authority key identifier: E6:6E:77:26:FF:53:A1:3C:80:CC:BC:A4:D5:D3:94:E4:E8:AE:F5:42 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5m53Jv9ToTyAzLyk1dOU5Oiu9UI.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/af/31b11f-2b6b-4252-990b-516ca84fe5fe/1/Bl6ecBYyvP74akh6LYMNk-UPmww.roa Signing time: Fri 02 Jan 2026 04:17:41 +0000 ROA not before: Fri 02 Jan 2026 04:17:41 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 209786 IP address blocks: 213.139.236.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/af/31b11f-2b6b-4252-990b-516ca84fe5fe/1/5m53Jv9ToTyAzLyk1dOU5Oiu9UI.crl rsync://rpki.ripe.net/repository/DEFAULT/af/31b11f-2b6b-4252-990b-516ca84fe5fe/1/5m53Jv9ToTyAzLyk1dOU5Oiu9UI.mft rsync://rpki.ripe.net/repository/DEFAULT/5m53Jv9ToTyAzLyk1dOU5Oiu9UI.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7c:ec:ef:4f:a5:8d:72:7c:27:eb:28:c1:9d:3f:36:b5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=e66e7726ff53a13c80ccbca4d5d394e4e8aef542 Validity Not Before: Jan 2 04:17:41 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=065e9e701632bcfef86a487a2d830d93e50f9b0c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:1a:60:c5:f7:5f:79:c5:82:5f:03:98:47:67: ec:37:b2:58:a0:a7:9c:81:fa:00:cc:b3:7e:2c:9e: 1a:87:16:72:1e:4d:a7:2f:1c:7f:31:df:12:84:04: b5:d6:52:a7:cb:6d:a7:34:2b:9b:8e:89:9b:45:ae: 5d:ce:23:fa:44:db:e9:ed:eb:49:b4:00:5d:c5:23: 2a:09:b2:02:19:5d:8e:97:63:2f:c3:4f:e1:d7:e3: 04:5b:92:1a:0b:c0:47:50:44:92:c3:3a:1d:ac:05: c2:37:72:76:32:8c:cb:9f:53:32:5f:5c:d9:b5:19: f4:a4:a4:58:f9:a1:a8:81:23:a3:0f:03:7a:81:f7: e1:43:51:50:d2:81:16:cb:60:9d:88:20:0f:05:90: f1:73:bc:e8:18:39:a2:0a:2c:b9:05:2a:56:e0:42: 40:af:0c:39:3f:f1:e9:ff:22:2c:74:cf:9c:27:8a: b2:5b:26:54:22:cf:71:2d:c0:60:3d:9d:3a:7d:79: 72:02:00:ea:11:89:52:d4:4d:b1:d5:42:de:e0:81: 1c:d5:d1:2d:5a:17:5e:ee:8e:8f:d9:11:ff:53:58: 9b:79:9b:32:22:1d:b9:94:4e:db:92:7d:3d:e2:be: 11:6c:93:c8:0e:fa:db:03:3b:13:6d:3a:5a:4a:c5: 46:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 06:5E:9E:70:16:32:BC:FE:F8:6A:48:7A:2D:83:0D:93:E5:0F:9B:0C X509v3 Authority Key Identifier: keyid:E6:6E:77:26:FF:53:A1:3C:80:CC:BC:A4:D5:D3:94:E4:E8:AE:F5:42 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5m53Jv9ToTyAzLyk1dOU5Oiu9UI.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/af/31b11f-2b6b-4252-990b-516ca84fe5fe/1/Bl6ecBYyvP74akh6LYMNk-UPmww.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/af/31b11f-2b6b-4252-990b-516ca84fe5fe/1/5m53Jv9ToTyAzLyk1dOU5Oiu9UI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 213.139.236.0/22 Signature Algorithm: sha256WithRSAEncryption 84:12:b0:74:eb:b5:b5:62:97:52:8f:32:e6:2f:b0:52:e7:95: 34:2e:2b:20:fa:24:0c:bd:b5:e5:f6:10:23:73:e7:1c:c5:fe: 9f:06:c3:64:da:a2:38:eb:6a:07:5c:6f:26:a6:f0:3c:2b:19: fd:11:4b:aa:6d:51:b7:a1:6d:bb:b5:7e:f2:b8:1a:72:e9:8e: 7a:6e:08:f1:92:b2:10:fb:0d:d2:0b:a5:4f:e3:3e:24:f9:fd: f8:7c:b9:a7:f7:12:a1:39:c1:0b:45:80:db:00:00:b3:43:e1: 6f:82:97:b1:61:93:32:48:ac:96:ef:9e:c4:8c:4e:c4:ef:f4: e7:69:5e:d0:a7:42:f2:b8:f5:39:58:d4:e4:db:ed:04:a5:6c: 67:3d:af:91:77:7b:0a:97:68:5b:75:01:d8:71:74:41:9b:b2: b9:ef:7d:47:d3:23:bf:3c:9e:30:eb:29:20:95:26:58:b6:00: 39:9e:0d:2a:38:c9:02:15:84:08:69:09:f8:24:21:62:45:a5: b4:59:84:61:40:cb:bd:a1:58:15:c1:7f:15:a5:2a:5b:e2:14: d7:0e:c0:dd:18:eb:1f:fe:5c:76:54:90:70:4d:9a:db:fb:d9: 4b:75:27:5e:b4:33:c7:e5:cb:38:89:12:66:05:a7:63:26:6e: e0:a2:84:d9 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt87O9PpY1yfCfrKMGdPza1MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGU2NmU3NzI2ZmY1M2ExM2M4MGNjYmNhNGQ1ZDM5NGU0ZThh ZWY1NDIwHhcNMjYwMTAyMDQxNzQxWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygwNjVlOWU3MDE2MzJiY2ZlZjg2YTQ4N2EyZDgzMGQ5M2U1MGY5YjBjMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1xpgxfdfecWCXwOYR2fsN7JYoKec gfoAzLN+LJ4ahxZyHk2nLxx/Md8ShAS11lKny22nNCubjombRa5dziP6RNvp7etJ tABdxSMqCbICGV2Ol2Mvw0/h1+MEW5IaC8BHUESSwzodrAXCN3J2MozLn1MyX1zZ tRn0pKRY+aGogSOjDwN6gffhQ1FQ0oEWy2CdiCAPBZDxc7zoGDmiCiy5BSpW4EJA rww5P/Hp/yIsdM+cJ4qyWyZUIs9xLcBgPZ06fXlyAgDqEYlS1E2x1ULe4IEc1dEt Whde7o6P2RH/U1ibeZsyIh25lE7bkn094r4RbJPIDvrbAzsTbTpaSsVGywIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFAZennAWMrz++GpIei2DDZPlD5sMMB8GA1UdIwQY MBaAFOZudyb/U6E8gMy8pNXTlOTorvVCMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvNW01M0p2OVRvVHlBekx5azFkT1U1T2l1OVVJLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hZi8zMWIxMWYtMmI2Yi00MjUyLTk5MGIt NTE2Y2E4NGZlNWZlLzEvQmw2ZWNCWXl2UDc0YWtoNkxZTU5rLVVQbXd3LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9hZi8zMWIxMWYtMmI2Yi00MjUyLTk5MGItNTE2Y2E4NGZlNWZl LzEvNW01M0p2OVRvVHlBekx5azFkT1U1T2l1OVVJLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQC1YvsMA0G CSqGSIb3DQEBCwUAA4IBAQCEErB067W1YpdSjzLmL7BS55U0Lisg+iQMvbXl9hAj c+ccxf6fBsNk2qI462oHXG8mpvA8Kxn9EUuqbVG3oW27tX7yuBpy6Y56bgjxkrIQ +w3SC6VP4z4k+f34fLmn9xKhOcELRYDbAACzQ+FvgpexYZMySKyW757EjE7E7/Tn aV7Qp0LyuPU5WNTk2+0EpWxnPa+Rd3sKl2hbdQHYcXRBm7K5731H0yO/PJ4w6ykg lSZYtgA5ng0qOMkCFYQIaQn4JCFiRaW0WYRhQMu9oVgVwX8VpSpb4hTXDsDdGOsf /lx2VJBwTZrb+9lLdSdetDPH5cs4iRJmBadjJm7gooTZ -----END CERTIFICATE-----Generated at Mon Feb 9 22:27:19 2026 by rpki-client