This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e2/fc12ec-3eac-4455-91c9-f99c4e5c2953/1/S1duhzLYVWCPzWLAVIN0U9O31sE.roa File: S1duhzLYVWCPzWLAVIN0U9O31sE.roa (raw, json) Hash identifier: iGd5/M7wFo+vh2tNkFU7YoI/hPvzSVi7SBf4jj6Qs9I= Subject key identifier: 4B:57:6E:87:32:D8:55:60:8F:CD:62:C0:54:83:74:53:D3:B7:D6:C1 Certificate issuer: /CN=bfca53f0a587f36d89a9cab82bf5a5036c6140a2 Certificate serial: 019B783552A8C77FFAE4308167A0AB7B1464 Authority key identifier: BF:CA:53:F0:A5:87:F3:6D:89:A9:CA:B8:2B:F5:A5:03:6C:61:40:A2 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/v8pT8KWH822Jqcq4K_WlA2xhQKI.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e2/fc12ec-3eac-4455-91c9-f99c4e5c2953/1/S1duhzLYVWCPzWLAVIN0U9O31sE.roa Signing time: Thu 01 Jan 2026 06:18:39 +0000 ROA not before: Thu 01 Jan 2026 06:18:39 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 197751 IP address blocks: 195.149.117.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e2/fc12ec-3eac-4455-91c9-f99c4e5c2953/1/v8pT8KWH822Jqcq4K_WlA2xhQKI.crl rsync://rpki.ripe.net/repository/DEFAULT/e2/fc12ec-3eac-4455-91c9-f99c4e5c2953/1/v8pT8KWH822Jqcq4K_WlA2xhQKI.mft rsync://rpki.ripe.net/repository/DEFAULT/v8pT8KWH822Jqcq4K_WlA2xhQKI.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:00:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:78:35:52:a8:c7:7f:fa:e4:30:81:67:a0:ab:7b:14:64 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=bfca53f0a587f36d89a9cab82bf5a5036c6140a2 Validity Not Before: Jan 1 06:18:39 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=4b576e8732d855608fcd62c054837453d3b7d6c1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:45:52:54:3d:8b:86:a0:6d:53:47:5b:ec:6c: d1:54:79:37:ee:99:c7:14:13:98:fe:53:91:2e:7b: 77:3f:e7:3b:8f:28:00:4c:a0:6c:a5:01:72:48:8d: b6:1b:5b:9e:43:9f:c6:28:4b:2e:6b:70:da:12:2e: c0:0b:2a:cb:dc:ca:12:c1:bc:d5:55:71:26:94:2c: 9c:65:8c:40:d2:d2:9f:4e:21:95:64:8c:ba:6d:73: 74:ce:06:dc:b6:63:01:7d:3f:13:0a:65:b0:dc:92: 02:93:98:d7:ae:a5:f6:c7:97:ca:18:1e:fe:95:28: a6:42:0f:b9:91:a5:64:02:5e:2e:4f:f0:bf:4b:26: fe:f1:f0:77:20:94:f0:8c:05:47:d4:a8:0e:85:73: 29:72:9c:d3:12:c7:b5:ac:0f:7e:f9:a7:28:d4:4d: a1:0e:86:03:69:31:a0:fc:ee:7e:60:e7:b5:84:cf: ab:d4:91:00:04:e4:c1:f5:79:38:cc:61:3f:34:54: e6:db:fe:46:a5:7f:1a:15:1d:a1:8f:18:b4:63:b8: 1c:f5:72:68:fb:32:ec:30:46:16:4a:b1:c1:17:db: b8:9c:93:27:9c:7c:b1:dd:4b:41:7d:eb:f9:e7:e2: d4:05:c5:e3:6e:6b:70:e5:45:35:31:bb:8d:7d:8f: 40:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4B:57:6E:87:32:D8:55:60:8F:CD:62:C0:54:83:74:53:D3:B7:D6:C1 X509v3 Authority Key Identifier: keyid:BF:CA:53:F0:A5:87:F3:6D:89:A9:CA:B8:2B:F5:A5:03:6C:61:40:A2 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/v8pT8KWH822Jqcq4K_WlA2xhQKI.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e2/fc12ec-3eac-4455-91c9-f99c4e5c2953/1/S1duhzLYVWCPzWLAVIN0U9O31sE.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/e2/fc12ec-3eac-4455-91c9-f99c4e5c2953/1/v8pT8KWH822Jqcq4K_WlA2xhQKI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 195.149.117.0/24 Signature Algorithm: sha256WithRSAEncryption 7e:2b:e7:27:14:6f:3a:a3:9c:4f:54:31:cb:50:1c:ff:0e:b6: f0:11:84:08:e3:36:f8:3e:6e:9c:31:31:8c:14:31:3c:65:92: b0:0c:bc:44:43:bc:88:a2:a6:c7:2f:d6:4e:a8:53:26:55:60: 09:38:19:2c:3b:f3:01:49:8a:ca:c5:f2:76:4d:05:f0:6d:84: 95:43:a6:8a:9a:d7:d0:96:d8:c4:76:89:04:03:5e:0c:cd:4c: d3:09:d9:ee:a9:6d:cc:a6:a1:6d:ee:82:d5:a9:88:59:3c:05: 9b:49:dd:3b:a9:52:e2:f1:c6:c4:78:33:6f:b0:09:44:2e:a9: 7b:96:cf:a6:9d:54:3d:d7:0b:16:b7:af:9a:c3:80:d3:5a:83: 9a:c6:15:59:a2:58:39:75:7d:9b:06:2b:84:2b:3a:69:14:85: 64:20:06:5c:f0:88:0d:62:01:97:a2:a6:1a:a4:61:27:f1:c1: 7e:1d:0e:97:08:87:f7:d1:ef:21:db:14:fc:27:ff:56:f0:53: 6e:7e:16:40:d1:1c:37:af:e5:69:ea:08:7d:84:10:64:1d:34: 41:eb:28:be:f8:d4:f9:d0:aa:c8:57:aa:0b:55:38:94:a6:32: 07:7c:d3:28:c3:f2:79:ef:0f:cd:40:4d:2b:9a:ad:0e:57:50: 05:2a:92:87 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt4NVKox3/65DCBZ6CrexRkMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGJmY2E1M2YwYTU4N2YzNmQ4OWE5Y2FiODJiZjVhNTAzNmM2 MTQwYTIwHhcNMjYwMTAxMDYxODM5WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg0YjU3NmU4NzMyZDg1NTYwOGZjZDYyYzA1NDgzNzQ1M2QzYjdkNmMxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0kVSVD2LhqBtU0db7GzRVHk37pnH FBOY/lORLnt3P+c7jygATKBspQFySI22G1ueQ5/GKEsua3DaEi7ACyrL3MoSwbzV VXEmlCycZYxA0tKfTiGVZIy6bXN0zgbctmMBfT8TCmWw3JICk5jXrqX2x5fKGB7+ lSimQg+5kaVkAl4uT/C/Syb+8fB3IJTwjAVH1KgOhXMpcpzTEse1rA9++aco1E2h DoYDaTGg/O5+YOe1hM+r1JEABOTB9Xk4zGE/NFTm2/5GpX8aFR2hjxi0Y7gc9XJo +zLsMEYWSrHBF9u4nJMnnHyx3UtBfev55+LUBcXjbmtw5UU1MbuNfY9AywIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFEtXbocy2FVgj81iwFSDdFPTt9bBMB8GA1UdIwQY MBaAFL/KU/Clh/NtianKuCv1pQNsYUCiMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvdjhwVDhLV0g4MjJKcWNxNEtfV2xBMnhoUUtJLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lMi9mYzEyZWMtM2VhYy00NDU1LTkxYzkt Zjk5YzRlNWMyOTUzLzEvUzFkdWh6TFlWV0NQeldMQVZJTjBVOU8zMXNFLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9lMi9mYzEyZWMtM2VhYy00NDU1LTkxYzktZjk5YzRlNWMyOTUz LzEvdjhwVDhLV0g4MjJKcWNxNEtfV2xBMnhoUUtJLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAw5V1MA0G CSqGSIb3DQEBCwUAA4IBAQB+K+cnFG86o5xPVDHLUBz/DrbwEYQI4zb4Pm6cMTGM FDE8ZZKwDLxEQ7yIoqbHL9ZOqFMmVWAJOBksO/MBSYrKxfJ2TQXwbYSVQ6aKmtfQ ltjEdokEA14MzUzTCdnuqW3MpqFt7oLVqYhZPAWbSd07qVLi8cbEeDNvsAlELql7 ls+mnVQ91wsWt6+aw4DTWoOaxhVZolg5dX2bBiuEKzppFIVkIAZc8IgNYgGXoqYa pGEn8cF+HQ6XCIf30e8h2xT8J/9W8FNufhZA0Rw3r+Vp6gh9hBBkHTRB6yi++NT5 0KrIV6oLVTiUpjIHfNMow/J57w/NQE0rmq0OV1AFKpKH -----END CERTIFICATE-----Generated at Mon Feb 9 22:37:07 2026 by rpki-client