This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bd/bc94df-7259-42d1-822a-3d9810098703/1/DlKyBrR63naawFqSxCcY5AiE7sc.roa File: DlKyBrR63naawFqSxCcY5AiE7sc.roa (raw, json) Hash identifier: WQjnV83H98zboyc2IgEVyNSA+r/DYppkxai3rL8VYRs= Subject key identifier: 0E:52:B2:06:B4:7A:DE:76:9A:C0:5A:92:C4:27:18:E4:08:84:EE:C7 Certificate issuer: /CN=1bc3c1bef15f4bccc4e748c08957ecc229a0f1ef Certificate serial: 019B77C6CD0CE103A5A6AD10D39FFF05AB1D Authority key identifier: 1B:C3:C1:BE:F1:5F:4B:CC:C4:E7:48:C0:89:57:EC:C2:29:A0:F1:EF Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/G8PBvvFfS8zE50jAiVfswimg8e8.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bd/bc94df-7259-42d1-822a-3d9810098703/1/DlKyBrR63naawFqSxCcY5AiE7sc.roa Signing time: Thu 01 Jan 2026 04:17:55 +0000 ROA not before: Thu 01 Jan 2026 04:17:55 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 35370 IP address blocks: 160.20.100.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bd/bc94df-7259-42d1-822a-3d9810098703/1/G8PBvvFfS8zE50jAiVfswimg8e8.crl rsync://rpki.ripe.net/repository/DEFAULT/bd/bc94df-7259-42d1-822a-3d9810098703/1/G8PBvvFfS8zE50jAiVfswimg8e8.mft rsync://rpki.ripe.net/repository/DEFAULT/G8PBvvFfS8zE50jAiVfswimg8e8.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 21:05:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:77:c6:cd:0c:e1:03:a5:a6:ad:10:d3:9f:ff:05:ab:1d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1bc3c1bef15f4bccc4e748c08957ecc229a0f1ef Validity Not Before: Jan 1 04:17:55 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=0e52b206b47ade769ac05a92c42718e40884eec7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:21:a7:f1:a2:60:3f:98:bd:32:17:6c:9e:d9: ab:71:29:8d:14:11:4a:81:7d:fe:28:b6:60:89:11: 64:9c:dc:07:68:97:3f:4f:dc:dd:23:3f:37:12:08: 61:5e:28:fe:92:53:a1:ea:94:60:9b:32:c5:4b:b7: a3:e1:c7:fa:52:8b:41:1e:ee:a6:12:3d:20:f0:38: 5e:e0:bc:0c:7f:e6:cf:a1:98:07:e8:ca:c1:04:ec: 6f:68:55:9a:6d:01:71:3d:cf:09:dc:5d:52:01:8b: 1f:88:9c:1b:8a:bb:43:f8:e5:de:0c:e6:78:ac:be: d0:9f:54:a9:3d:4d:be:57:93:52:84:dc:33:b0:07: e0:c1:8b:27:71:41:c3:47:1b:9a:c3:3e:59:44:f6: db:3d:87:b6:0b:22:32:13:44:af:bd:fb:29:37:26: bb:95:47:27:67:14:a5:1b:47:4e:cf:88:f8:0f:17: 38:5d:21:aa:21:b8:a6:f7:af:93:7f:ca:04:de:8d: 36:bd:1f:2b:c3:d4:25:62:aa:68:4e:23:87:fa:b4: 06:c8:07:2b:71:e6:51:10:8e:e2:61:48:69:01:e2: 13:d8:56:7b:1a:61:c2:1a:c8:7f:1f:14:15:a2:b7: 27:e2:a5:27:7a:38:71:f2:99:80:cc:0d:47:6a:1d: ad:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0E:52:B2:06:B4:7A:DE:76:9A:C0:5A:92:C4:27:18:E4:08:84:EE:C7 X509v3 Authority Key Identifier: keyid:1B:C3:C1:BE:F1:5F:4B:CC:C4:E7:48:C0:89:57:EC:C2:29:A0:F1:EF X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/G8PBvvFfS8zE50jAiVfswimg8e8.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/bc94df-7259-42d1-822a-3d9810098703/1/DlKyBrR63naawFqSxCcY5AiE7sc.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/bc94df-7259-42d1-822a-3d9810098703/1/G8PBvvFfS8zE50jAiVfswimg8e8.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 160.20.100.0/22 Signature Algorithm: sha256WithRSAEncryption 70:a7:4f:e1:94:8e:11:d8:3e:60:89:51:25:30:bb:e4:61:62: 86:e6:0a:eb:92:0c:a8:81:f5:8f:17:86:91:13:cf:25:b4:04: b9:12:26:bf:df:51:4e:bf:3f:03:ec:0c:fb:4e:b2:bc:ba:68: 50:64:99:8c:3f:2b:f7:d5:08:35:35:9c:54:75:8b:33:42:c5: c5:e4:3c:4f:23:b5:b7:47:65:bb:fd:92:d6:a4:1d:a5:3a:06: a7:80:17:9e:5e:ab:f3:09:97:88:08:57:ac:d3:84:40:13:63: c3:c6:56:fe:8a:80:8d:ab:62:e6:85:c2:73:d1:22:28:c8:47: 98:e1:1d:e3:aa:37:95:eb:f6:4f:b5:c2:ad:4a:15:64:c0:71: 85:9d:74:fd:28:32:e5:3c:5e:75:c6:7b:60:21:c0:85:f9:ad: a8:de:81:f1:3d:b0:35:f5:03:73:49:72:5e:b1:69:ca:bb:2f: 78:98:2f:c4:39:b7:47:85:e5:c9:a5:3d:ad:e0:c7:92:48:c2: 7a:cb:cb:bc:63:19:03:f4:d3:8b:dc:13:3f:a3:00:b4:ed:68: 02:dc:4b:a7:6f:8c:4d:b6:1c:53:82:7f:da:c0:d7:52:ea:55: 1b:69:42:36:bd:08:09:ed:b0:a4:b6:58:23:2a:30:5d:66:ea: 20:70:20:95 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt3xs0M4QOlpq0Q05//BasdMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDFiYzNjMWJlZjE1ZjRiY2NjNGU3NDhjMDg5NTdlY2MyMjlh MGYxZWYwHhcNMjYwMTAxMDQxNzU1WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygwZTUyYjIwNmI0N2FkZTc2OWFjMDVhOTJjNDI3MThlNDA4ODRlZWM3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuCGn8aJgP5i9MhdsntmrcSmNFBFK gX3+KLZgiRFknNwHaJc/T9zdIz83EghhXij+klOh6pRgmzLFS7ej4cf6UotBHu6m Ej0g8Dhe4LwMf+bPoZgH6MrBBOxvaFWabQFxPc8J3F1SAYsfiJwbirtD+OXeDOZ4 rL7Qn1SpPU2+V5NShNwzsAfgwYsncUHDRxuawz5ZRPbbPYe2CyIyE0SvvfspNya7 lUcnZxSlG0dOz4j4Dxc4XSGqIbim96+Tf8oE3o02vR8rw9QlYqpoTiOH+rQGyAcr ceZREI7iYUhpAeIT2FZ7GmHCGsh/HxQVorcn4qUnejhx8pmAzA1Hah2tFwIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFA5Ssga0et52msBaksQnGOQIhO7HMB8GA1UdIwQY MBaAFBvDwb7xX0vMxOdIwIlX7MIpoPHvMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvRzhQQnZ2RmZTOHpFNTBqQWlWZnN3aW1nOGU4LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iZC9iYzk0ZGYtNzI1OS00MmQxLTgyMmEt M2Q5ODEwMDk4NzAzLzEvRGxLeUJyUjYzbmFhd0ZxU3hDY1k1QWlFN3NjLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iZC9iYzk0ZGYtNzI1OS00MmQxLTgyMmEtM2Q5ODEwMDk4NzAz LzEvRzhQQnZ2RmZTOHpFNTBqQWlWZnN3aW1nOGU4LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCoBRkMA0G CSqGSIb3DQEBCwUAA4IBAQBwp0/hlI4R2D5giVElMLvkYWKG5grrkgyogfWPF4aR E88ltAS5Eia/31FOvz8D7Az7TrK8umhQZJmMPyv31Qg1NZxUdYszQsXF5DxPI7W3 R2W7/ZLWpB2lOgangBeeXqvzCZeICFes04RAE2PDxlb+ioCNq2LmhcJz0SIoyEeY 4R3jqjeV6/ZPtcKtShVkwHGFnXT9KDLlPF51xntgIcCF+a2o3oHxPbA19QNzSXJe sWnKuy94mC/EObdHheXJpT2t4MeSSMJ6y8u8YxkD9NOL3BM/owC07WgC3Eunb4xN thxTgn/awNdS6lUbaUI2vQgJ7bCktlgjKjBdZuogcCCV -----END CERTIFICATE-----Generated at Tue Feb 10 04:27:36 2026 by rpki-client