This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/be/6366b4-dd6f-4040-8895-71be0d51919d/1/043Lbp27EDcUm-b86hgRfQTIMxA.roa File: 043Lbp27EDcUm-b86hgRfQTIMxA.roa (raw, json) Hash identifier: kfaT7xOA8Vvohn0rBNh/7C5Pf0XuWkbtD5lrheMBCvE= Subject key identifier: D3:8D:CB:6E:9D:BB:10:37:14:9B:E6:FC:EA:18:11:7D:04:C8:33:10 Certificate issuer: /CN=55c9b2025e0e695808f6b61ee276aed4fb5680cd Certificate serial: 019B7A5B9D79F0612CD619221345E5C7A33E Authority key identifier: 55:C9:B2:02:5E:0E:69:58:08:F6:B6:1E:E2:76:AE:D4:FB:56:80:CD Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VcmyAl4OaVgI9rYe4nau1PtWgM0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/be/6366b4-dd6f-4040-8895-71be0d51919d/1/043Lbp27EDcUm-b86hgRfQTIMxA.roa Signing time: Thu 01 Jan 2026 16:19:42 +0000 ROA not before: Thu 01 Jan 2026 16:19:42 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 16276 IP address blocks: 168.222.183.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/be/6366b4-dd6f-4040-8895-71be0d51919d/1/VcmyAl4OaVgI9rYe4nau1PtWgM0.crl rsync://rpki.ripe.net/repository/DEFAULT/be/6366b4-dd6f-4040-8895-71be0d51919d/1/VcmyAl4OaVgI9rYe4nau1PtWgM0.mft rsync://rpki.ripe.net/repository/DEFAULT/VcmyAl4OaVgI9rYe4nau1PtWgM0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 19 Jan 2026 06:00:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7a:5b:9d:79:f0:61:2c:d6:19:22:13:45:e5:c7:a3:3e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=55c9b2025e0e695808f6b61ee276aed4fb5680cd Validity Not Before: Jan 1 16:19:42 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=d38dcb6e9dbb1037149be6fcea18117d04c83310 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:cf:dd:5f:ee:8f:5c:86:59:3c:1d:84:22:1f: 21:63:32:41:d2:b5:1f:dc:3c:79:5a:c6:8d:70:b6: ab:5b:75:ae:1e:2e:56:92:81:d5:2d:d7:be:4b:97: 03:df:6c:1a:a3:be:fe:a8:b5:6c:1d:89:fa:fc:f4: 2a:a5:29:44:ed:92:bf:ed:f8:aa:c8:eb:fd:ff:84: ed:fe:f1:47:8a:0b:90:8b:a8:ae:85:9a:6e:73:27: 36:8e:4b:87:84:a4:0e:98:d9:af:81:40:5b:73:2a: 94:7d:12:60:63:11:b7:31:0b:91:23:c7:47:46:2f: 68:18:66:5c:f1:0c:28:7b:1e:fd:49:9b:da:e9:27: ab:4a:8e:27:2f:d3:9e:b9:57:98:b7:3e:28:d8:50: 88:c5:9e:90:94:2f:01:80:61:6d:3b:1a:2b:3d:1f: 01:70:c2:88:cf:ce:7c:34:ea:e7:50:db:d1:7c:47: ea:20:a4:7d:da:5a:41:85:aa:ed:52:80:5f:bd:ba: ac:19:2a:08:a2:55:89:d7:f8:41:41:bb:e9:43:04: e3:b1:f7:b6:73:92:41:2d:43:aa:4c:ff:1e:43:a8: 23:21:91:5c:87:db:d5:b7:1a:3d:43:6b:8f:c3:9c: 23:8b:6e:f5:bc:d6:e4:d7:5e:0e:2e:26:e5:07:96: bf:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D3:8D:CB:6E:9D:BB:10:37:14:9B:E6:FC:EA:18:11:7D:04:C8:33:10 X509v3 Authority Key Identifier: keyid:55:C9:B2:02:5E:0E:69:58:08:F6:B6:1E:E2:76:AE:D4:FB:56:80:CD X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VcmyAl4OaVgI9rYe4nau1PtWgM0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/be/6366b4-dd6f-4040-8895-71be0d51919d/1/043Lbp27EDcUm-b86hgRfQTIMxA.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/be/6366b4-dd6f-4040-8895-71be0d51919d/1/VcmyAl4OaVgI9rYe4nau1PtWgM0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 168.222.183.0/24 Signature Algorithm: sha256WithRSAEncryption 53:40:37:46:ac:af:76:7e:78:9e:f6:42:17:34:bd:1a:ce:17: 5b:d8:95:21:81:d2:fc:87:49:02:e1:49:72:86:3d:34:54:4e: 0c:31:e2:63:d8:1f:e7:f0:d3:92:51:52:9f:e1:6f:d1:f0:24: 12:27:27:1c:59:59:ec:0d:43:d5:a9:5d:65:70:83:7e:8b:4a: d6:6d:6f:4a:8a:45:c9:77:28:c1:ea:7c:13:82:9d:ff:7a:94: d3:56:9e:74:8f:7c:9f:5e:ec:fb:67:36:6d:70:de:fb:43:80: f6:2e:c3:5b:ce:2a:3d:11:97:81:4e:03:0f:35:77:0f:d0:e7: f8:46:28:0e:d0:81:cc:24:d1:de:10:80:3a:69:1f:7b:0e:d5: ac:a1:62:8f:5b:c4:b6:f3:4b:dc:f3:fe:87:d8:96:f8:ec:35: 6f:c4:fe:46:e7:20:4e:e9:2f:40:c4:90:32:fc:35:69:ab:ed: c8:83:e4:61:9d:45:ae:ca:28:47:25:66:c6:69:d2:bd:25:8b: c1:62:5a:6e:60:ad:60:19:d9:15:37:79:a4:94:4c:b1:3a:37: ce:d1:82:5e:0a:20:7d:d0:a8:61:73:9f:19:25:e1:12:9e:6d: f7:26:ad:3c:df:0a:00:64:0c:b2:17:7f:97:87:ee:54:0b:e2: 6a:a8:e4:3f -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt6W5158GEs1hkiE0Xlx6M+MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDU1YzliMjAyNWUwZTY5NTgwOGY2YjYxZWUyNzZhZWQ0ZmI1 NjgwY2QwHhcNMjYwMTAxMTYxOTQyWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhkMzhkY2I2ZTlkYmIxMDM3MTQ5YmU2ZmNlYTE4MTE3ZDA0YzgzMzEwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA48/dX+6PXIZZPB2EIh8hYzJB0rUf 3Dx5WsaNcLarW3WuHi5WkoHVLde+S5cD32wao77+qLVsHYn6/PQqpSlE7ZK/7fiq yOv9/4Tt/vFHiguQi6iuhZpucyc2jkuHhKQOmNmvgUBbcyqUfRJgYxG3MQuRI8dH Ri9oGGZc8Qwoex79SZva6SerSo4nL9OeuVeYtz4o2FCIxZ6QlC8BgGFtOxorPR8B cMKIz858NOrnUNvRfEfqIKR92lpBhartUoBfvbqsGSoIolWJ1/hBQbvpQwTjsfe2 c5JBLUOqTP8eQ6gjIZFch9vVtxo9Q2uPw5wji271vNbk114OLiblB5a/wQIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFNONy26duxA3FJvm/OoYEX0EyDMQMB8GA1UdIwQY MBaAFFXJsgJeDmlYCPa2HuJ2rtT7VoDNMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvVmNteUFsNE9hVmdJOXJZZTRuYXUxUHRXZ00wLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iZS82MzY2YjQtZGQ2Zi00MDQwLTg4OTUt NzFiZTBkNTE5MTlkLzEvMDQzTGJwMjdFRGNVbS1iODZoZ1JmUVRJTXhBLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iZS82MzY2YjQtZGQ2Zi00MDQwLTg4OTUtNzFiZTBkNTE5MTlk LzEvVmNteUFsNE9hVmdJOXJZZTRuYXUxUHRXZ00wLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAqN63MA0G CSqGSIb3DQEBCwUAA4IBAQBTQDdGrK92fnie9kIXNL0azhdb2JUhgdL8h0kC4Uly hj00VE4MMeJj2B/n8NOSUVKf4W/R8CQSJyccWVnsDUPVqV1lcIN+i0rWbW9KikXJ dyjB6nwTgp3/epTTVp50j3yfXuz7ZzZtcN77Q4D2LsNbzio9EZeBTgMPNXcP0Of4 RigO0IHMJNHeEIA6aR97DtWsoWKPW8S280vc8/6H2Jb47DVvxP5G5yBO6S9AxJAy /DVpq+3Ig+RhnUWuyihHJWbGadK9JYvBYlpuYK1gGdkVN3mklEyxOjfO0YJeCiB9 0Khhc58ZJeESnm33Jq083woAZAyyF3+Xh+5UC+JqqOQ/ -----END CERTIFICATE-----Generated at Sun Jan 18 13:13:32 2026 by rpki-client