This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0b/07bf5b-0340-434e-a444-f0761e29e6c4/1/1-bvTtCyxjhCFLcxNhXPNFp9zd4.roa File: 1-bvTtCyxjhCFLcxNhXPNFp9zd4.roa (raw, json) Hash identifier: UqrazJGk86AULwhwwPwABEyPtaaQCEyqIBdZnP4+jJA= Subject key identifier: D7:E6:EF:4E:D0:B2:C6:38:42:14:B7:31:36:15:CF:34:5A:7D:CD:DE Certificate issuer: /CN=66ec789976d3b584016cac19f34bbede966cd230 Certificate serial: 019B7834BE1135825B5404A12B85E80BC77D Authority key identifier: 66:EC:78:99:76:D3:B5:84:01:6C:AC:19:F3:4B:BE:DE:96:6C:D2:30 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Zux4mXbTtYQBbKwZ80u-3pZs0jA.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0b/07bf5b-0340-434e-a444-f0761e29e6c4/1/1-bvTtCyxjhCFLcxNhXPNFp9zd4.roa Signing time: Thu 01 Jan 2026 06:18:00 +0000 ROA not before: Thu 01 Jan 2026 06:18:00 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 203201 IP address blocks: 171.22.44.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0b/07bf5b-0340-434e-a444-f0761e29e6c4/1/Zux4mXbTtYQBbKwZ80u-3pZs0jA.crl rsync://rpki.ripe.net/repository/DEFAULT/0b/07bf5b-0340-434e-a444-f0761e29e6c4/1/Zux4mXbTtYQBbKwZ80u-3pZs0jA.mft rsync://rpki.ripe.net/repository/DEFAULT/Zux4mXbTtYQBbKwZ80u-3pZs0jA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 27 Jan 2026 09:01:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:78:34:be:11:35:82:5b:54:04:a1:2b:85:e8:0b:c7:7d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=66ec789976d3b584016cac19f34bbede966cd230 Validity Not Before: Jan 1 06:18:00 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=d7e6ef4ed0b2c6384214b7313615cf345a7dcdde Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:75:cb:dc:7d:1c:5b:46:2f:d0:71:f2:f2:6b: 0f:94:ed:ab:71:72:cc:b2:66:e9:f9:be:01:8d:97: ff:1a:00:f5:7a:63:78:d9:c4:5b:41:f8:ab:fc:c9: 02:63:e8:fc:b8:f8:9e:e8:a1:6c:48:00:7a:a7:cb: c4:63:38:20:4b:5d:8e:a9:c1:41:6d:45:d6:4b:67: 1f:46:6d:58:f6:3a:b6:6d:48:80:ce:9c:11:5e:97: 70:50:6d:22:c1:42:7a:b0:87:81:44:39:64:6b:ef: a0:53:da:70:92:8b:48:7b:12:ac:03:07:e6:00:45: 32:c4:95:d1:01:a7:9e:66:40:07:ed:86:c6:d2:75: 0f:6a:f5:bb:56:a3:cd:af:35:b7:d0:6c:1a:6c:e8: 4f:11:f4:2a:b2:53:1d:b1:ef:24:88:c8:4f:6d:26: 2d:74:22:92:8a:82:6f:cc:1f:43:92:55:61:09:1a: e7:f0:67:6e:ba:ec:d9:6f:3c:b1:6b:bb:52:ab:47: ae:ed:fb:96:ae:fe:37:11:ff:af:d6:e2:43:a7:1e: 24:fa:60:a5:a9:44:d5:9c:c8:a7:5a:98:fa:9b:fa: c6:ea:d9:dd:50:dd:52:9b:99:6d:04:dc:ac:81:9c: 5a:f1:7e:64:c9:e7:a0:5e:74:51:fd:a6:e2:6b:03: 31:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D7:E6:EF:4E:D0:B2:C6:38:42:14:B7:31:36:15:CF:34:5A:7D:CD:DE X509v3 Authority Key Identifier: keyid:66:EC:78:99:76:D3:B5:84:01:6C:AC:19:F3:4B:BE:DE:96:6C:D2:30 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Zux4mXbTtYQBbKwZ80u-3pZs0jA.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/07bf5b-0340-434e-a444-f0761e29e6c4/1/1-bvTtCyxjhCFLcxNhXPNFp9zd4.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/07bf5b-0340-434e-a444-f0761e29e6c4/1/Zux4mXbTtYQBbKwZ80u-3pZs0jA.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 171.22.44.0/22 Signature Algorithm: sha256WithRSAEncryption 86:4e:ce:d1:b7:af:77:f0:49:2f:d4:2c:76:4a:95:1d:7b:8e: 3e:93:4b:48:75:91:1b:cd:8a:69:82:a5:14:37:35:ce:88:07: 60:23:d7:69:ba:37:d5:f9:2b:42:31:c4:a4:15:4f:3a:aa:23: 36:c8:78:5b:38:3f:1d:3f:56:f0:cb:08:18:99:77:cf:01:98: 51:2f:6b:88:27:4a:25:36:04:2a:79:bd:f4:57:97:e2:8d:62: 0f:a3:0b:2c:a8:b4:a2:c8:8e:c0:01:b2:e1:19:05:6c:5b:b0: 8a:9f:86:4f:92:01:19:c6:70:38:89:33:cc:30:df:48:66:c9: 7e:dd:f4:85:19:45:f3:d8:09:99:04:f2:de:6f:43:db:d0:55: d1:88:97:92:14:8d:4a:2f:7f:56:d5:23:fb:a9:87:c5:73:31: f7:e7:29:ff:28:01:69:14:fc:38:f2:95:f8:d3:ea:a4:ab:24: ce:48:06:c2:76:b4:05:47:c8:3f:14:30:1f:41:53:4a:7d:b7: 6b:38:93:da:77:d6:a6:30:5f:1a:71:55:4f:19:80:3c:2a:ac: a7:c6:b2:90:00:53:11:01:bf:90:a0:b2:9c:66:be:5c:1f:92: 7b:cd:b2:e8:90:1c:69:b6:53:48:31:37:ff:7a:a2:ff:1a:f4: 3b:9a:2d:cf -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt4NL4RNYJbVAShK4XoC8d9MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDY2ZWM3ODk5NzZkM2I1ODQwMTZjYWMxOWYzNGJiZWRlOTY2 Y2QyMzAwHhcNMjYwMTAxMDYxODAwWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhkN2U2ZWY0ZWQwYjJjNjM4NDIxNGI3MzEzNjE1Y2YzNDVhN2RjZGRlMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwHXL3H0cW0Yv0HHy8msPlO2rcXLM smbp+b4BjZf/GgD1emN42cRbQfir/MkCY+j8uPie6KFsSAB6p8vEYzggS12OqcFB bUXWS2cfRm1Y9jq2bUiAzpwRXpdwUG0iwUJ6sIeBRDlka++gU9pwkotIexKsAwfm AEUyxJXRAaeeZkAH7YbG0nUPavW7VqPNrzW30GwabOhPEfQqslMdse8kiMhPbSYt dCKSioJvzB9DklVhCRrn8GduuuzZbzyxa7tSq0eu7fuWrv43Ef+v1uJDpx4k+mCl qUTVnMinWpj6m/rG6tndUN1Sm5ltBNysgZxa8X5kyeegXnRR/abiawMxUQIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFNfm707QssY4QhS3MTYVzzRafc3eMB8GA1UdIwQY MBaAFGbseJl207WEAWysGfNLvt6WbNIwMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvWnV4NG1YYlR0WVFCYkt3WjgwdS0zcFpzMGpBLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wYi8wN2JmNWItMDM0MC00MzRlLWE0NDQt ZjA3NjFlMjllNmM0LzEvMS1idlR0Q3l4amhDRkxjeE5oWFBORnA5emQ0LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wYi8wN2JmNWItMDM0MC00MzRlLWE0NDQtZjA3NjFlMjllNmM0 LzEvWnV4NG1YYlR0WVFCYkt3WjgwdS0zcFpzMGpBLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCqxYsMA0G CSqGSIb3DQEBCwUAA4IBAQCGTs7Rt6938Ekv1Cx2SpUde44+k0tIdZEbzYppgqUU NzXOiAdgI9dpujfV+StCMcSkFU86qiM2yHhbOD8dP1bwywgYmXfPAZhRL2uIJ0ol NgQqeb30V5fijWIPowssqLSiyI7AAbLhGQVsW7CKn4ZPkgEZxnA4iTPMMN9IZsl+ 3fSFGUXz2AmZBPLeb0Pb0FXRiJeSFI1KL39W1SP7qYfFczH35yn/KAFpFPw48pX4 0+qkqyTOSAbCdrQFR8g/FDAfQVNKfbdrOJPad9amMF8acVVPGYA8KqynxrKQAFMR Ab+QoLKcZr5cH5J7zbLokBxptlNIMTf/eqL/GvQ7mi3P -----END CERTIFICATE-----Generated at Mon Jan 26 14:54:24 2026 by rpki-client