This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e4/66e06a-5e47-4fa9-bd3b-0bc47f4ff714/1/Bnu29pluL1AD4wD2GgQvr07xtcs.roa File: Bnu29pluL1AD4wD2GgQvr07xtcs.roa (raw, json) Hash identifier: I+PJfEbbOSJZNIrwOCyiS4eKNFmjFbXF4CqvEyNzfEQ= Subject key identifier: 06:7B:B6:F6:99:6E:2F:50:03:E3:00:F6:1A:04:2F:AF:4E:F1:B5:CB Certificate issuer: /CN=fa178e38bb8ef98bbf2b31b896397f4879f6b0f7 Certificate serial: 019B78A3595E61A976FCBE5C3FBB9A14FB26 Authority key identifier: FA:17:8E:38:BB:8E:F9:8B:BF:2B:31:B8:96:39:7F:48:79:F6:B0:F7 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-heOOLuO-Yu_KzG4ljl_SHn2sPc.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e4/66e06a-5e47-4fa9-bd3b-0bc47f4ff714/1/Bnu29pluL1AD4wD2GgQvr07xtcs.roa Signing time: Thu 01 Jan 2026 08:18:49 +0000 ROA not before: Thu 01 Jan 2026 08:18:49 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 58118 IP address blocks: 91.239.8.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e4/66e06a-5e47-4fa9-bd3b-0bc47f4ff714/1/1-heOOLuO-Yu_KzG4ljl_SHn2sPc.crl rsync://rpki.ripe.net/repository/DEFAULT/e4/66e06a-5e47-4fa9-bd3b-0bc47f4ff714/1/1-heOOLuO-Yu_KzG4ljl_SHn2sPc.mft rsync://rpki.ripe.net/repository/DEFAULT/1-heOOLuO-Yu_KzG4ljl_SHn2sPc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 17:00:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:78:a3:59:5e:61:a9:76:fc:be:5c:3f:bb:9a:14:fb:26 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=fa178e38bb8ef98bbf2b31b896397f4879f6b0f7 Validity Not Before: Jan 1 08:18:49 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=067bb6f6996e2f5003e300f61a042faf4ef1b5cb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:8b:58:3a:05:e2:30:2b:f2:22:1b:45:0d:f6: 43:23:d6:87:09:71:67:c9:d8:97:90:05:da:9c:ad: 7e:1e:13:8d:67:dc:9e:de:71:5c:db:f6:07:87:17: 84:1b:e3:42:c0:6c:bc:a4:5c:65:2a:ea:47:f5:96: b0:62:c5:5c:83:72:b9:25:ec:27:a9:b5:a7:6f:72: 71:80:a1:28:b2:ad:ee:e0:43:c5:89:fc:ca:b4:82: b9:b9:6e:db:a0:d4:25:d2:25:c1:90:07:c9:55:7a: 21:1e:2f:58:67:8e:e1:9d:83:ee:45:f7:d7:be:0c: d4:5d:14:e6:7c:8d:15:4d:0f:e4:95:14:b3:51:34: 50:6f:7c:72:b3:42:00:be:88:37:4d:b6:40:ee:4a: 9f:e8:df:6d:b0:dc:74:49:c6:17:8d:f8:ec:74:fb: bf:78:4c:f5:05:11:55:90:68:ae:41:c3:30:29:2b: 74:f2:d0:cb:07:dd:23:97:1f:f9:3f:34:8a:ed:b9: a0:0f:6a:a6:b2:e6:df:90:55:e5:e8:84:5c:5f:8a: 3a:ba:c6:1d:c4:71:d8:c5:d3:7c:93:13:3c:53:23: b9:e2:0f:26:e0:91:87:be:f2:7b:4a:89:d4:d2:76: 00:14:02:bf:9e:8b:c5:74:48:eb:ff:72:46:8a:db: ee:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 06:7B:B6:F6:99:6E:2F:50:03:E3:00:F6:1A:04:2F:AF:4E:F1:B5:CB X509v3 Authority Key Identifier: keyid:FA:17:8E:38:BB:8E:F9:8B:BF:2B:31:B8:96:39:7F:48:79:F6:B0:F7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-heOOLuO-Yu_KzG4ljl_SHn2sPc.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e4/66e06a-5e47-4fa9-bd3b-0bc47f4ff714/1/Bnu29pluL1AD4wD2GgQvr07xtcs.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/e4/66e06a-5e47-4fa9-bd3b-0bc47f4ff714/1/1-heOOLuO-Yu_KzG4ljl_SHn2sPc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 91.239.8.0/22 Signature Algorithm: sha256WithRSAEncryption 4d:a4:d5:7e:1f:aa:3d:56:e8:c8:bf:27:27:8a:44:a5:83:4f: e3:49:f6:7b:96:ee:2d:a9:30:a6:3c:69:d3:16:b0:d7:b0:01: 3b:4c:1b:23:d9:28:96:a7:a3:7d:47:fa:71:d1:ad:d6:b1:5a: 3c:91:99:6a:87:61:6b:21:d2:31:09:58:93:55:41:d1:18:f4: 4c:b2:5c:30:c1:60:2d:8c:24:cd:5d:c8:23:87:7d:06:79:73: fa:e9:8d:b0:8a:b0:ac:1f:45:46:ba:a0:b3:6e:ac:f9:d0:dd: 91:3a:d0:c5:34:0d:d2:cc:e8:17:24:2e:f5:34:39:ac:ab:6d: 39:b9:02:f1:c4:f9:c5:09:a2:0c:0e:68:a9:0a:6f:85:4e:5a: 4d:9d:25:2b:d9:44:b2:b2:6d:47:09:04:7c:19:d4:30:7d:b3: a5:86:2c:b3:62:9e:16:15:aa:9d:3a:fd:20:33:0f:21:35:6a: 60:6d:a0:17:8a:cc:b0:57:49:50:1a:0d:30:ba:ff:5c:f4:af: 6a:03:95:21:46:25:80:76:2c:93:61:ce:10:89:8d:8d:71:fe: de:cf:6e:00:3c:a6:ca:cd:4e:b6:ec:08:89:92:6e:82:14:79: 9f:de:f1:b8:e8:ac:68:0f:e9:de:97:c3:55:86:aa:5c:05:c9: 82:e7:c7:73 -----BEGIN CERTIFICATE----- MIIE/zCCA+egAwIBAgISAZt4o1leYal2/L5cP7uaFPsmMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGZhMTc4ZTM4YmI4ZWY5OGJiZjJiMzFiODk2Mzk3ZjQ4Nzlm NmIwZjcwHhcNMjYwMTAxMDgxODQ5WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygwNjdiYjZmNjk5NmUyZjUwMDNlMzAwZjYxYTA0MmZhZjRlZjFiNWNiMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuItYOgXiMCvyIhtFDfZDI9aHCXFn ydiXkAXanK1+HhONZ9ye3nFc2/YHhxeEG+NCwGy8pFxlKupH9ZawYsVcg3K5Jewn qbWnb3JxgKEosq3u4EPFifzKtIK5uW7boNQl0iXBkAfJVXohHi9YZ47hnYPuRffX vgzUXRTmfI0VTQ/klRSzUTRQb3xys0IAvog3TbZA7kqf6N9tsNx0ScYXjfjsdPu/ eEz1BRFVkGiuQcMwKSt08tDLB90jlx/5PzSK7bmgD2qmsubfkFXl6IRcX4o6usYd xHHYxdN8kxM8UyO54g8m4JGHvvJ7SonU0nYAFAK/novFdEjr/3JGitvuBwIDAQAB o4ICCzCCAgcwHQYDVR0OBBYEFAZ7tvaZbi9QA+MA9hoEL69O8bXLMB8GA1UdIwQY MBaAFPoXjji7jvmLvysxuJY5f0h59rD3MA4GA1UdDwEB/wQEAwIHgDBlBggrBgEF BQcBAQRZMFcwVQYIKwYBBQUHMAKGSXJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvMS1oZU9PTHVPLVl1X0t6RzRsamxfU0huMnNQYy5jZXIw gY0GCCsGAQUFBwELBIGAMH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBl Lm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvZTQvNjZlMDZhLTVlNDctNGZhOS1iZDNi LTBiYzQ3ZjRmZjcxNC8xL0JudTI5cGx1TDFBRDR3RDJHZ1F2cjA3eHRjcy5yb2Ew gYIGA1UdHwR7MHkwd6B1oHOGcXJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0 b3J5L0RFRkFVTFQvZTQvNjZlMDZhLTVlNDctNGZhOS1iZDNiLTBiYzQ3ZjRmZjcx NC8xLzEtaGVPT0x1Ty1ZdV9Lekc0bGpsX1NIbjJzUGMuY3JsMBgGA1UdIAEB/wQO MAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAJb7wgw DQYJKoZIhvcNAQELBQADggEBAE2k1X4fqj1W6Mi/JyeKRKWDT+NJ9nuW7i2pMKY8 adMWsNewATtMGyPZKJano31H+nHRrdaxWjyRmWqHYWsh0jEJWJNVQdEY9EyyXDDB YC2MJM1dyCOHfQZ5c/rpjbCKsKwfRUa6oLNurPnQ3ZE60MU0DdLM6BckLvU0Oayr bTm5AvHE+cUJogwOaKkKb4VOWk2dJSvZRLKybUcJBHwZ1DB9s6WGLLNinhYVqp06 /SAzDyE1amBtoBeKzLBXSVAaDTC6/1z0r2oDlSFGJYB2LJNhzhCJjY1x/t7PbgA8 psrNTrbsCImSboIUeZ/e8bjorGgP6d6Xw1WGqlwFyYLnx3M= -----END CERTIFICATE-----Generated at Tue Feb 10 03:09:39 2026 by rpki-client