This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b5/f2f1c5-866c-42b5-8b46-38669d1e2301/1/tfHdDRVXG7intRn8ynqb-cwa37E.roa File: tfHdDRVXG7intRn8ynqb-cwa37E.roa (raw, json) Hash identifier: C4IgEy8F2zxJrndcjUMLwRBcCn03RIvDFs2z8wsXHAQ= Subject key identifier: B5:F1:DD:0D:15:57:1B:B8:A7:B5:19:FC:CA:7A:9B:F9:CC:1A:DF:B1 Certificate issuer: /CN=6dfa4a1ffc749b1c4fa3b6da819b6dbb9ae885a0 Certificate serial: 019BC1C56A0D185E5ED0538475F53D902E25 Authority key identifier: 6D:FA:4A:1F:FC:74:9B:1C:4F:A3:B6:DA:81:9B:6D:BB:9A:E8:85:A0 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bfpKH_x0mxxPo7bagZttu5rohaA.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b5/f2f1c5-866c-42b5-8b46-38669d1e2301/1/tfHdDRVXG7intRn8ynqb-cwa37E.roa Signing time: Thu 15 Jan 2026 13:08:18 +0000 ROA not before: Thu 15 Jan 2026 13:08:18 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 34705 IP address blocks: 85.27.128.0/17 maxlen: 17 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b5/f2f1c5-866c-42b5-8b46-38669d1e2301/1/bfpKH_x0mxxPo7bagZttu5rohaA.crl rsync://rpki.ripe.net/repository/DEFAULT/b5/f2f1c5-866c-42b5-8b46-38669d1e2301/1/bfpKH_x0mxxPo7bagZttu5rohaA.mft rsync://rpki.ripe.net/repository/DEFAULT/bfpKH_x0mxxPo7bagZttu5rohaA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 21:05:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:c1:c5:6a:0d:18:5e:5e:d0:53:84:75:f5:3d:90:2e:25 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6dfa4a1ffc749b1c4fa3b6da819b6dbb9ae885a0 Validity Not Before: Jan 15 13:08:18 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=b5f1dd0d15571bb8a7b519fcca7a9bf9cc1adfb1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:06:b5:19:35:34:09:a4:50:5f:11:ef:bd:73: d6:56:d5:f0:d0:8f:6d:ee:3f:0f:ff:d0:c5:a8:3c: 9f:b8:0b:c8:f8:79:aa:12:e5:63:0c:19:29:42:47: 81:f6:4e:89:9a:09:ec:f5:e6:ad:8c:cb:9a:e2:f5: 0c:27:21:53:6c:4b:05:6b:30:b1:94:01:c8:e8:55: 86:fe:60:62:b7:6a:4b:fd:37:b8:ee:94:e3:fe:79: e1:e9:99:4e:a2:82:df:be:16:83:da:0c:7b:d2:7f: d2:70:13:f8:d3:72:7f:af:99:85:18:e3:53:e0:6c: 29:9f:28:b4:21:25:0d:f4:f5:09:3d:7a:9a:0b:0e: 9b:e0:96:8e:9d:9d:85:5f:df:b1:43:7f:a9:89:e9: 57:93:68:27:9a:84:fc:32:db:02:35:86:33:df:3d: e4:7f:17:b4:da:8a:49:f3:0a:6f:d8:27:d1:5a:f2: 9b:5d:7d:c7:bd:e3:e5:2a:1b:31:29:9f:80:9d:4a: 4b:66:b3:8e:85:33:b3:f6:5f:c7:b7:47:d3:29:0a: 85:54:8f:21:db:72:9c:ab:4c:af:30:b2:3e:c7:42: 1b:7b:bf:5a:07:61:a6:b5:29:bf:e0:66:b6:93:c7: 62:74:e1:ee:cc:7a:73:ad:a3:6a:5f:8f:2e:09:07: 5a:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B5:F1:DD:0D:15:57:1B:B8:A7:B5:19:FC:CA:7A:9B:F9:CC:1A:DF:B1 X509v3 Authority Key Identifier: keyid:6D:FA:4A:1F:FC:74:9B:1C:4F:A3:B6:DA:81:9B:6D:BB:9A:E8:85:A0 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bfpKH_x0mxxPo7bagZttu5rohaA.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b5/f2f1c5-866c-42b5-8b46-38669d1e2301/1/tfHdDRVXG7intRn8ynqb-cwa37E.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/b5/f2f1c5-866c-42b5-8b46-38669d1e2301/1/bfpKH_x0mxxPo7bagZttu5rohaA.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 85.27.128.0/17 Signature Algorithm: sha256WithRSAEncryption 5e:f6:e5:6e:15:ec:bc:61:e4:6c:d7:ea:75:da:96:23:35:17: 8b:f2:9b:f3:04:38:6c:1f:4d:04:e6:98:0c:fb:f6:fb:a4:a9: 69:d4:5d:34:ba:63:f1:5b:cd:5d:c5:6d:11:27:92:aa:63:1f: f9:23:14:57:db:2c:f2:8c:07:05:e0:7b:58:51:a0:46:f4:c0: 91:85:e4:ba:bb:ec:97:4a:49:cd:ff:3a:94:18:35:85:1c:52: 56:02:9a:e8:9a:20:0e:61:0d:21:57:e8:99:09:53:50:00:26: f3:f7:f9:e6:f7:dc:51:df:a6:26:77:42:e8:5e:f2:b9:7c:27: 01:23:af:d0:4c:6b:2e:86:f8:19:da:5a:37:70:d2:2f:89:d7: bd:bd:8d:57:0a:3c:dc:46:d3:d7:e5:9c:63:fe:1a:a3:06:83: 3c:ee:ae:16:8c:64:84:0d:58:11:2d:ac:ec:1e:f0:d2:35:a8: 82:f3:1d:60:1e:ec:58:4b:78:3d:d0:ac:56:69:4e:ec:e7:49: af:20:ac:84:01:7d:26:fa:f4:a9:f6:c4:12:ce:8a:3c:2c:b3: 50:bc:ef:cb:6b:c7:4e:ee:0f:fd:7e:16:ba:d4:27:1a:1a:72: aa:13:f4:24:9c:2c:3e:65:44:94:c8:42:20:7e:9d:8a:21:a2: 4b:cf:7a:da -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZvBxWoNGF5e0FOEdfU9kC4lMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDZkZmE0YTFmZmM3NDliMWM0ZmEzYjZkYTgxOWI2ZGJiOWFl ODg1YTAwHhcNMjYwMTE1MTMwODE4WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhiNWYxZGQwZDE1NTcxYmI4YTdiNTE5ZmNjYTdhOWJmOWNjMWFkZmIxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1ga1GTU0CaRQXxHvvXPWVtXw0I9t 7j8P/9DFqDyfuAvI+HmqEuVjDBkpQkeB9k6Jmgns9eatjMua4vUMJyFTbEsFazCx lAHI6FWG/mBit2pL/Te47pTj/nnh6ZlOooLfvhaD2gx70n/ScBP403J/r5mFGONT 4Gwpnyi0ISUN9PUJPXqaCw6b4JaOnZ2FX9+xQ3+pielXk2gnmoT8MtsCNYYz3z3k fxe02opJ8wpv2CfRWvKbXX3HvePlKhsxKZ+AnUpLZrOOhTOz9l/Ht0fTKQqFVI8h 23Kcq0yvMLI+x0Ibe79aB2GmtSm/4Ga2k8didOHuzHpzraNqX48uCQdavQIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFLXx3Q0VVxu4p7UZ/Mp6m/nMGt+xMB8GA1UdIwQY MBaAFG36Sh/8dJscT6O22oGbbbua6IWgMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvYmZwS0hfeDBteHhQbzdiYWdadHR1NXJvaGFBLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iNS9mMmYxYzUtODY2Yy00MmI1LThiNDYt Mzg2NjlkMWUyMzAxLzEvdGZIZERSVlhHN2ludFJuOHlucWItY3dhMzdFLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iNS9mMmYxYzUtODY2Yy00MmI1LThiNDYtMzg2NjlkMWUyMzAx LzEvYmZwS0hfeDBteHhQbzdiYWdadHR1NXJvaGFBLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQHVRuAMA0G CSqGSIb3DQEBCwUAA4IBAQBe9uVuFey8YeRs1+p12pYjNReL8pvzBDhsH00E5pgM +/b7pKlp1F00umPxW81dxW0RJ5KqYx/5IxRX2yzyjAcF4HtYUaBG9MCRheS6u+yX SknN/zqUGDWFHFJWApromiAOYQ0hV+iZCVNQACbz9/nm99xR36Ymd0LoXvK5fCcB I6/QTGsuhvgZ2lo3cNIvide9vY1XCjzcRtPX5Zxj/hqjBoM87q4WjGSEDVgRLazs HvDSNaiC8x1gHuxYS3g90KxWaU7s50mvIKyEAX0m+vSp9sQSzoo8LLNQvO/La8dO 7g/9fha61CcaGnKqE/QknCw+ZUSUyEIgfp2KIaJLz3ra -----END CERTIFICATE-----Generated at Tue Feb 10 02:46:43 2026 by rpki-client