This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f7/3343d2-5253-4243-a01f-587fc84acefe/1/pBZly4FM6dBwlJDuWkuLuvUQhJg.roa File: pBZly4FM6dBwlJDuWkuLuvUQhJg.roa (raw, json) Hash identifier: o71HDV8s+9P3IJ7RipmOqIZNCQQ65Mxlc2gRRdwJM+c= Subject key identifier: A4:16:65:CB:81:4C:E9:D0:70:94:90:EE:5A:4B:8B:BA:F5:10:84:98 Certificate issuer: /CN=bf56ba98c6745a63026d78fc284722399d2eb849 Certificate serial: 019B7B35A85BC29AD706D383DA6653630020 Authority key identifier: BF:56:BA:98:C6:74:5A:63:02:6D:78:FC:28:47:22:39:9D:2E:B8:49 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/v1a6mMZ0WmMCbXj8KEciOZ0uuEk.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f7/3343d2-5253-4243-a01f-587fc84acefe/1/pBZly4FM6dBwlJDuWkuLuvUQhJg.roa Signing time: Thu 01 Jan 2026 20:17:52 +0000 ROA not before: Thu 01 Jan 2026 20:17:52 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 50959 IP address blocks: 45.15.43.0/24 maxlen: 24 91.216.134.0/24 maxlen: 24 2a07:4900::/29 maxlen: 29 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f7/3343d2-5253-4243-a01f-587fc84acefe/1/v1a6mMZ0WmMCbXj8KEciOZ0uuEk.crl rsync://rpki.ripe.net/repository/DEFAULT/f7/3343d2-5253-4243-a01f-587fc84acefe/1/v1a6mMZ0WmMCbXj8KEciOZ0uuEk.mft rsync://rpki.ripe.net/repository/DEFAULT/v1a6mMZ0WmMCbXj8KEciOZ0uuEk.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7b:35:a8:5b:c2:9a:d7:06:d3:83:da:66:53:63:00:20 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=bf56ba98c6745a63026d78fc284722399d2eb849 Validity Not Before: Jan 1 20:17:52 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=a41665cb814ce9d0709490ee5a4b8bbaf5108498 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:72:77:ab:52:24:e4:93:0d:b0:99:d9:b6:2f: 3d:3d:33:13:9d:b1:74:d9:f8:8f:d4:c6:0f:fc:1e: 98:ec:70:a1:f9:48:28:91:ce:16:8c:30:10:8b:2d: 63:25:25:c1:4c:c7:3b:57:2a:a7:0f:b8:5a:19:0c: c5:5c:31:93:a0:59:7d:c6:2b:72:a2:d2:15:db:a8: 3d:9c:fd:0e:be:cb:cc:7a:ba:26:e9:87:0c:c1:60: 20:ce:b3:f3:89:b6:0c:69:48:84:24:0d:63:85:72: 56:93:11:dc:56:fa:2f:d7:81:9b:83:14:3a:ba:26: d8:b3:1f:f6:ed:7b:fb:15:23:71:fd:ee:c7:7f:aa: 4d:5d:ed:06:ed:0b:a5:81:dc:44:e2:74:9f:4b:11: 24:44:d8:47:e0:ce:31:05:08:0e:08:32:46:3e:6d: bb:24:11:3b:64:9b:ac:ab:d3:5b:2c:39:7f:11:a0: 7e:72:e4:48:d7:75:4e:e3:40:f7:8c:a0:51:e0:66: 7d:0c:36:cd:f0:d8:8b:d7:a6:5d:72:ed:4f:a1:2d: c5:50:de:0a:d3:61:7b:91:21:01:87:ae:c9:f6:9f: 69:01:6f:d3:8a:43:64:61:d1:4d:d9:db:e4:15:30: e5:7c:5d:e3:c7:77:16:41:2b:bc:d7:b4:29:6f:0c: 2a:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A4:16:65:CB:81:4C:E9:D0:70:94:90:EE:5A:4B:8B:BA:F5:10:84:98 X509v3 Authority Key Identifier: keyid:BF:56:BA:98:C6:74:5A:63:02:6D:78:FC:28:47:22:39:9D:2E:B8:49 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/v1a6mMZ0WmMCbXj8KEciOZ0uuEk.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f7/3343d2-5253-4243-a01f-587fc84acefe/1/pBZly4FM6dBwlJDuWkuLuvUQhJg.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/f7/3343d2-5253-4243-a01f-587fc84acefe/1/v1a6mMZ0WmMCbXj8KEciOZ0uuEk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 45.15.43.0/24 91.216.134.0/24 IPv6: 2a07:4900::/29 Signature Algorithm: sha256WithRSAEncryption ac:e7:52:c6:d8:be:fc:bb:19:f8:45:a1:ce:48:28:50:06:74: e2:28:83:80:0c:a4:f5:fa:54:51:b5:97:d9:f8:9b:40:7e:23: 36:67:00:97:1a:88:61:68:b7:99:2d:04:5e:e7:cb:4f:80:c4: 16:3f:91:1b:c9:81:93:3d:39:bf:d6:6c:52:4e:36:f3:20:9c: 7c:8b:87:24:a4:91:31:45:bd:5e:5c:a4:8f:fc:64:e5:4b:eb: 4d:13:58:4e:33:ed:38:cc:fd:7d:9d:ed:5d:e8:64:8e:08:bf: 39:69:e4:43:99:6f:f3:e4:8d:b3:39:f3:82:5a:dc:0f:a3:5b: 1e:e2:64:5a:dc:f8:4c:46:0e:33:ce:aa:0e:d4:12:5f:2b:96: 24:ae:22:ba:35:b0:90:1a:92:78:2f:6f:d0:25:26:c0:78:8e: 85:dd:37:d3:a0:82:b1:a8:97:c1:ac:c2:07:f3:74:8f:bb:24: 4a:d5:16:0e:0a:79:4b:fe:4a:07:64:aa:b7:d8:a3:c3:f1:46: 12:45:85:1e:51:5f:88:6b:48:8a:50:f4:ef:09:d3:90:41:bb: 83:ac:fb:1b:f5:33:15:47:1e:af:e2:b2:48:a4:33:b5:7f:57: 9d:ed:39:27:16:1e:82:9d:f6:10:0d:5a:25:10:16:d7:2d:26: dd:fd:35:b5 -----BEGIN CERTIFICATE----- MIIFEjCCA/qgAwIBAgISAZt7NahbwprXBtOD2mZTYwAgMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGJmNTZiYTk4YzY3NDVhNjMwMjZkNzhmYzI4NDcyMjM5OWQy ZWI4NDkwHhcNMjYwMTAxMjAxNzUyWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhhNDE2NjVjYjgxNGNlOWQwNzA5NDkwZWU1YTRiOGJiYWY1MTA4NDk4MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAy3J3q1Ik5JMNsJnZti89PTMTnbF0 2fiP1MYP/B6Y7HCh+Ugokc4WjDAQiy1jJSXBTMc7VyqnD7haGQzFXDGToFl9xity otIV26g9nP0OvsvMerom6YcMwWAgzrPzibYMaUiEJA1jhXJWkxHcVvov14GbgxQ6 uibYsx/27Xv7FSNx/e7Hf6pNXe0G7QulgdxE4nSfSxEkRNhH4M4xBQgOCDJGPm27 JBE7ZJusq9NbLDl/EaB+cuRI13VO40D3jKBR4GZ9DDbN8NiL16Zdcu1PoS3FUN4K 02F7kSEBh67J9p9pAW/TikNkYdFN2dvkFTDlfF3jx3cWQSu817Qpbwwq1QIDAQAB o4ICHjCCAhowHQYDVR0OBBYEFKQWZcuBTOnQcJSQ7lpLi7r1EISYMB8GA1UdIwQY MBaAFL9WupjGdFpjAm14/ChHIjmdLrhJMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvdjFhNm1NWjBXbU1DYlhqOEtFY2lPWjB1dUVrLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mNy8zMzQzZDItNTI1My00MjQzLWEwMWYt NTg3ZmM4NGFjZWZlLzEvcEJabHk0Rk02ZEJ3bEpEdVdrdUx1dlVRaEpnLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9mNy8zMzQzZDItNTI1My00MjQzLWEwMWYtNTg3ZmM4NGFjZWZl LzEvdjFhNm1NWjBXbU1DYlhqOEtFY2lPWjB1dUVrLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMDQGCCsGAQUFBwEHAQH/BCUwIzASBAIAATAMAwQALQ8rAwQA W9iGMA0EAgACMAcDBQMqB0kAMA0GCSqGSIb3DQEBCwUAA4IBAQCs51LG2L78uxn4 RaHOSChQBnTiKIOADKT1+lRRtZfZ+JtAfiM2ZwCXGohhaLeZLQRe58tPgMQWP5Eb yYGTPTm/1mxSTjbzIJx8i4ckpJExRb1eXKSP/GTlS+tNE1hOM+04zP19ne1d6GSO CL85aeRDmW/z5I2zOfOCWtwPo1se4mRa3PhMRg4zzqoO1BJfK5YkriK6NbCQGpJ4 L2/QJSbAeI6F3TfToIKxqJfBrMIH83SPuyRK1RYOCnlL/koHZKq32KPD8UYSRYUe UV+Ia0iKUPTvCdOQQbuDrPsb9TMVRx6v4rJIpDO1f1ed7TknFh6CnfYQDVolEBbX LSbd/TW1 -----END CERTIFICATE-----Generated at Mon Feb 9 22:32:17 2026 by rpki-client