This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d7/ad4f52-9c28-4512-8c1a-0d597c7da9c8/1/CnLU5sdd9_xh2OEtCZx6z-2dgTY.roa File: CnLU5sdd9_xh2OEtCZx6z-2dgTY.roa (raw, json) Hash identifier: n31FwsvZCRP5aWFMhgbGP9qd5w+wCRJhNJerptRYayU= Subject key identifier: 0A:72:D4:E6:C7:5D:F7:FC:61:D8:E1:2D:09:9C:7A:CF:ED:9D:81:36 Certificate issuer: /CN=bcb4e6294e7fe4673f7bc6f57f48138e958fcced Certificate serial: 019B79ED06BEE04BBDAE3324962B665DAAC4 Authority key identifier: BC:B4:E6:29:4E:7F:E4:67:3F:7B:C6:F5:7F:48:13:8E:95:8F:CC:ED Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vLTmKU5_5Gc_e8b1f0gTjpWPzO0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d7/ad4f52-9c28-4512-8c1a-0d597c7da9c8/1/CnLU5sdd9_xh2OEtCZx6z-2dgTY.roa Signing time: Thu 01 Jan 2026 14:18:55 +0000 ROA not before: Thu 01 Jan 2026 14:18:55 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 42541 IP address blocks: 194.62.216.0/23 maxlen: 23 2a0c:fec0::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d7/ad4f52-9c28-4512-8c1a-0d597c7da9c8/1/vLTmKU5_5Gc_e8b1f0gTjpWPzO0.crl rsync://rpki.ripe.net/repository/DEFAULT/d7/ad4f52-9c28-4512-8c1a-0d597c7da9c8/1/vLTmKU5_5Gc_e8b1f0gTjpWPzO0.mft rsync://rpki.ripe.net/repository/DEFAULT/vLTmKU5_5Gc_e8b1f0gTjpWPzO0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 02 Feb 2026 21:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:79:ed:06:be:e0:4b:bd:ae:33:24:96:2b:66:5d:aa:c4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=bcb4e6294e7fe4673f7bc6f57f48138e958fcced Validity Not Before: Jan 1 14:18:55 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=0a72d4e6c75df7fc61d8e12d099c7acfed9d8136 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e9:40:03:c4:a7:5c:44:b7:56:09:76:4d:fb:45: 64:86:37:42:7d:65:28:87:b0:bd:ff:38:a2:ce:98: 2e:96:f0:e9:ff:aa:d8:cc:9b:ed:24:a7:c2:81:59: 55:0f:6d:30:89:f2:81:31:71:2d:77:58:0a:d1:30: 8c:d3:24:de:4f:0f:48:45:7c:6e:fa:0f:3b:e3:e3: e8:8f:b1:28:41:1a:d0:65:95:74:a8:60:5e:37:58: a3:f8:5c:27:3f:39:e0:01:33:24:0c:d8:f6:e2:86: 5e:91:ec:fa:40:89:04:58:61:23:92:0f:f7:d5:1a: cf:67:80:c2:6b:74:3a:b1:c0:5b:b3:1e:81:8b:e8: ba:b0:38:dd:e2:01:b2:86:b1:71:54:ea:c7:51:a4: 9d:5d:9e:85:2c:bf:a3:32:8d:9b:4e:b6:49:d1:98: c8:51:4c:7e:a3:51:7f:3c:5b:71:e4:af:0a:e6:de: 85:20:72:e2:09:73:83:8b:b9:70:c2:ed:0f:2d:b1: 13:73:b1:f2:9e:15:e7:e2:cd:85:c0:4e:d3:57:10: 11:d4:f7:7d:a2:77:26:69:3c:e7:f5:e9:5b:12:30: 60:56:73:b1:68:2b:85:06:be:75:29:d6:07:90:a9: 05:c0:b7:4f:bb:bb:33:64:f3:78:92:75:75:1f:a8: 63:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0A:72:D4:E6:C7:5D:F7:FC:61:D8:E1:2D:09:9C:7A:CF:ED:9D:81:36 X509v3 Authority Key Identifier: keyid:BC:B4:E6:29:4E:7F:E4:67:3F:7B:C6:F5:7F:48:13:8E:95:8F:CC:ED X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vLTmKU5_5Gc_e8b1f0gTjpWPzO0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/ad4f52-9c28-4512-8c1a-0d597c7da9c8/1/CnLU5sdd9_xh2OEtCZx6z-2dgTY.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/ad4f52-9c28-4512-8c1a-0d597c7da9c8/1/vLTmKU5_5Gc_e8b1f0gTjpWPzO0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 194.62.216.0/23 IPv6: 2a0c:fec0::/32 Signature Algorithm: sha256WithRSAEncryption 50:32:63:12:5f:ae:30:14:ea:08:66:82:df:ac:45:64:9c:69: 8f:ad:1d:0e:50:93:8e:60:55:2d:f0:40:97:0d:cc:7b:18:4a: bd:eb:9b:40:14:a3:7f:eb:36:c0:3b:c7:b4:24:97:6d:b7:d8: ab:50:26:14:b1:24:b8:cb:54:99:11:7b:c1:7a:92:57:ae:89: ff:f2:75:62:7c:51:51:95:4b:93:fa:90:8f:9c:6f:64:85:bc: 5f:e4:e3:93:b0:6e:34:db:a8:be:60:20:76:30:0e:7e:de:c2: 54:d4:64:19:40:b4:e5:c1:21:11:13:6e:96:83:0e:2b:38:7a: 7c:43:6d:f2:c7:4a:68:f3:8c:7d:c0:4d:1c:a8:ce:91:c4:0e: 2f:38:4f:13:05:9c:60:db:87:53:43:74:15:5f:82:3a:fb:4f: fa:09:f4:a7:77:e0:0f:ff:8b:5d:45:62:37:16:18:97:d5:65: 41:5b:6e:24:a7:92:8f:03:47:df:52:e3:50:25:8b:6f:f4:00: 88:39:a2:0e:d0:8a:66:0e:60:3e:80:26:80:cb:c7:9c:68:ae: db:97:7c:54:66:4f:d4:42:5c:16:df:6b:f0:52:8f:44:f7:e4: a2:6d:72:28:45:7c:2e:be:68:ec:98:ea:e2:6e:bb:ef:2c:93: 93:63:a6:5d -----BEGIN CERTIFICATE----- MIIFDDCCA/SgAwIBAgISAZt57Qa+4Eu9rjMklitmXarEMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGJjYjRlNjI5NGU3ZmU0NjczZjdiYzZmNTdmNDgxMzhlOTU4 ZmNjZWQwHhcNMjYwMTAxMTQxODU1WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygwYTcyZDRlNmM3NWRmN2ZjNjFkOGUxMmQwOTljN2FjZmVkOWQ4MTM2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA6UADxKdcRLdWCXZN+0VkhjdCfWUo h7C9/ziizpgulvDp/6rYzJvtJKfCgVlVD20wifKBMXEtd1gK0TCM0yTeTw9IRXxu +g874+Poj7EoQRrQZZV0qGBeN1ij+FwnPzngATMkDNj24oZekez6QIkEWGEjkg/3 1RrPZ4DCa3Q6scBbsx6Bi+i6sDjd4gGyhrFxVOrHUaSdXZ6FLL+jMo2bTrZJ0ZjI UUx+o1F/PFtx5K8K5t6FIHLiCXODi7lwwu0PLbETc7HynhXn4s2FwE7TVxAR1Pd9 oncmaTzn9elbEjBgVnOxaCuFBr51KdYHkKkFwLdPu7szZPN4knV1H6hjXwIDAQAB o4ICGDCCAhQwHQYDVR0OBBYEFApy1ObHXff8YdjhLQmces/tnYE2MB8GA1UdIwQY MBaAFLy05ilOf+RnP3vG9X9IE46Vj8ztMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvdkxUbUtVNV81R2NfZThiMWYwZ1RqcFdQek8wLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kNy9hZDRmNTItOWMyOC00NTEyLThjMWEt MGQ1OTdjN2RhOWM4LzEvQ25MVTVzZGQ5X3hoMk9FdENaeDZ6LTJkZ1RZLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kNy9hZDRmNTItOWMyOC00NTEyLThjMWEtMGQ1OTdjN2RhOWM4 LzEvdkxUbUtVNV81R2NfZThiMWYwZ1RqcFdQek8wLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMC4GCCsGAQUFBwEHAQH/BB8wHTAMBAIAATAGAwQBwj7YMA0E AgACMAcDBQAqDP7AMA0GCSqGSIb3DQEBCwUAA4IBAQBQMmMSX64wFOoIZoLfrEVk nGmPrR0OUJOOYFUt8ECXDcx7GEq965tAFKN/6zbAO8e0JJdtt9irUCYUsSS4y1SZ EXvBepJXron/8nVifFFRlUuT+pCPnG9khbxf5OOTsG4026i+YCB2MA5+3sJU1GQZ QLTlwSERE26Wgw4rOHp8Q23yx0po84x9wE0cqM6RxA4vOE8TBZxg24dTQ3QVX4I6 +0/6CfSnd+AP/4tdRWI3FhiX1WVBW24kp5KPA0ffUuNQJYtv9ACIOaIO0IpmDmA+ gCaAy8ecaK7bl3xUZk/UQlwW32vwUo9E9+SibXIoRXwuvmjsmOribrvvLJOTY6Zd -----END CERTIFICATE-----Generated at Mon Feb 2 08:01:07 2026 by rpki-client