This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b0/4aa789-878b-472b-b847-872ba2d9f44c/1/63BcMNnsa0gkaieaahCOvUU4uiA.roa File: 63BcMNnsa0gkaieaahCOvUU4uiA.roa (raw, json) Hash identifier: SfFqsaDU+Fy+iAr8kTq5WQFuqCPqLdEbtuaGnWF1UIw= Subject key identifier: EB:70:5C:30:D9:EC:6B:48:24:6A:27:9A:6A:10:8E:BD:45:38:BA:20 Certificate issuer: /CN=84b2f4fa5163af96168e88fbf9cb4ed1ed8fb4c4 Certificate serial: 019B7BA548A84A5552CF65108AFC7A25D4CC Authority key identifier: 84:B2:F4:FA:51:63:AF:96:16:8E:88:FB:F9:CB:4E:D1:ED:8F:B4:C4 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hLL0-lFjr5YWjoj7-ctO0e2PtMQ.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b0/4aa789-878b-472b-b847-872ba2d9f44c/1/63BcMNnsa0gkaieaahCOvUU4uiA.roa Signing time: Thu 01 Jan 2026 22:19:48 +0000 ROA not before: Thu 01 Jan 2026 22:19:48 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 202690 IP address blocks: 212.5.156.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b0/4aa789-878b-472b-b847-872ba2d9f44c/1/hLL0-lFjr5YWjoj7-ctO0e2PtMQ.crl rsync://rpki.ripe.net/repository/DEFAULT/b0/4aa789-878b-472b-b847-872ba2d9f44c/1/hLL0-lFjr5YWjoj7-ctO0e2PtMQ.mft rsync://rpki.ripe.net/repository/DEFAULT/hLL0-lFjr5YWjoj7-ctO0e2PtMQ.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 27 Jan 2026 01:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7b:a5:48:a8:4a:55:52:cf:65:10:8a:fc:7a:25:d4:cc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=84b2f4fa5163af96168e88fbf9cb4ed1ed8fb4c4 Validity Not Before: Jan 1 22:19:48 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=eb705c30d9ec6b48246a279a6a108ebd4538ba20 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:1e:04:3b:88:ff:6c:78:c3:2d:8f:d6:57:64: bc:46:b1:e1:1b:4b:cb:cd:2f:41:da:3d:8c:c3:0c: 1a:5b:11:f5:da:cc:63:96:ef:64:89:e6:72:d2:10: 2c:4d:80:4e:87:da:ac:01:16:bd:31:22:e0:1f:42: 08:4e:10:85:7d:5f:77:72:ee:63:34:2f:6e:76:c7: 28:c3:c2:df:a3:e4:7a:02:36:0a:6a:87:de:ce:58: f0:8f:b7:fd:bc:f6:6c:e4:25:2e:21:3d:0a:6d:e5: 54:6c:10:51:ae:99:e6:21:54:25:76:5f:bb:aa:cd: 38:58:cc:b8:8d:ce:90:b3:2e:64:ee:d8:e2:73:5d: d8:80:8d:31:9e:e9:a3:3e:ab:37:22:a3:4e:bb:72: ea:06:69:60:2e:5d:56:5a:cb:51:be:fe:ca:21:93: 61:ed:67:3e:05:8f:ba:bc:c9:60:4e:7f:3d:69:73: 55:1b:2e:9a:02:00:7d:51:d8:04:2a:ef:75:93:44: b9:86:a7:89:52:66:8d:36:10:03:62:db:fd:3d:b0: 7c:e8:46:b2:b7:5a:55:ed:75:71:53:77:02:0d:a4: d9:14:23:8b:8e:d6:53:ba:c1:b8:2b:57:04:63:46: 46:fb:80:78:1a:2a:7a:80:28:68:66:e3:32:b8:d4: 1e:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EB:70:5C:30:D9:EC:6B:48:24:6A:27:9A:6A:10:8E:BD:45:38:BA:20 X509v3 Authority Key Identifier: keyid:84:B2:F4:FA:51:63:AF:96:16:8E:88:FB:F9:CB:4E:D1:ED:8F:B4:C4 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hLL0-lFjr5YWjoj7-ctO0e2PtMQ.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/4aa789-878b-472b-b847-872ba2d9f44c/1/63BcMNnsa0gkaieaahCOvUU4uiA.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/4aa789-878b-472b-b847-872ba2d9f44c/1/hLL0-lFjr5YWjoj7-ctO0e2PtMQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 212.5.156.0/24 Signature Algorithm: sha256WithRSAEncryption 39:d4:28:a2:98:eb:3e:9c:30:16:23:6a:3a:6a:9a:a2:66:31: 6c:45:0a:bc:00:59:03:4b:1b:fa:0d:e1:52:60:0b:ae:d1:17: c1:3d:68:bc:aa:a2:17:7d:db:47:7a:eb:b0:c3:61:1f:8a:9e: 30:50:8f:07:1d:5b:43:83:b3:38:d5:c8:62:95:da:b0:a5:93: 36:47:9b:06:c1:2c:b4:e8:53:94:24:07:a1:3f:01:54:72:88: 60:8b:cf:64:8c:c5:ba:d8:6d:73:7a:46:f2:3c:b6:72:38:5a: 2c:94:9e:a2:ca:75:3f:27:b0:71:62:0e:dd:67:c0:d6:7a:46: 1a:79:41:69:21:43:71:7f:59:77:3d:bc:4b:24:98:10:c9:4f: 71:a7:e0:b5:4d:bb:b3:a1:f4:e8:a4:a9:e3:04:4a:f5:22:e5: 82:99:5c:f1:51:60:bd:d2:db:3d:26:b3:28:19:6f:a9:3f:9c: 74:f3:76:0a:69:08:40:40:60:9c:36:5f:7f:20:8f:95:91:cb: 3a:de:0d:87:60:ed:16:a4:72:ab:70:b2:cf:f0:ff:34:b9:8f: 5e:53:36:d6:46:4b:3c:c9:16:ae:64:bf:d0:9a:f9:06:c0:54: 9c:59:55:d9:40:84:fc:99:b2:e1:2a:d7:69:d0:5c:78:06:18: 45:44:17:eb -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt7pUioSlVSz2UQivx6JdTMMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDg0YjJmNGZhNTE2M2FmOTYxNjhlODhmYmY5Y2I0ZWQxZWQ4 ZmI0YzQwHhcNMjYwMTAxMjIxOTQ4WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhlYjcwNWMzMGQ5ZWM2YjQ4MjQ2YTI3OWE2YTEwOGViZDQ1MzhiYTIwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyh4EO4j/bHjDLY/WV2S8RrHhG0vL zS9B2j2MwwwaWxH12sxjlu9kieZy0hAsTYBOh9qsARa9MSLgH0IIThCFfV93cu5j NC9udscow8Lfo+R6AjYKaofezljwj7f9vPZs5CUuIT0KbeVUbBBRrpnmIVQldl+7 qs04WMy4jc6Qsy5k7tjic13YgI0xnumjPqs3IqNOu3LqBmlgLl1WWstRvv7KIZNh 7Wc+BY+6vMlgTn89aXNVGy6aAgB9UdgEKu91k0S5hqeJUmaNNhADYtv9PbB86Eay t1pV7XVxU3cCDaTZFCOLjtZTusG4K1cEY0ZG+4B4Gip6gChoZuMyuNQeOwIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFOtwXDDZ7GtIJGonmmoQjr1FOLogMB8GA1UdIwQY MBaAFISy9PpRY6+WFo6I+/nLTtHtj7TEMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvaExMMC1sRmpyNVlXam9qNy1jdE8wZTJQdE1RLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iMC80YWE3ODktODc4Yi00NzJiLWI4NDct ODcyYmEyZDlmNDRjLzEvNjNCY01ObnNhMGdrYWllYWFoQ092VVU0dWlBLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iMC80YWE3ODktODc4Yi00NzJiLWI4NDctODcyYmEyZDlmNDRj LzEvaExMMC1sRmpyNVlXam9qNy1jdE8wZTJQdE1RLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQA1AWcMA0G CSqGSIb3DQEBCwUAA4IBAQA51CiimOs+nDAWI2o6apqiZjFsRQq8AFkDSxv6DeFS YAuu0RfBPWi8qqIXfdtHeuuww2Efip4wUI8HHVtDg7M41childqwpZM2R5sGwSy0 6FOUJAehPwFUcohgi89kjMW62G1zekbyPLZyOFoslJ6iynU/J7BxYg7dZ8DWekYa eUFpIUNxf1l3PbxLJJgQyU9xp+C1TbuzofTopKnjBEr1IuWCmVzxUWC90ts9JrMo GW+pP5x083YKaQhAQGCcNl9/II+Vkcs63g2HYO0WpHKrcLLP8P80uY9eUzbWRks8 yRauZL/QmvkGwFScWVXZQIT8mbLhKtdp0Fx4BhhFRBfr -----END CERTIFICATE-----Generated at Mon Jan 26 10:24:56 2026 by rpki-client