This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/da/6b91ab-99db-4648-b153-6e2d97ca15ff/1/be28BkxFxZLQVi19h_PxhvrDxv4.roa File: be28BkxFxZLQVi19h_PxhvrDxv4.roa (raw, json) Hash identifier: ErkhyWUL7IeWfO/G4gKn/lMtd8yFq776RnWqwjXgqzk= Subject key identifier: 6D:ED:BC:06:4C:45:C5:92:D0:56:2D:7D:87:F3:F1:86:FA:C3:C6:FE Certificate issuer: /CN=f324581e4368825d5e13f4f2a0d6ff8e484c95e6 Certificate serial: 019B78A3166D53AF174BA9B9F0728F467182 Authority key identifier: F3:24:58:1E:43:68:82:5D:5E:13:F4:F2:A0:D6:FF:8E:48:4C:95:E6 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8yRYHkNogl1eE_TyoNb_jkhMleY.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/da/6b91ab-99db-4648-b153-6e2d97ca15ff/1/be28BkxFxZLQVi19h_PxhvrDxv4.roa Signing time: Thu 01 Jan 2026 08:18:32 +0000 ROA not before: Thu 01 Jan 2026 08:18:32 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 1096 IP address blocks: 109.205.193.0/24 maxlen: 24 158.94.220.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/da/6b91ab-99db-4648-b153-6e2d97ca15ff/1/8yRYHkNogl1eE_TyoNb_jkhMleY.crl rsync://rpki.ripe.net/repository/DEFAULT/da/6b91ab-99db-4648-b153-6e2d97ca15ff/1/8yRYHkNogl1eE_TyoNb_jkhMleY.mft rsync://rpki.ripe.net/repository/DEFAULT/8yRYHkNogl1eE_TyoNb_jkhMleY.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 20 Jan 2026 08:02:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:78:a3:16:6d:53:af:17:4b:a9:b9:f0:72:8f:46:71:82 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=f324581e4368825d5e13f4f2a0d6ff8e484c95e6 Validity Not Before: Jan 1 08:18:32 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=6dedbc064c45c592d0562d7d87f3f186fac3c6fe Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:17:32:98:08:c7:7a:03:02:ac:2e:6c:4e:d4: 9e:b8:5e:01:f4:63:c2:2c:93:3e:4a:b8:17:84:ca: 6e:64:82:5d:f5:e1:24:b7:76:b3:56:d8:12:f8:e9: c0:98:90:6d:34:7a:9a:ff:44:f8:3a:7a:47:3a:10: 7b:d8:a7:bd:b0:2c:f2:d2:74:b2:b7:0d:c4:8e:93: c1:d3:67:bb:81:d6:34:26:14:e2:21:41:79:75:db: 18:e4:e3:15:c3:cb:2e:7b:c8:c1:17:8b:13:40:e4: 1a:9c:43:0e:60:ae:24:93:f4:dc:ab:0d:aa:3e:d7: b8:b6:5a:ed:e3:26:66:f6:0c:47:e1:dd:3e:94:f8: e3:10:cb:70:22:e5:79:e1:0f:12:71:36:d0:00:82: e7:ea:96:9b:b1:6b:12:0a:a5:63:50:70:44:4b:91: 58:0b:be:99:4a:db:af:c4:9f:96:73:48:fe:34:83: b8:72:61:f1:1b:fe:f3:d7:7e:11:a3:92:a1:73:e3: 36:81:2b:c2:bb:ce:b4:0d:76:55:38:0b:55:e0:9d: 73:f2:3b:6e:b4:6b:a2:ae:07:65:ba:84:98:a0:e2: af:2d:56:b0:a4:49:26:c6:2a:35:d2:d6:4c:45:97: 68:d9:3d:5b:c6:43:8d:4c:e6:63:fc:ee:90:1d:ab: 32:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6D:ED:BC:06:4C:45:C5:92:D0:56:2D:7D:87:F3:F1:86:FA:C3:C6:FE X509v3 Authority Key Identifier: keyid:F3:24:58:1E:43:68:82:5D:5E:13:F4:F2:A0:D6:FF:8E:48:4C:95:E6 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8yRYHkNogl1eE_TyoNb_jkhMleY.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/da/6b91ab-99db-4648-b153-6e2d97ca15ff/1/be28BkxFxZLQVi19h_PxhvrDxv4.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/da/6b91ab-99db-4648-b153-6e2d97ca15ff/1/8yRYHkNogl1eE_TyoNb_jkhMleY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 109.205.193.0/24 158.94.220.0/24 Signature Algorithm: sha256WithRSAEncryption 77:a3:f2:cf:55:20:24:43:ce:05:db:46:24:34:9d:fc:e2:8f: 5b:0b:fb:d7:d3:04:2f:53:14:59:af:0f:9f:05:17:63:31:d9: 1a:df:f5:88:eb:01:3c:3a:3f:4e:78:bd:69:83:79:fa:1f:ed: 30:52:48:17:d1:45:00:9c:de:b9:6a:67:da:8e:ea:e3:a4:9b: f5:57:1a:e0:69:40:ee:00:49:b6:2d:49:7d:ce:3b:44:34:13: c3:aa:2d:c1:33:33:0e:8f:d6:dc:68:c5:ee:9a:62:dd:4b:94: ad:6a:a5:99:a4:77:5b:31:e1:9b:16:18:cd:d6:5e:4a:08:c8: 1d:3a:ec:7c:7e:f1:c8:97:df:1b:fe:d0:0d:f7:55:ad:23:62: 53:b4:42:8a:68:ab:a3:5b:d7:80:93:50:51:2e:ab:75:bc:f5: 21:9d:0e:8d:5f:a1:a4:b0:0d:eb:7e:38:73:81:be:9c:e2:34: c3:dd:25:47:b6:cc:e0:9a:71:83:7b:04:c3:37:e9:46:69:c9: 78:0c:c4:dc:5b:2d:5f:95:00:bf:74:0c:96:25:ca:ac:95:09: 5e:f7:3f:1e:4c:a9:28:87:1f:0c:e5:e2:75:34:9e:d5:33:eb: 3b:28:82:33:0e:21:8f:72:67:06:95:7f:f1:3c:61:8b:23:da: e8:f5:51:03 -----BEGIN CERTIFICATE----- MIIFAzCCA+ugAwIBAgISAZt4oxZtU68XS6m58HKPRnGCMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGYzMjQ1ODFlNDM2ODgyNWQ1ZTEzZjRmMmEwZDZmZjhlNDg0 Yzk1ZTYwHhcNMjYwMTAxMDgxODMyWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg2ZGVkYmMwNjRjNDVjNTkyZDA1NjJkN2Q4N2YzZjE4NmZhYzNjNmZlMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArxcymAjHegMCrC5sTtSeuF4B9GPC LJM+SrgXhMpuZIJd9eEkt3azVtgS+OnAmJBtNHqa/0T4OnpHOhB72Ke9sCzy0nSy tw3EjpPB02e7gdY0JhTiIUF5ddsY5OMVw8sue8jBF4sTQOQanEMOYK4kk/Tcqw2q Pte4tlrt4yZm9gxH4d0+lPjjEMtwIuV54Q8ScTbQAILn6pabsWsSCqVjUHBES5FY C76ZStuvxJ+Wc0j+NIO4cmHxG/7z134Ro5Khc+M2gSvCu860DXZVOAtV4J1z8jtu tGuirgdluoSYoOKvLVawpEkmxio10tZMRZdo2T1bxkONTOZj/O6QHasy1wIDAQAB o4ICDzCCAgswHQYDVR0OBBYEFG3tvAZMRcWS0FYtfYfz8Yb6w8b+MB8GA1UdIwQY MBaAFPMkWB5DaIJdXhP08qDW/45ITJXmMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvOHlSWUhrTm9nbDFlRV9UeW9OYl9qa2hNbGVZLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kYS82YjkxYWItOTlkYi00NjQ4LWIxNTMt NmUyZDk3Y2ExNWZmLzEvYmUyOEJreEZ4WkxRVmkxOWhfUHhodnJEeHY0LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kYS82YjkxYWItOTlkYi00NjQ4LWIxNTMtNmUyZDk3Y2ExNWZm LzEvOHlSWUhrTm9nbDFlRV9UeW9OYl9qa2hNbGVZLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQAbc3BAwQA nl7cMA0GCSqGSIb3DQEBCwUAA4IBAQB3o/LPVSAkQ84F20YkNJ384o9bC/vX0wQv UxRZrw+fBRdjMdka3/WI6wE8Oj9OeL1pg3n6H+0wUkgX0UUAnN65amfajurjpJv1 VxrgaUDuAEm2LUl9zjtENBPDqi3BMzMOj9bcaMXummLdS5StaqWZpHdbMeGbFhjN 1l5KCMgdOux8fvHIl98b/tAN91WtI2JTtEKKaKujW9eAk1BRLqt1vPUhnQ6NX6Gk sA3rfjhzgb6c4jTD3SVHtszgmnGDewTDN+lGacl4DMTcWy1flQC/dAyWJcqslQle 9z8eTKkohx8M5eJ1NJ7VM+s7KIIzDiGPcmcGlX/xPGGLI9ro9VED -----END CERTIFICATE-----Generated at Mon Jan 19 14:38:56 2026 by rpki-client