This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f2/4842a9-9fcd-4bb6-bb04-0dbbc249e657/1/bZJA4Zdk6OCETrYbfAEHSsuzwDE.roa File: bZJA4Zdk6OCETrYbfAEHSsuzwDE.roa (raw, json) Hash identifier: IUm+Or+NvYeQ78zXKIY9OqKwxZRYHCF8Axsyp7t54Y8= Subject key identifier: 6D:92:40:E1:97:64:E8:E0:84:4E:B6:1B:7C:01:07:4A:CB:B3:C0:31 Certificate issuer: /CN=49216f5c165b827a7fd73d8107aebd2f63c63e24 Certificate serial: 019B7BA3DDB7BB200D0306746916A206565F Authority key identifier: 49:21:6F:5C:16:5B:82:7A:7F:D7:3D:81:07:AE:BD:2F:63:C6:3E:24 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/SSFvXBZbgnp_1z2BB669L2PGPiQ.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f2/4842a9-9fcd-4bb6-bb04-0dbbc249e657/1/bZJA4Zdk6OCETrYbfAEHSsuzwDE.roa Signing time: Thu 01 Jan 2026 22:18:15 +0000 ROA not before: Thu 01 Jan 2026 22:18:15 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 209186 IP address blocks: 178.17.63.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f2/4842a9-9fcd-4bb6-bb04-0dbbc249e657/1/SSFvXBZbgnp_1z2BB669L2PGPiQ.crl rsync://rpki.ripe.net/repository/DEFAULT/f2/4842a9-9fcd-4bb6-bb04-0dbbc249e657/1/SSFvXBZbgnp_1z2BB669L2PGPiQ.mft rsync://rpki.ripe.net/repository/DEFAULT/SSFvXBZbgnp_1z2BB669L2PGPiQ.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 22 Jan 2026 08:01:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7b:a3:dd:b7:bb:20:0d:03:06:74:69:16:a2:06:56:5f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=49216f5c165b827a7fd73d8107aebd2f63c63e24 Validity Not Before: Jan 1 22:18:15 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=6d9240e19764e8e0844eb61b7c01074acbb3c031 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:9c:80:34:2c:73:0f:6c:f9:a9:7a:1d:03:a6: ed:44:8b:5b:a4:bb:7f:c7:c0:16:f7:b1:45:8e:d7: d7:2a:2e:ce:db:62:64:9d:33:c3:d6:26:d5:ea:c9: 78:88:14:26:95:f2:3e:4a:7e:87:cf:d5:1d:c9:f7: 29:60:ab:c6:74:5b:dc:b4:4b:d5:36:4a:2c:32:dd: 42:5f:3f:38:0c:8c:84:6f:39:c8:1a:02:f7:b6:76: ca:a9:e5:b8:1c:2f:6e:0c:84:8b:a9:02:3b:3e:a9: cc:cb:6d:93:c3:00:64:68:f3:70:36:fe:0a:9b:07: bb:b1:6a:86:fd:77:82:8c:4f:af:bc:9b:c9:94:04: 6e:c3:58:21:09:58:18:09:31:5e:8f:71:6b:25:90: 6a:9c:5e:71:5a:70:e6:92:d4:0b:72:33:08:2b:1d: bc:16:75:13:e8:fe:0c:aa:ca:dc:bc:68:2e:d0:e1: 28:a7:c6:0a:e3:c3:01:dc:df:e3:6b:7a:2f:ad:06: 03:70:f1:b0:f0:ff:4f:9d:36:25:ef:e4:d8:ab:05: c9:67:c9:03:a1:33:29:23:82:8c:c3:cb:e1:47:26: 0e:0c:e4:a7:a7:f4:43:95:00:41:05:b1:48:39:e5: 37:0c:21:5a:9c:d2:d5:2a:2f:f1:d1:14:cd:d2:77: 1a:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6D:92:40:E1:97:64:E8:E0:84:4E:B6:1B:7C:01:07:4A:CB:B3:C0:31 X509v3 Authority Key Identifier: keyid:49:21:6F:5C:16:5B:82:7A:7F:D7:3D:81:07:AE:BD:2F:63:C6:3E:24 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/SSFvXBZbgnp_1z2BB669L2PGPiQ.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f2/4842a9-9fcd-4bb6-bb04-0dbbc249e657/1/bZJA4Zdk6OCETrYbfAEHSsuzwDE.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/f2/4842a9-9fcd-4bb6-bb04-0dbbc249e657/1/SSFvXBZbgnp_1z2BB669L2PGPiQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 178.17.63.0/24 Signature Algorithm: sha256WithRSAEncryption b2:c6:a1:8f:5c:60:cb:54:84:d3:e5:cf:6f:fc:eb:c0:b9:b6: 65:7e:be:52:c7:bc:aa:75:f5:c8:5a:8e:c8:7b:8b:8c:c7:6a: 3c:7a:3b:55:0f:c7:1a:f8:0b:f3:c4:30:8c:76:fd:7a:04:20: 7a:d0:3c:59:ef:31:aa:40:81:be:fd:cd:25:0c:c8:8c:5c:b0: ec:4f:47:a3:56:f6:c8:9e:47:df:77:5c:5a:b6:ad:c6:94:34: 43:b5:25:15:53:6a:35:bc:a7:c5:6a:f5:9f:6c:66:64:c0:56: ea:c2:09:89:c3:c7:ef:cc:87:5a:cf:21:c2:42:84:4b:fa:73: ce:6e:11:ae:22:7a:88:60:c9:b3:d0:89:be:2b:83:e7:58:fe: 04:0b:c3:f8:6a:45:4e:eb:33:63:38:f6:0a:0a:56:e2:f0:2c: d3:40:8c:06:e5:77:ff:05:86:c7:a0:fa:54:08:1a:d9:ae:cd: 8e:f8:ad:d1:c0:0b:ae:b6:00:14:42:f9:f4:f8:69:67:e7:21: c8:0e:a1:b9:be:99:56:c3:d2:e0:5f:dc:f5:d7:0e:1a:5e:b2: 16:ac:ea:fd:2b:2c:b3:de:12:99:3a:e5:8f:a0:91:fb:6e:09: 61:f7:7b:29:67:52:40:fc:f5:11:4b:52:e1:1c:1e:4b:dd:72: 18:6c:19:39 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt7o923uyANAwZ0aRaiBlZfMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDQ5MjE2ZjVjMTY1YjgyN2E3ZmQ3M2Q4MTA3YWViZDJmNjNj NjNlMjQwHhcNMjYwMTAxMjIxODE1WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg2ZDkyNDBlMTk3NjRlOGUwODQ0ZWI2MWI3YzAxMDc0YWNiYjNjMDMxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAoZyANCxzD2z5qXodA6btRItbpLt/ x8AW97FFjtfXKi7O22JknTPD1ibV6sl4iBQmlfI+Sn6Hz9UdyfcpYKvGdFvctEvV NkosMt1CXz84DIyEbznIGgL3tnbKqeW4HC9uDISLqQI7PqnMy22TwwBkaPNwNv4K mwe7sWqG/XeCjE+vvJvJlARuw1ghCVgYCTFej3FrJZBqnF5xWnDmktQLcjMIKx28 FnUT6P4MqsrcvGgu0OEop8YK48MB3N/ja3ovrQYDcPGw8P9PnTYl7+TYqwXJZ8kD oTMpI4KMw8vhRyYODOSnp/RDlQBBBbFIOeU3DCFanNLVKi/x0RTN0ncanwIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFG2SQOGXZOjghE62G3wBB0rLs8AxMB8GA1UdIwQY MBaAFEkhb1wWW4J6f9c9gQeuvS9jxj4kMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvU1NGdlhCWmJnbnBfMXoyQkI2NjlMMlBHUGlRLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mMi80ODQyYTktOWZjZC00YmI2LWJiMDQt MGRiYmMyNDllNjU3LzEvYlpKQTRaZGs2T0NFVHJZYmZBRUhTc3V6d0RFLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9mMi80ODQyYTktOWZjZC00YmI2LWJiMDQtMGRiYmMyNDllNjU3 LzEvU1NGdlhCWmJnbnBfMXoyQkI2NjlMMlBHUGlRLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAshE/MA0G CSqGSIb3DQEBCwUAA4IBAQCyxqGPXGDLVITT5c9v/OvAubZlfr5Sx7yqdfXIWo7I e4uMx2o8ejtVD8ca+AvzxDCMdv16BCB60DxZ7zGqQIG+/c0lDMiMXLDsT0ejVvbI nkffd1xatq3GlDRDtSUVU2o1vKfFavWfbGZkwFbqwgmJw8fvzIdazyHCQoRL+nPO bhGuInqIYMmz0Im+K4PnWP4EC8P4akVO6zNjOPYKClbi8CzTQIwG5Xf/BYbHoPpU CBrZrs2O+K3RwAuutgAUQvn0+Gln5yHIDqG5vplWw9LgX9z11w4aXrIWrOr9Kyyz 3hKZOuWPoJH7bglh93spZ1JA/PURS1LhHB5L3XIYbBk5 -----END CERTIFICATE-----Generated at Wed Jan 21 13:47:08 2026 by rpki-client