This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/34/5cecc0-2a53-4500-85ae-e8b60a2dd6b4/1/bB7kMhCJE9gmbqv9knI-7tIYK5U.roa File: bB7kMhCJE9gmbqv9knI-7tIYK5U.roa (raw, json) Hash identifier: h9qAy4ykGKFPqiqM0kh6l0fFXFqYWZ02K3JsX4h5dR0= Subject key identifier: 6C:1E:E4:32:10:89:13:D8:26:6E:AB:FD:92:72:3E:EE:D2:18:2B:95 Certificate issuer: /CN=d49922ca8d139a4d03d6d57cbc8177dc05feb9ec Certificate serial: 019BC69C1F5327A32C3029805294856B383C Authority key identifier: D4:99:22:CA:8D:13:9A:4D:03:D6:D5:7C:BC:81:77:DC:05:FE:B9:EC Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1Jkiyo0Tmk0D1tV8vIF33AX-uew.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/34/5cecc0-2a53-4500-85ae-e8b60a2dd6b4/1/bB7kMhCJE9gmbqv9knI-7tIYK5U.roa Signing time: Fri 16 Jan 2026 11:41:18 +0000 ROA not before: Fri 16 Jan 2026 11:41:18 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 212093 IP address blocks: 178.237.200.0/24 maxlen: 24 178.237.205.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/34/5cecc0-2a53-4500-85ae-e8b60a2dd6b4/1/1Jkiyo0Tmk0D1tV8vIF33AX-uew.crl rsync://rpki.ripe.net/repository/DEFAULT/34/5cecc0-2a53-4500-85ae-e8b60a2dd6b4/1/1Jkiyo0Tmk0D1tV8vIF33AX-uew.mft rsync://rpki.ripe.net/repository/DEFAULT/1Jkiyo0Tmk0D1tV8vIF33AX-uew.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 13:01:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:c6:9c:1f:53:27:a3:2c:30:29:80:52:94:85:6b:38:3c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d49922ca8d139a4d03d6d57cbc8177dc05feb9ec Validity Not Before: Jan 16 11:41:18 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=6c1ee432108913d8266eabfd92723eeed2182b95 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:91:56:04:9d:70:6d:dd:81:c2:87:3b:d1:c8:50: 9c:ba:70:d4:92:61:b2:43:b8:90:7f:93:d1:b3:48: 3c:52:b2:b3:73:25:a1:11:c7:fc:b2:f9:b0:62:cc: 42:bb:bf:18:35:02:0d:f3:55:f7:1d:7c:df:b5:46: e4:e6:c0:3e:6d:a4:53:64:3b:3b:64:9d:88:38:e9: 5b:20:8e:17:31:5a:2f:67:aa:5c:57:1e:ac:6c:72: 62:3e:38:21:a3:ba:d8:48:c0:d4:e0:25:86:9b:c6: 0c:30:0a:0c:d5:21:03:5b:63:92:1f:fc:c7:de:fb: 55:ad:9b:68:02:70:8b:79:c5:d4:e1:86:06:3a:87: 0f:b4:10:d1:1d:4a:93:45:bf:37:a5:75:23:03:1a: 21:5c:35:7d:e9:eb:4b:2b:6f:2d:a9:81:a4:49:31: 62:8f:63:ed:c2:35:d4:04:39:88:77:cc:69:70:7d: 9f:16:0c:e7:a4:2c:e5:71:ac:5b:1a:3b:10:14:60: fe:36:c2:e2:24:fc:9e:40:46:a1:23:1b:c0:e8:7f: c0:60:ae:2e:8a:0c:97:2f:70:b9:d8:52:f7:ab:91: 63:29:5d:ba:20:7b:44:d9:7b:ba:69:83:41:e6:51: 91:c2:8e:77:03:b2:cb:97:3e:d5:f8:72:47:f8:2b: a3:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6C:1E:E4:32:10:89:13:D8:26:6E:AB:FD:92:72:3E:EE:D2:18:2B:95 X509v3 Authority Key Identifier: keyid:D4:99:22:CA:8D:13:9A:4D:03:D6:D5:7C:BC:81:77:DC:05:FE:B9:EC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1Jkiyo0Tmk0D1tV8vIF33AX-uew.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/34/5cecc0-2a53-4500-85ae-e8b60a2dd6b4/1/bB7kMhCJE9gmbqv9knI-7tIYK5U.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/34/5cecc0-2a53-4500-85ae-e8b60a2dd6b4/1/1Jkiyo0Tmk0D1tV8vIF33AX-uew.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 178.237.200.0/24 178.237.205.0/24 Signature Algorithm: sha256WithRSAEncryption 25:cb:38:bf:72:72:f7:99:8a:f7:9e:3d:2c:c2:c8:cd:ec:ab: 46:4a:a7:37:e6:6d:a6:89:08:3f:ad:d2:78:e4:b3:ca:49:03: 89:4d:69:c8:fd:02:e1:07:2f:30:aa:76:3e:6b:31:f2:4e:05: 48:20:51:7c:dd:06:49:8a:47:87:94:2e:ad:bf:6d:43:36:90: 22:ec:76:ab:c0:dc:78:f5:5e:74:97:05:33:09:96:80:c0:c4: fd:af:45:bb:ab:02:95:8c:b6:eb:7e:9c:d9:eb:9e:2b:15:c3: f6:81:d2:be:17:fa:d0:d2:a0:a9:66:cf:9c:5d:f4:27:9d:42: 42:6e:5e:1c:e0:e3:ad:dc:75:de:3a:cd:76:6a:21:34:ba:c5: 9d:26:89:a4:09:c5:b8:e4:88:96:1f:ac:fd:23:0a:86:04:76: d2:4c:c2:62:cb:ba:82:f6:e2:d3:0c:9c:06:4f:e6:d6:e4:5b: 63:59:56:f3:4e:f6:c0:6f:cb:80:e0:88:38:30:d2:92:5b:44: 6f:3a:85:f4:60:1f:08:43:f5:b5:4b:93:75:32:ab:b0:f0:bc: 41:63:50:40:c6:c5:03:5f:89:87:ce:a1:d5:bd:88:13:65:78: 29:55:44:92:0c:c3:91:6f:6f:32:99:22:fd:16:7a:3a:c5:0c: ce:43:d6:10 -----BEGIN CERTIFICATE----- MIIFAzCCA+ugAwIBAgISAZvGnB9TJ6MsMCmAUpSFazg8MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGQ0OTkyMmNhOGQxMzlhNGQwM2Q2ZDU3Y2JjODE3N2RjMDVm ZWI5ZWMwHhcNMjYwMTE2MTE0MTE4WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg2YzFlZTQzMjEwODkxM2Q4MjY2ZWFiZmQ5MjcyM2VlZWQyMTgyYjk1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAkVYEnXBt3YHChzvRyFCcunDUkmGy Q7iQf5PRs0g8UrKzcyWhEcf8svmwYsxCu78YNQIN81X3HXzftUbk5sA+baRTZDs7 ZJ2IOOlbII4XMVovZ6pcVx6sbHJiPjgho7rYSMDU4CWGm8YMMAoM1SEDW2OSH/zH 3vtVrZtoAnCLecXU4YYGOocPtBDRHUqTRb83pXUjAxohXDV96etLK28tqYGkSTFi j2PtwjXUBDmId8xpcH2fFgznpCzlcaxbGjsQFGD+NsLiJPyeQEahIxvA6H/AYK4u igyXL3C52FL3q5FjKV26IHtE2Xu6aYNB5lGRwo53A7LLlz7V+HJH+CujsQIDAQAB o4ICDzCCAgswHQYDVR0OBBYEFGwe5DIQiRPYJm6r/ZJyPu7SGCuVMB8GA1UdIwQY MBaAFNSZIsqNE5pNA9bVfLyBd9wF/rnsMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvMUpraXlvMFRtazBEMXRWOHZJRjMzQVgtdWV3LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zNC81Y2VjYzAtMmE1My00NTAwLTg1YWUt ZThiNjBhMmRkNmI0LzEvYkI3a01oQ0pFOWdtYnF2OWtuSS03dElZSzVVLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zNC81Y2VjYzAtMmE1My00NTAwLTg1YWUtZThiNjBhMmRkNmI0 LzEvMUpraXlvMFRtazBEMXRWOHZJRjMzQVgtdWV3LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQAsu3IAwQA su3NMA0GCSqGSIb3DQEBCwUAA4IBAQAlyzi/cnL3mYr3nj0swsjN7KtGSqc35m2m iQg/rdJ45LPKSQOJTWnI/QLhBy8wqnY+azHyTgVIIFF83QZJikeHlC6tv21DNpAi 7HarwNx49V50lwUzCZaAwMT9r0W7qwKVjLbrfpzZ654rFcP2gdK+F/rQ0qCpZs+c XfQnnUJCbl4c4OOt3HXeOs12aiE0usWdJomkCcW45IiWH6z9IwqGBHbSTMJiy7qC 9uLTDJwGT+bW5FtjWVbzTvbAb8uA4Ig4MNKSW0RvOoX0YB8IQ/W1S5N1Mquw8LxB Y1BAxsUDX4mHzqHVvYgTZXgpVUSSDMORb28ymSL9Fno6xQzOQ9YQ -----END CERTIFICATE-----Generated at Sun Jan 25 21:57:56 2026 by rpki-client