This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f3/babef9-079d-40f4-a211-3586aae13da7/1/sYg8Oa1Ta_lzbrdC5qTkNfuGJEo.roa File: sYg8Oa1Ta_lzbrdC5qTkNfuGJEo.roa (raw, json) Hash identifier: QEaQMZyU5y5fYj+msGaAAUMqIN0tNFuYbbG6xKUQauY= Subject key identifier: B1:88:3C:39:AD:53:6B:F9:73:6E:B7:42:E6:A4:E4:35:FB:86:24:4A Certificate issuer: /CN=93b91eefa6d8046d918e364045604952640bc15d Certificate serial: 019B7CEE1502446CEC1FAA91B667D1B42398 Authority key identifier: 93:B9:1E:EF:A6:D8:04:6D:91:8E:36:40:45:60:49:52:64:0B:C1:5D Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/k7ke76bYBG2RjjZARWBJUmQLwV0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f3/babef9-079d-40f4-a211-3586aae13da7/1/sYg8Oa1Ta_lzbrdC5qTkNfuGJEo.roa Signing time: Fri 02 Jan 2026 04:18:56 +0000 ROA not before: Fri 02 Jan 2026 04:18:56 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 208017 IP address blocks: 139.28.156.0/22 maxlen: 24 139.28.156.0/24 maxlen: 24 139.28.158.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f3/babef9-079d-40f4-a211-3586aae13da7/1/k7ke76bYBG2RjjZARWBJUmQLwV0.crl rsync://rpki.ripe.net/repository/DEFAULT/f3/babef9-079d-40f4-a211-3586aae13da7/1/k7ke76bYBG2RjjZARWBJUmQLwV0.mft rsync://rpki.ripe.net/repository/DEFAULT/k7ke76bYBG2RjjZARWBJUmQLwV0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 19:00:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7c:ee:15:02:44:6c:ec:1f:aa:91:b6:67:d1:b4:23:98 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=93b91eefa6d8046d918e364045604952640bc15d Validity Not Before: Jan 2 04:18:56 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=b1883c39ad536bf9736eb742e6a4e435fb86244a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:cb:a7:02:28:57:a4:6d:32:14:0b:02:0a:7d: 73:1b:eb:52:92:34:5b:3e:a5:6b:aa:24:ee:9a:a6: 3c:1e:30:73:31:27:d9:67:d4:9d:0a:f7:f6:4a:2d: d3:8b:4e:5c:19:aa:d3:f6:89:a1:8e:47:8b:36:c0: 83:71:72:e5:34:81:c4:25:1f:6f:8f:fa:06:08:71: 8e:16:19:d1:08:96:0d:0b:4c:a7:dc:cc:82:a0:ca: 84:8f:d3:46:54:e2:e6:55:0a:55:dd:8e:dd:ad:6d: af:29:20:15:44:6e:10:f1:95:7a:5d:e7:48:dd:8c: 54:12:5e:fa:d7:d1:ae:d0:5a:99:b4:ee:00:31:23: 94:37:79:31:0b:b8:25:75:1c:4e:74:a8:07:c5:55: 2d:45:f2:43:7b:60:56:0d:64:de:a4:4e:dd:5c:6b: 17:09:47:cb:fb:ac:8f:c2:fa:8d:4c:8c:de:ee:ab: 9f:58:85:b6:b9:98:26:c2:27:d6:9f:d9:52:64:a0: 80:04:3a:09:3d:f6:e0:c1:1f:41:2b:c5:78:68:d2: b7:a3:f7:74:ea:3b:3a:d7:90:b1:da:31:1e:95:e2: 28:3b:17:ce:0d:39:86:d6:52:3e:1f:ab:f5:61:f5: 01:44:66:16:6c:71:5b:8c:8f:00:54:44:66:29:18: 3c:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B1:88:3C:39:AD:53:6B:F9:73:6E:B7:42:E6:A4:E4:35:FB:86:24:4A X509v3 Authority Key Identifier: keyid:93:B9:1E:EF:A6:D8:04:6D:91:8E:36:40:45:60:49:52:64:0B:C1:5D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/k7ke76bYBG2RjjZARWBJUmQLwV0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f3/babef9-079d-40f4-a211-3586aae13da7/1/sYg8Oa1Ta_lzbrdC5qTkNfuGJEo.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/f3/babef9-079d-40f4-a211-3586aae13da7/1/k7ke76bYBG2RjjZARWBJUmQLwV0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 139.28.156.0/22 Signature Algorithm: sha256WithRSAEncryption 11:2d:9c:87:63:52:b8:6b:63:65:c4:ee:58:0e:e5:1e:7c:36: f0:90:d7:3d:20:41:20:7c:57:b2:86:02:e7:9b:75:7f:d8:f5: 65:73:6b:45:36:2c:92:c7:3b:51:85:36:62:05:08:a7:ff:dc: ba:22:f2:02:1f:f8:41:cf:74:f1:db:9f:b6:23:03:84:29:e7: b2:e1:7f:32:00:29:c1:c0:aa:d2:10:58:ca:37:b4:65:2e:13: 18:eb:0d:ca:9f:36:57:2a:9e:e9:67:aa:1c:af:13:d4:5e:a1: e5:9d:56:b4:95:71:c6:97:70:5c:6d:02:cd:25:47:d0:13:46: 7d:d4:d5:c0:f3:9a:0c:6d:c8:37:3b:e6:a9:f7:eb:84:5e:b6: 1f:6e:0c:82:b3:57:6f:71:a6:d7:3c:6f:3a:20:f7:59:8c:88: 2a:97:68:d5:6c:2d:69:77:d5:6f:13:94:45:a7:4d:8a:20:b0: 88:ad:da:65:7a:f0:2e:f3:e9:8b:ab:e4:4b:8a:44:1c:f8:d5: 39:d0:82:14:13:06:be:79:89:d3:80:6e:f0:94:74:ae:b2:00: f0:79:e8:92:9a:0c:8c:66:bb:92:f7:f9:40:7d:32:d0:94:a3: c6:ce:c3:c0:26:33:76:ad:36:ba:7e:92:ac:7b:28:0b:af:6b: de:12:23:86 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt87hUCRGzsH6qRtmfRtCOYMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDkzYjkxZWVmYTZkODA0NmQ5MThlMzY0MDQ1NjA0OTUyNjQw YmMxNWQwHhcNMjYwMTAyMDQxODU2WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhiMTg4M2MzOWFkNTM2YmY5NzM2ZWI3NDJlNmE0ZTQzNWZiODYyNDRhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAw8unAihXpG0yFAsCCn1zG+tSkjRb PqVrqiTumqY8HjBzMSfZZ9SdCvf2Si3Ti05cGarT9omhjkeLNsCDcXLlNIHEJR9v j/oGCHGOFhnRCJYNC0yn3MyCoMqEj9NGVOLmVQpV3Y7drW2vKSAVRG4Q8ZV6XedI 3YxUEl7619Gu0FqZtO4AMSOUN3kxC7gldRxOdKgHxVUtRfJDe2BWDWTepE7dXGsX CUfL+6yPwvqNTIze7qufWIW2uZgmwifWn9lSZKCABDoJPfbgwR9BK8V4aNK3o/d0 6js615Cx2jEeleIoOxfODTmG1lI+H6v1YfUBRGYWbHFbjI8AVERmKRg8NQIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFLGIPDmtU2v5c263Quak5DX7hiRKMB8GA1UdIwQY MBaAFJO5Hu+m2ARtkY42QEVgSVJkC8FdMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvazdrZTc2YllCRzJSampaQVJXQkpVbVFMd1YwLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mMy9iYWJlZjktMDc5ZC00MGY0LWEyMTEt MzU4NmFhZTEzZGE3LzEvc1lnOE9hMVRhX2x6YnJkQzVxVGtOZnVHSkVvLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9mMy9iYWJlZjktMDc5ZC00MGY0LWEyMTEtMzU4NmFhZTEzZGE3 LzEvazdrZTc2YllCRzJSampaQVJXQkpVbVFMd1YwLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCixycMA0G CSqGSIb3DQEBCwUAA4IBAQARLZyHY1K4a2NlxO5YDuUefDbwkNc9IEEgfFeyhgLn m3V/2PVlc2tFNiySxztRhTZiBQin/9y6IvICH/hBz3Tx25+2IwOEKeey4X8yACnB wKrSEFjKN7RlLhMY6w3KnzZXKp7pZ6ocrxPUXqHlnVa0lXHGl3BcbQLNJUfQE0Z9 1NXA85oMbcg3O+ap9+uEXrYfbgyCs1dvcabXPG86IPdZjIgql2jVbC1pd9VvE5RF p02KILCIrdplevAu8+mLq+RLikQc+NU50IIUEwa+eYnTgG7wlHSusgDweeiSmgyM ZruS9/lAfTLQlKPGzsPAJjN2rTa6fpKseygLr2veEiOG -----END CERTIFICATE-----Generated at Tue Feb 10 03:02:23 2026 by rpki-client