This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/db/5e1d42-3575-4ec1-bc7c-d64368208131/1/6NLwB5WjlcBTVRx7lvLg-PZn5HQ.roa File: 6NLwB5WjlcBTVRx7lvLg-PZn5HQ.roa (raw, json) Hash identifier: dWeJDKFFNOPJVpAu+kJb2B3xAofZRJV/6yg2uCUW2mY= Subject key identifier: E8:D2:F0:07:95:A3:95:C0:53:55:1C:7B:96:F2:E0:F8:F6:67:E4:74 Certificate issuer: /CN=05f59aedc28296e291724f7937de788e27216408 Certificate serial: 019B77587FAF63B049E8D5FEF7C57E0E1B43 Authority key identifier: 05:F5:9A:ED:C2:82:96:E2:91:72:4F:79:37:DE:78:8E:27:21:64:08 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BfWa7cKCluKRck95N954jichZAg.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/db/5e1d42-3575-4ec1-bc7c-d64368208131/1/6NLwB5WjlcBTVRx7lvLg-PZn5HQ.roa Signing time: Thu 01 Jan 2026 02:17:27 +0000 ROA not before: Thu 01 Jan 2026 02:17:27 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 198638 IP address blocks: 185.22.20.0/22 maxlen: 22 2a00:5ae0:100::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/db/5e1d42-3575-4ec1-bc7c-d64368208131/1/BfWa7cKCluKRck95N954jichZAg.crl rsync://rpki.ripe.net/repository/DEFAULT/db/5e1d42-3575-4ec1-bc7c-d64368208131/1/BfWa7cKCluKRck95N954jichZAg.mft rsync://rpki.ripe.net/repository/DEFAULT/BfWa7cKCluKRck95N954jichZAg.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 20:01:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:77:58:7f:af:63:b0:49:e8:d5:fe:f7:c5:7e:0e:1b:43 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=05f59aedc28296e291724f7937de788e27216408 Validity Not Before: Jan 1 02:17:27 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=e8d2f00795a395c053551c7b96f2e0f8f667e474 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e9:fd:b3:73:5b:b9:14:c9:51:89:26:ce:37:02: c3:8d:ef:51:b5:05:d8:f4:69:0c:a8:71:ef:e6:a1: 46:3b:b5:50:dc:4b:40:29:94:14:15:f3:12:43:c3: a0:2c:76:03:9a:74:42:1e:00:59:58:b1:7e:f7:ab: dd:db:0a:21:67:f6:30:9d:00:31:fc:6b:0a:79:3e: 29:c6:a1:ab:2c:d7:c2:46:9c:e1:e9:e5:b7:90:ae: 20:35:80:50:07:38:9c:34:3a:9b:7a:11:8c:17:1f: 1b:63:34:e5:6d:06:40:72:b9:7a:8b:0b:95:6c:58: 70:fb:8e:ae:c9:78:81:b3:3b:30:63:ac:b2:df:3f: 60:92:bc:55:ed:43:20:c6:cc:f5:4f:9a:02:30:a2: c9:01:64:5b:a9:21:7d:af:09:24:9c:eb:2b:92:64: 7f:ee:10:42:12:d7:3a:0a:6c:ff:e8:94:e1:4b:35: a4:61:9c:19:15:d9:30:94:31:be:8d:f4:ea:14:04: 45:c5:af:bb:aa:4a:9b:c0:30:62:fc:04:f3:55:9e: 61:fd:27:3a:05:c6:82:ba:8e:c8:1e:6f:fe:88:3b: 01:2c:9d:d5:2e:54:60:cb:e1:08:ae:24:be:4c:82: 7e:7e:cf:f6:ff:a7:22:66:dc:33:92:52:88:c5:36: 94:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E8:D2:F0:07:95:A3:95:C0:53:55:1C:7B:96:F2:E0:F8:F6:67:E4:74 X509v3 Authority Key Identifier: keyid:05:F5:9A:ED:C2:82:96:E2:91:72:4F:79:37:DE:78:8E:27:21:64:08 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BfWa7cKCluKRck95N954jichZAg.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/db/5e1d42-3575-4ec1-bc7c-d64368208131/1/6NLwB5WjlcBTVRx7lvLg-PZn5HQ.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/db/5e1d42-3575-4ec1-bc7c-d64368208131/1/BfWa7cKCluKRck95N954jichZAg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.22.20.0/22 IPv6: 2a00:5ae0:100::/48 Signature Algorithm: sha256WithRSAEncryption db:29:08:eb:09:53:d0:04:ec:fc:03:41:b2:74:f5:67:3e:25: 67:ee:b7:fc:12:24:59:9e:b9:6d:03:60:3d:50:f2:8b:e4:2a: 87:4b:0e:5b:a8:e7:dc:04:06:8f:c6:de:33:b5:af:f2:fa:94: 09:d6:b5:c9:29:f6:bd:41:b6:22:b5:a9:0d:dd:6c:b2:d0:a7: 3c:50:87:64:ee:55:cf:87:5c:a1:77:31:c6:11:39:29:9b:16: 32:bd:ef:04:3e:99:de:7d:6c:56:8f:40:e1:6c:13:36:7d:c3: d0:ec:5a:0d:74:50:65:88:fa:59:7a:fa:6c:fa:3f:5d:58:58: b0:1a:d6:0e:85:1e:ba:e2:4f:21:c1:cc:c1:be:2c:9e:27:f9: e3:02:dd:bf:a3:68:df:fa:0a:bd:4c:de:6b:5c:83:64:ce:48: b1:74:84:c0:99:a0:85:39:9f:39:6e:88:b5:f9:4b:09:e2:f5: 55:78:8c:82:cb:3b:87:bc:77:cd:ed:3a:50:da:5f:46:f7:9b: cd:ff:14:30:7d:e0:1c:a9:a4:34:fd:bc:99:8b:08:a8:ac:76: 04:ef:b4:72:6c:96:dd:75:9c:69:8e:82:33:5d:df:21:b4:39: 3a:cc:9e:64:64:af:53:4c:86:41:3d:d4:df:d9:c8:c8:e6:cb: 0b:db:84:06 -----BEGIN CERTIFICATE----- MIIFDjCCA/agAwIBAgISAZt3WH+vY7BJ6NX+98V+DhtDMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDA1ZjU5YWVkYzI4Mjk2ZTI5MTcyNGY3OTM3ZGU3ODhlMjcy MTY0MDgwHhcNMjYwMTAxMDIxNzI3WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhlOGQyZjAwNzk1YTM5NWMwNTM1NTFjN2I5NmYyZTBmOGY2NjdlNDc0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA6f2zc1u5FMlRiSbONwLDje9RtQXY 9GkMqHHv5qFGO7VQ3EtAKZQUFfMSQ8OgLHYDmnRCHgBZWLF+96vd2wohZ/YwnQAx /GsKeT4pxqGrLNfCRpzh6eW3kK4gNYBQBzicNDqbehGMFx8bYzTlbQZAcrl6iwuV bFhw+46uyXiBszswY6yy3z9gkrxV7UMgxsz1T5oCMKLJAWRbqSF9rwkknOsrkmR/ 7hBCEtc6Cmz/6JThSzWkYZwZFdkwlDG+jfTqFARFxa+7qkqbwDBi/ATzVZ5h/Sc6 BcaCuo7IHm/+iDsBLJ3VLlRgy+EIriS+TIJ+fs/2/6ciZtwzklKIxTaUswIDAQAB o4ICGjCCAhYwHQYDVR0OBBYEFOjS8AeVo5XAU1Uce5by4Pj2Z+R0MB8GA1UdIwQY MBaAFAX1mu3CgpbikXJPeTfeeI4nIWQIMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvQmZXYTdjS0NsdUtSY2s5NU45NTRqaWNoWkFnLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kYi81ZTFkNDItMzU3NS00ZWMxLWJjN2Mt ZDY0MzY4MjA4MTMxLzEvNk5Md0I1V2psY0JUVlJ4N2x2TGctUFpuNUhRLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kYi81ZTFkNDItMzU3NS00ZWMxLWJjN2MtZDY0MzY4MjA4MTMx LzEvQmZXYTdjS0NsdUtSY2s5NU45NTRqaWNoWkFnLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMDAGCCsGAQUFBwEHAQH/BCEwHzAMBAIAATAGAwQCuRYUMA8E AgACMAkDBwAqAFrgAQAwDQYJKoZIhvcNAQELBQADggEBANspCOsJU9AE7PwDQbJ0 9Wc+JWfut/wSJFmeuW0DYD1Q8ovkKodLDluo59wEBo/G3jO1r/L6lAnWtckp9r1B tiK1qQ3dbLLQpzxQh2TuVc+HXKF3McYROSmbFjK97wQ+md59bFaPQOFsEzZ9w9Ds Wg10UGWI+ll6+mz6P11YWLAa1g6FHrriTyHBzMG+LJ4n+eMC3b+jaN/6Cr1M3mtc g2TOSLF0hMCZoIU5nzluiLX5Swni9VV4jILLO4e8d83tOlDaX0b3m83/FDB94Byp pDT9vJmLCKisdgTvtHJslt11nGmOgjNd3yG0OTrMnmRkr1NMhkE91N/ZyMjmywvb hAY= -----END CERTIFICATE-----Generated at Tue Feb 10 02:47:07 2026 by rpki-client