This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/27/f2c5e8-8d37-4838-a33b-ecc49bdc2ad8/1/v1XAMryHcbVYBLXiFz1wOW3tUKk.roa File: v1XAMryHcbVYBLXiFz1wOW3tUKk.roa (raw, json) Hash identifier: JN1atA5xt1OyKxkpHh4rNxtPiXKSK2GbqwVySmKSgl0= Subject key identifier: BF:55:C0:32:BC:87:71:B5:58:04:B5:E2:17:3D:70:39:6D:ED:50:A9 Certificate issuer: /CN=bfb097a36c2325d1031ff4091ba00a86459d4288 Certificate serial: 019B7BA3E419C6836184C6FE5849443E36C0 Authority key identifier: BF:B0:97:A3:6C:23:25:D1:03:1F:F4:09:1B:A0:0A:86:45:9D:42:88 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/v7CXo2wjJdEDH_QJG6AKhkWdQog.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/27/f2c5e8-8d37-4838-a33b-ecc49bdc2ad8/1/v1XAMryHcbVYBLXiFz1wOW3tUKk.roa Signing time: Thu 01 Jan 2026 22:18:16 +0000 ROA not before: Thu 01 Jan 2026 22:18:16 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 47159 IP address blocks: 62.77.213.0/24 maxlen: 24 62.77.234.0/24 maxlen: 24 82.131.172.0/24 maxlen: 24 89.186.104.0/24 maxlen: 24 91.83.92.0/24 maxlen: 24 91.83.158.0/24 maxlen: 24 91.83.220.0/22 maxlen: 22 91.83.225.0/24 maxlen: 24 213.197.64.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/27/f2c5e8-8d37-4838-a33b-ecc49bdc2ad8/1/v7CXo2wjJdEDH_QJG6AKhkWdQog.crl rsync://rpki.ripe.net/repository/DEFAULT/27/f2c5e8-8d37-4838-a33b-ecc49bdc2ad8/1/v7CXo2wjJdEDH_QJG6AKhkWdQog.mft rsync://rpki.ripe.net/repository/DEFAULT/v7CXo2wjJdEDH_QJG6AKhkWdQog.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 03:00:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7b:a3:e4:19:c6:83:61:84:c6:fe:58:49:44:3e:36:c0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=bfb097a36c2325d1031ff4091ba00a86459d4288 Validity Not Before: Jan 1 22:18:16 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=bf55c032bc8771b55804b5e2173d70396ded50a9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:66:fa:14:0b:ec:6a:25:c6:34:25:2a:40:72: 1e:06:b1:6d:1a:06:8c:61:ff:1a:07:88:19:35:fb: 3c:3a:3b:68:df:e6:a6:65:ac:81:12:ac:1b:9a:da: ca:fd:d0:28:af:e5:86:30:ca:e9:ff:cd:02:64:f4: 43:0b:40:fe:48:9e:f0:21:05:f0:a6:ce:42:1f:d6: bb:bd:e6:1e:ee:fe:cc:13:53:2c:fa:88:23:b1:b5: 4b:ae:ca:20:43:1e:a1:5c:3d:41:51:01:93:3e:f9: c1:b8:3f:4a:ac:d3:c8:08:82:11:29:6d:de:33:5d: c1:41:c8:26:5e:d1:cc:ab:bc:07:25:68:1a:bf:06: 98:65:31:0b:a4:c4:4e:15:88:87:19:7d:99:13:0b: 70:3c:75:b7:77:6b:4f:2c:d7:34:0c:13:ae:35:2d: 0a:38:82:ca:8b:b4:f0:25:7e:2f:87:88:f8:06:22: bb:8b:84:94:71:1a:11:4c:c2:31:fb:c2:f6:da:7f: 9b:09:13:96:12:b8:c5:8a:73:3a:4d:35:0a:e1:0f: 6f:28:52:9c:1c:cf:8f:35:34:c8:de:db:74:37:80: 11:d4:75:8d:a8:50:33:90:00:cb:db:8e:96:c3:36: ec:53:21:6d:de:ab:ed:6d:f0:80:cc:91:bd:96:fb: c3:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BF:55:C0:32:BC:87:71:B5:58:04:B5:E2:17:3D:70:39:6D:ED:50:A9 X509v3 Authority Key Identifier: keyid:BF:B0:97:A3:6C:23:25:D1:03:1F:F4:09:1B:A0:0A:86:45:9D:42:88 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/v7CXo2wjJdEDH_QJG6AKhkWdQog.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/27/f2c5e8-8d37-4838-a33b-ecc49bdc2ad8/1/v1XAMryHcbVYBLXiFz1wOW3tUKk.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/27/f2c5e8-8d37-4838-a33b-ecc49bdc2ad8/1/v7CXo2wjJdEDH_QJG6AKhkWdQog.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 62.77.213.0/24 62.77.234.0/24 82.131.172.0/24 89.186.104.0/24 91.83.92.0/24 91.83.158.0/24 91.83.220.0/22 91.83.225.0/24 213.197.64.0/22 Signature Algorithm: sha256WithRSAEncryption 24:75:e0:76:01:dc:83:b6:61:d5:f1:33:e5:b4:b1:32:e8:39: 09:90:ce:6b:e1:b0:c7:68:6c:91:3f:3e:f8:f2:ad:07:79:3a: c1:2d:95:b2:20:91:bf:6d:17:eb:3e:0a:56:e8:d0:de:9f:c0: 2f:7e:ab:30:44:fa:28:1a:b2:76:35:6b:54:a5:54:d7:31:c1: d5:b9:82:95:b5:2a:64:0c:cc:d0:76:09:72:5a:8c:94:06:1b: bd:a3:40:04:5e:1f:9a:dc:15:60:40:30:e3:5d:7a:a8:24:90: f9:ed:ae:7a:e5:2b:8f:8b:9a:95:59:0d:05:8f:0a:4f:6a:80: 88:7e:96:3c:e5:00:c2:1d:bc:4d:f6:8a:7c:03:5b:7e:1a:b7: 68:b8:31:69:83:da:e4:13:f9:18:6a:a6:1d:1c:1a:b9:5c:c4: 9b:cd:74:c3:2c:9a:e0:6a:86:67:ce:b3:c2:fa:58:32:09:66: df:56:bb:3d:7d:e8:bb:95:ae:97:08:3f:9c:bb:ad:e1:bd:d0: a5:e3:61:6e:ae:46:1e:66:d9:50:a5:e5:69:b8:57:d1:08:64: 87:f5:b3:75:7b:5f:b5:da:10:bc:b6:3c:7e:fb:da:2d:ec:bf: a5:92:93:c4:3e:b8:ad:75:b1:5e:bd:d1:06:c4:df:1d:d1:d2: 9d:25:34:50 -----BEGIN CERTIFICATE----- MIIFLTCCBBWgAwIBAgISAZt7o+QZxoNhhMb+WElEPjbAMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGJmYjA5N2EzNmMyMzI1ZDEwMzFmZjQwOTFiYTAwYTg2NDU5 ZDQyODgwHhcNMjYwMTAxMjIxODE2WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhiZjU1YzAzMmJjODc3MWI1NTgwNGI1ZTIxNzNkNzAzOTZkZWQ1MGE5MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAumb6FAvsaiXGNCUqQHIeBrFtGgaM Yf8aB4gZNfs8Ojto3+amZayBEqwbmtrK/dAor+WGMMrp/80CZPRDC0D+SJ7wIQXw ps5CH9a7veYe7v7ME1Ms+ogjsbVLrsogQx6hXD1BUQGTPvnBuD9KrNPICIIRKW3e M13BQcgmXtHMq7wHJWgavwaYZTELpMROFYiHGX2ZEwtwPHW3d2tPLNc0DBOuNS0K OILKi7TwJX4vh4j4BiK7i4SUcRoRTMIx+8L22n+bCROWErjFinM6TTUK4Q9vKFKc HM+PNTTI3tt0N4AR1HWNqFAzkADL246WwzbsUyFt3qvtbfCAzJG9lvvD9QIDAQAB o4ICOTCCAjUwHQYDVR0OBBYEFL9VwDK8h3G1WAS14hc9cDlt7VCpMB8GA1UdIwQY MBaAFL+wl6NsIyXRAx/0CRugCoZFnUKIMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvdjdDWG8yd2pKZEVESF9RSkc2QUtoa1dkUW9nLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yNy9mMmM1ZTgtOGQzNy00ODM4LWEzM2It ZWNjNDliZGMyYWQ4LzEvdjFYQU1yeUhjYlZZQkxYaUZ6MXdPVzN0VUtrLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yNy9mMmM1ZTgtOGQzNy00ODM4LWEzM2ItZWNjNDliZGMyYWQ4 LzEvdjdDWG8yd2pKZEVESF9RSkc2QUtoa1dkUW9nLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CME8GCCsGAQUFBwEHAQH/BEAwPjA8BAIAATA2AwQAPk3VAwQA Pk3qAwQAUoOsAwQAWbpoAwQAW1NcAwQAW1OeAwQCW1PcAwQAW1PhAwQC1cVAMA0G CSqGSIb3DQEBCwUAA4IBAQAkdeB2AdyDtmHV8TPltLEy6DkJkM5r4bDHaGyRPz74 8q0HeTrBLZWyIJG/bRfrPgpW6NDen8AvfqswRPooGrJ2NWtUpVTXMcHVuYKVtSpk DMzQdglyWoyUBhu9o0AEXh+a3BVgQDDjXXqoJJD57a565SuPi5qVWQ0FjwpPaoCI fpY85QDCHbxN9op8A1t+GrdouDFpg9rkE/kYaqYdHBq5XMSbzXTDLJrgaoZnzrPC +lgyCWbfVrs9fei7la6XCD+cu63hvdCl42FurkYeZtlQpeVpuFfRCGSH9bN1e1+1 2hC8tjx++9ot7L+lkpPEPritdbFevdEGxN8d0dKdJTRQ -----END CERTIFICATE-----Generated at Sun Jan 25 12:18:10 2026 by rpki-client