This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e9/2f9a33-cd8c-41e4-9c48-eb8612457715/1/bzPhIyIk3bkSlzP2o9esoTOxto4.roa File: bzPhIyIk3bkSlzP2o9esoTOxto4.roa (raw, json) Hash identifier: bHsK8idh673TzfIsYx4NifZMv509YFTLtqIqIVG+nuA= Subject key identifier: 6F:33:E1:23:22:24:DD:B9:12:97:33:F6:A3:D7:AC:A1:33:B1:B6:8E Certificate issuer: /CN=58e0687a24d6a3e414d798d9b2fb6c52591cbb23 Certificate serial: 019B7D5CEF9ABEEAC2A1C5BE7AA33EE6EBEE Authority key identifier: 58:E0:68:7A:24:D6:A3:E4:14:D7:98:D9:B2:FB:6C:52:59:1C:BB:23 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/WOBoeiTWo-QU15jZsvtsUlkcuyM.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e9/2f9a33-cd8c-41e4-9c48-eb8612457715/1/bzPhIyIk3bkSlzP2o9esoTOxto4.roa Signing time: Fri 02 Jan 2026 06:20:01 +0000 ROA not before: Fri 02 Jan 2026 06:20:01 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 208149 IP address blocks: 185.89.96.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e9/2f9a33-cd8c-41e4-9c48-eb8612457715/1/WOBoeiTWo-QU15jZsvtsUlkcuyM.crl rsync://rpki.ripe.net/repository/DEFAULT/e9/2f9a33-cd8c-41e4-9c48-eb8612457715/1/WOBoeiTWo-QU15jZsvtsUlkcuyM.mft rsync://rpki.ripe.net/repository/DEFAULT/WOBoeiTWo-QU15jZsvtsUlkcuyM.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 27 Jan 2026 06:00:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7d:5c:ef:9a:be:ea:c2:a1:c5:be:7a:a3:3e:e6:eb:ee Signature Algorithm: sha256WithRSAEncryption Issuer: CN=58e0687a24d6a3e414d798d9b2fb6c52591cbb23 Validity Not Before: Jan 2 06:20:01 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=6f33e1232224ddb9129733f6a3d7aca133b1b68e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:f9:51:8c:ca:87:7e:47:71:50:b8:25:be:3e: 14:31:3a:11:96:22:df:fb:32:55:98:99:d5:0d:81: cd:4d:3c:61:3e:13:eb:cd:c7:a7:5a:a4:0a:65:88: 0d:c0:5a:3b:72:63:78:80:ba:66:c7:58:5a:57:b7: 77:2e:d1:49:20:9f:a5:fd:d8:db:2b:cd:90:28:41: 1b:da:bf:19:1b:d8:1c:d0:61:cf:ed:79:15:cb:21: 0e:2c:9a:1a:64:d2:ba:53:35:7f:94:f0:bc:54:69: c2:c5:5b:a3:64:e9:c5:af:e7:3a:94:51:56:b5:5b: 36:68:0b:10:a1:75:92:c5:4e:36:00:99:69:26:41: cb:ec:6b:58:bd:0f:8c:3d:90:24:3f:2e:46:bc:3a: c1:36:1b:33:8e:4b:eb:9d:2f:e6:42:84:72:7b:56: 57:0c:a6:86:12:0b:d1:60:60:0c:96:f2:21:9f:82: c3:e3:76:f5:8e:04:e9:bc:2b:7c:5f:7e:74:d7:ba: 9d:b7:26:b0:44:a9:c8:1c:fb:31:9c:c6:de:19:1b: be:a3:8a:b6:c8:7e:e5:be:f8:3c:d8:7c:c9:1a:f3: d0:a3:0e:03:68:12:c6:2d:e9:e3:0b:b5:9f:5d:13: 7f:f8:a8:e3:8d:d8:3d:b6:e5:f4:3d:e9:fb:f4:9c: 42:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6F:33:E1:23:22:24:DD:B9:12:97:33:F6:A3:D7:AC:A1:33:B1:B6:8E X509v3 Authority Key Identifier: keyid:58:E0:68:7A:24:D6:A3:E4:14:D7:98:D9:B2:FB:6C:52:59:1C:BB:23 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/WOBoeiTWo-QU15jZsvtsUlkcuyM.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e9/2f9a33-cd8c-41e4-9c48-eb8612457715/1/bzPhIyIk3bkSlzP2o9esoTOxto4.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/e9/2f9a33-cd8c-41e4-9c48-eb8612457715/1/WOBoeiTWo-QU15jZsvtsUlkcuyM.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.89.96.0/24 Signature Algorithm: sha256WithRSAEncryption 60:7c:62:e8:e1:26:71:8e:ca:6b:f5:56:ac:88:fa:e6:be:d2: 04:6a:b9:fa:f4:0d:5f:7b:a9:83:4f:12:70:48:6d:7f:ec:e5: e4:a0:0a:5e:23:b7:d3:e9:5a:bb:57:bd:4e:a8:60:69:71:7e: 9d:f2:fd:06:bc:ed:a5:97:b8:56:42:e5:77:43:5c:80:87:73: 02:84:b8:7e:f7:79:ad:53:8c:b3:a7:fe:5b:48:0e:07:eb:11: 46:ab:76:74:b5:f9:cd:fd:39:57:db:a9:53:e1:80:90:e6:97: 5f:60:87:04:1d:60:eb:8e:92:6b:58:f5:55:2c:77:3a:bc:53: 6a:d8:85:c1:26:fb:13:0c:f7:76:56:7f:ab:9e:60:2f:06:4b: 22:8b:6e:2f:73:cf:c6:eb:40:cf:33:c1:1d:03:fa:1f:81:1a: e4:23:34:78:a9:76:08:97:15:e5:1f:14:78:c7:7f:be:5f:f7: d5:99:f9:0d:97:1d:46:ec:1f:60:42:e3:ff:69:e3:f9:0d:2e: 78:ef:d9:51:ea:24:b3:f9:05:f4:5d:45:73:06:a3:cc:71:0e: d9:ce:ad:e9:60:e6:ec:e9:d2:ef:7e:60:f4:b3:f6:11:4d:56: 84:f1:c1:3d:f1:70:f0:a8:1c:2e:b6:5b:a3:b2:b6:7c:0c:9f: 26:84:e7:f4 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt9XO+avurCocW+eqM+5uvuMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDU4ZTA2ODdhMjRkNmEzZTQxNGQ3OThkOWIyZmI2YzUyNTkx Y2JiMjMwHhcNMjYwMTAyMDYyMDAxWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg2ZjMzZTEyMzIyMjRkZGI5MTI5NzMzZjZhM2Q3YWNhMTMzYjFiNjhlMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsvlRjMqHfkdxULglvj4UMToRliLf +zJVmJnVDYHNTTxhPhPrzcenWqQKZYgNwFo7cmN4gLpmx1haV7d3LtFJIJ+l/djb K82QKEEb2r8ZG9gc0GHP7XkVyyEOLJoaZNK6UzV/lPC8VGnCxVujZOnFr+c6lFFW tVs2aAsQoXWSxU42AJlpJkHL7GtYvQ+MPZAkPy5GvDrBNhszjkvrnS/mQoRye1ZX DKaGEgvRYGAMlvIhn4LD43b1jgTpvCt8X35017qdtyawRKnIHPsxnMbeGRu+o4q2 yH7lvvg82HzJGvPQow4DaBLGLenjC7WfXRN/+Kjjjdg9tuX0Pen79JxC9QIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFG8z4SMiJN25Epcz9qPXrKEzsbaOMB8GA1UdIwQY MBaAFFjgaHok1qPkFNeY2bL7bFJZHLsjMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvV09Cb2VpVFdvLVFVMTVqWnN2dHNVbGtjdXlNLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lOS8yZjlhMzMtY2Q4Yy00MWU0LTljNDgt ZWI4NjEyNDU3NzE1LzEvYnpQaEl5SWszYmtTbHpQMm85ZXNvVE94dG80LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9lOS8yZjlhMzMtY2Q4Yy00MWU0LTljNDgtZWI4NjEyNDU3NzE1 LzEvV09Cb2VpVFdvLVFVMTVqWnN2dHNVbGtjdXlNLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAuVlgMA0G CSqGSIb3DQEBCwUAA4IBAQBgfGLo4SZxjspr9VasiPrmvtIEarn69A1fe6mDTxJw SG1/7OXkoApeI7fT6Vq7V71OqGBpcX6d8v0GvO2ll7hWQuV3Q1yAh3MChLh+93mt U4yzp/5bSA4H6xFGq3Z0tfnN/TlX26lT4YCQ5pdfYIcEHWDrjpJrWPVVLHc6vFNq 2IXBJvsTDPd2Vn+rnmAvBksii24vc8/G60DPM8EdA/ofgRrkIzR4qXYIlxXlHxR4 x3++X/fVmfkNlx1G7B9gQuP/aeP5DS5479lR6iSz+QX0XUVzBqPMcQ7Zzq3pYObs 6dLvfmD0s/YRTVaE8cE98XDwqBwutlujsrZ8DJ8mhOf0 -----END CERTIFICATE-----Generated at Mon Jan 26 15:00:26 2026 by rpki-client