This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0c/151705-0b0c-48bf-a40e-b7ca1fe6c184/1/BrEn8Ll6xu0ChcaE3vSi9IymY14.roa File: BrEn8Ll6xu0ChcaE3vSi9IymY14.roa (raw, json) Hash identifier: NNxrHTmgvweqwRH2WYDaRBvMbTQvhCqzhXCgDcQp9hU= Subject key identifier: 06:B1:27:F0:B9:7A:C6:ED:02:85:C6:84:DE:F4:A2:F4:8C:A6:63:5E Certificate issuer: /CN=b576577d20085c4c22fc8011c8d1a93f63211c0f Certificate serial: 019B79EC761A9E60D59BEEAEF90D4D4AA6E4 Authority key identifier: B5:76:57:7D:20:08:5C:4C:22:FC:80:11:C8:D1:A9:3F:63:21:1C:0F Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tXZXfSAIXEwi_IARyNGpP2MhHA8.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0c/151705-0b0c-48bf-a40e-b7ca1fe6c184/1/BrEn8Ll6xu0ChcaE3vSi9IymY14.roa Signing time: Thu 01 Jan 2026 14:18:18 +0000 ROA not before: Thu 01 Jan 2026 14:18:18 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 20546 IP address blocks: 185.101.36.0/24 maxlen: 24 2a0e:96c0::/32 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0c/151705-0b0c-48bf-a40e-b7ca1fe6c184/1/tXZXfSAIXEwi_IARyNGpP2MhHA8.crl rsync://rpki.ripe.net/repository/DEFAULT/0c/151705-0b0c-48bf-a40e-b7ca1fe6c184/1/tXZXfSAIXEwi_IARyNGpP2MhHA8.mft rsync://rpki.ripe.net/repository/DEFAULT/tXZXfSAIXEwi_IARyNGpP2MhHA8.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 25 Jan 2026 22:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:79:ec:76:1a:9e:60:d5:9b:ee:ae:f9:0d:4d:4a:a6:e4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b576577d20085c4c22fc8011c8d1a93f63211c0f Validity Not Before: Jan 1 14:18:18 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=06b127f0b97ac6ed0285c684def4a2f48ca6635e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:98:7d:8c:ad:01:10:30:6c:d4:cb:31:bc:14:23: be:d0:6e:cb:2f:b0:d7:c4:39:10:88:7d:56:9c:3d: 03:ae:71:c3:01:2c:7d:b4:15:7d:31:0d:38:de:09: ee:79:78:23:09:db:84:a7:9f:01:e1:b8:56:9f:0e: 62:3d:0d:ce:27:20:29:0f:35:a7:a5:30:b7:fb:0a: 4a:5b:eb:42:d4:fe:9f:2c:62:d4:ab:3a:69:b3:40: d9:20:4f:57:5d:0c:4a:6a:d6:1d:5a:38:c4:42:35: 3e:1a:74:46:16:ea:80:bc:b3:ec:09:1a:80:11:8c: 20:68:0b:be:70:29:0f:51:43:97:8f:39:f1:7d:b7: 94:94:c5:98:15:1c:ac:f5:05:54:36:ca:ba:23:82: e6:a8:cd:79:c4:1b:bd:57:34:a1:1f:c4:b5:36:6d: 58:c4:ab:55:fc:8c:13:8d:1b:72:39:9e:14:90:20: cf:4a:2b:3e:7c:1e:c5:5f:e1:12:ac:49:19:96:da: 0a:00:42:32:d0:79:81:38:54:ca:e5:bf:ba:8e:c2: ab:1b:18:11:cf:b2:4f:38:f8:68:e0:b1:ea:9f:81: 5a:8d:c6:2f:1b:04:df:ba:94:64:1c:a7:4d:eb:3f: cc:e3:24:50:35:15:c0:37:12:b0:e9:b6:40:06:7d: 64:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 06:B1:27:F0:B9:7A:C6:ED:02:85:C6:84:DE:F4:A2:F4:8C:A6:63:5E X509v3 Authority Key Identifier: keyid:B5:76:57:7D:20:08:5C:4C:22:FC:80:11:C8:D1:A9:3F:63:21:1C:0F X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tXZXfSAIXEwi_IARyNGpP2MhHA8.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/151705-0b0c-48bf-a40e-b7ca1fe6c184/1/BrEn8Ll6xu0ChcaE3vSi9IymY14.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/151705-0b0c-48bf-a40e-b7ca1fe6c184/1/tXZXfSAIXEwi_IARyNGpP2MhHA8.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.101.36.0/24 IPv6: 2a0e:96c0::/32 Signature Algorithm: sha256WithRSAEncryption 21:38:5a:2a:e1:a8:d4:9a:ab:78:3f:83:83:8b:6c:aa:d9:9e: d8:81:06:8e:a1:a0:1e:ae:06:51:56:d9:88:57:b6:bc:ea:b6: e4:dd:8b:81:db:86:99:54:78:35:4b:47:56:7d:db:42:bc:f8: ff:67:16:29:5d:83:24:7b:b3:9d:bf:1b:54:47:80:a9:76:1c: 30:b1:ec:e0:a8:3c:88:f5:cf:0c:9b:46:a6:41:99:1d:01:c1: 10:88:aa:58:41:9a:51:7f:1b:b6:5d:30:0a:15:0a:48:bb:1e: 5d:4f:d4:44:8b:28:e8:09:bd:d6:da:e4:4c:e8:5b:f8:6e:57: 91:09:84:aa:a7:a7:24:cc:d8:46:ac:e3:17:92:1b:79:d7:b9: 83:bc:44:4d:96:34:a4:69:ce:75:71:e2:3e:0e:01:e3:50:78: 5c:7e:f6:05:34:ae:32:f6:fb:41:5c:53:dc:ad:b8:2c:0a:d7: b5:14:99:03:bb:1e:39:df:d4:78:b0:ab:37:30:7f:e2:2a:ed: cb:4a:5b:93:a2:8c:8f:58:f8:fa:f2:af:7e:5f:ee:0c:81:e4: 18:c2:23:be:97:a8:d9:e1:9b:7c:19:29:26:8d:62:2d:3f:ee: fe:a3:da:37:5b:03:0c:8b:d0:23:35:25:2b:b0:c9:81:26:99: e2:10:43:62 -----BEGIN CERTIFICATE----- MIIFDDCCA/SgAwIBAgISAZt57HYanmDVm+6u+Q1NSqbkMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGI1NzY1NzdkMjAwODVjNGMyMmZjODAxMWM4ZDFhOTNmNjMy MTFjMGYwHhcNMjYwMTAxMTQxODE4WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygwNmIxMjdmMGI5N2FjNmVkMDI4NWM2ODRkZWY0YTJmNDhjYTY2MzVlMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmH2MrQEQMGzUyzG8FCO+0G7LL7DX xDkQiH1WnD0DrnHDASx9tBV9MQ043gnueXgjCduEp58B4bhWnw5iPQ3OJyApDzWn pTC3+wpKW+tC1P6fLGLUqzpps0DZIE9XXQxKatYdWjjEQjU+GnRGFuqAvLPsCRqA EYwgaAu+cCkPUUOXjznxfbeUlMWYFRys9QVUNsq6I4LmqM15xBu9VzShH8S1Nm1Y xKtV/IwTjRtyOZ4UkCDPSis+fB7FX+ESrEkZltoKAEIy0HmBOFTK5b+6jsKrGxgR z7JPOPho4LHqn4FajcYvGwTfupRkHKdN6z/M4yRQNRXANxKw6bZABn1kIwIDAQAB o4ICGDCCAhQwHQYDVR0OBBYEFAaxJ/C5esbtAoXGhN70ovSMpmNeMB8GA1UdIwQY MBaAFLV2V30gCFxMIvyAEcjRqT9jIRwPMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvdFhaWGZTQUlYRXdpX0lBUnlOR3BQMk1oSEE4LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wYy8xNTE3MDUtMGIwYy00OGJmLWE0MGUt YjdjYTFmZTZjMTg0LzEvQnJFbjhMbDZ4dTBDaGNhRTN2U2k5SXltWTE0LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wYy8xNTE3MDUtMGIwYy00OGJmLWE0MGUtYjdjYTFmZTZjMTg0 LzEvdFhaWGZTQUlYRXdpX0lBUnlOR3BQMk1oSEE4LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMC4GCCsGAQUFBwEHAQH/BB8wHTAMBAIAATAGAwQAuWUkMA0E AgACMAcDBQAqDpbAMA0GCSqGSIb3DQEBCwUAA4IBAQAhOFoq4ajUmqt4P4ODi2yq 2Z7YgQaOoaAergZRVtmIV7a86rbk3YuB24aZVHg1S0dWfdtCvPj/ZxYpXYMke7Od vxtUR4CpdhwwsezgqDyI9c8Mm0amQZkdAcEQiKpYQZpRfxu2XTAKFQpIux5dT9RE iyjoCb3W2uRM6Fv4bleRCYSqp6ckzNhGrOMXkht517mDvERNljSkac51ceI+DgHj UHhcfvYFNK4y9vtBXFPcrbgsCte1FJkDux4539R4sKs3MH/iKu3LSluTooyPWPj6 8q9+X+4MgeQYwiO+l6jZ4Zt8GSkmjWItP+7+o9o3WwMMi9AjNSUrsMmBJpniEENi -----END CERTIFICATE-----Generated at Sun Jan 25 09:04:30 2026 by rpki-client