This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fc/b321be-6000-4baa-92dc-270c8b5a0923/1/p9RxkxEDg3zhOEBmGSkuGg-Qp1g.roa File: p9RxkxEDg3zhOEBmGSkuGg-Qp1g.roa (raw, json) Hash identifier: Pzg3LR/Kx5u+U4xpCocEsCBgxEMmX7bZWZgvVSP3EX8= Subject key identifier: A7:D4:71:93:11:03:83:7C:E1:38:40:66:19:29:2E:1A:0F:90:A7:58 Certificate issuer: /CN=bdaee4a81ff360fe00c3a1f0dae30e26e1280945 Certificate serial: 019B797F0393A96C4EC01E6ED273F672C178 Authority key identifier: BD:AE:E4:A8:1F:F3:60:FE:00:C3:A1:F0:DA:E3:0E:26:E1:28:09:45 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/va7kqB_zYP4Aw6Hw2uMOJuEoCUU.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fc/b321be-6000-4baa-92dc-270c8b5a0923/1/p9RxkxEDg3zhOEBmGSkuGg-Qp1g.roa Signing time: Thu 01 Jan 2026 12:18:45 +0000 ROA not before: Thu 01 Jan 2026 12:18:45 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 44837 IP address blocks: 195.66.105.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fc/b321be-6000-4baa-92dc-270c8b5a0923/1/va7kqB_zYP4Aw6Hw2uMOJuEoCUU.crl rsync://rpki.ripe.net/repository/DEFAULT/fc/b321be-6000-4baa-92dc-270c8b5a0923/1/va7kqB_zYP4Aw6Hw2uMOJuEoCUU.mft rsync://rpki.ripe.net/repository/DEFAULT/va7kqB_zYP4Aw6Hw2uMOJuEoCUU.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 12:00:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:79:7f:03:93:a9:6c:4e:c0:1e:6e:d2:73:f6:72:c1:78 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=bdaee4a81ff360fe00c3a1f0dae30e26e1280945 Validity Not Before: Jan 1 12:18:45 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=a7d471931103837ce138406619292e1a0f90a758 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:94:da:0d:e6:12:3e:15:06:fb:5d:bd:c6:62: 56:66:d7:60:8c:96:d1:d8:37:eb:21:d4:18:f0:26: ce:43:a8:68:68:f3:c4:63:b0:ba:6c:52:a8:af:5a: 0e:9b:1d:6c:22:aa:89:2e:b5:ad:b3:de:60:4c:5f: 18:86:f6:0b:29:96:33:62:e1:7d:ca:e2:23:67:8f: 7e:3c:ba:52:6c:c7:88:6a:73:0a:a9:b4:98:c7:79: f0:44:26:d5:fa:40:2d:3a:01:2f:f8:e0:59:ba:25: eb:81:8e:44:0f:8c:4c:b6:e6:6e:78:08:6e:f0:23: c5:90:d6:d7:e7:51:90:9c:49:c7:bc:96:b4:c1:86: e4:c6:69:65:76:1e:00:4b:c7:38:f1:04:22:e1:d6: bb:ba:75:70:fd:85:4d:5a:5f:0c:7b:f1:00:2b:93: d9:95:04:b5:9c:58:f6:2b:a3:1e:24:0e:ac:a6:3f: 5f:13:59:09:45:ac:08:05:99:9f:66:ae:31:b0:b9: 30:3b:ac:7c:09:87:06:bc:c0:67:2c:8f:6e:2e:c3: d8:a2:4d:1a:ff:2e:74:ed:f9:88:55:f7:49:7a:9c: e3:58:11:c7:53:31:16:4c:a7:91:25:cd:6b:9c:d5: 4a:56:48:1d:da:93:db:7b:3e:66:56:99:6d:ad:2d: ad:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A7:D4:71:93:11:03:83:7C:E1:38:40:66:19:29:2E:1A:0F:90:A7:58 X509v3 Authority Key Identifier: keyid:BD:AE:E4:A8:1F:F3:60:FE:00:C3:A1:F0:DA:E3:0E:26:E1:28:09:45 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/va7kqB_zYP4Aw6Hw2uMOJuEoCUU.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fc/b321be-6000-4baa-92dc-270c8b5a0923/1/p9RxkxEDg3zhOEBmGSkuGg-Qp1g.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/fc/b321be-6000-4baa-92dc-270c8b5a0923/1/va7kqB_zYP4Aw6Hw2uMOJuEoCUU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 195.66.105.0/24 Signature Algorithm: sha256WithRSAEncryption b5:63:69:d4:a1:3f:64:49:ec:8f:36:76:d5:2d:96:c0:43:61: 27:66:17:6c:01:dc:73:00:fc:9a:a1:c6:e9:ea:9e:b4:c2:3d: 35:aa:84:fa:c0:18:e8:6a:36:33:60:2e:8c:3e:e6:6c:4f:df: ad:eb:6b:a5:2b:06:68:f0:14:a0:a5:89:40:d5:5d:77:b2:9e: 0a:b3:5d:69:f6:19:54:eb:02:86:3b:1a:16:23:8d:db:f0:29: 6f:21:a0:06:e2:6b:fa:4d:f2:95:27:96:db:94:43:3e:90:34: 63:de:5b:d6:96:1a:ff:9d:bc:38:ee:30:81:4f:39:3a:27:f0: 1b:79:3e:47:8f:0f:56:33:e9:d7:b9:bb:5d:90:0b:42:3d:5a: 04:48:5d:06:63:ce:39:c6:4f:09:f5:8a:ab:04:bd:58:ea:98: 17:63:47:5e:22:5f:2b:6a:b6:3a:99:3d:ca:22:a9:d6:32:44: b2:ea:94:b5:c4:84:25:0b:6b:31:b1:cf:0f:a2:13:05:6f:2d: 2f:b1:6d:b5:a9:19:8e:fa:8f:8e:d3:f7:c0:20:88:a5:96:37: 27:15:04:ec:e9:5f:7c:b7:03:2c:22:4b:a7:cc:20:59:91:a2: 73:60:9e:64:2e:73:00:99:d6:59:9d:b2:22:bd:10:a1:70:e1: 44:dd:65:0d -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt5fwOTqWxOwB5u0nP2csF4MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGJkYWVlNGE4MWZmMzYwZmUwMGMzYTFmMGRhZTMwZTI2ZTEy ODA5NDUwHhcNMjYwMTAxMTIxODQ1WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhhN2Q0NzE5MzExMDM4MzdjZTEzODQwNjYxOTI5MmUxYTBmOTBhNzU4MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvZTaDeYSPhUG+129xmJWZtdgjJbR 2DfrIdQY8CbOQ6hoaPPEY7C6bFKor1oOmx1sIqqJLrWts95gTF8YhvYLKZYzYuF9 yuIjZ49+PLpSbMeIanMKqbSYx3nwRCbV+kAtOgEv+OBZuiXrgY5ED4xMtuZueAhu 8CPFkNbX51GQnEnHvJa0wYbkxmlldh4AS8c48QQi4da7unVw/YVNWl8Me/EAK5PZ lQS1nFj2K6MeJA6spj9fE1kJRawIBZmfZq4xsLkwO6x8CYcGvMBnLI9uLsPYok0a /y507fmIVfdJepzjWBHHUzEWTKeRJc1rnNVKVkgd2pPbez5mVpltrS2tWwIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFKfUcZMRA4N84ThAZhkpLhoPkKdYMB8GA1UdIwQY MBaAFL2u5Kgf82D+AMOh8NrjDibhKAlFMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvdmE3a3FCX3pZUDRBdzZIdzJ1TU9KdUVvQ1VVLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mYy9iMzIxYmUtNjAwMC00YmFhLTkyZGMt MjcwYzhiNWEwOTIzLzEvcDlSeGt4RURnM3poT0VCbUdTa3VHZy1RcDFnLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9mYy9iMzIxYmUtNjAwMC00YmFhLTkyZGMtMjcwYzhiNWEwOTIz LzEvdmE3a3FCX3pZUDRBdzZIdzJ1TU9KdUVvQ1VVLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAw0JpMA0G CSqGSIb3DQEBCwUAA4IBAQC1Y2nUoT9kSeyPNnbVLZbAQ2EnZhdsAdxzAPyaocbp 6p60wj01qoT6wBjoajYzYC6MPuZsT9+t62ulKwZo8BSgpYlA1V13sp4Ks11p9hlU 6wKGOxoWI43b8ClvIaAG4mv6TfKVJ5bblEM+kDRj3lvWlhr/nbw47jCBTzk6J/Ab eT5Hjw9WM+nXubtdkAtCPVoESF0GY845xk8J9YqrBL1Y6pgXY0deIl8rarY6mT3K IqnWMkSy6pS1xIQlC2sxsc8PohMFby0vsW21qRmO+o+O0/fAIIilljcnFQTs6V98 twMsIkunzCBZkaJzYJ5kLnMAmdZZnbIivRChcOFE3WUN -----END CERTIFICATE-----Generated at Mon Feb 9 22:28:03 2026 by rpki-client