This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e0/53c7b8-5e4b-49fd-8c91-ba98f1122121/1/bDJAEN0YYJMJWS-gCyd7mAbB3QQ.roa File: bDJAEN0YYJMJWS-gCyd7mAbB3QQ.roa (raw, json) Hash identifier: S5HFooL4obT88eE2JqUFy7cod+cGdW6i4QODH5XUKuk= Subject key identifier: 6C:32:40:10:DD:18:60:93:09:59:2F:A0:0B:27:7B:98:06:C1:DD:04 Certificate issuer: /CN=618478f198fe569010c3df6219142f530c4f5e56 Certificate serial: 019B7C8061F2AC79AE791D9F5D6421A1F87D Authority key identifier: 61:84:78:F1:98:FE:56:90:10:C3:DF:62:19:14:2F:53:0C:4F:5E:56 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YYR48Zj-VpAQw99iGRQvUwxPXlY.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e0/53c7b8-5e4b-49fd-8c91-ba98f1122121/1/bDJAEN0YYJMJWS-gCyd7mAbB3QQ.roa Signing time: Fri 02 Jan 2026 02:19:06 +0000 ROA not before: Fri 02 Jan 2026 02:19:06 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 58955 IP address blocks: 92.63.180.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e0/53c7b8-5e4b-49fd-8c91-ba98f1122121/1/YYR48Zj-VpAQw99iGRQvUwxPXlY.crl rsync://rpki.ripe.net/repository/DEFAULT/e0/53c7b8-5e4b-49fd-8c91-ba98f1122121/1/YYR48Zj-VpAQw99iGRQvUwxPXlY.mft rsync://rpki.ripe.net/repository/DEFAULT/YYR48Zj-VpAQw99iGRQvUwxPXlY.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 09 Jan 2026 11:01:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7c:80:61:f2:ac:79:ae:79:1d:9f:5d:64:21:a1:f8:7d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=618478f198fe569010c3df6219142f530c4f5e56 Validity Not Before: Jan 2 02:19:06 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=6c324010dd18609309592fa00b277b9806c1dd04 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:ff:97:0c:f8:76:62:87:90:79:c6:89:a3:2e: d5:02:36:cf:bb:c7:47:26:9c:7c:41:8b:1a:cb:7a: 72:a1:e3:40:a3:d7:58:4e:cf:41:39:bd:59:65:2c: 88:7a:52:22:19:93:71:e4:61:56:02:87:be:7d:83: 1e:2b:f1:11:8f:2d:67:a2:c0:05:9d:4a:94:e1:8e: 12:a9:54:07:69:5c:76:e2:db:ab:45:71:0d:2b:19: 6b:26:ca:92:fa:df:42:32:24:d0:7d:3b:5d:28:c8: 0c:b9:ed:f7:74:6e:5f:de:98:7a:98:d7:28:e4:1f: 99:37:32:d5:47:a7:2f:55:48:5c:f4:88:1b:8b:01: 87:4f:c7:9e:ad:73:3e:f8:c7:c8:15:b9:7d:c1:f5: 7c:54:dc:4a:7d:79:e7:7e:21:18:9e:14:19:0e:c1: 0b:8c:8d:07:5a:82:27:ea:44:9a:0b:39:4d:7b:34: aa:bc:0a:c2:0c:76:19:92:82:8c:3c:61:4e:13:27: 16:56:f8:b4:99:4d:f9:08:76:cc:5c:97:33:90:9b: 43:a8:13:b6:b7:20:b1:f5:ce:6f:1f:71:39:6a:84: b6:20:5a:79:50:03:2e:b4:5f:08:a5:df:5a:e2:66: 96:ad:4b:ba:80:6f:b5:ff:1f:0d:77:12:4e:5a:a5: e6:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6C:32:40:10:DD:18:60:93:09:59:2F:A0:0B:27:7B:98:06:C1:DD:04 X509v3 Authority Key Identifier: keyid:61:84:78:F1:98:FE:56:90:10:C3:DF:62:19:14:2F:53:0C:4F:5E:56 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YYR48Zj-VpAQw99iGRQvUwxPXlY.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e0/53c7b8-5e4b-49fd-8c91-ba98f1122121/1/bDJAEN0YYJMJWS-gCyd7mAbB3QQ.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/e0/53c7b8-5e4b-49fd-8c91-ba98f1122121/1/YYR48Zj-VpAQw99iGRQvUwxPXlY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 92.63.180.0/24 Signature Algorithm: sha256WithRSAEncryption 40:2e:1f:57:1a:c6:f6:1b:1f:bc:68:3f:ef:54:6b:0c:eb:20: 54:2a:d0:74:05:15:91:9a:4d:19:d2:08:f7:9b:96:8c:1e:cb: b6:f7:4e:02:e0:c9:21:8e:7a:37:59:3a:08:47:5f:04:6c:04: 50:d1:74:45:37:1a:8f:ec:a1:bb:2a:6b:e6:1a:1e:7c:20:88: 61:f2:b8:67:c4:5e:ab:cf:fc:71:d3:a7:ae:91:b9:36:ce:82: 56:99:11:54:20:08:5c:b9:6b:1c:a5:28:92:5b:41:3f:76:09: be:b2:85:d6:ee:62:2e:62:65:8e:a0:b0:1a:6f:1f:97:da:58: 3a:fc:b3:ca:f0:a2:e1:a4:40:93:0e:9b:53:77:0b:58:50:5c: e2:32:a7:a3:fd:17:09:a0:71:8c:b8:86:d2:79:8c:f0:47:3c: 25:82:69:b4:83:5b:14:60:30:17:f4:5f:bb:74:83:0c:30:b0: 35:2d:74:74:dc:68:25:dc:91:db:5e:ad:39:03:75:d1:2d:f8: 84:92:4e:71:4d:40:0a:60:34:1f:4b:0a:3d:0a:a6:3c:cf:76: 0f:5e:16:d0:e4:f4:60:41:76:4f:07:91:1a:d7:53:f2:6a:02: 76:a6:de:3d:67:72:45:17:4a:df:10:b2:7f:4b:36:51:5c:18: 51:2d:f5:1b -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt8gGHyrHmueR2fXWQhofh9MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDYxODQ3OGYxOThmZTU2OTAxMGMzZGY2MjE5MTQyZjUzMGM0 ZjVlNTYwHhcNMjYwMTAyMDIxOTA2WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg2YzMyNDAxMGRkMTg2MDkzMDk1OTJmYTAwYjI3N2I5ODA2YzFkZDA0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtf+XDPh2YoeQecaJoy7VAjbPu8dH Jpx8QYsay3pyoeNAo9dYTs9BOb1ZZSyIelIiGZNx5GFWAoe+fYMeK/ERjy1nosAF nUqU4Y4SqVQHaVx24turRXENKxlrJsqS+t9CMiTQfTtdKMgMue33dG5f3ph6mNco 5B+ZNzLVR6cvVUhc9IgbiwGHT8eerXM++MfIFbl9wfV8VNxKfXnnfiEYnhQZDsEL jI0HWoIn6kSaCzlNezSqvArCDHYZkoKMPGFOEycWVvi0mU35CHbMXJczkJtDqBO2 tyCx9c5vH3E5aoS2IFp5UAMutF8Ipd9a4maWrUu6gG+1/x8NdxJOWqXmmwIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFGwyQBDdGGCTCVkvoAsne5gGwd0EMB8GA1UdIwQY MBaAFGGEePGY/laQEMPfYhkUL1MMT15WMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvWVlSNDhaai1WcEFRdzk5aUdSUXZVd3hQWGxZLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lMC81M2M3YjgtNWU0Yi00OWZkLThjOTEt YmE5OGYxMTIyMTIxLzEvYkRKQUVOMFlZSk1KV1MtZ0N5ZDdtQWJCM1FRLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9lMC81M2M3YjgtNWU0Yi00OWZkLThjOTEtYmE5OGYxMTIyMTIx LzEvWVlSNDhaai1WcEFRdzk5aUdSUXZVd3hQWGxZLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAXD+0MA0G CSqGSIb3DQEBCwUAA4IBAQBALh9XGsb2Gx+8aD/vVGsM6yBUKtB0BRWRmk0Z0gj3 m5aMHsu2904C4Mkhjno3WToIR18EbARQ0XRFNxqP7KG7KmvmGh58IIhh8rhnxF6r z/xx06eukbk2zoJWmRFUIAhcuWscpSiSW0E/dgm+soXW7mIuYmWOoLAabx+X2lg6 /LPK8KLhpECTDptTdwtYUFziMqej/RcJoHGMuIbSeYzwRzwlgmm0g1sUYDAX9F+7 dIMMMLA1LXR03Ggl3JHbXq05A3XRLfiEkk5xTUAKYDQfSwo9CqY8z3YPXhbQ5PRg QXZPB5Ea11PyagJ2pt49Z3JFF0rfELJ/SzZRXBhRLfUb -----END CERTIFICATE-----Generated at Thu Jan 8 21:12:34 2026 by rpki-client